last executing test programs:

35.33115105s ago: executing program 3 (id=540):
openat$vhost_vsock(0xffffff9c, 0x0, 0x2, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
getsockopt$nfc_llcp(r0, 0x3a, 0x1, 0x0, 0x20000000)

35.218555334s ago: executing program 3 (id=541):
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x40000000015, 0x5, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
openat$rtc(0xffffff9c, &(0x7f0000000000), 0x400, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f0000000080)=ANY=[@ANYRES16=r1])

34.783281535s ago: executing program 3 (id=542):
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000001c0)='memory.pressure\x00', 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000000000000000000114000400ff0100000000000000000000000000010c000280050001000000000047000280050001"], 0xe4}}, 0x0)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0x8000, 0xc5f7, @value})
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={0x0, r1}, &(0x7f00000000c0)=""/80, 0x50, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000000)=0x8000)
r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ppoll(&(0x7f0000000040)=[{r4, 0x708}], 0x1, 0x0, 0x0, 0x0)
read$dsp(r4, &(0x7f0000001200)=""/4096, 0x1000)
write$dsp(r3, &(0x7f0000002200)="44e211a385424bf02640ba0d3a219de1033222bea86d14dc6bc540f652f0873cec4d2b540364b6e4ff506bf40b976a8485725d9cfab14bb4c91a5fd888b8b983ef960999942529696b90b853c1f1a3b01af9b0cdc6a605c13de44b58eaf66b597768a5a9bccdb34c1aa1c48b2484cf0f1d68f8b5c1d9f6179459a466a2e865c2a66274717ef95f59fcf4d5b05c4540a35bb64a8fab9af3ad51f3c648121e933ea77809f3901ca59ed3e990ff80d87a814eb6fb68e3305fd9420d4a163ad5654ce60386346b6d1154ecef0f4a782c4459c0a8ca7278655e6f806c4bc2e870000bfcb1346232b0ccce39ee18152165cf3f85e87ae23c4113586cf300b39d7589b28372e554f7d748b618bca2a4298d82864e0d8212f4fbd80fd854691ccac21279bb85aacac8a3301ad2ece3d6061dbcc63e4af0fefc68fab6e5319f6d9e6a2708e41e60b2673d62ec952bae35b854fe7e87bc78e2d1a56cc383e5a1783ce35eaa20868d97eb1198ecae2d6375d7cd6992883aa3bbbdcb93b92b6eca3d6cde5baa92a6adda4540d5fce6d4772e5711b3744210587c05833966b300da0a378787ad06e9d5cba6e569b14c013b8428dad38eb6d2bc547615dac42aca90ac891e6db4d1dd029fe628170433f9229a286a814d39afd5a019db11c185b72c34e01ea5e82a5008a059e6791c9b807c4aab4e9807a5a7896a4c5bfa42f15284c1481618461ce3501cf24a722e74923d01bd7d586eec5d5ccba03eee1c8fc83bc5d73675a11eaaebdcd25fb806155f5e669ed8af3267b214f7d23cf8600ab7e909e7347783b94f235ea797d2c1bd83c7f499c04532f2b63a55b336fa9e5305a4a22cdde74360995ffd241c9592043df3dc99dac462dd43443604ffed04b1ee23b6665e0955e0b38fa71f73af930a9762d6d4d762e11df043a78b90f49f1645acffe61094a20b4caaeca22feca5f66c549cfcda38a1a7b6b79b71aba7a696975a257a94344bf65b7b79212a61f465ee55b530582e8b1dc993c379dd40ab5dd860c5828e2c27afae20539978340db55a68897920c1019e75e0b43b4c93cb1061c98f683f8d407fae9b1a87f2f9cd2b8252059ac39766fc174c344c5224b43bbea978d722c93e727292c738b293da0b9f12b4f11c8f354ae91d644131ce3873612146d79fe3ace49c1446a79e0a324f23cc0b6fb673fc6c34315fa0baf03fb5bd36656a2272c9a4d80a312dfbec125af5aacd2faf633650e3ab54f9fd2c6ee76d5abd9fac547fe7880d0dd9341ac0f095c529d3232447a0d1b28c101a2a95c4a9040041fbdf47ff7da3abe4ee7d8acac57b6553e58f1c5f832e7b920ef3708b98e4917f5b855928344da2ad0a9755d3f90d31f3e427bc869a163844b5e38c62302cc2938b03c132caa4d8044ed92680d406b7d635026f38082b26d6d3dfe80e8f659f1101cec8ea74418699a4fedfcd4ce6f2693cce43123c03122f61b62497bc2fdc2307786943feb7325d645657ae5e58d1e2587003ed4712aba34973199238d3f3d29704ba86538a764abb4d69b9efabcd956fa688536e0661a2a2e0fc84d3e4152187fd90dfbd5023aa12e964d1f3bff4e2c2915f2600a3ab701b177bda95ba8203a45182e03cc07db3b20342cd45d4f8954edebb32fb7fdf49d1952477da9ead5d4ba6de96c42f5923e3dce7188b9e9ec1862dd2fd39d256e1de8cd0906f67a8423b29f0b5bf81539828a1f8ae7e747e6b43bd639c6d6a52a29a0e4944f6b07390fc390770154135acf448ed23c507009af66d20b175723069f8eef06c2cd3edc86bd80ebbe2f5cd56c379d655632b62794aa3757ea10fb232414a9477277261879e88c49e8eb5253c91551c13ed725f3551939533d7c131109d10b4300e24db600f8020b10e9aac24d8572873fac24d149398a3306707c5c3de875eca837e140d23b02637ef888d539b6f0c7fd6d97fd8b9edf9a82bf19d75cec625237a6b9716ac0003d1b8c8db5d04f5231bed4aac9e93da9b6bfea002af81eb77a3ef8cab9878fac2574742277e5403e44844e50e64d1471213c724cf14142291a44ff108c1334fd2aa086aff52cdf1e7c53a3c9757a6717ad360137a50c4968865083c132abfc3a5eba97a4387bd5affdf091f8396b443dad822a15150d68a0d9728c548fb793e6c9d5420561fe683b8b5e89227d357873891e95d87db4a33056f3af5aabdffa3cbaacc44bdbcca971d8e84586545ae5b0e5eb5c7fada201db84c3faf06eb3812c560d7b0c680e9c4908837c5fb10627eb828dc34718004c066b8d999d34fe25b831771eda169c2bd54aab176e851db66c2623a01b8ef09c006c9aeb2fc87502231f75f5e4e01cc2674847c4c4eef86afee4ae3646b25d11d885befe01c43a34d60eff675eabefceba4664fbc211b3f014e315ea8e4c95f5088b82c590695616127cf63ebcee2fd78f3856443d3cb529376d34db3db1a6949cb7c80bc403ba92952b694dec72c540763ce3901d262087bf5a16a89c4151ce2d2d97eb77dce3d93d99e087bc5352cbda39935c686cf294c3ba66fab0135acb713281c90d562fc473df7133df5af7d42e183e4b860ee7b624038141ee757cb14db143ef8e8617eb6cb24a0eb73ef230e417d543f4afc5858c43ad20819bf6eda31bd5c258e66e9703a9b1daa8b34f9db16cae43b131ef258da25272320e2b357357b1d12fd87d9a00551185f3d494426d3f33b0ee84e1ae65508b9916fec12805783a857ac5d70a661fce59088437cf991821d3cf5b0db477dc8f6bb38c8455bb628e563ca45cb65383db9ecfc80386cd05f92ab32bf825a0953c101609ca8239b6ef1fb5a7fcc55642f9b2911df108d64b8c72c5bd31645955056968d4917cbab525ae5994b5dcbd33de392081819012a16be8c1b4f164fa6a1c2d88fd957bd62f28a3e87ba1ffcf644116ffdcf26937d4e64b4e87bd4771b9e0a8d8eba4605a8eac0f8e320b1204eeab358a5a5b2caf3e534c28f9da5598fedc5f13b4a7930a569439c3bc43ac5f5195a29280042278f194f84f8e5ee210223f8a486d568fe4a51bf8ef813c1bd02a669e4e0ea79d1e6bad48257ace2e7feba18123a5e67fd7212a341f92061df472db87f1158b0a2088e48a3680edc29ce3d3156108c04e3b16a1cf18cd70c5f5eeeb59824fb869906679eceb4a6ab8ec8733e72db06403f357e128e3383e2b35269b20f032cc21da717ba3febe02fba9f4893074ee2fd98e85499e36ffe2077348bc541548a34bc32fa0f7c00d84cabfd31e5c75b6769a1ba5770c5217cb03d1f0a8c91ba8d524b42c7365e09d94d95cf43f7ec896718f210fd0ba4ef91a5262daf7cd2bae3c2aad3e2eb925bec9ca7c1b874776dc28784a3719cb191cc317ff897698b2667081cc9db30c96c6510766b65c55c5fd4b8564faca924e6f52c2b181561ee5403184a822f0a207d747602f616c5513cabfe55e525b2bce4d662ae0b9ea68c015d6ca87bc752ed3e527826191a36d23e8032e15f65b3d60a517f16c4ece8bc8b09681bad96a5300f7e30e6848612d67ad853bc1523799c568e46b1dfe0d37cbc202c1332718cfadd4d6938bc0bfb21fc15ad19a0506f669d5c8790b685d81c4acbdb8e1b06918e934b459e3f2b46fe0999e6eae4185edac1cb3e85e8b61de24794d339014c03a285a3d7ba91e00bed2d63b0edb933c290ddd62fb1c56b6d08cb99f47dabd72a667805d63a7784450a1bd1af6dfc2ec785ddb8b86fe4a44a7c8f86c4b19a61fdb701a81bd720bb70f8657e256b0f531ab7848b6206ba7cd4c32b866735a4b46091a0bb6c47c923a3efa99a09c0344228ed412f94c4eca96e6bf6ee75f23a1ae8415a892ff19bd190e1d67b8e1212be638eb179176e4074435ed381a7c2faaee9acbcf873823abd906e92f308b36c6c259e43d13b328ded6bf3c1f4a93a76e9a6d0483875456cf8f30eda231d9f26d6b3861a3f2db165758b0d7aacb7b5a8e9f4d775798556cee8dbe8a94fae8df837f71d66a0aaa48df5c36afa9033ec5283e713806d5a07f82729f9e888d309b713db36256757292443f00f1af08058057373ae710d90cefa5872bbeac931ddd145ba9a64997c0bc53cc59a954f8ee2670caac75e2a63b5a1ca6ca6e3f9287f080b271f34b2e63be2ad4c2b85b7c9683245b12491d221314ab2685e2a44787733af58502245e19af646f65dd26b44dda320d583d9ddd6567d6021dc2d7d731963d6cc790d8b082889045cb749de9857ee4388d0f3c2ef83d405d0a2328bd7f76fa4d3d0a2e8238c979babe572ab3e8ae2768ca212bad33249523fa89fc0498f5f29a68aa7aae681e41284f46b47cc996679c4f1d9936647cb9b47ca8dac8e161b5cc0ff29f48f4a42b6a567f1116a5c239e67069b96862e2ba0cb3d424d4c4810cc1f3da1c61f39e7cca3e519159c057a440db9838f9f14351f64ec24c70a21a874da100af89d4753d274bd87c6574de363d44ee5aa37bb360b3acf347b3a72fac5e66c939daf4c6cbfacb43ab73229cc0badacc30b6c771bee9a7a8e36a5839cf5d68ffac084e69cb7bb34f71fc2244e5d16d056f97f581e3c50112e81d8410b6aa6b33b924cbafbc8dcb163f22f0e7b618ecd22296328e3fafdc2366e49a7ab08fa0d5b55c8aaffa8c9fc2899c07cabcf35748b0f30edb03a8a55807b6c73cd0b64cdd1a77ec0dcb8be359715b284a9476a0013d69c825274f45b6ffa59df58ca07756af102a6bb0efa1b4b356f89c504097cf79c76ca07d325375bfac4d7c8483cabd8d7c9141c96948c32ec87c231b69d6776160b8b31dada7e0837b4c2dc2ecb28f9b0400589c12cde99dc7db30a9d4c4f8a904f6b2f2fba1d0c36544f84db803bef904ec5b1f976345f67688df6e2d866d9eda4a87395b8953c0dc1e93ca742d2141b3591bb0bfdb56a0f8eabf710a3479d8b8f7e3f0e73a6fd29fc946909f77a6ad3044495e4d6e661bc633f4eb63204dd9f47ee85676ec0aa8b713819a280c27f086445d62f258379ffd77ced5d2c8cdf7d87135d6806f340a111f42b042058b96daa2633a6975dc0c5580f93a38e3daba8fdfb21fd94ebb30a2e165a75c1788c1cfe2687af2c3d3908514722e19afb385a74d6ac8cb12ca6232cde2e99d4ac651b280e65b3b897e39984a64d55eb4f65ab0912675c3f334d7c7ce6ecd84044125d98ef9eb6cf46c5d5d01b3ba01fa4bb5ff70ba1d18cba8b28f3980fca9c75441ada9122d497ac2e779277edece11bd175bf79657c37b982acb078591520792cf8278b75177ad1aad8133b2e4a61c561b42f6ab11ff8227d75303720d121ad3f3ad2e350b4cbfb6c5476e0f73e58dd25a18f3b50d0b30a629b2f5e053422c5a18decb3ad311ca978dcb53d44c64f43ceec7f803370a9b4b91e837371c4ed274d636423cb189cfe1302c6605142d5765239c6c86384b7c6de980764793956cacff762f8c4feaef7dee318a977e942e3a2ef45e220857162ac83b0fd4f1deef6510005737e7588dac6679fd8ae630d60bb9509d848f00939134f0c52b2b122bcf7e46ce5ca2592d649ff00252e57d9541bafdfeb6492113f401eb428e543168a96bd06b31a9becd8f0fbb2b89d19479411bbe4e265480cf2a6f34e5bc02a98b9f29b8adc10f9096aa5096fe12ef67d9690388459664f9583095f9bef69f9725a76a2bab82cdefe92fefa283ad56c21ab3e8ea602130ad2d831c0a4fbbb7779476e74674034c6051272ca292540de9bfcb34536604865c759b639c6f1e58699635e037d3a8c", 0x1000)
fremovexattr(r2, &(0x7f0000000000)=@known='com.apple.system.Security\x00')
timerfd_create(0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x6)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, &(0x7f00000002c0))
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, &(0x7f0000000140)={0x0, 0x3, 0x304, 0x200, 0x0, 0x7, 0x0})
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, &(0x7f0000000000))

33.68245118s ago: executing program 3 (id=548):
lsm_set_self_attr(0x69, &(0x7f00000000c0)=ANY=[@ANYBLOB="6d0000000000000001000000000000002000000000000000feffffffffffffff"], 0x20, 0x0)
userfaultfd(0x801)
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000000001000000000000000000000000000002", 0x17)
getsockopt$inet6_opts(r0, 0x29, 0x37, 0x0, &(0x7f0000000080)=0xffffffffffffffa6)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000140))
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_STD(r2, 0x40085618, &(0x7f0000000080)=0x8)
socket$isdn(0x22, 0x3, 0x3)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
close(r3)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000280)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x1, 0x0, 0x1, {0xa, 0x4e23, 0xd06, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7}}}, 0x3a)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000002c0), 0x80200, 0x0)
ioctl$PPPIOCATTCHAN(r6, 0x40047438, &(0x7f0000000100)=0x1)
ioctl$PPPIOCCONNECT(r6, 0x4004743a, &(0x7f0000000280))
pwritev(r1, &(0x7f0000000040)=[{&(0x7f0000000180)="80fd0f000040", 0x6}], 0x1, 0x0, 0x0)

33.348407724s ago: executing program 3 (id=549):
openat$vhost_vsock(0xffffff9c, 0x0, 0x2, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
getsockopt$nfc_llcp(r0, 0x3a, 0x1, 0x0, 0x20000000)

33.102190451s ago: executing program 3 (id=551):
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x40000000015, 0x5, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
openat$rtc(0xffffff9c, &(0x7f0000000000), 0x400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
timer_create(0x2, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000008000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000004fc500850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0xfca804a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r6, 0x4048aecb, &(0x7f0000000080)=ANY=[@ANYRES16=r5])
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4048aecb, &(0x7f0000000080))

17.405238576s ago: executing program 32 (id=551):
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x40000000015, 0x5, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
openat$rtc(0xffffff9c, &(0x7f0000000000), 0x400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
timer_create(0x2, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000008000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000004fc500850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0xfca804a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r6, 0x4048aecb, &(0x7f0000000080)=ANY=[@ANYRES16=r5])
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4048aecb, &(0x7f0000000080))

15.164454698s ago: executing program 2 (id=613):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x16, &(0x7f0000000580)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6}, {}, {}, [@call={0x85, 0x0, 0x0, 0x10}, @map_idx={0x18, 0x7, 0x5, 0x0, 0xe}, @alu={0x8, 0x1, 0x8, 0x9, 0x9, 0x6}, @map_idx={0x18, 0x0, 0x5, 0x0, 0xe}, @generic={0xfe, 0x0, 0xe, 0x9, 0x4}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000400)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0xe80, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
connect$netrom(r0, &(0x7f0000000140)={{0x6, @bcast, 0x2}, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r2, &(0x7f0000000300)={{0x6, @rose}, [@null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)
listen(r0, 0x1ad72f7)
syz_usb_connect(0x5, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb2361000000010902"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x8, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$sock_linger(r4, 0x1, 0x48, &(0x7f0000000180)={0x200000000000001, 0xffffffff}, 0x8)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x14)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x1f2f, 0xf, 0x3253, &(0x7f00000007c0)="9f44948721919580684010a40800", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
r8 = openat$audio(0xffffff9c, &(0x7f00000001c0), 0x1, 0x0)
fcntl$setpipe(r8, 0x407, 0xd)
setsockopt$IP_VS_SO_SET_ADD(r7, 0x0, 0x482, &(0x7f0000000000)={0x88, @dev={0xac, 0x14, 0x14, 0x23}, 0x4e24, 0x4, 'nq\x00', 0x1, 0xe, 0x67}, 0x2c)
setsockopt$netrom_NETROM_IDLE(r2, 0x103, 0x7, &(0x7f0000000080)=0x60000, 0x4)
writev(r2, &(0x7f0000000280)=[{&(0x7f00000006c0)="9e", 0x1}], 0x1)
r9 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'team0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x90, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x60, 0x2, {{0x0, 0x0, 0x0, 0x2}, [@TCA_NETEM_SLOT={0x17, 0xc, {0xb95, 0x0, 0x9, 0xfffffffc, 0x7, 0x5}}, @TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x1, 0x7, 0xa82, 0x3}}]}]}}}]}, 0x90}}, 0x0)
r11 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$netlink(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000d80)=ANY=[@ANYBLOB="240000002c00010000000000000000000400008010000c"], 0x24}], 0x1}, 0x0)

11.441918515s ago: executing program 2 (id=618):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x5d7, 0x0)
ioctl$VIDIOC_QUERYCTRL(r0, 0xc0445624, &(0x7f00000000c0)={0x0, 0x0, "1ec4618f6538ecc26693065a2dcc26d92bb4f1030cd2c1011cdbf894a0839dc2"})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0x94}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={0x98, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x98}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = creat(&(0x7f0000000180)='./file0\x00', 0x110)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
write$uinput_user_dev(r4, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x1, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0x9, 0x3, 0xffff2d37, 0x1dd0, 0x6, 0x3, 0x0, 0x5, 0x4, 0x7, 0x3, 0x3c5b, 0x1, 0x24, 0xffffffff, 0x1, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x242, 0x3, 0xe, 0x0, 0x71, 0x7, 0x7, 0x3, 0x0, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12f, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x1, 0x6, 0x1, 0xff, 0x5, 0x7ff, 0x5f31, 0x4, 0x0, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x1, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0x3, 0x3, 0x4, 0x1, 0x7, 0x6, 0x9, 0x48c93690, 0x2, 0x8], [0x7, 0x4, 0x0, 0x64e, 0xfffffffe, 0x7fffffff, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x3, 0x8, 0x4, 0x6d01, 0x5, 0x38, 0x3, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x0, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0xb, 0x3, 0x0, 0xfffffff9, 0x0, 0x1, 0x5, 0x0, 0x6, 0x0, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x3], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x2, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0x3, 0xffff, 0x3, 0x7f, 0x100, 0x9602, 0xa, 0x2, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x30b1d693, 0xa1f, 0x8, 0x9, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000300)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
r7 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r7, 0xc4c85513, 0x0)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = socket$inet(0x2, 0x1, 0x0)
shutdown(r8, 0x0)
ioctl$TIOCCONS(r6, 0x541d)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r9, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r9, 0x84, 0x84, &(0x7f0000000040)={0x0, @in={{0xa}}, 0xffff}, 0x90)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r9, 0x84, 0x6e, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @local, 0x6}], 0x1c)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305\x00'}, 0x58)
r10 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmmsg$alg(r10, &(0x7f0000000640)=[{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)="b57523cb1a2c90d8acad2e2d98dfc9ea7a5843c3b63b683ced2b3266175599b779617e66e6b3e15c042be90635a2d36160bbf9a2edcacc0bbe015b84150a1928de94397894ff36aa430fc2a0814ba634308d6d0837250dfd1eca5383f9d151449743b1a0c4ffc51242a229c5d6d06f147a61d797ea7ffeda95b76f5623", 0x7d}, {&(0x7f00000001c0)="66f7", 0x8}, {&(0x7f0000000300)='l3', 0x7fffef80}], 0x3}], 0x1, 0x0)
bind$netrom(r10, &(0x7f0000000200)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x1}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default]}, 0x48)

10.769997319s ago: executing program 2 (id=619):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha12\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x20000) (fail_nth: 1)

10.518121827s ago: executing program 0 (id=622):
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000001c0)='memory.pressure\x00', 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000000000000000000114000400ff0100000000000000000000000000010c000280050001000000000047000280050001"], 0xe4}}, 0x0)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0x8000, 0xc5f7, @value})
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={0x0, r1}, &(0x7f00000000c0)=""/80, 0x50, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000000)=0x8000)
r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ppoll(&(0x7f0000000040)=[{r4, 0x708}], 0x1, 0x0, 0x0, 0x0)
read$dsp(r4, &(0x7f0000001200)=""/4096, 0x1000)
write$dsp(r3, &(0x7f0000002200)="44e211a385424bf02640ba0d3a219de1033222bea86d14dc6bc540f652f0873cec4d2b540364b6e4ff506bf40b976a8485725d9cfab14bb4c91a5fd888b8b983ef960999942529696b90b853c1f1a3b01af9b0cdc6a605c13de44b58eaf66b597768a5a9bccdb34c1aa1c48b2484cf0f1d68f8b5c1d9f6179459a466a2e865c2a66274717ef95f59fcf4d5b05c4540a35bb64a8fab9af3ad51f3c648121e933ea77809f3901ca59ed3e990ff80d87a814eb6fb68e3305fd9420d4a163ad5654ce60386346b6d1154ecef0f4a782c4459c0a8ca7278655e6f806c4bc2e870000bfcb1346232b0ccce39ee18152165cf3f85e87ae23c4113586cf300b39d7589b28372e554f7d748b618bca2a4298d82864e0d8212f4fbd80fd854691ccac21279bb85aacac8a3301ad2ece3d6061dbcc63e4af0fefc68fab6e5319f6d9e6a2708e41e60b2673d62ec952bae35b854fe7e87bc78e2d1a56cc383e5a1783ce35eaa20868d97eb1198ecae2d6375d7cd6992883aa3bbbdcb93b92b6eca3d6cde5baa92a6adda4540d5fce6d4772e5711b3744210587c05833966b300da0a378787ad06e9d5cba6e569b14c013b8428dad38eb6d2bc547615dac42aca90ac891e6db4d1dd029fe628170433f9229a286a814d39afd5a019db11c185b72c34e01ea5e82a5008a059e6791c9b807c4aab4e9807a5a7896a4c5bfa42f15284c1481618461ce3501cf24a722e74923d01bd7d586eec5d5ccba03eee1c8fc83bc5d73675a11eaaebdcd25fb806155f5e669ed8af3267b214f7d23cf8600ab7e909e7347783b94f235ea797d2c1bd83c7f499c04532f2b63a55b336fa9e5305a4a22cdde74360995ffd241c9592043df3dc99dac462dd43443604ffed04b1ee23b6665e0955e0b38fa71f73af930a9762d6d4d762e11df043a78b90f49f1645acffe61094a20b4caaeca22feca5f66c549cfcda38a1a7b6b79b71aba7a696975a257a94344bf65b7b79212a61f465ee55b530582e8b1dc993c379dd40ab5dd860c5828e2c27afae20539978340db55a68897920c1019e75e0b43b4c93cb1061c98f683f8d407fae9b1a87f2f9cd2b8252059ac39766fc174c344c5224b43bbea978d722c93e727292c738b293da0b9f12b4f11c8f354ae91d644131ce3873612146d79fe3ace49c1446a79e0a324f23cc0b6fb673fc6c34315fa0baf03fb5bd36656a2272c9a4d80a312dfbec125af5aacd2faf633650e3ab54f9fd2c6ee76d5abd9fac547fe7880d0dd9341ac0f095c529d3232447a0d1b28c101a2a95c4a9040041fbdf47ff7da3abe4ee7d8acac57b6553e58f1c5f832e7b920ef3708b98e4917f5b855928344da2ad0a9755d3f90d31f3e427bc869a163844b5e38c62302cc2938b03c132caa4d8044ed92680d406b7d635026f38082b26d6d3dfe80e8f659f1101cec8ea74418699a4fedfcd4ce6f2693cce43123c03122f61b62497bc2fdc2307786943feb7325d645657ae5e58d1e2587003ed4712aba34973199238d3f3d29704ba86538a764abb4d69b9efabcd956fa688536e0661a2a2e0fc84d3e4152187fd90dfbd5023aa12e964d1f3bff4e2c2915f2600a3ab701b177bda95ba8203a45182e03cc07db3b20342cd45d4f8954edebb32fb7fdf49d1952477da9ead5d4ba6de96c42f5923e3dce7188b9e9ec1862dd2fd39d256e1de8cd0906f67a8423b29f0b5bf81539828a1f8ae7e747e6b43bd639c6d6a52a29a0e4944f6b07390fc390770154135acf448ed23c507009af66d20b175723069f8eef06c2cd3edc86bd80ebbe2f5cd56c379d655632b62794aa3757ea10fb232414a9477277261879e88c49e8eb5253c91551c13ed725f3551939533d7c131109d10b4300e24db600f8020b10e9aac24d8572873fac24d149398a3306707c5c3de875eca837e140d23b02637ef888d539b6f0c7fd6d97fd8b9edf9a82bf19d75cec625237a6b9716ac0003d1b8c8db5d04f5231bed4aac9e93da9b6bfea002af81eb77a3ef8cab9878fac2574742277e5403e44844e50e64d1471213c724cf14142291a44ff108c1334fd2aa086aff52cdf1e7c53a3c9757a6717ad360137a50c4968865083c132abfc3a5eba97a4387bd5affdf091f8396b443dad822a15150d68a0d9728c548fb793e6c9d5420561fe683b8b5e89227d357873891e95d87db4a33056f3af5aabdffa3cbaacc44bdbcca971d8e84586545ae5b0e5eb5c7fada201db84c3faf06eb3812c560d7b0c680e9c4908837c5fb10627eb828dc34718004c066b8d999d34fe25b831771eda169c2bd54aab176e851db66c2623a01b8ef09c006c9aeb2fc87502231f75f5e4e01cc2674847c4c4eef86afee4ae3646b25d11d885befe01c43a34d60eff675eabefceba4664fbc211b3f014e315ea8e4c95f5088b82c590695616127cf63ebcee2fd78f3856443d3cb529376d34db3db1a6949cb7c80bc403ba92952b694dec72c540763ce3901d262087bf5a16a89c4151ce2d2d97eb77dce3d93d99e087bc5352cbda39935c686cf294c3ba66fab0135acb713281c90d562fc473df7133df5af7d42e183e4b860ee7b624038141ee757cb14db143ef8e8617eb6cb24a0eb73ef230e417d543f4afc5858c43ad20819bf6eda31bd5c258e66e9703a9b1daa8b34f9db16cae43b131ef258da25272320e2b357357b1d12fd87d9a00551185f3d494426d3f33b0ee84e1ae65508b9916fec12805783a857ac5d70a661fce59088437cf991821d3cf5b0db477dc8f6bb38c8455bb628e563ca45cb65383db9ecfc80386cd05f92ab32bf825a0953c101609ca8239b6ef1fb5a7fcc55642f9b2911df108d64b8c72c5bd31645955056968d4917cbab525ae5994b5dcbd33de392081819012a16be8c1b4f164fa6a1c2d88fd957bd62f28a3e87ba1ffcf644116ffdcf26937d4e64b4e87bd4771b9e0a8d8eba4605a8eac0f8e320b1204eeab358a5a5b2caf3e534c28f9da5598fedc5f13b4a7930a569439c3bc43ac5f5195a29280042278f194f84f8e5ee210223f8a486d568fe4a51bf8ef813c1bd02a669e4e0ea79d1e6bad48257ace2e7feba18123a5e67fd7212a341f92061df472db87f1158b0a2088e48a3680edc29ce3d3156108c04e3b16a1cf18cd70c5f5eeeb59824fb869906679eceb4a6ab8ec8733e72db06403f357e128e3383e2b35269b20f032cc21da717ba3febe02fba9f4893074ee2fd98e85499e36ffe2077348bc541548a34bc32fa0f7c00d84cabfd31e5c75b6769a1ba5770c5217cb03d1f0a8c91ba8d524b42c7365e09d94d95cf43f7ec896718f210fd0ba4ef91a5262daf7cd2bae3c2aad3e2eb925bec9ca7c1b874776dc28784a3719cb191cc317ff897698b2667081cc9db30c96c6510766b65c55c5fd4b8564faca924e6f52c2b181561ee5403184a822f0a207d747602f616c5513cabfe55e525b2bce4d662ae0b9ea68c015d6ca87bc752ed3e527826191a36d23e8032e15f65b3d60a517f16c4ece8bc8b09681bad96a5300f7e30e6848612d67ad853bc1523799c568e46b1dfe0d37cbc202c1332718cfadd4d6938bc0bfb21fc15ad19a0506f669d5c8790b685d81c4acbdb8e1b06918e934b459e3f2b46fe0999e6eae4185edac1cb3e85e8b61de24794d339014c03a285a3d7ba91e00bed2d63b0edb933c290ddd62fb1c56b6d08cb99f47dabd72a667805d63a7784450a1bd1af6dfc2ec785ddb8b86fe4a44a7c8f86c4b19a61fdb701a81bd720bb70f8657e256b0f531ab7848b6206ba7cd4c32b866735a4b46091a0bb6c47c923a3efa99a09c0344228ed412f94c4eca96e6bf6ee75f23a1ae8415a892ff19bd190e1d67b8e1212be638eb179176e4074435ed381a7c2faaee9acbcf873823abd906e92f308b36c6c259e43d13b328ded6bf3c1f4a93a76e9a6d0483875456cf8f30eda231d9f26d6b3861a3f2db165758b0d7aacb7b5a8e9f4d775798556cee8dbe8a94fae8df837f71d66a0aaa48df5c36afa9033ec5283e713806d5a07f82729f9e888d309b713db36256757292443f00f1af08058057373ae710d90cefa5872bbeac931ddd145ba9a64997c0bc53cc59a954f8ee2670caac75e2a63b5a1ca6ca6e3f9287f080b271f34b2e63be2ad4c2b85b7c9683245b12491d221314ab2685e2a44787733af58502245e19af646f65dd26b44dda320d583d9ddd6567d6021dc2d7d731963d6cc790d8b082889045cb749de9857ee4388d0f3c2ef83d405d0a2328bd7f76fa4d3d0a2e8238c979babe572ab3e8ae2768ca212bad33249523fa89fc0498f5f29a68aa7aae681e41284f46b47cc996679c4f1d9936647cb9b47ca8dac8e161b5cc0ff29f48f4a42b6a567f1116a5c239e67069b96862e2ba0cb3d424d4c4810cc1f3da1c61f39e7cca3e519159c057a440db9838f9f14351f64ec24c70a21a874da100af89d4753d274bd87c6574de363d44ee5aa37bb360b3acf347b3a72fac5e66c939daf4c6cbfacb43ab73229cc0badacc30b6c771bee9a7a8e36a5839cf5d68ffac084e69cb7bb34f71fc2244e5d16d056f97f581e3c50112e81d8410b6aa6b33b924cbafbc8dcb163f22f0e7b618ecd22296328e3fafdc2366e49a7ab08fa0d5b55c8aaffa8c9fc2899c07cabcf35748b0f30edb03a8a55807b6c73cd0b64cdd1a77ec0dcb8be359715b284a9476a0013d69c825274f45b6ffa59df58ca07756af102a6bb0efa1b4b356f89c504097cf79c76ca07d325375bfac4d7c8483cabd8d7c9141c96948c32ec87c231b69d6776160b8b31dada7e0837b4c2dc2ecb28f9b0400589c12cde99dc7db30a9d4c4f8a904f6b2f2fba1d0c36544f84db803bef904ec5b1f976345f67688df6e2d866d9eda4a87395b8953c0dc1e93ca742d2141b3591bb0bfdb56a0f8eabf710a3479d8b8f7e3f0e73a6fd29fc946909f77a6ad3044495e4d6e661bc633f4eb63204dd9f47ee85676ec0aa8b713819a280c27f086445d62f258379ffd77ced5d2c8cdf7d87135d6806f340a111f42b042058b96daa2633a6975dc0c5580f93a38e3daba8fdfb21fd94ebb30a2e165a75c1788c1cfe2687af2c3d3908514722e19afb385a74d6ac8cb12ca6232cde2e99d4ac651b280e65b3b897e39984a64d55eb4f65ab0912675c3f334d7c7ce6ecd84044125d98ef9eb6cf46c5d5d01b3ba01fa4bb5ff70ba1d18cba8b28f3980fca9c75441ada9122d497ac2e779277edece11bd175bf79657c37b982acb078591520792cf8278b75177ad1aad8133b2e4a61c561b42f6ab11ff8227d75303720d121ad3f3ad2e350b4cbfb6c5476e0f73e58dd25a18f3b50d0b30a629b2f5e053422c5a18decb3ad311ca978dcb53d44c64f43ceec7f803370a9b4b91e837371c4ed274d636423cb189cfe1302c6605142d5765239c6c86384b7c6de980764793956cacff762f8c4feaef7dee318a977e942e3a2ef45e220857162ac83b0fd4f1deef6510005737e7588dac6679fd8ae630d60bb9509d848f00939134f0c52b2b122bcf7e46ce5ca2592d649ff00252e57d9541bafdfeb6492113f401eb428e543168a96bd06b31a9becd8f0fbb2b89d19479411bbe4e265480cf2a6f34e5bc02a98b9f29b8adc10f9096aa5096fe12ef67d9690388459664f9583095f9bef69f9725a76a2bab82cdefe92fefa283ad56c21ab3e8ea602130ad2d831c0a4fbbb7779476e74674034c6051272ca292540de9bfcb34536604865c759b639c6f1e58699635e037d3a8c", 0x1000)
fremovexattr(r2, &(0x7f0000000000)=@known='com.apple.system.Security\x00')
timerfd_create(0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x6)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, &(0x7f00000002c0))
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, &(0x7f0000000140)={0x0, 0x3, 0x304, 0x200, 0x0, 0x7, 0x0})
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, &(0x7f0000000000))

10.504941199s ago: executing program 2 (id=623):
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg$kcm(r0, 0x0, 0x40000042)
write$cgroup_subtree(r0, 0x0, 0xfe33)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2a, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r5 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r5, 0xc0cc5640, &(0x7f0000000540)={0x1, @sliced={0x0, [0x12a9, 0x400, 0xea, 0x8, 0xffff, 0x3, 0x6, 0x8, 0x83, 0x1, 0xe3c7, 0x5, 0x6, 0x8, 0x9, 0x200, 0x7, 0x9, 0x5, 0x3, 0x1ff, 0xad3f, 0x3f95, 0x4, 0x0, 0x7, 0x6, 0x8, 0x101, 0x515, 0x7, 0x2, 0x5, 0x9, 0x2, 0xfc00, 0x10, 0xfff, 0x7, 0x23, 0x38, 0x4, 0xfff4, 0x675, 0xa, 0x6, 0x800, 0x8], 0x3}})
syz_io_uring_setup(0x10d, &(0x7f0000000300)={0x0, 0xce5c, 0x2, 0x0, 0x89}, &(0x7f00000001c0), &(0x7f0000000380))
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x4e24, @multicast1}, 0xfffffffffffffd8c)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10)
setsockopt$inet_int(r6, 0x0, 0xb, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67100000000000560602000fff00006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffbd35010000000000840400000000000014000000100000009500000000000000db13d5d8b741f2cdaabc8383c8f56b8c2b848b00ea6553f304000000815dcf00c3ee7b042d1937ba52037fdedb2150e1918c30b6301f0212feb0cff9fc67357d81b2cc1a9e37d7b75c020b070000003eb22062bafaca036d9ec7db6671573e202e0a92ee4ba12b064981cc32d1ac0b9ecc8f604dca20563e1c1e7624cc3b88b330ad416c4c1d8c60589b6445a4ffff58df4d34bc5847bebb943a84cb56956931ba9cc39c4a9deea5d77aa843240000000000eeffc27e92"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)

9.209673693s ago: executing program 0 (id=625):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="480000a7bc290459793ac7000000000000000000a3e490a7c1a55105348102da65bf05d9ad1549a621586b62c3784856b7c88aefcb076d03c621fc36c09164f948ae8cf54fb121bc92118b8ce28e5591df0d3f01f8ff620d485db2fa366e274f765b9ec82ff1b1f04df5ed73780b5c372fce97b6a6ca08ead416cc481604c5426731c8434735af8c4653af9c953157a4a66297eb1d1912c4f738917481b0", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}, 0x1, 0x0, 0x0, 0x20000005}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@getchain={0x2c, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [{0x8}]}, 0x2c}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r4=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000480)=ANY=[@ANYBLOB="3c0000001000030426bd70020000dfa5f7d7bc00", @ANYRES32=0x0, @ANYBLOB="0023000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32=r4], 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x8044)

9.186425865s ago: executing program 2 (id=626):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, 0x0, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r1, 0x0, 0x20, &(0x7f0000000040)={@multicast1=0xe0000300, @loopback}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x20, 0x0, 0x2, 0x0, @rand_addr, @multicast1=0xe0000300}, @address_request}}}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x20, 0x0, 0x2, 0x0, @rand_addr=0xe0, @multicast1=0xe0000300}, @address_request}}}}, 0x0)

7.180362848s ago: executing program 1 (id=628):
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg$kcm(r0, 0x0, 0x40000042)
write$cgroup_subtree(r0, 0x0, 0xfe33)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2a, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r5 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r5, 0xc0cc5640, &(0x7f0000000540)={0x1, @sliced={0x0, [0x12a9, 0x400, 0xea, 0x8, 0xffff, 0x3, 0x6, 0x8, 0x83, 0x1, 0xe3c7, 0x5, 0x6, 0x8, 0x9, 0x200, 0x7, 0x9, 0x5, 0x3, 0x1ff, 0xad3f, 0x3f95, 0x4, 0x0, 0x7, 0x6, 0x8, 0x101, 0x515, 0x7, 0x2, 0x5, 0x9, 0x2, 0xfc00, 0x10, 0xfff, 0x7, 0x23, 0x38, 0x4, 0xfff4, 0x675, 0xa, 0x6, 0x800, 0x8], 0x3}})
syz_io_uring_setup(0x10d, &(0x7f0000000300)={0x0, 0xce5c, 0x2, 0x0, 0x89}, &(0x7f00000001c0), &(0x7f0000000380))
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x4e24, @multicast1}, 0xfffffffffffffd8c)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10)
sendmmsg(r6, &(0x7f0000006780)=[{{0x0, 0x0, 0x0}}], 0x80000000000020c, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)

6.050042383s ago: executing program 1 (id=629):
r0 = socket(0x10, 0x3, 0x0)
recvmmsg(r0, &(0x7f0000005480)=[{{0x0, 0x0, 0x0}, 0xffffffff}], 0x1, 0x0, 0x0)
write(r0, &(0x7f00000000c0)="240000001e005f0214fffffffffffff8070000001d00000000000000050009000d000000", 0x24)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r1, 0x6, 0x1b, &(0x7f0000000240), 0x4)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$poke(0x5, r2, &(0x7f0000000080), 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000001440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001480)=0x14)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000005240)={r1})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000006a00)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x6, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r5, 0x2000000, 0x11, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x2c, 0x2, [@TCA_FQ_INITIAL_QUANTUM={0x8, 0xe}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8}, @TCA_FQ_FLOW_PLIMIT={0x8, 0x8}]}}]}, 0x58}}, 0x0)
r8 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r8, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="10fdffff0f01000001000000"], 0x10}, 0x8000)
r9 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904"], 0x0)
syz_usb_control_io(r9, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x42, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11641e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x20, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x647b}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

2.508064587s ago: executing program 1 (id=630):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x28, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x28}, 0x1, 0x0, 0x0, 0xc4}, 0x4000000)

2.507515918s ago: executing program 0 (id=631):
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f00000001c0)='memory.pressure\x00', 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000000000000000000114000400ff0100000000000000000000000000010c000280050001000000000047000280050001"], 0xe4}}, 0x0)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0x8000, 0xc5f7, @value})
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={0x0, r1}, &(0x7f00000000c0)=""/80, 0x50, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000000)=0x8000)
r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ppoll(&(0x7f0000000040)=[{r4, 0x708}], 0x1, 0x0, 0x0, 0x0)
read$dsp(r4, &(0x7f0000001200)=""/4096, 0x1000)
write$dsp(r3, &(0x7f0000002200)="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", 0x1000)
fremovexattr(r2, &(0x7f0000000000)=@known='com.apple.system.Security\x00')
timerfd_create(0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x6)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, &(0x7f00000002c0))
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, &(0x7f0000000140)={0x0, 0x3, 0x304, 0x200, 0x0, 0x7, 0x0})
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, &(0x7f0000000000))

2.43034887s ago: executing program 2 (id=632):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r1, &(0x7f0000000480)=""/74, 0x4a)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x0, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000140)={0xc, &(0x7f0000000080)={0x20, 0xc, 0x2, {0x2, 0x31}}, &(0x7f0000000100)={0x0, 0x3, 0xc, @string={0xc, 0x3, "717d89949f4a73259297"}}}, &(0x7f0000000380)={0x24, 0x0, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x2}, &(0x7f0000000200)={0x0, 0x8, 0x1, 0x6}, &(0x7f0000000240)={0x20, 0x81, 0x3, "1a67d9"}, &(0x7f0000000280)={0x20, 0x82, 0x1, "1e"}, &(0x7f00000002c0)={0x20, 0x83, 0x2, '!\t'}, &(0x7f0000000300)={0x20, 0x84, 0x3, "fe869f"}, &(0x7f0000000340)={0x20, 0x85, 0x3, "5c4a9e"}})

1.984419918s ago: executing program 1 (id=633):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r0)
sendmsg$NFC_CMD_DEACTIVATE_TARGET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0dbc2cbd7000ffdbdf251e00000008000100", @ANYRES32, @ANYBLOB="080004"], 0x3c}, 0x1, 0x0, 0x0, 0x4000040}, 0x2400c004)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)=@can_newroute={0x44, 0x18, 0x1, 0x0, 0x0, {}, [@CGW_MOD_SET={0x15, 0x4, {{{0x1, 0x1}, 0x2, 0x0, 0x0, 0x0, "1d2c44eac02911d0"}, 0x2}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x0, 0x0, 0x1}, 0x2, 0x471e9d062036054f, 0x0, 0x0, "99682fcd7fc8c305"}, 0x3}}]}, 0x44}}, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r2, 0x5, 0x0, 0x0, @void, @value}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000240)={@fallback=r3, 0x26, 0x0, 0x4ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r5, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x20008041)

1.789274437s ago: executing program 1 (id=634):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='GPL\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x1a}, 0x0, 0x1, 0x3}, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r1, 0x400452c8, &(0x7f0000000100))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008d}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r7, 0x0, 0x482, &(0x7f0000000040)={0x84, @private=0xa010101, 0x4e23, 0x3, 'sh\x00', 0x1, 0x7, 0x49}, 0x2c)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r8, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x3, 'lc\x00', 0x4, 0x81, 0x5}, {@rand_addr=0xac1414aa, 0x4e23, 0x0, 0xcb, 0x12d5c, 0x12d5c}}, 0x44)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r10 = dup(r9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r10, 0x0)
r11 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$BLKZEROOUT(r11, 0x127f, &(0x7f0000000240)={0x0, 0x1000000})

1.309424557s ago: executing program 0 (id=635):
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
fchdir(r0)
faccessat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @raw_data="8dd92ad22232b7d261624f0a9a46d1d4078a97351a59a83d2edc6e4b1daf6a4ddbad738318e618c52980e83b2116090d22953594799708e6b88baa126e6727054946a1be6c5587f3bb0e01fabdf09f947b494deb15c3d53f9264eabbca7187809c7f980ad78d2c412275ed5c687bbcf6e59c35d93f0f30bbe93f38a52e106a05a1161d981dd24bfb96d770781981c6cfa41a294f5414bb6375a82d34816a0dffa45bc5ac6feaab19942dc5f6bf7a774f8aee9ab0ca785abbd2d8a7649d976878ffab9c95d9d59e34"})
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000002740)=ANY=[@ANYBLOB], 0x14}], 0x1}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="28000000190001000000000000000010021800200003ff000000000008000100ac1414"], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00')
write$vhost_msg(r3, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.127320665s ago: executing program 0 (id=636):
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8937, 0x0)
socket$packet(0x11, 0x3, 0x300)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f00000001c0)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'batadv_slave_1\x00'}}, 0x1e)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
r3 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r3, 0x29, 0xc8, 0x0, 0xc000000)
setsockopt$MRT6_ADD_MFC(r3, 0x29, 0xc8, &(0x7f0000000000)={{0xa, 0x0, 0x0, @local}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
r4 = dup(r2)
ioctl$PPPIOCCONNECT(r4, 0x40047435, &(0x7f00000002c0)=0x2)
ioctl$PPPIOCGCHAN(r1, 0x80047437, &(0x7f0000001f00))
sendmmsg(r1, &(0x7f0000001cc0), 0x400000000000026, 0x0)

878.615608ms ago: executing program 0 (id=637):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
r3 = openat$cgroup(r1, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f00000004c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000500)=r2, 0x12)
syz_open_procfs$userns(r2, &(0x7f0000000000))
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$key(0xf, 0x3, 0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x410000002)
r7 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r8=>0x0, &(0x7f0000000200)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
r10 = socket$phonet_pipe(0x23, 0x5, 0x2)
r11 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)="1400000032000b0fd25a806c8c6f94f90324fc60", 0x14}], 0x1}, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x68, 0x11, r10, 0x0, 0x0, 0x0, 0x1, 0x1, {0x3}})
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x2c}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
io_uring_enter(r7, 0x6e2, 0x3900, 0x1, 0x0, 0x0)

375.880967ms ago: executing program 4 (id=606):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x8000)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ppoll(&(0x7f0000000040)=[{r1, 0x708}], 0x1, 0x0, 0x0, 0x0)
write$dsp(r0, &(0x7f0000002200)="44e211a385424bf02640ba0d3a219de1033222bea86d14dc6bc540f652f0873cec4d2b540364b6e4ff506bf40b976a8485725d9cfab14bb4c91a5fd888b8b983ef960999942529696b90b853c1f1a3b01af9b0cdc6a605c13de44b58eaf66b597768a5a9bccdb34c1aa1c48b2484cf0f1d68f8b5c1d9f6179459a466a2e865c2a66274717ef95f59fcf4d5b05c4540a35bb64a8fab9af3ad51f3c648121e933ea77809f3901ca59ed3e990ff80d87a814eb6fb68e3305fd9420d4a163ad5654ce60386346b6d1154ecef0f4a782c4459c0a8ca7278655e6f806c4bc2e870000bfcb1346232b0ccce39ee18152165cf3f85e87ae23c4113586cf300b39d7589b28372e554f7d748b618bca2a4298d82864e0d8212f4fbd80fd854691ccac21279bb85aacac8a3301ad2ece3d6061dbcc63e4af0fefc68fab6e5319f6d9e6a2708e41e60b2673d62ec952bae35b854fe7e87bc78e2d1a56cc383e5a1783ce35eaa20868d97eb1198ecae2d6375d7cd6992883aa3bbbdcb93b92b6eca3d6cde5baa92a6adda4540d5fce6d4772e5711b3744210587c05833966b300da0a378787ad06e9d5cba6e569b14c013b8428dad38eb6d2bc547615dac42aca90ac891e6db4d1dd029fe628170433f9229a286a814d39afd5a019db11c185b72c34e01ea5e82a5008a059e6791c9b807c4aab4e9807a5a7896a4c5bfa42f15284c1481618461ce3501cf24a722e74923d01bd7d586eec5d5ccba03eee1c8fc83bc5d73675a11eaaebdcd25fb806155f5e669ed8af3267b214f7d23cf8600ab7e909e7347783b94f235ea797d2c1bd83c7f499c04532f2b63a55b336fa9e5305a4a22cdde74360995ffd241c9592043df3dc99dac462dd43443604ffed04b1ee23b6665e0955e0b38fa71f73af930a9762d6d4d762e11df043a78b90f49f1645acffe61094a20b4caaeca22feca5f66c549cfcda38a1a7b6b79b71aba7a696975a257a94344bf65b7b79212a61f465ee55b530582e8b1dc993c379dd40ab5dd860c5828e2c27afae20539978340db55a68897920c1019e75e0b43b4c93cb1061c98f683f8d407fae9b1a87f2f9cd2b8252059ac39766fc174c344c5224b43bbea978d722c93e727292c738b293da0b9f12b4f11c8f354ae91d644131ce3873612146d79fe3ace49c1446a79e0a324f23cc0b6fb673fc6c34315fa0baf03fb5bd36656a2272c9a4d80a312dfbec125af5aacd2faf633650e3ab54f9fd2c6ee76d5abd9fac547fe7880d0dd9341ac0f095c529d3232447a0d1b28c101a2a95c4a9040041fbdf47ff7da3abe4ee7d8acac57b6553e58f1c5f832e7b920ef3708b98e4917f5b855928344da2ad0a9755d3f90d31f3e427bc869a163844b5e38c62302cc2938b03c132caa4d8044ed92680d406b7d635026f38082b26d6d3dfe80e8f659f1101cec8ea74418699a4fedfcd4ce6f2693cce43123c03122f61b62497bc2fdc2307786943feb7325d645657ae5e58d1e2587003ed4712aba34973199238d3f3d29704ba86538a764abb4d69b9efabcd956fa688536e0661a2a2e0fc84d3e4152187fd90dfbd5023aa12e964d1f3bff4e2c2915f2600a3ab701b177bda95ba8203a45182e03cc07db3b20342cd45d4f8954edebb32fb7fdf49d1952477da9ead5d4ba6de96c42f5923e3dce7188b9e9ec1862dd2fd39d256e1de8cd0906f67a8423b29f0b5bf81539828a1f8ae7e747e6b43bd639c6d6a52a29a0e4944f6b07390fc390770154135acf448ed23c507009af66d20b175723069f8eef06c2cd3edc86bd80ebbe2f5cd56c379d655632b62794aa3757ea10fb232414a9477277261879e88c49e8eb5253c91551c13ed725f3551939533d7c131109d10b4300e24db600f8020b10e9aac24d8572873fac24d149398a3306707c5c3de875eca837e140d23b02637ef888d539b6f0c7fd6d97fd8b9edf9a82bf19d75cec625237a6b9716ac0003d1b8c8db5d04f5231bed4aac9e93da9b6bfea002af81eb77a3ef8cab9878fac2574742277e5403e44844e50e64d1471213c724cf14142291a44ff108c1334fd2aa086aff52cdf1e7c53a3c9757a6717ad360137a50c4968865083c132abfc3a5eba97a4387bd5affdf091f8396b443dad822a15150d68a0d9728c548fb793e6c9d5420561fe683b8b5e89227d357873891e95d87db4a33056f3af5aabdffa3cbaacc44bdbcca971d8e84586545ae5b0e5eb5c7fada201db84c3faf06eb3812c560d7b0c680e9c4908837c5fb10627eb828dc34718004c066b8d999d34fe25b831771eda169c2bd54aab176e851db66c2623a01b8ef09c006c9aeb2fc87502231f75f5e4e01cc2674847c4c4eef86afee4ae3646b25d11d885befe01c43a34d60eff675eabefceba4664fbc211b3f014e315ea8e4c95f5088b82c590695616127cf63ebcee2fd78f3856443d3cb529376d34db3db1a6949cb7c80bc403ba92952b694dec72c540763ce3901d262087bf5a16a89c4151ce2d2d97eb77dce3d93d99e087bc5352cbda39935c686cf294c3ba66fab0135acb713281c90d562fc473df7133df5af7d42e183e4b860ee7b624038141ee757cb14db143ef8e8617eb6cb24a0eb73ef230e417d543f4afc5858c43ad20819bf6eda31bd5c258e66e9703a9b1daa8b34f9db16cae43b131ef258da25272320e2b357357b1d12fd87d9a00551185f3d494426d3f33b0ee84e1ae65508b9916fec12805783a857ac5d70a661fce59088437cf991821d3cf5b0db477dc8f6bb38c8455bb628e563ca45cb65383db9ecfc80386cd05f92ab32bf825a0953c101609ca8239b6ef1fb5a7fcc55642f9b2911df108d64b8c72c5bd31645955056968d4917cbab525ae5994b5dcbd33de392081819012a16be8c1b4f164fa6a1c2d88fd957bd62f28a3e87ba1ffcf644116ffdcf26937d4e64b4e87bd4771b9e0a8d8eba4605a8eac0f8e320b1204eeab358a5a5b2caf3e534c28f9da5598fedc5f13b4a7930a569439c3bc43ac5f5195a29280042278f194f84f8e5ee210223f8a486d568fe4a51bf8ef813c1bd02a669e4e0ea79d1e6bad48257ace2e7feba18123a5e67fd7212a341f92061df472db87f1158b0a2088e48a3680edc29ce3d3156108c04e3b16a1cf18cd70c5f5eeeb59824fb869906679eceb4a6ab8ec8733e72db06403f357e128e3383e2b35269b20f032cc21da717ba3febe02fba9f4893074ee2fd98e85499e36ffe2077348bc541548a34bc32fa0f7c00d84cabfd31e5c75b6769a1ba5770c5217cb03d1f0a8c91ba8d524b42c7365e09d94d95cf43f7ec896718f210fd0ba4ef91a5262daf7cd2bae3c2aad3e2eb925bec9ca7c1b874776dc28784a3719cb191cc317ff897698b2667081cc9db30c96c6510766b65c55c5fd4b8564faca924e6f52c2b181561ee5403184a822f0a207d747602f616c5513cabfe55e525b2bce4d662ae0b9ea68c015d6ca87bc752ed3e527826191a36d23e8032e15f65b3d60a517f16c4ece8bc8b09681bad96a5300f7e30e6848612d67ad853bc1523799c568e46b1dfe0d37cbc202c1332718cfadd4d6938bc0bfb21fc15ad19a0506f669d5c8790b685d81c4acbdb8e1b06918e934b459e3f2b46fe0999e6eae4185edac1cb3e85e8b61de24794d339014c03a285a3d7ba91e00bed2d63b0edb933c290ddd62fb1c56b6d08cb99f47dabd72a667805d63a7784450a1bd1af6dfc2ec785ddb8b86fe4a44a7c8f86c4b19a61fdb701a81bd720bb70f8657e256b0f531ab7848b6206ba7cd4c32b866735a4b46091a0bb6c47c923a3efa99a09c0344228ed412f94c4eca96e6bf6ee75f23a1ae8415a892ff19bd190e1d67b8e1212be638eb179176e4074435ed381a7c2faaee9acbcf873823abd906e92f308b36c6c259e43d13b328ded6bf3c1f4a93a76e9a6d0483875456cf8f30eda231d9f26d6b3861a3f2db165758b0d7aacb7b5a8e9f4d775798556cee8dbe8a94fae8df837f71d66a0aaa48df5c36afa9033ec5283e713806d5a07f82729f9e888d309b713db36256757292443f00f1af08058057373ae710d90cefa5872bbeac931ddd145ba9a64997c0bc53cc59a954f8ee2670caac75e2a63b5a1ca6ca6e3f9287f080b271f34b2e63be2ad4c2b85b7c9683245b12491d221314ab2685e2a44787733af58502245e19af646f65dd26b44dda320d583d9ddd6567d6021dc2d7d731963d6cc790d8b082889045cb749de9857ee4388d0f3c2ef83d405d0a2328bd7f76fa4d3d0a2e8238c979babe572ab3e8ae2768ca212bad33249523fa89fc0498f5f29a68aa7aae681e41284f46b47cc996679c4f1d9936647cb9b47ca8dac8e161b5cc0ff29f48f4a42b6a567f1116a5c239e67069b96862e2ba0cb3d424d4c4810cc1f3da1c61f39e7cca3e519159c057a440db9838f9f14351f64ec24c70a21a874da100af89d4753d274bd87c6574de363d44ee5aa37bb360b3acf347b3a72fac5e66c939daf4c6cbfacb43ab73229cc0badacc30b6c771bee9a7a8e36a5839cf5d68ffac084e69cb7bb34f71fc2244e5d16d056f97f581e3c50112e81d8410b6aa6b33b924cbafbc8dcb163f22f0e7b618ecd22296328e3fafdc2366e49a7ab08fa0d5b55c8aaffa8c9fc2899c07cabcf35748b0f30edb03a8a55807b6c73cd0b64cdd1a77ec0dcb8be359715b284a9476a0013d69c825274f45b6ffa59df58ca07756af102a6bb0efa1b4b356f89c504097cf79c76ca07d325375bfac4d7c8483cabd8d7c9141c96948c32ec87c231b69d6776160b8b31dada7e0837b4c2dc2ecb28f9b0400589c12cde99dc7db30a9d4c4f8a904f6b2f2fba1d0c36544f84db803bef904ec5b1f976345f67688df6e2d866d9eda4a87395b8953c0dc1e93ca742d2141b3591bb0bfdb56a0f8eabf710a3479d8b8f7e3f0e73a6fd29fc946909f77a6ad3044495e4d6e661bc633f4eb63204dd9f47ee85676ec0aa8b713819a280c27f086445d62f258379ffd77ced5d2c8cdf7d87135d6806f340a111f42b042058b96daa2633a6975dc0c5580f93a38e3daba8fdfb21fd94ebb30a2e165a75c1788c1cfe2687af2c3d3908514722e19afb385a74d6ac8cb12ca6232cde2e99d4ac651b280e65b3b897e39984a64d55eb4f65ab0912675c3f334d7c7ce6ecd84044125d98ef9eb6cf46c5d5d01b3ba01fa4bb5ff70ba1d18cba8b28f3980fca9c75441ada9122d497ac2e779277edece11bd175bf79657c37b982acb078591520792cf8278b75177ad1aad8133b2e4a61c561b42f6ab11ff8227d75303720d121ad3f3ad2e350b4cbfb6c5476e0f73e58dd25a18f3b50d0b30a629b2f5e053422c5a18decb3ad311ca978dcb53d44c64f43ceec7f803370a9b4b91e837371c4ed274d636423cb189cfe1302c6605142d5765239c6c86384b7c6de980764793956cacff762f8c4feaef7dee318a977e942e3a2ef45e220857162ac83b0fd4f1deef6510005737e7588dac6679fd8ae630d60bb9509d848f00939134f0c52b2b122bcf7e46ce5ca2592d649ff00252e57d9541bafdfeb6492113f401eb428e543168a96bd06b31a9becd8f0fbb2b89d19479411bbe4e265480cf2a6f34e5bc02a98b9f29b8adc10f9096aa5096fe12ef67d9690388459664f9583095f9bef69f9725a76a2bab82cdefe92fefa283ad56c21ab3e8ea602130ad2d831c0a4fbbb7779476e74674034c6051272ca292540de9bfcb34536604865c759b639c6f1e5", 0xff8)

0s ago: executing program 1 (id=638):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x4, 0x103)
removexattr(0x0, 0x0)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
r1 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x848802, 0x0)
ioctl$RNDADDENTROPY(r1, 0x40085203, &(0x7f00000000c0)=ANY=[@ANYBLOB="13a18c04cbece8", @ANYRES16=r1, @ANYRESHEX=r1])
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xc, 0xe, &(0x7f0000000b00)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
accept4$phonet_pipe(0xffffffffffffffff, &(0x7f0000000040), &(0x7f00000001c0)=0x10, 0x80000)
r2 = syz_io_uring_setup(0x24b9, &(0x7f00000002c0)={0x0, 0x55d5, 0x10100}, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0xa3d, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f00000003c0)={{0x2, 0x4e20, @empty}, {0x0, @random="7ff11bf330c0"}, 0x18, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}})
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000240)={0x0, <r6=>0x0}, &(0x7f0000000280)=0x5)
setuid(r6)
r7 = socket$netlink(0x10, 0x3, 0x4)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r8=>0x0}, &(0x7f0000cab000)=0xc)
setfsgid(r8)
r9 = getuid()
r10 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r11=>r0, {0x4}}, './file0\x00'})
getsockopt$inet_sctp_SCTP_NODELAY(r11, 0x84, 0x3, &(0x7f0000000140), &(0x7f0000000340)=0x4)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r10, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r10, &(0x7f0000002140)={0x2020, 0x0, 0x0, <r12=>0x0, <r13=>0x0}, 0x2020)
syz_fuse_handle_req(r10, &(0x7f0000006180)="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", 0x2000, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0xb, {0x3, 0x3, 0x1, 0x3, 0x6, 0x7a13, {0x1, 0x400, 0x3ff, 0xfffffffffffffffd, 0x0, 0x100000000, 0x0, 0x4d, 0x9585, 0x2000, 0x8, r12, r13, 0x1d60, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
mount$fuseblk(&(0x7f0000000000), &(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000080), 0x1000041, &(0x7f00000001c0)={{}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id', 0x3d, r6}, 0x2c, {'group_id', 0x3d, r8}, 0x2c, {[{@default_permissions}, {@allow_other}, {}, {@default_permissions}, {@default_permissions}, {@blksize={'blksize', 0x3d, 0xb00}}], [{@subj_role={'subj_role', 0x3d, '&\xcb[+({'}}, {@euid_gt={'euid>', r9}}, {@fowner_gt={'fowner>', r12}}]}})
r14 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r14, 0x401c5820, 0x0)

kernel console output (not intermixed with test programs):

0x10/0x10
[   80.358228][ T6781]  ? __pfx_lock_release+0x10/0x10
[   80.359767][ T6781]  ? trace_lock_acquire+0x14e/0x1f0
[   80.361492][ T6781]  ? __fget_files+0x206/0x3a0
[   80.362914][ T6781]  __sys_sendmsg+0x16e/0x220
[   80.364298][ T6781]  ? __pfx___sys_sendmsg+0x10/0x10
[   80.365892][ T6781]  __do_fast_syscall_32+0x73/0x120
[   80.367433][ T6781]  do_fast_syscall_32+0x32/0x80
[   80.368954][ T6781]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.370874][ T6781] RIP: 0023:0xf7f58579
[   80.372231][ T6781] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.378088][ T6781] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   80.380629][ T6781] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020004bc0
[   80.383102][ T6781] RDX: 0000000000044084 RSI: 0000000000000000 RDI: 0000000000000000
[   80.386054][ T6781] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   80.389229][ T6781] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.391701][ T6781] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.394108][ T6781]  </TASK>
[   80.400096][ T6790] binder: BINDER_SET_CONTEXT_MGR already set
[   80.402507][ T6790] binder: 6789:6790 ioctl 4018620d 20004a80 returned -16
[   80.488909][ T6797] overlayfs: failed to resolve './file1': -2
[   80.534213][ T6795] FAULT_INJECTION: forcing a failure.
[   80.534213][ T6795] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   80.539143][ T6795] CPU: 2 UID: 0 PID: 6795 Comm: syz.3.140 Not tainted 6.13.0-rc7-syzkaller #0
[   80.542476][ T6795] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.546565][ T6795] Call Trace:
[   80.547828][ T6795]  <TASK>
[   80.548751][ T6795]  dump_stack_lvl+0x16c/0x1f0
[   80.550341][ T6795]  should_fail_ex+0x497/0x5b0
[   80.551738][ T6795]  _copy_from_user+0x2e/0xd0
[   80.553628][ T6795]  __do_compat_sys_socketcall+0x14f/0x700
[   80.555782][ T6795]  ? __fget_files+0x206/0x3a0
[   80.557613][ T6795]  ? __pfx___do_compat_sys_socketcall+0x10/0x10
[   80.560007][ T6795]  ? fput+0x67/0x440
[   80.561532][ T6795]  __do_fast_syscall_32+0x73/0x120
[   80.563433][ T6795]  do_fast_syscall_32+0x32/0x80
[   80.565316][ T6795]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.567745][ T6795] RIP: 0023:0xf7f58579
[   80.569319][ T6795] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.576526][ T6795] RSP: 002b:00000000f5084440 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[   80.579689][ T6795] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f508445c
[   80.582693][ T6795] RDX: 0000000000000000 RSI: 00000000f5084560 RDI: 00000000f73e3ff4
[   80.585681][ T6795] RBP: 00000000f5084560 R08: 0000000000000000 R09: 0000000000000000
[   80.588724][ T6795] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.591726][ T6795] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.594442][ T6795]  </TASK>
[   80.840202][ T6803] can0: slcan on ttyS3.
[   81.104727][  T835] cfg80211: failed to load regulatory.db
[   81.166631][   T39] audit: type=1326 audit(1736781172.165:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.172917][   T39] audit: type=1326 audit(1736781172.165:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.178954][   T39] audit: type=1326 audit(1736781172.165:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=80 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.185451][   T39] audit: type=1326 audit(1736781172.165:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.191487][   T39] audit: type=1326 audit(1736781172.165:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.197643][   T39] audit: type=1326 audit(1736781172.165:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.203911][   T39] audit: type=1326 audit(1736781172.165:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.209993][   T39] audit: type=1326 audit(1736781172.165:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.216001][   T39] audit: type=1326 audit(1736781172.165:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.0.144" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[   81.276478][ T6819] netlink: 24 bytes leftover after parsing attributes in process `syz.2.145'.
[   82.101400][ T6826] vivid-001: disconnect
[   82.109124][ T6825] vivid-001: reconnect
[   82.382073][   T25] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   82.382089][ T6800] can0 (unregistered): slcan off ttyS3.
[   82.402719][ T6845] FAULT_INJECTION: forcing a failure.
[   82.402719][ T6845] name failslab, interval 1, probability 0, space 0, times 0
[   82.406878][ T6845] CPU: 0 UID: 0 PID: 6845 Comm: syz.3.152 Not tainted 6.13.0-rc7-syzkaller #0
[   82.409439][ T6845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.412475][ T6845] Call Trace:
[   82.413441][ T6845]  <TASK>
[   82.414300][ T6845]  dump_stack_lvl+0x16c/0x1f0
[   82.415663][ T6845]  should_fail_ex+0x497/0x5b0
[   82.417111][ T6845]  ? fs_reclaim_acquire+0xae/0x150
[   82.418672][ T6845]  should_failslab+0xc2/0x120
[   82.420056][ T6845]  __kmalloc_noprof+0xce/0x4f0
[   82.421434][ T6845]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   82.423499][ T6845]  ? lockdep_hardirqs_on+0x7c/0x110
[   82.425569][ T6845]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   82.427719][ T6845]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   82.429303][ T6845]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   82.431030][ T6845]  ? genl_get_cmd+0x195/0x580
[   82.432377][ T6845]  ? bpf_lsm_capable+0x9/0x10
[   82.433733][ T6845]  ? security_capable+0x7e/0x260
[   82.435158][ T6845]  ? ns_capable+0xd7/0x110
[   82.437158][ T6845]  genl_rcv_msg+0x565/0x800
[   82.438716][ T6845]  ? __pfx_genl_rcv_msg+0x10/0x10
[   82.441383][ T6845]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   82.443852][ T6845]  ? __pfx_nl80211_trigger_scan+0x10/0x10
[   82.446387][ T6845]  ? __pfx_nl80211_post_doit+0x10/0x10
[   82.448603][ T6845]  netlink_rcv_skb+0x165/0x410
[   82.450517][ T6845]  ? __pfx_genl_rcv_msg+0x10/0x10
[   82.451987][ T6845]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   82.453528][ T6845]  ? down_read+0xc9/0x330
[   82.454779][ T6845]  ? __pfx_down_read+0x10/0x10
[   82.456187][ T6845]  ? netlink_deliver_tap+0x1ae/0xca0
[   82.457755][ T6845]  genl_rcv+0x28/0x40
[   82.458931][ T6845]  netlink_unicast+0x53c/0x7f0
[   82.460308][ T6845]  ? __pfx_netlink_unicast+0x10/0x10
[   82.461883][ T6845]  ? __phys_addr_symbol+0x30/0x80
[   82.463409][ T6845]  ? __check_object_size+0x488/0x710
[   82.464905][ T6845]  netlink_sendmsg+0x8b8/0xd70
[   82.466286][ T6845]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.467876][ T6845]  ____sys_sendmsg+0x9ae/0xb40
[   82.469286][ T6845]  ? __pfx_____sys_sendmsg+0x10/0x10
[   82.470803][ T6845]  ? get_compat_msghdr+0x11b/0x170
[   82.472256][ T6845]  ___sys_sendmsg+0x135/0x1e0
[   82.473613][ T6845]  ? __pfx____sys_sendmsg+0x10/0x10
[   82.475099][ T6845]  ? __pfx_lock_release+0x10/0x10
[   82.476550][ T6845]  ? trace_lock_acquire+0x14e/0x1f0
[   82.478087][ T6845]  ? __fget_files+0x206/0x3a0
[   82.479450][ T6845]  __sys_sendmsg+0x16e/0x220
[   82.480891][ T6845]  ? __pfx___sys_sendmsg+0x10/0x10
[   82.482363][ T6845]  __do_fast_syscall_32+0x73/0x120
[   82.483817][ T6845]  do_fast_syscall_32+0x32/0x80
[   82.485219][ T6845]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.487098][ T6845] RIP: 0023:0xf7f58579
[   82.488329][ T6845] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.493751][ T6845] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   82.496097][ T6845] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000e80
[   82.498949][ T6845] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[   82.501196][ T6845] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.503437][ T6845] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   82.505678][ T6845] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.507959][ T6845]  </TASK>
[   82.562399][   T25] usb 5-1: Using ep0 maxpacket: 8
[   82.565500][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   82.568637][   T25] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   82.571235][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.574979][   T25] usb 5-1: config 0 descriptor??
[   82.741512][  T835] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   82.783138][   T25] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   82.893578][  T835] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   82.897200][  T835] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   82.900191][  T835] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.907921][ T6854] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   82.912536][  T835] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   83.116556][ T6005] usb 6-1: USB disconnect, device number 3
[   84.071956][  T835] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[   84.211546][   T57] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   84.231468][  T835] usb 8-1: Using ep0 maxpacket: 8
[   84.233501][  T835] usb 8-1: too many configurations: 59, using maximum allowed: 8
[   84.237007][  T835] usb 8-1: unable to read config index 0 descriptor/start: -61
[   84.239221][  T835] usb 8-1: can't read configurations, error -61
[   84.391749][   T57] usb 6-1: Using ep0 maxpacket: 8
[   84.393363][  T835] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[   84.397095][   T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 32, changing to 9
[   84.400211][   T57] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   84.404208][   T57] usb 6-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[   84.406862][   T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.410298][   T57] usb 6-1: config 0 descriptor??
[   84.513065][ T6903] binder: 6902:6903 ioctl c0306201 0 returned -14
[   84.516581][ T6903] binder_alloc: 6902: binder_alloc_buf, no vma
[   84.542645][  T835] usb 8-1: Using ep0 maxpacket: 8
[   84.549369][  T835] usb 8-1: too many configurations: 59, using maximum allowed: 8
[   84.553083][  T835] usb 8-1: unable to read config index 0 descriptor/start: -61
[   84.555306][  T835] usb 8-1: can't read configurations, error -61
[   84.558041][  T835] usb usb8-port1: attempt power cycle
[   84.619679][   T57] usbhid 6-1:0.0: can't add hid device: -71
[   84.623095][   T57] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[   84.627670][   T57] usb 6-1: USB disconnect, device number 4
[   84.891516][  T835] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[   84.912310][  T835] usb 8-1: Using ep0 maxpacket: 8
[   84.914369][  T835] usb 8-1: too many configurations: 59, using maximum allowed: 8
[   84.917917][  T835] usb 8-1: unable to read config index 0 descriptor/start: -61
[   84.920147][  T835] usb 8-1: can't read configurations, error -61
[   85.053666][  T835] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[   85.072029][  T835] usb 8-1: Using ep0 maxpacket: 8
[   85.074036][  T835] usb 8-1: too many configurations: 59, using maximum allowed: 8
[   85.077502][  T835] usb 8-1: unable to read config index 0 descriptor/start: -61
[   85.079753][  T835] usb 8-1: can't read configurations, error -61
[   85.081855][  T835] usb usb8-port1: unable to enumerate USB device
[   85.162196][ T1466] usb 5-1: USB disconnect, device number 3
[   85.386596][ T6915] ICMPv6: NA: fd:f9:a6:84:a5:1b advertised our address fe80::aa on syz_tun!
[   85.573203][ T6924] can0: slcan on ttyS3.
[   85.644236][   T73] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   85.791497][   T73] usb 5-1: Using ep0 maxpacket: 8
[   85.793439][   T73] usb 5-1: too many configurations: 255, using maximum allowed: 8
[   85.797170][   T73] usb 5-1: unable to read config index 0 descriptor/start: -61
[   85.799422][   T73] usb 5-1: can't read configurations, error -61
[   85.943127][   T73] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   86.094065][   T73] usb 5-1: Using ep0 maxpacket: 8
[   86.096289][   T73] usb 5-1: too many configurations: 255, using maximum allowed: 8
[   86.100088][   T73] usb 5-1: unable to read config index 0 descriptor/start: -61
[   86.104272][   T73] usb 5-1: can't read configurations, error -61
[   86.106853][   T73] usb usb5-port1: attempt power cycle
[   86.392480][ T6918] can0 (unregistered): slcan off ttyS3.
[   86.451561][   T73] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   86.473664][   T73] usb 5-1: Using ep0 maxpacket: 8
[   86.476473][   T73] usb 5-1: too many configurations: 255, using maximum allowed: 8
[   86.480755][   T73] usb 5-1: unable to read config index 0 descriptor/start: -61
[   86.483024][   T73] usb 5-1: can't read configurations, error -61
[   86.621539][   T73] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   86.642234][   T73] usb 5-1: Using ep0 maxpacket: 8
[   86.644921][   T73] usb 5-1: too many configurations: 255, using maximum allowed: 8
[   86.649483][   T73] usb 5-1: unable to read config index 0 descriptor/start: -61
[   86.651772][   T73] usb 5-1: can't read configurations, error -61
[   86.653885][   T73] usb usb5-port1: unable to enumerate USB device
[   86.686943][ T6955] can0: slcan on ttyS3.
[   86.852625][ T6967] netlink: 44 bytes leftover after parsing attributes in process `syz.3.184'.
[   86.855219][ T6967] netlink: 59 bytes leftover after parsing attributes in process `syz.3.184'.
[   87.031539][ T1466] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   87.191549][ T1466] usb 7-1: Using ep0 maxpacket: 8
[   87.194687][ T1466] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   87.197821][ T1466] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   87.200418][ T1466] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.206868][ T1466] usb 7-1: config 0 descriptor??
[   87.382072][ T6952] can0 (unregistered): slcan off ttyS3.
[   87.416152][ T1466] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   88.457473][   T39] kauditd_printk_skb: 26 callbacks suppressed
[   88.457531][   T39] audit: type=1326 audit(1736781180.451:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.466718][   T39] audit: type=1326 audit(1736781180.451:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.475892][   T39] audit: type=1326 audit(1736781180.451:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.484138][   T39] audit: type=1326 audit(1736781180.451:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.493458][   T39] audit: type=1326 audit(1736781180.451:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.501790][   T39] audit: type=1326 audit(1736781180.451:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.509698][   T39] audit: type=1326 audit(1736781180.451:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.517962][   T39] audit: type=1326 audit(1736781180.451:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.525839][   T39] audit: type=1326 audit(1736781180.451:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   88.533545][   T39] audit: type=1326 audit(1736781180.471:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.1.192" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[   89.136010][ T7033] binder_alloc: 7032: binder_alloc_buf, no vma
[   89.411145][ T7047] usb usb7: usbfs: process 7047 (syz.1.205) did not claim interface 0 before use
[   89.451591][ T6073] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[   89.497860][ T7053] FAULT_INJECTION: forcing a failure.
[   89.497860][ T7053] name failslab, interval 1, probability 0, space 0, times 0
[   89.502838][ T7053] CPU: 2 UID: 0 PID: 7053 Comm: syz.1.208 Not tainted 6.13.0-rc7-syzkaller #0
[   89.506351][ T7053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.510555][ T7053] Call Trace:
[   89.511884][ T7053]  <TASK>
[   89.512771][ T7053]  dump_stack_lvl+0x16c/0x1f0
[   89.514134][ T7053]  should_fail_ex+0x497/0x5b0
[   89.515772][ T7053]  ? fs_reclaim_acquire+0xae/0x150
[   89.517807][ T7053]  should_failslab+0xc2/0x120
[   89.519680][ T7053]  __kmalloc_noprof+0xce/0x4f0
[   89.521481][ T7053]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   89.523516][ T7053]  ? tomoyo_realpath_from_path+0xbf/0x710
[   89.525305][ T7053]  tomoyo_realpath_from_path+0xbf/0x710
[   89.527305][ T7053]  ? tomoyo_path_number_perm+0x235/0x5b0
[   89.528961][ T7053]  tomoyo_path_number_perm+0x248/0x5b0
[   89.530540][ T7053]  ? tomoyo_path_number_perm+0x235/0x5b0
[   89.532585][ T7053]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   89.534875][ T7053]  ? __pfx_lock_release+0x10/0x10
[   89.536924][ T7053]  ? trace_lock_acquire+0x14e/0x1f0
[   89.539088][ T7053]  ? lock_acquire+0x2f/0xb0
[   89.540906][ T7053]  ? __fget_files+0x40/0x3a0
[   89.542744][ T7053]  ? __fget_files+0x206/0x3a0
[   89.544600][ T7053]  security_file_ioctl_compat+0x9b/0x240
[   89.546838][ T7053]  __do_compat_sys_ioctl+0x4e/0x2c0
[   89.548973][ T7053]  __do_fast_syscall_32+0x73/0x120
[   89.550977][ T7053]  do_fast_syscall_32+0x32/0x80
[   89.552836][ T7053]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.555289][ T7053] RIP: 0023:0xf7f01579
[   89.556851][ T7053] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.564109][ T7053] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   89.567400][ T7053] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080085504
[   89.570482][ T7053] RDX: 0000000020000140 RSI: 0000000000000000 RDI: 0000000000000000
[   89.573506][ T7053] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.576574][ T7053] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.579620][ T7053] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.582706][ T7053]  </TASK>
[   89.585887][ T7053] ERROR: Out of memory at tomoyo_realpath_from_path.
[   89.588407][ T7053] usb usb7: usbfs: process 7053 (syz.1.208) did not claim interface 0 before use
[   89.601520][ T6073] usb 8-1: Using ep0 maxpacket: 8
[   89.604488][ T6073] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   89.607637][ T6073] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   89.610628][ T6073] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   89.614365][ T6073] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   89.618835][ T6073] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   89.623003][ T6073] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   89.625820][ T6073] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.816282][    T9] usb 7-1: USB disconnect, device number 2
[   89.873773][ T7060] binder_alloc: 7059: binder_alloc_buf, no vma
[   89.918230][ T6073] usb 8-1: usb_control_msg returned -32
[   89.920623][ T6073] usbtmc 8-1:16.0: can't read capabilities
[   89.977131][ T7065] netlink: 8 bytes leftover after parsing attributes in process `syz.2.212'.
[   89.985169][ T7067] kernel read not supported for file /ã (pid: 7067 comm: syz.2.212)
[   90.766351][ T7093] binder_alloc: 7092: binder_alloc_buf, no vma
[   91.082286][   T25] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   91.231567][   T25] usb 5-1: Using ep0 maxpacket: 16
[   91.234371][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   91.238558][   T25] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   91.243021][   T25] usb 5-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[   91.245668][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.249684][   T25] usb 5-1: config 0 descriptor??
[   91.256787][   T25] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input7
[   91.458886][    T9] usb 5-1: USB disconnect, device number 8
[   92.447223][    T9] usb 8-1: USB disconnect, device number 9
[   93.704286][ T7130] can0: slcan on ttyS3.
[   94.372444][ T7123] Bluetooth: MGMT ver 1.23
[   95.022328][ T7128] can0 (unregistered): slcan off ttyS3.
[   95.216138][ T7163] netlink: 8 bytes leftover after parsing attributes in process `syz.0.232'.
[   95.233034][ T7161] netlink: 8 bytes leftover after parsing attributes in process `syz.3.231'.
[   95.247656][ T7163] FAULT_INJECTION: forcing a failure.
[   95.247656][ T7163] name failslab, interval 1, probability 0, space 0, times 0
[   95.260354][ T7163] CPU: 2 UID: 0 PID: 7163 Comm: syz.0.232 Not tainted 6.13.0-rc7-syzkaller #0
[   95.265752][ T7165] overlayfs: missing 'lowerdir'
[   95.268677][ T7163] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.268694][ T7163] Call Trace:
[   95.268703][ T7163]  <TASK>
[   95.268711][ T7163]  dump_stack_lvl+0x16c/0x1f0
[   95.268740][ T7163]  should_fail_ex+0x497/0x5b0
[   95.268763][ T7163]  ? fs_reclaim_acquire+0xae/0x150
[   95.268783][ T7163]  should_failslab+0xc2/0x120
[   95.268807][ T7163]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   95.268828][ T7163]  ? __alloc_skb+0x2b3/0x380
[   95.268852][ T7163]  __alloc_skb+0x2b3/0x380
[   95.268873][ T7163]  ? __pfx___alloc_skb+0x10/0x10
[   95.268900][ T7163]  netlink_ack+0x164/0xb20
[   95.268924][ T7163]  netlink_rcv_skb+0x327/0x410
[   95.268942][ T7163]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   95.268963][ T7163]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   95.268980][ T7163]  ? __pfx_aa_get_newest_label+0x10/0x10
[   95.269022][ T7163]  ? bpf_lsm_capable+0x9/0x10
[   95.269040][ T7163]  ? security_capable+0x7e/0x260
[   95.269064][ T7163]  ? ns_capable+0xd7/0x110
[   95.269083][ T7163]  nfnetlink_rcv+0x1b4/0x430
[   95.269102][ T7163]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   95.269119][ T7163]  ? netlink_deliver_tap+0x1ae/0xca0
[   95.269139][ T7163]  netlink_unicast+0x53c/0x7f0
[   95.269161][ T7163]  ? __pfx_netlink_unicast+0x10/0x10
[   95.269180][ T7163]  ? __phys_addr_symbol+0x30/0x80
[   95.269201][ T7163]  ? __check_object_size+0x488/0x710
[   95.269226][ T7163]  netlink_sendmsg+0x8b8/0xd70
[   95.269247][ T7163]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.269273][ T7163]  ____sys_sendmsg+0x9ae/0xb40
[   95.269293][ T7163]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.269311][ T7163]  ? get_compat_msghdr+0x11b/0x170
[   95.269338][ T7163]  ___sys_sendmsg+0x135/0x1e0
[   95.269363][ T7163]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.269395][ T7163]  ? __pfx_lock_release+0x10/0x10
[   95.269412][ T7163]  ? trace_lock_acquire+0x14e/0x1f0
[   95.269440][ T7163]  ? __fget_files+0x206/0x3a0
[   95.269466][ T7163]  __sys_sendmsg+0x16e/0x220
[   95.269490][ T7163]  ? __pfx___sys_sendmsg+0x10/0x10
[   95.269527][ T7163]  __do_fast_syscall_32+0x73/0x120
[   95.269552][ T7163]  do_fast_syscall_32+0x32/0x80
[   95.269574][ T7163]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.269599][ T7163] RIP: 0023:0xf7fe2579
[   95.269615][ T7163] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.269630][ T7163] RSP: 002b:00000000f513655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   95.269649][ T7163] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0
[   95.269660][ T7163] RDX: 00000000040c0080 RSI: 0000000000000000 RDI: 0000000000000000
[   95.269671][ T7163] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.269681][ T7163] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.269691][ T7163] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.269712][ T7163]  </TASK>
[   95.335828][ T7161] netlink: 8 bytes leftover after parsing attributes in process `syz.3.231'.
[   95.940374][ T7177] input: syz0 as /devices/virtual/input/input8
[   96.102637][    T9] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   96.137907][ T7184] netlink: 4 bytes leftover after parsing attributes in process `syz.3.239'.
[   96.152491][ T7182] netlink: 44 bytes leftover after parsing attributes in process `syz.1.238'.
[   96.160770][ T7182] netlink: 59 bytes leftover after parsing attributes in process `syz.1.238'.
[   96.260203][ T7185] FAULT_INJECTION: forcing a failure.
[   96.260203][ T7185] name failslab, interval 1, probability 0, space 0, times 0
[   96.310288][ T7185] CPU: 0 UID: 0 PID: 7185 Comm: syz.3.239 Not tainted 6.13.0-rc7-syzkaller #0
[   96.313569][ T7185] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.317662][ T7185] Call Trace:
[   96.319866][ T7185]  <TASK>
[   96.322796][ T7185]  dump_stack_lvl+0x16c/0x1f0
[   96.326728][ T7185]  should_fail_ex+0x497/0x5b0
[   96.329471][ T7185]  ? __pfx_lock_release+0x10/0x10
[   96.332457][ T7185]  should_failslab+0xc2/0x120
[   96.335253][ T7185]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   96.337990][ T7185]  ? __nf_conntrack_alloc+0xd1/0x5e0
[   96.340814][ T7185]  __nf_conntrack_alloc+0xd1/0x5e0
[   96.344649][ T7185]  init_conntrack.constprop.0+0xd3e/0x1080
[   96.348450][ T7185]  ? __pfx_init_conntrack.constprop.0+0x10/0x10
[   96.352606][ T7185]  ? __pfx_hash_conntrack_raw+0x10/0x10
[   96.355989][ T7185]  ? __local_bh_enable_ip+0xa4/0x120
[   96.361251][ T7185]  ? lockdep_hardirqs_on+0x7c/0x110
[   96.369850][ T7185]  nf_conntrack_in+0xafb/0x1850
[   96.373110][ T7185]  ? __pfx_nf_conntrack_in+0x10/0x10
[   96.380249][ T7185]  ? __pfx_ipt_do_table+0x10/0x10
[   96.382815][ T7185]  ? rcu_is_watching+0x12/0xc0
[   96.389758][ T7185]  ? __pfx_ipv4_conntrack_local+0x10/0x10
[   96.392531][ T7185]  ipv4_conntrack_local+0x160/0x250
[   96.400030][ T7185]  nf_hook_slow+0xbb/0x200
[   96.402753][ T7185]  nf_hook+0x386/0x6d0
[   96.409897][ T7185]  ? __pfx_dst_output+0x10/0x10
[   96.414880][ T7185]  ? __pfx_nf_hook+0x10/0x10
[   96.417232][ T7185]  ? __pfx_dst_output+0x10/0x10
[   96.419651][ T7185]  ? ip_make_skb+0x1e2/0x300
[   96.421868][ T7185]  ? do_csum+0x26f/0x2d0
[   96.423944][ T7185]  __ip_local_out+0x339/0x640
[   96.426407][ T7185]  ? __pfx_dst_output+0x10/0x10
[   96.429018][ T7185]  ip_send_skb+0x4a/0x560
[   96.431122][ T7185]  udp_send_skb+0x6f1/0x1510
[   96.440600][ T7185]  udp_sendmsg+0x1899/0x29b0
[   96.442941][ T7185]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   96.445686][ T7185]  ? __pfx_udp_sendmsg+0x10/0x10
[   96.449058][ T7185]  ? __pfx___might_resched+0x10/0x10
[   96.459407][ T7185]  ? aa_sk_perm+0x2f5/0xb20
[   96.462158][ T7185]  ? __import_iovec+0x1f2/0x6d0
[   96.465000][ T7185]  ? __pfx_udp_sendmsg+0x10/0x10
[   96.468040][ T7185]  inet_sendmsg+0x105/0x140
[   96.470678][ T7185]  ____sys_sendmsg+0x907/0xb40
[   96.473493][ T7185]  ? __pfx_____sys_sendmsg+0x10/0x10
[   96.476568][ T7185]  ? get_compat_msghdr+0x11b/0x170
[   96.479471][ T7185]  ___sys_sendmsg+0x135/0x1e0
[   96.481904][ T7185]  ? __pfx____sys_sendmsg+0x10/0x10
[   96.484370][ T7185]  ? trace_lock_acquire+0x14e/0x1f0
[   96.486869][ T7185]  __sys_sendmmsg+0x2fa/0x420
[   96.489166][ T7185]  ? __pfx___sys_sendmmsg+0x10/0x10
[   96.491922][ T7185]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   96.501202][ T7185]  ? fput+0x67/0x440
[   96.503213][ T7185]  ? ksys_write+0x1ba/0x250
[   96.505571][ T7185]  ? __pfx_ksys_write+0x10/0x10
[   96.509760][ T7185]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   96.520575][ T7185]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   96.523643][ T7185]  __do_fast_syscall_32+0x73/0x120
[   96.526352][ T7185]  do_fast_syscall_32+0x32/0x80
[   96.539140][ T7185]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   96.543800][ T7185] RIP: 0023:0xf7f58579
[   96.547378][ T7185] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   96.560176][ T7185] RSP: 002b:00000000f508555c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   96.569699][ T7185] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020007fc0
[   96.572715][ T7185] RDX: 000000000800001d RSI: 0000000000000000 RDI: 0000000000000000
[   96.575830][ T7185] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   96.594194][ T7185] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   96.597944][ T7185] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   96.602054][ T7185]  </TASK>
[   96.626893][ T7187] netlink: 4 bytes leftover after parsing attributes in process `syz.3.239'.
[   96.802032][    T9] usb 7-1: Using ep0 maxpacket: 8
[   96.829088][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   96.835190][    T9] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   96.839773][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.890578][    T9] usb 7-1: config 0 descriptor??
[   97.339727][    T9] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   98.315462][ T7198] can0: slcan on ttyS3.
[   98.847250][ T7192] can0 (unregistered): slcan off ttyS3.
[   98.951413][  T834] usb 7-1: USB disconnect, device number 3
[   99.066501][ T7218] overlayfs: missing 'lowerdir'
[   99.380612][ T7224] netlink: 4 bytes leftover after parsing attributes in process `syz.0.246'.
[   99.389057][ T7222] netlink: 8 bytes leftover after parsing attributes in process `syz.2.247'.
[   99.412762][ T7222] FAULT_INJECTION: forcing a failure.
[   99.412762][ T7222] name failslab, interval 1, probability 0, space 0, times 0
[   99.418092][ T7222] CPU: 2 UID: 0 PID: 7222 Comm: syz.2.247 Not tainted 6.13.0-rc7-syzkaller #0
[   99.422384][ T7222] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   99.430591][ T7222] Call Trace:
[   99.432023][ T7222]  <TASK>
[   99.433215][ T7222]  dump_stack_lvl+0x16c/0x1f0
[   99.457864][ T7222]  should_fail_ex+0x497/0x5b0
[   99.461428][ T7222]  ? fs_reclaim_acquire+0xae/0x150
[   99.463326][ T7222]  should_failslab+0xc2/0x120
[   99.469311][ T7222]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   99.481166][ T7222]  ? __alloc_skb+0x2b3/0x380
[   99.483510][ T7222]  __alloc_skb+0x2b3/0x380
[   99.485795][ T7222]  ? __pfx___alloc_skb+0x10/0x10
[   99.501714][ T7222]  netlink_ack+0x164/0xb20
[   99.509118][ T7222]  netlink_rcv_skb+0x327/0x410
[   99.511197][ T7222]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   99.519812][ T7222]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   99.522618][ T7222]  ? __pfx_aa_get_newest_label+0x10/0x10
[   99.525193][ T7222]  ? bpf_lsm_capable+0x9/0x10
[   99.530953][ T7222]  ? security_capable+0x7e/0x260
[   99.542035][ T7222]  ? ns_capable+0xd7/0x110
[   99.548757][ T7222]  nfnetlink_rcv+0x1b4/0x430
[   99.550648][ T7222]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   99.560772][ T7222]  ? netlink_deliver_tap+0x1ae/0xca0
[   99.566843][ T7222]  netlink_unicast+0x53c/0x7f0
[   99.572736][ T7222]  ? __pfx_netlink_unicast+0x10/0x10
[   99.575000][ T7222]  ? __phys_addr_symbol+0x30/0x80
[   99.584169][ T7222]  ? __check_object_size+0x488/0x710
[   99.587248][ T7222]  netlink_sendmsg+0x8b8/0xd70
[   99.594241][ T7222]  ? __pfx_netlink_sendmsg+0x10/0x10
[   99.596307][ T7222]  ____sys_sendmsg+0x9ae/0xb40
[   99.602817][ T7222]  ? __pfx_____sys_sendmsg+0x10/0x10
[   99.609479][ T7222]  ? get_compat_msghdr+0x11b/0x170
[   99.622390][ T7222]  ___sys_sendmsg+0x135/0x1e0
[   99.624705][ T7222]  ? __pfx____sys_sendmsg+0x10/0x10
[   99.627391][ T7222]  ? __pfx_lock_release+0x10/0x10
[   99.629880][ T7222]  ? trace_lock_acquire+0x14e/0x1f0
[   99.632746][ T7222]  ? __fget_files+0x206/0x3a0
[   99.635026][ T7222]  __sys_sendmsg+0x16e/0x220
[   99.637268][ T7222]  ? __pfx___sys_sendmsg+0x10/0x10
[   99.639384][ T7222]  __do_fast_syscall_32+0x73/0x120
[   99.641901][ T7222]  do_fast_syscall_32+0x32/0x80
[   99.644609][ T7222]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   99.647444][ T7222] RIP: 0023:0xf7ff6579
[   99.649339][ T7222] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   99.657594][ T7222] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   99.660772][ T7222] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0
[   99.665012][ T7222] RDX: 00000000040c0080 RSI: 0000000000000000 RDI: 0000000000000000
[   99.669323][ T7222] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   99.673588][ T7222] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   99.678564][ T7222] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   99.683390][ T7222]  </TASK>
[   99.797583][ T7229] netlink: 8 bytes leftover after parsing attributes in process `syz.2.248'.
[  100.397238][ T7231] __nla_validate_parse: 1 callbacks suppressed
[  100.397255][ T7231] netlink: 44 bytes leftover after parsing attributes in process `syz.0.249'.
[  100.426665][ T7231] netlink: 59 bytes leftover after parsing attributes in process `syz.0.249'.
[  100.477805][ T7233] netlink: 268 bytes leftover after parsing attributes in process `syz.1.250'.
[  100.509085][ T7233] netlink: 4 bytes leftover after parsing attributes in process `syz.1.250'.
[  100.514056][ T7233] netlink: 810 bytes leftover after parsing attributes in process `syz.1.250'.
[  101.854770][ T6011] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  102.234264][  T166] Bluetooth: hci4: Frame reassembly failed (-84)
[  102.668570][ T6011] usb 5-1: Using ep0 maxpacket: 8
[  102.712194][ T6011] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  102.756222][ T6011] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  102.814869][ T6011] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.837507][ T6011] usb 5-1: config 0 descriptor??
[  102.994140][ T7254] binder_alloc: 7253: binder_alloc_buf, no vma
[  103.114231][ T6011] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  103.678729][ T7265] netlink: 4 bytes leftover after parsing attributes in process `syz.3.259'.
[  103.827297][ T7267] netlink: 4 bytes leftover after parsing attributes in process `syz.3.259'.
[  104.312087][ T5952] Bluetooth: hci4: command 0x1003 tx timeout
[  104.385782][   T65] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  104.661997][   T35] usb 5-1: USB disconnect, device number 9
[  104.877665][ T7275] netlink: 44 bytes leftover after parsing attributes in process `syz.0.261'.
[  104.881601][ T7275] netlink: 59 bytes leftover after parsing attributes in process `syz.0.261'.
[  105.683753][  T835] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  105.706326][ T7280] binder_alloc: 7279: binder_alloc_buf, no vma
[  105.851726][  T835] usb 6-1: Using ep0 maxpacket: 8
[  105.855229][  T835] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  105.859216][  T835] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  105.864083][  T835] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.878195][  T835] usb 6-1: config 0 descriptor??
[  105.972382][ T7284] loop9: detected capacity change from 0 to 6
[  105.976663][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  105.981964][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  105.994607][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.001002][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.005446][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.010943][ T7284] ldm_validate_partition_table(): Disk read failed.
[  106.014321][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.022433][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.027683][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.035101][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.039462][ T7284] Dev loop9: unable to read RDB block 0
[  106.050601][ T7284] Buffer I/O error on dev loop9, logical block 0, async page read
[  106.067977][ T7284]  loop9: unable to read partition table
[  106.080601][ T7284] loop9: partition table beyond EOD, truncated
[  106.092737][ T7284] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  106.092737][ T7284] 
) failed (rc=-5)
[  106.115522][  T835] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  106.581651][  T835] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  106.731717][  T835] usb 5-1: Using ep0 maxpacket: 8
[  106.735709][  T835] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  106.738998][  T835] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  106.753788][  T835] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  106.763822][  T835] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  106.780445][  T835] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  106.786752][  T835] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  106.791512][  T835] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.014462][  T835] usb 5-1: usb_control_msg returned -32
[  107.018478][  T835] usbtmc 5-1:16.0: can't read capabilities
[  108.487313][    T9] usb 6-1: USB disconnect, device number 5
[  109.419219][  T834] usb 5-1: USB disconnect, device number 10
[  110.091707][  T834] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  110.264301][  T834] usb 5-1: Using ep0 maxpacket: 8
[  110.272492][  T834] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  110.314243][  T834] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  110.317993][  T834] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.376516][  T834] usb 5-1: config 0 descriptor??
[  110.585390][ T7320] FAULT_INJECTION: forcing a failure.
[  110.585390][ T7320] name failslab, interval 1, probability 0, space 0, times 0
[  110.598461][ T7320] CPU: 2 UID: 0 PID: 7320 Comm: syz.1.274 Not tainted 6.13.0-rc7-syzkaller #0
[  110.615042][ T7320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.629636][ T7320] Call Trace:
[  110.631664][ T7320]  <TASK>
[  110.633577][ T7320]  dump_stack_lvl+0x16c/0x1f0
[  110.660255][ T7320]  should_fail_ex+0x497/0x5b0
[  110.663167][ T7320]  ? rcu_is_watching+0x12/0xc0
[  110.666156][ T7320]  should_failslab+0xc2/0x120
[  110.669135][ T7320]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  110.672459][ T7320]  ? lock_acquire+0x2f/0xb0
[  110.675152][ T7320]  ? __inet_hash_connect+0x69f/0x1900
[  110.694083][ T7320]  ? __inet_hash_connect+0x918/0x1900
[  110.697147][ T7320]  __inet_hash_connect+0x918/0x1900
[  110.699866][ T7320]  ? __pfx___inet_check_established+0x10/0x10
[  110.702966][ T7320]  ? __pfx___inet_hash_connect+0x10/0x10
[  110.705957][ T7320]  tcp_v4_connect+0xddc/0x1b80
[  110.708442][ T7320]  ? __pfx_tcp_v4_connect+0x10/0x10
[  110.711030][ T7320]  ? __pfx_mark_lock+0x10/0x10
[  110.713455][ T7320]  __inet_stream_connect+0x3c7/0x1020
[  110.719943][ T7320]  ? find_held_lock+0x2d/0x110
[  110.722780][ T7320]  ? __pfx___inet_stream_connect+0x10/0x10
[  110.733675][ T7320]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  110.736472][ T7320]  ? __pfx_inet_stream_connect+0x10/0x10
[  110.749089][ T7320]  ? mark_held_locks+0x9f/0xe0
[  110.752025][ T7320]  ? __local_bh_enable_ip+0xa4/0x120
[  110.755079][ T7320]  ? __pfx_inet_stream_connect+0x10/0x10
[  110.758120][ T7320]  inet_stream_connect+0x57/0xa0
[  110.768534][ T7320]  __sys_connect_file+0x13e/0x1a0
[  110.771424][ T7320]  __sys_connect+0x14f/0x170
[  110.774227][ T7320]  ? __pfx___sys_connect+0x10/0x10
[  110.777286][ T7320]  ? __pfx_ksys_write+0x10/0x10
[  110.789945][ T7320]  __ia32_sys_connect+0x71/0xb0
[  110.792536][ T7320]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  110.796395][ T7320]  __do_fast_syscall_32+0x73/0x120
[  110.799300][ T7320]  do_fast_syscall_32+0x32/0x80
[  110.809056][ T7320]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.812470][ T7320] RIP: 0023:0xf7f01579
[  110.814534][ T7320] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.834424][ T7320] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  110.838971][ T7320] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000280
[  110.849725][ T7320] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  110.853686][ T7320] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.868657][ T7320] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.872609][ T7320] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.877306][ T7320]  </TASK>
[  111.012406][  T834] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  111.275581][ T7327] IPv6: NLM_F_CREATE should be specified when creating new route
[  112.733134][ T6005] usb 5-1: USB disconnect, device number 11
[  113.776228][ T7346] netlink: 84 bytes leftover after parsing attributes in process `syz.0.279'.
[  114.135776][ T7350] netlink: 'syz.0.283': attribute type 62 has an invalid length.
[  115.357266][ T7367] netlink: 20 bytes leftover after parsing attributes in process `syz.1.287'.
[  115.375636][ T7374] overlayfs: missing 'lowerdir'
[  115.884798][ T7382] netlink: 24 bytes leftover after parsing attributes in process `syz.3.293'.
[  115.916947][ T7382] netlink: 12 bytes leftover after parsing attributes in process `syz.3.293'.
[  116.115325][ T7389] FAULT_INJECTION: forcing a failure.
[  116.115325][ T7389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.139722][ T7389] CPU: 2 UID: 0 PID: 7389 Comm: syz.2.295 Not tainted 6.13.0-rc7-syzkaller #0
[  116.166074][ T7389] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.179650][ T7389] Call Trace:
[  116.180779][ T7389]  <TASK>
[  116.181739][ T7389]  dump_stack_lvl+0x16c/0x1f0
[  116.183266][ T7389]  should_fail_ex+0x497/0x5b0
[  116.184812][ T7389]  _copy_from_iter+0x29b/0x1400
[  116.186405][ T7389]  ? trace_lock_acquire+0x14e/0x1f0
[  116.188124][ T7389]  ? __alloc_skb+0x200/0x380
[  116.200470][ T7389]  ? __pfx__copy_from_iter+0x10/0x10
[  116.205710][ T7389]  ? __virt_addr_valid+0x1a4/0x590
[  116.211088][ T7389]  ? __virt_addr_valid+0x5e/0x590
[  116.216761][ T7389]  ? __phys_addr_symbol+0x30/0x80
[  116.223989][ T7389]  ? __check_object_size+0x488/0x710
[  116.226780][ T7389]  netlink_sendmsg+0x813/0xd70
[  116.240978][ T7389]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.243043][ T7389]  ____sys_sendmsg+0x9ae/0xb40
[  116.244786][ T7389]  ? __pfx_____sys_sendmsg+0x10/0x10
[  116.246487][ T7389]  ? get_compat_msghdr+0x11b/0x170
[  116.259700][ T7394] netlink: 12 bytes leftover after parsing attributes in process `syz.0.297'.
[  116.260443][ T7389]  ___sys_sendmsg+0x135/0x1e0
[  116.298013][ T7389]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.310175][ T7389]  ? __pfx_lock_release+0x10/0x10
[  116.312246][ T7389]  ? trace_lock_acquire+0x14e/0x1f0
[  116.314411][ T7389]  ? __fget_files+0x206/0x3a0
[  116.316373][ T7389]  __sys_sendmsg+0x16e/0x220
[  116.318505][ T7389]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.321066][ T7389]  __do_fast_syscall_32+0x73/0x120
[  116.323496][ T7389]  do_fast_syscall_32+0x32/0x80
[  116.326239][ T7389]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.330108][ T7389] RIP: 0023:0xf7ff6579
[  116.333548][ T7389] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  116.345401][ T7389] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  116.349274][ T7389] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  116.353204][ T7389] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  116.358709][ T7389] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  116.363141][ T7389] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  116.367648][ T7389] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.372212][ T7389]  </TASK>
[  118.672019][ T7441] [U] 
[  118.673534][ T7441] [U] K{‘
[  118.675710][ T7441] [U] ät Ž1ÊàŠªFìÇÄfËŠî`GÊJç˜Ügö毹¬¡—þÈoÕñ/ümCç
[  118.679217][ T7441] [U] tžØ–/,�~ˆÄœ­‹jõÿÊ}8îÊþ'o1�Ü"™7-î‚JQœK—¤Wºïqé5c%"¬H12–¦Y“„‰ž€ÊXÍ`ˆ‚íè¼`+³û(·â¿!(éûéz'àtXln»I®gÅj– °üÝ­·på~÷7í!‘Õò"ø¨Î¾ª(È5ˆObü¤‡ÍƒJÖ
[  118.691399][ T7441] [U] ±k\&—}6£6œXîHX�¥ôµ„Ìþ.`¸a“$Û40|϶¿�9°øÞ¨„¯ÀÏU‚ò4�ôä®VbzÃð}ÌwÔM”TºŽíQŸýΦr’4”ÿ
[  118.736286][ T7441] [U] ".h6øÞ"Ökã‡[›‰¤ŒJá4çØI�n¨™[Z(•„C|Të]z{�â3Ÿc=»¨xîôžë…î4ßw‰)\T‘XJø�SH{q;ì¹¢…ötÔÇ+‹¦÷gíèÿ®d„.Ë‚³>yž�÷éwUh„fN—Ž�Çhl]SÔ2ŠÇÙ\g%ŠO¼&z)µðš'¨pul‚_<ã	¢Ø°‰ò®Ôå`Ò±TÔÁþœÐËþ;_ô"(‘u{7jœ¿2X ‘/€'ÝÙcÑÌõIº©ÀÏH¿c�Õ³žV¦=�‘AiÇ%w¼Esž RšŸjŠîœƒÚ”gÂ÷rÁ¹í¡hI
˜¢œaïì6-úD�úV¨á i"øånæ¨ þÚAsc~4Áª¹8cø*­OO5/ÿœJš~º§¡w—vK+¬®‰Œ3èÇY)Ž¹M°¸æv¶Ìyqæ½€DTr¯
Otpem%f×ÊejÍA5æÔT_-X~ ^aaÛ‚ò˜½qÖå
[  118.797196][ T7441] [U] 	+�w‰G?]£Ó'a:	»Ú)Õ
ïó™“' B>t¢ ¡f/™÷<'èUÓ'–¼h§ié.+]eŸ.½-É¿ÿ¿Ò%÷è>2`¶^Uÿ8F.Š6¤Å3ÓØ+ËA¾Â««„°g3ÓpÂó6:�^0À�téèv÷'Eõt¼€ûâYC‰n¾þrÏ©ÞnèPj×;æZ†êôñû‘8!¯È\ù…¸AØÊ–2Á£$ðµ™Â­wi.Íç#ŠÈ/Bai¼�Ä`ðá4j’ôdîy@Óz„ügW÷5Ë¿Bĵٜ Nóy"vI2ûÌ
[  118.803103][ T7443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.311'.
[  118.817475][ T7441] [U] ôT¦_K5¸t¬YJÐþÎ9ðÕcÊ$brŸLúNul¶ü9wÈýÍ|žGå"ʃÆ%Çú¶êCªØ�°¶ºqîÙ
 ŸÇ3‹Æq¯ôN^HP*½Ü$	µ.Î7yÓ±œ2³
[  118.851584][ T7441] [U] ½?�©ÿhüä*ÙÁ”Î3í�7Üé�¾^#Q�"0~‡‚ð(éoïXLŒb£,'vîÓ=‹ÝëCÌS«…’G‚S¶Þ0•Ö‚‹Ù`˜›žÙ‡Ÿ†=1(÷î¾™÷p#ò2DO*Ƀ
[  118.880907][ T7441] [U] ©s¹“gžµ²¶“˜GuÐÔd-{¸™â|&“�®ŸŸñ�2µ›LÞc_©œ!`¨ÍozÖ¥¢B¶³%>êrñ¶öwï‡ýŽSsÂH"£yA4£O.šYÙÛä�„RTÔ¶ŒBÚ[+/<<R�B�Êäõ|ФeŽžÑÛ –V96#ûúÑͤê¦jºUº%
s851ƒ�þÒ©s�P±¨\£ƒ?qª|L�´QXµ0ÂKÔ1orÉ´2¡½|ÖüdÖFÌ¿»ù�ÚË2Þ”–¨×0ÌåH•}C[/¤»“Ÿpx^¼èo
[  118.883241][ T7443] mmap: syz.2.311 (7443) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  118.907319][ T7441] [U] ÖØ›·Ü—(JÅЛ•§mÛüxz˜;œ½±ÓÿØ�_¹»µÔ*3÷3…ß5¸\ƒxm³ÚU�‰AK!aQ`ßË;Fð•�I+ÖÐVUHåðÂmÑj³´Æ·ÙÛZÄcøãz‹¼Â)_矡	ô‘¡&ÿö¡ÿáaÇxtoÈÝê_½ ú¼¦:¨â×%à²Pò×ÈCö²‚yö+_þü›ýû}Uïm˜ƒÆ«CÅ!KJò7Ðßg¯Ë=bè
[  118.907404][ T7441] [U] Ù½¥Fœ%ŽXAÙÂlŸ2r*gŒòVW¬Ñ$ƒüj	ãA˜›F¶ß�·+ø¾9Í„ViºÖ—¼kÙ¾Å1}_©â
á¥%Ãr6„•(]“¦/Ÿ¶ø�Å™YܺÇÞh㤾üÑr gªÄrn/Ü«Î#!êdÙûÚ«%ÞÛËDªï-{ð$þvU‘ýT²¼ª$:mtrÔEŽC1V‰D~îÈ];[˜ËÚÐ÷sq¾¯œù(ìëe,X¦8â"Ù
æðG¥dŸúµ2@T8ž¾´òƒàðÿàt8.Rc+Ä@Ëꦇp‡uá
p”‰¼¶C±‡Ë'å„yLÓ-Ss1E?Å7ÓO‡§ì^]¦†Âóc”â½H]§Jkr]Rkq܆�øÝ£þ´OTcôÆx¶¨¾4™NË	³Ï&�á­ðÚ‹ŠÓ@¶:m7ß~�+”W*ÛÁ–xMüó>>—¡{q¢Ú×
_²Õ�LX8ÊU„ÇØî{ðZ³íø�)ÿÒ7?ËrR;ÿcßr hײڣỨè1Å>)©Măâ‰Ït§²Ú(ìÇaÏ�„}9·Ú¥ãJ*MÑœ¥Ä¡«'L¹£q	ìDWŸòø¸=ؽ|q¬	ÏÆ™W;5æÙŽª!ñdB¸x`é§ö/÷ÂE�`ƦM¢Xîâ"ä\
[  118.907487][ T7441] [U] {;Žõ¥ÂÙ˜_ˆo2«Ñ)îo®›.2ÐW2겨ðyùÃãx_  HPϱœSªD­�¦ø:]‚{Ë©ÔÝæè½
[  118.907517][ T7441] [U] I,Ç>Çó¤	îÙ5�1ñ÷^1òN4¯oǶþ'0ý?Ö’iÙ9w.ï_.¶WŠa¼Š�Vˆ±`)ÑZ¬ïæc6GiÓ¹²a»¬XL[¢›½¡Fü*ÀñO‰W)+‡Ç'\nÆ
[K@ÑëÄü2çǬ–®¡p"^`Á‰í	øß
[  118.907530][ T7441] [U] 22½“Æ©Ðû©x?0;3u±
[  118.907583][ T7441] [U] ÞœÕ
æ�ósObx 8”Wˆ4á‘(ð~/§¿íKÇUžãÔ–oQËe+·G®-yµgY_
•>v¢ÜÈë—3.hÁÓ™]Í„²2‘”)™DË,	‘Ä	þD~×d©£¡+Ãw;A\˜F
PÉþȘ|$ºø)�
KØ�I³éÐÉ¿kñYT^RÍüù癵“ËA=±#–Üœ	ÝíßËae©�tå1·Îݯ4K¯.e"RÚS|ðŸÀsÖ’Á:•ù>p™…rÐ"z‰ú­ûúé#P!˜KY"›}ÃÆF¿N84ü³ƒÅhÞ±£o•Èsߙ̫%DlwÙmæ²Ç
[  118.907616][ T7441] [U] [ª['xn€'²÷á¿Ü,mr¦«/žšœâ1D=!DŽx91Bù
wç»R—lf…ƒÆKì¤Zõê# `ì‘lØ›§Ëœ»×b~åmÒÔÖ
[  118.907641][ T7441] [U] ™LÖ>�ñ�d+ˆd¯§—®Ì"5Žê��h3<ª¨ÅiR=F^”f�nõóÜÀ‰¿û­vÛ÷œDÁOIOÚ:Uö>ÖYâ
[  118.907655][ T7441] [U] 'B—6vý20³ä·çž¥·×Œï"t8Ñ{9ÆFW��]ôÊäì©�
[  118.907681][ T7441] [U] ù72þ‰ïÂÃuþC6™îüÔÏ„I]8cª£tÛ¨QSk�YÞîIÒÀâ¹ ¿|V'ÛTV/ùÅg•$[â 9kh`ú"ü‘úõ}€ñ[^=ˆú0á]½ã%ÆÌ‚T“Šž¹ØFì_vö4C¸òÅ
[  118.907724][ T7441] [U] ¹ec�
[  118.907735][ T7441] [U] �—”|‚Êì<äî:^ü3$7nK~Ø-™@÷¦?Ÿ–/mtl·�Û¾©Iˆwè¬@g~tØ{êÜPß+Æ$ªjp|µŽçIÛRió�pmð õ·YÓ ú”8ìtÉÐÞVžÙÿÆë,îlâ,Õ
[  119.032563][ T7438] [U] ˆKÌúÛõ‰)0ÄÄÝ~ü³ÊªÁiP'ífóòœzÚÞr¬™ÿ@BÓ]Â5ÝÊ{­©Ê¼ô'à8åÆ¥F‡¹UTqUd
Ç©¤K;7íª0c[„ãy–¼ÈYC¦¶»Ø°mª™Lò8’T…ÍšÎ5³ýýrx�™¶ðWí x¤²óoQhVi'8œ¥Î…Lµ
[  119.518262][ T7456] netlink: 84 bytes leftover after parsing attributes in process `syz.1.312'.
[  119.791953][ T7460] overlayfs: missing 'lowerdir'
[  119.920694][ T7463] netlink: 44 bytes leftover after parsing attributes in process `syz.3.316'.
[  119.943939][ T7463] netlink: 59 bytes leftover after parsing attributes in process `syz.3.316'.
[  120.138855][ T7468] FAULT_INJECTION: forcing a failure.
[  120.138855][ T7468] name failslab, interval 1, probability 0, space 0, times 0
[  120.148232][ T7468] CPU: 0 UID: 0 PID: 7468 Comm: syz.0.317 Not tainted 6.13.0-rc7-syzkaller #0
[  120.152616][ T7468] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.158130][ T7468] Call Trace:
[  120.159877][ T7468]  <TASK>
[  120.161423][ T7468]  dump_stack_lvl+0x16c/0x1f0
[  120.163836][ T7468]  should_fail_ex+0x497/0x5b0
[  120.166411][ T7468]  ? fs_reclaim_acquire+0xae/0x150
[  120.169423][ T7468]  should_failslab+0xc2/0x120
[  120.171729][ T7468]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[  120.174893][ T7468]  ? lockdep_init_map_type+0x16d/0x7d0
[  120.178963][ T7468]  ? __alloc_workqueue+0x506/0x1810
[  120.181885][ T7468]  __alloc_workqueue+0x506/0x1810
[  120.184357][ T7468]  alloc_workqueue+0xd3/0x200
[  120.186650][ T7468]  ? __pfx_alloc_workqueue+0x10/0x10
[  120.189637][ T7468]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  120.192900][ T7468]  loop_configure+0xbf8/0x11f0
[  120.195561][ T7468]  lo_ioctl+0xa5d/0x18a0
[  120.198164][ T7468]  ? __pfx_lo_ioctl+0x10/0x10
[  120.201739][ T7468]  ? find_held_lock+0x2d/0x110
[  120.204852][ T7468]  ? tomoyo_path_number_perm+0x298/0x5b0
[  120.208009][ T7468]  ? __pfx_lock_release+0x10/0x10
[  120.213558][ T7468]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  120.217007][ T7468]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  120.220572][ T7468]  lo_compat_ioctl+0xb9/0x170
[  120.223190][ T7468]  ? __pfx_lo_compat_ioctl+0x10/0x10
[  120.226072][ T7468]  compat_blkdev_ioctl+0x2f7/0x750
[  120.229168][ T7468]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  120.232166][ T7468]  ? __fget_files+0x206/0x3a0
[  120.234943][ T7468]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  120.238824][ T7468]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  120.241708][ T7468]  __do_fast_syscall_32+0x73/0x120
[  120.244168][ T7468]  do_fast_syscall_32+0x32/0x80
[  120.246480][ T7468]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.249569][ T7468] RIP: 0023:0xf7fe2579
[  120.251638][ T7468] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.262707][ T7468] RSP: 002b:00000000f513655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  120.270189][ T7468] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004c0a
[  120.273191][ T7468] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  120.289035][ T7468] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.293038][ T7468] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.296844][ T7468] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.315435][ T7468]  </TASK>
[  120.477090][ T7472] FAULT_INJECTION: forcing a failure.
[  120.477090][ T7472] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.482369][ T7472] CPU: 0 UID: 0 PID: 7472 Comm: syz.1.318 Not tainted 6.13.0-rc7-syzkaller #0
[  120.498099][ T7472] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.502495][ T7472] Call Trace:
[  120.516841][ T7472]  <TASK>
[  120.519926][ T7472]  dump_stack_lvl+0x16c/0x1f0
[  120.530575][ T7472]  should_fail_ex+0x497/0x5b0
[  120.535613][ T7472]  _copy_from_user+0x2e/0xd0
[  120.541042][ T7472]  get_compat_msghdr+0xa8/0x170
[  120.543084][ T7472]  ? __pfx_get_compat_msghdr+0x10/0x10
[  120.545352][ T7472]  ___sys_recvmsg+0x193/0x1a0
[  120.547235][ T7472]  ? __pfx____sys_recvmsg+0x10/0x10
[  120.576602][ T7472]  ? __fget_files+0x1fc/0x3a0
[  120.581366][ T7472]  ? trace_lock_acquire+0x14e/0x1f0
[  120.583573][ T7472]  ? __fget_files+0x206/0x3a0
[  120.585551][ T7472]  ? __pfx___might_resched+0x10/0x10
[  120.587712][ T7472]  do_recvmmsg+0x55d/0x740
[  120.633765][ T7472]  ? __pfx_do_recvmmsg+0x10/0x10
[  120.635865][ T7472]  ? vfs_write+0x306/0x1150
[  120.637704][ T7472]  ? __fget_files+0x206/0x3a0
[  120.657650][ T7472]  __sys_recvmmsg+0x21e/0x280
[  120.660223][ T7472]  ? __pfx___sys_recvmmsg+0x10/0x10
[  120.662068][ T7472]  ? __pfx_ksys_write+0x10/0x10
[  120.663539][ T7472]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  120.665529][ T7472]  ? lockdep_hardirqs_on+0x7c/0x110
[  120.667231][ T7472]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  120.670977][ T7472]  __do_fast_syscall_32+0x73/0x120
[  120.676501][ T7472]  do_fast_syscall_32+0x32/0x80
[  120.680337][ T7472]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.684117][ T7472] RIP: 0023:0xf7f01579
[  120.686051][ T7472] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.698206][ T7472] RSP: 002b:00000000f503555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  120.707148][ T7472] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020002940
[  120.714262][ T7472] RDX: 000000000000f000 RSI: 0000000000010002 RDI: 0000000000000000
[  120.720333][ T7472] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.724581][ T7472] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.731766][ T7472] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.737123][ T7472]  </TASK>
[  121.074048][   T35] IPVS: starting estimator thread 0...
[  121.212655][ T7483] IPVS: using max 21 ests per chain, 50400 per kthread
[  121.740908][ T7489] netlink: 4 bytes leftover after parsing attributes in process `syz.2.323'.
[  121.865579][ T7493] overlayfs: missing 'workdir'
[  122.295944][ T7500] can0: slcan on ttyS3.
[  122.739234][ T7509] netlink: 44 bytes leftover after parsing attributes in process `syz.2.328'.
[  122.795607][ T7509] netlink: 59 bytes leftover after parsing attributes in process `syz.2.328'.
[  122.830176][ T7475] can0 (unregistered): slcan off ttyS3.
[  124.843008][ T7527] FAULT_INJECTION: forcing a failure.
[  124.843008][ T7527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.889106][ T7527] CPU: 3 UID: 0 PID: 7527 Comm: syz.1.331 Not tainted 6.13.0-rc7-syzkaller #0
[  124.894473][ T7527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.901042][ T7527] Call Trace:
[  124.903083][ T7527]  <TASK>
[  124.904499][ T7527]  dump_stack_lvl+0x16c/0x1f0
[  124.907109][ T7527]  should_fail_ex+0x497/0x5b0
[  124.922113][ T7527]  _copy_to_iter+0x29b/0x1400
[  124.925026][ T7527]  ? trace_lock_acquire+0x14e/0x1f0
[  124.928116][ T7527]  ? __pfx_lock_release+0x10/0x10
[  124.931276][ T7527]  ? __pfx__copy_to_iter+0x10/0x10
[  124.934485][ T7527]  ? __virt_addr_valid+0x1a4/0x590
[  124.937707][ T7527]  ? __virt_addr_valid+0x5e/0x590
[  124.941004][ T7527]  ? __phys_addr_symbol+0x30/0x80
[  124.944228][ T7527]  ? __check_object_size+0x488/0x710
[  124.947601][ T7527]  seq_read_iter+0xd00/0x12b0
[  124.950669][ T7527]  kernfs_fop_read_iter+0x414/0x580
[  124.954091][ T7527]  ? __pfx___lock_acquire+0x10/0x10
[  124.957264][ T7527]  do_iter_readv_writev+0x614/0x7f0
[  124.960417][ T7527]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  124.963801][ T7527]  vfs_readv+0x4cf/0x890
[  124.966401][ T7527]  ? __pfx___lock_acquire+0x10/0x10
[  124.982600][ T7527]  ? __pfx_vfs_readv+0x10/0x10
[  124.985704][ T7527]  ? __fget_files+0x1fc/0x3a0
[  124.988928][ T7527]  ? __pfx_lock_release+0x10/0x10
[  124.991768][ T7527]  ? __fget_files+0x206/0x3a0
[  124.994693][ T7527]  ? do_preadv+0x1b1/0x270
[  124.996957][ T7527]  do_preadv+0x1b1/0x270
[  125.000138][ T7527]  ? __pfx_do_preadv+0x10/0x10
[  125.002811][ T7527]  ? ksys_write+0x1ba/0x250
[  125.004869][ T7527]  ? __pfx_ksys_write+0x10/0x10
[  125.007310][ T7527]  __ia32_compat_sys_preadv2+0x121/0x1b0
[  125.011403][ T7527]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  125.016175][ T7527]  __do_fast_syscall_32+0x73/0x120
[  125.021781][ T7527]  do_fast_syscall_32+0x32/0x80
[  125.024863][ T7527]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.028897][ T7527] RIP: 0023:0xf7f01579
[  125.031482][ T7527] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.043600][ T7527] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 000000000000017a
[  125.046966][ T7527] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000180
[  125.050518][ T7527] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  125.056919][ T7527] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.062256][ T7527] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.067352][ T7527] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.072161][ T7527]  </TASK>
[  125.291343][ T7532] overlayfs: missing 'workdir'
[  125.551261][ T7535] binder: BINDER_SET_CONTEXT_MGR already set
[  125.563534][ T7535] binder: 7534:7535 ioctl 4018620d 20004a80 returned -16
[  125.848445][ T7538] Bluetooth: Invalid byte 02 after esc byte
[  125.916852][ T7540] ata1.00: non-matching transfer count (1530558389/0)
[  126.540951][ T7544] netlink: 44 bytes leftover after parsing attributes in process `syz.1.338'.
[  126.544845][ T7544] netlink: 59 bytes leftover after parsing attributes in process `syz.1.338'.
[  126.930696][ T7548] can0: slcan on ttyS3.
[  127.232470][ T7541] can0 (unregistered): slcan off ttyS3.
[  127.911943][ T5952] Bluetooth: hci4: command 0x1003 tx timeout
[  127.914661][   T65] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  128.068431][ T7565] netlink: 4 bytes leftover after parsing attributes in process `syz.0.340'.
[  129.049242][ T7575] program syz.2.341 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.053288][ T7575] ata1.00: invalid transfer count 0
[  129.773950][ T7578] overlayfs: missing 'workdir'
[  129.976576][ T7584] netlink: 'syz.0.345': attribute type 10 has an invalid length.
[  129.980713][ T7584] netlink: 2 bytes leftover after parsing attributes in process `syz.0.345'.
[  129.987003][ T7584] team0: entered promiscuous mode
[  129.996533][ T7584] team_slave_0: entered promiscuous mode
[  129.999962][ T7584] team_slave_1: entered promiscuous mode
[  130.002669][ T7584] bridge0: port 3(team0) entered blocking state
[  130.005523][ T7584] bridge0: port 3(team0) entered disabled state
[  130.010518][ T7584] team0: entered allmulticast mode
[  130.015867][ T7584] team_slave_0: entered allmulticast mode
[  130.019804][ T7584] team_slave_1: entered allmulticast mode
[  130.030006][ T7584] bridge0: port 3(team0) entered blocking state
[  130.030052][ T7586] binder_alloc: 7585: binder_alloc_buf, no vma
[  130.039971][ T7584] bridge0: port 3(team0) entered forwarding state
[  130.192613][ T7591] netlink: 44 bytes leftover after parsing attributes in process `syz.0.347'.
[  130.196609][ T7591] netlink: 59 bytes leftover after parsing attributes in process `syz.0.347'.
[  131.019886][ T7600] netlink: 44 bytes leftover after parsing attributes in process `syz.2.351'.
[  131.095056][ T7600] netlink: 59 bytes leftover after parsing attributes in process `syz.2.351'.
[  131.596397][ T7609] can0: slcan on ttyS3.
[  132.185886][ T7597] can0 (unregistered): slcan off ttyS3.
[  132.261034][ T7625] can0: slcan on ttyS3.
[  132.378978][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  132.381714][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  133.269186][ T7640] FAULT_INJECTION: forcing a failure.
[  133.269186][ T7640] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.274599][ T7640] CPU: 3 UID: 0 PID: 7640 Comm: syz.0.355 Not tainted 6.13.0-rc7-syzkaller #0
[  133.286807][ T7640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.291047][ T7640] Call Trace:
[  133.321329][ T7640]  <TASK>
[  133.322525][ T7640]  dump_stack_lvl+0x16c/0x1f0
[  133.324180][ T7640]  should_fail_ex+0x497/0x5b0
[  133.325852][ T7640]  _copy_from_user+0x2e/0xd0
[  133.327501][ T7640]  __sys_bpf+0x215/0x57a0
[  133.342316][ T7640]  ? __pfx_lock_release+0x10/0x10
[  133.344920][ T7640]  ? __pfx___sys_bpf+0x10/0x10
[  133.347375][ T7640]  ? vfs_write+0x306/0x1150
[  133.349561][ T7640]  ? __mutex_unlock_slowpath+0x164/0x690
[  133.351821][ T7640]  ? fput+0x67/0x440
[  133.367330][ T7640]  ? ksys_write+0x1ba/0x250
[  133.369728][ T7640]  ? __pfx_ksys_write+0x10/0x10
[  133.372575][ T7640]  __ia32_sys_bpf+0x76/0xe0
[  133.374925][ T7640]  __do_fast_syscall_32+0x73/0x120
[  133.377384][ T7640]  do_fast_syscall_32+0x32/0x80
[  133.389739][ T7640]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.392867][ T7640] RIP: 0023:0xf7fe2579
[  133.395366][ T7640] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  133.408458][ T7640] RSP: 002b:00000000f50db55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  133.411856][ T7640] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200003c0
[  133.415195][ T7640] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  133.419496][ T7640] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  133.423378][ T7640] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  133.427371][ T7640] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  133.432178][ T7640]  </TASK>
[  133.434964][   T73] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  133.475350][ T7606] can0 (unregistered): slcan off ttyS3.
[  133.660385][   T73] usb 6-1: Using ep0 maxpacket: 8
[  133.673268][   T73] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  133.706477][   T73] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  133.746153][   T73] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.785082][   T73] usb 6-1: config 0 descriptor??
[  133.997666][   T73] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  135.479689][ T7667] input: syz1 as /devices/virtual/input/input10
[  135.867395][ T7670] FAULT_INJECTION: forcing a failure.
[  135.867395][ T7670] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.875130][ T7670] CPU: 0 UID: 0 PID: 7670 Comm: syz.0.361 Not tainted 6.13.0-rc7-syzkaller #0
[  135.890375][ T7670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.894755][ T7670] Call Trace:
[  135.899224][ T7670]  <TASK>
[  135.910955][ T7670]  dump_stack_lvl+0x16c/0x1f0
[  135.917161][ T7670]  should_fail_ex+0x497/0x5b0
[  135.923393][ T7670]  _copy_from_user+0x2e/0xd0
[  135.929693][ T7670]  get_compat_msghdr+0xa8/0x170
[  135.935988][ T7670]  ? __pfx_get_compat_msghdr+0x10/0x10
[  135.944019][ T7670]  ___sys_sendmsg+0x1b0/0x1e0
[  135.950816][ T7670]  ? __pfx____sys_sendmsg+0x10/0x10
[  135.956617][ T7670]  ? trace_lock_acquire+0x14e/0x1f0
[  135.967203][ T7670]  __sys_sendmmsg+0x2fa/0x420
[  135.969066][ T7670]  ? __pfx___sys_sendmmsg+0x10/0x10
[  135.971042][ T7670]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  135.977236][ T7670]  ? fput+0x67/0x440
[  135.987702][ T7670]  ? ksys_write+0x1ba/0x250
[  135.989958][ T7670]  ? __pfx_ksys_write+0x10/0x10
[  135.992364][ T7670]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  135.994970][ T7670]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  136.006551][ T7670]  __do_fast_syscall_32+0x73/0x120
[  136.009074][ T7670]  do_fast_syscall_32+0x32/0x80
[  136.011474][ T7670]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  136.013993][ T7670] RIP: 0023:0xf7fe2579
[  136.016241][ T7670] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  136.038015][ T7670] RSP: 002b:00000000f511555c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  136.044616][ T7670] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000020006780
[  136.055816][ T7670] RDX: 000000000000020c RSI: 0000000000000000 RDI: 0000000000000000
[  136.081321][ T7670] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  136.085114][ T7670] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  136.108871][ T7670] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  136.113281][ T7670]  </TASK>
[  136.212631][   T30] usb 6-1: USB disconnect, device number 6
[  136.633119][ T7675] netlink: 268 bytes leftover after parsing attributes in process `syz.0.362'.
[  136.637696][ T7675] netlink: 4 bytes leftover after parsing attributes in process `syz.0.362'.
[  136.643340][ T7675] netlink: 810 bytes leftover after parsing attributes in process `syz.0.362'.
[  138.048494][ T7688] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  138.160605][ T7688] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  138.900920][ T7694] can0: slcan on ttyS3.
[  139.848900][ T7678] can0 (unregistered): slcan off ttyS3.
[  140.260294][ T7716] netlink: 20 bytes leftover after parsing attributes in process `syz.0.370'.
[  142.383124][ T7743] netlink: 4 bytes leftover after parsing attributes in process `syz.2.387'.
[  143.258556][ T7752] can0: slcan on ttyS3.
[  143.713019][ T7747] can0 (unregistered): slcan off ttyS3.
[  144.136915][ T7771] netlink: 268 bytes leftover after parsing attributes in process `syz.0.384'.
[  144.165557][ T7771] netlink: 4 bytes leftover after parsing attributes in process `syz.0.384'.
[  144.168770][ T7771] netlink: 810 bytes leftover after parsing attributes in process `syz.0.384'.
[  144.510413][ T7773] netlink: 12 bytes leftover after parsing attributes in process `syz.2.383'.
[  144.802566][ T7779] netlink: 4 bytes leftover after parsing attributes in process `syz.0.386'.
[  144.808541][ T7779] team0: left allmulticast mode
[  144.811191][ T7779] team_slave_0: left allmulticast mode
[  144.820388][ T7779] team_slave_1: left allmulticast mode
[  144.825643][ T7779] bridge0: port 3(team0) entered disabled state
[  144.884669][ T7779] bridge_slave_1: left allmulticast mode
[  144.890315][ T7779] bridge_slave_1: left promiscuous mode
[  144.894072][ T7779] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.948499][ T7779] bridge_slave_0: left allmulticast mode
[  144.951001][ T7779] bridge_slave_0: left promiscuous mode
[  144.953855][ T7779] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.216283][ T7785] netlink: 4 bytes leftover after parsing attributes in process `syz.2.389'.
[  145.268766][ T7762] can0: slcan on ttyS3.
[  145.506048][ T7792] FAULT_INJECTION: forcing a failure.
[  145.506048][ T7792] name failslab, interval 1, probability 0, space 0, times 0
[  145.512653][ T7792] CPU: 0 UID: 0 PID: 7792 Comm: syz.2.390 Not tainted 6.13.0-rc7-syzkaller #0
[  145.515679][ T7792] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.519932][ T7792] Call Trace:
[  145.525059][ T7792]  <TASK>
[  145.526217][ T7792]  dump_stack_lvl+0x16c/0x1f0
[  145.536077][ T7792]  should_fail_ex+0x497/0x5b0
[  145.538146][ T7792]  ? fs_reclaim_acquire+0xae/0x150
[  145.540173][ T7792]  should_failslab+0xc2/0x120
[  145.545389][ T7792]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  145.547500][ T7792]  ? __alloc_skb+0x2b3/0x380
[  145.549336][ T7792]  __alloc_skb+0x2b3/0x380
[  145.560346][ T7792]  ? __pfx___alloc_skb+0x10/0x10
[  145.562340][ T7792]  ? lock_acquire+0x2f/0xb0
[  145.564424][ T7792]  netlink_alloc_large_skb+0x69/0x130
[  145.566568][ T7792]  netlink_sendmsg+0x689/0xd70
[  145.568841][ T7792]  ? __pfx_netlink_sendmsg+0x10/0x10
[  145.572042][ T7792]  sock_write_iter+0x4fe/0x5b0
[  145.575010][ T7792]  ? __pfx_sock_write_iter+0x10/0x10
[  145.578256][ T7792]  ? bpf_lsm_file_permission+0x9/0x10
[  145.581606][ T7792]  ? security_file_permission+0x71/0x210
[  145.585077][ T7792]  vfs_write+0x5ae/0x1150
[  145.589601][ T7792]  ? __pfx_sock_write_iter+0x10/0x10
[  145.592425][ T7792]  ? __pfx_vfs_write+0x10/0x10
[  145.595173][ T7792]  ? __fget_files+0x40/0x3a0
[  145.597833][ T7792]  ksys_write+0x207/0x250
[  145.600112][ T7792]  ? __pfx_ksys_write+0x10/0x10
[  145.602824][ T7792]  __do_fast_syscall_32+0x73/0x120
[  145.605589][ T7792]  do_fast_syscall_32+0x32/0x80
[  145.608206][ T7792]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  145.613106][ T7792] RIP: 0023:0xf7ff6579
[  145.615659][ T7792] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  145.636716][ T7792] RSP: 002b:00000000f512555c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  145.642918][ T7792] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000020000000
[  145.649444][ T7792] RDX: 0000000000000024 RSI: 0000000000000000 RDI: 0000000000000000
[  145.656324][ T7792] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  145.662583][ T7792] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  145.669022][ T7792] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  145.680237][ T7792]  </TASK>
[  145.851559][ T7760] can0 (unregistered): slcan off ttyS3.
[  146.053737][ T7805] netlink: 44 bytes leftover after parsing attributes in process `syz.3.394'.
[  146.057530][ T7805] netlink: 59 bytes leftover after parsing attributes in process `syz.3.394'.
[  146.432031][ T7817] FAULT_INJECTION: forcing a failure.
[  146.432031][ T7817] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.449167][ T7817] CPU: 2 UID: 0 PID: 7817 Comm: syz.1.395 Not tainted 6.13.0-rc7-syzkaller #0
[  146.453337][ T7817] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.465215][   T39] kauditd_printk_skb: 29 callbacks suppressed
[  146.465229][   T39] audit: type=1326 audit(1736781238.461:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.473093][ T7817] Call Trace:
[  146.473108][ T7817]  <TASK>
[  146.473116][ T7817]  dump_stack_lvl+0x16c/0x1f0
[  146.473144][ T7817]  should_fail_ex+0x497/0x5b0
[  146.473169][ T7817]  _copy_from_user+0x2e/0xd0
[  146.473195][ T7817]  get_compat_msghdr+0xa8/0x170
[  146.473215][ T7817]  ? __pfx_get_compat_msghdr+0x10/0x10
[  146.473242][ T7817]  ___sys_sendmsg+0x1b0/0x1e0
[  146.473270][ T7817]  ? __pfx____sys_sendmsg+0x10/0x10
[  146.473306][ T7817]  ? __pfx_lock_release+0x10/0x10
[  146.473325][ T7817]  ? trace_lock_acquire+0x14e/0x1f0
[  146.473357][ T7817]  ? __fget_files+0x206/0x3a0
[  146.473386][ T7817]  __sys_sendmsg+0x16e/0x220
[  146.473410][ T7817]  ? __pfx___sys_sendmsg+0x10/0x10
[  146.473452][ T7817]  __do_fast_syscall_32+0x73/0x120
[  146.473478][ T7817]  do_fast_syscall_32+0x32/0x80
[  146.473502][ T7817]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  146.473529][ T7817] RIP: 0023:0xf7f01579
[  146.473545][ T7817] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  146.473569][ T7817] RSP: 002b:00000000f503555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  146.473590][ T7817] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000580
[  146.473623][ T7817] RDX: 0000000020000090 RSI: 0000000000000000 RDI: 0000000000000000
[  146.473635][ T7817] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  146.473646][ T7817] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  146.473658][ T7817] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  146.473682][ T7817]  </TASK>
[  146.628619][   T39] audit: type=1326 audit(1736781238.461:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.641564][   T39] audit: type=1326 audit(1736781238.461:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=46 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.651807][   T39] audit: type=1326 audit(1736781238.461:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.663460][   T39] audit: type=1326 audit(1736781238.461:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.695872][   T39] audit: type=1326 audit(1736781238.461:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.714108][   T39] audit: type=1326 audit(1736781238.461:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.731371][   T39] audit: type=1326 audit(1736781238.461:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.740777][   T39] audit: type=1326 audit(1736781238.461:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  146.755587][   T39] audit: type=1326 audit(1736781238.461:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.0.392" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  147.046093][ T7825] netlink: 4 bytes leftover after parsing attributes in process `syz.0.398'.
[  148.016340][ T7841] netlink: 84 bytes leftover after parsing attributes in process `syz.1.408'.
[  148.309392][ T7845] can0: slcan on ttyS3.
[  148.598147][ T7835] random: crng reseeded on system resumption
[  148.719384][ T7850] binder_alloc: 7849: binder_alloc_buf, no vma
[  149.661574][ T7822] can0 (unregistered): slcan off ttyS3.
[  150.290892][ T7872] netlink: 44 bytes leftover after parsing attributes in process `syz.0.405'.
[  150.300395][ T7872] netlink: 59 bytes leftover after parsing attributes in process `syz.0.405'.
[  150.333501][ T7874] netlink: 268 bytes leftover after parsing attributes in process `syz.3.406'.
[  150.374394][ T7874] netlink: 4 bytes leftover after parsing attributes in process `syz.3.406'.
[  150.377576][ T7874] netlink: 810 bytes leftover after parsing attributes in process `syz.3.406'.
[  150.686845][ T7878] netlink: 4 bytes leftover after parsing attributes in process `syz.3.407'.
[  150.697687][ T7878] bridge_slave_1: left allmulticast mode
[  150.700061][ T7878] bridge_slave_1: left promiscuous mode
[  150.703051][ T7878] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.755750][ T7878] bridge_slave_0: left allmulticast mode
[  150.762837][ T7878] bridge_slave_0: left promiscuous mode
[  150.770817][ T7878] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.084093][  T834] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  151.312485][  T834] usb 6-1: Using ep0 maxpacket: 8
[  151.501615][  T834] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  151.515444][  T834] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  151.519795][  T834] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.533896][  T834] usb 6-1: config 0 descriptor??
[  151.762522][  T834] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  153.408924][ T7903] netlink: 268 bytes leftover after parsing attributes in process `syz.0.416'.
[  153.419183][ T7903] netlink: 4 bytes leftover after parsing attributes in process `syz.0.416'.
[  153.452118][ T7903] netlink: 810 bytes leftover after parsing attributes in process `syz.0.416'.
[  153.943889][   T57] usb 6-1: USB disconnect, device number 7
[  154.038899][ T7908] netlink: 44 bytes leftover after parsing attributes in process `syz.2.418'.
[  154.044601][ T7908] netlink: 59 bytes leftover after parsing attributes in process `syz.2.418'.
[  154.120052][ T7914] can0: slcan on ttyS3.
[  154.688697][ T7898] can0 (unregistered): slcan off ttyS3.
[  155.617438][ T7949] FAULT_INJECTION: forcing a failure.
[  155.617438][ T7949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.639379][ T7949] CPU: 1 UID: 0 PID: 7949 Comm: syz.1.425 Not tainted 6.13.0-rc7-syzkaller #0
[  155.642772][ T7949] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.646515][ T7949] Call Trace:
[  155.648880][ T7949]  <TASK>
[  155.650287][ T7949]  dump_stack_lvl+0x16c/0x1f0
[  155.657702][ T7949]  should_fail_ex+0x497/0x5b0
[  155.659676][ T7949]  _copy_from_user+0x2e/0xd0
[  155.661667][ T7949]  get_compat_msghdr+0xa8/0x170
[  155.663761][ T7949]  ? __pfx_get_compat_msghdr+0x10/0x10
[  155.666074][ T7949]  ___sys_sendmsg+0x1b0/0x1e0
[  155.669256][ T7949]  ? __pfx____sys_sendmsg+0x10/0x10
[  155.671507][ T7949]  ? __pfx_lock_release+0x10/0x10
[  155.673856][ T7949]  ? trace_lock_acquire+0x14e/0x1f0
[  155.676207][ T7949]  ? __fget_files+0x206/0x3a0
[  155.681376][ T7949]  __sys_sendmsg+0x16e/0x220
[  155.683578][ T7949]  ? __pfx___sys_sendmsg+0x10/0x10
[  155.698267][ T7949]  __do_fast_syscall_32+0x73/0x120
[  155.700111][ T7949]  do_fast_syscall_32+0x32/0x80
[  155.702123][ T7949]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  155.704812][ T7949] RIP: 0023:0xf7f01579
[  155.707423][ T7949] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  155.738961][ T7949] RSP: 002b:00000000f501455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  155.746576][ T7949] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000240
[  155.752213][ T7949] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000000
[  155.760948][ T7949] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  155.768174][ T7949] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  155.771398][ T7949] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  155.774596][ T7949]  </TASK>
[  155.810030][ T7955] binder: 7950:7955 ioctl c0306201 0 returned -14
[  156.585041][ T7969] netlink: 84 bytes leftover after parsing attributes in process `syz.0.429'.
[  156.835438][ T7974] FAULT_INJECTION: forcing a failure.
[  156.835438][ T7974] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.870267][ T7974] CPU: 2 UID: 0 PID: 7974 Comm: syz.2.432 Not tainted 6.13.0-rc7-syzkaller #0
[  156.874417][ T7974] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.878559][ T7974] Call Trace:
[  156.881825][ T7974]  <TASK>
[  156.883617][ T7974]  dump_stack_lvl+0x16c/0x1f0
[  156.887173][ T7974]  should_fail_ex+0x497/0x5b0
[  156.890255][ T7974]  _copy_from_user+0x2e/0xd0
[  156.893880][ T7974]  __sys_bpf+0x215/0x57a0
[  156.896513][ T7974]  ? __pfx_lock_release+0x10/0x10
[  156.899804][ T7974]  ? __pfx___sys_bpf+0x10/0x10
[  156.903492][ T7974]  ? vfs_write+0x306/0x1150
[  156.906362][ T7974]  ? __mutex_unlock_slowpath+0x164/0x690
[  156.909645][ T7974]  ? fput+0x67/0x440
[  156.912322][ T7974]  ? ksys_write+0x1ba/0x250
[  156.915101][ T7974]  ? __pfx_ksys_write+0x10/0x10
[  156.918518][ T7974]  __ia32_sys_bpf+0x76/0xe0
[  156.921981][ T7974]  __do_fast_syscall_32+0x73/0x120
[  156.926654][ T7974]  do_fast_syscall_32+0x32/0x80
[  156.929788][ T7974]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  156.934242][ T7974] RIP: 0023:0xf7ff6579
[  156.936728][ T7974] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  156.947405][ T7974] RSP: 002b:00000000f510455c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  156.951399][ T7974] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200003c0
[  156.955151][ T7974] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  156.958942][ T7974] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  156.963234][ T7974] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  156.967955][ T7974] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  156.992860][ T7974]  </TASK>
[  157.714351][ T7993] netlink: 20 bytes leftover after parsing attributes in process `syz.3.438'.
[  157.821962][ T7992] can0: slcan on ttyS3.
[  158.611108][ T7971] can0 (unregistered): slcan off ttyS3.
[  159.291152][ T8027] netlink: 84 bytes leftover after parsing attributes in process `syz.3.445'.
[  160.341802][ T8040] netlink: 4 bytes leftover after parsing attributes in process `syz.2.451'.
[  162.621725][ T8079] sctp: [Deprecated]: syz.1.461 (pid 8079) Use of struct sctp_assoc_value in delayed_ack socket option.
[  162.621725][ T8079] Use struct sctp_sack_info instead
[  163.058562][ T8082] netlink: 4 bytes leftover after parsing attributes in process `syz.3.462'.
[  163.171568][ T6073] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  163.252075][ T8086] can0: slcan on ttyS3.
[  163.393852][ T6073] usb 6-1: unable to get BOS descriptor or descriptor too short
[  163.433088][ T6073] usb 6-1: not running at top speed; connect to a high speed hub
[  163.516740][ T6073] usb 6-1: config 1 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 911, setting to 64
[  163.520851][ T6073] usb 6-1: config 1 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  163.526022][ T6073] usb 6-1: config 1 interface 0 has no altsetting 0
[  163.579411][ T6073] usb 6-1: New USB device found, idVendor=056a, idProduct=010f, bcdDevice= 0.40
[  163.587534][ T8096] FAULT_INJECTION: forcing a failure.
[  163.587534][ T8096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.626978][ T8096] CPU: 3 UID: 0 PID: 8096 Comm: syz.3.463 Not tainted 6.13.0-rc7-syzkaller #0
[  163.634630][ T6073] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.643864][ T8096] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.643883][ T8096] Call Trace:
[  163.643890][ T8096]  <TASK>
[  163.643899][ T8096]  dump_stack_lvl+0x16c/0x1f0
[  163.643930][ T8096]  should_fail_ex+0x497/0x5b0
[  163.643958][ T8096]  _copy_to_user+0x32/0xd0
[  163.643987][ T8096]  simple_read_from_buffer+0xd0/0x160
[  163.644010][ T8096]  proc_fail_nth_read+0x198/0x270
[  163.644038][ T8096]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  163.644068][ T8096]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  163.644095][ T8096]  vfs_read+0x1df/0xbe0
[  163.644117][ T8096]  ? __fget_files+0x1fc/0x3a0
[  163.644138][ T8096]  ? __pfx___mutex_lock+0x10/0x10
[  163.644162][ T8096]  ? __pfx_vfs_read+0x10/0x10
[  163.644190][ T8096]  ? __fget_files+0x206/0x3a0
[  163.644218][ T8096]  ksys_read+0x12b/0x250
[  163.644238][ T8096]  ? __pfx_ksys_read+0x10/0x10
[  163.644265][ T8096]  __do_fast_syscall_32+0x73/0x120
[  163.644290][ T8096]  do_fast_syscall_32+0x32/0x80
[  163.644311][ T8096]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.644337][ T8096] RIP: 0023:0xf7f58579
[  163.644352][ T8096] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.644369][ T8096] RSP: 002b:00000000f5064590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  163.644388][ T8096] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5064620
[  163.644400][ T8096] RDX: 000000000000000f RSI: 00000000f73e3ff4 RDI: 0000000000000000
[  163.644411][ T8096] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  163.644423][ T8096] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  163.644434][ T8096] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.644458][ T8096]  </TASK>
[  163.856030][ T8064] can0 (unregistered): slcan off ttyS3.
[  163.866572][ T6073] usb 6-1: Product: syz
[  163.870080][ T8092] netlink: 228 bytes leftover after parsing attributes in process `syz.0.464'.
[  163.880490][ T8092] netlink: 228 bytes leftover after parsing attributes in process `syz.0.464'.
[  163.887394][ T8092] netlink: 228 bytes leftover after parsing attributes in process `syz.0.464'.
[  163.893500][ T6073] usb 6-1: Manufacturer: à Š
[  163.895893][ T6073] usb 6-1: SerialNumber: syz
[  163.900968][ T8079] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  163.990541][ T8101] netlink: 268 bytes leftover after parsing attributes in process `syz.3.465'.
[  164.005895][ T8101] netlink: 4 bytes leftover after parsing attributes in process `syz.3.465'.
[  164.009671][ T8101] netlink: 810 bytes leftover after parsing attributes in process `syz.3.465'.
[  164.228635][ T8113] netlink: 268 bytes leftover after parsing attributes in process `syz.2.467'.
[  164.878339][   T65] Bluetooth: hci3: command tx timeout
[  164.912764][ T8125] __nla_validate_parse: 2 callbacks suppressed
[  164.912828][ T8125] netlink: 44 bytes leftover after parsing attributes in process `syz.3.470'.
[  164.920572][ T8125] netlink: 59 bytes leftover after parsing attributes in process `syz.3.470'.
[  165.165830][ T8128] netlink: 4 bytes leftover after parsing attributes in process `syz.0.471'.
[  165.238476][ T6073] usbhid 6-1:1.0: can't add hid device: -71
[  165.242271][ T6073] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  165.276145][ T6073] usb 6-1: USB disconnect, device number 8
[  165.880221][ T8141] netlink: 84 bytes leftover after parsing attributes in process `syz.0.473'.
[  166.701865][ T8144] can0: slcan on ttyS3.
[  167.164980][ T8143] can0 (unregistered): slcan off ttyS3.
[  167.846710][ T8164] can0: slcan on ttyS3.
[  168.109458][ T8181] FAULT_INJECTION: forcing a failure.
[  168.109458][ T8181] name failslab, interval 1, probability 0, space 0, times 0
[  168.196169][ T8185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.482'.
[  168.201525][ T8181] CPU: 0 UID: 0 PID: 8181 Comm: syz.1.481 Not tainted 6.13.0-rc7-syzkaller #0
[  168.209372][ T8181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.215277][ T8181] Call Trace:
[  168.216804][ T8181]  <TASK>
[  168.218346][ T8181]  dump_stack_lvl+0x16c/0x1f0
[  168.224525][ T8181]  should_fail_ex+0x497/0x5b0
[  168.226821][ T8181]  ? fs_reclaim_acquire+0xae/0x150
[  168.231299][ T8181]  should_failslab+0xc2/0x120
[  168.235608][ T8181]  __kmalloc_noprof+0xce/0x4f0
[  168.238945][ T8181]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  168.246535][ T8181]  ? tomoyo_realpath_from_path+0xbf/0x710
[  168.251358][ T8181]  tomoyo_realpath_from_path+0xbf/0x710
[  168.255656][ T8181]  ? tomoyo_path_number_perm+0x235/0x5b0
[  168.259880][ T8181]  tomoyo_path_number_perm+0x248/0x5b0
[  168.263940][ T8181]  ? tomoyo_path_number_perm+0x235/0x5b0
[  168.268141][ T8181]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  168.276745][ T8181]  ? __pfx_lock_release+0x10/0x10
[  168.281227][ T8181]  ? trace_lock_acquire+0x14e/0x1f0
[  168.285571][ T8181]  ? lock_acquire+0x2f/0xb0
[  168.289532][ T8181]  ? __fget_files+0x40/0x3a0
[  168.297985][ T8181]  ? __fget_files+0x206/0x3a0
[  168.308251][ T8181]  security_file_ioctl_compat+0x9b/0x240
[  168.322608][ T8181]  __do_compat_sys_ioctl+0x4e/0x2c0
[  168.324753][ T8181]  __do_fast_syscall_32+0x73/0x120
[  168.326935][ T8181]  do_fast_syscall_32+0x32/0x80
[  168.329250][ T8181]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  168.332747][ T8181] RIP: 0023:0xf7f01579
[  168.334691][ T8181] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  168.361058][ T8181] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  168.378868][ T8181] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000401c5504
[  168.387409][ T8181] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  168.400678][ T8181] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  168.404923][ T8181] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  168.435250][ T8181] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  168.440001][ T8181]  </TASK>
[  168.464161][ T8188] netlink: 44 bytes leftover after parsing attributes in process `syz.0.483'.
[  168.481341][ T8188] netlink: 59 bytes leftover after parsing attributes in process `syz.0.483'.
[  168.521931][ T8181] ERROR: Out of memory at tomoyo_realpath_from_path.
[  168.542575][ T8192] netlink: 44 bytes leftover after parsing attributes in process `syz.3.484'.
[  168.558345][ T8192] netlink: 59 bytes leftover after parsing attributes in process `syz.3.484'.
[  168.803936][ T8150] can0 (unregistered): slcan off ttyS3.
[  169.681232][ T8228] netlink: 4 bytes leftover after parsing attributes in process `syz.0.491'.
[  170.227262][ T5945] Bluetooth: hci2: command 0x0406 tx timeout
[  170.230667][ T5948] Bluetooth: hci0: command 0x0406 tx timeout
[  170.234259][ T5948] Bluetooth: hci1: command 0x0406 tx timeout
[  170.517754][ T8242] netlink: 268 bytes leftover after parsing attributes in process `syz.2.494'.
[  170.556141][ T8242] netlink: 4 bytes leftover after parsing attributes in process `syz.2.494'.
[  170.571644][ T8242] netlink: 810 bytes leftover after parsing attributes in process `syz.2.494'.
[  170.908193][ T8254] FAULT_INJECTION: forcing a failure.
[  170.908193][ T8254] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.915229][ T8254] CPU: 3 UID: 0 PID: 8254 Comm: syz.0.500 Not tainted 6.13.0-rc7-syzkaller #0
[  170.919450][ T8254] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.944264][ T8254] Call Trace:
[  170.945966][ T8254]  <TASK>
[  170.947316][ T8254]  dump_stack_lvl+0x16c/0x1f0
[  170.960130][ T8254]  should_fail_ex+0x497/0x5b0
[  170.962128][ T8254]  _copy_from_user+0x2e/0xd0
[  170.963954][ T8254]  userio_char_write+0xc0/0x4c0
[  170.993886][ T8254]  ? __pfx_userio_char_write+0x10/0x10
[  170.995707][ T8254]  ? bpf_lsm_file_permission+0x9/0x10
[  170.997488][ T8254]  ? security_file_permission+0x71/0x210
[  170.999358][ T8254]  ? rw_verify_area+0xd0/0x700
[  171.001534][ T8254]  ? __pfx_userio_char_write+0x10/0x10
[  171.004525][ T8254]  vfs_write+0x24c/0x1150
[  171.006605][ T8254]  ? __fget_files+0x1fc/0x3a0
[  171.008984][ T8254]  ? __pfx_lock_release+0x10/0x10
[  171.011633][ T8254]  ? __pfx_vfs_write+0x10/0x10
[  171.014001][ T8254]  ? lock_acquire+0x2f/0xb0
[  171.018742][ T8254]  ? __fget_files+0x40/0x3a0
[  171.020551][ T8254]  ? __fget_files+0x206/0x3a0
[  171.022578][ T8254]  ksys_write+0x12b/0x250
[  171.024347][ T8254]  ? __pfx_ksys_write+0x10/0x10
[  171.026371][ T8254]  __do_fast_syscall_32+0x73/0x120
[  171.028539][ T8254]  do_fast_syscall_32+0x32/0x80
[  171.030821][ T8254]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.034040][ T8254] RIP: 0023:0xf7fe2579
[  171.035985][ T8254] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.045134][ T8254] RSP: 002b:00000000f513655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  171.050282][ T8254] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  171.054933][ T8254] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  171.065160][ T8254] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.067537][ T8254] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  171.074518][ T8254] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.082542][ T8254]  </TASK>
[  171.094470][ T8252] netlink: 44 bytes leftover after parsing attributes in process `syz.1.498'.
[  171.102316][ T8252] netlink: 59 bytes leftover after parsing attributes in process `syz.1.498'.
[  171.154706][ T8256] misc userio: Can't change port type on an already running userio instance
[  171.627453][ T8260] netlink: 44 bytes leftover after parsing attributes in process `syz.3.502'.
[  173.109776][ T8277] netlink: 20 bytes leftover after parsing attributes in process `syz.2.505'.
[  173.642919][ T8288] netlink: 4 bytes leftover after parsing attributes in process `syz.0.509'.
[  173.750318][ T8296] FAULT_INJECTION: forcing a failure.
[  173.750318][ T8296] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.769219][ T8296] CPU: 1 UID: 0 PID: 8296 Comm: syz.1.512 Not tainted 6.13.0-rc7-syzkaller #0
[  173.776738][ T8296] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.783195][ T8296] Call Trace:
[  173.785324][ T8296]  <TASK>
[  173.787160][ T8296]  dump_stack_lvl+0x16c/0x1f0
[  173.790129][ T8296]  should_fail_ex+0x497/0x5b0
[  173.794142][ T8296]  _copy_from_user+0x2e/0xd0
[  173.797107][ T8296]  __sys_bpf+0x215/0x57a0
[  173.799794][ T8296]  ? __pfx_lock_release+0x10/0x10
[  173.802857][ T8296]  ? __pfx___sys_bpf+0x10/0x10
[  173.805775][ T8296]  ? vfs_write+0x306/0x1150
[  173.808552][ T8296]  ? __mutex_unlock_slowpath+0x164/0x690
[  173.812377][ T8296]  ? fput+0x67/0x440
[  173.814775][ T8296]  ? ksys_write+0x1ba/0x250
[  173.817614][ T8296]  ? __pfx_ksys_write+0x10/0x10
[  173.820419][ T8296]  __ia32_sys_bpf+0x76/0xe0
[  173.822864][ T8296]  __do_fast_syscall_32+0x73/0x120
[  173.825570][ T8296]  do_fast_syscall_32+0x32/0x80
[  173.828210][ T8296]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.831878][ T8296] RIP: 0023:0xf7f01579
[  173.834398][ T8296] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.846770][ T8296] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  173.851697][ T8296] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000780
[  173.854727][ T8296] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  173.859883][ T8296] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  173.863369][ T8296] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  173.866497][ T8296] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.870014][ T8296]  </TASK>
[  174.338513][ T8320] netlink: 20 bytes leftover after parsing attributes in process `syz.0.514'.
[  175.003407][ T8329] netlink: 84 bytes leftover after parsing attributes in process `syz.2.524'.
[  176.742668][ T8372] ip6tnl1: entered promiscuous mode
[  176.752314][ T8374] netlink: 4 bytes leftover after parsing attributes in process `syz.3.537'.
[  177.041524][   T35] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  177.102688][ T8379] netlink: 8 bytes leftover after parsing attributes in process `syz.2.539'.
[  177.207058][   T35] usb 6-1: config 0 has an invalid interface number: 241 but max is 0
[  177.210038][   T35] usb 6-1: config 0 has no interface number 0
[  177.212236][   T35] usb 6-1: config 0 interface 241 has no altsetting 0
[  177.221618][   T35] usb 6-1: New USB device found, idVendor=0ace, idProduct=1611, bcdDevice=c4.63
[  177.224793][   T35] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.238975][   T35] usb 6-1: Product: syz
[  177.240855][   T35] usb 6-1: Manufacturer: syz
[  177.253314][   T35] usb 6-1: SerialNumber: syz
[  177.261015][   T35] usb 6-1: config 0 descriptor??
[  177.474260][ T8372] bond0: up delay (5) is not a multiple of miimon (4), value rounded to 4 ms
[  177.479510][ T8372] netlink: 'syz.1.536': attribute type 10 has an invalid length.
[  177.492920][ T8372] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.496231][ T8372] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.508444][ T8372] bridge0: port 2(bridge_slave_1) entered blocking state
[  177.522526][ T8372] bridge0: port 2(bridge_slave_1) entered forwarding state
[  177.525775][ T8372] bridge0: port 1(bridge_slave_0) entered blocking state
[  177.544641][ T8372] bridge0: port 1(bridge_slave_0) entered forwarding state
[  177.593731][ T8372] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  177.635207][   T35] cdc_acm 6-1:0.241: skipping garbage
[  177.642668][   T35] usb 6-1: USB disconnect, device number 9
[  177.654351][   T69] bond0: (slave bridge0): link status definitely up, 0 Mbps full duplex
[  177.800727][ T8390] netlink: 44 bytes leftover after parsing attributes in process `syz.3.542'.
[  177.806768][ T8390] netlink: 59 bytes leftover after parsing attributes in process `syz.3.542'.
[  178.223683][    C0] vkms_vblank_simulate: vblank timer overrun
[  178.426517][ T8402] netlink: 4 bytes leftover after parsing attributes in process `syz.2.546'.
[  179.157412][ T8406] netlink: 20 bytes leftover after parsing attributes in process `syz.1.544'.
[  179.371079][ T8417] netlink: 44 bytes leftover after parsing attributes in process `syz.0.550'.
[  179.704906][ T8426] FAULT_INJECTION: forcing a failure.
[  179.704906][ T8426] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.715684][ T8426] CPU: 2 UID: 0 PID: 8426 Comm: syz.2.553 Not tainted 6.13.0-rc7-syzkaller #0
[  179.730838][ T8426] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.738543][ T8426] Call Trace:
[  179.741683][ T8426]  <TASK>
[  179.744989][ T8426]  dump_stack_lvl+0x16c/0x1f0
[  179.752051][ T8426]  should_fail_ex+0x497/0x5b0
[  179.754679][ T8426]  _copy_from_user+0x2e/0xd0
[  179.760023][ T8426]  packet_getsockopt+0x41f/0xaf0
[  179.764772][ T8426]  ? __pfx_packet_getsockopt+0x10/0x10
[  179.772170][ T8426]  ? find_held_lock+0x2d/0x110
[  179.778102][ T8426]  ? __pfx_packet_getsockopt+0x10/0x10
[  179.781082][ T8426]  do_sock_getsockopt+0x3fe/0x870
[  179.802341][ T8426]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  179.805291][ T8426]  ? lock_acquire+0x2f/0xb0
[  179.807594][    C0] vkms_vblank_simulate: vblank timer overrun
[  179.809033][ T8426]  ? __fget_files+0x40/0x3a0
[  179.832690][ T8426]  ? __fget_files+0x206/0x3a0
[  179.835308][ T8426]  __sys_getsockopt+0x12f/0x260
[  179.840032][ T8426]  __ia32_sys_getsockopt+0xbc/0x160
[  179.850269][ T8426]  ? lockdep_hardirqs_on+0x7c/0x110
[  179.853508][ T8426]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  179.858380][ T8426]  __do_fast_syscall_32+0x73/0x120
[  179.863670][ T8426]  do_fast_syscall_32+0x32/0x80
[  179.870311][ T8426]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  179.877058][ T8426] RIP: 0023:0xf7ff6579
[  179.879467][ T8426] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  179.893991][ T8426] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  179.899717][ T8426] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000107
[  179.906160][ T8426] RDX: 000000000000000b RSI: 00000000200000c0 RDI: 0000000020000100
[  179.913324][ T8426] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  179.918948][ T8426] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  179.940923][ T8426] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  179.943612][    C0] vkms_vblank_simulate: vblank timer overrun
[  179.949581][ T8426]  </TASK>
[  180.196571][ T8432] netlink: 4 bytes leftover after parsing attributes in process `syz.0.555'.
[  180.395772][ T8438] netlink: 44 bytes leftover after parsing attributes in process `syz.1.556'.
[  180.401214][ T8438] netlink: 59 bytes leftover after parsing attributes in process `syz.1.556'.
[  180.559817][ T8427] Driver unsupported XDP return value 0 on prog  (id 109) dev N/A, expect packet loss!
[  180.897637][    C0] vkms_vblank_simulate: vblank timer overrun
[  180.927604][    C0] vkms_vblank_simulate: vblank timer overrun
[  181.877381][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.096643][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.127679][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.183633][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.218110][ T8456] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/nbd2": -EINTR
[  182.450226][ T5952] Bluetooth: hci0: unexpected event for opcode 0x204e
[  182.605912][ T8464] netlink: 44 bytes leftover after parsing attributes in process `syz.2.564'.
[  182.613288][ T8466] FAULT_INJECTION: forcing a failure.
[  182.613288][ T8466] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.627787][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.646719][ T8466] CPU: 3 UID: 0 PID: 8466 Comm: syz.1.563 Not tainted 6.13.0-rc7-syzkaller #0
[  182.666404][ T8466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  182.670572][ T8466] Call Trace:
[  182.672005][ T8466]  <TASK>
[  182.673177][ T8466]  dump_stack_lvl+0x16c/0x1f0
[  182.675059][ T8466]  should_fail_ex+0x497/0x5b0
[  182.692039][ T8466]  _copy_from_user+0x2e/0xd0
[  182.694340][ T8466]  get_compat_msghdr+0xa8/0x170
[  182.696994][ T8466]  ? __pfx_get_compat_msghdr+0x10/0x10
[  182.700501][ T8466]  ___sys_sendmsg+0x1b0/0x1e0
[  182.703464][ T8466]  ? __pfx____sys_sendmsg+0x10/0x10
[  182.706976][ T8466]  ? __pfx_lock_release+0x10/0x10
[  182.723705][ T8466]  ? trace_lock_acquire+0x14e/0x1f0
[  182.725900][ T8466]  ? __fget_files+0x206/0x3a0
[  182.727911][ T8466]  __sys_sendmsg+0x16e/0x220
[  182.730200][ T8466]  ? __pfx___sys_sendmsg+0x10/0x10
[  182.732144][ T8466]  __do_fast_syscall_32+0x73/0x120
[  182.734020][ T8466]  do_fast_syscall_32+0x32/0x80
[  182.735844][ T8466]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  182.748768][ T8466] RIP: 0023:0xf7f01579
[  182.751051][ T8466] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  182.768584][ T8466] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  182.771988][ T8466] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005440
[  182.775734][ T8466] RDX: 0000000000004010 RSI: 0000000000000000 RDI: 0000000000000000
[  182.789923][ T8466] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  182.793032][ T8466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  182.796284][ T8466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  182.813561][ T8466]  </TASK>
[  183.195576][    C0] vkms_vblank_simulate: vblank timer overrun
[  183.468855][    C0] vkms_vblank_simulate: vblank timer overrun
[  183.588433][    C0] vkms_vblank_simulate: vblank timer overrun
[  183.972508][ T8478] netlink: 44 bytes leftover after parsing attributes in process `syz.1.568'.
[  183.976244][ T8478] netlink: 59 bytes leftover after parsing attributes in process `syz.1.568'.
[  184.171608][    C0] vkms_vblank_simulate: vblank timer overrun
[  184.743692][    C0] vkms_vblank_simulate: vblank timer overrun
[  184.936169][ T8489] netlink: 268 bytes leftover after parsing attributes in process `syz.1.571'.
[  184.979381][ T8489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.571'.
[  184.995722][ T8489] netlink: 810 bytes leftover after parsing attributes in process `syz.1.571'.
[  185.327634][    C0] vkms_vblank_simulate: vblank timer overrun
[  185.417686][    C0] vkms_vblank_simulate: vblank timer overrun
[  185.597611][    C0] vkms_vblank_simulate: vblank timer overrun
[  185.919765][    C0] vkms_vblank_simulate: vblank timer overrun
[  185.960245][    C0] vkms_vblank_simulate: vblank timer overrun
[  186.685820][ T8512] netlink: 4 bytes leftover after parsing attributes in process `syz.0.578'.
[  186.700966][ T8512] netlink: 4 bytes leftover after parsing attributes in process `syz.0.578'.
[  186.745131][ T8512] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  187.080427][    C0] vkms_vblank_simulate: vblank timer overrun
[  187.081895][ T8518] netlink: 44 bytes leftover after parsing attributes in process `syz.0.579'.
[  187.090200][ T8518] netlink: 59 bytes leftover after parsing attributes in process `syz.0.579'.
[  187.176341][ T8521] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  187.615586][    C0] vkms_vblank_simulate: vblank timer overrun
[  187.681495][    C0] vkms_vblank_simulate: vblank timer overrun
[  187.938912][ T8527] __nla_validate_parse: 1 callbacks suppressed
[  187.938932][ T8527] netlink: 16 bytes leftover after parsing attributes in process `syz.2.581'.
[  187.984900][ T8529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.582'.
[  188.437895][   T35] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  188.485371][   T35] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  189.702081][ T8563] capability: warning: `syz.0.593' uses deprecated v2 capabilities in a way that may be insecure
[  190.094405][ T8570] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  193.789332][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  193.795570][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  193.885159][ T8605] FAULT_INJECTION: forcing a failure.
[  193.885159][ T8605] name failslab, interval 1, probability 0, space 0, times 0
[  193.899566][ T8605] CPU: 2 UID: 0 PID: 8605 Comm: syz.0.604 Not tainted 6.13.0-rc7-syzkaller #0
[  193.902931][ T8605] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.907448][ T8605] Call Trace:
[  193.908959][ T8605]  <TASK>
[  193.910306][ T8605]  dump_stack_lvl+0x16c/0x1f0
[  193.913109][ T8605]  should_fail_ex+0x497/0x5b0
[  193.927826][ T8605]  ? fs_reclaim_acquire+0xae/0x150
[  193.930625][ T8605]  should_failslab+0xc2/0x120
[  193.933424][ T8605]  __kmalloc_noprof+0xce/0x4f0
[  193.936472][ T8605]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  193.939941][ T8605]  ? tomoyo_realpath_from_path+0xbf/0x710
[  193.949576][ T8605]  tomoyo_realpath_from_path+0xbf/0x710
[  193.951687][ T8605]  ? tomoyo_path_number_perm+0x235/0x5b0
[  193.954355][ T8605]  tomoyo_path_number_perm+0x248/0x5b0
[  193.957128][ T8605]  ? tomoyo_path_number_perm+0x235/0x5b0
[  193.970305][ T8605]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  193.972984][ T8605]  ? __pfx_lock_release+0x10/0x10
[  193.975085][ T8605]  ? trace_lock_acquire+0x14e/0x1f0
[  193.988045][ T8605]  ? lock_acquire+0x2f/0xb0
[  193.990212][ T8605]  ? __fget_files+0x40/0x3a0
[  193.992615][ T8605]  ? __fget_files+0x206/0x3a0
[  193.994884][ T8605]  security_file_ioctl_compat+0x9b/0x240
[  193.997490][ T8605]  __do_compat_sys_ioctl+0x4e/0x2c0
[  194.008920][ T8605]  __do_fast_syscall_32+0x73/0x120
[  194.011673][ T8605]  do_fast_syscall_32+0x32/0x80
[  194.014188][ T8605]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  194.017050][ T8605] RIP: 0023:0xf7fe2579
[  194.021676][ T8605] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  194.034934][ T8605] RSP: 002b:00000000f513655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  194.052666][ T8605] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000089f2
[  194.055788][ T8605] RDX: 0000000020000e80 RSI: 0000000000000000 RDI: 0000000000000000
[  194.059349][ T8605] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  194.063078][ T8605] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  194.070529][ T8605] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  194.074306][ T8605]  </TASK>
[  194.113306][ T8605] ERROR: Out of memory at tomoyo_realpath_from_path.
[  195.427610][ T8602] syz.2.603 (8602): drop_caches: 2
[  195.744499][ T5957] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  195.770373][ T5957] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  195.778502][ T5957] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  195.797003][ T5957] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  195.808370][ T5957] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  195.818244][ T5957] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  196.084086][ T8618] chnl_net:caif_netlink_parms(): no params data found
[  196.280162][ T8618] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.286693][ T8618] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.292719][ T8618] bridge_slave_0: entered allmulticast mode
[  196.300188][ T8618] bridge_slave_0: entered promiscuous mode
[  196.348074][ T8618] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.362801][ T8618] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.366663][ T8618] bridge_slave_1: entered allmulticast mode
[  196.381328][ T8618] bridge_slave_1: entered promiscuous mode
[  197.013173][ T8638] netlink: 44 bytes leftover after parsing attributes in process `syz.2.612'.
[  197.049035][   T45] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.235426][ T8618] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  197.256984][ T8618] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  197.302151][   T45] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.515987][ T8618] team0: Port device team_slave_0 added
[  197.542509][ T8618] team0: Port device team_slave_1 added
[  197.596941][   T45] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.724168][ T8618] batman_adv: batadv0: Adding interface: batadv_slave_0
[  197.727087][ T8618] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.759407][ T8618] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  197.789527][ T8618] batman_adv: batadv0: Adding interface: batadv_slave_1
[  197.802695][ T8618] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.827830][ T8618] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  197.902307][ T5952] Bluetooth: hci4: command tx timeout
[  197.987950][   T45] bond0: (slave netdevsim0): Releasing backup interface
[  198.034445][ T6073] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  198.046457][   T45] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.231565][ T6073] usb 7-1: Using ep0 maxpacket: 8
[  198.240209][ T6073] usb 7-1: config 0 has no interfaces?
[  198.247895][ T6073] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  198.262919][ T6073] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.322322][ T6073] usb 7-1: config 0 descriptor??
[  198.371980][ T8618] hsr_slave_0: entered promiscuous mode
[  198.407989][ T8618] hsr_slave_1: entered promiscuous mode
[  198.432372][ T8618] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  198.435676][ T8618] Cannot create hsr debugfs directory
[  198.806552][ T8651] netlink: 'syz.2.613': attribute type 12 has an invalid length.
[  199.995527][ T5952] Bluetooth: hci4: command tx timeout
[  200.750845][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  200.766240][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  200.774847][   T45] bond0 (unregistering): Released all slaves
[  200.955773][ T1322] usb 7-1: USB disconnect, device number 4
[  201.215339][ T8661] FAULT_INJECTION: forcing a failure.
[  201.215339][ T8661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  201.221240][ T8618] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  201.221363][ T8661] CPU: 3 UID: 0 PID: 8661 Comm: syz.1.617 Not tainted 6.13.0-rc7-syzkaller #0
[  201.241218][ T8661] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  201.243784][ T8665] netlink: 68 bytes leftover after parsing attributes in process `syz.2.618'.
[  201.254933][ T8661] Call Trace:
[  201.254948][ T8661]  <TASK>
[  201.254956][ T8661]  dump_stack_lvl+0x16c/0x1f0
[  201.254985][ T8661]  should_fail_ex+0x497/0x5b0
[  201.255010][ T8661]  _copy_from_iter+0x29b/0x1400
[  201.255038][ T8661]  ? __pfx__copy_from_iter+0x10/0x10
[  201.255063][ T8661]  ? tun_build_skb.constprop.0+0x1b8/0x1120
[  201.255086][ T8661]  ? __pfx_lock_release+0x10/0x10
[  201.255101][ T8661]  ? trace_lock_acquire+0x14e/0x1f0
[  201.275564][ T8665] netlink: 12 bytes leftover after parsing attributes in process `syz.2.618'.
[  201.276666][ T8661]  copy_page_from_iter+0xa5/0x120
[  201.276703][ T8661]  tun_build_skb.constprop.0+0x294/0x1120
[  201.310533][ T8661]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  201.313531][ T8661]  ? __pfx___lock_acquire+0x10/0x10
[  201.316205][ T8661]  ? __lock_acquire+0xcc5/0x3c40
[  201.318396][ T8661]  tun_get_user+0x870/0x3e40
[  201.320593][ T8661]  ? find_held_lock+0x2d/0x110
[  201.323181][ T8661]  ? __pfx_tun_get_user+0x10/0x10
[  201.325852][ T8661]  ? find_held_lock+0x2d/0x110
[  201.328616][ T8661]  ? __pfx_lock_release+0x10/0x10
[  201.331273][ T8661]  tun_chr_write_iter+0xdc/0x210
[  201.334119][ T8661]  vfs_write+0x5ae/0x1150
[  201.336738][ T8661]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  201.339660][ T8661]  ? __pfx_vfs_write+0x10/0x10
[  201.342489][ T8661]  ? __fget_files+0x40/0x3a0
[  201.345180][ T8661]  ksys_write+0x12b/0x250
[  201.347842][ T8661]  ? __pfx_ksys_write+0x10/0x10
[  201.350835][ T8661]  __do_fast_syscall_32+0x73/0x120
[  201.353921][ T8661]  do_fast_syscall_32+0x32/0x80
[  201.356555][ T8661]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  201.361100][ T8661] RIP: 0023:0xf7f01579
[  201.363133][ T8661] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  201.376949][ T8661] RSP: 002b:00000000f5056520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  201.381503][ T8661] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000080
[  201.384999][ T8661] RDX: 000000000000002a RSI: 00000000f7393ff4 RDI: 0000000000000000
[  201.389406][ T8661] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  201.394630][ T8661] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  201.399354][ T8661] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  201.404056][ T8661]  </TASK>
[  201.708896][ T8618] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  201.794796][ T8618] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  201.840753][ T8675] FAULT_INJECTION: forcing a failure.
[  201.840753][ T8675] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  201.850695][ T8675] CPU: 2 UID: 0 PID: 8675 Comm: syz.2.619 Not tainted 6.13.0-rc7-syzkaller #0
[  201.861890][ T8675] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  201.866044][ T8675] Call Trace:
[  201.879497][ T8675]  <TASK>
[  201.881335][ T8675]  dump_stack_lvl+0x16c/0x1f0
[  201.884188][ T8675]  should_fail_ex+0x497/0x5b0
[  201.892118][ T8675]  _copy_to_user+0x32/0xd0
[  201.894265][ T8675]  simple_read_from_buffer+0xd0/0x160
[  201.896830][ T8675]  proc_fail_nth_read+0x198/0x270
[  201.899800][ T8675]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  201.903341][ T8675]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  201.906663][ T8675]  vfs_read+0x1df/0xbe0
[  201.909190][ T8675]  ? __fget_files+0x1fc/0x3a0
[  201.919065][ T8675]  ? __pfx___mutex_lock+0x10/0x10
[  201.936479][ T8675]  ? __pfx_vfs_read+0x10/0x10
[  201.939219][ T8675]  ? __fget_files+0x206/0x3a0
[  201.942086][ T8675]  ksys_read+0x12b/0x250
[  201.944665][ T8675]  ? __pfx_ksys_read+0x10/0x10
[  201.947130][ T8675]  __do_fast_syscall_32+0x73/0x120
[  201.949313][ T8675]  do_fast_syscall_32+0x32/0x80
[  201.950841][ T8675]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  201.959528][ T8675] RIP: 0023:0xf7ff6579
[  201.961939][ T8675] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  201.970932][ T8675] RSP: 002b:00000000f5146590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  201.974667][ T8675] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5146620
[  201.977992][ T8675] RDX: 000000000000000f RSI: 00000000f7483ff4 RDI: 0000000000000000
[  201.981918][ T8675] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  201.984973][ T8675] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  201.988327][ T8675] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  201.991754][ T8675]  </TASK>
[  202.061719][ T5952] Bluetooth: hci4: command tx timeout
[  202.121688][ T8618] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  202.194155][ T8682] netlink: 44 bytes leftover after parsing attributes in process `syz.0.622'.
[  202.200978][ T8682] netlink: 59 bytes leftover after parsing attributes in process `syz.0.622'.
[  202.233268][ T8618] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.508952][   T45] hsr_slave_0: left promiscuous mode
[  202.512584][   T45] hsr_slave_1: left promiscuous mode
[  202.515458][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  202.518261][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  202.544231][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  202.553323][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  202.838823][   T45] veth1_macvtap: left promiscuous mode
[  202.855173][   T45] veth0_macvtap: left promiscuous mode
[  202.869213][   T45] veth1_vlan: left promiscuous mode
[  202.874216][   T45] veth0_vlan: left promiscuous mode
[  203.293159][ T8696] netlink: 44 bytes leftover after parsing attributes in process `syz.1.624'.
[  203.296815][ T8696] netlink: 59 bytes leftover after parsing attributes in process `syz.1.624'.
[  204.159644][ T5952] Bluetooth: hci4: command tx timeout
[  206.062474][ T5952] Bluetooth: hci3: command 0x0406 tx timeout
[  207.121285][   T45] team0 (unregistering): Port device team_slave_1 removed
[  207.476166][   T45] team0 (unregistering): Port device team_slave_0 removed
[  209.727534][ T8618] 8021q: adding VLAN 0 to HW filter on device team0
[  209.800962][ T8700] bridge0: entered promiscuous mode
[  209.818198][ T8700] bridge0: entered allmulticast mode
[  209.837568][ T8700] team0: Port device bridge0 added
[  210.072998][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.077896][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state
[  210.122331][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.132713][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.197389][ T8618] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  210.275650][ T8726] netlink: 44 bytes leftover after parsing attributes in process `syz.0.631'.
[  210.287533][ T8726] netlink: 59 bytes leftover after parsing attributes in process `syz.0.631'.
[  210.606325][ T8737] netlink: 24 bytes leftover after parsing attributes in process `syz.1.633'.
[  210.647828][   T57] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  210.802829][   T57] usb 7-1: Using ep0 maxpacket: 8
[  210.820160][   T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  210.831609][   T57] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  210.835895][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.843974][ T8618] 8021q: adding VLAN 0 to HW filter on device batadv0
[  210.857674][   T57] usb 7-1: config 0 descriptor??
[  211.084918][   T57] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  211.309775][ T8755] netlink: 4 bytes leftover after parsing attributes in process `syz.0.635'.
[  211.329384][ T8618] veth0_vlan: entered promiscuous mode
[  211.358988][ T8618] veth1_vlan: entered promiscuous mode
[  211.381055][ T8618] veth0_macvtap: entered promiscuous mode
[  211.393516][ T8618] veth1_macvtap: entered promiscuous mode
[  211.445591][ T8618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  211.466360][ T8618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.481612][ T8618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  211.491310][ T8618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.498863][ T8618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  211.504004][ T8618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.510880][ T8618] batman_adv: batadv0: Interface activated: batadv_slave_0
[  211.548040][   T45] IPVS: stop unused estimator thread 0...
[  211.572750][ T8618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.576613][ T8618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.588988][ T8618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.595014][ T8618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.601767][ T8618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.610015][ T8618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.624076][ T8618] batman_adv: batadv0: Interface activated: batadv_slave_1
[  211.630240][ T8618] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  211.635743][ T8618] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  211.640493][ T8618] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  211.645786][ T8618] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  211.717603][  T834] IPVS: starting estimator thread 0...
[  211.813872][ T8771] IPVS: using max 21 ests per chain, 50400 per kthread
[  211.863625][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  211.912246][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  211.956050][ T1234] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  211.972335][ T1234] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.141430][ T8780] ==================================================================
[  213.145670][ T8780] BUG: KASAN: slab-use-after-free in __lock_acquire+0x2d90/0x3c40
[  213.180456][ T8780] Read of size 8 at addr ffff888043ddc180 by task syz.4.606/8780
[  213.182687][ T8780] 
[  213.183405][ T8780] CPU: 0 UID: 0 PID: 8780 Comm: syz.4.606 Not tainted 6.13.0-rc7-syzkaller #0
[  213.185940][ T8780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.192759][ T8780] Call Trace:
[  213.193911][ T8780]  <TASK>
[  213.194930][ T8780]  dump_stack_lvl+0x116/0x1f0
[  213.198768][ T8780]  print_report+0xc3/0x620
[  213.214280][ T8780]  ? __virt_addr_valid+0x5e/0x590
[  213.216298][ T8780]  ? __phys_addr+0xc6/0x150
[  213.243864][ T8780]  kasan_report+0xd9/0x110
[  213.245984][ T8780]  ? __lock_acquire+0x2d90/0x3c40
[  213.260297][ T8780]  ? __lock_acquire+0x2d90/0x3c40
[  213.262341][ T8780]  __lock_acquire+0x2d90/0x3c40
[  213.264292][ T8780]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  213.288373][ T8780]  ? try_to_wake_up+0x158/0x1490
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  213.290935][ T8780]  ? __pfx_try_to_wake_up+0x10/0x10
[  213.312398][ T8780]  ? __pfx_lock_release+0x10/0x10
[  213.314644][ T8780]  ? __pfx___lock_acquire+0x10/0x10
[  213.316707][ T8780]  lock_acquire.part.0+0x11b/0x380
[  213.318801][ T8780]  ? __wake_up+0x1c/0x60
[  213.320294][ T8780]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  213.322286][ T8780]  ? rcu_is_watching+0x12/0xc0
[  213.323820][ T8780]  ? trace_lock_acquire+0x14e/0x1f0
[  213.328157][ T8780]  ? __wake_up+0x1c/0x60
[  213.333629][ T8780]  ? lock_acquire+0x2f/0xb0
[  213.338098][ T8780]  ? __wake_up+0x1c/0x60
[  213.340823][ T8780]  _raw_spin_lock_irqsave+0x3a/0x60
[  213.346064][ T8780]  ? __wake_up+0x1c/0x60
[  213.351297][ T8780]  __wake_up+0x1c/0x60
[  213.360381][ T8780]  snd_pcm_action_single+0x10a/0x150
[  213.376980][ T8780]  snd_pcm_action+0x70/0x90
[  213.378882][ T8780]  loopback_trigger+0xd5a/0x1e60
[  213.380586][ T8780]  ? do_raw_spin_lock+0x12d/0x2c0
[  213.387588][ T8780]  snd_pcm_do_start+0xd1/0x1f0
[  213.389742][ T8780]  snd_pcm_action_single+0x7d/0x150
[  213.392717][ T8780]  snd_pcm_action+0x70/0x90
[  213.398788][ T8780]  __snd_pcm_lib_xfer+0x13f5/0x1ea0
[  213.401189][ T8780]  ? __pfx_default_write_copy+0x10/0x10
[  213.408857][ T8780]  ? __pfx_interleaved_copy+0x10/0x10
[  213.411054][ T8780]  ? __pfx___snd_pcm_lib_xfer+0x10/0x10
[  213.413607][ T8780]  ? __pfx_mark_lock+0x10/0x10
[  213.419136][ T8780]  snd_pcm_oss_write3+0xd5/0x1e0
[  213.421219][ T8780]  snd_pcm_oss_write2+0x318/0x3f0
[  213.429541][ T8780]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  213.432601][ T8780]  ? mark_held_locks+0x9f/0xe0
[  213.437289][ T8780]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  213.439415][ T8780]  snd_pcm_oss_sync1+0x1bf/0x510
[  213.441206][ T8780]  ? __pfx_snd_pcm_oss_sync1+0x10/0x10
[  213.449205][ T8780]  ? __pfx_default_wake_function+0x10/0x10
[  213.457511][ T8780]  ? __pfx___fsnotify_parent+0x10/0x10
[  213.459410][ T8780]  ? snd_pcm_format_set_silence+0x1c6/0x560
[  213.461630][ T8780]  snd_pcm_oss_sync+0x617/0x7f0
[  213.467528][ T8780]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  213.470340][ T8780]  snd_pcm_oss_release+0x28b/0x310
[  213.492737][ T8780]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  213.495704][ T8780]  __fput+0x3f8/0xb60
[  213.497529][ T8780]  task_work_run+0x14e/0x250
[  213.499897][ T8780]  ? __pfx_task_work_run+0x10/0x10
[  213.507732][ T8780]  ? __pfx___do_sys_close_range+0x10/0x10
[  213.510456][ T8780]  syscall_exit_to_user_mode+0x27b/0x2a0
[  213.513380][ T8780]  __do_fast_syscall_32+0x80/0x120
[  213.522944][ T8780]  do_fast_syscall_32+0x32/0x80
[  213.525057][ T8780]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  213.527735][ T8780] RIP: 0023:0xf7ff3579
[  213.529438][ T8780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  213.553356][ T8780] RSP: 002b:00000000ff85b66c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4
[  213.564256][ T8780] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e
[  213.579350][ T8780] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  213.588493][ T8780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  213.597231][ T8780] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  213.605174][ T8780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  213.617283][ T8780]  </TASK>
[  213.619444][ T8780] 
[  213.620625][ T8780] Allocated by task 8781:
[  213.622729][ T8780]  kasan_save_stack+0x33/0x60
[  213.629366][ T8780]  kasan_save_track+0x14/0x30
[  213.632141][ T8780]  __kasan_kmalloc+0xaa/0xb0
[  213.634280][ T8780]  snd_pcm_attach_substream+0x414/0xd20
[  213.637044][ T8780]  snd_pcm_open_substream+0x8e/0x17c0
[  213.639460][ T8780]  snd_pcm_oss_open+0x754/0x1400
[  213.642438][ T8780]  soundcore_open+0x409/0x580
[  213.645387][ T8780]  chrdev_open+0x237/0x6a0
[  213.648237][ T8780]  do_dentry_open+0xf59/0x1ea0
[  213.651460][ T8780]  vfs_open+0x82/0x3f0
[  213.654003][ T8780]  path_openat+0x1e6a/0x2d60
[  213.656929][ T8780]  do_filp_open+0x20c/0x470
[  213.659844][ T8780]  do_sys_openat2+0x17a/0x1e0
[  213.662829][ T8780]  __ia32_compat_sys_openat+0x16e/0x210
[  213.666203][ T8780]  __do_fast_syscall_32+0x73/0x120
[  213.669603][ T8780]  do_fast_syscall_32+0x32/0x80
[  213.672663][ T8780]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  213.676816][ T8780] 
[  213.678383][ T8780] Freed by task 8781:
[  213.680881][ T8780]  kasan_save_stack+0x33/0x60
[  213.683818][ T8780]  kasan_save_track+0x14/0x30
[  213.686779][ T8780]  kasan_save_free_info+0x3b/0x60
[  213.692851][ T8780]  __kasan_slab_free+0x51/0x70
[  213.695961][ T8780]  kfree+0x14f/0x4b0
[  213.698057][ T8780]  snd_pcm_detach_substream+0x1d0/0x380
[  213.701241][ T8780]  snd_pcm_release_substream+0x5b/0x70
[  213.704552][ T8780]  snd_pcm_oss_release+0x16f/0x310
[  213.707568][ T8780]  __fput+0x3f8/0xb60
[  213.709800][ T8780]  task_work_run+0x14e/0x250
[  213.712470][ T8780]  syscall_exit_to_user_mode+0x27b/0x2a0
[  213.715510][ T8780]  __do_fast_syscall_32+0x80/0x120
[  213.719058][ T8780]  do_fast_syscall_32+0x32/0x80
[  213.721943][ T8780]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  213.724699][ T8780] 
[  213.725986][ T8780] The buggy address belongs to the object at ffff888043ddc000
[  213.725986][ T8780]  which belongs to the cache kmalloc-2k of size 2048
[  213.734729][ T8780] The buggy address is located 384 bytes inside of
[  213.734729][ T8780]  freed 2048-byte region [ffff888043ddc000, ffff888043ddc800)
[  213.743361][ T8780] 
[  213.744824][ T8780] The buggy address belongs to the physical page:
[  213.749460][ T8780] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x43dd8
[  213.754735][ T8780] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  213.760090][ T8780] anon flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[  213.764985][ T8780] page_type: f5(slab)
[  213.767758][ T8780] raw: 04fff00000000040 ffff88801ac42f00 0000000000000000 dead000000000001
[  213.773116][ T8780] raw: 0000000000000000 0000000000080008 00000001f5000000 0000000000000000
[  213.778420][ T8780] head: 04fff00000000040 ffff88801ac42f00 0000000000000000 dead000000000001
[  213.783529][ T8780] head: 0000000000000000 0000000000080008 00000001f5000000 0000000000000000
[  213.810119][ T8780] head: 04fff00000000003 ffffea00010f7601 ffffffffffffffff 0000000000000000
[  213.813980][ T8780] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  213.819717][ T8780] page dumped because: kasan: bad access detected
[  213.830104][ T8780] page_owner tracks the page as allocated
[  213.832718][ T8780] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5954, tgid 5954 (syz-executor), ts 47479937592, free_ts 47460882310
[  213.846002][ T8780]  post_alloc_hook+0x2d1/0x350
[  213.847748][ T8780]  get_page_from_freelist+0xfce/0x2f80
[  213.849668][ T8780]  __alloc_pages_noprof+0x223/0x25b0
[  213.852414][ T8780]  alloc_pages_mpol_noprof+0x2c9/0x610
[  213.855480][ T8780]  new_slab+0x2c9/0x410
[  213.857938][ T8780]  ___slab_alloc+0xce2/0x1650
[  213.860116][ T8780]  __slab_alloc.constprop.0+0x56/0xb0
[  213.862707][ T8780]  __kmalloc_node_track_caller_noprof+0x2ee/0x520
[  213.866040][ T8780]  kmalloc_reserve+0xef/0x2c0
[  213.868735][ T8780]  __alloc_skb+0x164/0x380
[  213.870924][ T8780]  inet6_ifinfo_notify+0x77/0x150
[  213.873304][ T8780]  addrconf_notify+0x81a/0x19c0
[  213.875842][ T8780]  notifier_call_chain+0xb7/0x410
[  213.878001][ T8780]  call_netdevice_notifiers_info+0xbe/0x140
[  213.880332][ T8780]  __dev_notify_flags+0x12d/0x2e0
[  213.882698][ T8780]  dev_change_flags+0x10c/0x160
[  213.885026][ T8780] page last free pid 5993 tgid 5993 stack trace:
[  213.888239][ T8780]  free_unref_page+0x661/0x1080
[  213.890413][ T8780]  qlist_free_all+0x4e/0x120
[  213.892114][ T8780]  kasan_quarantine_reduce+0x195/0x1e0
[  213.894293][ T8780]  __kasan_slab_alloc+0x69/0x90
[  213.896343][ T8780]  kmem_cache_alloc_noprof+0x1c8/0x3b0
[  213.898633][ T8780]  getname_flags.part.0+0x4c/0x550
[  213.900869][ T8780]  getname+0x8d/0xe0
[  213.902593][ T8780]  do_sys_openat2+0x104/0x1e0
[  213.904644][ T8780]  __x64_sys_openat+0x175/0x210
[  213.906748][ T8780]  do_syscall_64+0xcd/0x250
[  213.908737][ T8780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.911459][ T8780] 
[  213.912855][ T8780] Memory state around the buggy address:
[  213.916044][ T8780]  ffff888043ddc080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  213.920983][ T8780]  ffff888043ddc100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  213.925824][ T8780] >ffff888043ddc180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  213.930191][ T8780]                    ^
[  213.932196][ T8780]  ffff888043ddc200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  213.936034][ T8780]  ffff888043ddc280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  213.939789][ T8780] ==================================================================
[  213.943341][ T8780] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  213.946517][ T8780] CPU: 0 UID: 0 PID: 8780 Comm: syz.4.606 Not tainted 6.13.0-rc7-syzkaller #0
[  213.951367][ T8780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.957774][ T8780] Call Trace:
[  213.960086][ T8780]  <TASK>
[  213.961687][ T8780]  dump_stack_lvl+0x3d/0x1f0
[  213.963878][ T8780]  panic+0x71d/0x800
[  213.965728][ T8780]  ? __pfx_panic+0x10/0x10
[  213.967904][ T8780]  ? rcu_is_watching+0x12/0xc0
[  213.969930][ T8780]  ? __pfx_lock_release+0x10/0x10
[  213.972122][ T8780]  ? check_panic_on_warn+0x1f/0xb0
[  213.973896][ T8780]  check_panic_on_warn+0xab/0xb0
[  213.975942][ T8780]  end_report+0x117/0x180
[  213.978110][ T8780]  kasan_report+0xe9/0x110
[  213.980610][ T8780]  ? __lock_acquire+0x2d90/0x3c40
[  213.983624][ T8780]  ? __lock_acquire+0x2d90/0x3c40
[  213.986641][ T8780]  __lock_acquire+0x2d90/0x3c40
[  213.989621][ T8780]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  213.992751][ T8780]  ? try_to_wake_up+0x158/0x1490
[  213.995082][ T8780]  ? __pfx_try_to_wake_up+0x10/0x10
[  213.997108][ T8780]  ? __pfx_lock_release+0x10/0x10
[  213.999234][ T8780]  ? __pfx___lock_acquire+0x10/0x10
[  214.001629][ T8780]  lock_acquire.part.0+0x11b/0x380
[  214.004041][ T8780]  ? __wake_up+0x1c/0x60
[  214.006112][ T8780]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  214.009255][ T8780]  ? rcu_is_watching+0x12/0xc0
[  214.014187][ T8780]  ? trace_lock_acquire+0x14e/0x1f0
[  214.016663][ T8780]  ? __wake_up+0x1c/0x60
[  214.018838][ T8780]  ? lock_acquire+0x2f/0xb0
[  214.020951][ T8780]  ? __wake_up+0x1c/0x60
[  214.022605][ T8780]  _raw_spin_lock_irqsave+0x3a/0x60
[  214.024261][ T8780]  ? __wake_up+0x1c/0x60
[  214.025555][ T8780]  __wake_up+0x1c/0x60
[  214.027201][ T8780]  snd_pcm_action_single+0x10a/0x150
[  214.029479][ T8780]  snd_pcm_action+0x70/0x90
[  214.031716][ T8780]  loopback_trigger+0xd5a/0x1e60
[  214.034050][ T8780]  ? do_raw_spin_lock+0x12d/0x2c0
[  214.036490][ T8780]  snd_pcm_do_start+0xd1/0x1f0
[  214.038858][ T8780]  snd_pcm_action_single+0x7d/0x150
[  214.041570][ T8780]  snd_pcm_action+0x70/0x90
[  214.043422][ T8780]  __snd_pcm_lib_xfer+0x13f5/0x1ea0
[  214.045864][ T8780]  ? __pfx_default_write_copy+0x10/0x10
[  214.048741][ T8780]  ? __pfx_interleaved_copy+0x10/0x10
[  214.051515][ T8780]  ? __pfx___snd_pcm_lib_xfer+0x10/0x10
[  214.054520][ T8780]  ? __pfx_mark_lock+0x10/0x10
[  214.060535][ T8780]  snd_pcm_oss_write3+0xd5/0x1e0
[  214.062888][ T8780]  snd_pcm_oss_write2+0x318/0x3f0
[  214.065279][ T8780]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  214.067970][ T8780]  ? mark_held_locks+0x9f/0xe0
[  214.070224][ T8780]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  214.073470][ T8780]  snd_pcm_oss_sync1+0x1bf/0x510
[  214.076557][ T8780]  ? __pfx_snd_pcm_oss_sync1+0x10/0x10
[  214.079945][ T8780]  ? __pfx_default_wake_function+0x10/0x10
[  214.083448][ T8780]  ? __pfx___fsnotify_parent+0x10/0x10
[  214.086733][ T8780]  ? snd_pcm_format_set_silence+0x1c6/0x560
[  214.089694][ T8780]  snd_pcm_oss_sync+0x617/0x7f0
[  214.091997][ T8780]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  214.094630][ T8780]  snd_pcm_oss_release+0x28b/0x310
[  214.097084][ T8780]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  214.099753][ T8780]  __fput+0x3f8/0xb60
[  214.101638][ T8780]  task_work_run+0x14e/0x250
[  214.103940][ T8780]  ? __pfx_task_work_run+0x10/0x10
[  214.107088][ T8780]  ? __pfx___do_sys_close_range+0x10/0x10
[  214.110552][ T8780]  syscall_exit_to_user_mode+0x27b/0x2a0
[  214.114042][ T8780]  __do_fast_syscall_32+0x80/0x120
[  214.117874][ T8780]  do_fast_syscall_32+0x32/0x80
[  214.121029][ T8780]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  214.124030][ T8780] RIP: 0023:0xf7ff3579
[  214.125982][ T8780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  214.136875][ T8780] RSP: 002b:00000000ff85b66c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4
[  214.142184][ T8780] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e
[  214.148456][ T8780] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  214.152762][ T8780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  214.156500][ T8780] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  214.160221][ T8780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  214.163964][ T8780]  </TASK>
[  214.166059][ T8780] Kernel Offset: disabled
[  214.168575][ T8780] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:15:04  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85145360 RDI=ffffffff9a669200 RBP=ffffffff9a6691c0 RSP=ffffc90003616fd0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=53414b203a475542
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff34cd292 R15=dffffc0000000000
RIP=ffffffff85145387 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000563855bc7000 CR3=00000000671c6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff814849ee RDX=ffff8880231d0000
RSI=ffffffff81484a0b RDI=0000000000000000 RBP=ffffffff8da0b084 RSP=ffffc90022647948
R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=0000000000000000
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b53fc40 R15=fffffbfff1b41610
RIP=ffffffff81484a0c RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffc752c0f20 CR3=000000005bec4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000017000000000 0000000400000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000002 RBX=0000000000000002 RCX=ffffffff913bb584 RDX=0000000000000001
RSI=0000000000000000 RDI=ffffffff908c0730 RBP=ffffc90000548378 RSP=ffffc900005482c0
R8 =ffffffff913bb5a2 R9 =ffffffff913bb534 R10=ffffc90000548330 R11=0000000000080070
R12=ffffc90000548380 R13=ffffc90000548330 R14=ffffc90000548365 R15=ffffffff913bb589
RIP=ffffffff8148f366 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f7fe6e40 CR3=000000004c65c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000080000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=53542b0753542b07 53542b0753542b07 53542b0753542b07 53542b0753542b07 53542b0753542b07 53542b0753542b07 53542b0753542b07 53542b0753542b07
ZMM22=e7a2a5fde7a2a5fd e7a2a5fde7a2a5fd e7a2a5fde7a2a5fd e7a2a5fde7a2a5fd e7a2a5fde7a2a5fd e7a2a5fde7a2a5fd e7a2a5fde7a2a5fd e7a2a5fde7a2a5fd
ZMM23=c589a9c6c589a9c6 c589a9c6c589a9c6 c589a9c6c589a9c6 c589a9c6c589a9c6 c589a9c6c589a9c6 c589a9c6c589a9c6 c589a9c6c589a9c6 c589a9c6c589a9c6
ZMM24=2c1a771b2c1a771b 2c1a771b2c1a771b 2c1a771b2c1a771b 2c1a771b2c1a771b 2c1a771b2c1a771b 2c1a771b2c1a771b 2c1a771b2c1a771b 2c1a771b2c1a771b
ZMM25=5b3bee725b3bee72 5b3bee725b3bee72 5b3bee725b3bee72 5b3bee725b3bee72 5b3bee725b3bee72 5b3bee725b3bee72 5b3bee725b3bee72 5b3bee725b3bee72
ZMM26=6b14d3ee6b14d3ee 6b14d3ee6b14d3ee 6b14d3ee6b14d3ee 6b14d3ee6b14d3ee 6b14d3ee6b14d3ee 6b14d3ee6b14d3ee 6b14d3ee6b14d3ee 6b14d3ee6b14d3ee
ZMM27=1b6319e31b6319e3 1b6319e31b6319e3 1b6319e31b6319e3 1b6319e31b6319e3 1b6319e31b6319e3 1b6319e31b6319e3 1b6319e31b6319e3 1b6319e31b6319e3
ZMM28=000000b0000000af 000000ae000000ad 000000ac000000ab 000000aa000000a9 000000a8000000a7 000000a6000000a5 000000a4000000a3 000000a2000000a1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=2506000025060000 2506000025060000 2506000025060000 2506000025060000 2506000025060000 2506000025060000 2506000025060000 2506000025060000
info registers vcpu 3

CPU#3
RAX=ffffffff96a19710 RBX=ffff88801f508ae0 RCX=0000000000000000 RDX=fffffbfff2d371b7
RSI=0000000000000008 RDI=ffffffff96a197d4 RBP=dffffc0000000000 RSP=ffffc90000a97960
R8 =0000000000000004 R9 =fffffbfff2d371b6 R10=ffffffff969b8db7 R11=0000000000000002
R12=ffffed1003ea115b R13=ffff88801f508000 R14=0000000000000005 R15=0000000000000000
RIP=ffffffff81760e6e RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020c34000 CR3=00000000287c4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e1a42849e73041d5 4d52e1bcd8484a8b
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 155716507afe8b6d 4e7992b2891e0e83
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2efa039c74571462 440fcfd6643117f3
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 38ddd209c316dcb5 c70849bc82ddcff6
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000c35300
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d6f60d835e43a973 5952a1a82f993c5a
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d9551c43c637fe63 e81b9d38af7cc383
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000