last executing test programs:

6.570443557s ago: executing program 2 (id=903):
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x25, 0x5, 0x0, 0x0, 'syz0\x00', 0xffffffff}, 0x6, 0x10, 0x1, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd74)
syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x5c5b, 0x20, 0x14, 0x28b, 0x0, r2}, &(0x7f0000000140), &(0x7f0000000280))
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x4, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}})
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x800})
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x20, r6, 0x301, 0xfffffffc, 0x0, {0x2b}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x2040000)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r7=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="200000001000010400faff000000000000480000", @ANYRES32=r7, @ANYBLOB="ae1e020000000000"], 0x20}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x3}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00'})
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(r9)
syz_emit_ethernet(0x66, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60f81fcb00303a00fc000000000000000000000000000000ff0200000000000000000000000000010400907800000000604aa1d300000000fc01000000000000000000000000000000000000000000000000ffff7f000001cce0a05ce7150b4980a5cabf5551857470c6722a59edb73738ea04ea4cecc70b32e39a6f74933cb37c277cb919cdfb3d4127472f7da446419834"], 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
ioctl$SIOCSIFHWADDR(r9, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="060000000010"})

5.615646306s ago: executing program 2 (id=909):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x15)
r2 = openat$vcsa(0xffffff9c, &(0x7f0000001600), 0x101480, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180000007b1a000000fcffff7b19ffff850000009c0000009500000000000000"], &(0x7f00000000c0)='syzkaller\x00', 0xb66, 0x1000, &(0x7f0000000180)=""/4096, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0xb, 0x3}, 0x8, 0x10, &(0x7f0000001180)={0x1, 0x2, 0xf9f, 0x2}, 0x10, 0x0, 0x0, 0x6, &(0x7f00000011c0)=[0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff], &(0x7f0000001200)=[{0x5, 0x1, 0x7, 0xc}, {0x0, 0x1, 0x5, 0xc}, {0x1, 0x6, 0xc, 0xb}, {0x0, 0x3, 0x1, 0xa}, {0x1, 0x3, 0xe, 0xb}, {0x4, 0x1, 0x6, 0xb}], 0x10, 0x6, @void, @value}, 0x94)
r4 = openat$cgroup(0xffffffffffffffff, &(0x7f0000001340)='syz0\x00', 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000001480)={@cgroup, 0x2f, 0x1, 0x7fff, &(0x7f0000001380)=[0x0], 0x1, 0x0, &(0x7f00000013c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000001400)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r5=>0x0}, 0x40)
r6 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000001540)=@generic={&(0x7f0000001500)='./file0\x00', 0x0, 0x4}, 0x14)
openat$ubi_ctrl(0xffffff9c, &(0x7f0000001580), 0x206267bf9294fc21, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000014c0)={r3, r4, 0x2e, 0x0, @val=@tcx={@void, @value=r6, @void, @void, r5}}, 0x1c)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$TCSETS(r1, 0x40204706, &(0x7f0000000040)={0x1, 0x0, 0x5, 0x0, 0x0, "3eccd8f9d20000000000001000000200000500"})
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r8, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r7, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)
syz_emit_ethernet(0x4c, &(0x7f0000000140)=ANY=[@ANYBLOB="0180c2000000ece65fbcee8aff94f601010000161100fe8000000000000000000000000000bbf68000000000000014000000000000aa002341b107d02ca2e4cd6e030e000000000000000000"], 0x0)
recvmmsg(r8, &(0x7f0000000640)=[{{0x0, 0x0, 0x0}, 0x220800}, {{0x0, 0x0, 0x0}, 0x3}], 0x2, 0x40010044, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1e, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00m\xa0\x8dN\xd4\xa2\x88\x00\xd1l,'}, 0x8)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r9)
r10 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r10, &(0x7f0000001fc0)=""/184, 0xb8)
r11 = socket(0x10, 0x3, 0x0)
r12 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000540)=@newqdisc={0x78, 0x24, 0xf0b, 0x3fff8, 0xffffffff, {0x0, 0x0, 0x0, r13, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0xffffffff, 0x0, 0x0, 0xffffffff}, 0x22000, 0x0, 0xffffffff, 0x8, 0x101, 0x3, 0xfe, 0x0, 0x0, 0x0, {0x4, 0x6, 0xfffffff9}}}}]}, 0x78}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

5.287457088s ago: executing program 0 (id=910):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x68, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

5.216087778s ago: executing program 2 (id=911):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x88, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}]}, @CTA_TIMEOUT={0x8}]}, 0x88}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

4.673955283s ago: executing program 3 (id=912):
mkdir(&(0x7f0000002200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000980)='./file0\x00', &(0x7f0000000000)='sysfs\x00', 0x50868, 0x0)
r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.log\x00', 0x10400, 0x73)
r1 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$binfmt_script(r2, &(0x7f0000000100), 0xfffffd9d)
r3 = landlock_create_ruleset(&(0x7f00000001c0)={0xa019, 0x1, 0x3}, 0x18, 0x0)
landlock_restrict_self(r3, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r6, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000000)={0x30, 0x3, 0x1, 0x201, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x28c}]}, @CTA_TUPLE_ORIG={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}]}, 0x30}}, 0x0)
r7 = getpgrp(0x0)
fcntl$setownex(r5, 0xf, &(0x7f0000000100)={0x2, r7})
sendmsg$unix(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="b5", 0x1}], 0x1}, 0x240408c1)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r9=>0xffffffffffffffff})
r10 = memfd_create(&(0x7f0000000200)='\f\x8b\x8a\xa9\x16\x11O\xdd\xdfk(F\x99\xdf\x9a\xd5>oJ\x02u\x9b\x94a\xac\xfe6A\xc4\a\x9e\xbd\xa2\xfb\rD\xefq\x1f!\x01\xc3\xa5U\x98\xee\xcd;A\xe8\x00~V\xbf\xd4\x00\xd2,7\xa0\xfd7\xe8\xf9M\x02\xec\f3\xd4\xb8\xc3\x85\xda\xeb\xce7y%S\x1e\xa9\xe9\x92!\x95\xf1Ek\x95\x9bQ\x1d\xa4\xc2\xbb\xfa\x96\x14\x7f\xb9\x90\x9cn\xb5\x10\xd2\x84\xe9\x9e1\x9a\x9e\xa7\x9e\xcd\x1a\x86\x14%\xbaS\x90\xb1j\xf9\x00\xd7@D\x04\xaa\xb55\xd8x?z\xff\x85j3\xbe\axo\x05)\xcc\xcd\x9b\xb3\xe7w\x0e\x9f\xd3\aU\xf0M\xc1\xad\x17t\xeb\x1b\x11m\xec\x00\x00\x00\x00R\xb6v\x88\a\x82\x9e\x00\x00\x00\x10\x00\x00\x00\xa6!\xb3\xa8\xe7[&\x165\x84\xce\xa5\xc4wT\xf2E\tj\x92G\x14\x04\x93\xa4\xba\xcb\xce\"Y\xd68\xeb\x01\xc9/\x19\x85\xc6\x8do\xcb\x17\xb5\xffW\xe6\x8a\xfb\a\xf6', 0x2)
write$binfmt_misc(r10, &(0x7f0000000280), 0xff9d)
sendfile(r9, r10, &(0x7f0000000100), 0x2)
fcntl$addseals(r10, 0x409, 0x8)
fchown(r10, 0x0, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_S_STD(r2, 0x40085618, &(0x7f0000000000)=0xe0)
recvmsg$can_bcm(r0, &(0x7f0000000180)={&(0x7f0000000080)=@sco={0x1f, @fixed}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000100)=""/50, 0x32}, {&(0x7f0000000400)=""/261, 0x105}], 0x2, &(0x7f0000000300)=""/225, 0xe1}, 0x2022)
umount2(&(0x7f00000001c0)='./file0\x00', 0x2)

4.468184262s ago: executing program 3 (id=914):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000200), 0x4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[], 0x98}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)

4.240366476s ago: executing program 0 (id=915):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
r1 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r4 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000200), 0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)

4.070501213s ago: executing program 2 (id=916):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000300)=0x2)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)) (fail_nth: 2)

3.917734814s ago: executing program 1 (id=918):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x68, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

3.410245246s ago: executing program 3 (id=919):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800"/126], 0x98}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)

3.296439641s ago: executing program 0 (id=920):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="340000003e0007010300000000000000017c0000040042800c00018006000600843b0000100002800c0009"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
unshare(0x26020480)
r1 = io_uring_setup(0x2292, &(0x7f00000009c0)={0x0, 0xb18, 0x10000, 0x2, 0x1cc})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x24, &(0x7f0000000200), 0x4)
r3 = socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$inet(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4080)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r5, 0x10, 0x70bd2b, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x9}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xe}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}]}, 0x38}}, 0x40001)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
pipe2(0x0, 0x0)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x0, 0x3}]}, 0x1, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x0, r8, 0x0, 0x0, 0x0, 0x200, 0x1, {0x1}})
io_uring_enter(0xffffffffffffffff, 0x3516, 0x0, 0x0, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000480)=ANY=[], 0x125)
recvmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, 0x0}, 0x40000100)
ioctl$DRM_IOCTL_GET_CLIENT(r7, 0xc0186405, &(0x7f0000000380)={0x5, 0x8, {}, {<r9=>0x0}, 0x2, 0x3})
mount$overlay(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x10, &(0x7f00000003c0)={[{@workdir}, {@redirect_dir_off}, {@uuid_on}, {@xino_auto}, {@index_on}, {@verity_require}, {@uuid_off}], [{@euid_gt={'euid>', r9}}]})
syz_io_uring_setup(0x263f, &(0x7f0000000840)={0x0, 0x8e69, 0x186a, 0x0, 0x0, 0x0, r1}, 0x0, 0x0)

2.883604092s ago: executing program 1 (id=921):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r0, 0x540a, 0x2)
r1 = socket$igmp(0x2, 0x3, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="020000000400000004000000080000", @ANYRES32, @ANYBLOB="00000000050000ffffff7f000700000000080000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0c001a00"/15, @ANYRES32=r2, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000040000400"/28], 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000180)={&(0x7f0000000080)="aa88", 0x0, 0x0, 0x0, 0xd352, r3}, 0x38)
setsockopt$inet_mreq(r1, 0x0, 0x24, &(0x7f0000000000)={@local, @broadcast}, 0x8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000c40)={'vxcan1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=@newtaction={0x114, 0x30, 0x1, 0x0, 0x1, {}, [{0x100, 0x1, [@m_ct={0x44, 0x0, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e76, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xb8, 0x41, 0x0, 0x0, {{0x8}, {0x4}, {0x8f, 0x6, "4a1cdef12791d0945aaace9debaa59833fcf2e336237dd756ea2d617dd791118af520ad863567185c91aa0b5a685c678a12df967b3489f837bdbddab8e0e3f142c21b4f9ff43a02dc9e55a91a6826274461dd0feb43e720a82e53d0de8795c398bd755822607601b34f31f544d45b5c1fe0ea3f8a760e22c99a8f88bd3ccaec7341fb3dee37cf84ec4259b"}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x8804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = socket$netlink(0x10, 0x3, 0x4)
write(r5, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
sendmsg$NFNL_MSG_ACCT_DEL(r5, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="2019f20fc65b233392588b9953a1709851136bb30000007f717c183958f0680000020000000c0003400000000000000800"/59], 0x20}, 0x1, 0x0, 0x0, 0x20000014}, 0x20001)
sched_setscheduler(r4, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000c00)=[{{&(0x7f0000000540)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000b40)=[{&(0x7f00000005c0)="c9f6484205210ee69c", 0x9}, {&(0x7f0000000600)="bcda285976884aa8e35b91947a5c82c061c67b92c5adc22aacc36cfcf2359aa2017767827c9211625a2a7900ec8497e3f25bc907cd25c1dd9824841648bb0f487c74e9003f56bbb2b394cd61a795635f7d09a5444e5a1bef928ee829a9b0d17559bf850b951bf0d3c82b", 0x6a}, {&(0x7f0000000680)="e5c3e17cf10cf0c40b5e1ff4b2d5673f178e75d7d42c4a", 0x17}, {&(0x7f0000000800)="4c82121ea68ed495d05bae2df482f46880d927639056ae1d5687ad2aa0a271cc197814ad048816960d0dec71aab8eb9dca4815d37a61cf8400b7644675a56e3d8d7cf7ce7ad5fb8181872852e95186d119ddaf74064ff4e3dfaa9f04ebd26067da2db757fe02e405aac1c0bf3cbd447317bfb511bbab4745eb7a1c8376f5f0f38bcbe1a60fd77cac9a2a9fc130d729c04970637ba09c3ed4e0ecb08b94b3247011c9c0eb0976657a7e036105d4e481da7fa1c65d4d51c03a", 0xb8}, {&(0x7f00000008c0)="5445e27e56329bc095e4104642ae8ab3f6ea0ef7849e18da69364b2de512bf59b5e9345757b28e099ec0968d35b806c1", 0x30}, {&(0x7f0000000900)="f3cb3082c54ea3cb28a41582508e29cf7b028cee6881d9b14ddf5a5ab2203d5e35ed64463d2eea0d46458103ef7e5ad2eda7147032d9e029989f36c663f68a5cc2abdd8f3b41609d9806dbed72524aa08af66dc17fcddad81cac940527d0552b8b584a324c250335b3a0b82377afba40332ae60a356a02e3ac2a75e2e00604acfdbad04d8f848abfce0ff672b5c32be20e8378cf2994e793fc9c5683d36db9ded8", 0xa1}, {&(0x7f00000009c0)="083d06250c44473bbd3aa186c47035116c9926a24e554264ae1f1c0e46f6ab91b803f4bd9c2c627ca4de7db25af2e9dec6096534728bb8f9b6391e3c2ac15b53a9a63192c2b0ff89b20c6c73", 0x4c}, {&(0x7f0000000a40)="faa96ee492ceee47d83aec7a96f7820476fb0591f63030362f6d44e65db356265afcc53b28630b97704c585c4e91599ab0737ec994c0955ccf44b360931ae7a1f9149fd68070a5c28aa934ccb5eedc3aa3595b8291fa0ef8f54c6f8ba54c9573094d9c5846617a82", 0x68}, {&(0x7f0000000ac0)="1756ffaaeb2097e704331008730c75265915e3d7db5d50f3b4d7cb83fb66506b31aea9b3030e6ec6c0b10102b2220d80a976781632e4fa930da156db1de2e35f7c177fd9cc8da3a3f6b618fd53bac94913281b65bdb11a821301a68dcc6f8ea78b2858", 0x63}], 0x9, &(0x7f0000000c80)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=r4, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000fa1d4c87ebe5ab3e1e56bd2335e74eef595137c9151997dc6b2156a66e265b31a5a731c990352e00070ded9a4b5b7e7c1363ad037b8b1f749e8065970ad71db8c6a15fb1431e49e7be523ee8834e88569544fb0fe0e96d45ef37476db3e67477d4e9b8b9a4e667c3aa449f41db33d616b149d0e1da42370b074fe902957a00df8bf3869998d9ec69a80769b47d659bed59", @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r5, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="100000000100000001000000", @ANYRES32=r7], 0x50, 0x10}}], 0x1, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1400000015000103000000001c0000000a"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x40000)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

2.662854309s ago: executing program 0 (id=922):
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000f00)=ANY=[@ANYBLOB="7f454c4600040001ff7f0000"], 0x78)
close(0xffffffffffffffff)
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsmount(r0, 0x0, 0x1)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
lseek(r1, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
set_mempolicy(0x2, 0x0, 0xfffffbff)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xa, 0x9, 0x9}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r2}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

2.474583929s ago: executing program 3 (id=923):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)

1.959676s ago: executing program 2 (id=924):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r0, 0x540a, 0x2)
r1 = socket$igmp(0x2, 0x3, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="020000000400000004000000080000", @ANYRES32, @ANYBLOB="00000000050000ffffff7f000700000000080000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0c001a00000000000000", @ANYRES32=r2, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000040000400"/28], 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000180)={&(0x7f0000000080)="aa88", 0x0, 0x0, 0x0, 0xd352, r3}, 0x38)
setsockopt$inet_mreq(r1, 0x0, 0x24, &(0x7f0000000000)={@local, @broadcast}, 0x8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000c40)={'vxcan1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=@newtaction={0x114, 0x30, 0x1, 0x0, 0x1, {}, [{0x100, 0x1, [@m_ct={0x44, 0x0, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e76, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xb8, 0x41, 0x0, 0x0, {{0x8}, {0x4}, {0x8f, 0x6, "4a1cdef12791d0945aaace9debaa59833fcf2e336237dd756ea2d617dd791118af520ad863567185c91aa0b5a685c678a12df967b3489f837bdbddab8e0e3f142c21b4f9ff43a02dc9e55a91a6826274461dd0feb43e720a82e53d0de8795c398bd755822607601b34f31f544d45b5c1fe0ea3f8a760e22c99a8f88bd3ccaec7341fb3dee37cf84ec4259b"}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x8804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = socket$netlink(0x10, 0x3, 0x4)
write(r5, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
sendmsg$NFNL_MSG_ACCT_DEL(r5, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="2019f20fc65b233392588b9953a1709851136bb30000007f717c183958f0680000020000000c0003400000000000000800"/59], 0x20}, 0x1, 0x0, 0x0, 0x20000014}, 0x20001)
sched_setscheduler(r4, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000c00)=[{{&(0x7f0000000540)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000b40)=[{&(0x7f00000005c0)="c9f6484205210ee69c", 0x9}, {&(0x7f0000000600)="bcda285976884aa8e35b91947a5c82c061c67b92c5adc22aacc36cfcf2359aa2017767827c9211625a2a7900ec8497e3f25bc907cd25c1dd9824841648bb0f487c74e9003f56bbb2b394cd61a795635f7d09a5444e5a1bef928ee829a9b0d17559bf850b951bf0d3c82b", 0x6a}, {&(0x7f0000000680)="e5c3e17cf10cf0c40b5e1ff4b2d5673f178e75d7d42c4a", 0x17}, {&(0x7f0000000800)="4c82121ea68ed495d05bae2df482f46880d927639056ae1d5687ad2aa0a271cc197814ad048816960d0dec71aab8eb9dca4815d37a61cf8400b7644675a56e3d8d7cf7ce7ad5fb8181872852e95186d119ddaf74064ff4e3dfaa9f04ebd26067da2db757fe02e405aac1c0bf3cbd447317bfb511bbab4745eb7a1c8376f5f0f38bcbe1a60fd77cac9a2a9fc130d729c04970637ba09c3ed4e0ecb08b94b3247011c9c0eb0976657a7e036105d4e481da7fa1c65d4d51c03a", 0xb8}, {&(0x7f00000008c0)="5445e27e56329bc095e4104642ae8ab3f6ea0ef7849e18da69364b2de512bf59b5e9345757b28e099ec0968d35b806c1", 0x30}, {&(0x7f0000000900)="f3cb3082c54ea3cb28a41582508e29cf7b028cee6881d9b14ddf5a5ab2203d5e35ed64463d2eea0d46458103ef7e5ad2eda7147032d9e029989f36c663f68a5cc2abdd8f3b41609d9806dbed72524aa08af66dc17fcddad81cac940527d0552b8b584a324c250335b3a0b82377afba40332ae60a356a02e3ac2a75e2e00604acfdbad04d8f848abfce0ff672b5c32be20e8378cf2994e793fc9c5683d36db9ded8", 0xa1}, {&(0x7f00000009c0)="083d06250c44473bbd3aa186c47035116c9926a24e554264ae1f1c0e46f6ab91b803f4bd9c2c627ca4de7db25af2e9dec6096534728bb8f9b6391e3c2ac15b53a9a63192c2b0ff89b20c6c73", 0x4c}, {&(0x7f0000000a40)="faa96ee492ceee47d83aec7a96f7820476fb0591f63030362f6d44e65db356265afcc53b28630b97704c585c4e91599ab0737ec994c0955ccf44b360931ae7a1f9149fd68070a5c28aa934ccb5eedc3aa3595b8291fa0ef8f54c6f8ba54c9573094d9c5846617a82", 0x68}, {&(0x7f0000000ac0)="1756ffaaeb2097e704331008730c75265915e3d7db5d50f3b4d7cb83fb66506b31aea9b3030e6ec6c0b10102b2220d80a976781632e4fa930da156db1de2e35f7c177fd9cc8da3a3f6b618fd53bac94913281b65bdb11a821301a68dcc6f8ea78b2858", 0x63}], 0x9, &(0x7f0000000c80)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=r4, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000fa1d4c87ebe5ab3e1e56bd2335e74eef595137c9151997dc6b2156a66e265b31a5a731c990352e00070ded9a4b5b7e7c1363ad037b8b1f749e8065970ad71db8c6a15fb1431e49e7be523ee8834e88569544fb0fe0e96d45ef37476db3e67477d4e9b8b9a4e667c3aa449f41db33d616b149d0e1da42370b074fe902957a00df8bf3869998d9ec69a80769b47d659bed59", @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r5, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="100000000100000001000000", @ANYRES32=r7], 0x50, 0x10}}], 0x1, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1400000015000103000000001c0000000a"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x40000)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

1.88008138s ago: executing program 1 (id=925):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="340000003e0007010300000000000000017c0000040042800c00018006000600843b0000100002800c0009"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
unshare(0x26020480)
r1 = io_uring_setup(0x2292, &(0x7f00000009c0)={0x0, 0xb18, 0x10000, 0x2, 0x1cc})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x24, &(0x7f0000000200), 0x4)
r3 = socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$inet(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4080)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r5, 0x10, 0x70bd2b, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x9}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xe}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}]}, 0x38}}, 0x40001)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
pipe2(0x0, 0x0)
r8 = syz_io_uring_setup(0x497, &(0x7f0000002180)={0x0, 0x787f, 0x100, 0x4, 0x3e4}, &(0x7f0000000000)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r8, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x0, 0x3}]}, 0x1, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x200, 0x1, {0x1}})
io_uring_enter(r8, 0x3516, 0x0, 0x0, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000480)=ANY=[], 0x125)
recvmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, 0x0}, 0x40000100)
ioctl$DRM_IOCTL_GET_CLIENT(r7, 0xc0186405, &(0x7f0000000380)={0x5, 0x8, {}, {<r11=>0x0}, 0x2, 0x3})
mount$overlay(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x10, &(0x7f00000003c0)={[{@workdir}, {@redirect_dir_off}, {@uuid_on}, {@xino_auto}, {@index_on}, {@verity_require}, {@uuid_off}], [{@euid_gt={'euid>', r11}}]})
syz_io_uring_setup(0x263f, &(0x7f0000000840)={0x0, 0x8e69, 0x186a, 0x0, 0x0, 0x0, r1}, 0x0, 0x0)

1.700934759s ago: executing program 0 (id=926):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x88, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x30, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x88}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

1.480449344s ago: executing program 1 (id=927):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000200), 0x4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[], 0x98}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)

1.210274792s ago: executing program 3 (id=928):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c000280"], 0x98}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

723.588918ms ago: executing program 2 (id=929):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r8, 0x0, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

579.323709ms ago: executing program 0 (id=930):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.dequeue\x00', 0x275a, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r2 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r3, 0x2000009)
sendfile(r2, r3, 0x0, 0x7ffff000)
readv(r1, &(0x7f0000000200)=[{&(0x7f0000000f40)=""/4096, 0x1000}], 0x1)
write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r4 = socket$rxrpc(0x21, 0x2, 0x2)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r4, 0x89f4, &(0x7f00000007c0)={'sit0\x00', 0x0})

207.142118ms ago: executing program 1 (id=931):
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='vfat\x00', 0xea283ce252d12110, 0x0)

130.04174ms ago: executing program 1 (id=932):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$dri(0x0, 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c000280050001"], 0x98}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x3, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r5, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x181040, 0x0)

0s ago: executing program 3 (id=933):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r0, 0x540a, 0x2)
r1 = socket$igmp(0x2, 0x3, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="020000000400000004000000080000", @ANYRES32, @ANYBLOB="00000000050000ffffff7f000700000000080000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0c001a00"/15, @ANYRES32=r2, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000040000400"/28], 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000180)={&(0x7f0000000080)="aa88", 0x0, 0x0, 0x0, 0xd352, r3}, 0x38)
setsockopt$inet_mreq(r1, 0x0, 0x24, &(0x7f0000000000)={@local, @broadcast}, 0x8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000c40)={'vxcan1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=@newtaction={0x114, 0x30, 0x1, 0x0, 0x1, {}, [{0x100, 0x1, [@m_ct={0x44, 0x0, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e76, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xb8, 0x41, 0x0, 0x0, {{0x8}, {0x4}, {0x8f, 0x6, "4a1cdef12791d0945aaace9debaa59833fcf2e336237dd756ea2d617dd791118af520ad863567185c91aa0b5a685c678a12df967b3489f837bdbddab8e0e3f142c21b4f9ff43a02dc9e55a91a6826274461dd0feb43e720a82e53d0de8795c398bd755822607601b34f31f544d45b5c1fe0ea3f8a760e22c99a8f88bd3ccaec7341fb3dee37cf84ec4259b"}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x8804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = socket$netlink(0x10, 0x3, 0x4)
write(r5, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
sendmsg$NFNL_MSG_ACCT_DEL(r5, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="2019f20fc65b233392588b9953a1709851136bb30000007f717c183958f0680000020000000c0003400000000000000800"/59], 0x20}, 0x1, 0x0, 0x0, 0x20000014}, 0x20001)
sched_setscheduler(r4, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000c00)=[{{&(0x7f0000000540)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000b40)=[{&(0x7f00000005c0)="c9f6484205210ee69c", 0x9}, {&(0x7f0000000600)="bcda285976884aa8e35b91947a5c82c061c67b92c5adc22aacc36cfcf2359aa2017767827c9211625a2a7900ec8497e3f25bc907cd25c1dd9824841648bb0f487c74e9003f56bbb2b394cd61a795635f7d09a5444e5a1bef928ee829a9b0d17559bf850b951bf0d3c82b", 0x6a}, {&(0x7f0000000680)="e5c3e17cf10cf0c40b5e1ff4b2d5673f178e75d7d42c4a", 0x17}, {&(0x7f0000000800)="4c82121ea68ed495d05bae2df482f46880d927639056ae1d5687ad2aa0a271cc197814ad048816960d0dec71aab8eb9dca4815d37a61cf8400b7644675a56e3d8d7cf7ce7ad5fb8181872852e95186d119ddaf74064ff4e3dfaa9f04ebd26067da2db757fe02e405aac1c0bf3cbd447317bfb511bbab4745eb7a1c8376f5f0f38bcbe1a60fd77cac9a2a9fc130d729c04970637ba09c3ed4e0ecb08b94b3247011c9c0eb0976657a7e036105d4e481da7fa1c65d4d51c03a", 0xb8}, {&(0x7f00000008c0)="5445e27e56329bc095e4104642ae8ab3f6ea0ef7849e18da69364b2de512bf59b5e9345757b28e099ec0968d35b806c1", 0x30}, {&(0x7f0000000900)="f3cb3082c54ea3cb28a41582508e29cf7b028cee6881d9b14ddf5a5ab2203d5e35ed64463d2eea0d46458103ef7e5ad2eda7147032d9e029989f36c663f68a5cc2abdd8f3b41609d9806dbed72524aa08af66dc17fcddad81cac940527d0552b8b584a324c250335b3a0b82377afba40332ae60a356a02e3ac2a75e2e00604acfdbad04d8f848abfce0ff672b5c32be20e8378cf2994e793fc9c5683d36db9ded8", 0xa1}, {&(0x7f00000009c0)="083d06250c44473bbd3aa186c47035116c9926a24e554264ae1f1c0e46f6ab91b803f4bd9c2c627ca4de7db25af2e9dec6096534728bb8f9b6391e3c2ac15b53a9a63192c2b0ff89b20c6c73", 0x4c}, {&(0x7f0000000a40)="faa96ee492ceee47d83aec7a96f7820476fb0591f63030362f6d44e65db356265afcc53b28630b97704c585c4e91599ab0737ec994c0955ccf44b360931ae7a1f9149fd68070a5c28aa934ccb5eedc3aa3595b8291fa0ef8f54c6f8ba54c9573094d9c5846617a82", 0x68}, {&(0x7f0000000ac0)="1756ffaaeb2097e704331008730c75265915e3d7db5d50f3b4d7cb83fb66506b31aea9b3030e6ec6c0b10102b2220d80a976781632e4fa930da156db1de2e35f7c177fd9cc8da3a3f6b618fd53bac94913281b65bdb11a821301a68dcc6f8ea78b2858", 0x63}], 0x9, &(0x7f0000000c80)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=r4, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000fa1d4c87ebe5ab3e1e56bd2335e74eef595137c9151997dc6b2156a66e265b31a5a731c990352e00070ded9a4b5b7e7c1363ad037b8b1f749e8065970ad71db8c6a15fb1431e49e7be523ee8834e88569544fb0fe0e96d45ef37476db3e67477d4e9b8b9a4e667c3aa449f41db33d616b149d0e1da42370b074fe902957a00df8bf3869998d9ec69a80769b47d659bed59", @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r5, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="100000000100000001000000", @ANYRES32=r7], 0x50, 0x10}}], 0x1, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1400000015000103000000001c0000000a"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x40000)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:46927' (ED25519) to the list of known hosts.
[   42.235653][ T5916] cgroup: Unknown subsys name 'net'
[   42.396976][ T5916] cgroup: Unknown subsys name 'cpuset'
[   42.400576][ T5916] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   43.263732][ T5916] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   46.406553][ T5935] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   46.409914][ T5935] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   46.414183][ T5941] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   46.416591][ T5941] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   46.420294][ T5941] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   46.422599][ T5941] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   46.424991][ T5941] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   46.427185][ T5941] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   46.429581][ T5941] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   46.432285][ T5941] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   46.435090][ T5941] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   46.438251][ T5941] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   46.440621][ T5941] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   46.442765][ T5941] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   46.445284][ T5945] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   46.445964][ T5941] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   46.447950][ T5945] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   46.450465][ T5941] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   46.455820][ T5935] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   46.460425][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   46.706683][ T5946] chnl_net:caif_netlink_parms(): no params data found
[   46.791962][ T5936] chnl_net:caif_netlink_parms(): no params data found
[   46.806040][ T5942] chnl_net:caif_netlink_parms(): no params data found
[   46.833002][ T5933] chnl_net:caif_netlink_parms(): no params data found
[   46.859812][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.862076][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.864655][ T5946] bridge_slave_0: entered allmulticast mode
[   46.867295][ T5946] bridge_slave_0: entered promiscuous mode
[   46.922305][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.925005][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.927208][ T5946] bridge_slave_1: entered allmulticast mode
[   46.929700][ T5946] bridge_slave_1: entered promiscuous mode
[   47.026266][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.077311][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.096767][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.099054][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.101326][ T5942] bridge_slave_0: entered allmulticast mode
[   47.103980][ T5942] bridge_slave_0: entered promiscuous mode
[   47.106510][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.108731][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.111018][ T5936] bridge_slave_0: entered allmulticast mode
[   47.113919][ T5936] bridge_slave_0: entered promiscuous mode
[   47.117726][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.119916][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.122902][ T5936] bridge_slave_1: entered allmulticast mode
[   47.126802][ T5936] bridge_slave_1: entered promiscuous mode
[   47.156563][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.158871][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.161115][ T5942] bridge_slave_1: entered allmulticast mode
[   47.164228][ T5942] bridge_slave_1: entered promiscuous mode
[   47.225386][ T5946] team0: Port device team_slave_0 added
[   47.257622][ T5933] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.259860][ T5933] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.262066][ T5933] bridge_slave_0: entered allmulticast mode
[   47.265447][ T5933] bridge_slave_0: entered promiscuous mode
[   47.269991][ T5946] team0: Port device team_slave_1 added
[   47.273490][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.279102][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.281952][ T5933] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.284402][ T5933] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.286567][ T5933] bridge_slave_1: entered allmulticast mode
[   47.289259][ T5933] bridge_slave_1: entered promiscuous mode
[   47.308581][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.312631][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.413755][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.416147][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.425879][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.432239][ T5942] team0: Port device team_slave_0 added
[   47.436766][ T5936] team0: Port device team_slave_0 added
[   47.440749][ T5933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.443909][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.446024][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.453475][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.458811][ T5942] team0: Port device team_slave_1 added
[   47.462190][ T5936] team0: Port device team_slave_1 added
[   47.466193][ T5933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.550226][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.552415][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.561099][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.600728][ T5933] team0: Port device team_slave_0 added
[   47.603178][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.606003][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.617963][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.622920][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.625550][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.633189][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.649107][ T5933] team0: Port device team_slave_1 added
[   47.668496][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.670604][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.678337][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.684274][ T5946] hsr_slave_0: entered promiscuous mode
[   47.686704][ T5946] hsr_slave_1: entered promiscuous mode
[   47.711794][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.714251][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.721938][ T5933] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.727179][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.729290][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.736843][ T5933] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.816981][ T5942] hsr_slave_0: entered promiscuous mode
[   47.819588][ T5942] hsr_slave_1: entered promiscuous mode
[   47.821623][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.824209][ T5942] Cannot create hsr debugfs directory
[   47.911117][ T5936] hsr_slave_0: entered promiscuous mode
[   47.913346][ T5936] hsr_slave_1: entered promiscuous mode
[   47.915470][ T5936] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.917819][ T5936] Cannot create hsr debugfs directory
[   47.983019][ T5933] hsr_slave_0: entered promiscuous mode
[   47.985297][ T5933] hsr_slave_1: entered promiscuous mode
[   47.987299][ T5933] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.989631][ T5933] Cannot create hsr debugfs directory
[   48.255307][ T5946] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   48.270054][ T5946] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   48.277793][ T5946] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   48.290095][ T5946] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   48.309030][ T5942] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   48.313127][ T5942] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   48.317312][ T5942] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   48.322067][ T5942] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   48.362491][ T5933] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   48.370521][ T5933] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   48.374502][ T5933] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   48.378830][ T5933] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   48.424016][ T5936] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   48.428394][ T5936] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   48.432115][ T5936] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   48.436874][ T5936] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   48.468246][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.477026][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.490563][ T5946] 8021q: adding VLAN 0 to HW filter on device team0
[   48.495539][   T67] Bluetooth: hci1: command tx timeout
[   48.495546][ T5939] Bluetooth: hci3: command tx timeout
[   48.495789][ T5939] Bluetooth: hci0: command tx timeout
[   48.504507][ T5939] Bluetooth: hci2: command tx timeout
[   48.509512][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[   48.516904][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.519254][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.537457][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.539686][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.543088][ T1141] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.545336][ T1141] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.558673][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.561524][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.579554][ T5933] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.615245][ T5933] 8021q: adding VLAN 0 to HW filter on device team0
[   48.635980][ T5942] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   48.643006][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.646625][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.648848][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.655744][   T79] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.657955][   T79] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.682489][ T5936] 8021q: adding VLAN 0 to HW filter on device team0
[   48.690776][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.692978][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.702749][ T1141] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.705720][ T1141] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.746914][ T5936] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   48.773475][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.780792][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.802278][ T5933] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.844689][ T5942] veth0_vlan: entered promiscuous mode
[   48.853430][ T5946] veth0_vlan: entered promiscuous mode
[   48.860075][ T5942] veth1_vlan: entered promiscuous mode
[   48.867318][ T5933] veth0_vlan: entered promiscuous mode
[   48.876319][ T5933] veth1_vlan: entered promiscuous mode
[   48.880196][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.885993][ T5946] veth1_vlan: entered promiscuous mode
[   48.912895][ T5946] veth0_macvtap: entered promiscuous mode
[   48.915757][ T5942] veth0_macvtap: entered promiscuous mode
[   48.923445][ T5946] veth1_macvtap: entered promiscuous mode
[   48.929172][ T5933] veth0_macvtap: entered promiscuous mode
[   48.933040][ T5942] veth1_macvtap: entered promiscuous mode
[   48.939914][ T5933] veth1_macvtap: entered promiscuous mode
[   48.957200][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.965947][ T5936] veth0_vlan: entered promiscuous mode
[   48.971590][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.976425][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.979707][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.984835][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.992142][ T5942] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.995716][ T5942] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.999005][ T5942] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.002472][ T5942] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.008683][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.012706][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.017104][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.021127][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.026276][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.029723][ T5936] veth1_vlan: entered promiscuous mode
[   49.032819][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.036992][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.042153][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.054294][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.058428][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.062192][ T5933] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.067154][ T5933] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.072340][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.081816][ T5946] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.085345][ T5946] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.088708][ T5946] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.092052][ T5946] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.098473][ T5933] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.101203][ T5933] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.104198][ T5933] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.106879][ T5933] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.171705][ T5936] veth0_macvtap: entered promiscuous mode
[   49.181216][ T5936] veth1_macvtap: entered promiscuous mode
[   49.184969][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.187494][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.202409][   T79] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.207496][   T79] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.216923][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.218054][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.219881][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.223078][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.223086][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.223094][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.236020][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.239137][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.243333][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.259711][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.262995][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.266209][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.269317][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.272226][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.275460][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.279152][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.293814][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.296925][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.297173][ T5936] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.302399][ T5936] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.305647][ T5936] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.308268][ T5936] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.327419][   T79] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.328950][ T1172] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.330473][   T79] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.335872][ T1172] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.373396][ T1054] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.376076][ T1054] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.389566][ T5942] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   49.406390][ T1054] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.408832][ T1054] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.493770][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.752033][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   49.755898][ T6013] process 'syz.1.2' launched './file1' with NULL argv: empty string added
[   50.573703][ T5939] Bluetooth: hci1: command tx timeout
[   50.573883][   T67] Bluetooth: hci3: command tx timeout
[   50.593739][   T67] Bluetooth: hci2: command tx timeout
[   50.594108][ T5939] Bluetooth: hci0: command tx timeout
[   52.653798][ T5939] Bluetooth: hci2: command tx timeout
[   52.655628][ T5939] Bluetooth: hci0: command tx timeout
[   52.657298][ T5939] Bluetooth: hci3: command tx timeout
[   52.657483][   T67] Bluetooth: hci1: command tx timeout
[   54.660689][ T6074] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16'.
[   54.660760][ T6078] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14'.
[   54.734126][   T67] Bluetooth: hci3: command tx timeout
[   54.734146][ T5948] Bluetooth: hci0: command tx timeout
[   54.735695][ T5939] Bluetooth: hci1: command tx timeout
[   54.735727][ T5939] Bluetooth: hci2: command tx timeout
[   54.772783][ T6079] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17'.
[   55.606502][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   56.583929][ T6102] netlink: 4 bytes leftover after parsing attributes in process `syz.3.23'.
[   58.558159][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.560784][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.563421][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.580451][ T6133] netlink: 4 bytes leftover after parsing attributes in process `syz.2.29'.
[   58.660648][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   58.663527][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   59.167215][ T6139] netlink: 4 bytes leftover after parsing attributes in process `syz.1.31'.
[   60.160452][ T6154] netlink: 4 bytes leftover after parsing attributes in process `syz.0.34'.
[   60.503858][    T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!!
[   62.795536][ T6200] netlink: 4 bytes leftover after parsing attributes in process `syz.1.44'.
[   63.426234][ T6208] netlink: 4 bytes leftover after parsing attributes in process `syz.0.47'.
[   63.441911][ T6209] netlink: 4 bytes leftover after parsing attributes in process `syz.3.48'.
[   64.076828][ T6213] netlink: 4 bytes leftover after parsing attributes in process `syz.1.49'.
[   65.347232][ T6239] netlink: 4 bytes leftover after parsing attributes in process `syz.1.55'.
[   65.676371][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   66.199749][ T6255] netlink: 4 bytes leftover after parsing attributes in process `syz.1.59'.
[   66.650627][ T6260] netlink: 4 bytes leftover after parsing attributes in process `syz.2.57'.
[   66.784556][ T6264] netlink: 4 bytes leftover after parsing attributes in process `syz.0.60'.
[   67.184685][ T6271] netlink: 4 bytes leftover after parsing attributes in process `syz.3.61'.
[   67.421766][ T6277] netlink: 4 bytes leftover after parsing attributes in process `syz.1.64'.
[   67.923122][ T6285] netlink: 4 bytes leftover after parsing attributes in process `syz.2.65'.
[   68.494445][ T6291] netlink: 4 bytes leftover after parsing attributes in process `syz.1.68'.
[   69.569598][ T6307] netlink: 4 bytes leftover after parsing attributes in process `syz.0.70'.
[   69.995006][ T6314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.73'.
[   70.816882][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[   70.819660][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[   71.083829][ T6333] netlink: 4 bytes leftover after parsing attributes in process `syz.2.76'.
[   71.114267][ T6334] netlink: 4 bytes leftover after parsing attributes in process `syz.3.77'.
[   72.598816][ T6356] netlink: 4 bytes leftover after parsing attributes in process `syz.1.82'.
[   74.825588][ T6390] netlink: 4 bytes leftover after parsing attributes in process `syz.0.91'.
[   75.584954][ T6399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.92'.
[   76.350936][ T6408] netlink: 4 bytes leftover after parsing attributes in process `syz.3.95'.
[   77.247198][ T6417] netlink: 4 bytes leftover after parsing attributes in process `syz.2.98'.
[   79.292248][ T6456] netlink: 4 bytes leftover after parsing attributes in process `syz.3.107'.
[   80.926912][ T6477] netlink: 4 bytes leftover after parsing attributes in process `syz.3.110'.
[   81.085417][   T64] cfg80211: failed to load regulatory.db
[   81.416867][ T6486] netlink: 4 bytes leftover after parsing attributes in process `syz.2.112'.
[   84.903888][   T24] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   85.073726][   T24] usb 6-1: Using ep0 maxpacket: 8
[   85.085359][   T24] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[   85.099097][   T24] usb 6-1: config 0 has no interface number 0
[   85.101217][   T24] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   85.105875][   T24] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   85.109080][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.113958][   T24] usb 6-1: config 0 descriptor??
[   85.120724][   T24] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   85.394921][ T6533] netlink: 4 bytes leftover after parsing attributes in process `syz.0.121'.
[   85.584600][ T5311] usb 6-1: USB disconnect, device number 2
[   86.023744][ T5311] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   86.096100][ T6547] netlink: 4 bytes leftover after parsing attributes in process `syz.3.126'.
[   86.173827][ T5311] usb 5-1: Using ep0 maxpacket: 8
[   86.177621][ T5311] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[   86.181002][ T5311] usb 5-1: config 0 has no interface number 0
[   86.183741][ T5311] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   86.188285][ T5311] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   86.192090][ T5311] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.198789][ T5311] usb 5-1: config 0 descriptor??
[   86.210226][ T5311] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   86.619002][ T6557] netlink: 4 bytes leftover after parsing attributes in process `syz.2.128'.
[   86.673116][ T5996] usb 5-1: USB disconnect, device number 2
[   87.105632][ T6563] netlink: 4 bytes leftover after parsing attributes in process `syz.3.129'.
[   88.459077][ T6585] netlink: 4 bytes leftover after parsing attributes in process `syz.0.135'.
[   90.406438][ T6607] netlink: 4 bytes leftover after parsing attributes in process `syz.0.138'.
[   90.469895][ T6608] netlink: 4 bytes leftover after parsing attributes in process `syz.1.139'.
[   92.231759][ T6638] netlink: 4 bytes leftover after parsing attributes in process `syz.2.146'.
[   92.742275][ T6646] netlink: 4 bytes leftover after parsing attributes in process `syz.3.147'.
[   92.768533][ T6647] netlink: 4 bytes leftover after parsing attributes in process `syz.1.148'.
[   93.252930][ T6655] netlink: 4 bytes leftover after parsing attributes in process `syz.0.150'.
[   94.202939][ T6667] netlink: 4 bytes leftover after parsing attributes in process `syz.3.151'.
[   94.940920][ T6673] netlink: 4 bytes leftover after parsing attributes in process `syz.0.153'.
[   96.558431][ T6697] netlink: 4 bytes leftover after parsing attributes in process `syz.0.157'.
[   96.651396][ T6698] netlink: 4 bytes leftover after parsing attributes in process `syz.1.160'.
[   97.162467][ T6702] netlink: 4 bytes leftover after parsing attributes in process `syz.3.159'.
[   97.545597][ T6711] netlink: 4 bytes leftover after parsing attributes in process `syz.1.163'.
[  100.398385][ T6747] netlink: 4 bytes leftover after parsing attributes in process `syz.3.170'.
[  100.988911][ T6758] netlink: 4 bytes leftover after parsing attributes in process `syz.2.172'.
[  102.699361][ T6775] netlink: 4 bytes leftover after parsing attributes in process `syz.3.178'.
[  102.713493][ T6778] netlink: 72 bytes leftover after parsing attributes in process `syz.0.176'.
[  102.717093][ T6778] netlink: 8 bytes leftover after parsing attributes in process `syz.0.176'.
[  105.493240][ T6827] netlink: 4 bytes leftover after parsing attributes in process `syz.1.190'.
[  106.136920][ T6830] netlink: 4 bytes leftover after parsing attributes in process `syz.2.188'.
[  107.456934][ T6849] netlink: 4 bytes leftover after parsing attributes in process `syz.2.193'.
[  107.613684][ T5976] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  107.763717][ T5976] usb 5-1: Using ep0 maxpacket: 8
[  107.766559][ T5976] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  107.769082][ T5976] usb 5-1: config 0 has no interface number 0
[  107.771027][ T5976] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  107.774373][ T5976] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  107.777211][ T5976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.780806][ T5976] usb 5-1: config 0 descriptor??
[  107.788014][ T5976] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  108.249255][ T5996] usb 5-1: USB disconnect, device number 3
[  108.984175][ T6870] netlink: 72 bytes leftover after parsing attributes in process `syz.2.200'.
[  108.987097][ T6870] netlink: 8 bytes leftover after parsing attributes in process `syz.2.200'.
[  110.064382][ T6893] netlink: 4 bytes leftover after parsing attributes in process `syz.1.202'.
[  111.546536][ T6911] netlink: 4 bytes leftover after parsing attributes in process `syz.2.209'.
[  112.083182][ T6921] netlink: 12 bytes leftover after parsing attributes in process `syz.2.212'.
[  112.086269][ T6921] netlink: 12 bytes leftover after parsing attributes in process `syz.2.212'.
[  112.089108][ T6921] netlink: 20 bytes leftover after parsing attributes in process `syz.2.212'.
[  112.476306][ T6926] netlink: 4 bytes leftover after parsing attributes in process `syz.3.211'.
[  113.334192][ T6937] netlink: 4 bytes leftover after parsing attributes in process `syz.2.214'.
[  114.026112][ T6948] netlink: 4 bytes leftover after parsing attributes in process `syz.0.217'.
[  115.025747][ T6964] netlink: 4 bytes leftover after parsing attributes in process `syz.1.219'.
[  115.619931][ T6967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.222'.
[  116.577199][ T6984] netlink: 4 bytes leftover after parsing attributes in process `syz.2.226'.
[  116.792656][ T6982] netlink: 4 bytes leftover after parsing attributes in process `syz.1.224'.
[  117.230492][ T6988] netlink: 4 bytes leftover after parsing attributes in process `syz.0.227'.
[  117.648657][ T6998] netlink: 4 bytes leftover after parsing attributes in process `syz.3.228'.
[  117.810591][ T7002] netlink: 4 bytes leftover after parsing attributes in process `syz.2.230'.
[  120.847504][ T7035] netlink: 4 bytes leftover after parsing attributes in process `syz.1.238'.
[  121.512990][ T7049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.240'.
[  121.573668][   T57] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  121.983843][   T57] usb 5-1: Using ep0 maxpacket: 8
[  121.987544][   T57] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  121.990848][   T57] usb 5-1: config 0 has no interface number 0
[  121.993427][   T57] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  121.997978][   T57] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  122.001607][   T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.013265][   T57] usb 5-1: config 0 descriptor??
[  122.020185][   T57] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  122.481136][   T64] usb 5-1: USB disconnect, device number 4
[  128.367966][ T7127] netlink: 4 bytes leftover after parsing attributes in process `syz.0.256'.
[  130.119488][ T7153] netlink: 4 bytes leftover after parsing attributes in process `syz.1.263'.
[  130.295856][ T7160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.264'.
[  131.553096][ T7179] netlink: 4 bytes leftover after parsing attributes in process `syz.2.268'.
[  132.257060][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  132.259062][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  133.197068][ T7197] netlink: 4 bytes leftover after parsing attributes in process `syz.0.273'.
[  134.259894][ T7212] netlink: 4 bytes leftover after parsing attributes in process `syz.2.277'.
[  134.662676][ T7217] netlink: 4 bytes leftover after parsing attributes in process `syz.1.278'.
[  135.318055][ T7230] netlink: 4 bytes leftover after parsing attributes in process `syz.2.281'.
[  135.936165][ T7237] netlink: 4 bytes leftover after parsing attributes in process `syz.3.283'.
[  136.669474][ T7241] netlink: 4 bytes leftover after parsing attributes in process `syz.2.285'.
[  137.117865][ T7249] netlink: 4 bytes leftover after parsing attributes in process `syz.3.287'.
[  137.563046][ T7254] netlink: 4 bytes leftover after parsing attributes in process `syz.1.286'.
[  138.409896][ T7267] netlink: 4 bytes leftover after parsing attributes in process `syz.3.290'.
[  140.350905][ T7290] netlink: 4 bytes leftover after parsing attributes in process `syz.0.295'.
[  145.222023][ T7355] netlink: 4 bytes leftover after parsing attributes in process `syz.2.310'.
[  145.808571][ T7365] netlink: 4 bytes leftover after parsing attributes in process `syz.3.312'.
[  146.934962][ T7383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.316'.
[  147.057016][ T7384] netlink: 4 bytes leftover after parsing attributes in process `syz.3.317'.
[  147.865438][ T7397] netlink: 4 bytes leftover after parsing attributes in process `syz.2.319'.
[  148.001308][ T7399] netlink: 4 bytes leftover after parsing attributes in process `syz.3.321'.
[  148.833691][  T832] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  148.950097][ T7411] netlink: 12 bytes leftover after parsing attributes in process `syz.3.324'.
[  148.983895][  T832] usb 7-1: Using ep0 maxpacket: 8
[  148.989079][  T832] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  148.992416][  T832] usb 7-1: config 0 has no interface number 0
[  148.995410][  T832] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  148.999987][  T832] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  149.004504][  T832] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.014066][  T832] usb 7-1: config 0 descriptor??
[  149.018133][  T832] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  149.474914][ T5311] usb 7-1: USB disconnect, device number 2
[  149.955840][ T7424] netlink: 4 bytes leftover after parsing attributes in process `syz.3.327'.
[  151.424756][ T7445] netlink: 4 bytes leftover after parsing attributes in process `syz.3.332'.
[  152.077383][ T7456] netlink: 4 bytes leftover after parsing attributes in process `syz.1.334'.
[  154.274447][ T7469] netlink: 4 bytes leftover after parsing attributes in process `syz.2.339'.
[  158.434350][ T7524] netlink: 4 bytes leftover after parsing attributes in process `syz.0.351'.
[  159.995991][ T7553] netlink: 4 bytes leftover after parsing attributes in process `syz.3.357'.
[  160.791662][ T7564] netlink: 4 bytes leftover after parsing attributes in process `syz.0.358'.
[  161.624927][ T7574] netlink: 4 bytes leftover after parsing attributes in process `syz.2.362'.
[  162.591846][ T7590] netlink: 12 bytes leftover after parsing attributes in process `syz.2.366'.
[  162.594739][ T7590] netlink: 12 bytes leftover after parsing attributes in process `syz.2.366'.
[  163.005536][ T7597] netlink: 4 bytes leftover after parsing attributes in process `syz.0.367'.
[  168.518533][ T7679] netlink: 4 bytes leftover after parsing attributes in process `syz.1.383'.
[  169.175923][ T7682] netlink: 4 bytes leftover after parsing attributes in process `syz.3.387'.
[  170.175724][ T5950] Bluetooth: hci3: command 0x0406 tx timeout
[  170.175852][   T67] Bluetooth: hci2: command tx timeout
[  170.176570][ T5935] Bluetooth: hci0: command 0x0406 tx timeout
[  170.176606][ T5935] Bluetooth: hci1: command 0x0406 tx timeout
[  170.799867][ T7709] netlink: 4 bytes leftover after parsing attributes in process `syz.0.390'.
[  171.384529][ T7721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.394'.
[  173.205165][ T7738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.399'.
[  174.229802][ T7757] netlink: 4 bytes leftover after parsing attributes in process `syz.0.402'.
[  174.882873][ T7765] netlink: 4 bytes leftover after parsing attributes in process `syz.2.403'.
[  176.238376][ T7793] netlink: 4 bytes leftover after parsing attributes in process `syz.3.411'.
[  176.347702][ T7794] netlink: 12 bytes leftover after parsing attributes in process `syz.2.412'.
[  176.350506][ T7794] netlink: 12 bytes leftover after parsing attributes in process `syz.2.412'.
[  176.701981][ T7799] netlink: 4 bytes leftover after parsing attributes in process `syz.0.410'.
[  177.283041][ T7808] netlink: 12 bytes leftover after parsing attributes in process `syz.3.414'.
[  177.286019][ T7808] netlink: 12 bytes leftover after parsing attributes in process `syz.3.414'.
[  177.288905][ T7808] netlink: 20 bytes leftover after parsing attributes in process `syz.3.414'.
[  177.404196][ T7809] netlink: 12 bytes leftover after parsing attributes in process `syz.0.415'.
[  179.233773][   T57] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  179.385147][   T57] usb 6-1: Using ep0 maxpacket: 8
[  179.388907][   T57] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  179.392759][   T57] usb 6-1: config 0 has no interface number 0
[  179.395584][   T57] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  179.400030][   T57] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  179.403848][   T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.408951][   T57] usb 6-1: config 0 descriptor??
[  179.424433][   T57] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  179.625534][ T7842] __nla_validate_parse: 2 callbacks suppressed
[  179.625571][ T7842] netlink: 12 bytes leftover after parsing attributes in process `syz.2.424'.
[  179.630323][ T7842] netlink: 12 bytes leftover after parsing attributes in process `syz.2.424'.
[  179.875331][ T5995] usb 6-1: USB disconnect, device number 3
[  180.030701][ T7847] netlink: 12 bytes leftover after parsing attributes in process `syz.3.425'.
[  181.334901][ T7868] netlink: 4 bytes leftover after parsing attributes in process `syz.3.429'.
[  183.170713][ T7902] netlink: 4 bytes leftover after parsing attributes in process `syz.3.437'.
[  183.643706][ T5995] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  183.793658][ T5995] usb 7-1: Using ep0 maxpacket: 8
[  183.799082][ T5995] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  183.802242][ T5995] usb 7-1: config 0 has no interface number 0
[  183.805124][ T5995] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  183.809733][ T5995] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  183.813515][ T5995] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.819462][ T5995] usb 7-1: config 0 descriptor??
[  183.827631][ T5995] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  184.282033][ T5995] usb 7-1: USB disconnect, device number 3
[  184.366604][ T7920] netlink: 4 bytes leftover after parsing attributes in process `syz.3.441'.
[  184.515199][ T7922] netlink: 72 bytes leftover after parsing attributes in process `syz.0.442'.
[  184.518611][ T7922] netlink: 8 bytes leftover after parsing attributes in process `syz.0.442'.
[  185.535726][ T7945] netlink: 12 bytes leftover after parsing attributes in process `syz.0.449'.
[  186.059008][ T7953] netlink: 12 bytes leftover after parsing attributes in process `syz.2.451'.
[  186.124509][ T7954] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'.
[  186.653765][ T5995] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  186.813723][ T5995] usb 5-1: Using ep0 maxpacket: 8
[  186.817676][ T5995] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  186.821369][ T5995] usb 5-1: config 0 has no interface number 0
[  186.824247][ T5995] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  186.833715][ T5995] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  186.836608][ T5995] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.840780][ T5995] usb 5-1: config 0 descriptor??
[  186.847937][ T5995] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  187.134985][ T7970] netlink: 12 bytes leftover after parsing attributes in process `syz.2.455'.
[  187.309124][ T5995] usb 5-1: USB disconnect, device number 5
[  188.502783][ T7986] netlink: 4 bytes leftover after parsing attributes in process `syz.2.459'.
[  188.683196][ T7991] Illegal XDP return value 3860584133 on prog  (id 102) dev N/A, expect packet loss!
[  188.849610][ T7997] FAULT_INJECTION: forcing a failure.
[  188.849610][ T7997] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  188.858899][ T7997] CPU: 2 UID: 0 PID: 7997 Comm: syz.0.462 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  188.858914][ T7997] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  188.858920][ T7997] Call Trace:
[  188.858924][ T7997]  <TASK>
[  188.858927][ T7997]  dump_stack_lvl+0x16c/0x1f0
[  188.858944][ T7997]  should_fail_ex+0x512/0x640
[  188.858960][ T7997]  _copy_from_user+0x2e/0xd0
[  188.858977][ T7997]  get_compat_msghdr+0xa7/0x170
[  188.858993][ T7997]  ? __pfx_get_compat_msghdr+0x10/0x10
[  188.859012][ T7997]  ___sys_sendmsg+0x1ae/0x1d0
[  188.859022][ T7997]  ? __pfx____sys_sendmsg+0x10/0x10
[  188.859046][ T7997]  __sys_sendmsg+0x16d/0x220
[  188.859055][ T7997]  ? __pfx___sys_sendmsg+0x10/0x10
[  188.859069][ T7997]  ? rcu_is_watching+0x12/0xc0
[  188.859081][ T7997]  __do_fast_syscall_32+0x73/0x120
[  188.859093][ T7997]  do_fast_syscall_32+0x32/0x80
[  188.859105][ T7997]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  188.859118][ T7997] RIP: 0023:0xf7f25579
[  188.859125][ T7997] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  188.859134][ T7997] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  188.859144][ T7997] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  188.859150][ T7997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  188.859155][ T7997] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  188.859160][ T7997] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  188.859165][ T7997] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  188.859189][ T7997]  </TASK>
[  188.936473][ T8000] netlink: 12 bytes leftover after parsing attributes in process `syz.1.461'.
[  189.158028][ T8005] netlink: 28 bytes leftover after parsing attributes in process `syz.2.465'.
[  189.196633][ T8008] netlink: 4 bytes leftover after parsing attributes in process `syz.0.464'.
[  189.209828][ T8010] program syz.2.467 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  189.394341][ T8019] netlink: 16 bytes leftover after parsing attributes in process `syz.3.469'.
[  189.397227][ T8019] netlink: 472 bytes leftover after parsing attributes in process `syz.3.469'.
[  189.863019][ T8028] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  190.429910][ T8033] FAULT_INJECTION: forcing a failure.
[  190.429910][ T8033] name failslab, interval 1, probability 0, space 0, times 1
[  190.433965][ T8033] CPU: 3 UID: 0 PID: 8033 Comm: syz.0.474 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  190.433978][ T8033] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  190.433984][ T8033] Call Trace:
[  190.433988][ T8033]  <TASK>
[  190.433992][ T8033]  dump_stack_lvl+0x16c/0x1f0
[  190.434008][ T8033]  should_fail_ex+0x512/0x640
[  190.434021][ T8033]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  190.434034][ T8033]  should_failslab+0xc2/0x120
[  190.434045][ T8033]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  190.434055][ T8033]  ? getname_flags.part.0+0x4c/0x550
[  190.434070][ T8033]  getname_flags.part.0+0x4c/0x550
[  190.434083][ T8033]  getname_flags+0x93/0xf0
[  190.434097][ T8033]  do_sys_openat2+0xb8/0x1d0
[  190.434110][ T8033]  ? __pfx_do_sys_openat2+0x10/0x10
[  190.434123][ T8033]  ? __fget_files+0x20e/0x3c0
[  190.434140][ T8033]  __ia32_compat_sys_openat+0x16d/0x210
[  190.434153][ T8033]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  190.434166][ T8033]  ? ksys_write+0x1b9/0x240
[  190.434176][ T8033]  ? rcu_is_watching+0x12/0xc0
[  190.434187][ T8033]  __do_fast_syscall_32+0x73/0x120
[  190.434200][ T8033]  do_fast_syscall_32+0x32/0x80
[  190.434212][ T8033]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  190.434224][ T8033] RIP: 0023:0xf7f25579
[  190.434232][ T8033] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  190.434241][ T8033] RSP: 002b:00000000f502555c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  190.434250][ T8033] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000100
[  190.434256][ T8033] RDX: 0000000000000000 RSI: 0000000000000160 RDI: 0000000000000000
[  190.434261][ T8033] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  190.434266][ T8033] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  190.434272][ T8033] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  190.434283][ T8033]  </TASK>
[  191.107798][ T8045] __nla_validate_parse: 2 callbacks suppressed
[  191.107808][ T8045] netlink: 8 bytes leftover after parsing attributes in process `syz.1.478'.
[  191.485662][   T57] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  191.655470][   T57] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  191.659073][   T57] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  191.663288][   T57] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  191.666231][   T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  191.669576][   T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  191.674270][   T57] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  191.677162][   T57] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  191.679956][   T57] usb 6-1: Product: syz
[  191.681271][   T57] usb 6-1: Manufacturer: syz
[  191.686580][   T57] cdc_wdm 6-1:1.0: skipping garbage
[  191.688642][   T57] cdc_wdm 6-1:1.0: skipping garbage
[  191.693123][   T57] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  191.696092][   T57] cdc_wdm 6-1:1.0: Unknown control protocol
[  191.993685][   T58] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  192.084871][ T8067] netlink: 4 bytes leftover after parsing attributes in process `syz.0.482'.
[  192.094362][ T8066] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  192.103150][ T8066] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  192.148950][ T8066] fuse: Unknown parameter '000000000000000000030xffffffffffffffff'
[  192.166820][   T58] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  192.169855][   T58] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  192.173011][   T58] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  192.176489][   T58] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  192.181178][   T58] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  192.189462][   T58] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  192.193038][   T58] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  192.196554][   T58] usb 7-1: Product: syz
[  192.197989][   T58] usb 7-1: Manufacturer: syz
[  192.214562][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -EPIPE
[  192.221227][   T58] cdc_wdm 7-1:1.0: skipping garbage
[  192.222957][   T58] cdc_wdm 7-1:1.0: skipping garbage
[  192.229405][   T58] cdc_wdm 7-1:1.0: cdc-wdm1: USB WDM device
[  192.231362][   T58] cdc_wdm 7-1:1.0: Unknown control protocol
[  192.269908][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  192.270086][    T9] usb 6-1: USB disconnect, device number 4
[  192.272539][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  192.277124][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  192.443655][ T6534] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  192.603668][ T6534] usb 8-1: Using ep0 maxpacket: 8
[  192.607791][ T6534] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  192.610579][ T6534] usb 8-1: config 0 has no interface number 0
[  192.612499][ T6534] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  192.616148][ T6534] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  192.619504][ T6534] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.624198][ T6534] usb 8-1: config 0 descriptor??
[  192.628518][ T6534] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  193.083376][ T5311] usb 8-1: USB disconnect, device number 2
[  193.627670][ T8085] Scaler: =================  START STATUS  =================
[  193.630920][ T8085] Scaler: ==================  END STATUS  ==================
[  193.698156][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  193.700766][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  193.902896][ T8085] netlink: 8 bytes leftover after parsing attributes in process `syz.3.487'.
[  193.904509][ T8095] bridge0: port 3(syz_tun) entered blocking state
[  193.908567][ T8095] bridge0: port 3(syz_tun) entered disabled state
[  193.911294][ T8095] syz_tun: entered allmulticast mode
[  193.911397][ T8085] netlink: 'syz.3.487': attribute type 28 has an invalid length.
[  193.915472][ T8095] syz_tun: entered promiscuous mode
[  193.915884][ T8095] bridge0: port 3(syz_tun) entered blocking state
[  193.919891][ T8095] bridge0: port 3(syz_tun) entered forwarding state
[  193.945890][ T8095] netlink: 13760 bytes leftover after parsing attributes in process `syz.0.489'.
[  194.132406][ T8099] netlink: 4 bytes leftover after parsing attributes in process `syz.1.490'.
[  194.723999][ T6534] usb 7-1: USB disconnect, device number 4
[  195.093773][   T64] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  195.148098][ T8122] netlink: 4 bytes leftover after parsing attributes in process `syz.3.499'.
[  195.245884][   T64] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  195.249198][   T64] usb 6-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  195.252550][   T64] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  195.256207][   T64] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.266810][   T64] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  195.269588][   T64] usb 6-1: invalid MIDI out EP 0
[  195.305951][ T7972] udevd[7972]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  195.317104][   T64] snd-usb-audio 6-1:27.0: probe with driver snd-usb-audio failed with error -22
[  195.483883][  T832] usb 6-1: USB disconnect, device number 5
[  195.586677][ T8127] netlink: 4 bytes leftover after parsing attributes in process `syz.0.500'.
[  195.793101][ T8118] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  195.800596][ T8118] netlink: 'syz.1.498': attribute type 4 has an invalid length.
[  196.163758][  T832] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  196.186680][ T8133] Zero length message leads to an empty skb
[  196.243977][ T8133] hpfs: Bad magic ... probably not HPFS
[  196.315699][  T832] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  196.320257][  T832] usb 7-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  196.327154][  T832] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  196.350976][  T832] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.391364][  T832] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  196.414953][  T832] usb 7-1: invalid MIDI out EP 0
[  196.526555][  T832] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -22
[  196.613051][  T832] usb 7-1: USB disconnect, device number 5
[  196.814069][ T8129] netlink: 'syz.2.501': attribute type 4 has an invalid length.
[  198.170290][ T8137] Set syz1 is full, maxelem 65536 reached
[  198.284165][ T8166] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  198.469092][ T8172] netlink: 4 bytes leftover after parsing attributes in process `syz.3.512'.
[  198.746303][ T8171] netlink: 4 bytes leftover after parsing attributes in process `syz.2.513'.
[  199.103777][ T5995] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  199.253782][ T5995] usb 6-1: Using ep0 maxpacket: 8
[  199.257864][ T5995] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  199.261641][ T5995] usb 6-1: config 0 has no interface number 0
[  199.266179][ T5995] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  199.271041][ T5995] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  199.274519][ T5995] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.278380][ T5995] usb 6-1: config 0 descriptor??
[  199.282300][ T5995] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  199.436694][ T8188] Bluetooth: MGMT ver 1.23
[  199.694236][ T8196] netlink: 4 bytes leftover after parsing attributes in process `syz.2.520'.
[  199.697228][ T8196] bridge_slave_1: left allmulticast mode
[  199.699228][ T8196] bridge_slave_1: left promiscuous mode
[  199.702526][ T8196] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.801192][ T8196] bridge_slave_0: left allmulticast mode
[  199.803715][ T8196] bridge_slave_0: left promiscuous mode
[  199.806034][ T8196] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.901358][ T5995] usb 6-1: USB disconnect, device number 6
[  200.178491][ T8203] netlink: 4 bytes leftover after parsing attributes in process `syz.0.522'.
[  200.736411][ T8217] netlink: 4 bytes leftover after parsing attributes in process `syz.2.524'.
[  200.887259][ T8219] netlink: 4 bytes leftover after parsing attributes in process `syz.1.526'.
[  200.903563][ T8215] syz.3.527 uses obsolete (PF_INET,SOCK_PACKET)
[  201.300983][ T8224] netlink: 4 bytes leftover after parsing attributes in process `syz.0.528'.
[  201.912009][ T8235] netlink: 4 bytes leftover after parsing attributes in process `syz.1.530'.
[  202.512230][ T8244] netlink: 4 bytes leftover after parsing attributes in process `syz.0.533'.
[  203.267638][ T8258] netlink: 4 bytes leftover after parsing attributes in process `syz.2.536'.
[  204.312179][ T5939] Bluetooth: unknown link type 108
[  204.314139][ T5939] Bluetooth: hci2: connection err: -111
[  205.190333][ T8286] dvmrp8: entered allmulticast mode
[  205.199211][ T8285] dvmrp8: left allmulticast mode
[  205.407080][ T8293] netlink: 16 bytes leftover after parsing attributes in process `syz.2.547'.
[  205.626559][ T8299] netlink: 4 bytes leftover after parsing attributes in process `syz.3.546'.
[  205.752943][ T8303] loop8: detected capacity change from 0 to 1
[  205.758956][ T8303] Dev loop8: unable to read RDB block 1
[  205.760803][ T8303]  loop8: unable to read partition table
[  205.762631][ T8303] loop8: partition table beyond EOD, truncated
[  205.766027][ T8303] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  205.783435][ T5939] Bluetooth: hci1: command 0x0406 tx timeout
[  205.839355][ T8303] loop2: detected capacity change from 0 to 7
[  205.842841][ T8303] Dev loop2: unable to read RDB block 7
[  205.846193][ T8303]  loop2: unable to read partition table
[  205.848116][ T8303] loop2: partition table beyond EOD, truncated
[  205.850145][ T8303] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  205.858420][ T8303] ufs: You didn't specify the type of your ufs filesystem
[  205.858420][ T8303] 
[  205.858420][ T8303] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  205.858420][ T8303] 
[  205.858420][ T8303] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  205.869573][ T8303] ufs: ufs_fill_super(): bad magic number
[  206.422114][ T5350] Dev loop2: unable to read RDB block 7
[  206.429505][ T5350]  loop2: unable to read partition table
[  206.431993][ T5350] loop2: partition table beyond EOD, truncated
[  206.466369][ T8318] FAULT_INJECTION: forcing a failure.
[  206.466369][ T8318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.470470][ T8318] CPU: 3 UID: 0 PID: 8318 Comm: syz.3.554 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  206.470493][ T8318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  206.470503][ T8318] Call Trace:
[  206.470508][ T8318]  <TASK>
[  206.470533][ T8318]  dump_stack_lvl+0x16c/0x1f0
[  206.470558][ T8318]  should_fail_ex+0x512/0x640
[  206.470584][ T8318]  _copy_from_user+0x2e/0xd0
[  206.470609][ T8318]  move_addr_to_kernel+0x65/0x170
[  206.470632][ T8318]  __sys_connect+0xaf/0x170
[  206.470653][ T8318]  ? __pfx___sys_connect+0x10/0x10
[  206.470684][ T8318]  ? __pfx_ksys_write+0x10/0x10
[  206.470704][ T8318]  __ia32_sys_connect+0x71/0xb0
[  206.470736][ T8318]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  206.470757][ T8318]  __do_fast_syscall_32+0x73/0x120
[  206.470778][ T8318]  do_fast_syscall_32+0x32/0x80
[  206.470799][ T8318]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.470819][ T8318] RIP: 0023:0xf711e579
[  206.470831][ T8318] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  206.470847][ T8318] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  206.470862][ T8318] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[  206.470872][ T8318] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  206.470882][ T8318] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  206.470890][ T8318] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  206.470898][ T8318] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  206.470919][ T8318]  </TASK>
[  206.546311][ T8305] FAULT_INJECTION: forcing a failure.
[  206.546311][ T8305] name fail_futex, interval 1, probability 0, space 0, times 1
[  206.550323][ T8305] CPU: 2 UID: 0 PID: 8305 Comm: syz.0.549 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  206.550337][ T8305] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  206.550343][ T8305] Call Trace:
[  206.550346][ T8305]  <TASK>
[  206.550350][ T8305]  dump_stack_lvl+0x16c/0x1f0
[  206.550366][ T8305]  should_fail_ex+0x512/0x640
[  206.550382][ T8305]  get_futex_key+0x49e/0x1000
[  206.550394][ T8305]  ? __pfx_get_futex_key+0x10/0x10
[  206.550408][ T8305]  futex_wake+0xe7/0x4e0
[  206.550419][ T8305]  ? rcu_is_watching+0x12/0xc0
[  206.550429][ T8305]  ? __pfx_futex_wake+0x10/0x10
[  206.550446][ T8305]  do_futex+0x1e3/0x350
[  206.550456][ T8305]  ? __pfx_do_futex+0x10/0x10
[  206.550465][ T8305]  ? __might_fault+0xe3/0x190
[  206.550480][ T8305]  mm_release+0x24e/0x300
[  206.550491][ T8305]  do_exit+0x898/0x2c30
[  206.550503][ T8305]  ? __pfx___might_resched+0x10/0x10
[  206.550535][ T8305]  ? __pfx_do_exit+0x10/0x10
[  206.550547][ T8305]  ? do_raw_spin_lock+0x12c/0x2b0
[  206.550560][ T8305]  ? find_held_lock+0x2b/0x80
[  206.550571][ T8305]  do_group_exit+0xd3/0x2a0
[  206.550585][ T8305]  get_signal+0x2673/0x26d0
[  206.550598][ T8305]  ? poll_select_finish+0x377/0x6b0
[  206.550614][ T8305]  ? __pfx_get_signal+0x10/0x10
[  206.550625][ T8305]  ? __pfx_set_compat_user_sigmask+0x10/0x10
[  206.550636][ T8305]  arch_do_signal_or_restart+0x8f/0x7a0
[  206.550651][ T8305]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  206.550663][ T8305]  ? __ia32_compat_sys_pselect6_time32+0x26a/0x390
[  206.550683][ T8305]  ? rcu_is_watching+0x12/0xc0
[  206.550694][ T8305]  syscall_exit_to_user_mode+0x150/0x2a0
[  206.550706][ T8305]  do_int80_emulation+0x111/0x200
[  206.550720][ T8305]  asm_int80_emulation+0x1a/0x20
[  206.550730][ T8305] RIP: 0023:0xf7f25579
[  206.550738][ T8305] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  206.550747][ T8305] RSP: 002b:00000000f502555c EFLAGS: 00000296 ORIG_RAX: 0000000000000134
[  206.550757][ T8305] RAX: fffffffffffffdfe RBX: 0000000000000000 RCX: 0000000000000000
[  206.550763][ T8305] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  206.550768][ T8305] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  206.550773][ T8305] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  206.550778][ T8305] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  206.550789][ T8305]  </TASK>
[  206.944440][ T5939] Bluetooth: unknown link type 108
[  206.946106][ T5939] Bluetooth: hci0: connection err: -111
[  207.197610][ T8335] netlink: 4 bytes leftover after parsing attributes in process `syz.3.558'.
[  207.710900][ T5350] Dev loop2: unable to read RDB block 7
[  207.719670][ T5350]  loop2: unable to read partition table
[  207.721894][ T5350] loop2: partition table beyond EOD, truncated
[  207.937803][ T8339] netlink: 4 bytes leftover after parsing attributes in process `syz.2.560'.
[  208.165630][ T5350] Dev loop2: unable to read RDB block 7
[  208.167492][ T5350]  loop2: unable to read partition table
[  208.169341][ T5350] loop2: partition table beyond EOD, truncated
[  208.543664][   T57] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[  208.705475][   T57] usb 7-1: config index 0 descriptor too short (expected 31, got 27)
[  208.708830][   T57] usb 7-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid wMaxPacketSize 0
[  208.712773][   T57] usb 7-1: config 1 interface 0 has no altsetting 0
[  208.717872][   T57] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= b.72
[  208.721594][   T57] usb 7-1: New USB device strings: Mfr=28, Product=37, SerialNumber=3
[  208.725287][   T57] usb 7-1: Product: syz
[  208.727030][   T57] usb 7-1: Manufacturer: syz
[  208.728917][   T57] usb 7-1: SerialNumber: syz
[  209.353378][   T57] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  209.431196][ T8372] netlink: 36 bytes leftover after parsing attributes in process `syz.3.571'.
[  209.435278][ T8372] netlink: 16 bytes leftover after parsing attributes in process `syz.3.571'.
[  209.438004][ T8372] netlink: 36 bytes leftover after parsing attributes in process `syz.3.571'.
[  209.442227][ T8372] netlink: 36 bytes leftover after parsing attributes in process `syz.3.571'.
[  209.553364][   T57] usb 7-1: USB disconnect, device number 6
[  209.728816][ T8375] netlink: 4 bytes leftover after parsing attributes in process `syz.1.573'.
[  209.760655][ T8349] usblp0: removed
[  210.305585][ T5350] Dev loop2: unable to read RDB block 7
[  210.308166][ T5350]  loop2: unable to read partition table
[  210.311028][ T5350] loop2: partition table beyond EOD, truncated
[  211.395303][ T8398] netlink: 'syz.3.581': attribute type 1 has an invalid length.
[  211.412439][ T8398] 8021q: adding VLAN 0 to HW filter on device bond1
[  211.466336][ T8398] bond1: (slave veth3): Enslaving as an active interface with a down link
[  211.518599][ T8405] netlink: 4 bytes leftover after parsing attributes in process `syz.1.578'.
[  211.566391][ T8408] FAULT_INJECTION: forcing a failure.
[  211.566391][ T8408] name failslab, interval 1, probability 0, space 0, times 0
[  211.571661][ T8408] CPU: 0 UID: 0 PID: 8408 Comm: syz.3.583 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  211.571681][ T8408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  211.571691][ T8408] Call Trace:
[  211.571697][ T8408]  <TASK>
[  211.571704][ T8408]  dump_stack_lvl+0x16c/0x1f0
[  211.571729][ T8408]  should_fail_ex+0x512/0x640
[  211.571751][ T8408]  ? fs_reclaim_acquire+0xae/0x150
[  211.571777][ T8408]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  211.571799][ T8408]  should_failslab+0xc2/0x120
[  211.571819][ T8408]  __kmalloc_noprof+0xd2/0x510
[  211.571843][ T8408]  tomoyo_realpath_from_path+0xc2/0x6e0
[  211.571868][ T8408]  ? tomoyo_profile+0x47/0x60
[  211.571896][ T8408]  tomoyo_path_number_perm+0x245/0x580
[  211.571915][ T8408]  ? tomoyo_path_number_perm+0x237/0x580
[  211.571936][ T8408]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  211.571987][ T8408]  ? find_held_lock+0x2b/0x80
[  211.572004][ T8408]  ? hook_file_ioctl_common+0x145/0x410
[  211.572024][ T8408]  ? __fget_files+0x204/0x3c0
[  211.572053][ T8408]  ? __fget_files+0x20e/0x3c0
[  211.572076][ T8408]  ? fput+0x60/0xf0
[  211.572099][ T8408]  security_file_ioctl_compat+0x9b/0x240
[  211.572122][ T8408]  __ia32_compat_sys_ioctl+0xc3/0x360
[  211.572149][ T8408]  __do_fast_syscall_32+0x73/0x120
[  211.572171][ T8408]  do_fast_syscall_32+0x32/0x80
[  211.572191][ T8408]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  211.572210][ T8408] RIP: 0023:0xf711e579
[  211.572222][ T8408] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  211.572236][ T8408] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  211.572252][ T8408] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80
[  211.572261][ T8408] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  211.572270][ T8408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  211.572278][ T8408] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  211.572287][ T8408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  211.572308][ T8408]  </TASK>
[  211.572314][ T8408] ERROR: Out of memory at tomoyo_realpath_from_path.
[  212.008190][ T8386] Set syz1 is full, maxelem 65536 reached
[  212.027663][ T5350] Dev loop2: unable to read RDB block 7
[  212.029494][ T5350]  loop2: unable to read partition table
[  212.031334][ T5350] loop2: partition table beyond EOD, truncated
[  212.293737][   T64] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  212.466299][   T64] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  212.468986][   T64] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  212.472857][   T64] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  212.476416][   T64] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  212.479748][   T64] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  212.483926][   T64] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  212.486783][   T64] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.491337][   T64] usb 7-1: config 0 descriptor??
[  212.865271][   T40] audit: type=1804 audit(1745729471.675:2): pid=8434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.589" name="/newroot/151/file0" dev="tmpfs" ino=840 res=1 errno=0
[  212.905386][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.908203][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.910521][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.912825][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.915881][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.918416][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.920746][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.923071][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.925806][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.928097][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.930372][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.932660][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.935270][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.937560][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.939842][   T64] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  212.942687][   T64] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[  212.949394][   T64] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  213.176039][   T64] usb 7-1: USB disconnect, device number 7
[  213.235899][ T8443] netlink: 4 bytes leftover after parsing attributes in process `syz.1.591'.
[  213.479866][ T8445] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  213.727441][ T5350] Dev loop2: unable to read RDB block 7
[  213.735235][ T5350]  loop2: unable to read partition table
[  213.738153][ T5350] loop2: partition table beyond EOD, truncated
[  214.192054][ T8455] netlink: 4 bytes leftover after parsing attributes in process `syz.1.594'.
[  215.126063][ T5350] Dev loop2: unable to read RDB block 7
[  215.128165][ T5350]  loop2: unable to read partition table
[  215.130047][ T5350] loop2: partition table beyond EOD, truncated
[  215.438352][ T8481] netlink: 4 bytes leftover after parsing attributes in process `syz.2.598'.
[  216.173189][ T5350] Dev loop2: unable to read RDB block 7
[  216.175182][ T5350]  loop2: unable to read partition table
[  216.177279][ T5350] loop2: partition table beyond EOD, truncated
[  216.581586][ T5311] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  216.743680][ T5311] usb 6-1: Using ep0 maxpacket: 8
[  216.755533][ T5311] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  216.758829][ T5311] usb 6-1: config 0 has no interface number 0
[  216.761370][ T5311] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  216.766800][ T5311] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  216.770486][ T5311] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.775876][ T5311] usb 6-1: config 0 descriptor??
[  216.783172][ T8509] FAULT_INJECTION: forcing a failure.
[  216.783172][ T8509] name failslab, interval 1, probability 0, space 0, times 0
[  216.783674][ T5311] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  216.787182][ T8509] CPU: 1 UID: 0 PID: 8509 Comm: syz.0.607 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  216.787196][ T8509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  216.787202][ T8509] Call Trace:
[  216.787206][ T8509]  <TASK>
[  216.787210][ T8509]  dump_stack_lvl+0x16c/0x1f0
[  216.787225][ T8509]  should_fail_ex+0x512/0x640
[  216.787239][ T8509]  ? fs_reclaim_acquire+0xae/0x150
[  216.787254][ T8509]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  216.787267][ T8509]  should_failslab+0xc2/0x120
[  216.787280][ T8509]  __kmalloc_noprof+0xd2/0x510
[  216.787293][ T8509]  tomoyo_realpath_from_path+0xc2/0x6e0
[  216.787307][ T8509]  ? tomoyo_profile+0x47/0x60
[  216.787323][ T8509]  tomoyo_path_number_perm+0x245/0x580
[  216.787333][ T8509]  ? tomoyo_path_number_perm+0x237/0x580
[  216.787347][ T8509]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  216.787377][ T8509]  ? find_held_lock+0x2b/0x80
[  216.787386][ T8509]  ? hook_file_ioctl_common+0x145/0x410
[  216.787398][ T8509]  ? __fget_files+0x204/0x3c0
[  216.787415][ T8509]  ? __fget_files+0x20e/0x3c0
[  216.787429][ T8509]  ? fput+0x60/0xf0
[  216.787442][ T8509]  security_file_ioctl_compat+0x9b/0x240
[  216.787455][ T8509]  __ia32_compat_sys_ioctl+0xc3/0x360
[  216.787470][ T8509]  __do_fast_syscall_32+0x73/0x120
[  216.787483][ T8509]  do_fast_syscall_32+0x32/0x80
[  216.787495][ T8509]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  216.787508][ T8509] RIP: 0023:0xf7f25579
[  216.787515][ T8509] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  216.787524][ T8509] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  216.787534][ T8509] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000040047452
[  216.787540][ T8509] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  216.787545][ T8509] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  216.787550][ T8509] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  216.787555][ T8509] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  216.787567][ T8509]  </TASK>
[  216.787571][ T8509] ERROR: Out of memory at tomoyo_realpath_from_path.
[  217.218903][ T5350] Dev loop2: unable to read RDB block 7
[  217.220775][ T5350]  loop2: unable to read partition table
[  217.222685][ T5350] loop2: partition table beyond EOD, truncated
[  217.239270][ T8515] hpfs: Bad magic ... probably not HPFS
[  217.266235][ T5995] usb 6-1: USB disconnect, device number 7
[  217.297097][ T5350] Dev loop2: unable to read RDB block 7
[  217.299031][ T5350]  loop2: unable to read partition table
[  217.300931][ T5350] loop2: partition table beyond EOD, truncated
[  217.316048][ T5350] Dev loop2: unable to read RDB block 7
[  217.318430][ T5350]  loop2: unable to read partition table
[  217.321352][ T5350] loop2: partition table beyond EOD, truncated
[  217.482455][ T5350] Dev loop2: unable to read RDB block 7
[  217.486467][ T5350]  loop2: unable to read partition table
[  217.488770][ T5350] loop2: partition table beyond EOD, truncated
[  218.407005][ T8549] netlink: 4 bytes leftover after parsing attributes in process `syz.0.615'.
[  218.737011][ T5350] Dev loop2: unable to read RDB block 7
[  218.738818][ T5350]  loop2: unable to read partition table
[  218.740658][ T5350] loop2: partition table beyond EOD, truncated
[  218.740769][ T8551] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  219.043883][ T5350] Dev loop2: unable to read RDB block 7
[  219.047394][ T5350]  loop2: unable to read partition table
[  219.049284][ T5350] loop2: partition table beyond EOD, truncated
[  219.593693][ T5311] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  219.743718][ T5311] usb 5-1: Using ep0 maxpacket: 8
[  219.746534][ T5311] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  219.749223][ T5311] usb 5-1: config 0 has no interface number 0
[  219.751483][ T5311] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  219.755635][ T5311] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  219.758553][ T5311] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  219.762635][ T5311] usb 5-1: config 0 descriptor??
[  219.768405][ T5311] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  220.035028][ T5350] Dev loop2: unable to read RDB block 7
[  220.044676][ T5350]  loop2: unable to read partition table
[  220.046626][ T5350] loop2: partition table beyond EOD, truncated
[  220.101893][ T8583] FAULT_INJECTION: forcing a failure.
[  220.101893][ T8583] name failslab, interval 1, probability 0, space 0, times 0
[  220.107246][ T8583] CPU: 2 UID: 0 PID: 8583 Comm: syz.2.625 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  220.107260][ T8583] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.107266][ T8583] Call Trace:
[  220.107269][ T8583]  <TASK>
[  220.107273][ T8583]  dump_stack_lvl+0x16c/0x1f0
[  220.107300][ T8583]  should_fail_ex+0x512/0x640
[  220.107316][ T8583]  ? fs_reclaim_acquire+0xae/0x150
[  220.107332][ T8583]  ? tomoyo_encode2+0x100/0x3e0
[  220.107344][ T8583]  should_failslab+0xc2/0x120
[  220.107357][ T8583]  __kmalloc_noprof+0xd2/0x510
[  220.107366][ T8583]  ? d_absolute_path+0x136/0x1a0
[  220.107380][ T8583]  tomoyo_encode2+0x100/0x3e0
[  220.107395][ T8583]  tomoyo_encode+0x29/0x50
[  220.107406][ T8583]  tomoyo_realpath_from_path+0x18f/0x6e0
[  220.107423][ T8583]  tomoyo_path_number_perm+0x245/0x580
[  220.107433][ T8583]  ? tomoyo_path_number_perm+0x237/0x580
[  220.107445][ T8583]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  220.107469][ T8583]  ? find_held_lock+0x2b/0x80
[  220.107478][ T8583]  ? hook_file_ioctl_common+0x145/0x410
[  220.107489][ T8583]  ? __fget_files+0x204/0x3c0
[  220.107505][ T8583]  ? __fget_files+0x20e/0x3c0
[  220.107518][ T8583]  ? fput+0x60/0xf0
[  220.107531][ T8583]  security_file_ioctl_compat+0x9b/0x240
[  220.107544][ T8583]  __ia32_compat_sys_ioctl+0xc3/0x360
[  220.107558][ T8583]  __do_fast_syscall_32+0x73/0x120
[  220.107571][ T8583]  do_fast_syscall_32+0x32/0x80
[  220.107583][ T8583]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.107595][ T8583] RIP: 0023:0xf70fe579
[  220.107603][ T8583] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.107612][ T8583] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  220.107621][ T8583] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0105512
[  220.107627][ T8583] RDX: 0000000080000200 RSI: 0000000000000000 RDI: 0000000000000000
[  220.107632][ T8583] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.107637][ T8583] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  220.107642][ T8583] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.107654][ T8583]  </TASK>
[  220.107697][ T8583] ERROR: Out of memory at tomoyo_realpath_from_path.
[  220.110597][ T8581] syz.1.626 (8581) used obsolete PPPIOCDETACH ioctl
[  220.195642][ T5350] Dev loop2: unable to read RDB block 7
[  220.198019][ T5350]  loop2: unable to read partition table
[  220.199952][ T5350] loop2: partition table beyond EOD, truncated
[  220.254944][ T5976] usb 5-1: USB disconnect, device number 6
[  220.421574][ T8593] netlink: 4 bytes leftover after parsing attributes in process `syz.2.627'.
[  220.530764][ T8594] netlink: 4 bytes leftover after parsing attributes in process `syz.1.628'.
[  221.167134][ T5350] Dev loop2: unable to read RDB block 7
[  221.168970][ T5350]  loop2: unable to read partition table
[  221.171212][ T5350] loop2: partition table beyond EOD, truncated
[  221.212699][ T8609] overlayfs: cannot append lower layer
[  221.248986][ T8609] netlink: 44 bytes leftover after parsing attributes in process `syz.2.631'.
[  221.991816][ T5350] Dev loop2: unable to read RDB block 7
[  221.993741][ T5350]  loop2: unable to read partition table
[  221.997067][ T5350] loop2: partition table beyond EOD, truncated
[  222.117100][ T5350] Dev loop2: unable to read RDB block 7
[  222.119119][ T5350]  loop2: unable to read partition table
[  222.121058][ T5350] loop2: partition table beyond EOD, truncated
[  222.203895][ T8626] openvswitch: netlink: IPv4 tun info is not correct
[  222.563395][ T8597] Set syz1 is full, maxelem 65536 reached
[  222.644702][ T5350] Dev loop2: unable to read RDB block 7
[  222.646497][ T5350]  loop2: unable to read partition table
[  222.648389][ T5350] loop2: partition table beyond EOD, truncated
[  223.378861][ T8646] netlink: 4 bytes leftover after parsing attributes in process `syz.3.638'.
[  223.705827][ T5350] Dev loop2: unable to read RDB block 7
[  223.708055][ T5350]  loop2: unable to read partition table
[  223.710381][ T5350] loop2: partition table beyond EOD, truncated
[  223.888696][ T8649] FAULT_INJECTION: forcing a failure.
[  223.888696][ T8649] name failslab, interval 1, probability 0, space 0, times 0
[  223.892680][ T8649] CPU: 3 UID: 0 PID: 8649 Comm: syz.2.641 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  223.892693][ T8649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.892699][ T8649] Call Trace:
[  223.892703][ T8649]  <TASK>
[  223.892707][ T8649]  dump_stack_lvl+0x16c/0x1f0
[  223.892724][ T8649]  should_fail_ex+0x512/0x640
[  223.892737][ T8649]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  223.892750][ T8649]  should_failslab+0xc2/0x120
[  223.892762][ T8649]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  223.892773][ T8649]  ? sock_alloc_inode+0x25/0x1c0
[  223.892786][ T8649]  ? __pfx_sock_alloc_inode+0x10/0x10
[  223.892796][ T8649]  sock_alloc_inode+0x25/0x1c0
[  223.892806][ T8649]  alloc_inode+0x61/0x240
[  223.892818][ T8649]  sock_alloc+0x40/0x280
[  223.892828][ T8649]  __sock_create+0xc1/0x8d0
[  223.892842][ T8649]  __sys_socket+0x14d/0x260
[  223.892855][ T8649]  ? __pfx___sys_socket+0x10/0x10
[  223.892874][ T8649]  __ia32_compat_sys_socketcall+0x5ca/0x770
[  223.892885][ T8649]  ? __fget_files+0x20e/0x3c0
[  223.892899][ T8649]  ? __pfx___ia32_compat_sys_socketcall+0x10/0x10
[  223.892911][ T8649]  ? fput+0x70/0xf0
[  223.892924][ T8649]  ? rcu_is_watching+0x12/0xc0
[  223.892935][ T8649]  __do_fast_syscall_32+0x73/0x120
[  223.892949][ T8649]  do_fast_syscall_32+0x32/0x80
[  223.892961][ T8649]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  223.892973][ T8649] RIP: 0023:0xf70fe579
[  223.892981][ T8649] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  223.892990][ T8649] RSP: 002b:00000000f50ed4d0 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[  223.892999][ T8649] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000f50ed4e0
[  223.893005][ T8649] RDX: 00000000f7462ff4 RSI: 0000000000000036 RDI: 0000000000000000
[  223.893010][ T8649] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  223.893016][ T8649] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  223.893021][ T8649] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  223.893032][ T8649]  </TASK>
[  223.893037][ T8649] socket: no more sockets
[  224.655007][ T5350] Dev loop2: unable to read RDB block 7
[  224.656792][ T5350]  loop2: unable to read partition table
[  224.658578][ T5350] loop2: partition table beyond EOD, truncated
[  225.131751][ T8667] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  225.204457][ T8669] netlink: 8 bytes leftover after parsing attributes in process `syz.3.646'.
[  225.848847][ T5350] Dev loop2: unable to read RDB block 7
[  225.851249][ T5350]  loop2: unable to read partition table
[  225.855057][ T5350] loop2: partition table beyond EOD, truncated
[  226.622012][ T5350] Dev loop2: unable to read RDB block 7
[  226.624892][ T5350]  loop2: unable to read partition table
[  226.627447][ T5350] loop2: partition table beyond EOD, truncated
[  226.642107][ T8693] FAULT_INJECTION: forcing a failure.
[  226.642107][ T8693] name failslab, interval 1, probability 0, space 0, times 0
[  226.646183][ T8693] CPU: 3 UID: 0 PID: 8693 Comm: syz.2.654 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  226.646197][ T8693] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  226.646203][ T8693] Call Trace:
[  226.646207][ T8693]  <TASK>
[  226.646211][ T8693]  dump_stack_lvl+0x16c/0x1f0
[  226.646227][ T8693]  should_fail_ex+0x512/0x640
[  226.646241][ T8693]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  226.646254][ T8693]  should_failslab+0xc2/0x120
[  226.646266][ T8693]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  226.646276][ T8693]  ? __alloc_skb+0x2b2/0x380
[  226.646293][ T8693]  __alloc_skb+0x2b2/0x380
[  226.646307][ T8693]  ? __pfx___alloc_skb+0x10/0x10
[  226.646323][ T8693]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  226.646361][ T8693]  netlink_alloc_large_skb+0x69/0x130
[  226.646372][ T8693]  netlink_sendmsg+0x6a1/0xdd0
[  226.646384][ T8693]  ? __pfx_netlink_sendmsg+0x10/0x10
[  226.646395][ T8693]  ? __import_iovec+0x1c8/0x660
[  226.646412][ T8693]  ____sys_sendmsg+0xa95/0xc70
[  226.646424][ T8693]  ? gfs2_inode_lookup+0x680/0x8a0
[  226.646436][ T8693]  ? __pfx_____sys_sendmsg+0x10/0x10
[  226.646448][ T8693]  ? get_compat_msghdr+0x11a/0x170
[  226.646468][ T8693]  ___sys_sendmsg+0x134/0x1d0
[  226.646478][ T8693]  ? __pfx____sys_sendmsg+0x10/0x10
[  226.646503][ T8693]  __sys_sendmsg+0x16d/0x220
[  226.646512][ T8693]  ? __pfx___sys_sendmsg+0x10/0x10
[  226.646532][ T8693]  ? rcu_is_watching+0x12/0xc0
[  226.646547][ T8693]  ? rcu_is_watching+0x12/0xc0
[  226.646558][ T8693]  __do_fast_syscall_32+0x73/0x120
[  226.646576][ T8693]  do_fast_syscall_32+0x32/0x80
[  226.646587][ T8693]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  226.646600][ T8693] RIP: 0023:0xf70fe579
[  226.646607][ T8693] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  226.646616][ T8693] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  226.646626][ T8693] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  226.646631][ T8693] RDX: 0000000004000040 RSI: 0000000000000000 RDI: 0000000000000000
[  226.646637][ T8693] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  226.646642][ T8693] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  226.646647][ T8693] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  226.646659][ T8693]  </TASK>
[  226.955761][ T8698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.655'.
[  227.163302][ T8706] program syz.1.658 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  228.205425][ T8726] netlink: 4 bytes leftover after parsing attributes in process `syz.2.664'.
[  228.232794][ T8732] FAULT_INJECTION: forcing a failure.
[  228.232794][ T8732] name failslab, interval 1, probability 0, space 0, times 0
[  228.237846][ T8732] CPU: 3 UID: 0 PID: 8732 Comm: syz.3.666 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  228.237861][ T8732] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  228.237867][ T8732] Call Trace:
[  228.237871][ T8732]  <TASK>
[  228.237875][ T8732]  dump_stack_lvl+0x16c/0x1f0
[  228.237891][ T8732]  should_fail_ex+0x512/0x640
[  228.237906][ T8732]  ? fs_reclaim_acquire+0xae/0x150
[  228.237922][ T8732]  ? tomoyo_encode2+0x100/0x3e0
[  228.237935][ T8732]  should_failslab+0xc2/0x120
[  228.237948][ T8732]  __kmalloc_noprof+0xd2/0x510
[  228.237958][ T8732]  ? d_absolute_path+0x136/0x1a0
[  228.237973][ T8732]  tomoyo_encode2+0x100/0x3e0
[  228.237987][ T8732]  tomoyo_encode+0x29/0x50
[  228.238000][ T8732]  tomoyo_realpath_from_path+0x18f/0x6e0
[  228.238018][ T8732]  tomoyo_path_number_perm+0x245/0x580
[  228.238029][ T8732]  ? tomoyo_path_number_perm+0x237/0x580
[  228.238041][ T8732]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  228.238066][ T8732]  ? find_held_lock+0x2b/0x80
[  228.238076][ T8732]  ? hook_file_ioctl_common+0x145/0x410
[  228.238086][ T8732]  ? __fget_files+0x204/0x3c0
[  228.238103][ T8732]  ? __fget_files+0x20e/0x3c0
[  228.238117][ T8732]  ? fput+0x60/0xf0
[  228.238130][ T8732]  security_file_ioctl_compat+0x9b/0x240
[  228.238144][ T8732]  __ia32_compat_sys_ioctl+0xc3/0x360
[  228.238159][ T8732]  __do_fast_syscall_32+0x73/0x120
[  228.238173][ T8732]  do_fast_syscall_32+0x32/0x80
[  228.238185][ T8732]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  228.238198][ T8732] RIP: 0023:0xf711e579
[  228.238207][ T8732] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  228.238217][ T8732] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  228.238227][ T8732] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400454cb
[  228.238233][ T8732] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  228.238239][ T8732] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  228.238244][ T8732] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  228.238250][ T8732] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  228.238262][ T8732]  </TASK>
[  228.238271][ T8732] ERROR: Out of memory at tomoyo_realpath_from_path.
[  228.628376][ T8737] hpfs: Bad magic ... probably not HPFS
[  229.000485][ T8743] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  229.052218][ T8743] warning: `syz.2.668' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  229.138570][ T8747] netlink: 4 bytes leftover after parsing attributes in process `syz.0.670'.
[  229.461028][ T8755] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  230.454895][ T8775] hpfs: Bad magic ... probably not HPFS
[  231.073664][   T40] audit: type=1326 audit(1745729489.865:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  231.081936][   T40] audit: type=1326 audit(1745729489.865:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  231.102001][   T40] audit: type=1326 audit(1745729489.865:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  231.123741][   T40] audit: type=1326 audit(1745729489.865:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  231.131479][   T40] audit: type=1326 audit(1745729489.865:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  231.137813][   T40] audit: type=1326 audit(1745729489.865:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  231.154541][   T40] audit: type=1326 audit(1745729489.865:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  231.160860][   T40] audit: type=1326 audit(1745729489.865:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  231.167684][   T40] audit: type=1326 audit(1745729489.865:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  231.173991][   T40] audit: type=1326 audit(1745729489.865:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8783 comm="syz.3.679" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  231.359948][ T8792] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  231.407850][ T8793] block nbd3: NBD_DISCONNECT
[  231.410669][ T8793] block nbd3: Disconnected due to user request.
[  231.412693][ T8793] block nbd3: shutting down sockets
[  231.873919][    C3] ata1: illegal qc_active transition (00000000->00000004)
[  231.916452][ T8802] netlink: 4 bytes leftover after parsing attributes in process `syz.1.684'.
[  231.981188][ T8811] netlink: 4 bytes leftover after parsing attributes in process `syz.2.685'.
[  232.197418][ T1103] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300)
[  232.202649][ T1103] ata1.00: configured for UDMA/100
[  232.716823][ T8817] trusted_key: syz.3.688 sent an empty control message without MSG_MORE.
[  232.742942][ T8828] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  233.866294][ T8850] netlink: 4 bytes leftover after parsing attributes in process `syz.0.695'.
[  233.914646][ T8849] netlink: 4 bytes leftover after parsing attributes in process `syz.3.696'.
[  234.516896][ T8854] netlink: 8 bytes leftover after parsing attributes in process `syz.0.697'.
[  234.984272][ T8867] netlink: 4 bytes leftover after parsing attributes in process `syz.2.699'.
[  235.809388][ T8877] FAULT_INJECTION: forcing a failure.
[  235.809388][ T8877] name failslab, interval 1, probability 0, space 0, times 0
[  235.813717][ T8877] CPU: 2 UID: 0 PID: 8877 Comm: syz.2.703 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  235.813732][ T8877] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  235.813737][ T8877] Call Trace:
[  235.813741][ T8877]  <TASK>
[  235.813745][ T8877]  dump_stack_lvl+0x16c/0x1f0
[  235.813761][ T8877]  should_fail_ex+0x512/0x640
[  235.813775][ T8877]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  235.813788][ T8877]  should_failslab+0xc2/0x120
[  235.813813][ T8877]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  235.813823][ T8877]  ? __alloc_skb+0x2b2/0x380
[  235.813840][ T8877]  __alloc_skb+0x2b2/0x380
[  235.813854][ T8877]  ? __pfx___alloc_skb+0x10/0x10
[  235.813870][ T8877]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  235.813884][ T8877]  netlink_alloc_large_skb+0x69/0x130
[  235.813894][ T8877]  netlink_sendmsg+0x6a1/0xdd0
[  235.813906][ T8877]  ? __pfx_netlink_sendmsg+0x10/0x10
[  235.813917][ T8877]  ? __import_iovec+0x1c8/0x660
[  235.813934][ T8877]  ____sys_sendmsg+0xa95/0xc70
[  235.813948][ T8877]  ? __pfx_____sys_sendmsg+0x10/0x10
[  235.813959][ T8877]  ? get_compat_msghdr+0x11a/0x170
[  235.813979][ T8877]  ___sys_sendmsg+0x134/0x1d0
[  235.813989][ T8877]  ? __pfx____sys_sendmsg+0x10/0x10
[  235.814014][ T8877]  __sys_sendmsg+0x16d/0x220
[  235.814023][ T8877]  ? __pfx___sys_sendmsg+0x10/0x10
[  235.814036][ T8877]  ? rcu_is_watching+0x12/0xc0
[  235.814046][ T8877]  ? rcu_is_watching+0x12/0xc0
[  235.814056][ T8877]  __do_fast_syscall_32+0x73/0x120
[  235.814069][ T8877]  do_fast_syscall_32+0x32/0x80
[  235.814080][ T8877]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  235.814094][ T8877] RIP: 0023:0xf70fe579
[  235.814102][ T8877] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  235.814111][ T8877] RSP: 002b:00000000f50cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  235.814120][ T8877] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080004340
[  235.814126][ T8877] RDX: 0000000020000084 RSI: 0000000000000000 RDI: 0000000000000000
[  235.814132][ T8877] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  235.814137][ T8877] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  235.814142][ T8877] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  235.814154][ T8877]  </TASK>
[  236.548655][ T8889] netlink: 4 bytes leftover after parsing attributes in process `syz.3.705'.
[  236.981739][ T8888] netlink: 4 bytes leftover after parsing attributes in process `syz.0.706'.
[  236.983824][ T8887] netlink: 4 bytes leftover after parsing attributes in process `syz.2.707'.
[  237.223390][ T8896] netlink: 8 bytes leftover after parsing attributes in process `syz.1.710'.
[  237.949724][ T8923] netlink: 4 bytes leftover after parsing attributes in process `syz.1.716'.
[  238.743786][ T5289] Bluetooth: hci1: command 0x0406 tx timeout
[  238.930565][ T8937] netlink: 64 bytes leftover after parsing attributes in process `syz.1.721'.
[  238.934139][ T8937] netlink: 60 bytes leftover after parsing attributes in process `syz.1.721'.
[  238.938332][ T8937] unsupported nlmsg_type 40
[  239.523990][ T8951] FAULT_INJECTION: forcing a failure.
[  239.523990][ T8951] name failslab, interval 1, probability 0, space 0, times 0
[  239.528010][ T8951] CPU: 0 UID: 0 PID: 8951 Comm: syz.0.725 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  239.528034][ T8951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  239.528051][ T8951] Call Trace:
[  239.528055][ T8951]  <TASK>
[  239.528059][ T8951]  dump_stack_lvl+0x16c/0x1f0
[  239.528075][ T8951]  should_fail_ex+0x512/0x640
[  239.528089][ T8951]  ? fs_reclaim_acquire+0xae/0x150
[  239.528104][ T8951]  ? tomoyo_encode2+0x100/0x3e0
[  239.528117][ T8951]  should_failslab+0xc2/0x120
[  239.528128][ T8951]  __kmalloc_noprof+0xd2/0x510
[  239.528138][ T8951]  ? d_absolute_path+0x136/0x1a0
[  239.528152][ T8951]  tomoyo_encode2+0x100/0x3e0
[  239.528166][ T8951]  tomoyo_encode+0x29/0x50
[  239.528178][ T8951]  tomoyo_realpath_from_path+0x18f/0x6e0
[  239.528195][ T8951]  tomoyo_path_number_perm+0x245/0x580
[  239.528206][ T8951]  ? tomoyo_path_number_perm+0x237/0x580
[  239.528217][ T8951]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  239.528242][ T8951]  ? find_held_lock+0x2b/0x80
[  239.528251][ T8951]  ? hook_file_ioctl_common+0x145/0x410
[  239.528261][ T8951]  ? __fget_files+0x204/0x3c0
[  239.528278][ T8951]  ? __fget_files+0x20e/0x3c0
[  239.528291][ T8951]  ? fput+0x60/0xf0
[  239.528304][ T8951]  security_file_ioctl_compat+0x9b/0x240
[  239.528317][ T8951]  __ia32_compat_sys_ioctl+0xc3/0x360
[  239.528331][ T8951]  __do_fast_syscall_32+0x73/0x120
[  239.528344][ T8951]  do_fast_syscall_32+0x32/0x80
[  239.528356][ T8951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  239.528368][ T8951] RIP: 0023:0xf7f25579
[  239.528376][ T8951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  239.528385][ T8951] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  239.528395][ T8951] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005437
[  239.528401][ T8951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  239.528406][ T8951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  239.528411][ T8951] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  239.528416][ T8951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  239.528428][ T8951]  </TASK>
[  239.528489][ T8951] ERROR: Out of memory at tomoyo_realpath_from_path.
[  240.417812][ T8935] Set syz1 is full, maxelem 65536 reached
[  240.725094][ T8967] SET target dimension over the limit!
[  241.015194][ T8974] netlink: 4 bytes leftover after parsing attributes in process `syz.0.733'.
[  241.678843][ T8989] netlink: 4 bytes leftover after parsing attributes in process `syz.2.740'.
[  241.827848][ T8996] netlink: 28 bytes leftover after parsing attributes in process `syz.1.741'.
[  241.988851][ T9003] netlink: 4 bytes leftover after parsing attributes in process `syz.0.742'.
[  242.480918][ T9010] netlink: 'syz.3.745': attribute type 1 has an invalid length.
[  242.484481][ T9010] netlink: 220 bytes leftover after parsing attributes in process `syz.3.745'.
[  242.489046][ T9010] netlink: 'syz.3.745': attribute type 1 has an invalid length.
[  242.495698][ T9009] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  242.767459][ T9022] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  243.427118][ T9037] netlink: 4 bytes leftover after parsing attributes in process `syz.0.751'.
[  244.066709][ T9045] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  244.429457][ T9054] FAULT_INJECTION: forcing a failure.
[  244.429457][ T9054] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  244.433497][ T9054] CPU: 1 UID: 0 PID: 9054 Comm: syz.1.759 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  244.433510][ T9054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  244.433516][ T9054] Call Trace:
[  244.433519][ T9054]  <TASK>
[  244.433523][ T9054]  dump_stack_lvl+0x16c/0x1f0
[  244.433539][ T9054]  should_fail_ex+0x512/0x640
[  244.433555][ T9054]  strncpy_from_user+0x3b/0x2e0
[  244.433568][ T9054]  getname_flags.part.0+0x8f/0x550
[  244.433596][ T9054]  __ia32_sys_rmdir+0xaf/0x110
[  244.433605][ T9054]  __do_fast_syscall_32+0x73/0x120
[  244.433618][ T9054]  do_fast_syscall_32+0x32/0x80
[  244.433630][ T9054]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  244.433643][ T9054] RIP: 0023:0xf712e579
[  244.433650][ T9054] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  244.433663][ T9054] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000028
[  244.433672][ T9054] RAX: ffffffffffffffda RBX: 0000000080000380 RCX: 0000000000000000
[  244.433678][ T9054] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  244.433683][ T9054] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  244.433688][ T9054] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  244.433694][ T9054] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  244.433705][ T9054]  </TASK>
[  244.610073][ T9061] hpfs: Bad magic ... probably not HPFS
[  244.754888][ T9068] program syz.1.762 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  246.855189][ T9096] netlink: 'syz.0.768': attribute type 4 has an invalid length.
[  246.914930][ T9097] netlink: 'syz.0.768': attribute type 4 has an invalid length.
[  247.024039][ T9098] netlink: 8 bytes leftover after parsing attributes in process `syz.2.769'.
[  247.497921][ T9106] netlink: 8 bytes leftover after parsing attributes in process `syz.2.771'.
[  247.501531][ T9106] netlink: 32 bytes leftover after parsing attributes in process `syz.2.771'.
[  248.690218][ T9131] hpfs: Bad magic ... probably not HPFS
[  248.712996][ T9132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.777'.
[  249.356097][ T9141] netlink: 4 bytes leftover after parsing attributes in process `syz.3.779'.
[  249.641435][ T9147] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  249.960886][ T9150] hpfs: Bad magic ... probably not HPFS
[  251.549453][ T9174] hpfs: Bad magic ... probably not HPFS
[  251.925001][ T9183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.789'.
[  252.854477][ T9199] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  252.886694][ T9200] netlink: 72 bytes leftover after parsing attributes in process `syz.3.794'.
[  252.890448][ T9200] netlink: 8 bytes leftover after parsing attributes in process `syz.3.794'.
[  253.113044][ T9194] netlink: 4 bytes leftover after parsing attributes in process `syz.0.793'.
[  253.653473][   T57] IPVS: starting estimator thread 0...
[  253.658024][ T9207] netlink: 7 bytes leftover after parsing attributes in process `syz.3.797'.
[  253.724735][ T9212] netlink: 830 bytes leftover after parsing attributes in process `syz.0.799'.
[  253.743808][ T9208] IPVS: using max 48 ests per chain, 115200 per kthread
[  254.346576][ T9215] ntfs3(nullb0): Primary boot signature is not NTFS.
[  254.349373][ T9215] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  254.814633][ T9227] hpfs: Bad magic ... probably not HPFS
[  255.142518][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  255.145207][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  255.900707][ T9243] netlink: 'syz.1.803': attribute type 4 has an invalid length.
[  255.905594][ T9243] netlink: 'syz.1.803': attribute type 4 has an invalid length.
[  255.929273][ T9243] overlayfs: missing 'workdir'
[  256.036570][ T9245] netlink: 4 bytes leftover after parsing attributes in process `syz.3.804'.
[  256.366144][ T9250] netlink: 4 bytes leftover after parsing attributes in process `syz.0.806'.
[  256.569853][ T9252] random: crng reseeded on system resumption
[  256.579018][ T9252] netlink: 12 bytes leftover after parsing attributes in process `syz.2.807'.
[  257.663898][ T9280] netlink: 4 bytes leftover after parsing attributes in process `syz.0.814'.
[  258.102147][ T9288] overlayfs: failed to resolve './file0': -2
[  258.352250][ T9300] FAULT_INJECTION: forcing a failure.
[  258.352250][ T9300] name failslab, interval 1, probability 0, space 0, times 0
[  258.357101][ T9300] CPU: 2 UID: 0 PID: 9300 Comm: syz.0.821 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  258.357118][ T9300] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  258.357125][ T9300] Call Trace:
[  258.357130][ T9300]  <TASK>
[  258.357135][ T9300]  dump_stack_lvl+0x16c/0x1f0
[  258.357154][ T9300]  should_fail_ex+0x512/0x640
[  258.357171][ T9300]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  258.357188][ T9300]  should_failslab+0xc2/0x120
[  258.357203][ T9300]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  258.357216][ T9300]  ? __alloc_skb+0x2b2/0x380
[  258.357238][ T9300]  __alloc_skb+0x2b2/0x380
[  258.357255][ T9300]  ? __pfx___alloc_skb+0x10/0x10
[  258.357281][ T9300]  netlink_alloc_large_skb+0x69/0x130
[  258.357297][ T9300]  netlink_sendmsg+0x6a1/0xdd0
[  258.357312][ T9300]  ? __pfx_netlink_sendmsg+0x10/0x10
[  258.357326][ T9300]  ? __import_iovec+0x1c8/0x660
[  258.357349][ T9300]  ____sys_sendmsg+0xa95/0xc70
[  258.357367][ T9300]  ? __pfx_____sys_sendmsg+0x10/0x10
[  258.357381][ T9300]  ? get_compat_msghdr+0x11a/0x170
[  258.357409][ T9300]  ___sys_sendmsg+0x134/0x1d0
[  258.357422][ T9300]  ? __pfx____sys_sendmsg+0x10/0x10
[  258.357456][ T9300]  __sys_sendmsg+0x16d/0x220
[  258.357468][ T9300]  ? __pfx___sys_sendmsg+0x10/0x10
[  258.357484][ T9300]  ? rcu_is_watching+0x12/0xc0
[  258.357497][ T9300]  ? rcu_is_watching+0x12/0xc0
[  258.357514][ T9300]  __do_fast_syscall_32+0x73/0x120
[  258.357531][ T9300]  do_fast_syscall_32+0x32/0x80
[  258.357546][ T9300]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  258.357562][ T9300] RIP: 0023:0xf7f25579
[  258.357571][ T9300] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  258.357583][ T9300] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  258.357596][ T9300] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000a40
[  258.357603][ T9300] RDX: 0000000020044004 RSI: 0000000000000000 RDI: 0000000000000000
[  258.357611][ T9300] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  258.357618][ T9300] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  258.357625][ T9300] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  258.357640][ T9300]  </TASK>
[  259.045371][ T9311] netlink: 4 bytes leftover after parsing attributes in process `syz.2.824'.
[  259.870009][ T9316] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  259.900038][ T9316] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  261.032479][ T9331] netlink: 4 bytes leftover after parsing attributes in process `syz.2.830'.
[  262.259890][ T6534] IPVS: starting estimator thread 0...
[  262.344392][ T9349] IPVS: using max 48 ests per chain, 115200 per kthread
[  262.403235][ T9359] futex_wake_op: syz.2.831 tries to shift op by -33; fix this program
[  262.420845][ T9359] netdevsim netdevsim2: Direct firmware load for .
[  262.420845][ T9359]  failed with error -2
[  262.424332][ T9359] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  262.424332][ T9359] 
[  263.907354][ T9385] netlink: 4 bytes leftover after parsing attributes in process `syz.3.841'.
[  264.265795][ T9388] netlink: 72 bytes leftover after parsing attributes in process `syz.1.843'.
[  264.268522][ T9388] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  264.860529][ T9397] mac80211_hwsim hwsim6 wlan1: entered allmulticast mode
[  265.993117][ T9416] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  267.038132][ T9443] netlink: 4 bytes leftover after parsing attributes in process `syz.1.861'.
[  267.500298][ T9448] netlink: 'syz.0.865': attribute type 4 has an invalid length.
[  267.686492][ T9455] netlink: 6 bytes leftover after parsing attributes in process `syz.3.868'.
[  267.690350][ T9455] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  268.007753][ T9465] netlink: 8 bytes leftover after parsing attributes in process `syz.0.867'.
[  268.041275][ T5939] Bluetooth: hci1: unexpected subevent 0x0e length: 30 > 15
[  268.044068][ T5939] Bluetooth: hci1: Unable to find connection for dst 00:00:00:00:00:00 sid 0x70
[  268.090847][ T9466] could not allocate digest TFM handle blake2s-128-x86
[  268.096466][ T9466] input: syz1 as /devices/virtual/input/input9
[  268.275344][ T9471] capability: warning: `syz.0.871' uses deprecated v2 capabilities in a way that may be insecure
[  268.821968][ T9464] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  269.451653][ T9503] netlink: 12 bytes leftover after parsing attributes in process `syz.1.879'.
[  269.454883][ T9503] netlink: 12 bytes leftover after parsing attributes in process `syz.1.879'.
[  270.265526][ T9518] netlink: 'syz.1.885': attribute type 4 has an invalid length.
[  270.297488][ T5289] Bluetooth: hci1: SCO packet for unknown connection handle 201
[  270.917062][ T9533] netlink: 4 bytes leftover after parsing attributes in process `syz.3.889'.
[  271.906154][ T9549] netlink: 12 bytes leftover after parsing attributes in process `syz.3.892'.
[  271.909411][ T9549] netlink: 12 bytes leftover after parsing attributes in process `syz.3.892'.
[  272.754910][ T9548] netlink: 4 bytes leftover after parsing attributes in process `syz.2.891'.
[  273.895079][ T9564] loop1: detected capacity change from 0 to 7
[  273.905476][ T9353] Dev loop1: unable to read RDB block 7
[  273.907228][ T9353]  loop1: unable to read partition table
[  273.909362][ T9353] loop1: partition table beyond EOD, truncated
[  273.925516][ T9564] Dev loop1: unable to read RDB block 7
[  273.934946][ T9564]  loop1: unable to read partition table
[  273.938285][ T9564] loop1: partition table beyond EOD, truncated
[  273.943709][ T9564] loop_reread_partitions: partition scan of loop1 (þ被xü—ŸÑà– ) failed (rc=-5)
[  274.798334][ T9572] netlink: 4 bytes leftover after parsing attributes in process `syz.1.897'.
[  274.876716][ T9573] hpfs: Bad magic ... probably not HPFS
[  276.282176][ T9592] netlink: 4 bytes leftover after parsing attributes in process `syz.1.902'.
[  276.658791][ T9598] netlink: 4 bytes leftover after parsing attributes in process `syz.0.905'.
[  276.928351][ T9601] syz_tun: entered allmulticast mode
[  276.940577][ T9601] dvmrp1: entered allmulticast mode
[  276.949891][ T9600] syz_tun: left allmulticast mode
[  277.580361][ T9623] netlink: 4 bytes leftover after parsing attributes in process `syz.0.910'.
[  277.780885][ T9624] netlink: 4 bytes leftover after parsing attributes in process `syz.2.911'.
[  278.019673][ T9626] =======================================================
[  278.019673][ T9626] WARNING: The mand mount option has been deprecated and
[  278.019673][ T9626]          and is ignored by this kernel. Remove the mand
[  278.019673][ T9626]          option from the mount to silence this warning.
[  278.019673][ T9626] =======================================================
[  278.036803][ T9629] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  278.641073][ T9642] FAULT_INJECTION: forcing a failure.
[  278.641073][ T9642] name failslab, interval 1, probability 0, space 0, times 0
[  278.645033][ T9642] CPU: 2 UID: 0 PID: 9642 Comm: syz.2.916 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  278.645054][ T9642] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  278.645062][ T9642] Call Trace:
[  278.645068][ T9642]  <TASK>
[  278.645074][ T9642]  dump_stack_lvl+0x16c/0x1f0
[  278.645095][ T9642]  should_fail_ex+0x512/0x640
[  278.645115][ T9642]  ? fs_reclaim_acquire+0xae/0x150
[  278.645138][ T9642]  ? tomoyo_encode2+0x100/0x3e0
[  278.645157][ T9642]  should_failslab+0xc2/0x120
[  278.645176][ T9642]  __kmalloc_noprof+0xd2/0x510
[  278.645192][ T9642]  ? d_absolute_path+0x136/0x1a0
[  278.645215][ T9642]  tomoyo_encode2+0x100/0x3e0
[  278.645238][ T9642]  tomoyo_encode+0x29/0x50
[  278.645256][ T9642]  tomoyo_realpath_from_path+0x18f/0x6e0
[  278.645283][ T9642]  tomoyo_path_number_perm+0x245/0x580
[  278.645299][ T9642]  ? tomoyo_path_number_perm+0x237/0x580
[  278.645322][ T9642]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  278.645364][ T9642]  ? find_held_lock+0x2b/0x80
[  278.645378][ T9642]  ? hook_file_ioctl_common+0x145/0x410
[  278.645401][   T79] Bluetooth: hci4: Frame reassembly failed (-90)
[  278.645396][ T9642]  ? __fget_files+0x204/0x3c0
[  278.645424][ T9642]  ? __fget_files+0x20e/0x3c0
[  278.645445][ T9642]  ? fput+0x60/0xf0
[  278.645467][ T9642]  security_file_ioctl_compat+0x9b/0x240
[  278.645489][ T9642]  __ia32_compat_sys_ioctl+0xc3/0x360
[  278.645513][ T9642]  __do_fast_syscall_32+0x73/0x120
[  278.645536][ T9642]  do_fast_syscall_32+0x32/0x80
[  278.645555][ T9642]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  278.645574][ T9642] RIP: 0023:0xf70fe579
[  278.645587][ T9642] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  278.645602][ T9642] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  278.645618][ T9642] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005412
[  278.645628][ T9642] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  278.645638][ T9642] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  278.645647][ T9642] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  278.645656][ T9642] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  278.645677][ T9642]  </TASK>
[  278.645694][ T9642] ERROR: Out of memory at tomoyo_realpath_from_path.
[  278.678923][ T9645] netlink: 4 bytes leftover after parsing attributes in process `syz.0.915'.
[  278.680185][ T9642] Bluetooth: hci4: Frame reassembly failed (-84)
[  279.021945][ T9649] netlink: 4 bytes leftover after parsing attributes in process `syz.1.918'.
[  279.402924][ T9654] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  280.425187][ T9670] netlink: 4 bytes leftover after parsing attributes in process `syz.3.923'.
[  280.653725][ T5289] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  280.767241][ T9675] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  281.525324][ T9682] netlink: 4 bytes leftover after parsing attributes in process `syz.0.926'.
[  282.136518][   T40] kauditd_printk_skb: 385 callbacks suppressed
[  282.136531][   T40] audit: type=1804 audit(1745729540.945:398): pid=9695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.930" name="/newroot/231/file0/file0" dev="9p" ino=35913873 res=1 errno=0
[  282.467192][ T9693] netlink: 4 bytes leftover after parsing attributes in process `syz.2.929'.
[  282.980050][ T9695] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] SMP KASAN NOPTI
[  282.984365][ T9695] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[  282.988672][ T9695] CPU: 0 UID: 0 PID: 9695 Comm: syz.0.930 Not tainted 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  282.993184][ T9695] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  282.997072][ T9695] RIP: 0010:iter_file_splice_write+0xa4e/0x1150
[  282.999468][ T9695] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83
[  283.006353][ T9695] RSP: 0018:ffffc900044af908 EFLAGS: 00010202
[  283.008598][ T9695] RAX: 0000000000080000 RBX: dffffc0000000000 RCX: ffffc9000c402000
[  283.011429][ T9695] RDX: 0000000000000001 RSI: ffffffff82417076 RDI: 0000000000000008
[  283.014276][ T9695] RBP: 0000000000000246 R08: 0000000000000006 R09: 0000000000000000
[  283.017115][ T9695] R10: 7fffffffffffefff R11: 0000000000000000 R12: 0000000000000000
[  283.019969][ T9695] R13: ffff88806adc38f0 R14: ffff88806608c800 R15: 7fffffffffffefff
[  283.022845][ T9695] FS:  0000000000000000(0000) GS:ffff8880977ef000(0063) knlGS:00000000f5046b40
[  283.026056][ T9695] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  283.028426][ T9695] CR2: 000000002eae5ff8 CR3: 000000002264f000 CR4: 0000000000352ef0
[  283.031326][ T9695] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  283.034176][ T9695] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  283.037010][ T9695] Call Trace:
[  283.038247][ T9695]  <TASK>
[  283.039352][ T9695]  ? __pfx_iter_file_splice_write+0x10/0x10
[  283.041529][ T9695]  ? __pfx_iter_file_splice_write+0x10/0x10
[  283.043662][ T9695]  direct_splice_actor+0x18f/0x6c0
[  283.045533][ T9695]  splice_direct_to_actor+0x342/0xa30
[  283.047487][ T9695]  ? __pfx_direct_splice_actor+0x10/0x10
[  283.049549][ T9695]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  283.051703][ T9695]  do_splice_direct+0x174/0x240
[  283.053450][ T9695]  ? __pfx_do_splice_direct+0x10/0x10
[  283.055415][ T9695]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  283.057554][ T9695]  ? rw_verify_area+0xcf/0x680
[  283.059328][ T9695]  do_sendfile+0xafd/0xe50
[  283.060976][ T9695]  ? __pfx_do_sendfile+0x10/0x10
[  283.062759][ T9695]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  283.064730][ T9695]  ? __ia32_sys_futex_time32+0x2fc/0x460
[  283.066757][ T9695]  __ia32_compat_sys_sendfile+0x1e5/0x220
[  283.068815][ T9695]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  283.071060][ T9695]  ? rcu_is_watching+0x12/0xc0
[  283.072758][ T9695]  ? rcu_is_watching+0x12/0xc0
[  283.074466][ T9695]  __do_fast_syscall_32+0x73/0x120
[  283.076266][ T9695]  do_fast_syscall_32+0x32/0x80
[  283.077991][ T9695]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  283.080217][ T9695] RIP: 0023:0xf7f25579
[  283.081680][ T9695] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  283.088347][ T9695] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  283.091270][ T9695] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000006
[  283.094001][ T9695] RDX: 0000000000000000 RSI: 000000007ffff000 RDI: 0000000000000000
[  283.096753][ T9695] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  283.099308][ T9695] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  283.101781][ T9695] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  283.104210][ T9695]  </TASK>
[  283.105168][ T9695] Modules linked in:
[  283.106652][ T9695] ---[ end trace 0000000000000000 ]---
[  283.108902][ T9695] RIP: 0010:iter_file_splice_write+0xa4e/0x1150
[  283.110868][ T9695] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83
[  283.116742][ T9695] RSP: 0018:ffffc900044af908 EFLAGS: 00010202
[  283.118560][ T9695] RAX: 0000000000080000 RBX: dffffc0000000000 RCX: ffffc9000c402000
[  283.120932][ T9695] RDX: 0000000000000001 RSI: ffffffff82417076 RDI: 0000000000000008
[  283.123346][ T9695] RBP: 0000000000000246 R08: 0000000000000006 R09: 0000000000000000
[  283.126001][ T9695] R10: 7fffffffffffefff R11: 0000000000000000 R12: 0000000000000000
[  283.128424][ T9695] R13: ffff88806adc38f0 R14: ffff88806608c800 R15: 7fffffffffffefff
[  283.130827][ T9695] FS:  0000000000000000(0000) GS:ffff8880977ef000(0063) knlGS:00000000f5046b40
[  283.133490][ T9695] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  283.135587][ T9695] CR2: 000000002eae5ff8 CR3: 000000002264f000 CR4: 0000000000352ef0
[  283.137997][ T9695] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  283.140416][ T9695] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  283.142892][ T9695] Kernel panic - not syncing: Fatal exception
[  283.145520][ T9695] Kernel Offset: disabled
[  283.146954][ T9695] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:52:21  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff854bf6b0 RDI=ffffffff9addcb80 RBP=ffffffff9addcb40 RSP=ffffc900044af2a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35bb9c2 R15=dffffc0000000000
RIP=ffffffff854bf6d7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977ef000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002eae5ff8 CR3=000000002264f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f000000000 0000000400000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff8b67581f RDX=ffff88801fc42440
RSI=ffffffff8b675840 RDI=0000000000000004 RBP=0000000000000025 RSP=ffffc90006697240
R8 =0000000000000004 R9 =0000000000000025 R10=0000000000000024 R11=0000000000000000
R12=ffffea000158ee00 R13=dffffc0000000000 R14=ffffc90006697310 R15=ffff88806da84580
RIP=ffffffff81baaaf0 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978ef000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3d1d4e CR3=000000000e180000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000019abbc RBX=0000000000000002 RCX=ffffffff8b68c3e9 RDX=ffffed10056865be
RSI=ffffffff8bf46720 RDI=ffffffff81913051 RBP=ffffed1003b55910 RSP=ffffc9000047fdf8
R8 =0000000000000000 R9 =ffffed10056865bd R10=ffff88802b432deb R11=0000000000000000
R12=0000000000000002 R13=ffff88801daac880 R14=ffffffff90850e10 R15=0000000000000000
RIP=ffffffff8b68ac7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979ef000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055db1278d000 CR3=000000004a342000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=19d9f9f019d9f9f0 19d9f9f019d9f9f0 19d9f9f019d9f9f0 19d9f9f019d9f9f0 19d9f9f019d9f9f0 19d9f9f019d9f9f0 19d9f9f019d9f9f0 19d9f9f019d9f9f0
ZMM22=15e6174015e61740 15e6174015e61740 15e6174015e61740 15e6174015e61740 15e6174015e61740 15e6174015e61740 15e6174015e61740 15e6174015e61740
ZMM23=67ead08b67ead08b 67ead08b67ead08b 67ead08b67ead08b 67ead08b67ead08b 67ead08b67ead08b 67ead08b67ead08b 67ead08b67ead08b 67ead08b67ead08b
ZMM24=d489375cd489375c d489375cd489375c d489375cd489375c d489375cd489375c d489375cd489375c d489375cd489375c d489375cd489375c d489375cd489375c
ZMM25=362d1461362d1461 362d1461362d1461 362d1461362d1461 362d1461362d1461 362d1461362d1461 362d1461362d1461 362d1461362d1461 362d1461362d1461
ZMM26=a7a62e36a7a62e36 a7a62e36a7a62e36 a7a62e36a7a62e36 a7a62e36a7a62e36 a7a62e36a7a62e36 a7a62e36a7a62e36 a7a62e36a7a62e36 a7a62e36a7a62e36
ZMM27=9ad7362b9ad7362b 9ad7362b9ad7362b 9ad7362b9ad7362b 9ad7362b9ad7362b 9ad7362b9ad7362b 9ad7362b9ad7362b 9ad7362b9ad7362b 9ad7362b9ad7362b
ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=fd090000fd090000 fd090000fd090000 fd090000fd090000 fd090000fd090000 fd090000fd090000 fd090000fd090000 fd090000fd090000 fd090000fd090000
info registers vcpu 3

CPU#3
RAX=00000000001cc134 RBX=0000000000000003 RCX=ffffffff8b68c3e9 RDX=ffffed10056a65be
RSI=ffffffff8bf46720 RDI=ffffffff81913051 RBP=ffffed1003b58000 RSP=ffffc9000048fdf8
R8 =0000000000000000 R9 =ffffed10056a65bd R10=ffff88802b532deb R11=0000000000000000
R12=0000000000000003 R13=ffff88801dac0000 R14=ffffffff90850e10 R15=0000000000000000
RIP=ffffffff8b68ac7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097aef000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50a8107 CR3=0000000026155000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73d2ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000