last executing test programs:

6.315498509s ago: executing program 1 (id=1456):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB="940df94d5295733368ff3a55ed32cf374924267de8604eda898dd05d0a1f477b", @ANYRES16=r3, @ANYRESOCT=r3], 0x28}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000040)={0x7fffffff}, 0x10)
sendmsg$kcm(r4, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="2e0000004a008102e00f80ecdb4cb9020a", 0x4a}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="02000000040000000600000004af1a2de5563ac2", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r5}, 0x38)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1, 0x0, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0xcc03, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$kcm(0x29, 0x5, 0x0)
openat$cdrom(0xffffff9c, 0x0, 0x0, 0x0)
ioctl$KDENABIO(0xffffffffffffffff, 0x4b36)
capget(&(0x7f0000000000)={0x19980330}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x74, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x48, 0x3, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x38, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xf8}}, 0x0)
r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r7, 0xae44, 0x80000000)

5.351564217s ago: executing program 1 (id=1458):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
munlock(&(0x7f0000000000/0x4000)=nil, 0x4000)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)
setresuid(0x0, 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000240)={{{@in=@private, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@broadcast}, 0x0, @in=@initdev}}, 0x0)
chown(0x0, r1, 0x0)
setsockopt$MRT6_DEL_MIF(0xffffffffffffffff, 0x29, 0xc8, 0x0, 0xc000000)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xc8, &(0x7f0000000000)={{0xa, 0x0, 0x0, @local}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, &(0x7f0000000000)={@remote, 0x3}, 0x20)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='syscall\x00')
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d032, 0xffffffffffffffff, 0x0)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x0, &(0x7f0000000140), 0x0, 0x4)
read$FUSE(r3, &(0x7f0000005380)={0x2020}, 0x2020)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r6, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r7, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000011c0), 0xffffffffffffffff)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r10, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r10, 0x0)
ioctl$MON_IOCT_RING_SIZE(r10, 0x9204, 0xbb8fc)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x24, r9, 0x501, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x12c, 0x0, 0x1, [@NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x415}, 0x0)

4.778392005s ago: executing program 0 (id=1459):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x20000000002)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x2, 0x56d, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r1}, 0x38)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/block/loop0', 0x0, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
shutdown(r2, 0x0)
dup3(r2, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r4, &(0x7f0000019400)={0x1f, 0x2, @any, 0x56}, 0xe)
ioctl$VT_RELDISP(r3, 0x5605)
r5 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
r6 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x20, &(0x7f0000001240)=[@in={0x2, 0x4e24, @loopback}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}]}, &(0x7f0000000180)=0x10)
getsockopt$bt_hci(r6, 0x84, 0x6d, &(0x7f0000000000)=""/4102, &(0x7f0000001040)=0x1006)
setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x30, &(0x7f0000019f80)=ANY=[@ANYBLOB="0700000002004e2000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000700000002004e20ac1e0001000000000000000000000000000000000000000000000000000000000000000000001d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ac1414bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ac1e000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e217f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e20e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ac1414bb00000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e24e000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000035e0ee92e49a90f68b21a7147a63407c4025d827cb66ccfd11da813e151b254ea0"], 0x40c)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x1})
syz_emit_ethernet(0x52, &(0x7f0000000340)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd608a37f2001c2c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa06000003", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000cb4b3b0518c45302"], 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0)
syz_extract_tcp_res(&(0x7f0000000100), 0x8, 0x1)

4.471539265s ago: executing program 1 (id=1460):
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = openat$sndseq(0xffffff9c, &(0x7f0000000000), 0x2d8081)
write$sndseq(r0, &(0x7f00000003c0)=[{0x7, 0x9, 0x6, 0x93, @tick=0x3, {0xd}, {0x2, 0x9}, @control={0x8, 0x4, 0x7}}, {0xe, 0x1, 0x2, 0x4, @time={0x8001, 0xe3a0}, {0x7f, 0x67}, {0xa1, 0xde}, @addr={0xf9, 0xa}}, {0x2, 0xb, 0x8, 0x3, @tick=0xfe5a, {0x3}, {0x2, 0x1}, @note={0xb, 0x6, 0x8, 0x2, 0x5}}], 0x54)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x4000000400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$setperm(0x5, 0x0, 0x0)
keyctl$revoke(0x6, 0x0)
socket$inet6(0xa, 0x4, 0x0)
lsetxattr$system_posix_acl(0x0, 0x0, 0x0, 0x5c, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xd, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r2, &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xe)
ioctl$TCFLSH(r3, 0x80047456, 0xfffffffffffffffe)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x24, 0x9, 0x0, 0x0, {0x7}}, 0x14}}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000340)="580000001400192340834b80040d8c5602117436c379000000000000000058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000b0c10000000214e224e0000", 0x58}], 0x1)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000180)={0x16, 0x18, 0xfa00, {0x2, &(0x7f0000000100), 0x13f}}, 0x20)

4.181149776s ago: executing program 2 (id=1461):
modify_ldt$write(0x1, &(0x7f0000000040)={0xc}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067000000050000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000400)=@raw=[@map_fd, @jmp={0x5, 0x1, 0x3, 0x6, 0x0, 0x50, 0x8}, @map_fd={0x18, 0x3}], &(0x7f0000000640)='GPL\x00', 0x6, 0x49, &(0x7f0000000680)=""/73, 0x0, 0x2, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x7, 0x1, 0x80}, 0x10, 0x2ccaa, 0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000cc0)=[{0x4, 0x4, 0x207, 0x4}, {0x3, 0x5, 0x5, 0xa}, {0x1, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xa}, {0x3, 0x4, 0xb, 0x342941b6c525dbcf}, {0x3, 0x1003, 0x3, 0x9}], 0x10, 0x3, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x14, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000000700000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0xfca804a0, 0xe, 0x590, &(0x7f00000002c0)="4ce02b9d64e50d293ddb0ae4b8a0", 0x0, 0x4003, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x15b, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r1], &(0x7f0000000340)='syzkaller\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x1800000000000060, 0x0, 0x0, 0x0, 0x0, 0x2300, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x400, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
unshare(0x62040200)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000380)={0x100000, 0x0, 0x0, r4, 0x8})
unshare(0x62040200)
socket$igmp(0x2, 0x3, 0x2)
socket$inet_icmp(0x2, 0x2, 0x1)

3.403471693s ago: executing program 2 (id=1465):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x54}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getpid()
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000240), 0xe664, 0x100)
ioctl$BLKSECDISCARD(r0, 0x127d, &(0x7f00000002c0)=0x522)
close(0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id='])
setxattr$trusted_overlay_opaque(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000040)='./file0/file0/file0/file0/file0/../file0\x00', &(0x7f0000000200), 0x0, 0x0, 0x0)
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x1f}}, 0x50)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000200095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x14, r6, 0x701}, 0x14}}, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$TIOCGPTPEER(r7, 0x90000915, 0x0)
ioctl$TIOCL_GETKMSGREDIRECT(r7, 0x541c, &(0x7f00000000c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000001000)='sched_switch\x00', r4}, 0x10)
r8 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$kcm(r8, &(0x7f0000001900)={0x0, 0x0, 0x0}, 0x20040000)
sendmsg$inet(r8, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
socket$kcm(0x10, 0x2, 0x10)

2.942099567s ago: executing program 0 (id=1468):
mknod$loop(&(0x7f0000000280)='./file0\x00', 0x0, 0x1)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_clone3(&(0x7f0000000b40)={0x1084000, &(0x7f0000000940), &(0x7f0000000980)=<r1=>0x0, &(0x7f00000009c0), {0x3d}, &(0x7f0000000a00)=""/133, 0x85, &(0x7f0000000ac0)=""/46, &(0x7f0000000b00)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x6}, 0x58)
stat(&(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = syz_clone3(&(0x7f0000001e40)={0x4800000, &(0x7f0000000c80), &(0x7f0000000cc0), &(0x7f0000000d00), {0x1d}, &(0x7f0000000d40)=""/4096, 0x1000, &(0x7f0000001d40)=""/177, &(0x7f0000001e00)=[0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x4, {r0}}, 0x58)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001ec0)={{{@in, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@private2}, 0x0, @in6=@mcast1}}, &(0x7f0000001fc0)=0xe4)
r5 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r6=>0x0}, &(0x7f0000cab000)=0xa)
setresgid(r6, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000002080)={&(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000000240)=[{&(0x7f00000007c0)="00000000000000647a63c91afdbd1edfe4dc301586ee8c82c736a1abadfb4395a5ed1b349845d4bb4160cfd2e3582b9d318568aa428e29f4a2dd614365a65a5d46ada62cef9e67838fecb17b260807f58b8a6415d73dbc8a5b32a0ff7ed6ccae3898877444cf25d428f119f4", 0x6c}, {&(0x7f0000000300)="52d06e8897f39ca643d49181048c792874005ce02875d2812e86dfaa441a5ba315bd12fb597ef36646608823b58f2ed6e14d908ed118d00f53bc1bb54948f1bab6e15f7ef315bd5067480d88ec90c23138073b72967b41a4a3f3b176ee55fd29d38152ba7b6bee9dad8f6a906caba2b52ab13b1974bec45b39233a0d3e6eedc7b1a8640460c5907430c9420b490ae3e222680031578967da7090c2bfddf3c3cf6309edd1a8cffd613488bb80b51185c8c5c2a9ca2fbd1f905c448af79c9b05064458c0994610cd56c7888a329baf409d5b8b12a95d9633bb23de5a78e80e9b55787e2a6a010b8e4cf2f236022c152e9ba1d80f", 0xf3}, {&(0x7f0000000640)="7188e3546cd8496e150377a87f90033727ec94caed89ad4cac04d4746dff158c31ca741d19c4969b529ffb5053e7ba90f626089d9e811fcbce1569f2a1cba1bb66f8160bb961f0bd530b5b82ef2aac5b5e6769e69f32113d14b4b318f1bc3d8475f6de44198e72e63c0ff85b6cc14d127ce430decb753c08ff76bac880b95108bcb937ab117277eba5454a40b066ceb97a1fa6fd204f2f1cdafc78088e59dac0a6e8b53a3a338849839bb0f299068f2bd4684c4778117db0460145f1ffce9e71fb206ba75202db0204a39a55c008d7be234cb060a8ec64469e7c22248d2301daac4ba7f661", 0xe5}, {&(0x7f0000000740)="8268de0ddbf0571783f6f6ba1b2395f8f8b5e6b1af5e9b9fc8f590af674b4b270748ab2a3c5f4bf00823282c058b6f84142ea268e5120a55d941b56708504289efcba38579402c44d32d169f18459a989a76c2004a8bf55aec36b558f36bbb255a438b7fcfbed432d08cee03ce1a2ab499171f4e4e272db1", 0x78}], 0x4, &(0x7f0000002000)=[@rights={{0x24, 0x1, 0x1, [r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r0, r0]}}, @cred={{0x18, 0x1, 0x2, {r1, 0xee00, r2}}}, @cred={{0x18, 0x1, 0x2, {r3, r4, r6}}}], 0x68, 0x20000050}, 0x40002)
r7 = syz_open_procfs(0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x0, 0xc8}}}, 0x7)
syz_emit_vhci(&(0x7f0000000400)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x198}, "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"}, 0x19c)
syz_emit_vhci(0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000280), 0x0, 0x0)
setsockopt$MRT_PIM(r7, 0x0, 0xcf, &(0x7f0000000080)=0x4, 0x4)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)={0x0, <r9=>0x0})
syz_open_procfs(r9, &(0x7f0000000600)='fd/4\x00')
ioprio_set$pid(0x3, r9, 0x4004)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
connect$unix(r10, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r11, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r10, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000040)='hfsplus\x00', 0x8000, 0x0)

2.442083359s ago: executing program 1 (id=1469):
socket$unix(0x1, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
epoll_create1(0x0)
timer_create(0x9, &(0x7f0000000100)={0x0, 0x0, 0x1}, &(0x7f0000000500))
timer_settime(0x0, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000700)={{}, {0x77359400}}, &(0x7f0000000380))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb0100180000005d6f63378f4324220c0000000600000002000000000000"], 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x5, 0x0, @void, @value, @void, @value}, 0x48)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r3, 0x0, 0x0)
ioctl$TIOCNOTTY(r2, 0x5422)
dup(r2)
r4 = io_uring_setup(0x17ba, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1})
openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
recvmmsg(r5, &(0x7f0000005c40)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000440)=""/233, 0xe9}], 0x1}}], 0x1, 0x0, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$cec(&(0x7f0000000340), 0x0, 0x0)
ioctl$CEC_DQEVENT(r6, 0xc0506107, 0x0)
ioctl$CEC_DQEVENT(r6, 0xc0506107, &(0x7f0000000200)={0x0, 0x0, 0x0, @lost_msgs})

2.387724882s ago: executing program 3 (id=1470):
socket$rds(0x15, 0x5, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000005e0000000000f7cdde8467986e998cfcb510306f1f5a20ae69aa98a853ab62346c57e5b0fde6a8637df2fd31ae0ecff6a4e1912af21673a4a9afcba4e008ebb4cd625446a79765ac1fa77e557da71ad811be5da55cd8436463ac9eff89a3ed26e7ee99c918d3e0c782680ec108aec94f8bfff8eaabc6a0310a24bfc49175ec4669a59906f18a4ad02edda5e9419986847b610387437cb4ae9f10c6b8718e5f3f76da3af0e2440885d049aabda2d9244dc4f4", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r0 = epoll_create1(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xe000001a})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r3=>0x0})
r4 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r4, &(0x7f0000000000)={0x1d, r3}, 0x10)
setsockopt$CAN_RAW_FILTER(r4, 0x65, 0x1, &(0x7f0000000040)=[{{0x1, 0x0, 0x0, 0x1}, {0x2, 0x1, 0x1}}, {{0x3, 0x0, 0x1}, {0x4, 0x1, 0x1}}, {{0x2}, {0x0, 0x0, 0x0, 0x1}}], 0x18)
sendmsg$nl_route_sched(r2, 0x0, 0x20004000)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0, 0x54}}, 0x0)
getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xc, 0x0, &(0x7f00000002c0))
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r7=>0x0})
r8 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r8, &(0x7f0000000000)={0x1d, r7}, 0x10)
setsockopt$CAN_RAW_FILTER(r8, 0x65, 0x1, &(0x7f0000000280)=[{{0x1, 0x0, 0x0, 0x1}, {0x2, 0x1, 0x1}}, {{0x2}, {0x0, 0x0, 0x0, 0x1}}], 0x10)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x4008004)
read$char_usb(r1, &(0x7f0000001980)=""/179, 0xb3)
write$char_usb(r1, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000140))
socket$xdp(0x2c, 0x3, 0x0)
socket$inet6(0xa, 0x3, 0xff)
pipe2$9p(&(0x7f0000000040), 0x4000)

2.311515363s ago: executing program 2 (id=1471):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
io_uring_setup(0x177f, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xfffffffd})
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000580)={@in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x0, 0x42, 0x0, "bd1c790806ed6dcd18899f9ea77ca9fb5184ff0ba54b7dfe784d2f6b7dcd9474d9b295588ac0b991d5c66461eca3f1ff5543acc6c970d0ad22d692e84d692972368e64c272da633a217b45fcc8b1ff3b"}, 0xd8)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xd)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000340)="031f31b1f09d76af21e3b0224966a232dc1f5bfd8a29f730b10a53e756087a1df416fd804b636964220910b05962d95d7fb7873e8a0b7b62d7384dbd12b536f0e55e588092441663f9665e4b39f8eb3430840ac3c6ad014d6268fca6b3fc43da09b1d0a95d18e26a8e0ddd857f4911abb72ced02e4f1fe5ebb35042436374c7119229c019819a8491bdd74a299ca4fa71ee05f4c49c99de404b76d08fb1938674fa45fd06104cfcc08e9c017a2769a77e1a9e4da0e451353ca53b990500b18e4f4bb5cf1309fe4707c3f7200"/218, 0xda}, {&(0x7f0000000640)="ffb3ef96fd55310531a92b9d4b2ebcb168c3e90db153fe8bc3c9e2cfd50d22329495b92a7e12a948fff8e40f44798512135fd8fec900cca0c10e9e61d61cff5507f9298209ab8dd95ba0cb024a07dc20d07ac8940c729de29318e23818b2169da4374e8ec904573105b3dafbed9c3958b6570ec6117f2a8b7823b94056c0bcfd679f57db483bb7631bfd74f5f73cdebd19d4bd31a81d7c73c4428a65dc3820987e1ea1c45773112d4e2b1cc8064f220c7b2d673f84d4b1a5a9aedc2063b740198f57d0848358b2cf118bfcdc7c40303dee672f1ca6384e006460df438bde154a0c", 0xe1}, {&(0x7f0000000140)="74812905b8bd297a48dc5adfa4052d6e7cdd8c1615a231859ac522b4ae78d7f1b3619ed73f0e93cf3ccd30f4e58303dfd9d20af483a3406d486bad53698267735b", 0x41}, {&(0x7f0000000000)="7c73c1e117e291cb6cef4163ed06963af9a19a5183aa91163ef7aa02b707e09546e781172decfece433c", 0x2a}, {&(0x7f00000004c0)="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", 0xfe44}], 0x5)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
ioctl$sock_proto_private(0xffffffffffffffff, 0x89ec, &(0x7f0000000300)="deca427d6cf525400c896752b0dda1c3e5738f6b72a9340dfda5f6033c72c40a06e128bb")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f000000e0c0), 0x10010)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000200)=@gcm_256={{0x304}, "00e0f07600", "832b4d2434b35bca8c0b78d2afff6d70d2025c7f53123828322d5af0d5c6c3a5", '`\a-N', "298f0e6df9ae9b3d"}, 0x38)
sendfile(0xffffffffffffffff, r2, &(0x7f0000000100), 0x100000000010001)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0100000006000000080000000900000000000000", @ANYRES32, @ANYBLOB="00000000000000303ddc8908000044330114ffc19c9ac7d29b1be7a01ce6caeffffa090000006f75dd90a98ae50c034b1c8453970004ed0fcc14ae39927c722773ae6ae593159ba4224563bbc5469392de87d4c04c3ae814297434", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0)
fstat(r3, &(0x7f00000003c0))
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0500"/14, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000000010000000000000000000000b0a2a7cfced89e25"], 0x48}}, 0x0)
io_setup(0x1, &(0x7f00000004c0))

2.090507065s ago: executing program 3 (id=1472):
modify_ldt$write(0x1, &(0x7f0000000040)={0xc}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067000000050000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000400)=@raw=[@map_fd, @jmp={0x5, 0x1, 0x3, 0x6, 0x0, 0x50, 0x8}, @map_fd={0x18, 0x3}], &(0x7f0000000640)='GPL\x00', 0x6, 0x49, &(0x7f0000000680)=""/73, 0x0, 0x2, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x7, 0x1, 0x80}, 0x10, 0x2ccaa, 0xffffffffffffffff, 0x7, 0x0, &(0x7f0000000cc0)=[{0x2, 0x4, 0xd, 0xb}, {0x4, 0x4, 0x207, 0x4}, {0x3, 0x5, 0x5, 0xa}, {0x1, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xa}, {0x3, 0x4, 0xb, 0x342941b6c525dbcf}, {0x3, 0x1003, 0x3, 0x9}], 0x10, 0x3, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x14, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000000700000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0xfca804a0, 0xe, 0x590, &(0x7f00000002c0)="4ce02b9d64e50d293ddb0ae4b8a0", 0x0, 0x4003, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x15b, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r1], &(0x7f0000000340)='syzkaller\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x1800000000000060, 0x0, 0x0, 0x0, 0x0, 0x2300, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_open_procfs(0x0, &(0x7f00000004c0)='net/wireless\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x400, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
unshare(0x62040200)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000380)={0x100000, 0x0, 0x0, r4, 0x8})
unshare(0x62040200)
socket$igmp(0x2, 0x3, 0x2)
socket$inet_icmp(0x2, 0x2, 0x1)

1.503775081s ago: executing program 3 (id=1473):
r0 = socket(0x10, 0xa, 0xe)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
mknodat(r1, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
r2 = openat$sr(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000100)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000280)='./file1\x00', &(0x7f0000000500), 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='f2fs_destroy_extent_tree\x00', r2, 0x0, 0x6}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000640)=@newqdisc={0x114, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xa, 0xffff}}, [@TCA_STAB={0xf0, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0xcb, 0x8cb0, 0x5, 0x2, 0x5, 0x10001, 0x6}}, {0x10, 0x2, [0x200, 0x7f, 0x8001, 0x7, 0x7, 0x43]}}, {{0x1c, 0x1, {0x6, 0x8, 0x7, 0x4, 0x2, 0x5, 0xb, 0x1}}, {0x6, 0x2, [0x5e87]}}, {{0x1c, 0x1, {0x7, 0x0, 0x1963, 0xff, 0x0, 0x9, 0x6, 0x2}}, {0x8, 0x2, [0x2, 0xf26b]}}, {{0x1c, 0x1, {0xa, 0x6, 0x5f8b, 0x200, 0x1, 0x4, 0x4, 0x3}}, {0xa, 0x2, [0x0, 0xc65, 0xc]}}, {{0x1c, 0x1, {0x3a, 0x4, 0x8000, 0x0, 0x0, 0x3, 0x0, 0x5}}, {0xe, 0x2, [0x2, 0xc0b8, 0x8075, 0xfddc, 0xf]}}, {{0x1c, 0x1, {0x7, 0x5, 0x5, 0x8, 0x1, 0x3, 0x81, 0x1}}, {0x6, 0x2, [0xa]}}]}]}, 0x114}}, 0x0)
socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r5, 0x0)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB="200000001a1401"], 0x20}}, 0x0)
r7 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r7)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r8, 0x400448e0, &(0x7f00000003c0))
lsetxattr$trusted_overlay_nlink(&(0x7f0000000240)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380)={'L-', 0x813}, 0x16, 0x2)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0186405, &(0x7f00000000c0)={0x2, 0xffff, {<r9=>0x0}, {}, 0x1ff, 0x5})
fcntl$setown(r0, 0x8, r9)
syz_usb_connect(0x0, 0x24, &(0x7f0000000540)=ANY=[@ANYBLOB="12010000db9d1b08d112e2fa8b70010203010902120001000000000904000000ff041a007c69d9f6da425e9f82b7197befaa8c248dd6f20b75b1ba4603ca4e58762e30796a2bb625011955d347b02cd3a3b57fedba6cf77c2a5357dc4b11aa1717a7d6b3739cbf340c1f53c007ca328186f33d67f272f45153c3345e23d8636d49ed7a7cdfe1e1ee0488ec0239b5693e4198788b5eb6c53334f2fa49dcd85e82b436260c2f896d9f72beb20b2bf71093eb63b64aa1173794052fa64351e54e9185c2bb1edb6a258a50b81f9aca007fc030221fbb8b6f3dcc7bd052513ec5618c41f591b04d06a4517f59b2894dbba355"], 0x0)
ioctl$EVIOCRMFF(r7, 0x83c0550b, &(0x7f0000000400))
setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, 0x0, 0x0)

948.929286ms ago: executing program 0 (id=1474):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup(r0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000200)={0x1, 0x0, 0x0, &(0x7f0000000140)=""/41, 0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000080))
r4 = dup(r3)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f00000003c0)={0x1, r1})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r6=>r5}, './file5\x00'})
r7 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r7, 0xc01064c8, &(0x7f0000000200)={0x2, 0x0, &(0x7f0000000300)=[0x0, <r8=>0x0]})
ioctl$DRM_IOCTL_MODE_GETPROPERTY(r7, 0xc04064aa, &(0x7f00000003c0)={&(0x7f0000001280)=[0x0], 0x0, r8, 0x0, '\x00', 0x1, 0xffffffc6})
r9 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r10 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r10, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r11=>0x0], 0x0, 0x0, 0xfffffd52, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r9, 0xc01c64a3, &(0x7f0000000280)={0x2, r11, 0x0, 0xbd, 0xa, 0x1fe, 0x1})
r12 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
r13 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
write$sndseq(r13, &(0x7f0000001380)=[{0x6, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @result}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time}], 0x70)
close(r12)
r14 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
r15 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r15, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r16=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r14, 0xc06864a1, &(0x7f00000030c0)={0x0, 0x0, r16, <r17=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r12, 0xc06864ce, &(0x7f0000000340)={r17, 0x0, 0x0, 0x7, 0x0, [], [], [0x0, 0x0, 0x4], [0xfffffffffffffffd, 0x0, 0x4]})
ioctl$DRM_IOCTL_MODE_GETPLANE(r6, 0xc02064b6, &(0x7f00000000c0)={r8, r11, r17, 0x0, 0x0, 0xa, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)

851.720662ms ago: executing program 0 (id=1475):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="380000006800010000000000000000000a000000000000000600070008000000100008800c000100000000000000000008000500", @ANYRES32=r1], 0x38}}, 0x0) (fail_nth: 10)

721.283385ms ago: executing program 0 (id=1476):
unshare(0x62040200)
r0 = socket$inet6(0xa, 0x6, 0x0)
listen(r0, 0x0)
r1 = syz_io_uring_setup(0x2705, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000001440)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000001400)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r0, 0x0})
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x3, 0x2, 0x0, "cb00001400000000000000ffff0000e700"})
r4 = accept4$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @multicast1}, &(0x7f0000000180)=0x10, 0x80800)
sendmsg$inet(r4, &(0x7f00000013c0)={&(0x7f00000001c0)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000001380)=[{&(0x7f0000000240)="bf10f26c58f93bf85d3c637238d822faa10e5f40f02051736226f2c87897d5cc868994a9f453ba8c136203143f47dae580dc09f6fcb258a26dec815b3c11898b9d939631e0324dc80f17ed42786475042737395348620c03a8b15a50247b801de61cbe108e474e711ee19002cbbf030e72", 0x71}, {&(0x7f00000002c0)="f69939c21dabd6adafea79457a57217ebddd0031f7a89fdd0ffd7a22b1c2b0961204bc7b19656b7a57ab52d5c4e26e68da86e8c999633b75febd0e27ffc88d05494efd27e3c5ff84f67dd76df9bc4f32f78e3df05b0fc709d92354c2361460d7dcb0121e1112b0e3707912e0a78f1c0a3d7a7f35587f9aabc475feb3541b851ad41c5af77c5537818f06a51605799fbb741e24fabbc12c4281151c377f", 0x9d}, {&(0x7f0000000380)="11657033f7d7e44111305c99d928795b734e4ebc2f0c2e8d983b4e546cb40e724a938c668f2d657ef694fb767d34fc1b944ac01fe4508a9fa85fa024576db031760ef3e83135e05097abda55ce98a0ff830266619091e1ec0bf8b33e471cc40948d7a86abe17f8e3cd24d1bd92afd5a52dbaa37be63aceab33b25b0fde4e92380414d4109dd8414279fb2d57a8d98c52182cd7b0e2d4456641177484576699fd070e5b15cc36c9f740ebecde077e58ee87ec564435076a8e81ee0820c3df5f962a1a520f6da3bd6f7d058956c001ea14c7377636c82804917a1e103f6ac44232abba51d234d6eb88dff16d148fdaff9d3b76f750ff7f7e40f80582c3a7cd867a7a0ba09061688ecb096a36da0de9ae4a3a333537ce6b878eece15151925b7d657e5519f6e52763907340cd6cf6bf8fdd24bf31ceeea2f85481c21214e3364d747d61458ee4b336ec8b16d05f3549d9082ab106512594a71828b9a57c632ed89120d576c887835a5a83e0c43ac8dcc6b85c0364bccdc12c382aa70952999ba6d157855c106867950abdbc3ef9a37480736b51dce3288a1bbaa6ef00558ee12dd4b5252f80613d2569e2c1355ba01577284556807af65d3995b643f95ee9db1b4e87c1af74ef0bb41978fb348377e55d1c732a4b4ab70d81cc6cf8273a197198fc1883b3909c34a25b3dcdf4d422d82c1cb89483ea35704bea45ee196ddd1ddf48ec399ddb16ff0474bed0727c80f6007e08b7fbfca0297268ef5d2c6def6ec18bfa4d5147497f4ff708ffc2f8e1ae66bae0fd8a71757fd2280672f322877cda64fa7eb6ad242523875a27d8178d82f2c192a15b014f10f5b702a74e504bb705ea6d9be4fe2809d5b94985527fa4dd8a4bdf6e91a5d5b511f295d23531efd74f104ce969f3e9324023cc261e868795b73a1c17a44161f2073e695de1956653a6f6825f3a0d1908dbb3668144ceed2fe1b0d71b86c0124329316196007c78641fbf00eec13e91ee4106b988018c0ebe8148082a3d96aebdb7e8ccd30b13d20a1e6130483be823f94ffac89a4fcf14a5c4b028f0349565e19be473b2514b3bbbd6332b14a95020ff678bd531cc20eb350b6735427dd2e2808d8563c7f0365bdf8c2a985bc7689f5e98ef6d78b3ed6fd98388c270831a704d11ca16183f2cbc23e1117532cfbf486108b21a748682fc871916daf2cfb62da2661c8ddcea80e514fc6ccc3332bd6adddcfe2238815c3afa013f1da3d3b369af98c29b9ad6e5da214308a1f96577cc38468432633e2cf17fb473d07db75896e186c2e5df3b01bcd40a349b62a589f497df92543abd16df3f5bd1a889b05fa1c020036c0cfda8fcc6c001864de40d436c9dad1226d0c9593e1d7bc364aa8e00be276caec2db9a28b490d8cd653ba5fe44c775a50accae88537e89b30d2c63733eb3f6eac8f0deb1417a79d5587095d28a4b7da5a80ef261b2e41c8aab8e9fae5a941ecfce90b5fc06839328e5b76cde97990681974a681cb9fc0055e4a57f75202a05e794b3cc5f07d69b0c75011f4e13a94f970aed6105e9409aa6f91c0530944b4da033e264a0dccf054f78cde5b5311724ec00596b76e5920524c82fd2e6dc45cc5b4fa571cbfb85fb8c6feb1c32b8a7a1c25d93b89341dc24062c6bdbf79f614df72685c6a9cbe3aff2872bdc7dba69e1e9bef6c983ae969dd5f763f59aea4fe139a38a09cee429c96d8c87d969777a6a89bf8ba1868712a07018f3b9c3555f337f4857c0a0a84f6a652d5793c141e1f493cc496230dfeeadef72a79d98058231d386a033012e4900e8ed1a456b4ff11a772e96dd0e92f251955b1882d8fcbbad14a62586578072e40a4be9208eef614da6d05b9e747d4f8cbe667b6529967f65da8daa1d723a1a2d4990cdc878c51bf29f3764c77123b8ff8b400b6601e9f71c02e956281ddb1d6bae4f4a3d04971f207f6c53cd99ab430548cc4bb06643b77aecdd37b44a03102a60eb30cf307fcbb3450f3c144a4e83486c0f8a5c6a4483bdba018950db75535256d6ecb33cff517bc17da9824dc2e1bea1c23d587fe4d6f7bed43fdbdd801b63d107b5ced277e8711abb00c404cf24476d403ff189013a150460a466c3c98fb399d58fc0f209da9196be74483f551b1fe81d85ed754703c7d3cece05373b148a0f95fc9b347898d76c919d7f725dfff28a994dbc068c535e2674d793a4cf94789f79695cee76aaced3e56f7ec475fc3548b4d9eadeb65b1010826b835304561df2f90c79aaf10c2570a63b3270f0c3cd3a75f340072cbb05bb8f161508eb9d8e57fcd5def04c679dc410dcb7da01f7a7173ceff89799b5efef0f2250d41d3f6ceaff392947ff4938123745536d4604650f066aa6f05b84b348f8db9c1c21ea8fbd6d2fd96f13931ac8a7628e391c0ff94b72db1c47874df2aea4e2495e1dc830366ea7f38a9609c3f7173fb5c16f863f2b01da9caa184344c0c02ccbc089cbb0b7595d72a930a3fc72971838a7a0ed96df05b0865f5357d1b81c841d1322040ea613f903a7df29ed86c99752b4cdd9e982738a96858459d27bf79a6c649c276c7e1172b63480f6dc1eb1165d1ab66f049093322cb14daa2a162aa50f2614df6163a0489b2bc0aaeedd5ae49c6341b246909997a47f2c23dfac11da3d61baf1acbb54bb5f8ff9463234526d25a8fb3d32e9707eaedbacf97b43e99633374de601f3015d7ee8f8e75cc04aae96ce24aafdd3666563c0c76523c6bd54b88d88744df6dccfe26b0b4e24ebacbf4dbfd42076d0c9d430c3662f95041ed0806a5788bd4895afe0b367a7cc5e02717cf5a22211fd811e0d364110f5a12ecc89b9d29ae72a5cd00b1b76cb8853fdd5771a43d238c042b5c7b62cee5dfefce8f3aefaf2436cccb8ed85b1ce194f629ed1e0f5e1a5d0e46c78e77ed6e7c1c5a574d2cf30aaf138415d0e6ef5748d7bbc9e3b88e495adbe02fbb86e96fb3cc318da26aa6909da205324368cdf41e98a72e4654233c77fe88ebde32f877dbcab5f1bd777ccc2db8c35cb1c18048f7049914c9b60ac7b460811c1ece3576ca70be511f43c74dcac53cd6d25857bcd61b3675ba934822fb6cdeb3b344308f7de2bce019b25419df7dfe00f54ccecd6ca01efc5a95156aec2ea1cd60f271109b402c2c8395d627873a5a7c57c2b03f4a6e0d5ab8161ff9ffa378e4779695697dc8153469a340e0d1136ab660d7f7a222ce6813ad0bd38a9ed9402c067a02913812f99f19805d38fa5ef1c25db4a47b605618a2110bdf43db648e80074d2a37dbd31abfdefa925171478d7f60ef042cdfe017b66e3580f5cabccd4ec7551b2b634ba477c2807399cee0a30ac2c5b6b089354fcbf7a1440490f8ba6b3788d5d985d6da886076950dadb78ec369d0c1c0e4754fd14e9b0614f366523bb4f76ea7f860bb5f5e9c2cd2b8db9bf4542e3bf761ebe6800c76441056fdf807fbbcfb091f806c38e6f8895e5cffe6817fcde32e651c3c832434d6bd1378e83603c78ab98e7a43f517f9afe11037d49acd05559465b21276ac477904ce8f154827176a747dd3c130df86863f2a158b5764060c517e28a17226a4531e174769a6c2d73a340df819f0fc2440a2e85bd776eccb5c415c0417c59c6b97ca3587a1fdf8b0bdf4bd4d5e1f579987b3cd366289c681c9f02802eada09f11ba239932860d381fe6e4fccb8b34387e3f39b87cd7f06241d906b3093162c0fa3ffadea4d2e7d91ab969047b48aaba6c57ac15c8782c6447a7acfafb3f897be80e20be47f1d3b573f3ded3ecc8d0e41a5b528778c2312945ea78fa42aaf17ecd577be990b577b4d8defb3936988fab316d1c25c303b70b9b10991c6bea28d0a35014ce5ebc4b46835cef91b1df9fa91010465e6d59a07840071ce278f1dbb22c164419143f368f28c1015141331ba738533ca0b65f7a07ec4408fb4598bc417b971abf8c94eab94958a343b08bb347abe228c05486ee3819496d42cf46486018f3cd18a2938695debf79178209b6b72931ef49003f9c0b8fff862baa8063577838767461ada205bfb47b83d37548d5ae1fcb5a4599938db34213ca7d055cf270272dcebb3c3f908c555b354dfbca67948ae5e9fbc9ae3120d1beca8f9d5868aeaa0ef5fec8edff07c464dea6f92e32a1002298953e00c4f840f2df4e53ac28f376061f5c643883dcfc1f3242bed2f9b86946861a3ce1d31fe1715036f612a3eb7b7ca8cb767c4568336e07c4f1f191207d2c8dba9459576291a3438ec6c8500a5f46ab8128a91762bf8e27986eda9d7f57a4fdd85981194f9edfbfba42fb7fe83dc31b20351a49b87e3c0ebed30845d760661827a390c9ec2faa670be2cf01b27d1ab644b5c267e4b231128220c6e35e2af64b624f64dcef241b9b3eedce2d47761ae09e82b013b2d7ddc33fb879cbba6ad9ce2ad8ee03cad696069bf5df8d068f9342f4b1c60630f32295698dc8a0fc9facea462909f455a1169cb2a7c183e337e35f09da55b9116ca593ac8416f1e4eb7d741e9a310a9f0a44938c479840edc599551ea37720abdc3dbe6a838c2a682d2f82f74cc67a5ce2b02864a47fcd39b248eb580116fc8d89e5ec99e0b17ffb98914421f8dac3ec152e6a464e6dd9a0413c747f8e4acc4b4065900b5eabe2ab5de7be6eb352ef01dabad0d18aeda8f5fb4034b2500d5af84bd8165749ee2ded0562861fd740b55a519aa7f9e7a3ab96ec2fc5d472e91325dbc05c46ab8cdf11f8db8710e52d026e0094aa035dd2f2f9a3430a8a99df8c9ef0755dce599406818316d040188a9d57bad2235bfcf9f462d42a65621492375b6e1947924e3c8b6f2f50e8c8e3eae0509d36f2dbb2ede194cab74f7ecdbee7b4ceb898a5685eeab5d281e39ea6e6e5b99797501410db8e295a5fdf22c09ff0be1a8d1808d41c465fb81fdfeeb2302a62bea6bbc3c675fd5296fceabf36dd52d0b717fd232f0c13571f9c43b4073236cd4b547589f1496029098e8f0d0ef7e28850f3d46375810fdac2d9d2b28052420d3e20b4e4b8879e59b27c4322a6362feb210dfc8fa483a5123c815b7094242d3b6a9b0e0c6aedd9a86aad2efd9b1da9e9c9585e98ea79c429c27ae9592eca4ca5c91e4f220ffb963e57a45dafbafc90c2fd282c18ddfb524a9da11c640cb22e2a7daf30a0cad87c44459f37055a62421b93c891f66442d054c9ed5109f3dd7e6706d524296150ef0889e6959d8a4ace9281b0b813a2954c0b8a151a9ee2a9ad0bcf6af6857496a561cfb320654fb998bc975ad7088ddb96f902298ab710c36ac65421290de86122d6f3fa1491b4b9601d845310488c67729cfe804213c82b33f4e653caa4e5b3ef4b3b7fa51e0ac043a273de00f9a0e32d4ba77dac293e1997eccde3801bfbb56ed47417f87629a0fe1e4afc8a3770e3f0cc88347390e92193119c4a71a10e72bd575b27da5c8690b1b6215634efbdeae8723aaece27d85f09bf17339fad06c419056637f977a3fa158d0b5a2aaecdf2a7f42516131002aafe6b7dcefab60586f14d8bd2546d7166ab79039407798ef7c681a7ccbf0f4610bd94b53ac2789a0fd8bd848ec2c4f307035928621ccfb64061e8e411f77acb8db9cf272bb316e5958fef4e94a0b37e6e479e812d38501a7b1829779ff438f0ed10528ebab6d302813e6b23688c9e49481fd8e09bb3774a73d15227dcc3f77b9509fe54762fc3356dfb3d544eff0fd2b0df02ac7ff93202d068c2cc1e1e4c04ef7adb3ac3f310d52f0c87ab879f6cc92fd7b17ae5ec5437421527f353", 0x1000}, {&(0x7f0000001480)="5302bdc406c051ad6d3586c872f4a96e3cf14b29996da0ad22c9dcf39edce18fbd5efc0a96e026381d14f200c9bcdd1fbae75ab2eb96142e159edbdf38ea79cae50854adbf3ee2366c4b59706938ba4631961f79795d9f3aab982dcee643e8929ea2151511a0726767a0302fd6c95a2cf0fa86ec14d3acf15e399b376de8f08e3faccc7877852bcb4d7fb98c41c1b1765c50b6f85344911138df2d916bf9ad66ac99c54eb1cd", 0xa6}], 0x4, &(0x7f0000001540)=[@ip_retopts={{0x6c, 0x0, 0x7, {[@end, @cipso={0x86, 0x5f, 0x3, [{0x5, 0x6, "d6075875"}, {0x2, 0x9, "05c514c8397c5b"}, {0x6, 0xb, "8baf0d89d258827885"}, {0x1, 0x9, "af6ca3046ec9a8"}, {0x2, 0xb, "9dab113512cc80ec6b"}, {0x5, 0x10, "33f62cd2a3f3d4b65a18092207e4"}, {0x5, 0xd, "4e4cb81f0a33070a86bdd5"}, {0x1, 0xa, "539d6d055b99bde6"}, {0x7, 0x4, "8109"}]}]}}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x40}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x10}}], 0x8c}, 0x4040001)
io_uring_enter(r1, 0xa3d, 0x0, 0x0, 0x0, 0x0)
r5 = io_uring_setup(0x6249, &(0x7f0000000040))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0x18, 0x20000000, r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x15)
writev(r7, &(0x7f0000000200)=[{&(0x7f0000000040)="39000000130003474cbb65e1c3e4ffff06000d00060000000700000025000000040016000c0014000000001f000006060400180000008cdb25", 0x39}], 0x1)

720.720065ms ago: executing program 3 (id=1477):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000380)=0xfffdffff, 0x4)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x17, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018010000786c6c0a00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10)
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_timeval(r4, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81e8943c, &(0x7f0000000680))
connect$llc(r4, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x10)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000002380)=""/102389, 0x18ff5}], 0x1, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r5 = add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r6 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0), 0x10)
r7 = openat$cdrom(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$DVD_AUTH(r7, 0x5390, &(0x7f00000000c0)=@lsk={0x0, 0x0, "dd86b2d709"})
keyctl$link(0x8, r5, 0x0)
r8 = add_key$keyring(0x0, &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
fchdir(r6)
r9 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, r8)
keyctl$restrict_keyring(0x1d, r9, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x1e, r5, r5, r9, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, &(0x7f0000000000)={'\x00', 0x0, 0x2, 0x4, 0xfffffffffffffffd, 0x8000000000000004})
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef42b000000e3bd6efb010511000b0002000d000000ba8000001241", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

555.512852ms ago: executing program 1 (id=1478):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/vlan/config\x00')
r1 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000001c0)={'bridge_slave_0\x00', &(0x7f0000000100)=@ethtool_link_settings={0x4c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}})
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usb_connect(0x6, 0x46d, &(0x7f0000000200)={{0x12, 0x1, 0x201, 0x72, 0x1e, 0xcc, 0x8, 0x19d2, 0x1545, 0x7096, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x45b, 0x1, 0x6, 0x6, 0xe8, 0x7, [{{0x9, 0x4, 0xd8, 0x3, 0xf, 0xff, 0xff, 0xff, 0x7, [@uac_as={[@format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x59, 0x1, 0xb, "8417"}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x3, 0xfffb, 0x7f, '?|'}, @format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0xf, 0x8, 0x7, "5153127efb2975e6"}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0xfb, 0x2, 0x88, 0x6, 'Y', "a9"}]}], [{{0x9, 0x5, 0x4, 0x0, 0x20, 0xfe, 0x7, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x5, 0x8}]}}, {{0x9, 0x5, 0x0, 0x0, 0x8, 0xc, 0x17, 0x0, [@generic={0x101, 0x23, "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"}]}}, {{0x9, 0x5, 0x6, 0x4, 0x40, 0x5, 0x76, 0xf, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x8d, 0x3}]}}, {{0x9, 0x5, 0x9, 0x1, 0x10, 0x80, 0x4, 0xc6, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x1, 0xf}, @generic={0x3b, 0x23, "6bb749a0b50df94db9185a59c31cf790542a83fed0b1994bf14777d11260e9e0732035ea7d2c9ece3db4bab9d580781b9d04a7e75b9e37fbb7"}]}}, {{0x9, 0x5, 0x80, 0x0, 0x400, 0xa, 0x6, 0x44, [@generic={0x9f, 0x23, "40461603cc134147babd02c65d1ee05a763cc78cc80ecc73e93b8957db468381a20ac9f63466aeb3ceab03d6200cf25cfb4241d34eb0ac547b5a617d1a2f44f852031112b54dab81695b03e59db93c477007940bbd13cbabcefbdd2dcc2bc55832f509fb37b8bec54cfcd120c690c12a55a1be1f860c0884529bf000b9cf9e23218165dfd38ff1194d132d8139fa702253d91e8e52899ff4f33d08c1b5"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0x81, 0x6}]}}, {{0x9, 0x5, 0x7, 0x3, 0x8, 0x20, 0x10, 0x69, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x7f, 0x5}, @generic={0x20, 0x6, "4d128f58b0da9c7c53ad78332de0b680befcba581e9179bc97e7824aefaf"}]}}, {{0x9, 0x5, 0x2, 0x3, 0x200, 0xf, 0x8, 0x8}}, {{0x9, 0x5, 0xe, 0x3, 0x200, 0x4, 0x4e, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x5}]}}, {{0x9, 0x5, 0x0, 0x4, 0x200, 0x5, 0x7f, 0x6, [@generic={0x56, 0x21, "f3598cc5c8aaa7198fdf4e91e7c6405e26ebf876fddf5a9ac824cb94d868aa8d0df5eabd4e8ed948bb65f573c42edf61c7d15b4eaacfd632b84e4a39ac8183e14a8cd25d8b96c695e0bd4a6f2f0027db5a85ae5c"}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x7, 0x3}]}}, {{0x9, 0x5, 0x4, 0x1, 0x200, 0x4, 0xc1, 0x6}}, {{0x9, 0x5, 0x2, 0x0, 0x10, 0x7, 0xb, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x4, 0x40}]}}, {{0x9, 0x5, 0xa, 0x0, 0x3f7, 0xc1, 0x2, 0x4}}, {{0x9, 0x5, 0x2, 0x10, 0x400, 0x4, 0x2, 0x2, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x7f, 0x1ff}]}}, {{0x9, 0x5, 0x2, 0x2, 0x40, 0x4, 0xd, 0xf, [@generic={0x101, 0x21, "20c0968b496c0714e72b4ea5ba38da987f8f209aa7a0f7f94910758e4d40a368569557af2686c74faf5b6d91b06506aeea76c8aac0cecb206cf05f7a2da62b0c3b2d9d16cadd638a5ee632503defd1e95b813df76ddb201c04f33173a397e3927d384a14b309b2eff858edf5b2f76ab4fb019790f5cd645f87fa0185c624a5f3a87ad26fa1cdf4fd228252db5fdc584b404b28b3f7f5ddac4a0176240e3094bc4088778a0f2b60f367b50d643387d6907af2632a6b000cf9642bcf76181fb4d43fc67a4f1194f88c835cefa5ddd54b62647acf3fd665f6be46cad498f23613fabb136628880a4f4daed12eb3927185a598e6617a4b37d2d9836de245bb6aaa"}]}}, {{0x9, 0x5, 0x8d, 0x8, 0x400, 0x1, 0x36, 0x1}}]}}]}}]}}, &(0x7f00000007c0)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x188, 0xfe, 0xd8, 0x5, 0xdf, 0x4}, 0x58, &(0x7f0000000680)={0x5, 0xf, 0x58, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x10, 0xf, 0xa, 0xd1}, @wireless={0xb, 0x10, 0x1, 0x2, 0x6f, 0xc, 0x5, 0x4, 0x3}, @wireless={0xb, 0x10, 0x1, 0x2, 0x4e, 0xfd, 0x43, 0x9, 0x8}, @ss_container_id={0x14, 0x10, 0x4, 0xa, "9073bb71dace179694f71991335be65a"}, @wireless={0xb, 0x10, 0x1, 0x2, 0x4, 0x79, 0x7f, 0xecd, 0x9}, @generic={0x17, 0x10, 0x3, "f2bd47eeca7d7107d802d45d800d7c74d6cae525"}]}, 0x2, [{0x34, &(0x7f0000000700)=@string={0x34, 0x3, "2140cd8a44921950ff05a9c4da05d3e08d83c697f62780f4ce77649a093735326543d3aec599de7fdbcceef39aed3804bc8a"}}, {0x46, &(0x7f0000000740)=@string={0x46, 0x3, "cba7f83853223c3c662b026f08a5fcadd6fb2a7b304d8d116239e2d084750040b608ee6365d970b4f468ef18585ffe9f56bbddfea4bbe613772dabd12d443974de516712"}}]})
syslog(0x2, 0xffffffffffffffff, 0x1000000)
pread64(r0, &(0x7f0000000000)=""/242, 0xf2, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x94)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="04022b03000000"], 0x2e)

545.80639ms ago: executing program 0 (id=1479):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[], 0x54}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getpid()
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000240), 0xe664, 0x100)
ioctl$BLKSECDISCARD(r0, 0x127d, &(0x7f00000002c0)=0x522)
close(0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id='])
setxattr$trusted_overlay_opaque(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000040)='./file0/file0/file0/file0/file0/../file0\x00', &(0x7f0000000200), 0x0, 0x0, 0x0)
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x1f}}, 0x50)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000200095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x14, r6, 0x701}, 0x14}}, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$TIOCGPTPEER(r7, 0x90000915, 0x0)
ioctl$TIOCL_GETKMSGREDIRECT(r7, 0x541c, &(0x7f00000000c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000001000)='sched_switch\x00', r4}, 0x10)
r8 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$kcm(r8, &(0x7f0000001900)={0x0, 0x0, 0x0}, 0x20040000)
sendmsg$inet(r8, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
socket$kcm(0x10, 0x2, 0x10)

267.849462ms ago: executing program 2 (id=1480):
socket$rds(0x15, 0x5, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000005e0000000000f7cdde8467986e998cfcb510306f1f5a20ae69aa98a853ab62346c57e5b0fde6a8637df2fd31ae0ecff6a4e1912af21673a4a9afcba4e008ebb4cd625446a79765ac1fa77e557da71ad811be5da55cd8436463ac9eff89a3ed26e7ee99c918d3e0c782680ec108aec94f8bfff8eaabc6a0310a24bfc49175ec4669a59906f18a4ad02edda5e9419986847b610387437cb4ae9f10c6b8718e5f3f76da3af0e2440885d049aabda2d9244dc4f4", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r0 = epoll_create1(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xe000001a})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r3=>0x0})
r4 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r4, &(0x7f0000000000)={0x1d, r3}, 0x10)
setsockopt$CAN_RAW_FILTER(r4, 0x65, 0x1, &(0x7f0000000040)=[{{0x1, 0x0, 0x0, 0x1}, {0x2, 0x1, 0x1}}, {{0x3, 0x0, 0x1}, {0x4, 0x1, 0x1}}, {{0x2}, {0x0, 0x0, 0x0, 0x1}}], 0x18)
sendmsg$nl_route_sched(r2, 0x0, 0x20004000)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0, 0x54}}, 0x0)
getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xc, 0x0, &(0x7f00000002c0))
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r7=>0x0})
r8 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r8, &(0x7f0000000000)={0x1d, r7}, 0x10)
setsockopt$CAN_RAW_FILTER(r8, 0x65, 0x1, &(0x7f0000000280)=[{{0x1, 0x0, 0x0, 0x1}, {0x2, 0x1, 0x1}}, {{0x2}, {0x0, 0x0, 0x0, 0x1}}], 0x10)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x4008004)
read$char_usb(r1, &(0x7f0000001980)=""/179, 0xb3)
write$char_usb(r1, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000140))
socket$xdp(0x2c, 0x3, 0x0)
socket$inet6(0xa, 0x3, 0xff)
pipe2$9p(&(0x7f0000000040), 0x4000)

263.91854ms ago: executing program 3 (id=1481):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000380)=0xfffdffff, 0x4)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x17, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018010000786c6c0a00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10)
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_timeval(r4, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81e8943c, &(0x7f0000000680))
connect$llc(r4, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x10)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000002380)=""/102389, 0x18ff5}], 0x1, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r5 = add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r6 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0), 0x10)
r7 = openat$cdrom(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$DVD_AUTH(r7, 0x5390, &(0x7f00000000c0)=@lsk={0x0, 0x0, "dd86b2d709"})
keyctl$link(0x8, r5, 0x0)
r8 = add_key$keyring(0x0, &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
fchdir(r6)
r9 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, r8)
keyctl$restrict_keyring(0x1d, r9, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x1e, r5, r5, r9, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, &(0x7f0000000000)={'\x00', 0x0, 0x2, 0x4, 0xfffffffffffffffd, 0x8000000000000004})
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef42b000000e3bd6efb010511000b0002000d000000ba8000001241", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

49.484631ms ago: executing program 3 (id=1482):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
ptrace$setregset(0x4205, 0xffffffffffffffff, 0x4, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x8, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000186a00000300000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x21, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCGIFADDR(r2, 0x8915, &(0x7f0000000300)={'netpci0\x00', {0x2, 0x0, @multicast2}}) (async)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131002dc366a1113b349046c7b51cebeeb0544633959a18e2b983aa30fc9c423f1828c732361e0f1dbdaac3d78143ee458ddcec8ac797b0362b5557d5ce4aad627a0198173a728ace768d2b766ba9ba9966ad08a4905679b1c32b14b703e672"], 0x20}}, 0x0) (async)
recvmmsg(r2, &(0x7f0000000a40)=[{{0x0, 0xfffffffffffffd7a, &(0x7f00000003c0)=[{&(0x7f0000000100)=""/206, 0xd2}, {&(0x7f0000000640)=""/215, 0xcb}, {&(0x7f0000000200)=""/7, 0x7}, {&(0x7f0000000280)=""/118, 0x76}, {&(0x7f0000000240)=""/43}], 0x4}, 0xffffffff}], 0x1, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0) (async)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000044882, 0x0)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
io_setup(0x1, &(0x7f00000004c0)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000000c0)=[&(0x7f0000000400)={0x3a0012fb, 0x2759, 0xf, 0x0, 0x0, r3, &(0x7f0000000000)="98", 0x1, 0x1000000, 0x0, 0x10}]) (async)
r5 = socket$inet6(0xa, 0x3, 0x2)
getsockname(r5, &(0x7f0000000d00)=@xdp, &(0x7f0000000c80)=0x80) (async)
syz_usb_connect$hid(0x4, 0x0, 0x0, 0x0) (async)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0) (async)
r7 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r6, 0x4004af07, &(0x7f0000000240)=r7) (async)
ioctl$VHOST_SET_VRING_KICK(r6, 0x4008af20, &(0x7f0000000040)={0x1, r7}) (async)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70200001400894fb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x2d) (async)
ioctl$VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000840)) (async)
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f0000000680)=""/93, &(0x7f0000000700)=""/83, 0xdddd0000})

35.959322ms ago: executing program 2 (id=1483):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f00000001c0), r0)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r0)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYRES32, @ANYBLOB="24002d801a0001"], 0x64}}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r0)

3.849375ms ago: executing program 1 (id=1484):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000380)=0xfffdffff, 0x4)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x17, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018010000786c6c0a00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10)
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_timeval(r4, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81e8943c, &(0x7f0000000680))
connect$llc(r4, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x10)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000002380)=""/102389, 0x18ff5}], 0x1, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r5 = add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r6 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0), 0x10)
r7 = openat$cdrom(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$DVD_AUTH(r7, 0x5390, &(0x7f00000000c0)=@lsk={0x0, 0x0, "dd86b2d709"})
keyctl$link(0x8, r5, 0x0)
r8 = add_key$keyring(0x0, &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
fchdir(r6)
r9 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, r8)
keyctl$restrict_keyring(0x1d, r9, 0x0, 0x0)
r10 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
ioctl$BLKTRACESETUP(r10, 0xc0401273, &(0x7f0000000000)={'\x00', 0x0, 0x2, 0x4, 0xfffffffffffffffd, 0x8000000000000004})
r11 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef42b000000e3bd6efb010511000b0002000d000000ba8000001241", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

0s ago: executing program 2 (id=1485):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x11, &(0x7f0000000380)=0xfffdffff, 0x4)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x17, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018010000786c6c0a00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10)
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_timeval(r4, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81e8943c, &(0x7f0000000680))
connect$llc(r4, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x10)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000002380)=""/102389, 0x18ff5}], 0x1, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r5 = add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r6 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0), 0x10)
r7 = openat$cdrom(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$DVD_AUTH(r7, 0x5390, &(0x7f00000000c0)=@lsk={0x0, 0x0, "dd86b2d709"})
keyctl$link(0x8, r5, 0x0)
r8 = add_key$keyring(0x0, &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
fchdir(r6)
r9 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, r8)
keyctl$restrict_keyring(0x1d, r9, 0x0, 0x0)
r10 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
ioctl$BLKTRACESETUP(r10, 0xc0401273, &(0x7f0000000000)={'\x00', 0x0, 0x2, 0x4, 0xfffffffffffffffd, 0x8000000000000004})
r11 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef42b000000e3bd6efb010511000b0002000d000000ba8000001241", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

kernel console output (not intermixed with test programs):

684]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  273.821318][ T8684] RIP: 0023:0xf741e579
[  273.822739][ T8684] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  273.829359][ T8684] RSP: 002b:00000000f57064a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  273.832436][ T8684] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f57064f0
[  273.835333][ T8684] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 00000000f740bff4
[  273.838173][ T8684] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  273.841057][ T8684] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  273.843640][ T8684] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  273.846520][ T8684]  </TASK>
[  274.750470][ T8702] sg_write: data in/out 92/98 bytes for SCSI command 0x0-- guessing data in;
[  274.750470][ T8702]    program syz.3.796 not setting count and/or reply_len properly
[  275.127753][ T8717] FAULT_INJECTION: forcing a failure.
[  275.127753][ T8717] name fail_futex, interval 1, probability 0, space 0, times 1
[  275.131307][ T8717] CPU: 0 UID: 0 PID: 8717 Comm: syz.2.798 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  275.134016][ T8717] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  275.136893][ T8717] Call Trace:
[  275.137823][ T8717]  <TASK>
[  275.138638][ T8717]  dump_stack_lvl+0x16c/0x1f0
[  275.139919][ T8717]  should_fail_ex+0x497/0x5b0
[  275.141393][ T8717]  get_futex_key+0xb89/0x1090
[  275.142704][ T8717]  ? __pfx_get_futex_key+0x10/0x10
[  275.144110][ T8717]  ? __pfx___debug_object_init+0x10/0x10
[  275.145657][ T8717]  futex_wait_setup+0xb8/0x250
[  275.146984][ T8717]  ? __pfx_futex_wait_setup+0x10/0x10
[  275.148480][ T8717]  ? ktime_add_safe+0x60/0x70
[  275.149848][ T8717]  futex_wait_requeue_pi+0x253/0x8e0
[  275.151391][ T8717]  ? __pfx_futex_wait_requeue_pi+0x10/0x10
[  275.153123][ T8717]  ? __lock_acquire+0x163e/0x3ce0
[  275.154488][ T8717]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  275.155909][ T8717]  ? __pfx_futex_wake_mark+0x10/0x10
[  275.157293][ T8717]  ? __might_fault+0xe3/0x190
[  275.158608][ T8717]  do_futex+0x2b0/0x350
[  275.159739][ T8717]  ? __pfx_do_futex+0x10/0x10
[  275.160978][ T8717]  __ia32_sys_futex_time32+0x1da/0x460
[  275.162455][ T8717]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  275.164032][ T8717]  ? ksys_write+0x1ad/0x260
[  275.165258][ T8717]  ? __pfx_ksys_write+0x10/0x10
[  275.166597][ T8717]  __do_fast_syscall_32+0x73/0x120
[  275.167955][ T8717]  do_fast_syscall_32+0x32/0x80
[  275.169266][ T8717]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  275.170948][ T8717] RIP: 0023:0xf741e579
[  275.172083][ T8717] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  275.177108][ T8717] RSP: 002b:00000000f570656c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  275.179422][ T8717] RAX: ffffffffffffffda RBX: 000000002000cffc RCX: 000000000000000b
[  275.181809][ T8717] RDX: 0000000000000004 RSI: 000000002000b000 RDI: 0000000020048000
[  275.183866][ T8717] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  275.185894][ T8717] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  275.188173][ T8717] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  275.190406][ T8717]  </TASK>
[  275.204078][ T8717] sg_write: data in/out 92/98 bytes for SCSI command 0x0-- guessing data in;
[  275.204078][ T8717]    program syz.2.798 not setting count and/or reply_len properly
[  275.743719][ T8732] fuse: Bad value for 'group_id'
[  275.745653][ T8732] fuse: Bad value for 'group_id'
[  275.930513][ T5343] Bluetooth: hci2: sending frame failed (-49)
[  275.935542][ T4788] Bluetooth: hci2: Entering manufacturer mode failed (-49)
[  276.051568][ T5383] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  276.174005][   T39] audit: type=1326 audit(1727595590.649:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.799161][   T39] audit: type=1326 audit(1727595591.259:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.827297][   T39] audit: type=1326 audit(1727595591.259:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.863905][   T39] audit: type=1326 audit(1727595591.259:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.870514][   T39] audit: type=1326 audit(1727595591.259:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.878821][   T39] audit: type=1326 audit(1727595591.259:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.885812][   T39] audit: type=1326 audit(1727595591.259:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.895028][   T39] audit: type=1326 audit(1727595591.259:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.901041][   T39] audit: type=1326 audit(1727595591.269:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  276.909581][   T39] audit: type=1326 audit(1727595591.269:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8735 comm="syz.3.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7fc00000
[  277.030903][ T8752] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  277.034260][ T8752] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  277.038675][ T8752] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  277.503104][ T8758] program syz.2.810 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  277.515405][ T8758] netlink: 'syz.2.810': attribute type 2 has an invalid length.
[  277.664551][ T8763] input: syz0 as /devices/virtual/input/input19
[  277.767216][ T5381] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  277.937190][ T5381] usb 6-1: Using ep0 maxpacket: 8
[  277.940591][ T5381] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  277.944374][ T5381] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  277.948939][ T5381] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  277.952427][ T5381] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  277.956883][ T5381] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  277.960255][ T5381] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.169667][ T5381] usb 6-1: GET_CAPABILITIES returned 0
[  278.171861][ T5381] usbtmc 6-1:16.0: can't read capabilities
[  278.382303][ T5702] usb 6-1: USB disconnect, device number 5
[  278.502587][ T8769] libceph: resolve '.
[  278.502587][ T8769] #)|.Ų²fĶ¹Ē²a×ļÅ2sˆoÖwæśÕ?£'Ź%ŠKAq‰f»CÖźØĀzæe­Sb3L)Hyśo¤¶’’’’’’’÷Ē¤ÜYšM¤Øģó¤h‡E$
[  278.502587][ T8769] ' (ret=-3): failed
[  278.817332][ T5384] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  278.968763][ T5384] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  278.971633][ T5384] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  278.974249][ T5384] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  278.976670][ T5384] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.986897][ T8776] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  278.990592][ T5384] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  279.207203][ T5384] usb 5-1: USB disconnect, device number 11
[  279.576231][ T8782] xt_CT: You must specify a L4 protocol and not use inversions on it
[  279.587255][   T64] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  279.721507][ T8788] netlink: 28 bytes leftover after parsing attributes in process `syz.3.820'.
[  279.744103][   T64] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  279.748081][   T64] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  279.752761][   T64] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  279.755967][   T64] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.767899][ T8780] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  279.775176][   T64] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  279.976446][ T5381] usb 7-1: USB disconnect, device number 12
[  280.364066][ T8796] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  280.777836][ T5381] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  280.927400][ T5381] usb 6-1: Using ep0 maxpacket: 32
[  280.977431][ T5381] usb 6-1: config index 0 descriptor too short (expected 26, got 18)
[  280.979978][ T5381] usb 6-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  280.982843][ T5381] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.991213][ T5381] usb 6-1: config 0 descriptor??
[  281.013938][ T5381] as10x_usb: device has been detected
[  281.017892][ T5381] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  281.092198][ T5381] usb 6-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  281.142342][ T5381] as10x_usb: error during firmware upload part1
[  281.144879][ T5381] Registered device nBox DVB-T Dongle
[  281.207505][ T8801] netlink: 'syz.1.824': attribute type 1 has an invalid length.
[  281.217861][   T56] usb 6-1: USB disconnect, device number 6
[  281.252218][   T56] Unregistered device nBox DVB-T Dongle
[  281.255163][   T56] as10x_usb: device has been disconnected
[  281.836329][ T8821] netlink: 'syz.1.830': attribute type 15 has an invalid length.
[  281.952614][ T8823] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  282.109876][ T8839] netlink: 'syz.0.832': attribute type 1 has an invalid length.
[  282.112847][ T8839] netlink: 636 bytes leftover after parsing attributes in process `syz.0.832'.
[  282.202305][ T8842] random: crng reseeded on system resumption
[  282.969014][   T39] kauditd_printk_skb: 141 callbacks suppressed
[  282.969167][   T39] audit: type=1400 audit(1727595597.449:186): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name="#" pid=8851 comm="syz.3.839"
[  283.094890][ T8858] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  283.787519][ T8886] netlink: 'syz.0.846': attribute type 8 has an invalid length.
[  284.042942][ T8898] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  284.213972][ T8904] fuse: Bad value for 'group_id'
[  284.215755][ T8904] fuse: Bad value for 'group_id'
[  284.337029][ T8907] netlink: 'syz.3.853': attribute type 2 has an invalid length.
[  284.339259][ T8907] netlink: 5 bytes leftover after parsing attributes in process `syz.3.853'.
[  285.238686][ T8919] FAULT_INJECTION: forcing a failure.
[  285.238686][ T8919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  285.242184][ T8919] CPU: 3 UID: 0 PID: 8919 Comm: syz.0.858 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  285.245178][ T8919] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.247992][ T8919] Call Trace:
[  285.248873][ T8919]  <TASK>
[  285.249691][ T8919]  dump_stack_lvl+0x16c/0x1f0
[  285.250937][ T8919]  should_fail_ex+0x497/0x5b0
[  285.252183][ T8919]  _copy_to_user+0x30/0xc0
[  285.253369][ T8919]  simple_read_from_buffer+0xd0/0x160
[  285.255159][ T8919]  proc_fail_nth_read+0x198/0x270
[  285.256968][ T8919]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  285.258945][ T8919]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  285.260899][ T8919]  vfs_read+0x1ce/0xbd0
[  285.262452][ T8919]  ? __fget_files+0x23a/0x3f0
[  285.264144][ T8919]  ? fdget_pos+0x24c/0x360
[  285.265576][ T8919]  ? __pfx_lock_release+0x10/0x10
[  285.266913][ T8919]  ? trace_lock_acquire+0x14a/0x1d0
[  285.268317][ T8919]  ? __pfx_vfs_read+0x10/0x10
[  285.270025][ T8919]  ? __pfx___mutex_lock+0x10/0x10
[  285.271434][ T8919]  ? __fget_files+0x244/0x3f0
[  285.272677][ T8919]  ksys_read+0x12f/0x260
[  285.273835][ T8919]  ? __pfx_ksys_read+0x10/0x10
[  285.275545][ T8919]  __do_fast_syscall_32+0x73/0x120
[  285.277405][ T8919]  do_fast_syscall_32+0x32/0x80
[  285.279172][ T8919]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  285.281416][ T8919] RIP: 0023:0xf7fd4579
[  285.282851][ T8919] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  285.289162][ T8919] RSP: 002b:00000000f57565a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  285.291407][ T8919] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5756620
[  285.293589][ T8919] RDX: 000000000000000f RSI: 00000000f745bff4 RDI: 0000000000000000
[  285.296329][ T8919] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  285.299306][ T8919] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  285.302054][ T8919] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  285.304624][ T8919]  </TASK>
[  285.402049][ T8929] fuse: Bad value for 'group_id'
[  285.404414][ T8929] fuse: Bad value for 'group_id'
[  285.480233][   T39] audit: type=1326 audit(1727595599.959:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  285.486517][   T39] audit: type=1326 audit(1727595599.959:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  285.493785][   T39] audit: type=1326 audit(1727595599.959:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf741e579 code=0x7ffc0000
[  285.500932][   T39] audit: type=1326 audit(1727595599.959:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  285.507024][   T39] audit: type=1326 audit(1727595599.959:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf741e579 code=0x7ffc0000
[  285.514925][   T39] audit: type=1326 audit(1727595599.959:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf741e579 code=0x7ffc0000
[  285.522648][   T39] audit: type=1326 audit(1727595599.959:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf741e5a7 code=0x7ffc0000
[  285.528973][   T39] audit: type=1326 audit(1727595599.959:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  285.535824][   T39] audit: type=1326 audit(1727595599.959:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8933 comm="syz.1.865" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf741e579 code=0x7ffc0000
[  285.554478][ T8938] netlink: 'syz.1.866': attribute type 21 has an invalid length.
[  285.558297][ T8938] netlink: 128 bytes leftover after parsing attributes in process `syz.1.866'.
[  285.567610][ T8938] netlink: 'syz.1.866': attribute type 5 has an invalid length.
[  285.570575][ T8938] netlink: 'syz.1.866': attribute type 6 has an invalid length.
[  285.573352][ T8938] netlink: 3 bytes leftover after parsing attributes in process `syz.1.866'.
[  286.109122][ T8953] capability: warning: `syz.1.871' uses deprecated v2 capabilities in a way that may be insecure
[  286.692837][ T8969] netlink: 188 bytes leftover after parsing attributes in process `syz.0.874'.
[  286.702116][ T8969] netlink: 'syz.0.874': attribute type 1 has an invalid length.
[  286.802410][ T8975] FAULT_INJECTION: forcing a failure.
[  286.802410][ T8975] name failslab, interval 1, probability 0, space 0, times 0
[  286.813372][ T8975] CPU: 0 UID: 0 PID: 8975 Comm: syz.0.877 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  286.816307][ T8975] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  286.819327][ T8975] Call Trace:
[  286.820268][ T8975]  <TASK>
[  286.821105][ T8975]  dump_stack_lvl+0x16c/0x1f0
[  286.822499][ T8975]  should_fail_ex+0x497/0x5b0
[  286.823882][ T8975]  ? fs_reclaim_acquire+0xae/0x160
[  286.825315][ T8975]  should_failslab+0xc2/0x120
[  286.826631][ T8975]  __kmalloc_node_noprof+0xd1/0x440
[  286.828110][ T8975]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  286.829657][ T8975]  __kvmalloc_node_noprof+0xad/0x1a0
[  286.831128][ T8975]  alloc_netdev_mqs+0xa97/0x12a0
[  286.832568][ T8975]  ieee802154_if_add+0xd9/0x1150
[  286.833969][ T8975]  ? __pfx_ieee802154_if_add+0x10/0x10
[  286.835469][ T8975]  ? __build_skb_around+0x278/0x3b0
[  286.836903][ T8975]  ? __pfx___mutex_lock+0x10/0x10
[  286.838303][ T8975]  ? skb_put+0x138/0x1b0
[  286.839486][ T8975]  ? genlmsg_put+0x258/0x2d0
[  286.840779][ T8975]  ieee802154_add_iface_deprecated+0x42/0x60
[  286.843068][ T8975]  ieee802154_add_iface+0x472/0xa20
[  286.844565][ T8975]  ? __nla_parse+0x40/0x60
[  286.845828][ T8975]  ? __pfx_ieee802154_add_iface+0x10/0x10
[  286.847649][ T8975]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  286.849912][ T8975]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  286.852100][ T8975]  genl_family_rcv_msg_doit+0x202/0x2f0
[  286.853677][ T8975]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  286.855351][ T8975]  ? bpf_lsm_capable+0x9/0x10
[  286.856585][ T8975]  ? security_capable+0x7e/0x260
[  286.857888][ T8975]  genl_rcv_msg+0x565/0x800
[  286.859075][ T8975]  ? __pfx_genl_rcv_msg+0x10/0x10
[  286.860389][ T8975]  ? __pfx_ieee802154_add_iface+0x10/0x10
[  286.862083][ T8975]  ? __pfx___lock_acquire+0x10/0x10
[  286.863586][ T8975]  netlink_rcv_skb+0x165/0x410
[  286.864923][ T8975]  ? __pfx_genl_rcv_msg+0x10/0x10
[  286.866365][ T8975]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  286.867865][ T8975]  ? down_read+0xc9/0x330
[  286.869111][ T8975]  ? __pfx_down_read+0x10/0x10
[  286.870472][ T8975]  ? netlink_deliver_tap+0x1ae/0xcf0
[  286.871949][ T8975]  genl_rcv+0x28/0x40
[  286.873105][ T8975]  netlink_unicast+0x53c/0x7f0
[  286.874445][ T8975]  ? __pfx_netlink_unicast+0x10/0x10
[  286.875909][ T8975]  ? __phys_addr_symbol+0x30/0x80
[  286.877376][ T8975]  ? __check_object_size+0x4a1/0x710
[  286.878840][ T8975]  netlink_sendmsg+0x8b8/0xd70
[  286.880177][ T8975]  ? __pfx_netlink_sendmsg+0x10/0x10
[  286.881672][ T8975]  ? lock_acquire+0x2f/0xb0
[  286.883232][ T8975]  ____sys_sendmsg+0x9ae/0xb40
[  286.884513][ T8975]  ? __pfx_____sys_sendmsg+0x10/0x10
[  286.885896][ T8975]  ? get_compat_msghdr+0x11b/0x170
[  286.887237][ T8975]  ? __pfx___lock_acquire+0x10/0x10
[  286.888592][ T8975]  ___sys_sendmsg+0x135/0x1e0
[  286.889843][ T8975]  ? __pfx____sys_sendmsg+0x10/0x10
[  286.891236][ T8975]  ? lock_acquire+0x2f/0xb0
[  286.892456][ T8975]  ? __fget_files+0x40/0x3f0
[  286.893670][ T8975]  ? fdget+0x176/0x210
[  286.894774][ T8975]  __sys_sendmsg+0x117/0x1f0
[  286.896023][ T8975]  ? __pfx___sys_sendmsg+0x10/0x10
[  286.897404][ T8975]  ? __fget_files+0x244/0x3f0
[  286.898731][ T8975]  __do_fast_syscall_32+0x73/0x120
[  286.900213][ T8975]  do_fast_syscall_32+0x32/0x80
[  286.901513][ T8975]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  286.903205][ T8975] RIP: 0023:0xf7fd4579
[  286.904277][ T8975] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  286.909401][ T8975] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  286.911548][ T8975] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  286.913861][ T8975] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  286.915992][ T8975] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  286.918237][ T8975] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  286.920719][ T8975] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  286.923252][ T8975]  </TASK>
[  288.272238][ T9007] fuse: Bad value for 'group_id'
[  288.273638][ T9007] fuse: Bad value for 'group_id'
[  288.980944][ T9011] program syz.3.886 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  289.001947][ T9011] overlay: ./file1 is not a directory
[  289.069690][ T9011] FAULT_INJECTION: forcing a failure.
[  289.069690][ T9011] name failslab, interval 1, probability 0, space 0, times 0
[  289.075888][ T9011] CPU: 0 UID: 0 PID: 9011 Comm: syz.3.886 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  289.079251][ T9011] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.082325][ T9011] Call Trace:
[  289.083255][ T9011]  <TASK>
[  289.084046][ T9011]  dump_stack_lvl+0x16c/0x1f0
[  289.085378][ T9011]  should_fail_ex+0x497/0x5b0
[  289.086775][ T9011]  ? fs_reclaim_acquire+0xae/0x160
[  289.088377][ T9011]  should_failslab+0xc2/0x120
[  289.089742][ T9011]  __kmalloc_noprof+0xcb/0x410
[  289.091036][ T9011]  ? __pfx_d_absolute_path+0x10/0x10
[  289.092406][ T9011]  tomoyo_encode2+0x100/0x3e0
[  289.093646][ T9011]  tomoyo_realpath_from_path+0x1a7/0x710
[  289.095077][ T9011]  tomoyo_mount_acl+0x1af/0x880
[  289.096358][ T9011]  ? hlock_class+0x4e/0x130
[  289.097599][ T9011]  ? __lock_acquire+0x163e/0x3ce0
[  289.098951][ T9011]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  289.100400][ T9011]  ? __pfx___lock_acquire+0x10/0x10
[  289.101857][ T9011]  ? stack_trace_save+0x95/0xd0
[  289.103205][ T9011]  ? trace_lock_acquire+0x14a/0x1d0
[  289.104667][ T9011]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.106486][ T9011]  ? tomoyo_mount_permission+0x146/0x410
[  289.108163][ T9011]  ? lock_acquire+0x2f/0xb0
[  289.109459][ T9011]  ? tomoyo_mount_permission+0x146/0x410
[  289.110935][ T9011]  tomoyo_mount_permission+0x16b/0x410
[  289.112409][ T9011]  ? tomoyo_mount_permission+0x146/0x410
[  289.113928][ T9011]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  289.116038][ T9011]  ? get_current_fs_domain+0x188/0x1f0
[  289.117877][ T9011]  security_sb_mount+0x9b/0x260
[  289.119241][ T9011]  path_mount+0x129/0x1f10
[  289.120449][ T9011]  ? kmem_cache_free+0x152/0x4b0
[  289.121771][ T9011]  ? __pfx_path_mount+0x10/0x10
[  289.123026][ T9011]  ? putname+0x12e/0x170
[  289.124110][ T9011]  __ia32_sys_mount+0x292/0x310
[  289.125377][ T9011]  ? __pfx___ia32_sys_mount+0x10/0x10
[  289.126765][ T9011]  __do_fast_syscall_32+0x73/0x120
[  289.128088][ T9011]  do_fast_syscall_32+0x32/0x80
[  289.129452][ T9011]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.131301][ T9011] RIP: 0023:0xf7fc1579
[  289.132527][ T9011] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.137646][ T9011] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  289.139772][ T9011] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  289.141792][ T9011] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000020000400
[  289.143669][ T9011] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  289.145747][ T9011] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  289.147877][ T9011] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.150117][ T9011]  </TASK>
[  289.154113][ T9016] netlink: 84 bytes leftover after parsing attributes in process `syz.0.888'.
[  289.158838][ T9016] veth0_vlan: left promiscuous mode
[  289.161573][ T9016] veth0_vlan: entered allmulticast mode
[  289.167857][ T9016] veth0_vlan: entered promiscuous mode
[  289.197714][ T9011] ERROR: Out of memory at tomoyo_realpath_from_path.
[  289.564325][ T9025] sp0: Synchronizing with TNC
[  289.574665][ T9025] FAULT_INJECTION: forcing a failure.
[  289.574665][ T9025] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  289.579781][ T9025] CPU: 0 UID: 0 PID: 9025 Comm: syz.0.894 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  289.583015][ T9025] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.586023][ T9025] Call Trace:
[  289.586958][ T9025]  <TASK>
[  289.587793][ T9025]  dump_stack_lvl+0x16c/0x1f0
[  289.589135][ T9025]  should_fail_ex+0x497/0x5b0
[  289.590475][ T9025]  _copy_to_user+0x30/0xc0
[  289.591722][ T9025]  simple_read_from_buffer+0xd0/0x160
[  289.593442][ T9025]  proc_fail_nth_read+0x198/0x270
[  289.594870][ T9025]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  289.596721][ T9025]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  289.598604][ T9025]  vfs_read+0x1ce/0xbd0
[  289.599961][ T9025]  ? __fget_files+0x23a/0x3f0
[  289.601394][ T9025]  ? fdget_pos+0x24c/0x360
[  289.602827][ T9025]  ? __pfx_lock_release+0x10/0x10
[  289.604543][ T9025]  ? trace_lock_acquire+0x14a/0x1d0
[  289.606253][ T9025]  ? __pfx_vfs_read+0x10/0x10
[  289.607794][ T9025]  ? __pfx___mutex_lock+0x10/0x10
[  289.609468][ T9025]  ? __fget_files+0x244/0x3f0
[  289.610983][ T9025]  ksys_read+0x12f/0x260
[  289.612289][ T9025]  ? __pfx_ksys_read+0x10/0x10
[  289.613712][ T9025]  __do_fast_syscall_32+0x73/0x120
[  289.615387][ T9025]  do_fast_syscall_32+0x32/0x80
[  289.617121][ T9025]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.619370][ T9025] RIP: 0023:0xf7fd4579
[  289.620832][ T9025] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.626079][ T9025] RSP: 002b:00000000f57565a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  289.628064][ T9025] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5756620
[  289.630044][ T9025] RDX: 000000000000000f RSI: 00000000f745bff4 RDI: 0000000000000000
[  289.632223][ T9025] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  289.634594][ T9025] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  289.637360][ T9025] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.639800][ T9025]  </TASK>
[  289.649256][ T9029] netlink: 4 bytes leftover after parsing attributes in process `syz.3.891'.
[  290.063310][ T9044] fuse: Bad value for 'group_id'
[  290.065242][ T9044] fuse: Bad value for 'group_id'
[  290.506353][ T9059] misc userio: Invalid payload size
[  291.024112][ T9063] FAULT_INJECTION: forcing a failure.
[  291.024112][ T9063] name failslab, interval 1, probability 0, space 0, times 0
[  291.031894][ T9063] CPU: 1 UID: 0 PID: 9063 Comm: syz.1.902 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  291.035352][ T9063] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  291.038952][ T9063] Call Trace:
[  291.040073][ T9063]  <TASK>
[  291.041068][ T9063]  dump_stack_lvl+0x16c/0x1f0
[  291.042676][ T9063]  should_fail_ex+0x497/0x5b0
[  291.044316][ T9063]  ? fs_reclaim_acquire+0xae/0x160
[  291.046166][ T9063]  should_failslab+0xc2/0x120
[  291.047897][ T9063]  kmem_cache_alloc_node_noprof+0x71/0x310
[  291.049955][ T9063]  ? alloc_vmap_area+0x636/0x2a70
[  291.051641][ T9063]  alloc_vmap_area+0x636/0x2a70
[  291.053436][ T9063]  ? __pfx_alloc_vmap_area+0x10/0x10
[  291.055219][ T9063]  __get_vm_area_node+0x17e/0x2d0
[  291.056957][ T9063]  __vmalloc_node_range_noprof+0x26a/0x15a0
[  291.059160][ T9063]  ? compat_do_replace+0x1ae/0x750
[  291.061019][ T9063]  ? __might_fault+0xe3/0x190
[  291.062673][ T9063]  ? compat_do_replace+0x1ae/0x750
[  291.064395][ T9063]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  291.066515][ T9063]  ? compat_do_replace+0x1ae/0x750
[  291.068254][ T9063]  vmalloc_noprof+0x6b/0x90
[  291.069885][ T9063]  ? compat_do_replace+0x1ae/0x750
[  291.071636][ T9063]  compat_do_replace+0x1ae/0x750
[  291.073506][ T9063]  ? __pfx_compat_do_replace+0x10/0x10
[  291.075358][ T9063]  ? aa_get_newest_label+0x376/0x680
[  291.077167][ T9063]  ? __pfx_aa_get_newest_label+0x10/0x10
[  291.079009][ T9063]  ? bpf_lsm_capable+0x9/0x10
[  291.080641][ T9063]  ? security_capable+0x7e/0x260
[  291.082307][ T9063]  do_ebt_set_ctl+0x4af/0x580
[  291.083837][ T9063]  ? __pfx___mutex_lock+0x10/0x10
[  291.085569][ T9063]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  291.087346][ T9063]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  291.089289][ T9063]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  291.091393][ T9063]  nf_setsockopt+0x8a/0xf0
[  291.092956][ T9063]  ip_setsockopt+0xcb/0xf0
[  291.094510][ T9063]  dccp_setsockopt+0x108/0xb20
[  291.096185][ T9063]  ? __pfx_dccp_setsockopt+0x10/0x10
[  291.097999][ T9063]  ? sock_common_setsockopt+0x2e/0xf0
[  291.099815][ T9063]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  291.101781][ T9063]  do_sock_setsockopt+0x222/0x480
[  291.103702][ T9063]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  291.105584][ T9063]  ? fdget+0x176/0x210
[  291.106960][ T9063]  __sys_setsockopt+0x1a4/0x270
[  291.108619][ T9063]  ? __pfx___sys_setsockopt+0x10/0x10
[  291.110528][ T9063]  ? fput+0x30/0x390
[  291.111915][ T9063]  ? ksys_write+0x1ad/0x260
[  291.113575][ T9063]  __ia32_sys_setsockopt+0xbc/0x160
[  291.115831][ T9063]  ? lockdep_hardirqs_on+0x7c/0x110
[  291.117633][ T9063]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  291.119814][ T9063]  __do_fast_syscall_32+0x73/0x120
[  291.121601][ T9063]  do_fast_syscall_32+0x32/0x80
[  291.123266][ T9063]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  291.125517][ T9063] RIP: 0023:0xf741e579
[  291.126954][ T9063] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  291.133326][ T9063] RSP: 002b:00000000f570656c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  291.136190][ T9063] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  291.139052][ T9063] RDX: 0000000000000080 RSI: 0000000020000180 RDI: 00000000000000e0
[  291.141676][ T9063] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  291.144369][ T9063] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  291.146986][ T9063] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  291.149687][ T9063]  </TASK>
[  291.150775][    C1] vkms_vblank_simulate: vblank timer overrun
[  291.160448][ T9063] syz.1.902: vmalloc error: size 128, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  291.184976][ T9063] CPU: 1 UID: 0 PID: 9063 Comm: syz.1.902 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  291.188380][ T9063] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  291.192002][ T9063] Call Trace:
[  291.193160][ T9063]  <TASK>
[  291.194203][ T9063]  dump_stack_lvl+0x16c/0x1f0
[  291.195766][ T9063]  warn_alloc+0x24d/0x3a0
[  291.197231][ T9063]  ? __pfx_warn_alloc+0x10/0x10
[  291.198864][ T9063]  ? kfree+0x14f/0x4b0
[  291.200272][ T9063]  ? __get_vm_area_node+0x1bc/0x2d0
[  291.202067][ T9063]  __vmalloc_node_range_noprof+0xd27/0x15a0
[  291.204050][ T9063]  ? __might_fault+0xe3/0x190
[  291.205616][ T9063]  ? compat_do_replace+0x1ae/0x750
[  291.207388][ T9063]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  291.209518][ T9063]  ? compat_do_replace+0x1ae/0x750
[  291.211242][ T9063]  vmalloc_noprof+0x6b/0x90
[  291.212840][ T9063]  ? compat_do_replace+0x1ae/0x750
[  291.214646][ T9063]  compat_do_replace+0x1ae/0x750
[  291.216339][ T9063]  ? __pfx_compat_do_replace+0x10/0x10
[  291.218288][ T9063]  ? aa_get_newest_label+0x376/0x680
[  291.220234][ T9063]  ? __pfx_aa_get_newest_label+0x10/0x10
[  291.222168][ T9063]  ? bpf_lsm_capable+0x9/0x10
[  291.223907][ T9063]  ? security_capable+0x7e/0x260
[  291.225579][ T9063]  do_ebt_set_ctl+0x4af/0x580
[  291.227165][ T9063]  ? __pfx___mutex_lock+0x10/0x10
[  291.228933][ T9063]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  291.230702][ T9063]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  291.232483][ T9063]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  291.234514][ T9063]  nf_setsockopt+0x8a/0xf0
[  291.236028][ T9063]  ip_setsockopt+0xcb/0xf0
[  291.237566][ T9063]  dccp_setsockopt+0x108/0xb20
[  291.239245][ T9063]  ? __pfx_dccp_setsockopt+0x10/0x10
[  291.241108][ T9063]  ? sock_common_setsockopt+0x2e/0xf0
[  291.242932][ T9063]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  291.244912][ T9063]  do_sock_setsockopt+0x222/0x480
[  291.246607][ T9063]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  291.248452][ T9063]  ? fdget+0x176/0x210
[  291.249864][ T9063]  __sys_setsockopt+0x1a4/0x270
[  291.251493][ T9063]  ? __pfx___sys_setsockopt+0x10/0x10
[  291.251985][ T9067] sp0: Synchronizing with TNC
[  291.253292][ T9063]  ? fput+0x30/0x390
[  291.256283][ T9063]  ? ksys_write+0x1ad/0x260
[  291.256310][ T9063]  __ia32_sys_setsockopt+0xbc/0x160
[  291.256331][ T9063]  ? lockdep_hardirqs_on+0x7c/0x110
[  291.256351][ T9063]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  291.256372][ T9063]  __do_fast_syscall_32+0x73/0x120
[  291.256394][ T9063]  do_fast_syscall_32+0x32/0x80
[  291.256415][ T9063]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  291.256439][ T9063] RIP: 0023:0xf741e579
[  291.256452][ T9063] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  291.256468][ T9063] RSP: 002b:00000000f570656c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  291.256485][ T9063] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  291.256495][ T9063] RDX: 0000000000000080 RSI: 0000000020000180 RDI: 00000000000000e0
[  291.256505][ T9063] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  291.256515][ T9063] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  291.256524][ T9063] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  291.256544][ T9063]  </TASK>
[  291.256587][    C1] vkms_vblank_simulate: vblank timer overrun
[  291.299332][ T9063] Mem-Info:
[  291.299344][ T9063] active_anon:7119 inactive_anon:20 isolated_anon:0
[  291.299344][ T9063]  active_file:14302 inactive_file:13239 isolated_file:0
[  291.299344][ T9063]  unevictable:768 dirty:554 writeback:0
[  291.299344][ T9063]  slab_reclaimable:4897 slab_unreclaimable:53507
[  291.299344][ T9063]  mapped:17786 shmem:5504 pagetables:717
[  291.299344][ T9063]  sec_pagetables:321 bounce:0
[  291.299344][ T9063]  kernel_misc_reclaimable:0
[  291.299344][ T9063]  free:92772 free_pcp:9477 free_cma:0
[  291.299384][ T9063] Node 0 active_anon:244kB inactive_anon:68kB active_file:180kB inactive_file:92kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:2428kB dirty:184kB writeback:0kB shmem:1636kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9604kB pagetables:1400kB sec_pagetables:1204kB all_unreclaimable? no
[  291.299422][ T9063] Node 1 active_anon:28232kB inactive_anon:12kB active_file:57028kB inactive_file:52864kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:68716kB dirty:2032kB writeback:0kB shmem:20380kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1956kB pagetables:1468kB sec_pagetables:80kB all_unreclaimable? no
[  291.299462][ T9063] Node 0 DMA free:956kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:184kB local_pcp:8kB free_cma:0kB
[  291.299504][ T9063] lowmem_reserve[]: 0 273 0 0 0
[  291.299537][ T9063] Node 0 DMA32 free:20952kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:168kB inactive_anon:212kB active_file:244kB inactive_file:28kB unevictable:1536kB writepending:184kB present:1032196kB managed:306288kB mlocked:0kB bounce:0kB free_pcp:5268kB local_pcp:988kB free_cma:0kB
[  291.299579][ T9063] lowmem_reserve[]: 0 0 0 0 0
[  291.299600][ T9063] Node 1 DMA32 free:349180kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:28232kB inactive_anon:12kB active_file:57028kB inactive_file:52864kB unevictable:1536kB writepending:2032kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:32580kB local_pcp:3500kB free_cma:0kB
[  291.299626][ T9063] lowmem_reserve[]: 0 0 0 0 0
[  291.299644][ T9063] Node 0 DMA: 11*4kB (U) 63*8kB (U) 23*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 916kB
[  291.299703][ T9063] Node 0 DMA32: 1170*4kB (UMEH) 518*8kB (UEH) 48*16kB (UMEH) 119*32kB (UMEH) 20*64kB (UMH) 11*128kB (UEH) 3*256kB (UE) 6*512kB (UME) 1*1024kB (E) 0*2048kB 0*4096kB = 20952kB
[  291.299778][ T9063] Node 1 DMA32: 1*4kB (M) 361*8kB (UE) 775*16kB (UME) 352*32kB (UE) 308*64kB (UE) 230*128kB (UME) 86*256kB (UME) 41*512kB (UME) 21*1024kB (UME) 16*2048kB (UME) 43*4096kB (UM) = 349116kB
[  291.299860][ T9063] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  291.299868][ T9063] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  291.299876][ T9063] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  291.299884][ T9063] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  291.299891][ T9063] 33327 total pagecache pages
[  291.299895][ T9063] 307 pages in swap cache
[  291.299899][ T9063] Free swap  = 112300kB
[  291.299903][ T9063] Total swap = 124996kB
[  291.299907][ T9063] 524155 pages RAM
[  291.299910][ T9063] 0 pages HighMem/MovableOnly
[  291.299913][ T9063] 206680 pages reserved
[  291.299917][ T9063] 0 pages cma reserved
[  291.534331][ T9076] netlink: 'syz.1.907': attribute type 1 has an invalid length.
[  291.565042][ T9076] 8021q: adding VLAN 0 to HW filter on device bond1
[  291.606426][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  291.606442][   T39] audit: type=1804 audit(1727595606.079:203): pid=9076 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.907" name="/newroot/86/file0/file0" dev="9p" ino=36574442 res=1 errno=0
[  291.641121][ T9076] 8021q: adding VLAN 0 to HW filter on device bond1
[  291.646647][ T9076] bond1: (slave vti0): The slave device specified does not support setting the MAC address
[  291.653252][ T9076] bond1: (slave vti0): Error -95 calling set_mac_address
[  292.073472][ T9088] fuse: Bad value for 'group_id'
[  292.075301][ T9088] fuse: Bad value for 'group_id'
[  293.441320][ T9105] FAULT_INJECTION: forcing a failure.
[  293.441320][ T9105] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  293.458298][ T9105] CPU: 0 UID: 0 PID: 9105 Comm: syz.0.913 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  293.461430][ T9105] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.464305][ T9105] Call Trace:
[  293.465252][ T9105]  <TASK>
[  293.466082][ T9105]  dump_stack_lvl+0x16c/0x1f0
[  293.467457][ T9105]  should_fail_ex+0x497/0x5b0
[  293.468713][ T9105]  ? fs_reclaim_acquire+0xae/0x160
[  293.470079][ T9105]  should_fail_alloc_page+0xe7/0x130
[  293.471526][ T9105]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  293.473196][ T9105]  __alloc_pages_noprof+0x190/0x25c0
[  293.474542][ T9105]  ? hlock_class+0x4e/0x130
[  293.475779][ T9105]  ? __lock_acquire+0x163e/0x3ce0
[  293.477069][ T9105]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  293.478549][ T9105]  ? __pfx___lock_acquire+0x10/0x10
[  293.479989][ T9105]  ? lock_acquire.part.0+0x11b/0x380
[  293.481372][ T9105]  ? find_held_lock+0x2d/0x110
[  293.482695][ T9105]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  293.484585][ T9105]  ? policy_nodemask+0xea/0x4e0
[  293.485978][ T9105]  alloc_pages_mpol_noprof+0x2c9/0x610
[  293.487384][ T9105]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  293.489032][ T9105]  ? do_raw_spin_unlock+0x172/0x230
[  293.490388][ T9105]  ? _raw_spin_unlock+0x28/0x50
[  293.491621][ T9105]  ? swap_swapcount+0x13c/0x220
[  293.492997][ T9105]  ? __pfx_swap_swapcount+0x10/0x10
[  293.494372][ T9105]  folio_alloc_mpol_noprof+0x36/0xd0
[  293.495686][ T9105]  __read_swap_cache_async+0x50a/0x660
[  293.497087][ T9105]  ? __pfx___read_swap_cache_async+0x10/0x10
[  293.498816][ T9105]  ? swp_swap_info+0xcf/0x130
[  293.500097][ T9105]  ? __pfx_swp_swap_info+0x10/0x10
[  293.501451][ T9105]  swap_cluster_readahead+0x4a9/0x6e0
[  293.502960][ T9105]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  293.504445][ T9105]  ? xas_load+0x49/0x5b0
[  293.505522][ T9105]  ? filemap_get_entry+0xd0/0x3c0
[  293.506901][ T9105]  ? filemap_get_entry+0x1b2/0x3c0
[  293.508195][ T9105]  ? __pfx_filemap_get_entry+0x10/0x10
[  293.509622][ T9105]  swapin_readahead+0x12e/0xd20
[  293.510989][ T9105]  ? __filemap_get_folio+0x2a5/0xaf0
[  293.512508][ T9105]  ? __pfx_swapin_readahead+0x10/0x10
[  293.513922][ T9105]  ? swap_cache_get_folio+0x1e0/0x460
[  293.515291][ T9105]  ? get_swap_device+0x245/0x5e0
[  293.516633][ T9105]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  293.518063][ T9105]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  293.519474][ T9105]  ? rcu_is_watching+0x12/0xc0
[  293.520786][ T9105]  do_swap_page+0x61a/0x59b0
[  293.521975][ T9105]  ? __pte_offset_map+0x42/0x540
[  293.523246][ T9105]  ? __pte_offset_map+0x1b9/0x540
[  293.524615][ T9105]  ? pte_offset_map_nolock+0xfe/0x1c0
[  293.525986][ T9105]  ? __pfx_do_swap_page+0x10/0x10
[  293.527300][ T9105]  ? lock_vma_under_rcu+0x13e/0x980
[  293.528760][ T9105]  ? lock_vma_under_rcu+0x13e/0x980
[  293.530164][ T9105]  __handle_mm_fault+0x1023/0x2a10
[  293.531489][ T9105]  ? __pfx_lock_release+0x10/0x10
[  293.532848][ T9105]  ? lock_vma_under_rcu+0x13e/0x980
[  293.534246][ T9105]  ? __pfx___handle_mm_fault+0x10/0x10
[  293.535652][ T9105]  handle_mm_fault+0x3fa/0xaa0
[  293.536877][ T9105]  do_user_addr_fault+0x60d/0x13f0
[  293.538359][ T9105]  exc_page_fault+0x5c/0xc0
[  293.539541][ T9105]  asm_exc_page_fault+0x26/0x30
[  293.540811][ T9105] RIP: 0023:0xf71806ff
[  293.541990][ T9105] Code: ff 8d b4 26 00 00 00 00 8d 76 00 56 53 e8 89 8a ff ff 81 c3 0d b9 2d 00 83 ec 04 80 bb e0 95 b6 00 00 74 1f 89 c6 85 c0 74 21 <80> bb 60 60 03 00 00 75 33 8b 46 0c c7 00 00 00 00 00 c7 40 04 00
[  293.546981][ T9105] RSP: 002b:00000000f57355d0 EFLAGS: 00010286
[  293.548522][ T9105] RAX: 00000000f7495074 RBX: 00000000f745bff4 RCX: 0000000000000033
[  293.550616][ T9105] RDX: 00000000ffffffcc RSI: 00000000f7495074 RDI: 00000000f5735610
[  293.552639][ T9105] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  293.554743][ T9105] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  293.556751][ T9105] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  293.558870][ T9105]  </TASK>
[  293.587245][ T9105] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  294.383339][ T9121] mac80211_hwsim hwsim27 wlan1: entered allmulticast mode
[  294.400095][ T7022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  294.403060][ T7022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  294.649594][ T9128] fuse: Bad value for 'group_id'
[  294.653079][ T9128] fuse: Bad value for 'group_id'
[  294.706329][ T9123] netlink: 4 bytes leftover after parsing attributes in process `syz.3.920'.
[  295.756672][   T39] audit: type=1800 audit(1727595610.229:204): pid=9143 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.924" name="/" dev="fuse" ino=1 res=0 errno=0
[  295.931267][ T9152] misc userio: Invalid payload size
[  296.828480][ T9162] netlink: 4 bytes leftover after parsing attributes in process `syz.3.930'.
[  297.069387][ T9172] fuse: Bad value for 'group_id'
[  297.071154][ T9172] fuse: Bad value for 'group_id'
[  298.073121][ T9186] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  298.298822][ T9201] xt_nat: multiple ranges no longer supported
[  298.326043][ T9192] netlink: 4 bytes leftover after parsing attributes in process `syz.0.939'.
[  298.386955][ T9208] fuse: Bad value for 'group_id'
[  298.389889][ T9208] fuse: Bad value for 'group_id'
[  298.396985][   T39] audit: type=1326 audit(1727595612.869:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9194 comm="syz.3.940" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x0
[  298.411741][ T9209] misc userio: Invalid payload size
[  298.678131][ T9221] FAULT_INJECTION: forcing a failure.
[  298.678131][ T9221] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  298.682646][ T9221] CPU: 3 UID: 0 PID: 9221 Comm: syz.0.946 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  298.686182][ T9221] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  298.689871][ T9221] Call Trace:
[  298.691015][ T9221]  <TASK>
[  298.692072][ T9221]  dump_stack_lvl+0x16c/0x1f0
[  298.693804][ T9221]  should_fail_ex+0x497/0x5b0
[  298.695566][ T9221]  _copy_from_user+0x30/0xf0
[  298.697263][ T9221]  move_addr_to_kernel+0x68/0x160
[  298.699221][ T9221]  __get_compat_msghdr+0x3f1/0x4d0
[  298.700961][ T9221]  get_compat_msghdr+0xd3/0x170
[  298.702633][ T9221]  ? __pfx_get_compat_msghdr+0x10/0x10
[  298.704494][ T9221]  ? __pfx___lock_acquire+0x10/0x10
[  298.706291][ T9221]  ___sys_sendmsg+0x1b0/0x1e0
[  298.707935][ T9221]  ? __pfx____sys_sendmsg+0x10/0x10
[  298.709730][ T9221]  ? lock_acquire+0x2f/0xb0
[  298.711269][ T9221]  ? __fget_files+0x40/0x3f0
[  298.712918][ T9221]  ? fdget+0x176/0x210
[  298.714437][ T9221]  __sys_sendmmsg+0x2a5/0x450
[  298.716133][ T9221]  ? __pfx___sys_sendmmsg+0x10/0x10
[  298.717940][ T9221]  ? vfs_write+0x14d/0x1140
[  298.719538][ T9221]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  298.721629][ T9221]  ? fput+0x30/0x390
[  298.723018][ T9221]  ? ksys_write+0x1ad/0x260
[  298.724692][ T9221]  ? __pfx_ksys_write+0x10/0x10
[  298.726440][ T9221]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  298.728368][ T9221]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  298.730644][ T9221]  __do_fast_syscall_32+0x73/0x120
[  298.732509][ T9221]  do_fast_syscall_32+0x32/0x80
[  298.734206][ T9221]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  298.736403][ T9221] RIP: 0023:0xf7fd4579
[  298.737881][ T9221] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  298.744528][ T9221] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  298.747743][ T9221] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001c40
[  298.750537][ T9221] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  298.753264][ T9221] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  298.755954][ T9221] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  298.758659][ T9221] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  298.761421][ T9221]  </TASK>
[  300.399250][ T9241] netlink: 4 bytes leftover after parsing attributes in process `syz.2.953'.
[  300.562062][ T9255] netlink: 8 bytes leftover after parsing attributes in process `syz.2.955'.
[  300.790724][ T5381] libceph: connect (1)[c::]:6789 error -101
[  300.793558][ T5381] libceph: mon0 (1)[c::]:6789 connect error
[  300.844015][ T9262] ceph: No mds server is up or the cluster is laggy
[  301.099331][ T9270] misc userio: Invalid payload size
[  301.746537][ T9283] FAULT_INJECTION: forcing a failure.
[  301.746537][ T9283] name failslab, interval 1, probability 0, space 0, times 0
[  301.751308][ T9283] CPU: 3 UID: 0 PID: 9283 Comm: syz.3.961 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  301.754967][ T9283] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  301.758751][ T9283] Call Trace:
[  301.759958][ T9283]  <TASK>
[  301.761017][ T9283]  dump_stack_lvl+0x16c/0x1f0
[  301.762713][ T9283]  should_fail_ex+0x497/0x5b0
[  301.764403][ T9283]  ? fs_reclaim_acquire+0xae/0x160
[  301.766243][ T9283]  should_failslab+0xc2/0x120
[  301.767903][ T9283]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  301.769849][ T9283]  ? __kernfs_new_node+0xd3/0x890
[  301.771626][ T9283]  __kernfs_new_node+0xd3/0x890
[  301.773397][ T9283]  ? __pfx___kernfs_new_node+0x10/0x10
[  301.775319][ T9283]  ? __pfx_lock_release+0x10/0x10
[  301.777138][ T9283]  ? kernfs_add_one+0x39d/0x520
[  301.778876][ T9283]  ? up_write+0x1b2/0x520
[  301.780412][ T9283]  kernfs_new_node+0x186/0x240
[  301.782149][ T9283]  __kernfs_create_file+0x53/0x350
[  301.783967][ T9283]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  301.785880][ T9283]  internal_create_group+0x565/0xe50
[  301.787758][ T9283]  ? __pfx_internal_create_group+0x10/0x10
[  301.789848][ T9283]  ? kernfs_create_link+0x1bd/0x240
[  301.791683][ T9283]  internal_create_groups+0x9d/0x150
[  301.793652][ T9283]  device_add+0xf33/0x1a70
[  301.795264][ T9283]  ? __pfx_device_add+0x10/0x10
[  301.797066][ T9283]  ? __init_waitqueue_head+0xca/0x150
[  301.798864][ T9283]  wakeup_source_device_create+0x214/0x2a0
[  301.800927][ T9283]  wakeup_source_sysfs_add+0x1c/0x90
[  301.802836][ T9283]  wakeup_source_register+0xaa/0x140
[  301.804688][ T9283]  ep_create_wakeup_source+0x1df/0x2e0
[  301.806663][ T9283]  ? __pfx_ep_create_wakeup_source+0x10/0x10
[  301.808894][ T9283]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  301.810794][ T9283]  ? lock_acquire+0x2f/0xb0
[  301.812435][ T9283]  ? do_epoll_ctl+0x2319/0x3580
[  301.814172][ T9283]  do_epoll_ctl+0x1dae/0x3580
[  301.815841][ T9283]  ? __pfx_do_epoll_ctl+0x10/0x10
[  301.817643][ T9283]  ? lock_acquire+0x2f/0xb0
[  301.819269][ T9283]  ? __might_fault+0xe3/0x190
[  301.820963][ T9283]  ? __ia32_sys_epoll_ctl+0x15c/0x1e0
[  301.822857][ T9283]  __ia32_sys_epoll_ctl+0x15c/0x1e0
[  301.824731][ T9283]  ? __pfx___ia32_sys_epoll_ctl+0x10/0x10
[  301.826779][ T9283]  __do_fast_syscall_32+0x73/0x120
[  301.828436][ T9283]  do_fast_syscall_32+0x32/0x80
[  301.829986][ T9283]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  301.832227][ T9283] RIP: 0023:0xf7fc1579
[  301.833670][ T9283] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  301.839667][ T9283] RSP: 002b:00000000f570456c EFLAGS: 00000296 ORIG_RAX: 00000000000000ff
[  301.841910][ T9283] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000001
[  301.843975][ T9283] RDX: 0000000000000005 RSI: 0000000020000040 RDI: 0000000000000000
[  301.846071][ T9283] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  301.848363][ T9283] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  301.851177][ T9283] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  301.853685][ T9283]  </TASK>
[  302.154077][ T9286] netlink: 4 bytes leftover after parsing attributes in process `syz.1.962'.
[  302.561304][ T9300] netlink: 'syz.3.966': attribute type 3 has an invalid length.
[  302.563416][ T9300] netlink: 'syz.3.966': attribute type 3 has an invalid length.
[  302.607454][ T9300] netlink: 'syz.3.966': attribute type 3 has an invalid length.
[  302.609578][ T9300] netlink: 'syz.3.966': attribute type 3 has an invalid length.
[  302.656243][ T9310] program syz.2.967 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  302.692619][ T9310] overlay: ./file1 is not a directory
[  302.710577][ T9300] netlink: 'syz.3.966': attribute type 3 has an invalid length.
[  302.710595][ T9300] netlink: 'syz.3.966': attribute type 3 has an invalid length.
[  303.620019][ T9332] netlink: 4 bytes leftover after parsing attributes in process `syz.1.971'.
[  304.690047][ T4788] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[  304.693678][ T4788] Bluetooth: hci6: Injecting HCI hardware error event
[  304.705253][ T5343] Bluetooth: hci6: hardware error 0x00
[  304.827159][ T9337] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  304.917759][ T9342] 9pnet_fd: Insufficient options for proto=fd
[  304.985285][ T4788] Bluetooth: hci6: Received unexpected HCI Event 0x00
[  305.048859][ T9354] syz.2.977 (9354): drop_caches: 2
[  305.063470][ T9351] syz.2.977 (9351): drop_caches: 2
[  305.064209][ T9354] syz.2.977 (9354): drop_caches: 2
[  305.077568][ T9351] syz.2.977 (9351): drop_caches: 2
[  306.767638][ T5343] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  307.730264][ T9403] netlink: 4 bytes leftover after parsing attributes in process `syz.3.990'.
[  308.464700][ T9422] netlink: 156 bytes leftover after parsing attributes in process `syz.0.995'.
[  308.468912][ T9422] netlink: 4 bytes leftover after parsing attributes in process `syz.0.995'.
[  308.474827][ T9422] netlink: 98 bytes leftover after parsing attributes in process `syz.0.995'.
[  308.478506][ T9422] unsupported nla_type 256
[  308.655370][ T9431] FAULT_INJECTION: forcing a failure.
[  308.655370][ T9431] name failslab, interval 1, probability 0, space 0, times 0
[  308.660550][ T9431] CPU: 2 UID: 0 PID: 9431 Comm: syz.3.999 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  308.663749][ T9431] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  308.667088][ T9431] Call Trace:
[  308.667984][ T9431]  <TASK>
[  308.668835][ T9431]  dump_stack_lvl+0x16c/0x1f0
[  308.670110][ T9431]  should_fail_ex+0x497/0x5b0
[  308.671309][ T9431]  ? fs_reclaim_acquire+0xae/0x160
[  308.672628][ T9431]  should_failslab+0xc2/0x120
[  308.673885][ T9431]  __kmalloc_cache_noprof+0x6b/0x310
[  308.675264][ T9431]  ? cma_alloc_port+0x9a/0x5b0
[  308.676527][ T9431]  cma_alloc_port+0x9a/0x5b0
[  308.677790][ T9431]  rdma_bind_addr_dst+0x1d9a/0x2f90
[  308.679220][ T9431]  ? mark_held_locks+0x9f/0xe0
[  308.680494][ T9431]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  308.682039][ T9431]  rdma_listen+0x10d/0xd80
[  308.683223][ T9431]  ? __pfx___mutex_lock+0x10/0x10
[  308.684537][ T9431]  ? do_raw_spin_unlock+0x172/0x230
[  308.685901][ T9431]  ? __pfx_rdma_listen+0x10/0x10
[  308.687238][ T9431]  ? __pfx_ucma_get_ctx+0x10/0x10
[  308.688580][ T9431]  ucma_listen+0x174/0x220
[  308.689809][ T9431]  ? __pfx_ucma_listen+0x10/0x10
[  308.691151][ T9431]  ? _copy_from_user+0x5d/0xf0
[  308.692415][ T9431]  ? __pfx_ucma_listen+0x10/0x10
[  308.693713][ T9431]  ucma_write+0x1f9/0x330
[  308.694851][ T9431]  ? __pfx_ucma_write+0x10/0x10
[  308.696133][ T9431]  ? bpf_lsm_file_permission+0x9/0x10
[  308.697549][ T9431]  ? security_file_permission+0x71/0x210
[  308.699023][ T9431]  ? __pfx_ucma_write+0x10/0x10
[  308.700356][ T9431]  vfs_write+0x28e/0x1140
[  308.701537][ T9431]  ? __fget_files+0x23a/0x3f0
[  308.702766][ T9431]  ? __pfx_lock_release+0x10/0x10
[  308.704081][ T9431]  ? trace_lock_acquire+0x14a/0x1d0
[  308.705444][ T9431]  ? __pfx_vfs_write+0x10/0x10
[  308.706695][ T9431]  ? lock_acquire+0x2f/0xb0
[  308.707880][ T9431]  ? __fget_files+0x40/0x3f0
[  308.709119][ T9431]  ? __fget_files+0x244/0x3f0
[  308.710359][ T9431]  ksys_write+0x1fa/0x260
[  308.711495][ T9431]  ? __pfx_ksys_write+0x10/0x10
[  308.712776][ T9431]  __do_fast_syscall_32+0x73/0x120
[  308.714130][ T9431]  do_fast_syscall_32+0x32/0x80
[  308.715486][ T9431]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  308.717138][ T9431] RIP: 0023:0xf7fc1579
[  308.718218][ T9431] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  308.723274][ T9431] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  308.725468][ T9431] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020002380
[  308.727530][ T9431] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  308.729658][ T9431] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  308.731795][ T9431] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  308.733806][ T9431] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  308.735797][ T9431]  </TASK>
[  309.912933][ T9485] sg_write: data in/out 92/98 bytes for SCSI command 0x0-- guessing data in;
[  309.912933][ T9485]    program syz.3.1016 not setting count and/or reply_len properly
[  309.927209][ T9485] FAULT_INJECTION: forcing a failure.
[  309.927209][ T9485] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.930707][ T9485] CPU: 2 UID: 0 PID: 9485 Comm: syz.3.1016 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  309.933409][ T9485] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  309.936205][ T9485] Call Trace:
[  309.937102][ T9485]  <TASK>
[  309.937889][ T9485]  dump_stack_lvl+0x16c/0x1f0
[  309.939144][ T9485]  should_fail_ex+0x497/0x5b0
[  309.940399][ T9485]  _copy_from_iter+0x29b/0x13e0
[  309.941753][ T9485]  ? __pfx__copy_from_iter+0x10/0x10
[  309.943206][ T9485]  ? bio_add_hw_page+0x1ff/0x480
[  309.944568][ T9485]  copy_page_from_iter+0xa5/0x120
[  309.945935][ T9485]  bio_copy_from_iter+0x121/0x280
[  309.947247][ T9485]  blk_rq_map_user_iov+0xca6/0x1700
[  309.948568][ T9485]  ? __pfx_blk_rq_map_user_iov+0x10/0x10
[  309.950048][ T9485]  ? find_held_lock+0x2d/0x110
[  309.951303][ T9485]  ? sg_common_write.constprop.0+0xe6a/0x1c60
[  309.952867][ T9485]  blk_rq_map_user_io+0x206/0x230
[  309.954167][ T9485]  ? __pfx_blk_rq_map_user_io+0x10/0x10
[  309.955621][ T9485]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  309.957173][ T9485]  sg_common_write.constprop.0+0xfbf/0x1c60
[  309.958740][ T9485]  ? __pfx_sg_common_write.constprop.0+0x10/0x10
[  309.960456][ T9485]  ? __pfx____ratelimit+0x10/0x10
[  309.961850][ T9485]  sg_write+0x81c/0xe00
[  309.962953][ T9485]  ? __pfx_sg_write+0x10/0x10
[  309.964193][ T9485]  ? aa_file_perm+0x4d5/0xfe0
[  309.965466][ T9485]  ? find_held_lock+0x2d/0x110
[  309.966791][ T9485]  ? apparmor_file_permission+0x251/0x400
[  309.968444][ T9485]  ? bpf_lsm_file_permission+0x9/0x10
[  309.969993][ T9485]  ? security_file_permission+0x71/0x210
[  309.971464][ T9485]  ? __pfx_sg_write+0x10/0x10
[  309.972639][ T9485]  vfs_write+0x28e/0x1140
[  309.973759][ T9485]  ? __fget_files+0x23a/0x3f0
[  309.974961][ T9485]  ? __pfx_lock_release+0x10/0x10
[  309.976254][ T9485]  ? trace_lock_acquire+0x14a/0x1d0
[  309.977618][ T9485]  ? __pfx_vfs_write+0x10/0x10
[  309.978881][ T9485]  ? lock_acquire+0x2f/0xb0
[  309.980046][ T9485]  ? __fget_files+0x40/0x3f0
[  309.981237][ T9485]  ? __fget_files+0x244/0x3f0
[  309.982490][ T9485]  ksys_write+0x12f/0x260
[  309.983669][ T9485]  ? __pfx_ksys_write+0x10/0x10
[  309.985043][ T9485]  __do_fast_syscall_32+0x73/0x120
[  309.986482][ T9485]  do_fast_syscall_32+0x32/0x80
[  309.987821][ T9485]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  309.989548][ T9485] RIP: 0023:0xf7fc1579
[  309.990634][ T9485] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  309.991097][ T9483] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1017'.
[  309.995634][ T9485] RSP: 002b:00000000f572556c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  309.995649][ T9485] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000200
[  309.995655][ T9485] RDX: 000000000000008c RSI: 0000000000000000 RDI: 0000000000000000
[  309.995661][ T9485] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  309.995666][ T9485] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  309.995672][ T9485] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  309.995684][ T9485]  </TASK>
[  310.985260][ T9511] input: syz0 as /devices/virtual/input/input20
[  310.999283][ T9511] input: failed to attach handler leds to device input20, error: -6
[  311.026119][ T9511] =======================================================
[  311.026119][ T9511] WARNING: The mand mount option has been deprecated and
[  311.026119][ T9511]          and is ignored by this kernel. Remove the mand
[  311.026119][ T9511]          option from the mount to silence this warning.
[  311.026119][ T9511] =======================================================
[  311.041875][ T9511] tmpfs: Unknown parameter 'sr_inodeš8'
[  311.089982][ T7019] wlan1: Trigger new scan to find an IBSS to join
[  311.215373][ T9520] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1026'.
[  311.607296][ T9541] program syz.0.1031 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  311.694868][ T9512] team0: Port device team_slave_0 removed
[  311.701696][ T9512] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  312.765927][ T9550] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1033'.
[  312.773680][ T9554] syz.0.1035(9554): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  312.874286][ T9550] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  312.891995][ T9550] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  313.567054][ T9561] sg_write: data in/out 92/98 bytes for SCSI command 0x0-- guessing data in;
[  313.567054][ T9561]    program syz.2.1037 not setting count and/or reply_len properly
[  313.650124][ T9566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1038'.
[  313.723389][ T9569] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  313.725986][ T9569] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  313.732459][ T9569] vhci_hcd vhci_hcd.0: Device attached
[  313.737038][ T9570] usbip_core: unknown command
[  313.738608][ T9570] vhci_hcd: unknown pdu 0
[  313.739793][ T9570] usbip_core: unknown command
[  313.752009][ T7019] vhci_hcd: stop threads
[  313.753742][ T7019] vhci_hcd: release socket
[  313.755429][ T7019] vhci_hcd: disconnect device
[  316.047765][   T63] wlan1: Trigger new scan to find an IBSS to join
[  316.458636][ T1373] ieee802154 phy1 wpan1: encryption failed: -22
[  316.492694][ T9609] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1050'.
[  316.922394][ T9622] syz.3.1053[9622] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  316.922450][ T9622] syz.3.1053[9622] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  316.927915][ T5385] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  316.958073][ T1137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  317.087448][ T5385] usb 6-1: Using ep0 maxpacket: 8
[  317.122431][ T5385] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  317.125599][ T5385] usb 6-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[  317.128373][ T5385] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.131661][ T5385] usb 6-1: config 0 descriptor??
[  317.136044][ T5385] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  317.185647][ T9635] netlink: 'syz.2.1056': attribute type 2 has an invalid length.
[  317.187771][ T9635] netlink: 723 bytes leftover after parsing attributes in process `syz.2.1056'.
[  317.192954][ T9635] sctp: [Deprecated]: syz.2.1056 (pid 9635) Use of struct sctp_assoc_value in delayed_ack socket option.
[  317.192954][ T9635] Use struct sctp_sack_info instead
[  317.207190][ T9635] netlink: 9412 bytes leftover after parsing attributes in process `syz.2.1056'.
[  317.341478][ T9615] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  317.351558][ T9615] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  317.361396][ T9615] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  317.372534][ T9615] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  317.381885][   T62] usb 6-1: USB disconnect, device number 7
[  318.287239][ T5385] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  318.359217][ T9648] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1059'.
[  318.451956][ T5385] usb 8-1: config 0 has no interfaces?
[  318.453602][ T5385] usb 8-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  318.456295][ T5385] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  318.492077][ T5385] usb 8-1: config 0 descriptor??
[  318.750507][ T9658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  318.760239][ T9658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  318.770456][ T9641] usb usb9: usbfs: process 9641 (syz.3.1058) did not claim interface 0 before use
[  318.831506][   T64] usb 8-1: USB disconnect, device number 10
[  319.062147][ T9668] fuse: Bad value for 'fd'
[  319.406043][ T9672] fuse: Bad value for 'fd'
[  320.449137][ T9699] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1069'.
[  320.957462][ T9716] netlink: 'syz.1.1074': attribute type 10 has an invalid length.
[  320.980913][ T9716] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  320.991691][ T9721] binder_alloc: 9720: binder_install_single_page failed, no vma
[  321.059328][ T9726] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1077'.
[  321.062060][ T9726] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1077'.
[  322.081617][ T9780] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1081'.
[  322.997911][ T9783] delete_channel: no stack
[  323.593086][ T9814] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1092'.
[  323.631200][ T9814] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1092'.
[  323.634593][ T9814] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1092'.
[  323.945212][ T9826] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1094'.
[  324.906867][ T9844] FAULT_INJECTION: forcing a failure.
[  324.906867][ T9844] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.911687][ T9844] CPU: 0 UID: 0 PID: 9844 Comm: syz.3.1100 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  324.914450][ T9844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  324.917353][ T9844] Call Trace:
[  324.918243][ T9844]  <TASK>
[  324.919037][ T9844]  dump_stack_lvl+0x16c/0x1f0
[  324.920293][ T9844]  should_fail_ex+0x497/0x5b0
[  324.921787][ T9844]  _copy_from_user+0x30/0xf0
[  324.923121][ T9844]  compat_wext_handle_ioctl+0xc2/0x310
[  324.924688][ T9844]  ? __pfx_compat_wext_handle_ioctl+0x10/0x10
[  324.926431][ T9844]  compat_sock_ioctl+0x337/0x7e0
[  324.927845][ T9844]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  324.929413][ T9844]  ? __fget_files+0x244/0x3f0
[  324.930745][ T9844]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  324.932389][ T9844]  __do_compat_sys_ioctl+0x259/0x2b0
[  324.933822][ T9844]  __do_fast_syscall_32+0x73/0x120
[  324.935178][ T9844]  do_fast_syscall_32+0x32/0x80
[  324.936466][ T9844]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  324.938198][ T9844] RIP: 0023:0xf7fc1579
[  324.939269][ T9844] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  324.944539][ T9844] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  324.946801][ T9844] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008b30
[  324.949494][ T9844] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[  324.952238][ T9844] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  324.955141][ T9844] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  324.957984][ T9844] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  324.960729][ T9844]  </TASK>
[  324.989085][ T9847] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1101'.
[  325.002164][ T9847] bond1: entered promiscuous mode
[  325.025461][ T9847] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1101'.
[  325.034208][ T9847] bond1: left promiscuous mode
[  325.036196][ T9847] 8021q: adding VLAN 0 to HW filter on device bond1
[  325.219359][ T9854] misc userio: Invalid payload size
[  325.456393][ T9857] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1104'.
[  325.770519][ T9874] FAULT_INJECTION: forcing a failure.
[  325.770519][ T9874] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  325.774033][ T9874] CPU: 2 UID: 0 PID: 9874 Comm: syz.0.1107 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  325.776726][ T9874] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  325.779568][ T9874] Call Trace:
[  325.780462][ T9874]  <TASK>
[  325.781275][ T9874]  dump_stack_lvl+0x16c/0x1f0
[  325.782583][ T9874]  should_fail_ex+0x497/0x5b0
[  325.784264][ T9874]  _copy_from_iter+0x29b/0x13e0
[  325.786078][ T9874]  ? __pfx__copy_from_iter+0x10/0x10
[  325.787955][ T9874]  ? __virt_addr_valid+0x1a4/0x590
[  325.789785][ T9874]  ? __virt_addr_valid+0x5e/0x590
[  325.791114][ T9874]  ? __phys_addr_symbol+0x30/0x80
[  325.792486][ T9874]  ? __check_object_size+0x488/0x710
[  325.793908][ T9874]  netlink_sendmsg+0x813/0xd70
[  325.795180][ T9874]  ? __pfx_netlink_sendmsg+0x10/0x10
[  325.796578][ T9874]  ? lock_acquire+0x2f/0xb0
[  325.797812][ T9874]  ____sys_sendmsg+0x9ae/0xb40
[  325.799125][ T9874]  ? __pfx_____sys_sendmsg+0x10/0x10
[  325.800605][ T9874]  ? get_compat_msghdr+0x11b/0x170
[  325.802314][ T9874]  ? __pfx___lock_acquire+0x10/0x10
[  325.804234][ T9874]  ___sys_sendmsg+0x135/0x1e0
[  325.806105][ T9874]  ? __pfx____sys_sendmsg+0x10/0x10
[  325.808065][ T9874]  ? lock_acquire+0x2f/0xb0
[  325.809821][ T9874]  ? __fget_files+0x40/0x3f0
[  325.811568][ T9874]  ? fdget+0x176/0x210
[  325.813142][ T9874]  __sys_sendmsg+0x117/0x1f0
[  325.814943][ T9874]  ? __pfx___sys_sendmsg+0x10/0x10
[  325.816922][ T9874]  ? __fget_files+0x244/0x3f0
[  325.818723][ T9874]  __do_fast_syscall_32+0x73/0x120
[  325.820668][ T9874]  do_fast_syscall_32+0x32/0x80
[  325.822503][ T9874]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  325.824868][ T9874] RIP: 0023:0xf7fd4579
[  325.826417][ T9874] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  325.833653][ T9874] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  325.836753][ T9874] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000020006440
[  325.839713][ T9874] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  325.842682][ T9874] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  325.845613][ T9874] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  325.848674][ T9874] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  325.851633][ T9874]  </TASK>
[  327.615831][ T9906] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1114'.
[  327.695641][ T9908] fuse: Bad value for 'group_id'
[  327.697214][ T9908] fuse: Bad value for 'group_id'
[  328.549356][ T9932] FAULT_INJECTION: forcing a failure.
[  328.549356][ T9932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  328.557521][ T9932] CPU: 3 UID: 0 PID: 9932 Comm: syz.0.1122 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  328.560316][ T9932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  328.563222][ T9932] Call Trace:
[  328.564361][ T9932]  <TASK>
[  328.565405][ T9932]  dump_stack_lvl+0x16c/0x1f0
[  328.567052][ T9932]  should_fail_ex+0x497/0x5b0
[  328.568708][ T9932]  _copy_to_user+0x30/0xc0
[  328.570280][ T9932]  finalize_log+0x175/0x220
[  328.571879][ T9932]  ? __pfx_finalize_log+0x10/0x10
[  328.573661][ T9932]  ? __might_fault+0xe3/0x190
[  328.575178][ T9932]  ? btf_new_fd+0x1a18/0x53b0
[  328.576480][ T9932]  btf_new_fd+0x1982/0x53b0
[  328.577675][ T9932]  ? __pfx_btf_new_fd+0x10/0x10
[  328.578911][ T9932]  ? __pfx_lock_release+0x10/0x10
[  328.580230][ T9932]  ? trace_lock_acquire+0x14a/0x1d0
[  328.581581][ T9932]  ? apparmor_capable+0x114/0x1d0
[  328.582883][ T9932]  ? bpf_lsm_capable+0x9/0x10
[  328.584445][ T9932]  ? security_capable+0x7e/0x260
[  328.585836][ T9932]  ? ns_capable+0xd7/0x110
[  328.587044][ T9932]  __sys_bpf+0x23fb/0x5780
[  328.588362][ T9932]  ? ksys_write+0x21e/0x260
[  328.590004][ T9932]  ? __pfx___sys_bpf+0x10/0x10
[  328.591544][ T9932]  ? vfs_write+0x14d/0x1140
[  328.592765][ T9932]  ? __mutex_unlock_slowpath+0x164/0x650
[  328.594672][ T9932]  ? fput+0x30/0x390
[  328.596056][ T9932]  ? ksys_write+0x1ad/0x260
[  328.597649][ T9932]  ? __pfx_ksys_write+0x10/0x10
[  328.599007][ T9932]  __ia32_sys_bpf+0x76/0xe0
[  328.600262][ T9932]  __do_fast_syscall_32+0x73/0x120
[  328.601660][ T9932]  do_fast_syscall_32+0x32/0x80
[  328.602960][ T9932]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  328.605135][ T9932] RIP: 0023:0xf7fd4579
[  328.606582][ T9932] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  328.613632][ T9932] RSP: 002b:00000000f573556c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  328.616641][ T9932] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 0000000020000080
[  328.619300][ T9932] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000000
[  328.621986][ T9932] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  328.624808][ T9932] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  328.627717][ T9932] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  328.630491][ T9932]  </TASK>
[  328.839290][ T9935] misc userio: Invalid payload size
[  329.204215][ T9946] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1125'.
[  329.895390][ T9960] netlink: 192 bytes leftover after parsing attributes in process `syz.2.1128'.
[  329.898030][ T9960] netlink: 192 bytes leftover after parsing attributes in process `syz.2.1128'.
[  330.809110][ T9970] fuse: Bad value for 'group_id'
[  330.810698][ T9970] fuse: Bad value for 'group_id'
[  333.122225][T10007] fuse: Bad value for 'group_id'
[  333.123970][T10007] fuse: Bad value for 'group_id'
[  334.073937][T10020] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1144'.
[  334.264289][T10030] fuse: Bad value for 'fd'
[  334.319164][T10031] 9pnet_fd: Insufficient options for proto=fd
[  334.836319][T10036] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1150'.
[  335.342120][T10054] fuse: Bad value for 'group_id'
[  335.343535][T10054] fuse: Bad value for 'group_id'
[  336.173028][T10071] pimreg: entered allmulticast mode
[  337.976276][T10097] overlayfs: failed to resolve './file0': -2
[  338.025221][T10093] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1161'.
[  338.550889][T10111] netlink: 'syz.3.1165': attribute type 10 has an invalid length.
[  338.645895][T10111] batman_adv: batadv0: Adding interface: team0
[  338.649758][T10111] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  338.698170][T10111] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  339.433780][T10116] team0: Port device team_slave_0 removed
[  339.436254][T10116] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  339.534436][T10121] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1167'.
[  339.542417][T10121] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1167'.
[  339.553616][T10121] netlink: 'syz.3.1167': attribute type 6 has an invalid length.
[  339.562831][T10121] netlink: 'syz.3.1167': attribute type 5 has an invalid length.
[  339.570314][T10121] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1167'.
[  340.318354][T10129] overlayfs: failed to get index nlink (file1/file0, err=-61)
[  340.345733][T10129] overlayfs: failed to get index nlink (file1/file1, err=-61)
[  341.084913][T10141] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1172'.
[  341.119174][T10152] cgroup: name respecified
[  342.977406][T10191] FAULT_INJECTION: forcing a failure.
[  342.977406][T10191] name failslab, interval 1, probability 0, space 0, times 0
[  342.980667][T10191] CPU: 2 UID: 0 PID: 10191 Comm: syz.0.1181 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  342.983367][T10191] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  342.986038][T10191] Call Trace:
[  342.986889][T10191]  <TASK>
[  342.987621][T10191]  dump_stack_lvl+0x16c/0x1f0
[  342.988854][T10191]  should_fail_ex+0x497/0x5b0
[  342.990045][T10191]  ? fs_reclaim_acquire+0xae/0x160
[  342.991392][T10191]  should_failslab+0xc2/0x120
[  342.992618][T10191]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  342.994037][T10191]  ? mas_alloc_nodes+0x172/0x830
[  342.995321][T10191]  mas_alloc_nodes+0x172/0x830
[  342.996525][T10191]  mas_node_count_gfp+0x105/0x130
[  342.997841][T10191]  mas_preallocate+0x53b/0xcd0
[  342.999081][T10191]  ? __pfx_mas_preallocate+0x10/0x10
[  343.000575][T10191]  ? __shm_open+0x343/0x6b0
[  343.001911][T10191]  mmap_region+0x165e/0x2a50
[  343.003211][T10191]  ? __pfx_mmap_region+0x10/0x10
[  343.004577][T10191]  ? init_file+0x93/0x230
[  343.005751][T10191]  ? mm_get_unmapped_area+0x95/0xe0
[  343.007111][T10191]  ? bpf_lsm_mmap_addr+0x9/0x10
[  343.008379][T10191]  ? security_mmap_addr+0x6c/0x1e0
[  343.009796][T10191]  ? __get_unmapped_area+0x26b/0x3a0
[  343.011157][T10191]  do_mmap+0xc00/0xfc0
[  343.012252][T10191]  do_shmat+0xf93/0x12f0
[  343.013403][T10191]  ? __pfx_do_shmat+0x10/0x10
[  343.014662][T10191]  __ia32_compat_sys_shmat+0xda/0x170
[  343.016068][T10191]  ? __pfx_ksys_write+0x10/0x10
[  343.017355][T10191]  ? __pfx___ia32_compat_sys_shmat+0x10/0x10
[  343.018942][T10191]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  343.020736][T10191]  ? lockdep_hardirqs_on+0x7c/0x110
[  343.022110][T10191]  __do_fast_syscall_32+0x73/0x120
[  343.023483][T10191]  do_fast_syscall_32+0x32/0x80
[  343.024780][T10191]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  343.026421][T10191] RIP: 0023:0xf7fd4579
[  343.027500][T10191] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  343.032496][T10191] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 000000000000018d
[  343.034905][T10191] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020ffd000
[  343.037156][T10191] RDX: 0000000000007000 RSI: 0000000000000000 RDI: 0000000000000000
[  343.039348][T10191] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  343.041398][T10191] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  343.043454][T10191] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  343.045526][T10191]  </TASK>
[  343.208324][T10195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1183'.
[  344.188948][T10222] misc userio: Invalid payload size
[  344.966123][T10230] binder: 10229:10230 ioctl c0306201 20000180 returned -22
[  345.026426][T10234] fuse: Unknown parameter 'rootmodeT0000000'
[  345.045599][T10234] netlink: 16126 bytes leftover after parsing attributes in process `syz.1.1193'.
[  345.052546][T10234] netlink: 183228 bytes leftover after parsing attributes in process `syz.1.1193'.
[  345.143182][T10236] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1192'.
[  345.367437][    T8] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  345.527372][    T8] usb 5-1: Using ep0 maxpacket: 8
[  345.538425][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  345.547429][    T8] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  345.550913][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.559440][    T8] usb 5-1: config 0 descriptor??
[  345.774427][    T8] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  347.365817][   T39] audit: type=1326 audit(1727595661.839:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10289 comm="syz.2.1201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  347.380517][   T39] audit: type=1326 audit(1727595661.849:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10289 comm="syz.2.1201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  347.393115][   T39] audit: type=1326 audit(1727595661.849:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10289 comm="syz.2.1201" exe="/syz-executor" sig=0 arch=40000003 syscall=182 compat=1 ip=0xf741e579 code=0x7ffc0000
[  347.407376][   T39] audit: type=1326 audit(1727595661.849:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10289 comm="syz.2.1201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  347.418226][   T39] audit: type=1326 audit(1727595661.849:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10289 comm="syz.2.1201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  347.661990][T10302] syzkaller0: entered promiscuous mode
[  347.663633][T10302] syzkaller0: entered allmulticast mode
[  349.247277][ T5350] Bluetooth: hci7: command 0x0406 tx timeout
[  349.249288][ T5350] Bluetooth: hci1: command 0x0406 tx timeout
[  349.874737][T10311] delete_channel: no stack
[  350.047576][ T5402] usb 5-1: USB disconnect, device number 12
[  350.073435][ T5402] iowarrior 5-1:0.0: I/O-Warror #0 now disconnected
[  351.222286][T10338] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  351.725823][T10341] FAULT_INJECTION: forcing a failure.
[  351.725823][T10341] name failslab, interval 1, probability 0, space 0, times 0
[  351.729765][T10341] CPU: 1 UID: 0 PID: 10341 Comm: syz.2.1213 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  351.733219][T10341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  351.736932][T10341] Call Trace:
[  351.738282][T10341]  <TASK>
[  351.739439][T10341]  dump_stack_lvl+0x16c/0x1f0
[  351.741351][T10341]  should_fail_ex+0x497/0x5b0
[  351.743087][T10341]  ? fs_reclaim_acquire+0xae/0x160
[  351.745015][T10341]  should_failslab+0xc2/0x120
[  351.746646][T10341]  __kmalloc_node_track_caller_noprof+0xcf/0x440
[  351.748884][T10341]  ? v9fs_mount+0x21/0xa50
[  351.750458][T10341]  ? v9fs_session_init+0xf5/0x1a80
[  351.752258][T10341]  ? __ia32_sys_mount+0x292/0x310
[  351.754025][T10341]  kstrdup+0x3c/0x80
[  351.755454][T10341]  v9fs_session_init+0xf5/0x1a80
[  351.757290][T10341]  ? __pfx_v9fs_session_init+0x10/0x10
[  351.759258][T10341]  ? kasan_save_track+0x14/0x30
[  351.760987][T10341]  v9fs_mount+0xc6/0xa50
[  351.762496][T10341]  ? __pfx_v9fs_mount+0x10/0x10
[  351.764232][T10341]  ? __pfx_v9fs_mount+0x10/0x10
[  351.765926][T10341]  legacy_get_tree+0x109/0x220
[  351.767531][T10341]  vfs_get_tree+0x8f/0x380
[  351.769154][T10341]  path_mount+0x6e1/0x1f10
[  351.770802][T10341]  ? kmem_cache_free+0x152/0x4b0
[  351.772624][T10341]  ? __pfx_path_mount+0x10/0x10
[  351.774429][T10341]  ? putname+0x12e/0x170
[  351.775991][T10341]  __ia32_sys_mount+0x292/0x310
[  351.777724][T10341]  ? __pfx___ia32_sys_mount+0x10/0x10
[  351.779624][T10341]  __do_fast_syscall_32+0x73/0x120
[  351.781464][T10341]  do_fast_syscall_32+0x32/0x80
[  351.783221][T10341]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  351.785354][T10341] RIP: 0023:0xf741e579
[  351.786756][T10341] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  351.793486][T10341] RSP: 002b:00000000f570656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  351.796348][T10341] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200001c0
[  351.798982][T10341] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000020000040
[  351.801779][T10341] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  351.804515][T10341] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  351.807236][T10341] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  351.809976][T10341]  </TASK>
[  352.512218][T10351] misc userio: Invalid payload size
[  354.920674][T10377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1223'.
[  355.594415][T10394] FAULT_INJECTION: forcing a failure.
[  355.594415][T10394] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  355.598377][T10394] CPU: 1 UID: 0 PID: 10394 Comm: syz.1.1226 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  355.601091][T10394] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.603842][T10394] Call Trace:
[  355.604725][T10394]  <TASK>
[  355.605501][T10394]  dump_stack_lvl+0x16c/0x1f0
[  355.606740][T10394]  should_fail_ex+0x497/0x5b0
[  355.607977][T10394]  _copy_from_iter+0x29b/0x13e0
[  355.609278][T10394]  ? __pfx__copy_from_iter+0x10/0x10
[  355.610660][T10394]  ? __virt_addr_valid+0x1a4/0x590
[  355.611998][T10394]  ? __virt_addr_valid+0x5e/0x590
[  355.613315][T10394]  ? __phys_addr_symbol+0x30/0x80
[  355.614627][T10394]  ? __check_object_size+0x488/0x710
[  355.615998][T10394]  hci_sock_sendmsg+0x46d/0x25e0
[  355.617323][T10394]  ? __pfx_aa_sk_perm+0x10/0x10
[  355.618608][T10394]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  355.620012][T10394]  sock_write_iter+0x4fe/0x5b0
[  355.621295][T10394]  ? __pfx_sock_write_iter+0x10/0x10
[  355.622675][T10394]  ? bpf_lsm_file_permission+0x9/0x10
[  355.624067][T10394]  ? security_file_permission+0x71/0x210
[  355.625538][T10394]  vfs_write+0x6b5/0x1140
[  355.626660][T10394]  ? __pfx_sock_write_iter+0x10/0x10
[  355.628029][T10394]  ? trace_lock_acquire+0x14a/0x1d0
[  355.629400][T10394]  ? __pfx_vfs_write+0x10/0x10
[  355.630657][T10394]  ? __fget_files+0x40/0x3f0
[  355.631881][T10394]  ksys_write+0x1fa/0x260
[  355.633019][T10394]  ? __pfx_ksys_write+0x10/0x10
[  355.634298][T10394]  __do_fast_syscall_32+0x73/0x120
[  355.635637][T10394]  do_fast_syscall_32+0x32/0x80
[  355.636918][T10394]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  355.638564][T10394] RIP: 0023:0xf741e579
[  355.639634][T10394] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  355.644645][T10394] RSP: 002b:00000000f570656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  355.646805][T10394] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000580
[  355.648872][T10394] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  355.650921][T10394] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  355.652982][T10394] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  355.655033][T10394] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  355.657090][T10394]  </TASK>
[  355.999485][T10418] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1233'.
[  356.219259][T10422] misc userio: Invalid payload size
[  358.161034][T10435] CIFS: Unable to determine destination address
[  358.730112][   T39] audit: type=1326 audit(1727595673.209:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10444 comm="syz.1.1241" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7fc00000
[  358.732205][T10453] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  358.747751][T10453] overlayfs: failed to set xattr on upper
[  358.749627][T10453] overlayfs: ...falling back to redirect_dir=nofollow.
[  358.751510][T10453] overlayfs: ...falling back to index=off.
[  358.753135][T10453] overlayfs: ...falling back to uuid=null.
[  358.761204][T10447] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1242'.
[  359.393354][   T39] audit: type=1326 audit(1727595673.869:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10444 comm="syz.1.1241" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf741e579 code=0x7fc00000
[  359.824668][T10468] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  359.831910][T10468] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  359.835365][T10468] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  359.839491][T10468] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  359.842862][T10468] geneve2: entered promiscuous mode
[  359.844725][T10468] geneve2: entered allmulticast mode
[  361.143081][T10487] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  361.584734][T10504] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  362.501183][T10513] syzkaller0: entered promiscuous mode
[  362.511574][T10513] syzkaller0 (unregistering): left promiscuous mode
[  363.537576][T10526] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1259'.
[  363.540097][T10526] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1259'.
[  366.933105][T10575] No source specified
[  367.587721][    T8] usb 6-1: new low-speed USB device number 8 using dummy_hcd
[  367.740820][    T8] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  367.743998][    T8] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  367.747216][    T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  367.750497][    T8] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  367.754447][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  367.777848][    T8] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  367.784473][    T8] usb 6-1: string descriptor 0 read error: -22
[  367.786522][    T8] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  367.790171][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.809106][    T8] usb 6-1: config 0 descriptor??
[  367.811767][T10584] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  367.817783][    T8] hub 6-1:0.0: bad descriptor, ignoring hub
[  367.820098][    T8] hub 6-1:0.0: probe with driver hub failed with error -5
[  367.825914][    T8] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input21
[  368.110229][    T8] usb 6-1: USB disconnect, device number 8
[  368.225894][T10600] misc userio: Invalid payload size
[  369.173875][T10620] vivid-000: =================  START STATUS  =================
[  369.177060][T10620] vivid-000: Test Pattern: 75% Colorbar
[  369.179283][T10620] vivid-000: Fill Percentage of Frame: 100
[  369.181346][T10620] vivid-000: Horizontal Movement: No Movement
[  369.207336][T10620] vivid-000: Vertical Movement: No Movement
[  369.208989][T10620] vivid-000: OSD Text Mode: All
[  369.210213][T10620] vivid-000: Show Border: false
[  369.211468][T10620] vivid-000: Show Square: false
[  369.212682][T10620] vivid-000: Sensor Flipped Horizontally: false
[  369.214215][T10620] vivid-000: Sensor Flipped Vertically: false
[  369.215697][T10620] vivid-000: Insert SAV Code in Image: false
[  369.218928][T10620] vivid-000: Insert EAV Code in Image: false
[  369.220489][T10620] vivid-000: Insert Video Guard Band: false
[  369.221943][T10620] vivid-000: Reduced Framerate: false
[  369.223291][T10620] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  369.225252][T10620] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  369.235457][T10620] vivid-000: Enable Capture Cropping: true grabbed
[  369.237046][T10620] vivid-000: Enable Capture Composing: true grabbed
[  369.239301][T10620] vivid-000: Enable Capture Scaler: true grabbed
[  369.240898][T10620] vivid-000: Timestamp Source: End of Frame
[  369.242342][T10620] vivid-000: Colorspace: sRGB
[  369.243508][T10620] vivid-000: Transfer Function: Default
[  369.248014][T10620] vivid-000: Y'CbCr Encoding: Default
[  369.249430][T10620] vivid-000: HSV Encoding: Hue 0-179
[  369.252923][T10620] vivid-000: Quantization: Default
[  369.254246][T10620] vivid-000: Apply Alpha To Red Only: false
[  369.256498][T10620] vivid-000: Standard Aspect Ratio: 4x3
[  369.262981][T10620] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  369.264995][T10620] vivid-000: DV Timings: 640x480p59 inactive
[  369.266544][T10620] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  369.272249][T10620] vivid-000: Maximum EDID Blocks: 2
[  369.276050][T10620] vivid-000: Limited RGB Range (16-235): false
[  369.279503][T10620] vivid-000: Rx RGB Quantization Range: Automatic
[  369.282895][T10620] vivid-000: Power Present: 0x00000001
[  369.286983][T10620] tpg source WxH: 320x180 (R'G'B)
[  369.290148][T10620] tpg field: 1
[  369.292417][T10620] tpg crop: 320x180@0x0
[  369.298124][T10620] tpg compose: 320x180@0x0
[  369.300386][T10620] tpg colorspace: 8
[  369.303211][T10620] tpg transfer function: 0/2
[  369.305592][T10620] tpg quantization: 0/1
[  369.306915][T10620] tpg RGB range: 0/2
[  369.309098][T10620] vivid-000: ==================  END STATUS  ==================
[  371.419024][ T5403] usb 7-1: new low-speed USB device number 13 using dummy_hcd
[  371.578655][ T5403] usb 7-1: config index 0 descriptor too short (expected 1307, got 27)
[  371.580844][ T5403] usb 7-1: config 0 has an invalid interface number: 0 but max is -1
[  371.582917][ T5403] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0
[  371.585612][ T5403] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  371.589282][ T5403] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  371.592275][ T5403] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  371.608299][ T5403] usb 7-1: string descriptor 0 read error: -22
[  371.610544][ T5403] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  371.613578][ T5403] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.627555][ T5403] usb 7-1: config 0 descriptor??
[  371.630997][T10623] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  371.634666][ T5403] hub 7-1:0.0: bad descriptor, ignoring hub
[  371.636920][ T5403] hub 7-1:0.0: probe with driver hub failed with error -5
[  371.654577][ T5403] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input22
[  371.879563][   T64] usb 7-1: USB disconnect, device number 13
[  372.547729][T10652] misc userio: Invalid payload size
[  373.585246][T10659] misc userio: Invalid payload size
[  374.483962][T10671] fuse: Bad value for 'group_id'
[  374.485727][T10671] fuse: Bad value for 'group_id'
[  375.797289][ T5381] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  375.947172][ T5381] usb 8-1: Using ep0 maxpacket: 32
[  375.951678][ T5381] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[  375.954948][ T5381] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  375.961301][ T5381] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[  375.964399][ T5381] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  375.984705][ T5381] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  375.993885][ T5381] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  376.000595][ T5381] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  376.006867][ T5381] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.019370][ T5381] usb 8-1: config 0 descriptor??
[  376.241612][ T5381] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 11 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  376.274956][ T5381] usb 8-1: USB disconnect, device number 11
[  376.281272][ T5381] usblp0: removed
[  376.640800][T10697] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1300'.
[  376.827257][ T5381] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  377.007425][ T5381] usb 8-1: Using ep0 maxpacket: 32
[  377.021666][ T5381] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[  377.025830][ T5381] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  377.033170][ T5381] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[  377.036662][ T5381] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  377.046258][ T5381] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  377.049764][ T5381] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  377.054171][ T5381] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  377.057420][ T5381] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.066558][ T5381] usb 8-1: config 0 descriptor??
[  377.287214][ T5381] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 12 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  377.656282][T10713] usblp0:failed reading printer status (-32)
[  377.665094][T10691] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[  377.670683][ T5381] usb 8-1: USB disconnect, device number 12
[  377.675855][ T5381] usblp0: removed
[  377.847838][T10725] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1303'.
[  377.888793][ T1373] ieee802154 phy1 wpan1: encryption failed: -22
[  378.892269][T10749] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1309'.
[  379.184405][T10759] sp0: Synchronizing with TNC
[  379.259055][T10765] input: syz0 as /devices/virtual/input/input23
[  379.402213][T10769] input: syz1 as /devices/virtual/input/input24
[  379.421870][T10769] Cannot find del_set index 2 as target
[  379.737405][ T5343] Bluetooth: hci0: command tx timeout
[  380.100245][T10781] fuse: Bad value for 'group_id'
[  380.102132][T10781] fuse: Bad value for 'group_id'
[  380.104284][T10783] fuse: Bad value for 'group_id'
[  380.106061][T10783] fuse: Bad value for 'group_id'
[  380.568353][T10794] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1318'.
[  381.049095][T10802] sp0: Synchronizing with TNC
[  381.051821][T10802] FAULT_INJECTION: forcing a failure.
[  381.051821][T10802] name failslab, interval 1, probability 0, space 0, times 0
[  381.067581][T10802] CPU: 0 UID: 0 PID: 10802 Comm: syz.0.1321 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  381.070841][T10802] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  381.074157][T10802] Call Trace:
[  381.075198][T10802]  <TASK>
[  381.076146][T10802]  dump_stack_lvl+0x16c/0x1f0
[  381.077593][T10802]  should_fail_ex+0x497/0x5b0
[  381.079033][T10802]  ? fs_reclaim_acquire+0xae/0x160
[  381.080586][T10802]  should_failslab+0xc2/0x120
[  381.081904][T10802]  __kmalloc_noprof+0xcb/0x410
[  381.083112][T10802]  ? __pfx_d_absolute_path+0x10/0x10
[  381.084589][T10802]  tomoyo_encode2+0x100/0x3e0
[  381.086137][T10802]  tomoyo_realpath_from_path+0x1a7/0x710
[  381.088091][T10802]  tomoyo_path_number_perm+0x245/0x5b0
[  381.089861][T10802]  ? tomoyo_path_number_perm+0x232/0x5b0
[  381.091367][T10802]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  381.093519][T10802]  ? trace_lock_acquire+0x14a/0x1d0
[  381.095282][T10802]  ? lock_acquire+0x2f/0xb0
[  381.096512][T10802]  ? __fget_files+0x40/0x3f0
[  381.097836][T10802]  ? __fget_files+0x244/0x3f0
[  381.099326][T10802]  security_file_ioctl_compat+0x9b/0x240
[  381.100946][T10802]  __do_compat_sys_ioctl+0x52/0x2b0
[  381.102422][T10802]  __do_fast_syscall_32+0x73/0x120
[  381.103975][T10802]  do_fast_syscall_32+0x32/0x80
[  381.105449][T10802]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  381.107302][T10802] RIP: 0023:0xf7fd4579
[  381.108765][T10802] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  381.113981][T10802] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  381.116184][T10802] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000005412
[  381.118467][T10802] RDX: 00000000200003c0 RSI: 0000000000000000 RDI: 0000000000000000
[  381.120583][T10802] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  381.122974][T10802] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  381.125266][T10802] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  381.127534][T10802]  </TASK>
[  381.134000][T10802] ERROR: Out of memory at tomoyo_realpath_from_path.
[  381.136592][T10802] input: syz0 as /devices/virtual/input/input25
[  382.050470][T10816] vivid-002: =================  START STATUS  =================
[  382.055233][T10816] vivid-002: Radio HW Seek Mode: Bounded
[  382.061170][T10816] vivid-002: Radio Programmable HW Seek: false
[  382.063279][T10816] vivid-002: RDS Rx I/O Mode: Block I/O
[  382.065366][T10816] vivid-002: Generate RBDS Instead of RDS: false
[  382.067976][T10816] vivid-002: RDS Reception: true
[  382.069689][T10816] vivid-002: RDS Program Type: 0 inactive
[  382.071520][T10816] vivid-002: RDS PS Name:  inactive
[  382.073372][T10816] vivid-002: RDS Radio Text:  inactive
[  382.075213][T10816] vivid-002: RDS Traffic Announcement: false inactive
[  382.078412][T10816] vivid-002: RDS Traffic Program: false inactive
[  382.080813][T10816] vivid-002: RDS Music: false inactive
[  382.082846][T10816] vivid-002: ==================  END STATUS  ==================
[  384.193559][T10844] fuse: Bad value for 'group_id'
[  384.195590][T10844] fuse: Bad value for 'group_id'
[  384.258585][T10842] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1328'.
[  386.346550][T10880] FAULT_INJECTION: forcing a failure.
[  386.346550][T10880] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  386.357820][T10880] CPU: 1 UID: 0 PID: 10880 Comm: syz.3.1337 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  386.361880][T10880] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  386.365750][T10880] Call Trace:
[  386.366967][T10880]  <TASK>
[  386.368092][T10880]  dump_stack_lvl+0x16c/0x1f0
[  386.369896][T10880]  should_fail_ex+0x497/0x5b0
[  386.371789][T10880]  _copy_from_user+0x30/0xf0
[  386.373593][T10880]  get_compat_msghdr+0xa8/0x170
[  386.375195][T10880]  ? __pfx_get_compat_msghdr+0x10/0x10
[  386.377076][T10880]  ? __pfx___lock_acquire+0x10/0x10
[  386.379001][T10880]  ___sys_sendmsg+0x1b0/0x1e0
[  386.380756][T10880]  ? __pfx____sys_sendmsg+0x10/0x10
[  386.382724][T10880]  ? lock_acquire+0x2f/0xb0
[  386.384565][T10880]  ? __fget_files+0x40/0x3f0
[  386.386442][T10880]  ? __pfx___might_resched+0x10/0x10
[  386.388477][T10880]  ? fdget+0x176/0x210
[  386.389839][T10880]  __sys_sendmmsg+0x2a5/0x450
[  386.391462][T10880]  ? __pfx___sys_sendmmsg+0x10/0x10
[  386.393383][T10880]  ? vfs_write+0x14d/0x1140
[  386.395057][T10880]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  386.397332][T10880]  ? fput+0x30/0x390
[  386.398864][T10880]  ? ksys_write+0x1ad/0x260
[  386.400602][T10880]  ? __pfx_ksys_write+0x10/0x10
[  386.402404][T10880]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  386.404510][T10880]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  386.406904][T10880]  __do_fast_syscall_32+0x73/0x120
[  386.408837][T10880]  do_fast_syscall_32+0x32/0x80
[  386.410679][T10880]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  386.413150][T10880] RIP: 0023:0xf7fc1579
[  386.414388][T10880] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  386.419750][T10880] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  386.422809][T10880] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020005400
[  386.425785][T10880] RDX: 00000000000001ee RSI: 0000000000000000 RDI: 0000000000000000
[  386.428811][T10880] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  386.431961][T10880] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  386.435117][T10880] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  386.438274][T10880]  </TASK>
[  387.584743][T10895] fuse: Bad value for 'group_id'
[  387.586437][T10895] fuse: Bad value for 'group_id'
[  388.542945][   T39] audit: type=1326 audit(1727595703.019:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.0.1342" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x40000
[  389.786735][T10934] netlink: 'syz.2.1349': attribute type 1 has an invalid length.
[  390.095472][T10944] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1350'.
[  392.662394][T10983] syz.0.1359[10983] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  392.662529][T10983] syz.0.1359[10983] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  392.669321][T10983] syz.0.1359[10983] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  393.891903][T10999] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1364'.
[  393.900630][T10999] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.904528][T10999] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.909260][T10999] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.913189][T10999] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.916874][T10999] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.926329][T10999] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.932529][T10999] batadv_slave_1: entered promiscuous mode
[  394.018199][T11001] fuse: Bad value for 'group_id'
[  394.020058][T11001] fuse: Bad value for 'group_id'
[  394.169435][T11004] netlink: 'syz.3.1366': attribute type 1 has an invalid length.
[  394.216204][T11004] bond2: entered promiscuous mode
[  394.228191][T11004] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  394.234625][T11004] bond2: (slave ip6gretap1): making interface the new active one
[  394.237568][T11004] ip6gretap1: entered promiscuous mode
[  394.240440][T11004] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link
[  394.245684][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1366'.
[  394.249872][T11004] bond2: left promiscuous mode
[  394.251173][T11004] ip6gretap1: left promiscuous mode
[  394.252784][T11004] 8021q: adding VLAN 0 to HW filter on device bond2
[  394.456490][T11014] misc userio: Invalid payload size
[  395.127861][T11033] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1373'.
[  395.131349][T11033] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  395.135120][T11033] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.139660][T11033] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  395.143073][T11033] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.146226][T11033] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  395.150525][T11033] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.156136][T11033] batadv_slave_1: entered promiscuous mode
[  395.654208][T11043] PKCS7: Unknown OID: [5] (bad)
[  395.656304][T11043] PKCS7: Only support pkcs7_signedData type
[  396.593990][T11044] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  396.619797][T11057] fuse: Bad value for 'group_id'
[  396.621863][T11057] fuse: Bad value for 'group_id'
[  413.167390][T11080] mkiss: ax0: crc mode is auto.
[  413.332380][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  416.047306][   T25] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  416.073372][T11121] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1396'.
[  416.076732][T11121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.080627][T11121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.084595][T11121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.089071][T11121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.092202][T11121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.095796][T11121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.128252][T11122] misc userio: Invalid payload size
[  416.200815][   T25] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  416.204207][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  416.220732][   T25] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  416.223857][   T25] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  416.226193][   T25] usb 5-1: Manufacturer: syz
[  416.230207][   T25] usb 5-1: config 0 descriptor??
[  416.337232][   T25] rc_core: IR keymap rc-hauppauge not found
[  416.339882][   T25] Registered IR keymap rc-empty
[  416.348476][   T25] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  416.362524][   T25] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input27
[  416.450424][ T5403] usb 5-1: USB disconnect, device number 13
[  417.249821][T11141] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1401'.
[  417.963038][T11160] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  417.965353][T11160] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  417.976846][T11160] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  417.979289][T11160] Bluetooth: hci7: Opcode 0x0406 failed: -4
[  418.171038][T11167] blktrace: Concurrent blktraces are not allowed on nbd0
[  418.176817][T11167] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1407'.
[  418.185001][T11167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.189424][T11167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.193253][T11167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.201360][T11167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.205158][T11167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.209821][T11167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.828950][T11173] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1408'.
[  418.832759][T11173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.844711][T11173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.855022][T11173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.862648][T11173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  418.866460][T11173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  418.870332][T11173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.163431][T11175] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1410'.
[  419.435560][T11185] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  419.455407][T11185] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  420.617394][   T62] usb 7-1: new low-speed USB device number 14 using dummy_hcd
[  420.769766][   T62] usb 7-1: config index 0 descriptor too short (expected 1307, got 27)
[  420.772101][   T62] usb 7-1: config 0 has an invalid interface number: 0 but max is -1
[  420.774381][   T62] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0
[  420.776903][   T62] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  420.780475][   T62] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  420.787959][   T62] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  420.801498][   T62] usb 7-1: string descriptor 0 read error: -22
[  420.804065][   T62] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  420.806575][   T62] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  420.820841][   T62] usb 7-1: config 0 descriptor??
[  420.827982][T11199] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  420.838447][   T62] hub 7-1:0.0: bad descriptor, ignoring hub
[  420.842156][   T62] hub 7-1:0.0: probe with driver hub failed with error -5
[  420.856957][   T62] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input28
[  421.129009][   T62] usb 7-1: USB disconnect, device number 14
[  421.497676][ T4788] Bluetooth: hci1: command 0x0406 tx timeout
[  421.499944][ T5343] Bluetooth: hci7: command 0x0406 tx timeout
[  421.719460][T11215] fuse: Bad value for 'group_id'
[  421.721269][T11215] fuse: Bad value for 'group_id'
[  422.640386][T11221] misc userio: Invalid payload size
[  423.567252][ T4788] Bluetooth: hci1: command 0x0406 tx timeout
[  423.569078][ T5343] Bluetooth: hci7: command 0x0406 tx timeout
[  424.631677][T11238] syzkaller0: entered promiscuous mode
[  424.633282][T11238] syzkaller0: entered allmulticast mode
[  424.645163][T11238] netlink: 'syz.0.1426': attribute type 1 has an invalid length.
[  427.008940][T11254] fuse: Bad value for 'group_id'
[  427.010758][T11254] fuse: Bad value for 'group_id'
[  427.158578][T11264] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.162202][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.165845][T11264] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.173199][ T9755] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.187258][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.838615][T11253] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.842058][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.976323][ T7303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  428.138253][T11277] overlayfs: overlapping lowerdir path
[  428.209155][T11279] blktrace: Concurrent blktraces are not allowed on nbd0
[  428.271178][T11279] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1435'.
[  428.279252][T11279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  428.315204][T11279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.343731][T11279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  428.380295][T11279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.401652][T11279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  428.425178][T11279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.857364][   T62] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  428.913551][T11282] misc userio: Invalid payload size
[  429.019417][ T7303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  430.567048][T11299] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.1439'.
[  431.586148][T11317] fuse: Bad value for 'group_id'
[  431.599656][T11317] fuse: Bad value for 'group_id'
[  432.405428][T11316] net_ratelimit: 12 callbacks suppressed
[  432.405440][T11316] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  432.409466][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  432.919030][T11332] 9pnet_fd: Insufficient options for proto=fd
[  432.928821][T11326] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1445'.
[  432.931464][T11326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  432.947159][T11326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  432.949816][T11326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  432.952757][T11326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  432.955433][T11326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  432.960594][T11326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  433.168149][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  433.186105][T11341] misc userio: Invalid payload size
[  434.208743][ T7303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  434.337436][T11362] fuse: Bad value for 'group_id'
[  434.339279][T11362] fuse: Bad value for 'group_id'
[  434.606184][T11368] Sensor A: =================  START STATUS  =================
[  434.609285][T11368] Sensor A: Test Pattern: 75% Colorbar
[  434.611841][T11368] Sensor A: Show Information: All
[  434.613740][T11368] Sensor A: Vertical Flip: false
[  434.615567][T11368] Sensor A: Horizontal Flip: false
[  434.619808][T11368] Sensor A: Brightness: 128
[  434.621073][T11368] Sensor A: Contrast: 128
[  434.622220][T11368] Sensor A: Hue: 0
[  434.623213][T11368] Sensor A: Saturation: 128
[  434.624436][T11368] Sensor A: ==================  END STATUS  ==================
[  434.627947][T11368] fuse: Bad value for 'user_id'
[  434.629278][T11368] fuse: Bad value for 'user_id'
[  434.927983][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  435.257486][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  436.297356][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.327410][ T7303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.800957][T11412] fuse: Bad value for 'group_id'
[  437.802797][T11412] fuse: Bad value for 'group_id'
[  437.862825][T11413] tmpfs: Unknown parameter 'siĆaze*8'
[  437.938950][T11415] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.941979][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.947217][T11415] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.950893][ T9755] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.967221][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.969780][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  438.171940][ T5343] Bluetooth: hci1: SCO packet for unknown connection handle 200
[  438.368032][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  438.625637][T11411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  438.629548][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  438.640421][T11423] misc userio: Invalid payload size
[  439.358214][ T1373] ieee802154 phy1 wpan1: encryption failed: -22
[  439.407570][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  440.066674][T11447] dlm: Unknown command passed to DLM device : 0
[  440.066674][T11447] 
[  440.137754][T11450] FAULT_INJECTION: forcing a failure.
[  440.137754][T11450] name failslab, interval 1, probability 0, space 0, times 0
[  440.142302][T11450] CPU: 3 UID: 0 PID: 11450 Comm: syz.0.1475 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  440.146144][T11450] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  440.149867][T11450] Call Trace:
[  440.151051][T11450]  <TASK>
[  440.152108][T11450]  dump_stack_lvl+0x16c/0x1f0
[  440.153874][T11450]  should_fail_ex+0x497/0x5b0
[  440.155694][T11450]  should_failslab+0xc2/0x120
[  440.157507][T11450]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  440.159476][T11450]  ? skb_clone+0x190/0x3f0
[  440.161045][T11450]  skb_clone+0x190/0x3f0
[  440.162539][T11450]  netlink_deliver_tap+0xb26/0xcf0
[  440.164570][T11450]  netlink_unicast+0x6b4/0x7f0
[  440.166427][T11450]  ? __pfx_netlink_unicast+0x10/0x10
[  440.168759][T11450]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[  440.170760][T11450]  netlink_ack+0x6a5/0xb20
[  440.172389][T11450]  netlink_rcv_skb+0x327/0x410
[  440.174069][T11450]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  440.176077][T11450]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  440.178064][T11450]  ? netlink_deliver_tap+0x1ae/0xcf0
[  440.179953][T11450]  netlink_unicast+0x53c/0x7f0
[  440.181714][T11450]  ? __pfx_netlink_unicast+0x10/0x10
[  440.183690][T11450]  ? __phys_addr_symbol+0x30/0x80
[  440.185644][T11450]  ? __check_object_size+0x488/0x710
[  440.187626][T11450]  netlink_sendmsg+0x8b8/0xd70
[  440.189341][T11450]  ? __pfx_netlink_sendmsg+0x10/0x10
[  440.191200][T11450]  ? lock_acquire+0x2f/0xb0
[  440.192846][T11450]  ____sys_sendmsg+0x9ae/0xb40
[  440.194573][T11450]  ? __pfx_____sys_sendmsg+0x10/0x10
[  440.196554][T11450]  ? get_compat_msghdr+0x11b/0x170
[  440.198477][T11450]  ? __pfx___lock_acquire+0x10/0x10
[  440.200441][T11450]  ___sys_sendmsg+0x135/0x1e0
[  440.202148][T11450]  ? __pfx____sys_sendmsg+0x10/0x10
[  440.204002][T11450]  ? lock_acquire+0x2f/0xb0
[  440.205609][T11450]  ? __fget_files+0x40/0x3f0
[  440.207262][T11450]  ? fdget+0x176/0x210
[  440.208834][T11450]  __sys_sendmsg+0x117/0x1f0
[  440.210605][T11450]  ? __pfx___sys_sendmsg+0x10/0x10
[  440.212497][T11450]  ? __fget_files+0x244/0x3f0
[  440.214167][T11450]  __do_fast_syscall_32+0x73/0x120
[  440.215992][T11450]  do_fast_syscall_32+0x32/0x80
[  440.217907][T11450]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  440.220153][T11450] RIP: 0023:0xf7fd4579
[  440.221623][T11450] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  440.228298][T11450] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  440.231241][T11450] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  440.234351][T11450] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  440.237184][T11450] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  440.239923][T11450] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  440.242044][T11450] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  440.244299][T11450]  </TASK>
[  440.466436][T11457] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1477'.
[  440.470930][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.475919][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.484002][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.486747][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.489368][T11457] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.492196][T11457] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.494948][T11457] batadv_slave_1: entered promiscuous mode
[  440.517951][T11461] fuse: Bad value for 'group_id'
[  440.520443][T11461] fuse: Bad value for 'group_id'
[  440.886761][T11472] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1481'.
[  440.889385][T11472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.892093][T11472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.894611][T11472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.897401][T11472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.900061][T11472] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.902789][T11472] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.089244][T11483] 
[  441.090134][T11483] ============================================
[  441.092220][T11483] WARNING: possible recursive locking detected
[  441.094298][T11483] 6.11.0-syzkaller-11993-g3efc57369a0c #0 Not tainted
[  441.097089][T11483] --------------------------------------------
[  441.100258][T11483] syz.1.1484/11483 is trying to acquire lock:
[  441.102294][T11483] ffffc90021ca90d8 (&rb->spinlock){-.-.}-{2:2}, at: __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.105492][T11483] 
[  441.105492][T11483] but task is already holding lock:
[  441.107973][T11483] ffffc90021c810d8 (&rb->spinlock){-.-.}-{2:2}, at: __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.111135][T11483] 
[  441.111135][T11483] other info that might help us debug this:
[  441.113834][T11483]  Possible unsafe locking scenario:
[  441.113834][T11483] 
[  441.116308][T11483]        CPU0
[  441.117434][T11483]        ----
[  441.118610][T11483]   lock(&rb->spinlock);
[  441.120154][T11483]   lock(&rb->spinlock);
[  441.121590][T11483] 
[  441.121590][T11483]  *** DEADLOCK ***
[  441.121590][T11483] 
[  441.124259][T11483]  May be due to missing lock nesting notation
[  441.124259][T11483] 
[  441.126997][T11483] 4 locks held by syz.1.1484/11483:
[  441.128784][T11483]  #0: ffffffff8ea9f7e8 (rng_mutex){+.+.}-{3:3}, at: put_rng+0x1a/0xe0
[  441.131608][T11483]  #1: ffffffff8ddb77c0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x1c2/0x590
[  441.134754][T11483]  #2: ffffc90021c810d8 (&rb->spinlock){-.-.}-{2:2}, at: __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.138117][T11483]  #3: ffffffff8ddb77c0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run2+0x1c2/0x590
[  441.141248][T11483] 
[  441.141248][T11483] stack backtrace:
[  441.142550][T11487] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1484'.
[  441.143112][T11483] CPU: 2 UID: 0 PID: 11483 Comm: syz.1.1484 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[  441.146619][T11487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.149811][T11483] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  441.149824][T11483] Call Trace:
[  441.149830][T11483]  <TASK>
[  441.149836][T11483]  dump_stack_lvl+0x116/0x1f0
[  441.149864][T11483]  print_deadlock_bug+0x2e3/0x410
[  441.149888][T11483]  __lock_acquire+0x2185/0x3ce0
[  441.149914][T11483]  ? __pfx___lock_acquire+0x10/0x10
[  441.149935][T11483]  ? hlock_class+0x4e/0x130
[  441.149952][T11483]  ? __lock_acquire+0xbdd/0x3ce0
[  441.149975][T11483]  lock_acquire.part.0+0x11b/0x380
[  441.149998][T11483]  ? __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.150022][T11483]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  441.174539][T11483]  ? rcu_is_watching+0x12/0xc0
[  441.176178][T11483]  ? trace_lock_acquire+0x14a/0x1d0
[  441.177926][T11483]  ? __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.179755][T11483]  ? lock_acquire+0x2f/0xb0
[  441.181174][T11483]  ? __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.182971][T11483]  _raw_spin_lock_irqsave+0x3a/0x60
[  441.184742][T11483]  ? __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.186585][T11483]  __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.187210][T11487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.188396][T11483]  ? trace_lock_acquire+0x14a/0x1d0
[  441.191718][T11487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.193379][T11483]  ? bpf_trace_run2+0x1c2/0x590
[  441.193402][T11483]  bpf_ringbuf_reserve+0x57/0x90
[  441.196913][T11487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.198501][T11483]  bpf_prog_0e153dac479590bf+0x35/0x70
[  441.198517][T11483]  bpf_trace_run2+0x231/0x590
[  441.198535][T11483]  ? hlock_class+0x4e/0x130
[  441.198553][T11483]  ? __pfx_bpf_trace_run2+0x10/0x10
[  441.200301][T11487] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.203394][T11483]  ? __pfx_mark_lock+0x10/0x10
[  441.203419][T11483]  ? hlock_class+0x4e/0x130
[  441.203437][T11483]  ? __lock_acquire+0x163e/0x3ce0
[  441.203456][T11483]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  441.205406][T11487] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.206859][T11483]  __traceiter_contention_begin+0x5a/0xa0
[  441.206885][T11483]  trace_contention_begin.constprop.0+0xed/0x170
[  441.227888][T11483]  __pv_queued_spin_lock_slowpath+0x10b/0xc90
[  441.230015][T11483]  ? __pfx___lock_acquire+0x10/0x10
[  441.231773][T11483]  ? hlock_class+0x4e/0x130
[  441.233331][T11483]  ? __lock_acquire+0xbdd/0x3ce0
[  441.235010][T11483]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  441.236360][T11490] blktrace: Concurrent blktraces are not allowed on nbd2
[  441.237205][T11483]  do_raw_spin_lock+0x210/0x2c0
[  441.237225][T11483]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  441.237241][T11483]  ? lock_acquire+0x2f/0xb0
[  441.237262][T11483]  ? __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.237287][T11483]  _raw_spin_lock_irqsave+0x42/0x60
[  441.237304][T11483]  ? __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.242467][T11490] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1485'.
[  441.242907][T11483]  __bpf_ringbuf_reserve+0x36e/0x4b0
[  441.242934][T11483]  ? trace_lock_acquire+0x14a/0x1d0
[  441.245077][T11490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.246256][T11483]  ? bpf_trace_run2+0x1c2/0x590
[  441.246279][T11483]  bpf_ringbuf_reserve+0x57/0x90
[  441.246303][T11483]  bpf_prog_0e153dac479590bf+0x35/0x70
[  441.246317][T11483]  bpf_trace_run2+0x231/0x590
[  441.246336][T11483]  ? __pfx_bpf_trace_run2+0x10/0x10
[  441.246356][T11483]  ? rcu_is_watching+0x12/0xc0
[  441.246375][T11483]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  441.248339][T11490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.249946][T11483]  __traceiter_contention_begin+0x5a/0xa0
[  441.253095][T11490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.254535][T11483]  trace_contention_begin+0xce/0x140
[  441.254563][T11483]  __mutex_lock+0x182/0x9c0
[  441.254585][T11483]  ? put_rng+0x1a/0xe0
[  441.256636][T11490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.259583][T11483]  ? virtqueue_kick_prepare+0x1a3/0x4c0
[  441.259606][T11483]  ? iowrite16+0x2b/0x80
[  441.259627][T11483]  ? put_rng+0x1a/0xe0
[  441.259648][T11483]  ? __pfx___mutex_lock+0x10/0x10
[  441.259670][T11483]  ? __pfx_virtio_read+0x10/0x10
[  441.259695][T11483]  ? put_rng+0x1a/0xe0
[  441.259714][T11483]  put_rng+0x1a/0xe0
[  441.261618][T11490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.263014][T11483]  rng_dev_read+0x4e4/0x720
[  441.263039][T11483]  ? __pfx_rng_dev_read+0x10/0x10
[  441.263063][T11483]  ? bpf_lsm_file_permission+0x9/0x10
[  441.263082][T11483]  ? security_file_permission+0x71/0x210
[  441.263105][T11483]  ? __pfx_rng_dev_read+0x10/0x10
[  441.263127][T11483]  vfs_readv+0x6bf/0x890
[  441.265293][T11490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.266501][T11483]  ? __pfx_vfs_readv+0x10/0x10
[  441.266518][T11483]  ? find_held_lock+0x2d/0x110
[  441.266538][T11483]  ? __pfx_lock_release+0x10/0x10
[  441.266558][T11483]  ? trace_lock_acquire+0x14a/0x1d0
[  441.266578][T11483]  ? __fget_files+0x244/0x3f0
[  441.266596][T11483]  ? do_preadv+0x1b4/0x270
[  441.266611][T11483]  do_preadv+0x1b4/0x270
[  441.266625][T11483]  ? __pfx_do_preadv+0x10/0x10
[  441.323357][T11492] misc userio: Invalid payload size
[  441.323762][T11483]  __do_fast_syscall_32+0x73/0x120
[  441.323805][T11483]  do_fast_syscall_32+0x32/0x80
[  441.323828][T11483]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  441.323853][T11483] RIP: 0023:0xf741e579
[  441.323866][T11483] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  441.323882][T11483] RSP: 002b:00000000f570656c EFLAGS: 00000296 ORIG_RAX: 000000000000014d
[  441.346146][T11483] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000240
[  441.346161][T11483] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  441.346171][T11483] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  441.346180][T11483] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  441.346190][T11483] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  441.346205][T11483]  </TASK>
[  443.577146][ T5385] net_ratelimit: 5 callbacks suppressed
[  443.577160][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  444.047384][   T62] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  444.608092][ T5403] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  445.667219][ T5403] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.688157][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  447.088557][   T62] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  447.727439][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  448.767311][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  449.817146][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  450.128303][   T62] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  450.847328][ T5402] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  450.857179][ T5385] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog

VM DIAGNOSIS:
07:38:19  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc90020ec7b60 RCX=0000000000000000 RDX=0000000000000000
RSI=ffffffff84b8b9f4 RDI=ffffc90020ec7b60 RBP=ffffc90020ec7b20 RSP=ffffc90020ec7a80
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000000 R13=ffffc90020ec7b60 R14=ffffc90020ec7b28 R15=0000000000000000
RIP=ffffffff84b8ba1d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020024000 CR3=00000000592e8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000fb01ac RBX=0000000000000001 RCX=ffffffff8b12d6d9 RDX=ffffed10056a7026
RSI=ffffffff8bb11d20 RDI=ffffffff8164098c RBP=ffffed10036eb910 RSP=ffffc90000477e08
R8 =0000000000000000 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000001
R12=0000000000000001 R13=ffff88801b75c880 R14=ffffffff901cc388 R15=0000000000000000
RIP=ffffffff8b12eabf RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020002380 CR3=000000005e37c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff850340d5 RDI=ffffffff9a63a260 RBP=ffffffff9a63a220 RSP=ffffc90007b46d78
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000033 R14=ffffffff85034070 R15=0000000000000000
RIP=ffffffff850340ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020003000 CR3=000000004a5a2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000005c873c RBX=0000000000000003 RCX=ffffffff8b12d6d9 RDX=ffffed10056e7026
RSI=ffffffff8bb11d20 RDI=ffffffff8164098c RBP=ffffed10036ee488 RSP=ffffc90000497e08
R8 =0000000000000000 R9 =ffffed10056e7025 R10=ffff88802b73812b R11=0000000000000001
R12=0000000000000003 R13=ffff88801b772440 R14=ffffffff901cc388 R15=0000000000000000
RIP=ffffffff8b12eabf RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000031a0fff8 CR3=000000005c1fe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000