last executing test programs:

4.429901919s ago: executing program 0 (id=261):
syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=ANY=[], 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
getrusage(0x0, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x8)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x4e24, 0x2, @empty}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r3, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0xd8)
sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = socket(0xa, 0x3, 0x3a)
mmap$IORING_OFF_SQES(&(0x7f0000165000/0x3000)=nil, 0x3000, 0xc, 0x100010, r1, 0x10000000)
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
mount$nfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={[{'\x01\x00\x00\x00&'}], [{@audit}, {@audit}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@obj_role}]})
ioctl$SIOCSIFMTU(r4, 0x8922, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6_sctp(0xa, 0x1, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)

4.047055924s ago: executing program 2 (id=263):
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$l2tp6(0xa, 0x2, 0x73)
r0 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x880, 0x9)
finit_module(r0, 0x0, 0x5)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000005c0))
syz_usbip_server_init(0x4)
syz_usbip_server_init(0x1)
openat$cdrom(0xffffff9c, &(0x7f0000000280), 0x147000, 0x0)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x2)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
readv(r1, &(0x7f00000006c0)=[{&(0x7f0000000340)=""/222, 0xde}], 0x1)
syz_usbip_server_init(0x2)
syz_usbip_server_init(0x5)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4800)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x4)
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x3)
r3 = syz_io_uring_setup(0x42e6, &(0x7f00000002c0)={0x0, 0x5eda, 0x2, 0x3, 0x80025d}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpu.stat\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, r5, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x22, 0x2000, @fd_index, 0x0, 0x7fffffff, 0x9, 0xa, 0x1, {0x2}})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r3, 0x7330, 0x0, 0x0, 0x0, 0x0)

3.879313219s ago: executing program 0 (id=264):
socket$inet6_mptcp(0xa, 0x1, 0x106) (async, rerun: 32)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) (rerun: 32)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) (async, rerun: 64)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34) (async)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000080)={0x300, 0x3000040, 0x8, 0x1b, 0xfe, 0x0}) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
mknod(&(0x7f0000000000)='./file0\x00', 0x10, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18)
mount(&(0x7f0000000340)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./file0\x00', &(0x7f00000003c0)='reiserfs\x00', 0x3010003, 0x0) (async, rerun: 32)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}) (rerun: 32)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
syz_usbip_server_init(0x1) (async)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000280)={'vcan0\x00', <r5=>0x0})
bind$can_j1939(r4, &(0x7f0000000100)={0x1d, r5}, 0x18)
connect$can_j1939(r4, &(0x7f0000000080)={0x1d, r5, 0x0, {0x0, 0xf0, 0x2}, 0x1}, 0x18)
getpeername$packet(r4, 0x0, &(0x7f00000000c0))
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000000)={'vcan0\x00'}) (async)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000020c0), 0x0, 0x0)

3.533387219s ago: executing program 0 (id=267):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r2, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x141400, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'tunl0\x00', 0x800})
r4 = socket(0x1f, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, 0x0)
listen(0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x401, 0x9, 0x8, 0x0, 0x7}, 0x0)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r7, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbf525017c00001000"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f00000000c0)='vegas\x00', 0x6)
r9 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000bc0)={0x4c, 0x12, 0x301, 0x0, 0x0, {0x0, 0x6, 0x0, 0x0, {0x4e23, 0x0, [0x0, 0x0, 0x81], [0x1, 0xfffffffd, 0x10000], 0x0, [0x2, 0x7fff]}, 0x7}}, 0x4c}, 0x1, 0x0, 0x0, 0x20044190}, 0x40000)
sendmsg$IPSET_CMD_DEL(r4, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, 0xa, 0x6, 0x401, 0x0, 0x0, {0xd, 0x0, 0x6}, [@IPSET_ATTR_DATA={0x50, 0x7, 0x0, 0x1, [@IPSET_ATTR_ETHER={0xa}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0xb51}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x40}, @IPSET_ATTR_NAME={0x9, 0x12, 'syz2\x00'}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x1c}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0xa43}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e20}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x3}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x40000800}, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000480)={0x0, 0x0})
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000011008188e6b62aa73f72cc9f0ba1f8483d0000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)

3.533121512s ago: executing program 1 (id=268):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000003c0))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000200)={0x0, 0xffffff1e, 0xffffffff, 0x24, 0x19, "0fcf43000000000000000c00"})
syz_open_dev$tty1(0xc, 0x4, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timer_create(0x0, &(0x7f0000000380)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000780)={0x0, "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"})
iopl(0x3)

3.339570387s ago: executing program 1 (id=270):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000780)=ANY=[@ANYRES64=0x0, @ANYRESHEX=r0, @ANYBLOB="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"], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800a713f25afd6b4901010000000000850000000f00075f18010000646c6c2500000000f8ffff007b1af8ff00000000bf0000008000000000010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r2 = add_key$keyring(&(0x7f0000005140), &(0x7f0000005180)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$invalidate(0x15, r2)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r3, 0x29, 0x14, 0x0, 0x53)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fchmodat(0xffffffffffffffff, 0x0, 0xc0)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffffa8)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet(0x2, 0x2, 0x1)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000070601080000001e000000000a0000040500010007000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
syz_usb_disconnect(0xffffffffffffffff)
close_range(r5, 0xffffffffffffffff, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r9}, 0x18)

2.559721975s ago: executing program 2 (id=271):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
write$sndseq(r0, &(0x7f00000006c0)=[{0xe, 0x81, 0x0, 0xfd, @tick, {}, {0xe}, @raw8={"1f000e0000000100"}}], 0x1c)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r1}, 0x8)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x4, [@restrict={0x9, 0x0, 0x0, 0xb, 0x4}, @fwd={0x6}, @const={0x3, 0x0, 0x0, 0xa, 0x5}, @ptr={0x2, 0x0, 0x0, 0x2, 0x3}, @typedef={0xf, 0x0, 0x0, 0x8, 0x1}, @volatile={0x2, 0x0, 0x0, 0x9, 0x2}]}, {0x0, [0x30, 0x5f]}}, &(0x7f0000000080), 0x64, 0x0, 0x0, 0x10000, 0x10000, @value=r2}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000880)=@bpf_ext={0x1c, 0x2a, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x3, 0x5, 0x0, 0x3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_fd={0x18, 0x3019731ca1cbe220}, @cb_func={0x18, 0xb, 0x4, 0x0, 0xfffffffffffffff8}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3e}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @map_idx={0x18, 0x0, 0x5, 0x0, 0xf}, @generic={0xe, 0xc, 0x1, 0xd, 0x10}, @generic={0x1, 0x6, 0x7, 0x7f, 0x1}], &(0x7f0000000080)='GPL\x00', 0x8000, 0xb4, &(0x7f00000004c0)=""/180, 0x40f00, 0x61, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f00000001c0)={0x9, 0x2}, 0x8, 0x10, &(0x7f00000005c0)={0x5, 0x7, 0xf, 0x7}, 0x10, 0x18894, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000600)=[{0x3, 0x5, 0x9}, {0x1, 0x4, 0xf, 0x3}, {0x4, 0x3, 0xf, 0x2}], 0x10, 0x2}, 0x94)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000100)={0x0, &(0x7f00000000c0)}, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

2.559288777s ago: executing program 2 (id=272):
socket$igmp6(0xa, 0x3, 0x2)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
writev(r1, &(0x7f0000000400)=[{&(0x7f0000000100)="92", 0x1}], 0x1)
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0xf3a, 0x0)
splice(r0, 0x0, r4, 0x0, 0x80, 0x6)
write(r4, &(0x7f0000003300)="ac", 0x1)
write(r2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000180))
r9 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r10 = socket$l2tp6(0xa, 0x2, 0x73)
bind$inet6(r10, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r9, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)

2.469542383s ago: executing program 0 (id=273):
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @private2}})
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='environ\x00')
readv(r0, &(0x7f0000000180)=[{&(0x7f0000000100)=""/26, 0x1a}], 0x119)
io_setup(0x4, &(0x7f0000000040))
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1d, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="cc", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000008c0)="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", 0x391}], 0x1}}], 0x2, 0x4048884)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e22, 0x8, @private1, 0x1}, 0x1c)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
syz_open_procfs$pagemap(r1, &(0x7f00000001c0))
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xc, 0x0, 0x7ffc1ffb}]})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000002c0)={0xffffffff, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r4, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r4, 0x402c5342, &(0x7f0000000040)={0x0, 0x7a124, 0x60, {0x0, 0x100}})
socket(0x2, 0x80805, 0x0)
r5 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e20, 0x9c000000, @ipv4={'\x00', '\xff\xff', @remote}, 0x1df}}, 0x80, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="100000001001000001000000dc0000000e9b015de1137e426b644239ddb90992f6a007bc09c00c156b181c1e1497f4bbf93d01945e6bbd8bb228e3cc8a65cd6ce29d0cceb82efdb92f925aefa658e8e9cfe0a7f3c15a0b33d6aed168f934185fbc264cd81fa87dae662c8d2b36527eadc193d4951f93b490e18ed68c311ad92728addcdf56"], 0x10}, 0x40)
munlockall()

2.13992335s ago: executing program 3 (id=277):
socket$inet_tcp(0x2, 0x1, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x50d341, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = fsopen(&(0x7f0000000080)='securityfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0xf)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, 0x0, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newsa={0x158, 0x10, 0x413, 0x0, 0x0, {{@in=@multicast1, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x4e24, 0x0, 0x2, 0x20, 0x20, 0x0, 0x0, 0xee00}, {@in6=@empty, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0xfe}, {0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x20000000008}, {0x0, 0x8, 0xcc}, {0xf6}, 0x0, 0x0, 0xa, 0x1, 0x1}, [@algo_aead={0x6c, 0x12, {{'rfc4309(ccm(aes))\x00'}, 0x100, 0x60, "045625cac5216d1c778af0a976902919b9448c5d9f544e9e35d960a2e0f15390"}}]}, 0x158}}, 0x0)
r3 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, 0x0)
ioctl$sock_bt_hidp_HIDPCONNDEL(r3, 0x400448c9, &(0x7f0000000000)={@none, 0x1})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x24003b84, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, &(0x7f0000000000)=ANY=[])
ioctl$USBDEVFS_REAPURB(r5, 0x4008550c, 0x0)
r6 = socket(0x840000000002, 0x3, 0x6)
connect$inet(r6, &(0x7f0000000540)={0x2, 0x4e22, @remote}, 0x10)
sendmmsg$inet(r6, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

1.836088183s ago: executing program 1 (id=278):
r0 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000c40)=ANY=[@ANYRES16=r0, @ANYRES8=r2, @ANYRES8=r0, @ANYRES8=r0, @ANYRESOCT=0x0, @ANYRESOCT=r2, @ANYRES64=r2, @ANYBLOB="4f80f1bb69f19488e78761bb888ce361e63f4e3698067fedff163e595014b93bf96fb41b71292130f7271c9d11ab3d82a8187cd653d19bb5e6e55b1862b25323bf9c316accf56939e911e70c480dd286a8c4301d273a", @ANYRESOCT, @ANYRES8=r0], &(0x7f0000000700)='syzkaller\x00', 0x2, 0xc3, &(0x7f0000000940)=""/195, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
r4 = openat$comedi(0xffffff9c, &(0x7f0000000740)='/dev/comedi3\x00', 0x40, 0x0)
ioctl$COMEDI_POLL(r4, 0x640f)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$igmp(0x2, 0x3, 0x2)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYRES32=r7, @ANYRES32=r7, @ANYRESOCT=r7], 0x6c}}, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x1c, 0x41, 0x107, 0xfffffffc, 0x0, {0x2, 0x7c}, [@typed={0x8, 0x12d, 0x0, 0x0, @fd=r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
bpf$MAP_CREATE(0x0, &(0x7f0000000d80)=ANY=[@ANYBLOB="1e00000000000080050000000800000000000400", @ANYRES32=0x1, @ANYBLOB="0600000000000000000000000000000001000000", @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0300000003000000040000000a00"/28], 0x50)
migrate_pages(r3, 0xa94b, &(0x7f0000000b80), &(0x7f0000000bc0)=0x27e0407a)
umount2(&(0x7f0000000340)='./file0\x00', 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000ac0)=[{{&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000c00)=""/21, 0x15}], 0x1, &(0x7f0000000200)=[@cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x84}}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000100)=""/34, 0x22}, {&(0x7f0000000680)=""/66, 0x42}, {&(0x7f00000002c0), 0xfffffffffffffd6f}, {&(0x7f00000007c0)=""/13}], 0x3}}], 0x2, 0x0, &(0x7f0000000b40)={0x0, 0x3938700})
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x8, 0x3, 0x25c, 0x0, 0x11, 0x148, 0x0, 0x10, 0x20c, 0x2a8, 0x2a8, 0x20c, 0x2a8, 0xac, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'veth1_vlan\x00', 'sit0\x00'}, 0x10, 0xb0, 0xf8, 0x1c, {}, [@common=@unspec=@connlimit={{0x40}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@local, 'ip6gre0\x00', {0x2}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x2, 0x0, 0x5, 0x7, 0x6, 0x1], 0x5, 0x3}, {0x3, [0x2, 0x2, 0x3, 0x6, 0x2, 0x3], 0x2, 0x3}}}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x2b8)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x114}], 0x1}, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000a80)=[0x0, 0x0, 0x0]})

1.556486941s ago: executing program 0 (id=279):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, &(0x7f0000000100)="65d04972081c678fc566b80df300000f23d00f01c466353000000d0f23f80f4c340f20d866350800000066b9ae08000066b8576100000f48e80f323030660f12830000b8ae008ee0d7", 0x49}], 0x1, 0x80, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0x200cc75, 0x800, 0x200003, 0x26e}, &(0x7f0000000140), &(0x7f0000000280)=<r5=>0x0)
setsockopt$MRT_DONE(r3, 0x0, 0xc9, 0x0, 0x0)
syz_io_uring_setup(0x5f03, &(0x7f00000003c0)={0x0, 0xef71, 0x800, 0x2, 0x2f1}, &(0x7f00000001c0)=<r6=>0x0, &(0x7f0000000440))
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r7, 0x0, 0x0)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@migrate={0x50, 0x16, 0xd39, 0x0, 0x0, {{@in6=@empty, @in=@broadcast, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, 0x0, 0xff}}}, 0x50}}, 0x0)
ioctl$sock_inet_SIOCGIFBRDADDR(r8, 0x8919, &(0x7f0000000180)={'netdevsim0\x00', {0x2, 0x0, @private}})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = add_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000500)={'syz', 0x3}, &(0x7f0000000040)="42d7386debb9c100", 0x8, 0xfffffffffffffffe)
keyctl$invalidate(0x15, r10)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, r10)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$ax25(0x3, 0x3, 0x0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x44, r11, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x24044815}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f00000002c0)=@IORING_OP_UNLINKAT={0x24, 0x8, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)='./file0\x00'})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(r1, 0x0, 0x0)

1.384133172s ago: executing program 3 (id=280):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000002a000000"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f00000001c0)="390000001400818c0000dc676f97daf01e2357f9ffffffffffffff0521018701546fabca1b4e8a06a6580e88370200c54c1960b89c40ebb373", 0x39}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001500)=ANY=[], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r4, &(0x7f0000008580)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000180)=""/49, 0x31}, {&(0x7f0000000300)=""/150, 0x96}, {&(0x7f0000000440)=""/166, 0xa6}, {&(0x7f00000003c0)=""/27, 0x1b}, {&(0x7f0000000500)=""/175, 0xaf}, {&(0x7f00000005c0)=""/43, 0x2b}], 0x6, &(0x7f0000000640)=""/133, 0x85}, 0x7ff}, {{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000700)=""/60, 0x3c}, {&(0x7f0000001500)=""/4096, 0x1000}, {&(0x7f0000000740)}, {&(0x7f0000000780)=""/12, 0xc}, {&(0x7f00000007c0)=""/162, 0xa2}], 0x5, &(0x7f00000008c0)=""/180, 0xb4}, 0x39}, {{&(0x7f0000000980), 0x80, &(0x7f0000000b40)=[{&(0x7f0000000a00)=""/97, 0x61}, {&(0x7f0000000a80)=""/16, 0x10}, {&(0x7f0000000ac0)=""/123, 0x7b}], 0x3, &(0x7f0000000bc0)=""/37, 0x25}, 0x6}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000c00)=""/4, 0x4}, {&(0x7f0000000c40)=""/237, 0xed}, {&(0x7f0000000d40)=""/52, 0x34}, {&(0x7f0000002500)=""/4096, 0x1000}, {&(0x7f0000000d80)=""/86, 0x56}, {&(0x7f0000000e00)=""/24, 0x18}], 0x6, &(0x7f0000000e80)=""/35, 0x23}, 0x1}, {{&(0x7f0000000ec0)=@nfc, 0x80, &(0x7f0000001280)=[{&(0x7f0000000f40)=""/69, 0x45}, {&(0x7f0000000fc0)=""/192, 0xc0}, {&(0x7f0000001080)=""/71, 0x47}, {&(0x7f0000003500)=""/4096, 0x1000}, {&(0x7f0000001100)=""/86, 0x56}, {&(0x7f0000001180)=""/230, 0xe6}], 0x6, &(0x7f00000012c0)=""/199, 0xc7}, 0xca6}, {{0x0, 0x0, &(0x7f0000005640)=[{&(0x7f0000004500)=""/4096, 0x1000}, {&(0x7f0000001400)=""/192, 0xc0}, {&(0x7f0000005500)=""/114, 0x72}, {&(0x7f0000005580)=""/142, 0x8e}], 0x4, &(0x7f0000005680)=""/4096, 0x1000}, 0x6}, {{&(0x7f0000006680)=@ethernet={0x0, @dev}, 0x80, &(0x7f0000007b00)=[{&(0x7f0000006700)=""/234, 0xea}, {&(0x7f0000006800)=""/78, 0x4e}, {&(0x7f0000006880)=""/148, 0x94}, {&(0x7f0000006940)=""/116, 0x74}, {&(0x7f00000069c0)=""/61, 0x3d}, {&(0x7f0000006a00)=""/48, 0x30}, {&(0x7f0000006a40)=""/144, 0x90}, {&(0x7f0000006b00)=""/4096, 0x1000}], 0x8, &(0x7f0000007b40)=""/161, 0xa1}, 0x2}, {{&(0x7f0000007c00)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000008000)=[{&(0x7f0000007c80)=""/83, 0x53}, {&(0x7f0000007d00)=""/248, 0xf8}, {&(0x7f0000007e00)=""/222, 0xde}, {&(0x7f0000007f00)=""/225, 0xe1}], 0x4, &(0x7f0000008040)=""/134, 0x86}, 0xffffffff}, {{&(0x7f0000008100)=@generic, 0x80, &(0x7f0000008480)=[{&(0x7f0000008180)=""/247, 0xf7}, {&(0x7f0000008280)=""/39, 0x27}, {&(0x7f00000082c0)=""/137, 0x89}, {&(0x7f0000008380)=""/251, 0xfb}], 0x4, &(0x7f00000084c0)=""/163, 0xa3}, 0x9}], 0x9, 0x2002, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
epoll_create1(0x80000)

1.288702839s ago: executing program 2 (id=281):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
write$sndseq(r0, &(0x7f00000006c0)=[{0xe, 0x81, 0x0, 0xfd, @tick, {}, {0xe}, @raw8={"1f000e0000000100"}}], 0x1c)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r1}, 0x8)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x4, [@restrict={0x9, 0x0, 0x0, 0xb, 0x4}, @fwd={0x6}, @const={0x3, 0x0, 0x0, 0xa, 0x5}, @ptr={0x2, 0x0, 0x0, 0x2, 0x3}, @typedef={0xf, 0x0, 0x0, 0x8, 0x1}, @volatile={0x2, 0x0, 0x0, 0x9, 0x2}]}, {0x0, [0x30, 0x5f]}}, &(0x7f0000000080), 0x64, 0x0, 0x0, 0x10000, 0x10000, @value=r2}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000880)=@bpf_ext={0x1c, 0x2a, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x3, 0x5, 0x0, 0x3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_fd={0x18, 0x3019731ca1cbe220}, @cb_func={0x18, 0xb, 0x4, 0x0, 0xfffffffffffffff8}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3e}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @map_idx={0x18, 0x0, 0x5, 0x0, 0xf}, @generic={0xe, 0xc, 0x1, 0xd, 0x10}, @generic={0x1, 0x6, 0x7, 0x7f, 0x1}], &(0x7f0000000080)='GPL\x00', 0x8000, 0xb4, &(0x7f00000004c0)=""/180, 0x40f00, 0x61, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f00000001c0)={0x9, 0x2}, 0x8, 0x10, &(0x7f00000005c0)={0x5, 0x7, 0xf, 0x7}, 0x10, 0x18894, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000600)=[{0x3, 0x5, 0x9}, {0x1, 0x4, 0xf, 0x3}, {0x4, 0x3, 0xf, 0x2}], 0x10, 0x2}, 0x94)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000100)={0x0, &(0x7f00000000c0)}, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

1.179982193s ago: executing program 2 (id=282):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d0000008500000008000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
socket(0x21, 0x2, 0x10000000000002)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040))
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_io_uring_setup(0x1b2d, &(0x7f0000000600)={0x0, 0x2c4e, 0x80, 0x3, 0x141, 0x0, r2}, &(0x7f0000000680), &(0x7f00000006c0))
r3 = dup(r1)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = syz_io_uring_setup(0x1254, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000000c0)=<r6=>0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f00000004c0)={'syztnl2\x00', &(0x7f0000000440)={'ip6gre0\x00', 0x0, 0x2f, 0x1, 0x7, 0x2, 0x8, @loopback, @mcast2, 0x10, 0x7800, 0x2, 0x401}})
syz_io_uring_submit(r5, r6, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1})
io_uring_enter(r4, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

1.122859532s ago: executing program 1 (id=283):
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r1, 0x0)
ioctl$CDROMREADAUDIO(r0, 0x2284, &(0x7f0000002140)={@msf={0xef, 0x3}, 0x2, 0x0, 0x0})

958.231354ms ago: executing program 1 (id=284):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0xd, &(0x7f0000000080)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000100)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x2}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0xd, &(0x7f0000000080)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000100)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x2}, 0x94)
r0 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[], 0x78) (async)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[], 0x78)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=ANY=[@ANYBLOB="180000007fe6287c1df3ff86d4f91e000585000000000000000005002b0046000000"], 0x18}], 0x1}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) (async)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8919, &(0x7f0000000040)={'bond_slave_1\x00', @random="020000002000"})
ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f0000000140))
socket$kcm(0x29, 0x5, 0x0) (async)
socket$kcm(0x29, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) (async)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) (async)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bind$alg(0xffffffffffffffff, &(0x7f0000000500)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-512-generic\x00'}, 0x58)
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$bt_hci(r4, &(0x7f0000000000)={0x27}, 0x74) (async)
bind$bt_hci(r4, &(0x7f0000000000)={0x27}, 0x74)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0) (async)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r5, 0x5423, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x4e23, @local}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0) (async)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e21, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}, 0x9}}, 0xffffffffffffff93, 0x0}, 0x4000004)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="d800000010008104090008007143a0f8c81ded0b25000000e8fe09a11800150006001410000000120800030043000040a8002b000a", 0x35}], 0x1}, 0x20000880)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0xfe33)

937.374337ms ago: executing program 0 (id=285):
fsopen(0x0, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000000c0)={'lo\x00', &(0x7f0000000000)=@ethtool_perm_addr={0x20, 0x6, "93fda8c1d638"}})
socketpair$unix(0x1, 0x2, 0x0, 0x0)
openat$vmci(0xffffff9c, &(0x7f00000000c0), 0x2, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0xa, 0x9)
socket(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, 0x0, 0x26}, 0x20)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x1c, 0x41, 0x107, 0xfffffffc, 0x0, {0x2, 0x7c}, [@typed={0x8, 0x12d, 0x0, 0x0, @fd=r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2d, 0x101, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x8000000000000000}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback={0x100000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"]}]}, 0x114}], 0x1}, 0x0)

815.448143ms ago: executing program 1 (id=286):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280))
ioctl$SIOCSIFHWADDR(r2, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="fe0700000b00"})

340.858516ms ago: executing program 3 (id=287):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x80}, 0x5}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000010000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x25dfdbff, {{@in=@rand_addr=0x400, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffc}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x1, 0x1}}, 0xb8}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000540)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x3, 0xe000, 0x0, 0x5, 0x0, @dev={0xac, 0x14, 0x14, 0xff}, @private=0xa010100, {[@generic={0x44, 0x2}]}}, {{0x1, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x0, 0x0, 0x0, 0xdadf}}}}}}, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
pread64(r3, 0x0, 0x0, 0xffffffff)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0x2ee0}], 0x13, 0x0, 0x0, 0x10000000}, 0x12cd)

295.595577ms ago: executing program 2 (id=288):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x40800)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x60, 0x30, 0x1, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0xffff}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x24008800}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r1 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[], 0x78)
sendfile(0xffffffffffffffff, r1, &(0x7f00000001c0), 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$radio(0x0, 0x3, 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xa30903, 0x8000, '\x00', @p_u8=&(0x7f0000000200)=0xc}})
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0) (fail_nth: 9)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)=ANY=[], 0x70}, 0x1, 0x0, 0x0, 0x64041091}, 0x0)
fcntl$addseals(r1, 0x409, 0x8)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0186405, &(0x7f0000000500)={0xfff, 0x8000, {0xffffffffffffffff}, {0xee01}, 0x5, 0xa})
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000100))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20081}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[@ANYBLOB="200000001100010027bd7000fddbdf2500000000", @ANYRES32=r7, @ANYBLOB="801400000421000041fda70e0000003b009f460372fae0cae5f66e14a3d6302747888aa1930451d348c184c110bf01c2d4ab8b2dbb1593b08e3d9934f8b06923c7501ecec693f3284209caac12"], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80)

249.884461ms ago: executing program 3 (id=289):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
syz_io_uring_setup(0x88f, &(0x7f00000000c0)={0x0, 0xaee4, 0x1, 0x0, 0xbfdffffc}, &(0x7f0000000000), &(0x7f0000000040))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x100, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x55, '\x00', 0x0, @fallback=0x36959057be29bea3, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x1ff, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xeeef0000, 0x0, 0x0, 0x8, 0xd, 0xfc, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7}, {0x2000, 0xffff1000, 0xc, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x0, 0xe, 0xfc, 0x3c}, {0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80}, {0xdddd1000, 0x0, 0xa, 0x6, 0x0, 0x0, 0x3}, {0xeeef0000, 0x3000, 0x0, 0x0, 0x0, 0x1, 0x0, 0xa, 0x26, 0x0, 0x4}, {0x80a0000}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x0, 0x70, 0x0, 0x8000, 0x0, [0x0, 0x0, 0x1]})
ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f00000000c0))
pipe(&(0x7f0000000140))
r4 = syz_io_uring_setup(0x302f, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, &(0x7f0000000340), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)

136.46127ms ago: executing program 3 (id=290):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
write$sndseq(r1, &(0x7f00000006c0)=[{0xe, 0x81, 0x0, 0xfd, @tick, {}, {0xe}, @raw8={"1f000e0000000100"}}], 0x1c)
r3 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r2}, 0x8)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x4, [@restrict={0x9, 0x0, 0x0, 0xb, 0x4}, @fwd={0x6}, @const={0x3, 0x0, 0x0, 0xa, 0x5}, @ptr={0x2, 0x0, 0x0, 0x2, 0x3}, @typedef={0xf, 0x0, 0x0, 0x8, 0x1}, @volatile={0x2, 0x0, 0x0, 0x9, 0x2}]}, {0x0, [0x30, 0x5f]}}, &(0x7f0000000080), 0x64, 0x0, 0x0, 0x10000, 0x10000, @value=r3}, 0x28)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000880)=@bpf_ext={0x1c, 0x2a, &(0x7f0000000700)=@raw=[@map_idx={0x18, 0x3, 0x5, 0x0, 0x3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_fd={0x18, 0x3019731ca1cbe220, 0x1, 0x0, r0}, @cb_func={0x18, 0xb, 0x4, 0x0, 0xfffffffffffffff8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3e}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @map_idx={0x18, 0x0, 0x5, 0x0, 0xf}, @generic={0xe, 0xc, 0x1, 0xd, 0x10}, @generic={0x1, 0x6, 0x7, 0x7f, 0x1}], &(0x7f0000000080)='GPL\x00', 0x8000, 0xb4, &(0x7f00000004c0)=""/180, 0x40f00, 0x61, '\x00', 0x0, 0x0, r4, 0x8, &(0x7f00000001c0)={0x9, 0x2}, 0x8, 0x10, &(0x7f00000005c0)={0x5, 0x7, 0xf, 0x7}, 0x10, 0x18894, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000600)=[{0x3, 0x5, 0x9}, {0x1, 0x4, 0xf, 0x3}, {0x4, 0x3, 0xf, 0x2}], 0x10, 0x2}, 0x94)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r5, 0x107, 0x16, &(0x7f0000000100)={0x0, &(0x7f00000000c0)}, 0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

0s ago: executing program 3 (id=291):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000200)=@framed={{}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}]}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close(0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x8, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x499f, 0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@remote, @in6=@dev={0xfe, 0x80, '\x00', 0x1a}, 0x40, 0x0, 0x3, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@broadcast, 0x0, 0x33}, 0x0, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x3, 0x1, 0x7}}, 0xe4)
bpf$ENABLE_STATS(0x20, &(0x7f0000000300), 0x4)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000700)=@raw={'raw\x00', 0x3c1, 0x3, 0x4cc, 0x0, 0x940c, 0x3002, 0x0, 0x2c0, 0x404, 0x3d8, 0x3d8, 0x404, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x28c, 0x2d4, 0x0, {}, [@common=@inet=@recent0={{0xf4}, {0x0, 0x2, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf4}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private0, [0x0, 0x0, 0xff000000, 0xff], [0xffffff00, 0xffffff00, 0xff000000, 0xffffffff], 'team_slave_1\x00', 'veth1_virt_wifi\x00', {0xff}, {}, 0x886215f4d37bb4bb, 0x90, 0x1, 0x69}, 0x0, 0xc8, 0x130, 0x0, {}, [@inet=@rpfilter={{0x24}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x528)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x11, 0x80a, 0x1)
recvmsg$can_raw(r5, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000001f80)=[{&(0x7f0000000600)=""/233, 0xe9}, {&(0x7f0000000440)=""/148, 0x94}, {&(0x7f0000000c40)=""/244, 0xf4}, {&(0x7f0000000d40)=""/4096, 0x1000}, {&(0x7f0000001d40)=""/246, 0xf6}, {&(0x7f0000001e40)=""/249, 0xf9}, {&(0x7f0000001f40)=""/4, 0x4}], 0x7, &(0x7f0000001fc0)=""/161, 0xa1}, 0x11002)
syz_clone(0x10020000, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000000180), &(0x7f0000000500)="d1bc900d8a00c336af2a52816b757b56260c0944c4f341e9c85c040cff9c5cb201188344ec2fc3fffae0c36426d9228eba2b3c8b42a11f14833b25ea6bd3247a6b565adec5c3a506f5018d06d35efdbb76355936726d1060e638d7e8038ab2e6a23d5c4e1d00d5e8e0b94a252398a320916396ce6999aa2c04557443ff35fd4f7b6a2a2c4717dd2840936d0c43556b3e98f3cb949293cae52be2488aad3b51be28d5751ffa75c3e2fd85e7044b798fe8cb4c4d14f11f4465acc5507d1e3176218958d23fff776ff00f0afb37cd50d13dbf57db8b0d743b59779a6f8008c1e0d354d666417953545575356d5618b956117d1314e5")
socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000500)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x401, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r6}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

kernel console output (not intermixed with test programs):

nterface: batadv_slave_0
[   46.624421][ T5958] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.636494][ T5958] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.665657][ T5959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.669094][ T5958] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.671196][ T5958] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.678956][ T5958] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.682549][ T5960] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.684793][ T5960] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.686942][ T5960] bridge_slave_0: entered allmulticast mode
[   46.690016][ T5960] bridge_slave_0: entered promiscuous mode
[   46.698907][ T5960] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.701083][ T5960] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.703811][ T5960] bridge_slave_1: entered allmulticast mode
[   46.707277][ T5960] bridge_slave_1: entered promiscuous mode
[   46.710738][ T5959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.806059][ T5960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.864003][ T5960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.869564][ T5959] team0: Port device team_slave_0 added
[   46.923225][ T5959] team0: Port device team_slave_1 added
[   46.927637][ T5958] hsr_slave_0: entered promiscuous mode
[   46.929915][ T5958] hsr_slave_1: entered promiscuous mode
[   46.962508][ T5968] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.964817][ T5968] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.967083][ T5968] bridge_slave_0: entered allmulticast mode
[   46.969745][ T5968] bridge_slave_0: entered promiscuous mode
[   47.009692][ T5968] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.011935][ T5968] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.014316][ T5968] bridge_slave_1: entered allmulticast mode
[   47.016863][ T5968] bridge_slave_1: entered promiscuous mode
[   47.020860][ T5960] team0: Port device team_slave_0 added
[   47.023826][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.026647][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.036169][ T5959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.084932][ T5960] team0: Port device team_slave_1 added
[   47.097762][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.100140][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.108815][ T5959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.114539][ T5968] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.121618][ T5968] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.195111][ T5960] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.197631][ T5960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.207836][ T5960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.213152][ T5960] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.215756][ T5960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.224528][ T5960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.308904][ T5968] team0: Port device team_slave_0 added
[   47.336785][ T5959] hsr_slave_0: entered promiscuous mode
[   47.339932][ T5959] hsr_slave_1: entered promiscuous mode
[   47.342538][ T5959] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.347854][ T5959] Cannot create hsr debugfs directory
[   47.365749][ T5968] team0: Port device team_slave_1 added
[   47.403146][ T5960] hsr_slave_0: entered promiscuous mode
[   47.405380][ T5960] hsr_slave_1: entered promiscuous mode
[   47.407435][ T5960] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.409801][ T5960] Cannot create hsr debugfs directory
[   47.453410][ T5968] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.455571][ T5968] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.463781][ T5968] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.510458][ T5968] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.512699][ T5968] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.521136][ T5968] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.680381][ T5968] hsr_slave_0: entered promiscuous mode
[   47.682962][ T5968] hsr_slave_1: entered promiscuous mode
[   47.685888][ T5968] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.688141][ T5968] Cannot create hsr debugfs directory
[   47.791740][ T5958] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.808744][ T5958] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.825402][ T5958] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.847747][ T5958] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.907268][ T5959] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   47.912015][ T5959] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   47.914181][ T5971] Bluetooth: hci3: command tx timeout
[   47.914367][ T5972] Bluetooth: hci1: command tx timeout
[   47.914561][ T5974] Bluetooth: hci0: command tx timeout
[   47.923346][ T5972] Bluetooth: hci2: command tx timeout
[   47.927124][ T5959] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   47.934859][ T5959] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.971984][ T5960] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   47.978755][ T5960] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   47.983893][ T5960] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   47.988322][ T5960] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   48.045882][ T5968] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   48.063796][ T5968] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   48.068101][ T5968] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   48.072290][ T5968] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   48.102925][ T5958] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.140100][ T5960] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.147677][ T5958] 8021q: adding VLAN 0 to HW filter on device team0
[   48.171465][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.173886][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.178733][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.180957][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.192662][ T5959] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.198040][ T5960] 8021q: adding VLAN 0 to HW filter on device team0
[   48.214308][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.216511][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.230156][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.232406][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.250683][ T5959] 8021q: adding VLAN 0 to HW filter on device team0
[   48.272196][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.274517][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.286288][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.288506][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.317402][ T5968] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.340012][ T5968] 8021q: adding VLAN 0 to HW filter on device team0
[   48.360605][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.362817][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.366252][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.368423][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.436465][ T5958] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.477988][ T5958] veth0_vlan: entered promiscuous mode
[   48.485068][ T5958] veth1_vlan: entered promiscuous mode
[   48.494643][ T5960] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.512795][ T5959] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.521673][ T5968] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.541612][ T5958] veth0_macvtap: entered promiscuous mode
[   48.550413][ T5958] veth1_macvtap: entered promiscuous mode
[   48.573031][ T5959] veth0_vlan: entered promiscuous mode
[   48.591618][ T5960] veth0_vlan: entered promiscuous mode
[   48.596521][ T5958] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.600372][ T5968] veth0_vlan: entered promiscuous mode
[   48.609999][ T5958] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.615498][ T5958] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.618268][ T5958] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.620893][ T5958] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.624524][ T5958] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.630955][ T5968] veth1_vlan: entered promiscuous mode
[   48.635282][ T5959] veth1_vlan: entered promiscuous mode
[   48.649640][ T5960] veth1_vlan: entered promiscuous mode
[   48.677397][ T5959] veth0_macvtap: entered promiscuous mode
[   48.702934][ T5959] veth1_macvtap: entered promiscuous mode
[   48.706413][ T5968] veth0_macvtap: entered promiscuous mode
[   48.712033][   T74] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.712730][ T5968] veth1_macvtap: entered promiscuous mode
[   48.716324][   T74] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.737997][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.740872][ T5960] veth0_macvtap: entered promiscuous mode
[   48.749974][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.752033][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.752927][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.759379][ T5968] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.763703][ T5960] veth1_macvtap: entered promiscuous mode
[   48.766868][ T5959] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.769694][ T5959] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.773990][ T5959] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.777426][ T5959] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.785834][ T5968] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.795402][ T5968] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.798164][ T5968] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.801113][ T5968] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.804862][ T5968] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.808749][ T5958] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   48.834659][ T5960] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.843904][ T5960] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.866391][ T5960] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.869090][ T5960] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.872943][ T5960] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.876266][ T5960] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.891127][ T6045] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   48.895134][ T6045] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[   48.899801][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.902533][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.919446][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.921820][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.938863][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.941582][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.957113][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.959552][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.974813][ T6047] syz.2.5 uses obsolete (PF_INET,SOCK_PACKET)
[   48.976846][  T222] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.980596][  T222] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.024334][ T6047] fuse: Unknown parameter 'group_id00000000000000000000'
[   49.032706][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.036244][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.123314][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.402444][ T6066] netlink: 'syz.1.7': attribute type 1 has an invalid length.
[   49.923390][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[   50.005118][ T5972] Bluetooth: hci3: command tx timeout
[   50.005303][ T5971] Bluetooth: hci0: command tx timeout
[   50.005491][ T5974] Bluetooth: hci2: command tx timeout
[   50.005524][ T5974] Bluetooth: hci1: command tx timeout
[   50.026641][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   50.340827][ T6071] vlan2: entered allmulticast mode
[   50.342441][ T6071] veth0_to_bond: entered allmulticast mode
[   50.393551][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.397180][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.406733][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.571596][ T6081] netlink: 160 bytes leftover after parsing attributes in process `syz.2.10'.
[   50.635403][   T40] audit: type=1326 audit(1753523200.505:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6080 comm="syz.2.10" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f15579 code=0x0
[   50.640972][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   50.645583][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2c0!!!
[   50.841312][ T6026] IPVS: starting estimator thread 0...
[   50.933324][ T6095] IPVS: using max 45 ests per chain, 108000 per kthread
[   51.373976][ T6079] ubi31: attaching mtd0
[   51.376889][ T6079] ubi31: scanning is finished
[   51.378518][ T6079] ubi31: empty MTD device detected
[   51.395773][ T6080] delete_channel: no stack
[   51.517559][ T6104] kvm: pic: single mode not supported
[   51.517600][ T6104] kvm: pic: level sensitive irq not supported
[   51.530255][ T6079] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[   51.535505][ T6079] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   51.538777][ T6079] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[   51.541658][ T6104] kvm: pic: level sensitive irq not supported
[   51.541989][ T6079] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[   51.546812][ T6079] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   51.549906][ T6079] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[   51.552775][ T6079] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 4204669686
[   51.556644][ T6079] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   51.562559][ T6106] ubi31: background thread "ubi_bgt31d" started, PID 6106
[   51.567846][ T6104] kvm: pic: single mode not supported
[   51.567861][ T6104] kvm: pic: level sensitive irq not supported
[   51.576339][ T6104] kvm: pic: single mode not supported
[   51.578869][ T6104] kvm: pic: level sensitive irq not supported
[   51.594490][ T6104] kvm: pic: single mode not supported
[   51.596500][ T6104] kvm: pic: level sensitive irq not supported
[   51.600275][ T6104] kvm: pic: level sensitive irq not supported
[   51.602471][ T6104] kvm: pic: level sensitive irq not supported
[   51.605662][ T6104] kvm: pic: level sensitive irq not supported
[   51.607854][ T6104] kvm: pic: level sensitive irq not supported
[   51.610967][ T6104] kvm: pic: level sensitive irq not supported
[   51.629466][ T6104] kvm: pic: single mode not supported
[   51.713226][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   51.879590][ T6111] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[   51.881695][ T6111] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   51.891316][ T6111] vhci_hcd vhci_hcd.0: Device attached
[   51.899851][ T6111] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(11)
[   51.901882][ T6111] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   51.906038][ T6111] vhci_hcd vhci_hcd.0: Device attached
[   51.911828][ T6111] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   51.918911][ T6111] vhci_hcd vhci_hcd.0: pdev(0) rhport(3) sockfd(17)
[   51.920988][ T6111] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   51.923483][ T6111] vhci_hcd vhci_hcd.0: Device attached
[   51.928067][ T6111] vhci_hcd vhci_hcd.0: pdev(0) rhport(4) sockfd(19)
[   51.930125][ T6111] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   51.932497][ T6111] vhci_hcd vhci_hcd.0: Device attached
[   51.936299][ T6111] vhci_hcd vhci_hcd.0: pdev(0) rhport(5) sockfd(21)
[   51.938356][ T6111] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   51.940846][ T6111] vhci_hcd vhci_hcd.0: Device attached
[   51.944239][ T6111] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   51.948037][ T6111] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   51.951497][ T6111] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   51.984187][ T6120] vhci_hcd: connection closed
[   51.984268][ T6116] vhci_hcd: connection closed
[   51.984586][ T6118] vhci_hcd: connection closed
[   51.985447][ T6112] vhci_hcd: connection closed
[   51.985801][   T46] vhci_hcd: stop threads
[   51.986038][   T46] vhci_hcd: release socket
[   51.987373][ T6114] vhci_hcd: connection closed
[   51.997897][   T46] vhci_hcd: disconnect device
[   52.001978][   T46] vhci_hcd: stop threads
[   52.005250][   T46] vhci_hcd: release socket
[   52.007084][   T46] vhci_hcd: disconnect device
[   52.008971][   T46] vhci_hcd: stop threads
[   52.010619][   T46] vhci_hcd: release socket
[   52.012404][   T46] vhci_hcd: disconnect device
[   52.016185][   T46] vhci_hcd: stop threads
[   52.017931][   T46] vhci_hcd: release socket
[   52.019720][   T46] vhci_hcd: disconnect device
[   52.021696][   T46] vhci_hcd: stop threads
[   52.024133][   T46] vhci_hcd: release socket
[   52.025922][   T46] vhci_hcd: disconnect device
[   52.063287][    T9] vhci_hcd: vhci_device speed not set
[   52.073283][ T5962] Bluetooth: hci2: command tx timeout
[   52.075043][ T5972] Bluetooth: hci1: command tx timeout
[   52.083167][ T5972] Bluetooth: hci0: command tx timeout
[   52.084826][ T5972] Bluetooth: hci3: command tx timeout
[   52.442497][ T6124] block device autoloading is deprecated and will be removed.
[   52.693138][ T6097] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   52.885389][ T6097] usb 7-1: Using ep0 maxpacket: 8
[   52.899484][ T6097] usb 7-1: config index 0 descriptor too short (expected 5924, got 36)
[   52.902567][ T6097] usb 7-1: config 250 has an invalid interface number: 228 but max is -1
[   52.906647][ T6097] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0
[   52.912270][ T6097] usb 7-1: config 250 has no interface number 0
[   52.915175][ T6097] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[   52.919233][ T6097] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[   52.922952][ T6097] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[   52.927310][ T6097] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[   52.930720][ T6097] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[   52.935045][ T6097] usb 7-1: config 250 interface 228 has no altsetting 0
[   52.940095][ T6097] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[   52.943880][ T6097] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[   52.946954][ T6097] usb 7-1: Product: syz
[   52.948616][ T6097] usb 7-1: SerialNumber: syz
[   52.962037][ T6097] hub 7-1:250.228: bad descriptor, ignoring hub
[   52.964517][ T6097] hub 7-1:250.228: probe with driver hub failed with error -5
[   53.124016][   T61] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   53.169982][ T6097] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 2 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[   53.276734][ T6097] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   53.502303][ T6149] netlink: 8 bytes leftover after parsing attributes in process `syz.1.27'.
[   53.634404][ T6153] FAULT_INJECTION: forcing a failure.
[   53.634404][ T6153] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   53.640005][ T6153] CPU: 2 UID: 0 PID: 6153 Comm: syz.0.28 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   53.640028][ T6153] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.640038][ T6153] Call Trace:
[   53.640044][ T6153]  <TASK>
[   53.640051][ T6153]  dump_stack_lvl+0x16c/0x1f0
[   53.640073][ T6153]  should_fail_ex+0x512/0x640
[   53.640095][ T6153]  should_fail_alloc_page+0xe7/0x130
[   53.640118][ T6153]  prepare_alloc_pages+0x3c2/0x610
[   53.640146][ T6153]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[   53.640185][ T6153]  ? __lock_acquire+0x622/0x1c90
[   53.640217][ T6153]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   53.640246][ T6153]  ? is_bpf_text_address+0x8a/0x1a0
[   53.640270][ T6153]  ? bpf_ksym_find+0x124/0x1c0
[   53.640289][ T6153]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   53.640311][ T6153]  ? is_bpf_text_address+0x94/0x1a0
[   53.640334][ T6153]  ? kernel_text_address+0x8d/0x100
[   53.640358][ T6153]  ? is_bpf_text_address+0x94/0x1a0
[   53.640380][ T6153]  ? __kernel_text_address+0xd/0x40
[   53.640405][ T6153]  ? unwind_get_return_address+0x59/0xa0
[   53.640435][ T6153]  ? wiphy_new_nm+0x701/0x2160
[   53.640454][ T6153]  __alloc_pages_noprof+0xb/0x1b0
[   53.640470][ T6153]  ___kmalloc_large_node+0x84/0x1e0
[   53.640499][ T6153]  ? wiphy_new_nm+0x701/0x2160
[   53.640516][ T6153]  __kmalloc_large_node_noprof+0x1c/0x70
[   53.640542][ T6153]  __kmalloc_noprof.cold+0xc/0x61
[   53.640573][ T6153]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[   53.640595][ T6153]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[   53.640617][ T6153]  wiphy_new_nm+0x701/0x2160
[   53.640637][ T6153]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[   53.640665][ T6153]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[   53.640685][ T6153]  ieee80211_alloc_hw_nm+0x1b7a/0x2260
[   53.640706][ T6153]  ? __local_bh_enable_ip+0xa4/0x120
[   53.640728][ T6153]  mac80211_hwsim_new_radio+0x1d4/0x54d0
[   53.640759][ T6153]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   53.640788][ T6153]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[   53.640815][ T6153]  hwsim_new_radio_nl+0xb51/0x12c0
[   53.640835][ T6153]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[   53.640863][ T6153]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[   53.640887][ T6153]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   53.640917][ T6153]  genl_family_rcv_msg_doit+0x209/0x2f0
[   53.640943][ T6153]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   53.640965][ T6153]  ? trace_cap_capable+0x18d/0x200
[   53.640993][ T6153]  ? bpf_lsm_capable+0x9/0x10
[   53.641016][ T6153]  ? security_capable+0x7e/0x260
[   53.641037][ T6153]  ? ns_capable+0xd7/0x110
[   53.641058][ T6153]  genl_rcv_msg+0x55c/0x800
[   53.641086][ T6153]  ? __pfx_genl_rcv_msg+0x10/0x10
[   53.641110][ T6153]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[   53.641138][ T6153]  netlink_rcv_skb+0x158/0x420
[   53.641159][ T6153]  ? __pfx_genl_rcv_msg+0x10/0x10
[   53.641205][ T6153]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   53.641237][ T6153]  ? netlink_deliver_tap+0x1ae/0xd30
[   53.641262][ T6153]  genl_rcv+0x28/0x40
[   53.641282][ T6153]  netlink_unicast+0x58a/0x850
[   53.641307][ T6153]  ? __pfx_netlink_unicast+0x10/0x10
[   53.641335][ T6153]  netlink_sendmsg+0x8d1/0xdd0
[   53.641361][ T6153]  ? __pfx_netlink_sendmsg+0x10/0x10
[   53.641383][ T6153]  ? __import_iovec+0x1dd/0x650
[   53.641408][ T6153]  ____sys_sendmsg+0xa95/0xc70
[   53.641435][ T6153]  ? __pfx_____sys_sendmsg+0x10/0x10
[   53.641456][ T6153]  ? get_compat_msghdr+0x11a/0x170
[   53.641487][ T6153]  ___sys_sendmsg+0x134/0x1d0
[   53.641507][ T6153]  ? __pfx____sys_sendmsg+0x10/0x10
[   53.641537][ T6153]  ? find_held_lock+0x2b/0x80
[   53.641572][ T6153]  __sys_sendmsg+0x16d/0x220
[   53.641591][ T6153]  ? __pfx___sys_sendmsg+0x10/0x10
[   53.641620][ T6153]  ? rcu_is_watching+0x12/0xc0
[   53.641648][ T6153]  __do_fast_syscall_32+0x7c/0x3a0
[   53.641669][ T6153]  do_fast_syscall_32+0x32/0x80
[   53.641686][ T6153]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   53.641706][ T6153] RIP: 0023:0xf70ce579
[   53.641720][ T6153] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   53.641735][ T6153] RSP: 002b:00000000f50be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   53.641751][ T6153] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[   53.641762][ T6153] RDX: 00000000200c0084 RSI: 0000000000000000 RDI: 0000000000000000
[   53.641771][ T6153] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   53.641781][ T6153] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   53.641791][ T6153] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   53.641813][ T6153]  </TASK>
[   53.995709][ T6024] IPVS: starting estimator thread 0...
[   54.153421][ T5972] Bluetooth: hci3: command tx timeout
[   54.154095][ T5971] Bluetooth: hci0: command tx timeout
[   54.154139][ T5974] Bluetooth: hci1: command tx timeout
[   54.154173][ T5974] Bluetooth: hci2: command tx timeout
[   54.182838][ T6173] 9pnet_fd: Insufficient options for proto=fd
[   54.185416][ T6169] IPVS: using max 44 ests per chain, 105600 per kthread
[   54.239714][ T6097] usb 7-1: USB disconnect, device number 2
[   54.254159][ T6097] usblp0: removed
[   54.321061][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   54.418867][ T6149] block nbd1: shutting down sockets
[   54.699238][ T6187] block nbd1: NBD_DISCONNECT
[   54.701591][ T6187] block nbd1: Send disconnect failed -89
[   54.965097][ T6189] FAULT_INJECTION: forcing a failure.
[   54.965097][ T6189] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   54.969405][ T6189] CPU: 1 UID: 0 PID: 6189 Comm: syz.2.39 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   54.969420][ T6189] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.969427][ T6189] Call Trace:
[   54.969432][ T6189]  <TASK>
[   54.969437][ T6189]  dump_stack_lvl+0x16c/0x1f0
[   54.969452][ T6189]  should_fail_ex+0x512/0x640
[   54.969466][ T6189]  _copy_to_user+0x32/0xd0
[   54.969479][ T6189]  bpf_test_finish.isra.0+0x570/0x6e0
[   54.969494][ T6189]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[   54.969509][ T6189]  ? __asan_memset+0x23/0x50
[   54.969527][ T6189]  bpf_prog_test_run_skb+0x1368/0x2280
[   54.969546][ T6189]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   54.969560][ T6189]  ? fput+0x70/0xf0
[   54.969574][ T6189]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   54.969587][ T6189]  __sys_bpf+0x170a/0x4ea0
[   54.969598][ T6189]  ? __pfx___sys_bpf+0x10/0x10
[   54.969608][ T6189]  ? ksys_write+0x190/0x250
[   54.969620][ T6189]  ? __mutex_unlock_slowpath+0x161/0x6a0
[   54.969639][ T6189]  ? fput+0x70/0xf0
[   54.969653][ T6189]  ? ksys_write+0x1ac/0x250
[   54.969663][ T6189]  ? __pfx_ksys_write+0x10/0x10
[   54.969675][ T6189]  __ia32_sys_bpf+0x76/0xe0
[   54.969686][ T6189]  __do_fast_syscall_32+0x7c/0x3a0
[   54.969698][ T6189]  do_fast_syscall_32+0x32/0x80
[   54.969710][ T6189]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   54.969724][ T6189] RIP: 0023:0xf7f15579
[   54.969732][ T6189] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   54.969742][ T6189] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   54.969753][ T6189] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800003c0
[   54.969759][ T6189] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[   54.969765][ T6189] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   54.969771][ T6189] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   54.969777][ T6189] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   54.969789][ T6189]  </TASK>
[   55.079213][ T6191] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[   55.299004][ T6200] tipc: Started in network mode
[   55.300848][ T6200] tipc: Node identity 4, cluster identity 4711
[   55.302902][ T6200] tipc: Node number set to 4
[   56.425609][ T6217] block device autoloading is deprecated and will be removed.
[   56.993192][ T6026] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   57.143161][ T6026] usb 5-1: Using ep0 maxpacket: 32
[   57.147553][ T6026] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[   57.151179][ T6026] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   57.155096][ T6026] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[   57.158838][ T6026] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   57.162918][ T6026] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   57.167307][ T6026] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   57.172641][ T6026] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   57.176863][ T6026] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   57.183619][ T6026] usb 5-1: config 0 descriptor??
[   57.406954][ T6026] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   57.415059][ T6026] usb 5-1: USB disconnect, device number 2
[   57.419681][ T6026] usblp0: removed
[   57.479259][ T6183] block nbd1: Disconnected due to user request.
[   57.482027][ T6183] block nbd1: shutting down sockets
[   57.578004][ T6247] netlink: 12 bytes leftover after parsing attributes in process `syz.2.61'.
[   57.615427][ T6249] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   57.834996][ T6251] infiniband syz2: set active
[   57.838230][ T6251] infiniband syz2: added bridge_slave_0
[   57.853475][ T3242] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   57.883156][ T6026] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   57.886989][ T6251] RDS/IB: syz2: added
[   57.890601][ T6251] smc: adding ib device syz2 with port count 1
[   57.893725][ T6251] smc:    ib device syz2 port 1 has pnetid 
[   57.983173][ T3242] usb 5-1: device descriptor read/64, error -71
[   58.034822][ T6026] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   58.039086][ T6026] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 24623, setting to 1024
[   58.043536][ T6026] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[   58.047276][ T6026] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   58.050664][ T6026] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.058975][ T6249] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   58.074243][ T6026] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   58.233264][ T3242] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   58.351652][   T61] usb 6-1: USB disconnect, device number 2
[   58.373220][ T3242] usb 5-1: device descriptor read/64, error -71
[   58.487060][ T3242] usb usb5-port1: attempt power cycle
[   58.834995][ T3242] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   58.855966][ T3242] usb 5-1: device descriptor read/8, error -71
[   59.093843][ T3242] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   59.099061][ T6285] block nbd1: NBD_DISCONNECT
[   59.100610][ T6285] block nbd1: Send disconnect failed -89
[   59.113620][ T3242] usb 5-1: device descriptor read/8, error -71
[   59.225284][ T3242] usb usb5-port1: unable to enumerate USB device
[   59.793180][ T3242] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   59.956999][ T3242] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   59.961717][ T3242] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 24623, setting to 1024
[   59.970902][ T3242] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[   59.977508][ T3242] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   59.980376][ T3242] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   59.997016][ T6290] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   60.003065][ T3242] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   60.223204][ T6024] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   60.333338][   T10] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   60.383156][ T6024] usb 8-1: Using ep0 maxpacket: 8
[   60.385983][ T6024] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[   60.388636][ T6024] usb 8-1: config 250 has an invalid interface number: 228 but max is -1
[   60.391305][ T6024] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0
[   60.394297][ T6024] usb 8-1: config 250 has no interface number 0
[   60.396319][ T6024] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[   60.399940][ T6024] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[   60.403375][ T6024] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[   60.406560][ T6024] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[   60.409771][ T6024] usb 8-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[   60.413971][ T6024] usb 8-1: config 250 interface 228 has no altsetting 0
[   60.417352][ T6024] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[   60.420226][ T6024] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[   60.422811][ T6024] usb 8-1: Product: syz
[   60.424210][ T6024] usb 8-1: SerialNumber: syz
[   60.428747][ T6024] hub 8-1:250.228: bad descriptor, ignoring hub
[   60.430769][ T6024] hub 8-1:250.228: probe with driver hub failed with error -5
[   60.486224][   T10] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[   60.490386][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[   60.495225][   T10] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   60.499036][   T10] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   60.502601][   T10] usb 5-1: Product: syz
[   60.504604][   T10] usb 5-1: Manufacturer: syz
[   60.506625][   T10] usb 5-1: SerialNumber: syz
[   60.510785][   T10] usb 5-1: config 0 descriptor??
[   60.518024][   T10] usb 5-1: selecting invalid altsetting 0
[   60.636171][ T6024] usblp 8-1:250.228: usblp0: USB Bidirectional printer dev 2 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[   61.834662][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   61.838314][   T61] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   61.939396][ T6280] block nbd1: Disconnected due to user request.
[   61.942194][ T6280] block nbd1: shutting down sockets
[   62.164855][ T6306] 9pnet_fd: Insufficient options for proto=fd
[   62.594464][ T6026] usb 7-1: USB disconnect, device number 3
[   62.693782][ T6314] Zero length message leads to an empty skb
[   62.833928][    T9] usb 5-1: USB disconnect, device number 7
[   62.924996][ T6321] capability: warning: `syz.0.80' uses deprecated v2 capabilities in a way that may be insecure
[   62.992590][ T6317] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   63.097851][ T6327] block device autoloading is deprecated and will be removed.
[   63.240298][ T6332] FAULT_INJECTION: forcing a failure.
[   63.240298][ T6332] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.244684][ T6332] CPU: 0 UID: 0 PID: 6332 Comm: syz.1.83 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   63.244699][ T6332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.244706][ T6332] Call Trace:
[   63.244710][ T6332]  <TASK>
[   63.244714][ T6332]  dump_stack_lvl+0x16c/0x1f0
[   63.244730][ T6332]  should_fail_ex+0x512/0x640
[   63.244743][ T6332]  _copy_from_user+0x2e/0xd0
[   63.244756][ T6332]  get_user_ifreq+0x116/0x1c0
[   63.244771][ T6332]  sock_do_ioctl+0x16b/0x280
[   63.244783][ T6332]  ? do_vfs_ioctl+0x523/0x1a60
[   63.244798][ T6332]  ? __pfx_sock_do_ioctl+0x10/0x10
[   63.244810][ T6332]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   63.244832][ T6332]  compat_sock_ioctl+0x301/0x730
[   63.244849][ T6332]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   63.244863][ T6332]  ? hook_file_ioctl_common+0x145/0x410
[   63.244881][ T6332]  ? __fget_files+0x20e/0x3c0
[   63.244897][ T6332]  ? __fput_deferred+0x480/0x480
[   63.244913][ T6332]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   63.244928][ T6332]  __ia32_compat_sys_ioctl+0x23f/0x370
[   63.244944][ T6332]  __do_fast_syscall_32+0x7c/0x3a0
[   63.244957][ T6332]  do_fast_syscall_32+0x32/0x80
[   63.244968][ T6332]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   63.244982][ T6332] RIP: 0023:0xf709e579
[   63.244990][ T6332] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   63.245000][ T6332] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   63.245010][ T6332] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000008914
[   63.245017][ T6332] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[   63.245023][ T6332] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   63.245028][ T6332] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   63.245034][ T6332] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   63.245047][ T6332]  </TASK>
[   63.327481][    C0] vkms_vblank_simulate: vblank timer overrun
[   63.556341][ T6339] FAULT_INJECTION: forcing a failure.
[   63.556341][ T6339] name failslab, interval 1, probability 0, space 0, times 0
[   63.560436][ T6339] CPU: 1 UID: 0 PID: 6339 Comm: syz.2.84 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   63.560463][ T6339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.560470][ T6339] Call Trace:
[   63.560475][ T6339]  <TASK>
[   63.560479][ T6339]  dump_stack_lvl+0x16c/0x1f0
[   63.560494][ T6339]  should_fail_ex+0x512/0x640
[   63.560505][ T6339]  ? fs_reclaim_acquire+0xae/0x150
[   63.560522][ T6339]  ? tomoyo_encode2+0x100/0x3e0
[   63.560532][ T6339]  should_failslab+0xc2/0x120
[   63.560544][ T6339]  __kmalloc_noprof+0xd2/0x510
[   63.560555][ T6339]  ? d_absolute_path+0x136/0x1a0
[   63.560570][ T6339]  tomoyo_encode2+0x100/0x3e0
[   63.560582][ T6339]  tomoyo_encode+0x29/0x50
[   63.560591][ T6339]  tomoyo_realpath_from_path+0x18f/0x6e0
[   63.560605][ T6339]  tomoyo_mount_acl+0x1ae/0x850
[   63.560622][ T6339]  ? __kernel_text_address+0xd/0x40
[   63.560640][ T6339]  ? unwind_get_return_address+0x59/0xa0
[   63.560659][ T6339]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[   63.560692][ T6339]  ? tomoyo_domain+0xbb/0x150
[   63.560703][ T6339]  ? tomoyo_profile+0x47/0x60
[   63.560716][ T6339]  tomoyo_mount_permission+0x16d/0x420
[   63.560732][ T6339]  ? tomoyo_mount_permission+0x14f/0x420
[   63.560749][ T6339]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[   63.560775][ T6339]  security_sb_mount+0x9b/0x260
[   63.560790][ T6339]  path_mount+0x128/0x2020
[   63.560802][ T6339]  ? kmem_cache_free+0x2d1/0x4d0
[   63.560812][ T6339]  ? __pfx_path_mount+0x10/0x10
[   63.560823][ T6339]  ? getname_flags.part.0+0x1c5/0x550
[   63.560839][ T6339]  ? putname+0x154/0x1a0
[   63.560852][ T6339]  __ia32_sys_mount+0x28b/0x310
[   63.560865][ T6339]  ? __pfx___ia32_sys_mount+0x10/0x10
[   63.560878][ T6339]  ? rcu_is_watching+0x12/0xc0
[   63.560891][ T6339]  __do_fast_syscall_32+0x7c/0x3a0
[   63.560904][ T6339]  do_fast_syscall_32+0x32/0x80
[   63.560915][ T6339]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   63.560929][ T6339] RIP: 0023:0xf7f15579
[   63.560938][ T6339] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   63.560948][ T6339] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[   63.560958][ T6339] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000080000100
[   63.560965][ T6339] RDX: 0000000080002280 RSI: 0000000001000080 RDI: 0000000000000000
[   63.560971][ T6339] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   63.560976][ T6339] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   63.560982][ T6339] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   63.560995][ T6339]  </TASK>
[   63.561025][ T6339] ERROR: Out of memory at tomoyo_realpath_from_path.
[   63.645463][ T6342] warning: `syz.1.86' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   64.006544][ T6345] vxfs: WRONG superblock magic 00000000 at 1
[   64.008718][ T6345] vxfs: WRONG superblock magic 00000000 at 8
[   64.010567][ T6345] vxfs: can't find superblock.
[   64.075752][ T6024] usb 8-1: USB disconnect, device number 2
[   64.082573][ T6024] usblp0: removed
[   64.229470][ T6354] block device autoloading is deprecated and will be removed.
[   64.245841][ T6356] netlink: 160 bytes leftover after parsing attributes in process `syz.2.91'.
[   64.331184][ T6357] netlink: del zone limit has 4 unknown bytes
[   64.643139][ T6361] FAULT_INJECTION: forcing a failure.
[   64.643139][ T6361] name failslab, interval 1, probability 0, space 0, times 0
[   64.647112][ T6361] CPU: 1 UID: 0 PID: 6361 Comm: syz.3.92 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   64.647138][ T6361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.647145][ T6361] Call Trace:
[   64.647149][ T6361]  <TASK>
[   64.647154][ T6361]  dump_stack_lvl+0x16c/0x1f0
[   64.647169][ T6361]  should_fail_ex+0x512/0x640
[   64.647180][ T6361]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[   64.647195][ T6361]  should_failslab+0xc2/0x120
[   64.647207][ T6361]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[   64.647220][ T6361]  ? __request_module+0x2cb/0x690
[   64.647239][ T6361]  kstrdup+0x53/0x100
[   64.647250][ T6361]  __request_module+0x2cb/0x690
[   64.647267][ T6361]  ? __pfx___request_module+0x10/0x10
[   64.647285][ T6361]  ? preempt_schedule_thunk+0x16/0x30
[   64.647302][ T6361]  ? preempt_schedule_thunk+0x16/0x30
[   64.647321][ T6361]  get_fs_type+0xd7/0x190
[   64.647334][ T6361]  tomoyo_mount_acl+0x262/0x850
[   64.647350][ T6361]  ? __kernel_text_address+0xd/0x40
[   64.647367][ T6361]  ? unwind_get_return_address+0x59/0xa0
[   64.647387][ T6361]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[   64.647419][ T6361]  ? tomoyo_domain+0xbb/0x150
[   64.647430][ T6361]  ? tomoyo_profile+0x47/0x60
[   64.647443][ T6361]  tomoyo_mount_permission+0x16d/0x420
[   64.647459][ T6361]  ? tomoyo_mount_permission+0x14f/0x420
[   64.647476][ T6361]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[   64.647501][ T6361]  security_sb_mount+0x9b/0x260
[   64.647516][ T6361]  path_mount+0x128/0x2020
[   64.647528][ T6361]  ? kmem_cache_free+0x2d1/0x4d0
[   64.647538][ T6361]  ? __pfx_path_mount+0x10/0x10
[   64.647554][ T6361]  ? getname_flags.part.0+0x1c5/0x550
[   64.647571][ T6361]  ? putname+0x154/0x1a0
[   64.647585][ T6361]  __ia32_sys_mount+0x28b/0x310
[   64.647597][ T6361]  ? __pfx___ia32_sys_mount+0x10/0x10
[   64.647610][ T6361]  ? rcu_is_watching+0x12/0xc0
[   64.647623][ T6361]  __do_fast_syscall_32+0x7c/0x3a0
[   64.647643][ T6361]  do_fast_syscall_32+0x32/0x80
[   64.647659][ T6361]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   64.647679][ T6361] RIP: 0023:0xf7f63579
[   64.647693][ T6361] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   64.647707][ T6361] RSP: 002b:00000000f504455c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[   64.647723][ T6361] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000040
[   64.647733][ T6361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000800000c0
[   64.647739][ T6361] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   64.647745][ T6361] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   64.647750][ T6361] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   64.647764][ T6361]  </TASK>
[   65.245597][ T6369] netlink: 160 bytes leftover after parsing attributes in process `syz.2.95'.
[   66.768055][ T6387] netlink: 160 bytes leftover after parsing attributes in process `syz.1.100'.
[   66.870295][ T6388] FAULT_INJECTION: forcing a failure.
[   66.870295][ T6388] name failslab, interval 1, probability 0, space 0, times 0
[   66.874436][ T6388] CPU: 0 UID: 0 PID: 6388 Comm: syz.1.100 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   66.874461][ T6388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.874467][ T6388] Call Trace:
[   66.874472][ T6388]  <TASK>
[   66.874476][ T6388]  dump_stack_lvl+0x16c/0x1f0
[   66.874491][ T6388]  should_fail_ex+0x512/0x640
[   66.874504][ T6388]  should_failslab+0xc2/0x120
[   66.874517][ T6388]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   66.874529][ T6388]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[   66.874547][ T6388]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[   66.874565][ T6388]  idr_get_free+0x528/0xa30
[   66.874587][ T6388]  idr_alloc_u32+0x190/0x2f0
[   66.874605][ T6388]  ? __pfx_idr_alloc_u32+0x10/0x10
[   66.874623][ T6388]  ? lock_acquire+0x179/0x350
[   66.874641][ T6388]  idr_alloc_cyclic+0x10b/0x230
[   66.874658][ T6388]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[   66.874674][ T6388]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   66.874695][ T6388]  bpf_link_prime+0x6e/0x290
[   66.874714][ T6388]  bpf_raw_tp_link_attach+0x28d/0x600
[   66.874732][ T6388]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[   66.874749][ T6388]  ? find_held_lock+0x2b/0x80
[   66.874760][ T6388]  ? __fget_files+0x204/0x3c0
[   66.874783][ T6388]  ? fput+0x70/0xf0
[   66.874796][ T6388]  ? __bpf_prog_get+0x97/0x2a0
[   66.874810][ T6388]  __sys_bpf+0x3b4/0x4ea0
[   66.874821][ T6388]  ? __pfx___sys_bpf+0x10/0x10
[   66.874830][ T6388]  ? ksys_write+0x190/0x250
[   66.874842][ T6388]  ? __mutex_unlock_slowpath+0x161/0x6a0
[   66.874861][ T6388]  ? fput+0x70/0xf0
[   66.874873][ T6388]  ? ksys_write+0x1ac/0x250
[   66.874882][ T6388]  ? __pfx_ksys_write+0x10/0x10
[   66.874894][ T6388]  __ia32_sys_bpf+0x76/0xe0
[   66.874905][ T6388]  __do_fast_syscall_32+0x7c/0x3a0
[   66.874918][ T6388]  do_fast_syscall_32+0x32/0x80
[   66.874929][ T6388]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   66.874942][ T6388] RIP: 0023:0xf709e579
[   66.874951][ T6388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   66.874961][ T6388] RSP: 002b:00000000f506d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   66.874971][ T6388] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000080000200
[   66.874977][ T6388] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[   66.874983][ T6388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   66.874989][ T6388] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   66.874995][ T6388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   66.875007][ T6388]  </TASK>
[   66.877173][ T6388] netlink: del zone limit has 4 unknown bytes
[   68.484168][ T6409] tmpfs: Unknown parameter 'quot_hP¬�î•ž�V6§
ÝOaxZrdlimit'
[   68.850836][ T6421] syzkaller1: entered promiscuous mode
[   68.852665][ T6421] syzkaller1: entered allmulticast mode
[   68.876007][   T74] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   68.882240][ T1172] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   69.028138][ T6427] bridge1: the hash_elasticity option has been deprecated and is always 16
[   69.050949][ T6427] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   69.449015][ T6436] =======================================================
[   69.449015][ T6436] WARNING: The mand mount option has been deprecated and
[   69.449015][ T6436]          and is ignored by this kernel. Remove the mand
[   69.449015][ T6436]          option from the mount to silence this warning.
[   69.449015][ T6436] =======================================================
[   69.782403][ T6443] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   69.785789][ T6443] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[   69.829253][ T6445] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[   70.068899][ T6460] netlink: 'syz.2.123': attribute type 4 has an invalid length.
[   70.071396][ T6460] netlink: 17 bytes leftover after parsing attributes in process `syz.2.123'.
[   70.625843][ T6474] FAULT_INJECTION: forcing a failure.
[   70.625843][ T6474] name failslab, interval 1, probability 0, space 0, times 0
[   70.637427][ T6474] CPU: 2 UID: 0 PID: 6474 Comm: syz.2.126 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   70.637454][ T6474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   70.637466][ T6474] Call Trace:
[   70.637472][ T6474]  <TASK>
[   70.637481][ T6474]  dump_stack_lvl+0x16c/0x1f0
[   70.637529][ T6474]  should_fail_ex+0x512/0x640
[   70.637550][ T6474]  ? __kvmalloc_node_noprof+0x124/0x620
[   70.637585][ T6474]  should_failslab+0xc2/0x120
[   70.637608][ T6474]  __kvmalloc_node_noprof+0x137/0x620
[   70.637638][ T6474]  ? rcu_is_watching+0x12/0xc0
[   70.637659][ T6474]  ? rtnl_newlink+0x600/0x2000
[   70.637682][ T6474]  ? alloc_netdev_mqs+0xd2/0x1570
[   70.637707][ T6474]  ? __pfx_macvlan_setup+0x10/0x10
[   70.637730][ T6474]  ? alloc_netdev_mqs+0xd2/0x1570
[   70.637750][ T6474]  alloc_netdev_mqs+0xd2/0x1570
[   70.637779][ T6474]  rtnl_create_link+0xc08/0xf90
[   70.637805][ T6474]  rtnl_newlink+0xb69/0x2000
[   70.637836][ T6474]  ? __pfx_rtnl_newlink+0x10/0x10
[   70.637863][ T6474]  ? kfree_skbmem+0x1a4/0x1f0
[   70.637905][ T6474]  ? rcu_is_watching+0x12/0xc0
[   70.637926][ T6474]  ? trace_cap_capable+0x18d/0x200
[   70.637955][ T6474]  ? find_held_lock+0x2b/0x80
[   70.637975][ T6474]  ? __pfx_rtnl_newlink+0x10/0x10
[   70.637996][ T6474]  ? __pfx_rtnl_newlink+0x10/0x10
[   70.638017][ T6474]  ? rtnetlink_rcv_msg+0x93a/0xe90
[   70.638039][ T6474]  ? __pfx_rtnl_newlink+0x10/0x10
[   70.638059][ T6474]  rtnetlink_rcv_msg+0x95b/0xe90
[   70.638098][ T6474]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   70.638127][ T6474]  ? ref_tracker_free+0x37c/0x830
[   70.638152][ T6474]  netlink_rcv_skb+0x158/0x420
[   70.638175][ T6474]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   70.638197][ T6474]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   70.638229][ T6474]  ? netlink_deliver_tap+0x1ae/0xd30
[   70.638256][ T6474]  netlink_unicast+0x58a/0x850
[   70.638283][ T6474]  ? __pfx_netlink_unicast+0x10/0x10
[   70.638311][ T6474]  netlink_sendmsg+0x8d1/0xdd0
[   70.638338][ T6474]  ? __pfx_netlink_sendmsg+0x10/0x10
[   70.638363][ T6474]  ? __import_iovec+0x1dd/0x650
[   70.638390][ T6474]  ____sys_sendmsg+0xa95/0xc70
[   70.638419][ T6474]  ? __pfx_____sys_sendmsg+0x10/0x10
[   70.638443][ T6474]  ? get_compat_msghdr+0x11a/0x170
[   70.638475][ T6474]  ___sys_sendmsg+0x134/0x1d0
[   70.638496][ T6474]  ? __pfx____sys_sendmsg+0x10/0x10
[   70.638534][ T6474]  ? find_held_lock+0x2b/0x80
[   70.638570][ T6474]  __sys_sendmsg+0x16d/0x220
[   70.638591][ T6474]  ? __pfx___sys_sendmsg+0x10/0x10
[   70.638621][ T6474]  ? rcu_is_watching+0x12/0xc0
[   70.638644][ T6474]  __do_fast_syscall_32+0x7c/0x3a0
[   70.638668][ T6474]  do_fast_syscall_32+0x32/0x80
[   70.638689][ T6474]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   70.638712][ T6474] RIP: 0023:0xf7f15579
[   70.638725][ T6474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   70.638742][ T6474] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   70.638762][ T6474] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000200
[   70.638774][ T6474] RDX: 0000000020040040 RSI: 0000000000000000 RDI: 0000000000000000
[   70.638785][ T6474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   70.638795][ T6474] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   70.638806][ T6474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   70.638828][ T6474]  </TASK>
[   70.803578][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[   70.805655][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[   70.846800][ T6477] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT
[   71.205497][ T6493] tipc: Started in network mode
[   71.207171][ T6493] tipc: Node identity 5a6dd481c431, cluster identity 4711
[   71.209700][ T6493] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   71.212463][ T6493] syzkaller0: entered promiscuous mode
[   71.214398][ T6493] syzkaller0: entered allmulticast mode
[   71.226809][ T6493] tipc: Resetting bearer <eth:syzkaller0>
[   71.230608][ T6492] tipc: Resetting bearer <eth:syzkaller0>
[   71.237094][ T6492] tipc: Disabling bearer <eth:syzkaller0>
[   72.236818][   T40] audit: type=1326 audit(1753523222.105:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.261424][   T40] audit: type=1326 audit(1753523222.105:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.317895][   T40] audit: type=1326 audit(1753523222.115:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.326202][   T40] audit: type=1326 audit(1753523222.115:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.335467][   T40] audit: type=1326 audit(1753523222.115:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.344228][   T40] audit: type=1326 audit(1753523222.125:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.351306][   T40] audit: type=1326 audit(1753523222.125:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.357855][   T40] audit: type=1326 audit(1753523222.125:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.361065][ T6511] vivid-007: =================  START STATUS  =================
[   72.364515][   T40] audit: type=1326 audit(1753523222.125:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.366943][ T6511] vivid-007: Enable Output Cropping: 
[   72.373882][   T40] audit: type=1326 audit(1753523222.125:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.1.139" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   72.373919][ T6511] true
[   72.383511][ T6511] vivid-007: Enable Output Composing: true
[   72.385178][ T6511] vivid-007: Enable Output Scaler: true
[   72.386921][ T6511] vivid-007: Tx RGB Quantization Range: Automatic
[   72.388952][ T6511] vivid-007: Transmit Mode: HDMI
[   72.390571][ T6511] vivid-007: Hotplug Present: 0x00000000
[   72.392354][ T6511] vivid-007: RxSense Present: 0x00000000
[   72.394216][ T6511] vivid-007: EDID Present: 0x00000000
[   72.395912][ T6511] vivid-007: ==================  END STATUS  ==================
[   72.771891][ T6517] netlink: 12 bytes leftover after parsing attributes in process `syz.2.141'.
[   72.776676][ T6517] netlink: 56 bytes leftover after parsing attributes in process `syz.2.141'.
[   72.815210][ T6520] FAULT_INJECTION: forcing a failure.
[   72.815210][ T6520] name failslab, interval 1, probability 0, space 0, times 0
[   72.817475][ T6521] process 'syz.3.142' launched './file1' with NULL argv: empty string added
[   72.819720][ T6520] CPU: 3 UID: 0 PID: 6520 Comm: syz.2.143 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   72.819735][ T6520] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.819742][ T6520] Call Trace:
[   72.819747][ T6520]  <TASK>
[   72.819751][ T6520]  dump_stack_lvl+0x16c/0x1f0
[   72.819766][ T6520]  should_fail_ex+0x512/0x640
[   72.819777][ T6520]  ? fs_reclaim_acquire+0xae/0x150
[   72.819794][ T6520]  ? tomoyo_encode2+0x100/0x3e0
[   72.819806][ T6520]  should_failslab+0xc2/0x120
[   72.819824][ T6520]  __kmalloc_noprof+0xd2/0x510
[   72.819839][ T6520]  ? d_absolute_path+0x136/0x1a0
[   72.819863][ T6520]  tomoyo_encode2+0x100/0x3e0
[   72.819881][ T6520]  tomoyo_encode+0x29/0x50
[   72.819894][ T6520]  tomoyo_realpath_from_path+0x18f/0x6e0
[   72.819917][ T6520]  tomoyo_path2_perm+0x2a1/0x710
[   72.819938][ T6520]  ? tomoyo_path2_perm+0x293/0x710
[   72.819961][ T6520]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[   72.820016][ T6520]  ? lookup_dcache+0x66/0x170
[   72.820040][ T6520]  tomoyo_path_link+0xae/0x100
[   72.820060][ T6520]  ? __pfx_tomoyo_path_link+0x10/0x10
[   72.820088][ T6520]  security_path_link+0x12f/0x2b0
[   72.820113][ T6520]  do_linkat+0x412/0x5a0
[   72.820134][ T6520]  ? __pfx_do_linkat+0x10/0x10
[   72.820151][ T6520]  ? strncpy_from_user+0x203/0x2e0
[   72.820179][ T6520]  ? getname_flags.part.0+0x1c5/0x550
[   72.820206][ T6520]  __ia32_sys_linkat+0xea/0x130
[   72.820226][ T6520]  __do_fast_syscall_32+0x7c/0x3a0
[   72.820247][ T6520]  do_fast_syscall_32+0x32/0x80
[   72.820264][ T6520]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   72.820284][ T6520] RIP: 0023:0xf7f15579
[   72.820298][ T6520] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   72.820313][ T6520] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 000000000000012f
[   72.820330][ T6520] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000500
[   72.820340][ T6520] RDX: 00000000ffffff9c RSI: 0000000080000540 RDI: 0000000000000000
[   72.820350][ T6520] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   72.820359][ T6520] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   72.820368][ T6520] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   72.820390][ T6520]  </TASK>
[   72.820409][ T6520] ERROR: Out of memory at tomoyo_realpath_from_path.
[   73.996811][   T74] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   74.182569][ T6544] FAULT_INJECTION: forcing a failure.
[   74.182569][ T6544] name failslab, interval 1, probability 0, space 0, times 0
[   74.187449][ T6544] CPU: 3 UID: 0 PID: 6544 Comm: syz.1.150 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   74.187465][ T6544] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.187472][ T6544] Call Trace:
[   74.187476][ T6544]  <TASK>
[   74.187480][ T6544]  dump_stack_lvl+0x16c/0x1f0
[   74.187496][ T6544]  should_fail_ex+0x512/0x640
[   74.187508][ T6544]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   74.187526][ T6544]  should_failslab+0xc2/0x120
[   74.187538][ T6544]  __kmalloc_cache_noprof+0x6a/0x3e0
[   74.187555][ T6544]  ? sctp_datamsg_from_user+0x8d/0x1320
[   74.187575][ T6544]  sctp_datamsg_from_user+0x8d/0x1320
[   74.187592][ T6544]  ? __sk_mem_raise_allocated+0x94d/0x1670
[   74.187608][ T6544]  ? __sk_mem_schedule+0xd0/0x100
[   74.187621][ T6544]  sctp_sendmsg_to_asoc+0xaf5/0x1bf0
[   74.187641][ T6544]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[   74.187654][ T6544]  ? do_raw_spin_lock+0x12c/0x2b0
[   74.187671][ T6544]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   74.187691][ T6544]  ? sctp_sendmsg_check_sflags+0x176/0x320
[   74.187705][ T6544]  sctp_sendmsg+0xef5/0x1ee0
[   74.187724][ T6544]  ? __pfx_sctp_sendmsg+0x10/0x10
[   74.187740][ T6544]  ? __pfx___might_resched+0x10/0x10
[   74.187757][ T6544]  ? unwind_get_return_address+0x59/0xa0
[   74.187775][ T6544]  ? __pfx_aa_sk_perm+0x10/0x10
[   74.187792][ T6544]  ? __pfx_sctp_sendmsg+0x10/0x10
[   74.187808][ T6544]  inet_sendmsg+0x11c/0x140
[   74.187825][ T6544]  sock_write_iter+0x4aa/0x5b0
[   74.187840][ T6544]  ? __pfx_sock_write_iter+0x10/0x10
[   74.187861][ T6544]  ? __lock_acquire+0x622/0x1c90
[   74.187877][ T6544]  do_iter_readv_writev+0x657/0x950
[   74.187895][ T6544]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   74.187927][ T6544]  ? bpf_lsm_file_permission+0x9/0x10
[   74.187942][ T6544]  ? security_file_permission+0x71/0x210
[   74.187960][ T6544]  ? rw_verify_area+0xcf/0x680
[   74.187976][ T6544]  vfs_writev+0x35f/0xde0
[   74.187997][ T6544]  ? __pfx_vfs_writev+0x10/0x10
[   74.188014][ T6544]  ? find_held_lock+0x2b/0x80
[   74.188033][ T6544]  ? __fget_files+0x20e/0x3c0
[   74.188049][ T6544]  ? __fget_files+0x1b0/0x3c0
[   74.188069][ T6544]  ? do_writev+0x28c/0x340
[   74.188084][ T6544]  do_writev+0x28c/0x340
[   74.188100][ T6544]  ? __pfx_do_writev+0x10/0x10
[   74.188117][ T6544]  ? rcu_is_watching+0x12/0xc0
[   74.188131][ T6544]  __do_fast_syscall_32+0x7c/0x3a0
[   74.188144][ T6544]  do_fast_syscall_32+0x32/0x80
[   74.188155][ T6544]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   74.188168][ T6544] RIP: 0023:0xf709e579
[   74.188176][ T6544] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   74.188186][ T6544] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[   74.188196][ T6544] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800003c0
[   74.188203][ T6544] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[   74.188209][ T6544] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   74.188214][ T6544] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   74.188220][ T6544] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   74.188233][ T6544]  </TASK>
[   74.385571][ T6543] overlayfs: failed to resolve '/ÝÝ': -2
[   74.635001][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   75.050861][ T6558] wireguard0: entered promiscuous mode
[   75.058844][ T6558] wireguard0: entered allmulticast mode
[   75.530930][ T6569] FAULT_INJECTION: forcing a failure.
[   75.530930][ T6569] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.535359][ T6569] CPU: 2 UID: 0 PID: 6569 Comm: syz.3.156 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   75.535375][ T6569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.535381][ T6569] Call Trace:
[   75.535385][ T6569]  <TASK>
[   75.535389][ T6569]  dump_stack_lvl+0x16c/0x1f0
[   75.535404][ T6569]  should_fail_ex+0x512/0x640
[   75.535418][ T6569]  _copy_to_user+0x32/0xd0
[   75.535431][ T6569]  simple_read_from_buffer+0xcb/0x170
[   75.535448][ T6569]  proc_fail_nth_read+0x197/0x270
[   75.535464][ T6569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   75.535480][ T6569]  ? rw_verify_area+0xcf/0x680
[   75.535495][ T6569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   75.535510][ T6569]  vfs_read+0x1e4/0xc60
[   75.535520][ T6569]  ? fdget_pos+0x2a2/0x370
[   75.535531][ T6569]  ? __pfx_vfs_read+0x10/0x10
[   75.535540][ T6569]  ? find_held_lock+0x2b/0x80
[   75.535555][ T6569]  ? __fget_files+0x20e/0x3c0
[   75.535570][ T6569]  ? __fget_files+0x1b0/0x3c0
[   75.535590][ T6569]  ksys_read+0x12a/0x250
[   75.535599][ T6569]  ? __pfx_ksys_read+0x10/0x10
[   75.535610][ T6569]  ? rcu_is_watching+0x12/0xc0
[   75.535623][ T6569]  __do_fast_syscall_32+0x7c/0x3a0
[   75.535636][ T6569]  do_fast_syscall_32+0x32/0x80
[   75.535648][ T6569]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   75.535661][ T6569] RIP: 0023:0xf7f63579
[   75.535670][ T6569] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   75.535680][ T6569] RSP: 002b:00000000f5044590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   75.535690][ T6569] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f5044620
[   75.535696][ T6569] RDX: 000000000000000f RSI: 00000000f73f4ff4 RDI: 0000000000000000
[   75.535702][ T6569] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   75.535707][ T6569] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   75.535713][ T6569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   75.535726][ T6569]  </TASK>
[   75.699843][ T6573] FAULT_INJECTION: forcing a failure.
[   75.699843][ T6573] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.706268][ T6573] CPU: 2 UID: 0 PID: 6573 Comm: syz.1.158 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   75.706295][ T6573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.706306][ T6573] Call Trace:
[   75.706314][ T6573]  <TASK>
[   75.706322][ T6573]  dump_stack_lvl+0x16c/0x1f0
[   75.706349][ T6573]  should_fail_ex+0x512/0x640
[   75.706374][ T6573]  _copy_to_user+0x32/0xd0
[   75.706398][ T6573]  mptcp_put_int_option.constprop.0+0x1bd/0x250
[   75.706425][ T6573]  ? __pfx_mptcp_put_int_option.constprop.0+0x10/0x10
[   75.706449][ T6573]  ? find_held_lock+0x2b/0x80
[   75.706471][ T6573]  ? mptcp_getsockopt+0x16a/0xd70
[   75.706493][ T6573]  ? rcu_is_watching+0x12/0xc0
[   75.706512][ T6573]  ? __local_bh_enable_ip+0xa4/0x120
[   75.706538][ T6573]  mptcp_getsockopt+0x71e/0xd70
[   75.706562][ T6573]  ? __pfx_mptcp_getsockopt+0x10/0x10
[   75.706585][ T6573]  ? __lock_acquire+0x622/0x1c90
[   75.706610][ T6573]  ? __pfx_aa_sk_perm+0x10/0x10
[   75.706636][ T6573]  ? find_held_lock+0x2b/0x80
[   75.706662][ T6573]  ? __pfx_sock_common_getsockopt+0x10/0x10
[   75.706687][ T6573]  do_sock_getsockopt+0x34a/0x440
[   75.706713][ T6573]  ? __pfx_do_sock_getsockopt+0x10/0x10
[   75.706750][ T6573]  ? __fget_files+0x204/0x3c0
[   75.706791][ T6573]  __sys_getsockopt+0x123/0x1b0
[   75.706818][ T6573]  __ia32_sys_getsockopt+0xbc/0x160
[   75.706837][ T6573]  ? lockdep_hardirqs_on+0x7c/0x110
[   75.706854][ T6573]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   75.706873][ T6573]  __do_fast_syscall_32+0x7c/0x3a0
[   75.706896][ T6573]  do_fast_syscall_32+0x32/0x80
[   75.706915][ T6573]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   75.706936][ T6573] RIP: 0023:0xf709e579
[   75.706947][ T6573] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   75.706961][ T6573] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[   75.706976][ T6573] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000006
[   75.706987][ T6573] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 00000000800009c0
[   75.706996][ T6573] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   75.707005][ T6573] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   75.707014][ T6573] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   75.707029][ T6573]  </TASK>
[   75.853214][ T6577] netlink: 12 bytes leftover after parsing attributes in process `syz.2.161'.
[   75.854079][ T6579] netlink: 4 bytes leftover after parsing attributes in process `syz.1.160'.
[   75.882978][ T6584] FAULT_INJECTION: forcing a failure.
[   75.882978][ T6584] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.887224][ T6584] CPU: 1 UID: 0 PID: 6584 Comm: syz.3.162 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   75.887239][ T6584] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.887246][ T6584] Call Trace:
[   75.887250][ T6584]  <TASK>
[   75.887254][ T6584]  dump_stack_lvl+0x16c/0x1f0
[   75.887268][ T6584]  should_fail_ex+0x512/0x640
[   75.887282][ T6584]  _copy_from_user+0x2e/0xd0
[   75.887294][ T6584]  get_compat_msghdr+0xa7/0x170
[   75.887307][ T6584]  ? __pfx_get_compat_msghdr+0x10/0x10
[   75.887323][ T6584]  ___sys_sendmsg+0x1ae/0x1d0
[   75.887335][ T6584]  ? __pfx____sys_sendmsg+0x10/0x10
[   75.887352][ T6584]  ? find_held_lock+0x2b/0x80
[   75.887373][ T6584]  __sys_sendmsg+0x16d/0x220
[   75.887384][ T6584]  ? __pfx___sys_sendmsg+0x10/0x10
[   75.887401][ T6584]  ? rcu_is_watching+0x12/0xc0
[   75.887415][ T6584]  __do_fast_syscall_32+0x7c/0x3a0
[   75.887428][ T6584]  do_fast_syscall_32+0x32/0x80
[   75.887439][ T6584]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   75.887453][ T6584] RIP: 0023:0xf7f63579
[   75.887461][ T6584] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   75.887471][ T6584] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   75.887482][ T6584] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[   75.887488][ T6584] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   75.887494][ T6584] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   75.887500][ T6584] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   75.887506][ T6584] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   75.887518][ T6584]  </TASK>
[   75.947369][    C1] vkms_vblank_simulate: vblank timer overrun
[   76.557597][ T6604] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   76.566680][ T6604] netlink: 'syz.1.166': attribute type 10 has an invalid length.
[   77.305722][ T6619] mmap: syz.3.171 (6619) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   77.715695][ T6624] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   77.722284][ T6624] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[   77.835162][ T1466] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   77.835223][   T61] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   78.896655][ T6640] FAULT_INJECTION: forcing a failure.
[   78.896655][ T6640] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.915832][ T6640] CPU: 0 UID: 0 PID: 6640 Comm: syz.2.176 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   78.915852][ T6640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.915859][ T6640] Call Trace:
[   78.915863][ T6640]  <TASK>
[   78.915868][ T6640]  dump_stack_lvl+0x16c/0x1f0
[   78.915883][ T6640]  should_fail_ex+0x512/0x640
[   78.915897][ T6640]  _copy_to_user+0x32/0xd0
[   78.915910][ T6640]  simple_read_from_buffer+0xcb/0x170
[   78.915927][ T6640]  proc_fail_nth_read+0x197/0x270
[   78.915943][ T6640]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   78.915959][ T6640]  ? rw_verify_area+0xcf/0x680
[   78.915974][ T6640]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   78.915989][ T6640]  vfs_read+0x1e4/0xc60
[   78.915998][ T6640]  ? fdget_pos+0x2a2/0x370
[   78.916010][ T6640]  ? __pfx_vfs_read+0x10/0x10
[   78.916019][ T6640]  ? find_held_lock+0x2b/0x80
[   78.916034][ T6640]  ? __fget_files+0x20e/0x3c0
[   78.916054][ T6640]  ksys_read+0x12a/0x250
[   78.916063][ T6640]  ? __pfx_ksys_read+0x10/0x10
[   78.916074][ T6640]  ? rcu_is_watching+0x12/0xc0
[   78.916088][ T6640]  __do_fast_syscall_32+0x7c/0x3a0
[   78.916101][ T6640]  do_fast_syscall_32+0x32/0x80
[   78.916112][ T6640]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   78.916126][ T6640] RIP: 0023:0xf7f15579
[   78.916138][ T6640] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   78.916148][ T6640] RSP: 002b:00000000f5015590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   78.916158][ T6640] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5015620
[   78.916164][ T6640] RDX: 000000000000000f RSI: 00000000f73a4ff4 RDI: 0000000000000000
[   78.916170][ T6640] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   78.916176][ T6640] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   78.916182][ T6640] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   78.916194][ T6640]  </TASK>
[   79.533860][ T6650] nbd1: detected capacity change from 0 to 1024
[   79.539960][ T6651] block nbd1: NBD_DISCONNECT
[   79.541571][ T6651] block nbd1: Send disconnect failed -89
[   79.544390][ T5967] block nbd1: Send control failed (result -89)
[   79.546673][ T5967] block nbd1: Request send failed, requeueing
[   79.549631][ T5967] block nbd1: Disconnected due to user request.
[   79.552703][ T6281] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.558211][ T6281] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.561263][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.564555][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.570400][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.573730][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.576678][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.579652][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.582266][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.586040][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.589444][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.592412][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.595205][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.598841][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.601626][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.604788][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.607654][ T5967] ldm_validate_partition_table(): Disk read failed.
[   79.609918][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.612801][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.615566][ T5967] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   79.618706][ T5967] Buffer I/O error on dev nbd1, logical block 0, async page read
[   79.621605][ T5967] Dev nbd1: unable to read RDB block 0
[   79.623893][ T5967]  nbd1: unable to read partition table
[   79.629991][ T5967] ldm_validate_partition_table(): Disk read failed.
[   79.632352][ T5967] Dev nbd1: unable to read RDB block 0
[   79.634902][ T5967]  nbd1: unable to read partition table
[   79.751025][ T6667] FAULT_INJECTION: forcing a failure.
[   79.751025][ T6667] name failslab, interval 1, probability 0, space 0, times 0
[   79.757288][  T222] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   79.761294][ T6667] CPU: 2 UID: 0 PID: 6667 Comm: syz.2.185 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   79.761309][ T6667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.761316][ T6667] Call Trace:
[   79.761320][ T6667]  <TASK>
[   79.761324][ T6667]  dump_stack_lvl+0x16c/0x1f0
[   79.761340][ T6667]  should_fail_ex+0x512/0x640
[   79.761351][ T6667]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[   79.761364][ T6667]  should_failslab+0xc2/0x120
[   79.761376][ T6667]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[   79.761388][ T6667]  ? sock_alloc_inode+0x25/0x1c0
[   79.761404][ T6667]  ? __pfx_sock_alloc_inode+0x10/0x10
[   79.761417][ T6667]  sock_alloc_inode+0x25/0x1c0
[   79.761430][ T6667]  alloc_inode+0x61/0x240
[   79.761444][ T6667]  sock_alloc+0x40/0x280
[   79.761456][ T6667]  do_accept+0xf7/0x530
[   79.761472][ T6667]  ? do_raw_spin_lock+0x12c/0x2b0
[   79.761490][ T6667]  ? __pfx_do_accept+0x10/0x10
[   79.761514][ T6667]  __sys_accept4+0x100/0x1c0
[   79.761531][ T6667]  ? __pfx___sys_accept4+0x10/0x10
[   79.761547][ T6667]  ? __pfx_ksys_write+0x10/0x10
[   79.761560][ T6667]  __ia32_sys_accept4+0x94/0x100
[   79.761576][ T6667]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   79.761589][ T6667]  __do_fast_syscall_32+0x7c/0x3a0
[   79.761601][ T6667]  do_fast_syscall_32+0x32/0x80
[   79.761613][ T6667]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   79.761626][ T6667] RIP: 0023:0xf7f15579
[   79.761634][ T6667] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   79.761644][ T6667] RSP: 002b:00000000f501555c EFLAGS: 00000296 ORIG_RAX: 000000000000016c
[   79.761654][ T6667] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[   79.761661][ T6667] RDX: 0000000000000000 RSI: 0000000000080000 RDI: 0000000000000000
[   79.761667][ T6667] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   79.761672][ T6667] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   79.761678][ T6667] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   79.761690][ T6667]  </TASK>
[   79.877301][ T6666] random: crng reseeded on system resumption
[   79.958349][ T1139] Bluetooth: hci4: Frame reassembly failed (-84)
[   80.309442][ T6678] wireguard0: entered promiscuous mode
[   80.311528][ T6678] wireguard0: entered allmulticast mode
[   80.394770][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   80.566969][ T6684] FAULT_INJECTION: forcing a failure.
[   80.566969][ T6684] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.571053][ T6684] CPU: 2 UID: 0 PID: 6684 Comm: syz.2.188 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   80.571078][ T6684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.571086][ T6684] Call Trace:
[   80.571090][ T6684]  <TASK>
[   80.571094][ T6684]  dump_stack_lvl+0x16c/0x1f0
[   80.571109][ T6684]  should_fail_ex+0x512/0x640
[   80.571123][ T6684]  _copy_from_user+0x2e/0xd0
[   80.571136][ T6684]  get_compat_msghdr+0xa7/0x170
[   80.571148][ T6684]  ? __pfx_get_compat_msghdr+0x10/0x10
[   80.571164][ T6684]  ___sys_sendmsg+0x1ae/0x1d0
[   80.571181][ T6684]  ? __pfx____sys_sendmsg+0x10/0x10
[   80.571198][ T6684]  ? find_held_lock+0x2b/0x80
[   80.571218][ T6684]  __sys_sendmsg+0x16d/0x220
[   80.571230][ T6684]  ? __pfx___sys_sendmsg+0x10/0x10
[   80.571247][ T6684]  ? rcu_is_watching+0x12/0xc0
[   80.571260][ T6684]  __do_fast_syscall_32+0x7c/0x3a0
[   80.571273][ T6684]  do_fast_syscall_32+0x32/0x80
[   80.571284][ T6684]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.571298][ T6684] RIP: 0023:0xf7f15579
[   80.571306][ T6684] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.571316][ T6684] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   80.571326][ T6684] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[   80.571332][ T6684] RDX: 0000000024044080 RSI: 0000000000000000 RDI: 0000000000000000
[   80.571338][ T6684] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   80.571344][ T6684] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.571350][ T6684] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.571362][ T6684]  </TASK>
[   80.685702][   T40] kauditd_printk_skb: 485 callbacks suppressed
[   80.685722][   T40] audit: type=1326 audit(1753523230.555:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[   80.695443][   T40] audit: type=1326 audit(1753523230.555:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[   80.702150][   T40] audit: type=1326 audit(1753523230.555:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f15579 code=0x7ffc0000
[   80.710558][   T40] audit: type=1326 audit(1753523230.555:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[   80.717310][   T40] audit: type=1326 audit(1753523230.555:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[   80.725743][   T40] audit: type=1326 audit(1753523230.555:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f15579 code=0x7ffc0000
[   80.732517][   T40] audit: type=1326 audit(1753523230.555:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000
[   80.741168][   T40] audit: type=1326 audit(1753523230.555:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000
[   80.755046][   T40] audit: type=1326 audit(1753523230.555:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000
[   80.764739][   T40] audit: type=1326 audit(1753523230.555:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.2.189" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000
[   80.900105][ T6687] syz.2.189 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   80.936425][ T6689] netlink: 8 bytes leftover after parsing attributes in process `syz.3.190'.
[   81.053136][  T840] cfg80211: failed to load regulatory.db
[   81.231746][ T6698] FAULT_INJECTION: forcing a failure.
[   81.231746][ T6698] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   81.236349][ T6698] CPU: 0 UID: 0 PID: 6698 Comm: syz.2.192 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   81.236364][ T6698] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.236371][ T6698] Call Trace:
[   81.236375][ T6698]  <TASK>
[   81.236379][ T6698]  dump_stack_lvl+0x16c/0x1f0
[   81.236394][ T6698]  should_fail_ex+0x512/0x640
[   81.236408][ T6698]  _copy_from_user+0x2e/0xd0
[   81.236421][ T6698]  copy_from_sockptr_offset.constprop.0+0x136/0x170
[   81.236439][ T6698]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[   81.236463][ T6698]  ax25_setsockopt+0x132/0x1170
[   81.236474][ T6698]  ? __pfx_ax25_setsockopt+0x10/0x10
[   81.236484][ T6698]  ? __fget_files+0x204/0x3c0
[   81.236503][ T6698]  ? __pfx_ax25_setsockopt+0x10/0x10
[   81.236514][ T6698]  do_sock_setsockopt+0xf0/0x1d0
[   81.236530][ T6698]  __sys_setsockopt+0x120/0x1a0
[   81.236543][ T6698]  __ia32_sys_setsockopt+0xbc/0x160
[   81.236553][ T6698]  ? lockdep_hardirqs_on+0x7c/0x110
[   81.236563][ T6698]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   81.236574][ T6698]  __do_fast_syscall_32+0x7c/0x3a0
[   81.236592][ T6698]  do_fast_syscall_32+0x32/0x80
[   81.236609][ T6698]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   81.236622][ T6698] RIP: 0023:0xf7f15579
[   81.236631][ T6698] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   81.236641][ T6698] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[   81.236651][ T6698] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000101
[   81.236657][ T6698] RDX: 0000000000000019 RSI: 00000000800001c0 RDI: 0000000000000010
[   81.236663][ T6698] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   81.236669][ T6698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   81.236675][ T6698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   81.236687][ T6698]  </TASK>
[   81.390957][ T6706] openvswitch: netlink: IPv4 tun info is not correct
[   81.598598][ T6718] netlink: 32 bytes leftover after parsing attributes in process `syz.1.200'.
[   81.993368][ T5962] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   82.164240][ T6732] netlink: 4 bytes leftover after parsing attributes in process `syz.3.203'.
[   82.168252][ T6732] FAULT_INJECTION: forcing a failure.
[   82.168252][ T6732] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.172283][ T6732] CPU: 2 UID: 0 PID: 6732 Comm: syz.3.203 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   82.172298][ T6732] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.172305][ T6732] Call Trace:
[   82.172309][ T6732]  <TASK>
[   82.172313][ T6732]  dump_stack_lvl+0x16c/0x1f0
[   82.172328][ T6732]  should_fail_ex+0x512/0x640
[   82.172342][ T6732]  _copy_from_user+0x2e/0xd0
[   82.172355][ T6732]  get_compat_msghdr+0xa7/0x170
[   82.172367][ T6732]  ? __pfx_get_compat_msghdr+0x10/0x10
[   82.172384][ T6732]  ___sys_sendmsg+0x1ae/0x1d0
[   82.172397][ T6732]  ? __pfx____sys_sendmsg+0x10/0x10
[   82.172414][ T6732]  ? find_held_lock+0x2b/0x80
[   82.172434][ T6732]  __sys_sendmsg+0x16d/0x220
[   82.172446][ T6732]  ? __pfx___sys_sendmsg+0x10/0x10
[   82.172463][ T6732]  ? rcu_is_watching+0x12/0xc0
[   82.172476][ T6732]  __do_fast_syscall_32+0x7c/0x3a0
[   82.172489][ T6732]  do_fast_syscall_32+0x32/0x80
[   82.172500][ T6732]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.172514][ T6732] RIP: 0023:0xf7f63579
[   82.172523][ T6732] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.172533][ T6732] RSP: 002b:00000000f506555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   82.172542][ T6732] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000000
[   82.172549][ T6732] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   82.172554][ T6732] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.172560][ T6732] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   82.172566][ T6732] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.172578][ T6732]  </TASK>
[   82.475783][ T6734] netlink: 'syz.2.204': attribute type 39 has an invalid length.
[   82.478244][ T6734] netlink: 'syz.2.204': attribute type 4 has an invalid length.
[   82.480720][ T6734] netlink: 152 bytes leftover after parsing attributes in process `syz.2.204'.
[   82.830268][ T6744] netlink: 4 bytes leftover after parsing attributes in process `syz.1.207'.
[   82.833892][ T6744] netlink: 12 bytes leftover after parsing attributes in process `syz.1.207'.
[   84.537184][ T6773] FAULT_INJECTION: forcing a failure.
[   84.537184][ T6773] name failslab, interval 1, probability 0, space 0, times 0
[   84.542767][ T6773] CPU: 1 UID: 0 PID: 6773 Comm: syz.3.214 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   84.542807][ T6773] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.542818][ T6773] Call Trace:
[   84.542825][ T6773]  <TASK>
[   84.542833][ T6773]  dump_stack_lvl+0x16c/0x1f0
[   84.542856][ T6773]  should_fail_ex+0x512/0x640
[   84.542875][ T6773]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   84.542906][ T6773]  should_failslab+0xc2/0x120
[   84.542927][ T6773]  __kmalloc_cache_noprof+0x6a/0x3e0
[   84.542954][ T6773]  ? alloc_pipe_info+0x10e/0x590
[   84.542979][ T6773]  alloc_pipe_info+0x10e/0x590
[   84.543001][ T6773]  splice_direct_to_actor+0x77d/0xa30
[   84.543031][ T6773]  ? __pfx_direct_splice_actor+0x10/0x10
[   84.543073][ T6773]  ? __pfx_aa_file_perm+0x10/0x10
[   84.543092][ T6773]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   84.543115][ T6773]  ? get_pid_task+0xfc/0x250
[   84.543147][ T6773]  do_splice_direct+0x174/0x240
[   84.543172][ T6773]  ? __pfx_do_splice_direct+0x10/0x10
[   84.543199][ T6773]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   84.543225][ T6773]  ? bpf_lsm_file_permission+0x9/0x10
[   84.543248][ T6773]  ? security_file_permission+0x71/0x210
[   84.543277][ T6773]  ? rw_verify_area+0xcf/0x680
[   84.543307][ T6773]  do_sendfile+0xb06/0xe50
[   84.543343][ T6773]  ? __pfx_do_sendfile+0x10/0x10
[   84.543370][ T6773]  ? __fget_files+0x20e/0x3c0
[   84.543404][ T6773]  __ia32_compat_sys_sendfile+0x1e5/0x220
[   84.543426][ T6773]  ? ksys_write+0x1ac/0x250
[   84.543443][ T6773]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[   84.543467][ T6773]  ? rcu_is_watching+0x12/0xc0
[   84.543490][ T6773]  __do_fast_syscall_32+0x7c/0x3a0
[   84.543512][ T6773]  do_fast_syscall_32+0x32/0x80
[   84.543531][ T6773]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   84.543556][ T6773] RIP: 0023:0xf7f63579
[   84.543571][ T6773] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   84.543586][ T6773] RSP: 002b:00000000f504455c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[   84.543603][ T6773] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000000008
[   84.543615][ T6773] RDX: 0000000000000000 RSI: 0000000000200000 RDI: 0000000000000000
[   84.543626][ T6773] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   84.543637][ T6773] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   84.543648][ T6773] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   84.543672][ T6773]  </TASK>
[   84.632245][    C1] vkms_vblank_simulate: vblank timer overrun
[   84.887375][  T222] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   85.290256][ T6783] netlink: 'syz.2.218': attribute type 19 has an invalid length.
[   85.437198][ T6780] nbd0: detected capacity change from 0 to 1024
[   85.453122][ T6781] nbd3: detected capacity change from 0 to 1024
[   85.453660][ T6789] block nbd0: NBD_DISCONNECT
[   85.455289][ T6790] block nbd3: NBD_DISCONNECT
[   85.459433][ T6790] block nbd3: Send disconnect failed -89
[   85.463526][ T6789] block nbd0: Send disconnect failed -89
[   85.467490][ T6790] block nbd3: Send control failed (result -89)
[   85.470195][ T6790] block nbd3: Request send failed, requeueing
[   85.472807][ T6790] block nbd3: Disconnected due to user request.
[   85.490885][ T6281] blk_print_req_error: 27 callbacks suppressed
[   85.490902][ T6281] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.496684][ T6281] buffer_io_error: 27 callbacks suppressed
[   85.496692][ T6281] Buffer I/O error on dev nbd3, logical block 0, async page read
[   85.501979][ T6790] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.512940][ T6790] Buffer I/O error on dev nbd3, logical block 0, async page read
[   85.516565][ T6790] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.520843][ T5967] block nbd0: Send control failed (result -89)
[   85.521390][ T6790] Buffer I/O error on dev nbd3, logical block 0, async page read
[   85.524509][ T5967] block nbd0: Request send failed, requeueing
[   85.529951][ T5967] block nbd0: Disconnected due to user request.
[   85.530173][ T6790] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.537167][ T6790] Buffer I/O error on dev nbd3, logical block 0, async page read
[   85.540497][ T6790] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.545097][   T25] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.545501][   T25] Buffer I/O error on dev nbd0, logical block 0, async page read
[   85.545620][ T5967] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.545638][ T5967] Buffer I/O error on dev nbd0, logical block 0, async page read
[   85.545731][ T5967] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.545748][ T5967] Buffer I/O error on dev nbd0, logical block 0, async page read
[   85.545839][ T5967] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.549435][ T6790] Buffer I/O error on dev nbd3, logical block 0, async page read
[   85.552333][ T5967] Buffer I/O error on dev nbd0, logical block 0, async page read
[   85.552449][ T5967] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   85.552467][ T5967] Buffer I/O error on dev nbd0, logical block 0, async page read
[   85.552791][ T5967] ldm_validate_partition_table(): Disk read failed.
[   85.563480][ T5967] Dev nbd0: unable to read RDB block 0
[   85.579719][ T6790] ldm_validate_partition_table(): Disk read failed.
[   85.593782][ T6790] Dev nbd3: unable to read RDB block 0
[   85.596668][ T5967]  nbd0: unable to read partition table
[   85.599624][ T6790]  nbd3: unable to read partition table
[   85.605493][ T6794] ldm_validate_partition_table(): Disk read failed.
[   85.608397][ T6794] Dev nbd0: unable to read RDB block 0
[   85.614587][ T6176] ldm_validate_partition_table(): Disk read failed.
[   85.617514][ T6176] Dev nbd3: unable to read RDB block 0
[   85.620098][ T6176]  nbd3: unable to read partition table
[   85.630910][ T6794]  nbd0: unable to read partition table
[   85.635727][ T5967] ldm_validate_partition_table(): Disk read failed.
[   85.635770][ T6176] ldm_validate_partition_table(): Disk read failed.
[   85.639459][ T5967] Dev nbd0: unable to read RDB block 0
[   85.642222][ T6176] Dev nbd3: unable to read RDB block 0
[   85.642961][ T5967]  nbd0: unable to read partition table
[   85.651334][ T6176]  nbd3: unable to read partition table
[   86.153612][   T74] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   86.676220][ T6819] block device autoloading is deprecated and will be removed.
[   87.221686][ T6828] bond1: entered allmulticast mode
[   87.296702][ T6826] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   87.298538][ T6826] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[   87.351049][ T6826] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   87.353661][ T6826] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[   87.360574][ T6826] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   87.362990][ T6826] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[   88.005395][ T6848] vlan1: entered promiscuous mode
[   88.008244][ T6848] vlan1: entered allmulticast mode
[   88.010453][ T6848] veth0_vlan: entered allmulticast mode
[   88.702770][ T6848] syz.3.231 (6848) used greatest stack depth: 18984 bytes left
[   88.716112][ T6852] FAULT_INJECTION: forcing a failure.
[   88.716112][ T6852] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.720620][ T6852] CPU: 3 UID: 0 PID: 6852 Comm: syz.0.233 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   88.720634][ T6852] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.720641][ T6852] Call Trace:
[   88.720645][ T6852]  <TASK>
[   88.720650][ T6852]  dump_stack_lvl+0x16c/0x1f0
[   88.720665][ T6852]  should_fail_ex+0x512/0x640
[   88.720679][ T6852]  _copy_from_user+0x2e/0xd0
[   88.720692][ T6852]  get_compat_msghdr+0xa7/0x170
[   88.720704][ T6852]  ? __pfx_get_compat_msghdr+0x10/0x10
[   88.720720][ T6852]  ___sys_sendmsg+0x1ae/0x1d0
[   88.720733][ T6852]  ? __pfx____sys_sendmsg+0x10/0x10
[   88.720751][ T6852]  ? find_held_lock+0x2b/0x80
[   88.720771][ T6852]  __sys_sendmsg+0x16d/0x220
[   88.720782][ T6852]  ? __pfx___sys_sendmsg+0x10/0x10
[   88.720800][ T6852]  ? rcu_is_watching+0x12/0xc0
[   88.720813][ T6852]  __do_fast_syscall_32+0x7c/0x3a0
[   88.720826][ T6852]  do_fast_syscall_32+0x32/0x80
[   88.720838][ T6852]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   88.720851][ T6852] RIP: 0023:0xf70ce579
[   88.720878][ T6852] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   88.720888][ T6852] RSP: 002b:00000000f509d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   88.720898][ T6852] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000800000c0
[   88.720904][ T6852] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   88.720910][ T6852] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   88.720916][ T6852] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   88.720922][ T6852] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   88.720935][ T6852]  </TASK>
[   88.951525][ T6891] comedi comedi3: 8255: I/O port conflict (0x5,4)
[   88.954627][ T6891] comedi comedi3: 8255: I/O port conflict (0x2,4)
[   88.957514][ T6891] comedi comedi3: 8255: I/O port conflict (0x1,4)
[   88.960522][ T6891] comedi comedi3: 8255: I/O port conflict (0xfff,4)
[   88.963624][ T6891] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[   88.966788][ T6891] comedi comedi3: 8255: I/O port conflict (0x5,4)
[   88.969665][ T6891] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[   88.971921][ T6891] comedi comedi3: 8255: I/O port conflict (0x1,4)
[   88.974202][ T6891] comedi comedi3: 8255: I/O port conflict (0x1,4)
[   88.976480][ T6891] comedi comedi3: 8255: I/O port conflict (0x9,4)
[   88.978651][ T6891] comedi comedi3: 8255: I/O port conflict (0x6,4)
[   88.980795][ T6891] comedi comedi3: 8255: I/O port conflict (0x4,4)
[   88.983684][ T6891] comedi comedi3: 8255: I/O port conflict (0x3,4)
[   88.986897][ T6891] comedi comedi3: 8255: I/O port conflict (0xffffffff80000089,4)
[   88.990906][ T6891] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[   89.562046][ T6980] FAULT_INJECTION: forcing a failure.
[   89.562046][ T6980] name failslab, interval 1, probability 0, space 0, times 0
[   89.566509][ T6980] CPU: 1 UID: 0 PID: 6980 Comm: syz.2.239 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   89.566524][ T6980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.566531][ T6980] Call Trace:
[   89.566535][ T6980]  <TASK>
[   89.566539][ T6980]  dump_stack_lvl+0x16c/0x1f0
[   89.566555][ T6980]  should_fail_ex+0x512/0x640
[   89.566568][ T6980]  should_failslab+0xc2/0x120
[   89.566581][ T6980]  __kmalloc_cache_noprof+0x6a/0x3e0
[   89.566598][ T6980]  ? __sctp_v6_cmp_addr+0x206/0x530
[   89.566611][ T6980]  ? sctp_add_bind_addr+0xae/0x3f0
[   89.566623][ T6980]  sctp_add_bind_addr+0xae/0x3f0
[   89.566635][ T6980]  sctp_copy_local_addr_list+0x39d/0x5a0
[   89.566650][ T6980]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[   89.566665][ T6980]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[   89.566681][ T6980]  ? sctp_bind_addr_copy+0xe0/0x530
[   89.566691][ T6980]  sctp_bind_addr_copy+0xe0/0x530
[   89.566704][ T6980]  sctp_connect_new_asoc+0x1d7/0x790
[   89.566721][ T6980]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[   89.566736][ T6980]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[   89.566752][ T6980]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[   89.566768][ T6980]  sctp_sendmsg+0x15f9/0x1ee0
[   89.566787][ T6980]  ? __pfx_sctp_sendmsg+0x10/0x10
[   89.566803][ T6980]  ? __pfx___might_resched+0x10/0x10
[   89.566819][ T6980]  ? __might_fault+0xe3/0x190
[   89.566831][ T6980]  ? __pfx_aa_sk_perm+0x10/0x10
[   89.566848][ T6980]  ? __pfx_sctp_sendmsg+0x10/0x10
[   89.566864][ T6980]  inet_sendmsg+0x11c/0x140
[   89.566881][ T6980]  __sys_sendto+0x43c/0x520
[   89.566892][ T6980]  ? __pfx___sys_sendto+0x10/0x10
[   89.566914][ T6980]  ? ksys_write+0x1ac/0x250
[   89.566924][ T6980]  ? __pfx_ksys_write+0x10/0x10
[   89.566936][ T6980]  __ia32_sys_sendto+0xdd/0x1b0
[   89.566945][ T6980]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.566955][ T6980]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   89.566967][ T6980]  __do_fast_syscall_32+0x7c/0x3a0
[   89.566979][ T6980]  do_fast_syscall_32+0x32/0x80
[   89.566991][ T6980]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.567004][ T6980] RIP: 0023:0xf7f15579
[   89.567012][ T6980] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.567023][ T6980] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[   89.567033][ T6980] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080847fff
[   89.567039][ T6980] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000008005ffe4
[   89.567045][ T6980] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[   89.567051][ T6980] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.567057][ T6980] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.567069][ T6980]  </TASK>
[   90.637292][ T1139] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   90.784149][ T7000] hub 2-0:1.0: USB hub found
[   90.786943][ T7000] hub 2-0:1.0: 2 ports detected
[   90.843301][ T6999] nbd2: detected capacity change from 0 to 1024
[   90.847486][ T5967] block nbd2: Send control failed (result -89)
[   90.849577][ T5967] block nbd2: Request send failed, requeueing
[   90.850418][ T7003] block nbd2: NBD_DISCONNECT
[   90.852152][ T5971] block nbd2: Receive control failed (result -32)
[   90.855877][ T5967] block nbd2: Disconnected due to user request.
[   90.858014][   T25] blk_print_req_error: 96 callbacks suppressed
[   90.858022][   T25] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.858040][ T7003] block nbd2: Send disconnect failed -89
[   90.860052][   T25] buffer_io_error: 96 callbacks suppressed
[   90.860060][   T25] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.869750][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.872662][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.876714][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.879540][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.884099][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.886942][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.889455][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.892250][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.896179][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.898924][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.901384][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.904466][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.907795][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.910672][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.918381][ T5967] ldm_validate_partition_table(): Disk read failed.
[   90.920507][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.923707][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.927580][ T5967] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   90.930384][ T5967] Buffer I/O error on dev nbd2, logical block 0, async page read
[   90.939170][ T5967] Dev nbd2: unable to read RDB block 0
[   90.941308][ T5967]  nbd2: unable to read partition table
[   90.954917][ T7003] ldm_validate_partition_table(): Disk read failed.
[   90.961393][ T7003] Dev nbd2: unable to read RDB block 0
[   90.977384][ T7003]  nbd2: unable to read partition table
[   90.984483][ T5967] ldm_validate_partition_table(): Disk read failed.
[   90.993799][ T5967] Dev nbd2: unable to read RDB block 0
[   90.995794][ T5967]  nbd2: unable to read partition table
[   90.997949][ T7009] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   91.007615][ T7009] netlink: 'syz.3.247': attribute type 10 has an invalid length.
[   91.497826][ T7013] FAULT_INJECTION: forcing a failure.
[   91.497826][ T7013] name failslab, interval 1, probability 0, space 0, times 0
[   91.503250][ T7013] CPU: 2 UID: 0 PID: 7013 Comm: syz.1.248 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   91.503266][ T7013] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.503273][ T7013] Call Trace:
[   91.503277][ T7013]  <TASK>
[   91.503281][ T7013]  dump_stack_lvl+0x16c/0x1f0
[   91.503311][ T7013]  should_fail_ex+0x512/0x640
[   91.503325][ T7013]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   91.503339][ T7013]  should_failslab+0xc2/0x120
[   91.503352][ T7013]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   91.503363][ T7013]  ? __alloc_skb+0x2b2/0x380
[   91.503376][ T7013]  __alloc_skb+0x2b2/0x380
[   91.503386][ T7013]  ? __pfx___alloc_skb+0x10/0x10
[   91.503397][ T7013]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   91.503414][ T7013]  netlink_alloc_large_skb+0x69/0x130
[   91.503428][ T7013]  netlink_sendmsg+0x6a1/0xdd0
[   91.503444][ T7013]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.503458][ T7013]  ? __import_iovec+0x1dd/0x650
[   91.503474][ T7013]  ____sys_sendmsg+0xa95/0xc70
[   91.503487][ T7013]  ? __bpf_trace_gfs2_promote+0x20/0xd0
[   91.503502][ T7013]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.503516][ T7013]  ? get_compat_msghdr+0x11a/0x170
[   91.503534][ T7013]  ___sys_sendmsg+0x134/0x1d0
[   91.503546][ T7013]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.503563][ T7013]  ? find_held_lock+0x2b/0x80
[   91.503584][ T7013]  __sys_sendmsg+0x16d/0x220
[   91.503595][ T7013]  ? __pfx___sys_sendmsg+0x10/0x10
[   91.503612][ T7013]  ? rcu_is_watching+0x12/0xc0
[   91.503626][ T7013]  __do_fast_syscall_32+0x7c/0x3a0
[   91.503639][ T7013]  do_fast_syscall_32+0x32/0x80
[   91.503650][ T7013]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   91.503663][ T7013] RIP: 0023:0xf709e579
[   91.503672][ T7013] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   91.503682][ T7013] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   91.503693][ T7013] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[   91.503700][ T7013] RDX: 0000000004000000 RSI: 0000000000000000 RDI: 0000000000000000
[   91.503706][ T7013] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   91.503712][ T7013] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   91.503718][ T7013] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   91.503730][ T7013]  </TASK>
[   91.733276][ T7020] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   91.742437][ T7020] netlink: 'syz.2.251': attribute type 10 has an invalid length.
[   91.925222][ T1139] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   91.956743][ T7026] netlink: 'syz.3.250': attribute type 11 has an invalid length.
[   91.959122][ T7026] netlink: 224 bytes leftover after parsing attributes in process `syz.3.250'.
[   92.288125][ T7030] can0: slcan on ttyprintk.
[   93.050130][ T7055] netlink: 'syz.0.256': attribute type 4 has an invalid length.
[   93.058506][ T7055] netlink: 'syz.0.256': attribute type 4 has an invalid length.
[   93.106244][ T7028] can0 (unregistered): slcan off ttyprintk.
[   93.251332][ T7068] netlink: 80 bytes leftover after parsing attributes in process `syz.2.257'.
[   93.289444][ T7068] mkiss: ax0: crc mode is auto.
[   93.301230][ T7068] FAULT_INJECTION: forcing a failure.
[   93.301230][ T7068] name failslab, interval 1, probability 0, space 0, times 0
[   93.306350][ T7068] CPU: 1 UID: 0 PID: 7068 Comm: syz.2.257 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   93.306385][ T7068] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.306405][ T7068] Call Trace:
[   93.306411][ T7068]  <TASK>
[   93.306417][ T7068]  dump_stack_lvl+0x16c/0x1f0
[   93.306438][ T7068]  should_fail_ex+0x512/0x640
[   93.306457][ T7068]  ? fs_reclaim_acquire+0xae/0x150
[   93.306480][ T7068]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   93.306493][ T7068]  should_failslab+0xc2/0x120
[   93.306506][ T7068]  __kmalloc_noprof+0xd2/0x510
[   93.306520][ T7068]  tomoyo_realpath_from_path+0xc2/0x6e0
[   93.306532][ T7068]  ? tomoyo_profile+0x47/0x60
[   93.306545][ T7068]  tomoyo_path_number_perm+0x245/0x580
[   93.306560][ T7068]  ? tomoyo_path_number_perm+0x237/0x580
[   93.306576][ T7068]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   93.306592][ T7068]  ? finish_task_switch.isra.0+0x221/0xc10
[   93.306618][ T7068]  ? find_held_lock+0x2b/0x80
[   93.306629][ T7068]  ? hook_file_ioctl_common+0x145/0x410
[   93.306646][ T7068]  ? __fget_files+0x20e/0x3c0
[   93.306663][ T7068]  ? __fput_deferred+0x480/0x480
[   93.306678][ T7068]  security_file_ioctl_compat+0x9b/0x240
[   93.306695][ T7068]  __ia32_compat_sys_ioctl+0xc3/0x370
[   93.306712][ T7068]  __do_fast_syscall_32+0x7c/0x3a0
[   93.306726][ T7068]  do_fast_syscall_32+0x32/0x80
[   93.306737][ T7068]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   93.306752][ T7068] RIP: 0023:0xf7f15579
[   93.306760][ T7068] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   93.306771][ T7068] RSP: 002b:00000000f501555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   93.306781][ T7068] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000000005437
[   93.306788][ T7068] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   93.306794][ T7068] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   93.306800][ T7068] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   93.306806][ T7068] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   93.306820][ T7068]  </TASK>
[   93.306864][ T7068] ERROR: Out of memory at tomoyo_realpath_from_path.
[   93.574263][ T7077] netlink: 80 bytes leftover after parsing attributes in process `syz.1.259'.
[   93.628537][ T7077] mkiss: ax0: crc mode is auto.
[   93.710247][   T40] kauditd_printk_skb: 1096 callbacks suppressed
[   93.710258][   T40] audit: type=1326 audit(1753523243.575:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.3.262" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x0
[   94.009217][ T7087] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[   94.011355][ T7087] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   94.019275][ T7087] vhci_hcd vhci_hcd.0: Device attached
[   94.029292][ T7087] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(12)
[   94.031392][ T7087] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   94.034550][ T7087] vhci_hcd vhci_hcd.0: Device attached
[   94.043197][ T7087] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   94.049034][ T7087] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(17)
[   94.051833][ T7087] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   94.055395][ T7087] vhci_hcd vhci_hcd.0: Device attached
[   94.118251][ T7094] vhci_hcd vhci_hcd.0: pdev(2) rhport(4) sockfd(20)
[   94.121315][ T7094] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   94.125452][ T7094] vhci_hcd vhci_hcd.0: Device attached
[   94.135225][ T7094] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(22)
[   94.138499][ T7094] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   94.159164][ T7094] vhci_hcd vhci_hcd.0: Device attached
[   94.179828][ T7094] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   94.186016][ T7094] vhci_hcd vhci_hcd.0: pdev(2) rhport(6) sockfd(28)
[   94.188835][ T7094] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   94.195246][ T7094] vhci_hcd vhci_hcd.0: Device attached
[   94.205701][ T7094] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   94.216151][ T7094] vhci_hcd vhci_hcd.0: port 0 already used
[   94.243201][  T840] vhci_hcd: vhci_device speed not set
[   94.313296][  T840] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[   94.528090][   T40] audit: type=1326 audit(1753523244.395:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   94.536213][   T40] audit: type=1326 audit(1753523244.395:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf709e579 code=0x7ffc0000
[   94.545408][   T40] audit: type=1326 audit(1753523244.395:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[   94.554216][   T40] audit: type=1326 audit(1753523244.395:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf709e579 code=0x7ffc0000
[   94.563038][   T40] audit: type=1326 audit(1753523244.405:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf709e598 code=0x7ffc0000
[   94.572986][   T40] audit: type=1326 audit(1753523244.405:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf709e598 code=0x7ffc0000
[   94.582159][   T40] audit: type=1326 audit(1753523244.405:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf709e598 code=0x7ffc0000
[   94.591231][   T40] audit: type=1326 audit(1753523244.405:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf709e598 code=0x7ffc0000
[   94.599798][   T40] audit: type=1326 audit(1753523244.405:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7120 comm="syz.1.268" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf709e598 code=0x7ffc0000
[   94.878777][ T7102] vhci_hcd: connection closed
[   94.880403][ T7099] vhci_hcd: connection closed
[   94.880518][ T7095] vhci_hcd: connection closed
[   94.881041][ T7090] vhci_hcd: connection closed
[   94.882020][ T7092] vhci_hcd: connection closed
[   94.883582][ T7088] vhci_hcd: connection reset by peer
[   94.896411][   T46] vhci_hcd: stop threads
[   94.898932][   T46] vhci_hcd: release socket
[   94.900612][   T46] vhci_hcd: disconnect device
[   94.902643][   T46] vhci_hcd: stop threads
[   94.904493][   T46] vhci_hcd: release socket
[   94.906200][   T46] vhci_hcd: disconnect device
[   94.908060][   T46] vhci_hcd: stop threads
[   94.909539][   T46] vhci_hcd: release socket
[   94.911124][   T46] vhci_hcd: disconnect device
[   94.912845][   T46] vhci_hcd: stop threads
[   94.915037][   T46] vhci_hcd: release socket
[   94.917563][   T46] vhci_hcd: disconnect device
[   94.919889][   T46] vhci_hcd: stop threads
[   94.921489][   T46] vhci_hcd: release socket
[   94.923912][   T46] vhci_hcd: disconnect device
[   94.925696][   T46] vhci_hcd: stop threads
[   94.927085][   T46] vhci_hcd: release socket
[   94.928856][   T46] vhci_hcd: disconnect device
[   94.990408][ T7136] netlink: 4 bytes leftover after parsing attributes in process `syz.3.269'.
[   95.054540][ T7137] netlink: 24 bytes leftover after parsing attributes in process `syz.0.267'.
[   95.058167][ T7137] openvswitch: netlink: Flow key attr not present in new flow.
[   95.063759][ T7137] netlink: 'syz.0.267': attribute type 10 has an invalid length.
[   95.070125][ T7138] netlink: 'syz.3.269': attribute type 11 has an invalid length.
[   95.073763][ T7138] netlink: 224 bytes leftover after parsing attributes in process `syz.3.269'.
[   95.673741][   T74] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   95.851056][ T7168] netlink: 8 bytes leftover after parsing attributes in process `syz.3.276'.
[   96.529364][ T7184] netlink: 4 bytes leftover after parsing attributes in process `syz.1.278'.
[   96.545796][ T7184] netlink: 240 bytes leftover after parsing attributes in process `syz.1.278'.
[   96.953233][    C1] syz_tun: tun_net_xmit 42
[   97.680696][   T74] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   97.717966][ T7238] netlink: 4 bytes leftover after parsing attributes in process `syz.0.285'.
[   97.721407][ T7238] netlink: 'syz.0.285': attribute type 11 has an invalid length.
[   97.724108][ T7238] netlink: 224 bytes leftover after parsing attributes in process `syz.0.285'.
[   97.744367][ T7240] netlink: 4 bytes leftover after parsing attributes in process `syz.3.287'.
[   97.916815][ T7246] random: crng reseeded on system resumption
[   97.930324][ T7246] FAULT_INJECTION: forcing a failure.
[   97.930324][ T7246] name failslab, interval 1, probability 0, space 0, times 0
[   97.935386][ T7246] CPU: 3 UID: 0 PID: 7246 Comm: syz.2.288 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   97.935402][ T7246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.935410][ T7246] Call Trace:
[   97.935414][ T7246]  <TASK>
[   97.935418][ T7246]  dump_stack_lvl+0x16c/0x1f0
[   97.935434][ T7246]  should_fail_ex+0x512/0x640
[   97.935448][ T7246]  should_failslab+0xc2/0x120
[   97.935461][ T7246]  __kmalloc_cache_noprof+0x6a/0x3e0
[   97.935478][ T7246]  ? do_raw_spin_lock+0x12c/0x2b0
[   97.935494][ T7246]  ? find_held_lock+0x2b/0x80
[   97.935504][ T7246]  ? async_schedule_node_domain+0x54/0x120
[   97.935519][ T7246]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[   97.935530][ T7246]  async_schedule_node_domain+0x54/0x120
[   97.935544][ T7246]  dev_cache_fw_image+0x38e/0x490
[   97.935562][ T7246]  ? __pfx_dev_cache_fw_image+0x10/0x10
[   97.935581][ T7246]  ? __pfx_dev_cache_fw_image+0x10/0x10
[   97.935599][ T7246]  dpm_for_each_dev+0x5d/0xb0
[   97.935614][ T7246]  fw_pm_notify+0x81/0x150
[   97.935629][ T7246]  notifier_call_chain+0xb9/0x410
[   97.935642][ T7246]  ? __pfx_fw_pm_notify+0x10/0x10
[   97.935660][ T7246]  blocking_notifier_call_chain_robust+0xc8/0x160
[   97.935675][ T7246]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[   97.935692][ T7246]  ? kasan_check_range+0x15c/0x1b0
[   97.935708][ T7246]  pm_notifier_call_chain_robust+0x27/0x60
[   97.935724][ T7246]  snapshot_open+0x218/0x2b0
[   97.935737][ T7246]  ? __pfx_snapshot_open+0x10/0x10
[   97.935750][ T7246]  misc_open+0x35d/0x420
[   97.935767][ T7246]  ? __pfx_misc_open+0x10/0x10
[   97.935782][ T7246]  chrdev_open+0x231/0x6a0
[   97.935794][ T7246]  ? __pfx_apparmor_file_open+0x10/0x10
[   97.935811][ T7246]  ? __pfx_chrdev_open+0x10/0x10
[   97.935823][ T7246]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[   97.935843][ T7246]  do_dentry_open+0x744/0x1c10
[   97.935855][ T7246]  ? __pfx_chrdev_open+0x10/0x10
[   97.935869][ T7246]  vfs_open+0x82/0x3f0
[   97.935885][ T7246]  path_openat+0x1de4/0x2cb0
[   97.935900][ T7246]  ? __pfx_path_openat+0x10/0x10
[   97.935915][ T7246]  do_filp_open+0x20b/0x470
[   97.935925][ T7246]  ? __pfx_do_filp_open+0x10/0x10
[   97.935946][ T7246]  ? _raw_spin_unlock+0x28/0x50
[   97.935962][ T7246]  ? alloc_fd+0x471/0x7d0
[   97.935983][ T7246]  do_sys_openat2+0x11b/0x1d0
[   97.935997][ T7246]  ? __pfx_do_sys_openat2+0x10/0x10
[   97.936013][ T7246]  ? __fget_files+0x20e/0x3c0
[   97.936028][ T7246]  ? handle_mm_fault+0x230/0xd10
[   97.936048][ T7246]  __ia32_compat_sys_openat+0x16d/0x210
[   97.936063][ T7246]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[   97.936078][ T7246]  ? ksys_write+0x1ac/0x250
[   97.936090][ T7246]  ? rcu_is_watching+0x12/0xc0
[   97.936104][ T7246]  __do_fast_syscall_32+0x7c/0x3a0
[   97.936130][ T7246]  do_fast_syscall_32+0x32/0x80
[   97.936142][ T7246]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.936155][ T7246] RIP: 0023:0xf7f15579
[   97.936164][ T7246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   97.936175][ T7246] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[   97.936186][ T7246] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800000c0
[   97.936192][ T7246] RDX: 00000000000c2d41 RSI: 0000000000000000 RDI: 0000000000000000
[   97.936199][ T7246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   97.936204][ T7246] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   97.936210][ T7246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.936224][ T7246]  </TASK>
[   98.003166][    C1] syz_tun: tun_net_xmit 42
[   98.006326][ T7246] (NULL device *): loading /lib/firmware/regulatory.db failed with error -12
[   98.089724][ T7246] (NULL device *): Direct firmware load for regulatory.db failed with error -12
[   98.099774][ T7246] (NULL device *): Falling back to sysfs fallback for: regulatory.db
[   98.106521][ T7246] 
[   98.107320][ T7246] ======================================================
[   98.109542][ T7246] WARNING: possible circular locking dependency detected
[   98.111769][ T7246] 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 Not tainted
[   98.116648][ T7246] ------------------------------------------------------
[   98.119476][ T7246] syz.2.288/7246 is trying to acquire lock:
[   98.121968][ T7246] ffffffff8e478a30 (umhelper_sem){++++}-{4:4}, at: usermodehelper_read_trylock+0xa9/0x250
[   98.125907][ T7246] 
[   98.125907][ T7246] but task is already holding lock:
[   98.128966][ T7246] ffffffff8f50d568 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0
[   98.132632][ T7246] 
[   98.132632][ T7246] which lock already depends on the new lock.
[   98.132632][ T7246] 
[   98.136794][ T7246] 
[   98.136794][ T7246] the existing dependency chain (in reverse order) is:
[   98.140431][ T7246] 
[   98.140431][ T7246] -> #1 (dpm_list_mtx){+.+.}-{4:4}:
[   98.143477][ T7246]        __mutex_lock+0x199/0xb90
[   98.145607][ T7246]        device_pm_add+0x87/0x3e0
[   98.147685][ T7246]        device_add+0x9cd/0x1a70
[   98.149810][ T7246]        firmware_fallback_sysfs+0x2ec/0xbe0
[   98.152314][ T7246]        _request_firmware+0xfe9/0x1470
[   98.154577][ T7246]        request_firmware_work_func+0xea/0x250
[   98.157198][ T7246]        process_one_work+0x9cc/0x1b70
[   98.159464][ T7246]        worker_thread+0x6c8/0xf10
[   98.161620][ T7246]        kthread+0x3c5/0x780
[   98.163492][ T7246]        ret_from_fork+0x5d4/0x6f0
[   98.165589][ T7246]        ret_from_fork_asm+0x1a/0x30
[   98.167820][ T7246] 
[   98.167820][ T7246] -> #0 (umhelper_sem){++++}-{4:4}:
[   98.170774][ T7246]        __lock_acquire+0x126f/0x1c90
[   98.173101][ T7246]        lock_acquire+0x179/0x350
[   98.175236][ T7246]        down_read+0x9b/0x480
[   98.177249][ T7246]        usermodehelper_read_trylock+0xa9/0x250
[   98.179833][ T7246]        firmware_fallback_sysfs+0x6ba/0xbe0
[   98.182368][ T7246]        _request_firmware+0xfe9/0x1470
[   98.184708][ T7246]        __async_dev_cache_fw_image+0xb1/0x340
[   98.187300][ T7246]        async_schedule_node_domain+0xd1/0x120
[   98.189894][ T7246]        dev_cache_fw_image+0x38e/0x490
[   98.192218][ T7246]        dpm_for_each_dev+0x5d/0xb0
[   98.194421][ T7246]        fw_pm_notify+0x81/0x150
[   98.196249][ T7246]        notifier_call_chain+0xb9/0x410
[   98.198600][ T7246]        blocking_notifier_call_chain_robust+0xc8/0x160
[   98.201400][ T7246]        pm_notifier_call_chain_robust+0x27/0x60
[   98.204054][ T7246]        snapshot_open+0x218/0x2b0
[   98.206180][ T7246]        misc_open+0x35d/0x420
[   98.208144][ T7246]        chrdev_open+0x231/0x6a0
[   98.210153][ T7246]        do_dentry_open+0x744/0x1c10
[   98.212120][ T7246]        vfs_open+0x82/0x3f0
[   98.213747][ T7246]        path_openat+0x1de4/0x2cb0
[   98.215789][ T7246]        do_filp_open+0x20b/0x470
[   98.217858][ T7246]        do_sys_openat2+0x11b/0x1d0
[   98.219954][ T7246]        __ia32_compat_sys_openat+0x16d/0x210
[   98.222243][ T7246]        __do_fast_syscall_32+0x7c/0x3a0
[   98.224443][ T7246]        do_fast_syscall_32+0x32/0x80
[   98.226603][ T7246]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.229299][ T7246] 
[   98.229299][ T7246] other info that might help us debug this:
[   98.229299][ T7246] 
[   98.233454][ T7246]  Possible unsafe locking scenario:
[   98.233454][ T7246] 
[   98.236449][ T7246]        CPU0                    CPU1
[   98.238685][ T7246]        ----                    ----
[   98.240948][ T7246]   lock(dpm_list_mtx);
[   98.242555][ T7246]                                lock(umhelper_sem);
[   98.245208][ T7246]                                lock(dpm_list_mtx);
[   98.247911][ T7246]   rlock(umhelper_sem);
[   98.249383][ T7246] 
[   98.249383][ T7246]  *** DEADLOCK ***
[   98.249383][ T7246] 
[   98.251845][ T7246] 5 locks held by syz.2.288/7246:
[   98.253447][ T7246]  #0: ffffffff8f3002a8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[   98.256116][ T7246]  #1: ffffffff8e488228 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0
[   98.259652][ T7246]  #2: ffffffff8e4c8910 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160
[   98.263992][ T7246]  #3: ffffffff8f512b68 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150
[   98.267026][ T7246]  #4: ffffffff8f50d568 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0
[   98.270452][ T7246] 
[   98.270452][ T7246] stack backtrace:
[   98.272314][ T7246] CPU: 2 UID: 0 PID: 7246 Comm: syz.2.288 Not tainted 6.16.0-rc7-syzkaller-00120-g5f33ebd2018c #0 PREEMPT(full) 
[   98.272329][ T7246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   98.272336][ T7246] Call Trace:
[   98.272341][ T7246]  <TASK>
[   98.272345][ T7246]  dump_stack_lvl+0x116/0x1f0
[   98.272358][ T7246]  print_circular_bug+0x275/0x350
[   98.272373][ T7246]  check_noncircular+0x14c/0x170
[   98.272389][ T7246]  __lock_acquire+0x126f/0x1c90
[   98.272405][ T7246]  lock_acquire+0x179/0x350
[   98.272418][ T7246]  ? usermodehelper_read_trylock+0xa9/0x250
[   98.272431][ T7246]  ? __pfx___might_resched+0x10/0x10
[   98.272444][ T7246]  down_read+0x9b/0x480
[   98.272455][ T7246]  ? usermodehelper_read_trylock+0xa9/0x250
[   98.272466][ T7246]  ? __pfx_down_read+0x10/0x10
[   98.272477][ T7246]  ? __dev_printk+0x1ff/0x270
[   98.272488][ T7246]  usermodehelper_read_trylock+0xa9/0x250
[   98.272499][ T7246]  ? __pfx_usermodehelper_read_trylock+0x10/0x10
[   98.272510][ T7246]  ? __pfx_autoremove_wake_function+0x10/0x10
[   98.272523][ T7246]  ? ima_load_data+0x42/0x140
[   98.272534][ T7246]  ? firmware_fallback_sysfs+0x139/0xbe0
[   98.272545][ T7246]  firmware_fallback_sysfs+0x6ba/0xbe0
[   98.272556][ T7246]  _request_firmware+0xfe9/0x1470
[   98.272575][ T7246]  ? __pfx__request_firmware+0x10/0x10
[   98.272593][ T7246]  __async_dev_cache_fw_image+0xb1/0x340
[   98.272603][ T7246]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[   98.272614][ T7246]  ? mark_held_locks+0x49/0x80
[   98.272627][ T7246]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   98.272643][ T7246]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[   98.272654][ T7246]  async_schedule_node_domain+0xd1/0x120
[   98.272667][ T7246]  dev_cache_fw_image+0x38e/0x490
[   98.272683][ T7246]  ? __pfx_dev_cache_fw_image+0x10/0x10
[   98.272700][ T7246]  ? __pfx_dev_cache_fw_image+0x10/0x10
[   98.272716][ T7246]  dpm_for_each_dev+0x5d/0xb0
[   98.272730][ T7246]  fw_pm_notify+0x81/0x150
[   98.272745][ T7246]  notifier_call_chain+0xb9/0x410
[   98.272757][ T7246]  ? __pfx_fw_pm_notify+0x10/0x10
[   98.272797][ T7246]  blocking_notifier_call_chain_robust+0xc8/0x160
[   98.272813][ T7246]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[   98.272828][ T7246]  ? kasan_check_range+0x15c/0x1b0
[   98.272843][ T7246]  pm_notifier_call_chain_robust+0x27/0x60
[   98.272859][ T7246]  snapshot_open+0x218/0x2b0
[   98.272871][ T7246]  ? __pfx_snapshot_open+0x10/0x10
[   98.272884][ T7246]  misc_open+0x35d/0x420
[   98.272901][ T7246]  ? __pfx_misc_open+0x10/0x10
[   98.272915][ T7246]  chrdev_open+0x231/0x6a0
[   98.272927][ T7246]  ? __pfx_apparmor_file_open+0x10/0x10
[   98.272943][ T7246]  ? __pfx_chrdev_open+0x10/0x10
[   98.272955][ T7246]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[   98.272973][ T7246]  do_dentry_open+0x744/0x1c10
[   98.272984][ T7246]  ? __pfx_chrdev_open+0x10/0x10
[   98.272995][ T7246]  vfs_open+0x82/0x3f0
[   98.273009][ T7246]  path_openat+0x1de4/0x2cb0
[   98.273020][ T7246]  ? __pfx_path_openat+0x10/0x10
[   98.273031][ T7246]  do_filp_open+0x20b/0x470
[   98.273041][ T7246]  ? __pfx_do_filp_open+0x10/0x10
[   98.273054][ T7246]  ? _raw_spin_unlock+0x28/0x50
[   98.273069][ T7246]  ? alloc_fd+0x471/0x7d0
[   98.273086][ T7246]  do_sys_openat2+0x11b/0x1d0
[   98.273100][ T7246]  ? __pfx_do_sys_openat2+0x10/0x10
[   98.273114][ T7246]  ? __fget_files+0x20e/0x3c0
[   98.273129][ T7246]  ? handle_mm_fault+0x230/0xd10
[   98.273146][ T7246]  __ia32_compat_sys_openat+0x16d/0x210
[   98.273161][ T7246]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[   98.273176][ T7246]  ? ksys_write+0x1ac/0x250
[   98.273186][ T7246]  ? rcu_is_watching+0x12/0xc0
[   98.273198][ T7246]  __do_fast_syscall_32+0x7c/0x3a0
[   98.273209][ T7246]  do_fast_syscall_32+0x32/0x80
[   98.273220][ T7246]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.273234][ T7246] RIP: 0023:0xf7f15579
[   98.273242][ T7246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   98.273253][ T7246] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[   98.273263][ T7246] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800000c0
[   98.273269][ T7246] RDX: 00000000000c2d41 RSI: 0000000000000000 RDI: 0000000000000000
[   98.273275][ T7246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   98.273281][ T7246] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   98.273287][ T7246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.273300][ T7246]  </TASK>
[   98.273372][    C2] vkms_vblank_simulate: vblank timer overrun
[   98.448001][    C2] vkms_vblank_simulate: vblank timer overrun
[   98.659034][ T7252] xt_CT: You must specify a L4 protocol and not use inversions on it
[   99.433582][  T840] vhci_hcd: vhci_device speed not set
[  100.723746][ T6337] usb usb42-port1: attempt power cycle
[  100.873476][   T74] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  101.304321][ T6337] usb usb42-port1: unable to enumerate USB device
[  102.713465][  T222] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  106.633769][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  107.913459][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration

VM DIAGNOSIS:
09:47:28  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88806c9b9888 RCX=0000000000000002 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8df35da0 RBP=0000000000000311 RSP=ffffc90000bdfb10
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000400 R11=ffffffff9af6dcd8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff819813b1 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809752d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000030715ffc CR3=000000006886c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000203fd4 RBX=0000000000000001 RCX=ffffffff8b82bc69 RDX=ffffed1005666646
RSI=ffffffff8c155e60 RDI=ffffffff819197c1 RBP=ffffed1003bda488 RSP=ffffc9000046fdf8
R8 =0000000000000000 R9 =ffffed1005666645 R10=ffff88802b33322b R11=0000000000000001
R12=0000000000000001 R13=ffff88801ded2440 R14=ffffffff90a95d50 R15=0000000000000000
RIP=ffffffff8b82a7cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809762d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080000000 CR3=000000007051e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8556d185 RDI=ffffffff9b09f540 RBP=ffffffff9b09f500 RSP=ffffc9000e33ec18
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e36312e36
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b09f500 R15=ffffffff8556d120
RIP=ffffffff8556d1af RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809772d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000056efe450 CR3=00000000283dd000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 800302a808002180 020a080006010290 00080023a0036e08 0023980320080023
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 80030fffffffff02 0580021c08000008 0008014edc029608 0005880310080005
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00060157ee041000 0b8003000408c402 8002000800000800 060157fa0e080002
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8003088002040800 0000000408060601 57fa0c0800088003 0b80021008000008
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000103909e0800 0100000608060401 12cc000400018008 001d80021ffffffe
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 b808000806498400 336964656d6f632f 7665642f01ffffff ffffffffffe5081d
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8003088002040800 0000000408060601 57fa0c0800088003 0b80021008000008
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00060157ee041000 0b8003000408c402 8002000800000800 060157fa0e080002
ZMM25=9c353ca29c353ca2 9c353ca29c353ca2 9c353ca29c353ca2 9c353ca29c353ca2 9c353ca29c353ca2 9c353ca29c353ca2 9c353ca29c353ca2 9c353ca29c353ca2
ZMM26=71c2ee1571c2ee15 71c2ee1571c2ee15 71c2ee1571c2ee15 71c2ee1571c2ee15 71c2ee1571c2ee15 71c2ee1571c2ee15 71c2ee1571c2ee15 71c2ee1571c2ee15
ZMM27=c263b045c263b045 c263b045c263b045 c263b045c263b045 c263b045c263b045 c263b045c263b045 c263b045c263b045 c263b045c263b045 c263b045c263b045
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=de030000de030000 de030000de030000 de030000de030000 de030000de030000 de030000de030000 de030000de030000 de030000de030000 de030000de030000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88802b441f60 RCX=ffffffff81af491d RDX=ffff8880216ec880
RSI=ffffffff81af48f9 RDI=0000000000000005 RBP=0000000000000001 RSP=ffffc90002186f40
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=dffffc0000000000 R13=0000000000000003 R14=ffffed10056883ed R15=ffff88802b53b6c0
RIP=ffffffff81af48fb RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809782d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000069464000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000