last executing test programs:

8m17.04971974s ago: executing program 1 (id=3356):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x6}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x40)

8m16.462358538s ago: executing program 1 (id=3358):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x28, r1, 0x1, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_PLINK_TIMEOUT={0x8, 0x1c, 0x6}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x2004c0e0}, 0x40810) (fail_nth: 7)

8m16.389298396s ago: executing program 1 (id=3359):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000000)={0x0, 0x2710}, 0x8)
ioctl$AUTOFS_IOC_FAIL(r0, 0x9361, 0x9)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
r2 = fcntl$getown(r0, 0x9)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000002380)={{{@in6=@loopback, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0, <r4=>0x0}}, {{@in=@dev}, 0x0, @in=@multicast1}}, &(0x7f0000002480)=0xe4)
r5 = getgid()
lstat(&(0x7f0000002640)='./file0\x00', &(0x7f0000002680)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = getgid()
r8 = geteuid()
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000002700)=<r9=>0x0)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000002940)=<r10=>0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000002980)={{0x1, 0x1, 0x18, <r11=>r0, {0xee01, <r12=>0x0}}, './file0\x00'})
r13 = getgid()
syz_fuse_handle_req(r1, &(0x7f0000000080)="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", 0x2000, &(0x7f0000002c00)={&(0x7f0000002080)={0x50, 0x0, 0x7, {0x7, 0x2b, 0x5fc4, 0xffffffff80000000, 0x4, 0x6, 0x0, 0x3ff, 0x0, 0x0, 0x8, 0x9}}, &(0x7f0000002100)={0x18, 0xfffffffffffffffe, 0x6, {0x401}}, &(0x7f0000002140)={0x18, 0xfffffffffffffff5, 0x8}, &(0x7f0000002180)={0x18, 0xab8bee97ab48060e, 0x1, {0x5}}, &(0x7f00000021c0)={0x18, 0x0, 0x6, {0x6cbc32fd}}, &(0x7f0000002200)={0x28, 0x0, 0x8, {{0x9, 0x0, 0x0, r2}}}, &(0x7f0000002240)={0x60, 0xffffffffffffffda, 0x4, {{0x0, 0x1, 0x100000001, 0x7, 0x4, 0x3ff, 0x0, 0xff}}}, &(0x7f00000022c0)={0x18, 0x0, 0xc5, {0x2}}, &(0x7f0000002300)={0x13, 0xfffffffffffffff5, 0x0, {'+!\x00'}}, &(0x7f0000002340)={0x20, 0x0, 0x8000000000000001, {0x0, 0x9}}, &(0x7f00000024c0)={0x78, 0x0, 0x7b, {0x1, 0x7, 0x0, {0x1, 0x800, 0x5, 0x89e, 0x0, 0x7f7, 0x1785, 0x0, 0x3, 0x4000, 0x10001, r4, r5, 0xffff, 0x1}}}, &(0x7f0000002540)={0x90, 0x0, 0x9, {0x5, 0x1, 0x7ff, 0xf2cf, 0x7, 0x9, {0x0, 0x6, 0x8000000000000000, 0x0, 0xffffffffffff86bf, 0x4, 0x1, 0x7, 0x5, 0xc000, 0x7, 0xee01, 0xee00, 0x200, 0x3}}}, &(0x7f0000002600)={0x30, 0x0, 0x3ff, [{0x3, 0x7, 0x4, 0x10000, '*-),'}]}, &(0x7f0000002740)={0x1e8, 0x0, 0x7c0, [{{0x2, 0x0, 0x8, 0x0, 0x4, 0x1b6ce912, {0x2, 0x8, 0x80000001, 0x6ec0000000, 0xa, 0x4, 0x60e, 0x8, 0x1, 0xa000, 0x10001, r6, r7, 0xe, 0x80000000}}, {0x5, 0x81, 0x4, 0x100, '#/)!'}}, {{0x5, 0x1, 0x8, 0x5, 0x7, 0x0, {0x6, 0x6, 0xfffffffffffffff8, 0x4, 0x7fff, 0x6, 0x1, 0xfffffd15, 0xffff, 0x8000, 0x0, r8, 0x0, 0x4}}, {0x4, 0x8000, 0x1, 0x3, '#'}}, {{0x5, 0x0, 0x4, 0x2, 0x6, 0x8001, {0x1, 0x10000, 0x6, 0x3, 0x1, 0x4, 0x2, 0x2, 0xffffff04, 0x8000, 0xc, r9, 0xee01, 0x9, 0x9}}, {0x0, 0x6f0, 0x0, 0x10}}]}, &(0x7f00000029c0)={0xa0, 0xfffffffffffffff5, 0xd, {{0x4, 0x3, 0xb5, 0xd6b6, 0x8, 0x7bb, {0x1, 0x10, 0x200, 0x80, 0x1000, 0x1, 0x6, 0x100, 0x8, 0x1000, 0x4, r10, r12, 0xd4a, 0x908a}}, {0x0, 0x18}}}, &(0x7f0000002a80)={0x20, 0x0, 0xffff, {0x7, 0x4, 0x5, 0x7}}, &(0x7f0000002ac0)={0x130, 0x0, 0x3, {0xff, 0x401, 0x0, '\x00', {0x80, 0x2, 0x2, 0x7fffffff, 0xffffffffffffffff, r13, 0xa000, '\x00', 0x8, 0xd21, 0x10001, 0x2, {0x100000000, 0x4}, {0x0, 0x4}, {0x5, 0x10}, {0x3f, 0x7}, 0x9, 0x4, 0x4b, 0xc}}}})
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000002c80)={@cgroup=r1, r11, 0xa, 0x2000, 0xffffffffffffffff, @value=r1}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002fc0)={r1, 0xe0, &(0x7f0000002ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000002cc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1, &(0x7f0000002d00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000002d40)=[0x0], <r14=>0x0, 0x92, &(0x7f0000002d80)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000002e00), &(0x7f0000002e40), 0x8, 0x66, 0x8, 0x8, &(0x7f0000002e80)}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000003000)=r14, 0x4)
r15 = bpf$ITER_CREATE(0x21, &(0x7f0000003040)={r11}, 0x8)
sendto$packet(r15, &(0x7f0000003080)="61d52d097c8070a3f44722ab84279afea119", 0x12, 0x20044851, &(0x7f00000030c0)={0x11, 0x13, r3, 0x1, 0x8, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}}, 0x14)
ioctl$KVM_SET_NR_MMU_PAGES(0xffffffffffffffff, 0xae44, 0xffffff00)
eventfd(0x7)
getsockopt(r11, 0x4c, 0x3, &(0x7f0000003100)=""/100, &(0x7f0000003180)=0x64)
sendmsg$nl_route_sched(r1, &(0x7f0000003340)={&(0x7f00000031c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000003300)={&(0x7f0000003200)=@deltaction={0xfc, 0x31, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}]}, @TCA_ACT_TAB={0x2c, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x78672c9a}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}]}, @TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x20, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}]}, @TCA_ACT_TAB={0x44, 0x1, [{0xc, 0x1b, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xc287}}, {0x10, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0x10, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0x14, 0x9, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}]}, @TCA_ACT_TAB={0x40, 0x1, [{0x14, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0x4, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}, {0xc, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0x10, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
r16 = syz_open_dev$vcsa(&(0x7f0000003380), 0x8, 0x294200)
socket$nl_netfilter(0x10, 0x3, 0xc)
connect$qrtr(r16, &(0x7f00000033c0)={0x2a, 0xffffffff, 0x4001}, 0xc)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000003600)={&(0x7f0000003400)="9a7ad7eb50e6034181df627724f99f06ec21c757ff81164c0f3a4a70e7fa33142fae505f4c291f235785a248f3d4462d5e67724262b45803ddd0646ed02095abd0dcd0776b69f0e504180a8cdbcd46b99d7fe2f896e8a13fed730a9544ad06ce951b89e09ed87019", &(0x7f0000003480)=""/39, &(0x7f00000034c0)="3842c338dcf3170c838c363f9655ada0f41351d20fda5e48e4df8567ad9f852097f1d089a3a363b045843c458bc7fd2b1e82865c835392f3ac17e945fba3f980792bdd9c06a5efc40b1daab626a72f69d00b60f7b1b2970d6c5113db2c86c4007204ed7fdf4b3216c68a1d226d57ce25e6814e5b6f461d6fad5f8063a89142d4c0677c6c572b3e3ee15457e8fb6c960649baaa20a35fe9c667b0442910e27459d8102dc8bb56471579feebceb7e63d438b2f06e2db6a7efa7a1dc9f232defe1920d14c0f074bd2b0811c", &(0x7f00000035c0)="400bd9aead", 0x4, r16, 0x4}, 0x38)
ioctl$sock_proto_private(r0, 0x89eb, &(0x7f0000003640)="93c954724d529c71a8254a7b5eefa68026cd9ac15c6efacf4c1e559aa15835dcb757ac3625dd038d2327fa3b0461b8fa00e1a5b835409663252b4422f81991f5d3e71f5b593782b52c99b45c7a4a1fff39865fe5e8b49b99611edf63174df1e363521d36d1b1933e1de306139c60589857f85dfc639df9edff971806b3693832f392732c4bcc97703bd618c8426fe2bd4f3df6c7454328f3809f6486e4b1aa7222b2f70d5bb538241de9f69efd1edfdb407a91bf40d5a745df5087994e0a6a2757718b1495")
openat$nullb(0xffffff9c, &(0x7f0000003740), 0x10d280, 0x0)

8m16.385157074s ago: executing program 1 (id=3360):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)={0x1c, r1, 0xf21, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x44000) (fail_nth: 7)

8m16.174403968s ago: executing program 0 (id=3361):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000002140)={0x2020, 0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r2, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, {0x40, 0x4, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x80000, 0x120, 0x6000, 0x2, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r2, &(0x7f0000000440)={0x50, 0x0, r3, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x1, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r4, 0x40480923, 0x8)

8m15.862396133s ago: executing program 1 (id=3370):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
pivot_root(&(0x7f0000000200)='./file0\x00', &(0x7f0000000480)='./file1\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = landlock_create_ruleset(&(0x7f0000000040)={0x4, 0x3, 0x2}, 0x18, 0x0)
landlock_restrict_self(r2, 0x5)
landlock_restrict_self(r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x4000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x80000000)
r3 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$VHOST_SET_OWNER(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000005c0))
r5 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r3, 0x4008af22, &(0x7f00000001c0)={0x1, r5})
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000000)={0x0, r5})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f00000000c0)=0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

8m15.788707875s ago: executing program 1 (id=3364):
unshare(0x6a040000)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x20, &(0x7f0000000340)={&(0x7f0000000800)=@newsa={0x148, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@in=@dev={0xac, 0x14, 0x14, 0x28}, 0x0, 0x33}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {}, {}, {}, 0x0, 0x3502, 0x2}, [@offload={0xc, 0x1c, {0x0, 0x6}}, @algo_auth_trunc={0x4c, 0x14, {{'sha1\x00'}}}]}, 0x148}}, 0x0)

8m14.450741668s ago: executing program 0 (id=3367):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x6}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x40)

8m13.506986276s ago: executing program 0 (id=3368):
openat$cdrom(0xffffff9c, 0x0, 0x101000, 0x0)
socket$kcm(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x8}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5, 0x0, 0xfffffffc}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7278, 0x0, 0x202, 0x158}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket(0x10, 0x80002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010e7010000000000000000000000000a20000000000a03000000000000000000070000000c00044000000000000000021c000000090a010400000000000000000700000008000a4000000003"], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x40d, 0x70bd25, 0x25ffdbfc, {0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERIER={0x5, 0x19, 0x84}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg$alg(r6, &(0x7f00000000c0), 0x492492492492627, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b701000000000000850000006d00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
r8 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r8)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r0, 0x8000000006, 0x0, 0xe448})
io_uring_enter(r0, 0x26c8, 0x0, 0x1, 0x0, 0x10)

8m11.925455945s ago: executing program 0 (id=3375):
openat$cdrom(0xffffff9c, 0x0, 0x101000, 0x0)
socket$kcm(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x8}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5, 0x0, 0xfffffffc}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7278, 0x0, 0x202, 0x158}, 0x0, &(0x7f0000000100)=<r1=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket(0x10, 0x80002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010e7010000000000000000000000000a20000000000a03000000000000000000070000000c00044000000000000000021c000000090a010400000000000000000700000008000a4000000003"], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x40d, 0x70bd25, 0x25ffdbfc, {0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERIER={0x5, 0x19, 0x84}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg$alg(r5, &(0x7f00000000c0), 0x492492492492627, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b701000000000000850000006d00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r7)
syz_io_uring_submit(0x0, r1, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r0, 0x8000000006, 0x0, 0xe448})
io_uring_enter(r0, 0x26c8, 0x0, 0x1, 0x0, 0x10)

8m8.641751103s ago: executing program 0 (id=3384):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
pivot_root(&(0x7f0000000200)='./file0\x00', &(0x7f0000000480)='./file1\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = landlock_create_ruleset(&(0x7f0000000040)={0x4, 0x3, 0x2}, 0x18, 0x0)
landlock_restrict_self(r2, 0x5)
landlock_restrict_self(r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x4000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x80000000)
r3 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
ioctl$VHOST_SET_OWNER(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000005c0))
r5 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r3, 0x4008af22, &(0x7f00000001c0)={0x1, r5})
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000000)={0x0, r5})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f00000000c0)=0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

8m8.558502539s ago: executing program 0 (id=3387):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x37db}, 0x38)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x40000)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000540), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x1c4d, &(0x7f0000000400)={0x0, 0x707b, 0x40, 0x4, 0x80288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r1, 0x0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x28}, 0x0, 0x2000c000})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x6}, 0x94)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x23, 0x10}, 0xc)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0x3, @empty}, 0x1c)
sendto$inet6(r5, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r5, &(0x7f0000001300)=[{&(0x7f0000000100)='^', 0x34000}], 0x1)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="384af6051c39002000", @ANYRES16=r6, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001000000"], 0x38}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)

8m0.774752801s ago: executing program 32 (id=3364):
unshare(0x6a040000)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x20, &(0x7f0000000340)={&(0x7f0000000800)=@newsa={0x148, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@in=@dev={0xac, 0x14, 0x14, 0x28}, 0x0, 0x33}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {}, {}, {}, 0x0, 0x3502, 0x2}, [@offload={0xc, 0x1c, {0x0, 0x6}}, @algo_auth_trunc={0x4c, 0x14, {{'sha1\x00'}}}]}, 0x148}}, 0x0)

7m53.387138472s ago: executing program 33 (id=3387):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x37db}, 0x38)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x40000)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000540), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x1c4d, &(0x7f0000000400)={0x0, 0x707b, 0x40, 0x4, 0x80288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r1, 0x0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x28}, 0x0, 0x2000c000})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x6}, 0x94)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x23, 0x10}, 0xc)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0x3, @empty}, 0x1c)
sendto$inet6(r5, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r5, &(0x7f0000001300)=[{&(0x7f0000000100)='^', 0x34000}], 0x1)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="384af6051c39002000", @ANYRES16=r6, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001000000"], 0x38}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)

6.069520039s ago: executing program 5 (id=6094):
r0 = syz_open_dev$video(&(0x7f0000000b40), 0x7, 0x28000)
ioctl$VIDIOC_LOG_STATUS(r0, 0x5646, 0x0) (fail_nth: 2)

5.561669035s ago: executing program 5 (id=6097):
r0 = syz_io_uring_setup(0x2e2c, &(0x7f0000001580)={0x0, 0x5d0b, 0x20, 0x40000000}, &(0x7f0000001600), &(0x7f0000000000))
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000200)={0x9, 0x1000000, &(0x7f0000000040)=[r0, r1]}, 0x2)
r2 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x40800, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r6}, 0x10)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r5, &(0x7f0000000600)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
unshare(0x2c020400)
timerfd_create(0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_RECVMSG={0xa, 0x3, 0x13, r4, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=@ieee802154={0x24, @short}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000380)=""/126, 0x7e}], 0x1}, 0x0, 0x20, 0x1, {0x3}})
r8 = msgget$private(0x0, 0x0)
msgsnd(r8, &(0x7f0000000480)=ANY=[@ANYRESDEC], 0x2000, 0x0)
msgrcv(r8, &(0x7f0000001080)={0x0, ""/1}, 0x5, 0x2, 0x3000)
r9 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r10 = dup(r9)
write$6lowpan_enable(r10, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO(r3, 0xc0389424, &(0x7f0000000140)={0x4, 0x20, '\x00', 0x1, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0]})
process_mrelease(r10, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="5000000010000305000000000007000000000000d121df80959794dc6bc812b83b9aecd584fb7ff99c962852269434bf219fbeb03b4dde25d63947ed2e649dc1f8c302a0be90a287ea66c9bc3fae4ce09faaa7566c42f73fbcba4113b1a81771ab2b7dd922b7d1ee09ebdbb8c295f4cea14c6c2220f099cc35685ffd0caf3f5366f1e002d7295fc40511", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010069703667726500001800028014000700fe8000000000000000000000000000aa08000a00", @ANYRES32=r7, @ANYBLOB], 0x50}, 0x1, 0x0, 0x0, 0x800}, 0xc0b0)
ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000100)=ANY=[@ANYRESHEX])

3.636129776s ago: executing program 5 (id=6101):
syz_emit_ethernet(0x266, &(0x7f0000000540)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00cd04", 0x230, 0x3a, 0xff, @local, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, [{0x1f, 0xc, "a78c000005dc8080a2030003004003493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af1502f5a0fc45c1cc8e5a38f819f2594eb68d"}, {0x0, 0x1, "000003000000000026000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}]}}}}}}, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000001700)=ANY=[@ANYBLOB="9feb010018000000000000009c0000009c0000000a000000090000000000000b040000000c00000000000012050000000f0000000000001205000000030000000000000b03000000100000000000000b010000000900000007000013010000000300000039b90000ff000000050000000400000079cf000004000000c607000002000000090000000500000009000000060000006f000000ff07000009000000040000001f538d67080000000d000000000000000000613000002e2e0e004959ba82ba664a506f4487681a40b750ffcf473d4494778c7a781ac6869ac2351c2d3261abcc59c09692e686"], &(0x7f00000004c0)=""/112, 0xbe, 0x70, 0x0, 0x2, 0x10000}, 0x28)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r1 = getpid()
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000001540)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff01000000000000001b000000000001e000040100000400000000000000000000000000000000000a00000000000000", @ANYBLOB="000000000000000000000020000000000010510000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e30000000000200000000000003f", @ANYRES32, @ANYRES32=0x0, @ANYRES64=r3], 0xb8}, 0x1, 0xfffff000, 0x0, 0x4004000}, 0x0)
sendmsg$nl_xfrm(r4, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="b8000000140001000000000000000000ff01000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00?\x00\x00\x00'], 0xb8}, 0x1, 0xfffff000}, 0x0)
sendmsg$IPVS_CMD_GET_INFO(r2, &(0x7f00000016c0)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001680)={&(0x7f0000001800)=ANY=[@ANYBLOB="0801000043a492b47af31d2cff041d18545dcf7f326e46e51d5657e514b4616880c649b8c8a513b1a8807dc669", @ANYRES16=0x0, @ANYBLOB="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"], 0x108}, 0x1, 0x0, 0x0, 0x4084}, 0x4080)
sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r3, 0x1, 0x70bd2d, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r1}}]}, 0x3c}}, 0x8000)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x10000, 0x0, r0, 0x6, '\x00', 0x0, r0, 0x3, 0x0, 0x4}, 0x50)
r6 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffff7]}, 0x8, 0x80000)
read(r6, &(0x7f0000000440)=""/4096, 0x1000)
openat$dlm_monitor(0xffffff9c, &(0x7f00000002c0), 0x400, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r9 = dup3(r8, r7, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r10, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r10, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
mmap$fb(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x13, r9, 0xd8000)
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r10, 0xc0306201, &(0x7f00000002c0)={0x44, 0x0, &(0x7f0000000780)=[@reply={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x68, 0x18, &(0x7f00000006c0)={@fd={0x66642a85, 0x0, r9}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0x3d}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x0, 0x36}}, &(0x7f0000000280)={0x0, 0x18, 0x40}}}], 0x0, 0x0, 0x0})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{}, &(0x7f0000000300), &(0x7f0000000340)}, 0x1c)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000001440)={0x6, <r11=>0x0}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000080)=@bpf_lsm={0x10, 0xf, &(0x7f0000001480)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x95}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)

2.844383973s ago: executing program 4 (id=6105):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)={0x34, r1, 0x1, 0x70bd2c, 0x0, {}, [@ETHTOOL_A_COALESCE_USE_ADAPTIVE_TX={0x5}, @ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x34}}, 0x0) (fail_nth: 8)

2.735057942s ago: executing program 4 (id=6108):
modify_ldt$write(0x1, &(0x7f0000000000)={0x29e6, 0x20000000, 0x2000, 0x1, 0x0, 0x0, 0x1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x17}}], 0x10)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000040), 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bond0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r4, 0x401c0}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MIIMON={0x8}]}}}]}, 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)=@mpls_newroute={0x0, 0x18, 0x2, 0x70bd2c, 0x25dfdbfb, {0x1c, 0x14, 0x14, 0x2, 0x0, 0x0, 0xff, 0x2, 0x1c00}, [@RTA_MULTIPATH={0x0, 0x9, {0x8, 0x2, 0x8, r4}}, @RTA_OIF]}, 0xffffffffffffff10}, 0x1, 0x0, 0x0, 0x40854}, 0x40)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x1f2)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r5, 0xc0406618, &(0x7f00000002c0)={@id={0x2, 0x0, @c}})
lseek(r5, 0xfffffffd, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

2.636183896s ago: executing program 4 (id=6110):
openat$cdrom(0xffffff9c, 0x0, 0x101000, 0x0)
socket$kcm(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x8}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5, 0x0, 0xfffffffc}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7278, 0x0, 0x202, 0x158}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket(0x10, 0x80002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010e7010000000000000000000000000a20000000000a03000000000000000000070000000c00044000000000000000021c000000090a010400000000000000000700000008000a4000000003"], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x40d, 0x70bd25, 0x25ffdbfc, {0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERIER={0x5, 0x19, 0x84}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg$alg(r6, &(0x7f00000000c0), 0x492492492492627, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
r8 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r8)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r0, 0x8000000006, 0x0, 0xe448})
io_uring_enter(r0, 0x26c8, 0x0, 0x1, 0x0, 0x10)

2.058131306s ago: executing program 3 (id=6112):
r0 = syz_io_uring_setup(0x2e2c, &(0x7f0000001580)={0x0, 0x5d0b, 0x20, 0x40000000}, &(0x7f0000001600), &(0x7f0000000000))
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000200)={0x9, 0x1000000, &(0x7f0000000040)=[r0, r1]}, 0x2)
r2 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x40800, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r6}, 0x10)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r5, &(0x7f0000000600)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
unshare(0x2c020400)
timerfd_create(0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_RECVMSG={0xa, 0x3, 0x13, r4, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=@ieee802154={0x24, @short}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000380)=""/126, 0x7e}], 0x1}, 0x0, 0x20, 0x1, {0x3}})
r8 = msgget$private(0x0, 0x0)
msgsnd(r8, &(0x7f0000000480)=ANY=[@ANYRESDEC], 0x2000, 0x0)
msgrcv(r8, &(0x7f0000001080)={0x0, ""/1}, 0x5, 0x2, 0x3000)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
socket$nl_route(0x10, 0x3, 0x0)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO(r3, 0xc0389424, &(0x7f0000000140)={0x4, 0x20, '\x00', 0x1, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0]})
process_mrelease(0xffffffffffffffff, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="5000000010000305000000000007000000000000d121df80959794dc6bc812b83b9aecd584fb7ff99c962852269434bf219fbeb03b4dde25d63947ed2e649dc1f8c302a0be90a287ea66c9bc3fae4ce09faaa7566c42f73fbcba4113b1a81771ab2b7dd922b7d1ee09ebdbb8c295f4cea14c6c2220f099cc35685ffd0caf3f5366f1e002d7295fc40511", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010069703667726500001800028014000700fe8000000000000000000000000000aa08000a00", @ANYRES32=r7, @ANYBLOB], 0x50}, 0x1, 0x0, 0x0, 0x800}, 0xc0b0)
ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000100)=ANY=[@ANYRESHEX])

1.697693924s ago: executing program 3 (id=6115):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
ioctl$USBDEVFS_CLAIM_PORT(r0, 0x80045518, &(0x7f0000000440)=0x77a)
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
readlink(&(0x7f0000000100)='./file0\x00', 0x0, 0xfff1)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x15)
r2 = syz_io_uring_setup(0x53c, &(0x7f00000001c0)={0x0, 0xaee2, 0x800, 0xffffffff, 0xeb}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000001440)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
io_uring_setup(0x177d, &(0x7f00000002c0)={0x0, 0x698c, 0x40, 0x2, 0xfffffffe})
socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x300, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x7, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x87}, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
get_mempolicy(0x0, 0x0, 0x203, &(0x7f0000394000/0x3000)=nil, 0x3)

1.597788352s ago: executing program 2 (id=6118):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000e80)=@raw={'raw\x00', 0x8, 0x3, 0x258, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x9d8, 0xffffffff, 0xffffffff, 0x9d8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x73, 0x0, 0x0, 0x45}, 0x0, 0xa4, 0xc8}, @common=@unspec=@NFQUEUE0={0x24}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x43}}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1}}, [], [0x0, 0xffffffff, 0xff000000], 'wg1\x00', 'gre0\x00'}, 0x0, 0xa4, 0xc8}, @common=@unspec=@NFQUEUE1={0x24, 'NFQUEUE\x00', 0x1, {0x8, 0xff}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24, '\x00', 0x7}}}}, 0x2b4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0260000410007010000000007000000017c00000400fc80a72601"], 0x26c0}, 0x1, 0x0, 0xffff0000}, 0x4010)

1.555430581s ago: executing program 2 (id=6119):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000e80)=@raw={'raw\x00', 0x8, 0x3, 0x258, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x9d8, 0xffffffff, 0xffffffff, 0x9d8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x73, 0x0, 0x0, 0x45}, 0x0, 0xa4, 0xc8}, @common=@unspec=@NFQUEUE0={0x24}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x43}}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1}}, [], [0x0, 0xffffffff, 0xff000000], 'wg1\x00', 'gre0\x00'}, 0x0, 0xa4, 0xc8}, @common=@unspec=@NFQUEUE1={0x24, 'NFQUEUE\x00', 0x1, {0x8, 0xff}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24, '\x00', 0x7}}}}, 0x2b4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0260000410007010000000007000000017c00000400fc80a72601"], 0x26c0}}, 0x4010) (fail_nth: 8)

1.555183334s ago: executing program 2 (id=6120):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000180)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000), 0x0)

1.474220213s ago: executing program 2 (id=6121):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
ioctl$USBDEVFS_CLAIM_PORT(r0, 0x80045518, &(0x7f0000000440)=0x77a)
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')
readlink(&(0x7f0000000100)='./file0\x00', 0x0, 0xfff1)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x15)
r2 = syz_io_uring_setup(0x53c, &(0x7f00000001c0)={0x0, 0xaee2, 0x800, 0xffffffff, 0xeb}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000001440)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x300, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x7, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x87}, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)
get_mempolicy(0x0, 0x0, 0x203, &(0x7f0000394000/0x3000)=nil, 0x3)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)

919.797705ms ago: executing program 3 (id=6122):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000100ffff00000000000006"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
r0 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0xfff1, 0x9, 0x9, 0x5}, &(0x7f0000000200)=0x10)

835.151738ms ago: executing program 3 (id=6123):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x8d, &(0x7f0000000280)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x57, 0x6, 0x1, @remote, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xe, 0x2, 0x0, 0x0, 0x81, {[@window={0x3, 0x3, 0x5}, @eol, @sack={0x5, 0x16, [0xffffffff, 0x400, 0x1e200000, 0xa, 0x3]}, @mptcp=@mp_join={0x1e, 0x3, 0x9}, @sack_perm={0x4, 0x2}, @eol, @eol]}}, {"b1243bcb0c44ec7a167045043ebf1b6345a965d5a047630000000000000000"}}}}}}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_DELRULE={0x11c, 0x8, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_RULE_COMPAT={0x54, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x3c}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x88}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2c}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT={0x2c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x3a}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x67}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x17}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x1d}]}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x8914}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x8863}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x89}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x6000}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x88}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x67}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}]}], {0x14}}, 0x144}}, 0x80)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_PROMISC(r3, 0x6b, 0x2, &(0x7f0000000080), &(0x7f0000000100)=0x4)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000600)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x8c}, 0x1, 0x0, 0x0, 0x20004800}, 0x20000005)
mkdir(&(0x7f0000000440)='./file1\x00', 0x82)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f00000001c0)='usrquota')
lsetxattr$system_posix_acl(0x0, 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="02000000010004000000000002000300", @ANYRES32=0x0, @ANYBLOB="040004000000000008000200", @ANYRES32=0x0, @ANYBLOB="65f8568fda819976cbf626aca7efb79d9dfc3252b700f5b5f69d86d3971af12818712053f0ec39880ab29ba96a83f806e3495af0924e982eba3f7b5af5770f264e8d495388dbc50c59956108a3bfbfbd2ea5bcca28aaa125dd1276dd7b0ad2ccffd75d708391f5ec37caf3c833a6ef1cefcb0ff49c8ba46697d89715d489f8275b38d6f62fbdbd1202a2beff5fcf594bddb77c", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB="10002e01000000002000070000000000"], 0x44, 0x1)
r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r5 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff)
write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file1', [{}]}, 0x2)
write$binfmt_elf64(r5, &(0x7f0000000200)=ANY=[], 0x1cb)
close(r5)
execveat$binfmt(0xffffffffffffff9c, r4, 0x0, 0x0, 0x0)
chdir(&(0x7f0000000140)='./file1\x00')
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
quotactl_fd$Q_SETQUOTA(r6, 0x80000300, 0x0, 0x0)
rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
io_setup(0x8, &(0x7f0000004200)=<r7=>0x0)
io_pgetevents(r7, 0x3, 0x3, &(0x7f0000000440)=[{}, {}, {}], &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd600a8435004d0600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="500200"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x6d}}, {{0x6, 0x0, 0xb, 0x9, 0x0, 0x4, 0x12}, {0x65, 0x0, 0x6, 0x9}}, [@printk={@ld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0x2, 0xa, 0x9}, {0x4, 0x0, 0x3, 0x9}, {}, {}, {0x15}}], {{0x5, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f00000000c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

695.41222ms ago: executing program 2 (id=6124):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="48000000100005070000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0xffffffffffffffbc, &(0x7f0000000240)={&(0x7f0000000140)=@delchain={0x24, 0x2e, 0x501, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff2, 0xffff}, {0x0, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0) (fail_nth: 8)

671.725259ms ago: executing program 4 (id=6125):
socket$key(0xf, 0x3, 0x2)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x4000900, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x2, 0x7, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
close(0x3)

527.558298ms ago: executing program 2 (id=6126):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
r3 = socket$netlink(0x10, 0x3, 0x15)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
read$FUSE(0xffffffffffffffff, &(0x7f0000002140)={0x2020, 0x0, 0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000004180)="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", 0x2000, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x0, 0x0, 0x0, 0x100, 0x0, {0x4, 0x0, 0x200000000e, 0xffff, 0x369, 0x7, 0x4, 0x0, 0x0, 0x6000, 0x0, r5, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
lsetxattr$security_capability(&(0x7f0000000340)='./file0\x00', &(0x7f0000000440), &(0x7f0000000480)=@v3={0x3000000, [{0x14, 0x2}, {0x19, 0xfffffff8}], r5}, 0x18, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', 0x0})
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_INIT(r6, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x10408, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
r8 = dup2(r7, r6)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="240000000308050200000000000000000300008900024000f70000000100009e99b898c6dd2565834177f56c1259a51714c33b76a232da9777a626fcdbe6fe6949f3aa93c8b9c47b791e7df159c5c52640e4beb8"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x4004004)
pread64(r3, &(0x7f0000000280)=""/39, 0x27, 0xa)
lseek(r8, 0x0, 0x4)

502.945092ms ago: executing program 5 (id=6127):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x1f}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x6d}}, {{0x6, 0x0, 0xb, 0x9, 0x0, 0x4, 0x12}, {0x65, 0x0, 0x6, 0x9}}, [@printk={@ld, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0x2, 0xa, 0x9}, {0x4, 0x0, 0x3, 0x9}, {}, {}, {0x15}}], {{0x5, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f00000000c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

495.281638ms ago: executing program 3 (id=6128):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f00000002c0)="23000000010006", 0x7) (fail_nth: 8)

494.493007ms ago: executing program 5 (id=6129):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000180)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000)="38000300", 0x4)

404.980568ms ago: executing program 5 (id=6130):
syz_usb_connect$hid(0x3, 0x3f, &(0x7f0000000080)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x38, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x1, 0x180, 0x5, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x1, 0x3, 0xff, {0x9, 0x21, 0x8, 0x5, 0x1, {0x22, 0x15e}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x7, 0x1, 0x8}}, [{{0x9, 0x5, 0x2, 0x3, 0x40, 0x6, 0x52, 0x1}}]}}}]}}]}}, &(0x7f0000000200)={0xff8f, &(0x7f00000000c0)={0xa, 0x6, 0x200, 0x89, 0xdf, 0xfa, 0x8, 0x7}, 0x80, &(0x7f0000000180)={0x5, 0xf, 0x80, 0x6, [@ssp_cap={0x14, 0x10, 0xa, 0x1, 0x2, 0x6, 0xf000, 0x3, [0xc0, 0xff3f00]}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x3, 0xc, 0xfff9}, @ss_container_id={0x14, 0x10, 0x4, 0x3, "15b891214f758d20fd1e87a7011d61fd"}, @ssp_cap={0x20, 0x10, 0xa, 0x9c, 0x5, 0x3, 0x0, 0x5, [0xc0c0, 0xc00f, 0xffffc0, 0xff3f6f, 0xff00c0]}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "d3c596804250c768ba551f97c6c1381a"}, @ssp_cap={0xff6f, 0x10, 0xa, 0x0, 0x3, 0xfff, 0x0, 0x5, [0x0, 0x30, 0x1fe0030]}]}, 0x3, [{0xde, &(0x7f00000002c0)=@string={0xde, 0x3, "3dc47234f852c025e70e9b80b8ad55e6b79b96d823daea30438dbc97a885d297abde7376f41de6a78e758bb3080e4959814d6b7a88ce91aae2fb0827c97417e14455e2b2e46aa2e88ef9c16c616edda28b7390905622048b284ad7a192b1f91f52de3e3efebf538a805e06103e3e528a2fba1fbe33b3bba4e09b660820e382541570720ce7f834fca89974ed417798e90924436683dd96537e36586a67662f495404c5a2b6659dea74c5e5998df7dadd16dba12b3cbd57f0038f9b673606458dd2e4e5d11158a0c12cf89be2ddf9a5df57c46419beaedce06c9efe2a"}}, {0xab, &(0x7f00000003c0)=@string={0xab, 0x3, "cc72b1bc86b8caeb56aa0313173746830ed6a252144a40ef487332ef13a2ce41c37b4a601de1115eaff0ac878241c78a76ba6d1c845f4dbc3a3ef23b4e84e3af938e169a7b38f5d4d16e5ca1a9c119cb6297b0bb2ced264245d8bd1cb8e64371aaa4742b4bb6d60240d9448d6f9af4ba37fe4822919381b499063dde50924127039963b9c7f02ecb562af37b708da107b6acbfb9bcf437be1075dd82b9128d72847f82222119c9d3db"}}, {0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x1c0a}}]})
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
socket$inet_udplite(0x2, 0x2, 0x88)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x9, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000000)={0xf0f044, 0x6c})
ppoll(&(0x7f0000000040)=[{r0, 0x80db}], 0x1, 0x0, 0x0, 0x0)

185.750889ms ago: executing program 3 (id=6131):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000025c0))
r4 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0xa0000, 0x0)
fchmod(r4, 0x183)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r5, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x3c, r6, 0x1, 0x270bd2c, 0x5, {0x5}, [@L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaac}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r8, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0xe, &(0x7f0000000400)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x80}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x4}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xa}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0xa6}}]}, &(0x7f0000000000)='GPL\x00', 0x7fffffff, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r10)

124.759304ms ago: executing program 4 (id=6132):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x3c, 0x0, 0x8, 0x301, 0x0, 0x0, {0x0, 0x0, 0x9}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x16}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x7fffffff}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x4080)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000380)={'syz1\x00', {0x7, 0x4, 0x3ff, 0x7}, 0x3d, [0x1, 0x800, 0x3, 0x2, 0x78b86039, 0x3ff, 0x10, 0x5, 0x1, 0xfffffff7, 0x440000, 0x5, 0x3, 0x1, 0x1000, 0x7f0, 0x5, 0x820, 0x9, 0xe, 0x5, 0x1, 0xff, 0x8, 0x200, 0x1, 0xf2f4, 0x9, 0x9, 0x4, 0x3e0, 0xe853, 0x1, 0x1, 0x80000001, 0x2, 0x400, 0x0, 0x9f, 0x1000, 0x6, 0x6, 0xff, 0x3, 0xfff, 0x10, 0x5, 0x5, 0x4, 0x1, 0x4, 0x4, 0xa6e2, 0x1, 0xfffc, 0x5207, 0x2, 0x133, 0x9, 0xff, 0x0, 0x5, 0x0, 0x4], [0x5, 0x99, 0x8, 0x6, 0x52, 0x5, 0x6, 0x4, 0x4, 0x5, 0x9, 0x0, 0x7f, 0x0, 0x4, 0x5, 0x8, 0x1, 0x0, 0x2, 0xfffffffd, 0xf, 0x2, 0xf4, 0x0, 0x3, 0x5, 0x80, 0x6f8, 0x6, 0xc, 0x9, 0x10000, 0x2, 0x0, 0x0, 0x8, 0x9, 0x4, 0x6, 0x4, 0xc, 0x6, 0xe16f, 0xfffff8d1, 0x5e8c, 0x8001, 0x9, 0x2, 0x6, 0x101, 0x7fffffff, 0x200, 0x5, 0x9, 0x5, 0x8, 0x5, 0x77d, 0x0, 0x7f, 0x3, 0x4, 0x10000], [0x7dd, 0xffff, 0x9, 0x0, 0x80000000, 0xaaaf, 0x8000000, 0xffff0000, 0x20c7, 0x80, 0xfffffffa, 0x9, 0xe8, 0x98, 0x2, 0x61, 0x6, 0x7f, 0xc, 0x1e, 0x1003, 0x56f1, 0xffffffff, 0x101, 0x7f, 0xfff, 0x7, 0x539c56b7, 0x1, 0x9, 0x8, 0x7, 0x10000, 0xa5, 0xa8, 0x800, 0x0, 0x6, 0xfff, 0xe, 0xc7c, 0xf, 0x800, 0x7, 0x3, 0x9, 0x5, 0x9, 0xae, 0x7, 0x3, 0xffff, 0xce3, 0x8, 0xc3, 0x3ff, 0xffffeffe, 0x0, 0x0, 0x1, 0x10001, 0x7f, 0x2, 0xfffffe01], [0xfe64, 0x80000001, 0x0, 0x2, 0xbb4c, 0x3, 0x8, 0x7, 0x4e, 0x55, 0x7, 0x6, 0x5, 0x7dc, 0x80000001, 0x2, 0x2, 0x1, 0x8, 0x6817, 0x9, 0x9, 0x2, 0x1, 0x1, 0x2, 0x80000000, 0x6, 0x2, 0xf, 0x2, 0x1, 0x1, 0xf, 0x4, 0x3, 0x5d0, 0x4, 0x80, 0x3, 0xf62e, 0x10, 0x4, 0x70000000, 0xdce, 0x7, 0xff, 0x1, 0x5, 0x8001, 0xb, 0x2, 0xfffffeff, 0x2ed, 0x8bb, 0x4, 0x8, 0x2500, 0x9, 0x800, 0xf, 0x8, 0x4, 0x800]}, 0x45c)
ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000340)={0x400000100002f, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}})
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)
getdents64(r3, &(0x7f0000003340)=""/48, 0x30)
signalfd(0xffffffffffffffff, 0x0, 0x0)
getpid()
sendfile(r3, r2, &(0x7f0000000200)=0xfffeffff, 0x4)
fchdir(r2)
mkdir(&(0x7f0000000040)='./bus\x00', 0x6c832ac377d24da9)

0s ago: executing program 4 (id=6133):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$dlm_plock(0xffffff9c, 0x0, 0x1, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
openat$udambuf(0xffffff9c, &(0x7f0000000140), 0x2)
socket(0x28, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
r1 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x3f73, 0x100, 0x0, 0x1a}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000600))
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0xffffffffffffff3a, 0x3, 0xf4}]}, 0x1, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = syz_init_net_socket$ax25(0x3, 0x3, 0xc3)
ioctl$sock_TIOCINQ(r3, 0x541b, &(0x7f0000000c40))
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
r4 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r4, &(0x7f00000002c0)='./file1\x00', 0x6000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')

kernel console output (not intermixed with test programs):

+0x18e/0xd30
[ 1231.045750][T27664]  ip_set_sockfn_get+0x18e/0xd30
[ 1231.045767][T27664]  ? __pfx_ip_set_sockfn_get+0x10/0x10
[ 1231.045783][T27664]  ? nf_sockopt_find.constprop.0+0x222/0x290
[ 1231.045798][T27664]  nf_getsockopt+0x79/0xe0
[ 1231.045811][T27664]  ip_getsockopt+0x18c/0x1e0
[ 1231.045827][T27664]  ? __pfx_ip_getsockopt+0x10/0x10
[ 1231.045845][T27664]  raw_getsockopt+0x4d/0x1f0
[ 1231.045861][T27664]  ? __pfx_sock_common_getsockopt+0x10/0x10
[ 1231.045873][T27664]  do_sock_getsockopt+0x34a/0x440
[ 1231.045887][T27664]  ? __pfx_do_sock_getsockopt+0x10/0x10
[ 1231.045899][T27664]  ? __fget_files+0x204/0x3c0
[ 1231.045921][T27664]  __sys_getsockopt+0x123/0x1b0
[ 1231.045934][T27664]  __ia32_sys_getsockopt+0xbc/0x160
[ 1231.045943][T27664]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1231.045953][T27664]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1231.045963][T27664]  __do_fast_syscall_32+0x7c/0x3a0
[ 1231.045976][T27664]  do_fast_syscall_32+0x32/0x80
[ 1231.045986][T27664]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1231.045999][T27664] RIP: 0023:0xf7f57579
[ 1231.046008][T27664] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1231.046018][T27664] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[ 1231.046028][T27664] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[ 1231.046034][T27664] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000080000080
[ 1231.046041][T27664] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1231.046047][T27664] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1231.046053][T27664] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1231.046066][T27664]  </TASK>
[ 1231.046070][T27664] Mem-Info:
[ 1231.113746][T24115] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1231.115732][T27664] active_anon:11351 inactive_anon:563 isolated_anon:0
[ 1231.115732][T27664]  active_file:14731 inactive_file:4985 isolated_file:0
[ 1231.115732][T27664]  unevictable:1768 dirty:592 writeback:0
[ 1231.115732][T27664]  slab_reclaimable:6598 slab_unreclaimable:67149
[ 1231.115732][T27664]  mapped:29279 shmem:11318 pagetables:1449
[ 1231.115732][T27664]  sec_pagetables:333 bounce:0
[ 1231.115732][T27664]  kernel_misc_reclaimable:0
[ 1231.115732][T27664]  free:57195 free_pcp:11324 free_cma:0
[ 1231.149043][T27664] Node 0 active_anon:180kB inactive_anon:64kB active_file:284kB inactive_file:204kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:3400kB dirty:84kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:7556kB pagetables:1492kB sec_pagetables:1136kB all_unreclaimable? no Balloon:0kB
[ 1231.158735][T27664] Node 1 active_anon:45224kB inactive_anon:2188kB active_file:58640kB inactive_file:19736kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:113716kB dirty:2284kB writeback:0kB shmem:41732kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:6412kB pagetables:4304kB sec_pagetables:196kB all_unreclaimable? no Balloon:0kB
[ 1231.168910][T27664] Node 0 DMA free:2080kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:568kB local_pcp:124kB free_cma:0kB
[ 1231.177381][T27664] lowmem_reserve[]: 0 289 289 289 289
[ 1231.179020][T27664] Node 0 DMA32 free:16488kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:0KB free_highatomic:0KB active_anon:168kB inactive_anon:64kB active_file:284kB inactive_file:204kB unevictable:3536kB writepending:84kB present:1032196kB managed:296004kB mlocked:0kB bounce:0kB free_pcp:10908kB local_pcp:3028kB free_cma:0kB
[ 1231.188412][T27664] lowmem_reserve[]: 0 0 0 0 0
[ 1231.189887][T27664] Node 1 DMA32 free:210180kB boost:53248kB min:100392kB low:112176kB high:123960kB reserved_highatomic:10240KB free_highatomic:1692KB active_anon:45248kB inactive_anon:2188kB active_file:58640kB inactive_file:19736kB unevictable:3536kB writepending:2284kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:33332kB local_pcp:14448kB free_cma:0kB
[ 1231.199872][T27664] lowmem_reserve[]: 0 0 0 0 0
[ 1231.201342][T27664] Node 0 DMA: 0*4kB 6*8kB (UM) 9*16kB (U) 9*32kB (U) 1*64kB (M) 2*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2080kB
[ 1231.205758][T27664] Node 0 DMA32: 206*4kB (UME) 58*8kB (UME) 18*16kB (UME) 66*32kB (UME) 64*64kB (ME) 22*128kB (ME) 9*256kB (UE) 7*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 16488kB
[ 1231.210912][T27664] Node 1 DMA32: 38*4kB (UEH) 17*8kB (MH) 115*16kB (UEH) 363*32kB (UMEH) 512*64kB (UMEH) 265*128kB (UME) 143*256kB (UM) 66*512kB (UME) 24*1024kB (UME) 15*2048kB (UM) 1*4096kB (M) = 210224kB
[ 1231.216684][T27664] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1231.219490][T27664] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1231.222357][T27664] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1231.225358][T27664] Node 1 hugepages_total=4 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1231.228137][T27664] 31178 total pagecache pages
[ 1231.229565][T27664] 741 pages in swap cache
[ 1231.230890][T27664] Free swap  = 39432kB
[ 1231.232161][T27664] Total swap = 124996kB
[ 1231.233565][T27664] 524155 pages RAM
[ 1231.234732][T27664] 0 pages HighMem/MovableOnly
[ 1231.236175][T27664] 209243 pages reserved
[ 1231.237454][T27664] 0 pages cma reserved
[ 1231.265908][T24115] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1231.269716][T24115] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1231.272823][T24115] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1231.277109][T24115] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1231.303011][T27657] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1231.325279][T24115] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[ 1231.372961][T27669] Bluetooth: MGMT ver 1.23
[ 1231.507801][T27657] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5810'.
[ 1231.513900][T27657] netlink: 'syz.4.5810': attribute type 2 has an invalid length.
[ 1231.517294][T27657] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5810'.
[ 1231.550230][ T5951] usb 9-1: USB disconnect, device number 6
[ 1231.763299][T12148] Bluetooth: hci1: command tx timeout
[ 1232.025378][T27681] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5817'.
[ 1232.028232][T27681] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5817'.
[ 1232.259212][T27688] overlayfs: failed to resolve './file0': -2
[ 1232.689748][T27701] FAULT_INJECTION: forcing a failure.
[ 1232.689748][T27701] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1232.695416][T27701] CPU: 1 UID: 0 PID: 27701 Comm: syz.4.5821 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1232.695431][T27701] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1232.695438][T27701] Call Trace:
[ 1232.695442][T27701]  <TASK>
[ 1232.695447][T27701]  dump_stack_lvl+0x16c/0x1f0
[ 1232.695473][T27701]  should_fail_ex+0x512/0x640
[ 1232.695487][T27701]  should_fail_alloc_page+0xe7/0x130
[ 1232.695501][T27701]  prepare_alloc_pages+0x3c2/0x610
[ 1232.695516][T27701]  ? rcu_is_watching+0x12/0xc0
[ 1232.695529][T27701]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1232.695541][T27701]  ? do_sys_poll+0x24a/0xdf0
[ 1232.695557][T27701]  ? stack_trace_save+0x8e/0xc0
[ 1232.695568][T27701]  ? __pfx_stack_trace_save+0x10/0x10
[ 1232.695580][T27701]  ? stack_depot_save_flags+0x28/0xa40
[ 1232.695591][T27701]  ? __update_page_owner_handle+0x395/0x550
[ 1232.695610][T27701]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1232.695620][T27701]  ? do_sys_poll+0x24a/0xdf0
[ 1232.695635][T27701]  ? kasan_save_stack+0x33/0x60
[ 1232.695644][T27701]  ? __kasan_kmalloc+0xaa/0xb0
[ 1232.695653][T27701]  ? __kmalloc_noprof+0x223/0x510
[ 1232.695663][T27701]  ? do_sys_poll+0x24a/0xdf0
[ 1232.695676][T27701]  ? __ia32_sys_poll+0x1a9/0x450
[ 1232.695691][T27701]  ? __do_fast_syscall_32+0x7c/0x3a0
[ 1232.695701][T27701]  ? do_fast_syscall_32+0x32/0x80
[ 1232.695714][T27701]  ? __lock_acquire+0xb8a/0x1c90
[ 1232.695730][T27701]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1232.695746][T27701]  ? policy_nodemask+0xea/0x4e0
[ 1232.695759][T27701]  alloc_pages_mpol+0x1fb/0x550
[ 1232.695771][T27701]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1232.695787][T27701]  alloc_pages_noprof+0x131/0x390
[ 1232.695799][T27701]  get_free_pages_noprof+0x10/0xb0
[ 1232.695812][T27701]  __pollwait+0x295/0x490
[ 1232.695828][T27701]  pipe_poll+0x239/0x660
[ 1232.695837][T27701]  ? __pfx___pollwait+0x10/0x10
[ 1232.695852][T27701]  ? __pfx_pipe_poll+0x10/0x10
[ 1232.695861][T27701]  do_sys_poll+0x55c/0xdf0
[ 1232.695891][T27701]  ? __pfx_do_sys_poll+0x10/0x10
[ 1232.695913][T27701]  ? __lock_acquire+0x622/0x1c90
[ 1232.695960][T27701]  ? __lock_acquire+0x622/0x1c90
[ 1232.695983][T27701]  ? __pfx___pollwait+0x10/0x10
[ 1232.696009][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696025][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696041][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696057][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696073][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696113][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696134][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696150][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696166][T27701]  ? __pfx_pollwake+0x10/0x10
[ 1232.696180][T27701]  ? __pfx_timespec64_add_safe+0x10/0x10
[ 1232.696196][T27701]  ? ktime_get_ts64+0x2d2/0x400
[ 1232.696209][T27701]  ? read_tsc+0x9/0x20
[ 1232.696220][T27701]  ? ktime_get_ts64+0x256/0x400
[ 1232.696236][T27701]  __ia32_sys_poll+0x1a9/0x450
[ 1232.696252][T27701]  ? __pfx___ia32_sys_poll+0x10/0x10
[ 1232.696269][T27701]  ? rcu_is_watching+0x12/0xc0
[ 1232.696281][T27701]  __do_fast_syscall_32+0x7c/0x3a0
[ 1232.696293][T27701]  do_fast_syscall_32+0x32/0x80
[ 1232.696304][T27701]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1232.696317][T27701] RIP: 0023:0xf7f92579
[ 1232.696326][T27701] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1232.696336][T27701] RSP: 002b:00000000f509555c EFLAGS: 00000296 ORIG_RAX: 00000000000000a8
[ 1232.696346][T27701] RAX: ffffffffffffffda RBX: 0000000080000440 RCX: 0000000000000064
[ 1232.696354][T27701] RDX: 0000000000000101 RSI: 0000000000000000 RDI: 0000000000000000
[ 1232.696361][T27701] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1232.696367][T27701] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1232.696374][T27701] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1232.696387][T27701]  </TASK>
[ 1233.191313][   T40] audit: type=1326 audit(1753159792.817:3545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.209907][   T40] audit: type=1326 audit(1753159792.817:3546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.225793][   T40] audit: type=1326 audit(1753159792.817:3547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.245957][   T40] audit: type=1326 audit(1753159792.817:3548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.253096][   T40] audit: type=1326 audit(1753159792.817:3549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.317223][   T40] audit: type=1326 audit(1753159792.817:3550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.323536][   T40] audit: type=1326 audit(1753159792.817:3551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.330543][   T40] audit: type=1326 audit(1753159792.817:3552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.337755][   T40] audit: type=1326 audit(1753159792.827:3553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27705 comm="syz.2.5823" exe="/syz-executor" sig=0 arch=40000003 syscall=445 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1233.590925][T27717] overlay: Unknown parameter 'fsuuid'
[ 1233.707630][T27707] orangefs_mount: mount request failed with -4
[ 1233.997422][T27733] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1234.225493][   T40] kauditd_printk_skb: 25 callbacks suppressed
[ 1234.225504][   T40] audit: type=1326 audit(1753159793.907:3579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.235867][   T40] audit: type=1326 audit(1753159793.907:3580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.242456][   T40] audit: type=1326 audit(1753159793.907:3581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.249354][   T40] audit: type=1326 audit(1753159793.907:3582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.256783][   T40] audit: type=1326 audit(1753159793.907:3583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.263871][   T40] audit: type=1326 audit(1753159793.907:3584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.270439][   T40] audit: type=1326 audit(1753159793.907:3585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.277364][   T40] audit: type=1326 audit(1753159793.907:3586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.284504][   T40] audit: type=1326 audit(1753159793.907:3587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.291401][   T40] audit: type=1326 audit(1753159793.907:3588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27736 comm="syz.4.5832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[ 1234.769319][T27739] pim6reg: entered allmulticast mode
[ 1235.296628][T27736] pim6reg: left allmulticast mode
[ 1236.596182][T27757] orangefs_mount: mount request failed with -4
[ 1236.696087][T27784] 9pnet_fd: Insufficient options for proto=fd
[ 1236.879178][T27793] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5843'.
[ 1237.245972][T27802] usb usb8: usbfs: process 27802 (syz.4.5848) did not claim interface 0 before use
[ 1237.964925][T27820] vivid-007: =================  START STATUS  =================
[ 1237.967456][T27820] vivid-007: Enable Output Cropping: true
[ 1237.969311][T27820] vivid-007: Enable Output Composing: true
[ 1237.971306][T27820] vivid-007: Enable Output Scaler: true
[ 1237.973567][T27820] vivid-007: Tx RGB Quantization Range: Automatic
[ 1237.978421][T27820] vivid-007: Transmit Mode: HDMI
[ 1237.980316][T27820] vivid-007: Hotplug Present: 0x00000000
[ 1237.982301][T27820] vivid-007: RxSense Present: 0x00000000
[ 1237.984212][T27820] vivid-007: EDID Present: 0x00000000
[ 1237.986040][T27820] vivid-007: ==================  END STATUS  ==================
[ 1238.163051][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.173531][T27828] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5856'.
[ 1238.632727][T27842] FAULT_INJECTION: forcing a failure.
[ 1238.632727][T27842] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1238.637032][T27842] CPU: 0 UID: 0 PID: 27842 Comm: syz.2.5860 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1238.637046][T27842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1238.637053][T27842] Call Trace:
[ 1238.637057][T27842]  <TASK>
[ 1238.637062][T27842]  dump_stack_lvl+0x16c/0x1f0
[ 1238.637088][T27842]  should_fail_ex+0x512/0x640
[ 1238.637102][T27842]  _copy_from_user+0x2e/0xd0
[ 1238.637114][T27842]  get_compat_msghdr+0xa7/0x170
[ 1238.637126][T27842]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1238.637138][T27842]  ? __lock_acquire+0x622/0x1c90
[ 1238.637155][T27842]  ___sys_recvmsg+0x191/0x1a0
[ 1238.637166][T27842]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1238.637179][T27842]  ? find_held_lock+0x2b/0x80
[ 1238.637194][T27842]  ? __pfx___might_resched+0x10/0x10
[ 1238.637209][T27842]  do_recvmmsg+0x55d/0x750
[ 1238.637222][T27842]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1238.637231][T27842]  ? trace_sched_exit_tp+0xde/0x130
[ 1238.637252][T27842]  ? __pfx___schedule+0x10/0x10
[ 1238.637267][T27842]  ? __fget_files+0x20e/0x3c0
[ 1238.637290][T27842]  __sys_recvmmsg+0x21c/0x280
[ 1238.637301][T27842]  ? __pfx___sys_recvmmsg+0x10/0x10
[ 1238.637317][T27842]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 1238.637329][T27842]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1238.637339][T27842]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1238.637350][T27842]  __do_fast_syscall_32+0x7c/0x3a0
[ 1238.637362][T27842]  do_fast_syscall_32+0x32/0x80
[ 1238.637373][T27842]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1238.637386][T27842] RIP: 0023:0xf7f55579
[ 1238.637395][T27842] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1238.637405][T27842] RSP: 002b:00000000f505555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1238.637415][T27842] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080001140
[ 1238.637422][T27842] RDX: 0000000000000700 RSI: 0000000000000002 RDI: 0000000000000000
[ 1238.637428][T27842] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1238.637434][T27842] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1238.637440][T27842] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1238.637453][T27842]  </TASK>
[ 1238.860124][T27844] random: crng reseeded on system resumption
[ 1238.913009][T27844] sock: sock_set_timeout: `syz.5.5861' (pid 27844) tries to set negative timeout
[ 1238.918804][T27844] IPv6: sit1: Disabled Multicast RS
[ 1238.923334][T27844] sit1: entered allmulticast mode
[ 1239.000647][T27848] FAULT_INJECTION: forcing a failure.
[ 1239.000647][T27848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1239.004741][T27848] CPU: 3 UID: 0 PID: 27848 Comm: syz.4.5862 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1239.004754][T27848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1239.004762][T27848] Call Trace:
[ 1239.004766][T27848]  <TASK>
[ 1239.004770][T27848]  dump_stack_lvl+0x16c/0x1f0
[ 1239.004784][T27848]  should_fail_ex+0x512/0x640
[ 1239.004797][T27848]  _copy_from_user+0x2e/0xd0
[ 1239.004809][T27848]  get_compat_msghdr+0xa7/0x170
[ 1239.004821][T27848]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1239.004833][T27848]  ? __lock_acquire+0x622/0x1c90
[ 1239.004850][T27848]  ___sys_recvmsg+0x191/0x1a0
[ 1239.004861][T27848]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1239.004873][T27848]  ? find_held_lock+0x2b/0x80
[ 1239.004888][T27848]  ? __pfx___might_resched+0x10/0x10
[ 1239.004902][T27848]  do_recvmmsg+0x55d/0x750
[ 1239.004915][T27848]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1239.004934][T27848]  ? __fget_files+0x20e/0x3c0
[ 1239.004952][T27848]  __sys_recvmmsg+0x21c/0x280
[ 1239.004963][T27848]  ? __pfx___sys_recvmmsg+0x10/0x10
[ 1239.004975][T27848]  ? __pfx_ksys_write+0x10/0x10
[ 1239.004987][T27848]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 1239.004999][T27848]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1239.005009][T27848]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1239.005020][T27848]  __do_fast_syscall_32+0x7c/0x3a0
[ 1239.005032][T27848]  do_fast_syscall_32+0x32/0x80
[ 1239.005043][T27848]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1239.005055][T27848] RIP: 0023:0xf7f92579
[ 1239.005064][T27848] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1239.005074][T27848] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1239.005084][T27848] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080001140
[ 1239.005091][T27848] RDX: 0000000000000700 RSI: 0000000000000002 RDI: 0000000000000000
[ 1239.005097][T27848] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1239.005103][T27848] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1239.005109][T27848] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1239.005121][T27848]  </TASK>
[ 1239.233495][T27857] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1239.449086][T27858] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5866'.
[ 1239.451983][T27858] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1239.454532][T27858] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1239.494750][T27858] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1239.497419][T27858] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1240.260183][T27866] 9pnet_fd: Insufficient options for proto=fd
[ 1240.268873][T27866] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[ 1240.323299][T27869] netlink: 9284 bytes leftover after parsing attributes in process `syz.4.5870'.
[ 1241.296893][T27878] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1241.299519][T27878] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1241.308327][T27878] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1241.333600][ T5965] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1241.339775][ T5965] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1241.342913][ T5965] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1241.353724][ T5965] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1241.356376][ T5965] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1241.509356][T27885] chnl_net:caif_netlink_parms(): no params data found
[ 1241.536760][T27909] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5880'.
[ 1241.537401][T27909] futex_wake_op: syz.3.5880 tries to shift op by -1; fix this program
[ 1241.711674][T27885] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1241.715133][T27885] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1241.717383][T27885] bridge_slave_0: entered allmulticast mode
[ 1241.720872][T27885] bridge_slave_0: entered promiscuous mode
[ 1241.966878][T27900] e1000e 0000:00:02.0 eth1: NIC Link is Down
[ 1241.985964][T27885] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1242.001742][T27885] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1242.057032][T27885] bridge_slave_1: entered allmulticast mode
[ 1242.075134][T27885] bridge_slave_1: entered promiscuous mode
[ 1242.193888][ T6408] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[ 1242.209664][   T12] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1242.214755][   T12] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[ 1242.221670][   T12] netdevsim netdevsim5 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[ 1242.330243][   T12] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1242.343393][   T12] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[ 1242.347404][   T12] netdevsim netdevsim5 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[ 1242.381547][T27885] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1242.388613][T27885] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1242.468372][   T12] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1242.472423][   T12] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[ 1242.494552][   T12] netdevsim netdevsim5 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[ 1242.502684][T27932] bond0: option ad_select: unable to set because the bond device is up
[ 1242.515948][T27885] team0: Port device team_slave_0 added
[ 1242.526822][T27885] team0: Port device team_slave_1 added
[ 1242.553291][ T5965] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1242.636746][   T12] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1242.640775][   T12] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[ 1242.645716][T27951] FAULT_INJECTION: forcing a failure.
[ 1242.645716][T27951] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1242.649350][   T12] netdevsim netdevsim5 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[ 1242.651626][T27951] CPU: 3 UID: 0 PID: 27951 Comm: syz.2.5886 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1242.651648][T27951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1242.651659][T27951] Call Trace:
[ 1242.651665][T27951]  <TASK>
[ 1242.651671][T27951]  dump_stack_lvl+0x16c/0x1f0
[ 1242.651693][T27951]  should_fail_ex+0x512/0x640
[ 1242.651715][T27951]  should_fail_alloc_page+0xe7/0x130
[ 1242.651736][T27951]  prepare_alloc_pages+0x3c2/0x610
[ 1242.651761][T27951]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1242.651783][T27951]  ? rcu_is_watching+0x12/0xc0
[ 1242.651802][T27951]  ? trace_mm_page_alloc+0x11f/0x1a0
[ 1242.651823][T27951]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[ 1242.651839][T27951]  ? stack_trace_save+0x8e/0xc0
[ 1242.651859][T27951]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1242.651885][T27951]  ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[ 1242.651901][T27951]  ? __get_vm_area_node+0x1ca/0x330
[ 1242.651922][T27951]  ? __vmalloc_node_noprof+0xad/0xf0
[ 1242.651943][T27951]  ? xt_compat_init_offsets+0xe6/0x1f0
[ 1242.651964][T27951]  ? translate_compat_table+0x1f3/0x18d0
[ 1242.651987][T27951]  ? compat_do_replace+0x255/0x3c0
[ 1242.652027][T27951]  ? do_ip6t_set_ctl+0x55d/0xa70
[ 1242.652048][T27951]  ? nf_setsockopt+0x8a/0xf0
[ 1242.652066][T27951]  ? ipv6_setsockopt+0x135/0x170
[ 1242.652088][T27951]  ? do_fast_syscall_32+0x32/0x80
[ 1242.652104][T27951]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1242.652129][T27951]  alloc_pages_bulk_noprof+0x71c/0x1410
[ 1242.652146][T27951]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1242.652172][T27951]  ? policy_nodemask+0xea/0x4e0
[ 1242.652192][T27951]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1242.652216][T27951]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1242.652246][T27951]  kasan_populate_vmalloc+0xf1/0x1f0
[ 1242.652274][T27951]  alloc_vmap_area+0x959/0x29c0
[ 1242.652304][T27951]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1242.652332][T27951]  __get_vm_area_node+0x1ca/0x330
[ 1242.652358][T27951]  __vmalloc_node_range_noprof+0x271/0x14b0
[ 1242.652380][T27951]  ? xt_compat_init_offsets+0xe6/0x1f0
[ 1242.652403][T27951]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1242.652430][T27951]  ? xt_compat_init_offsets+0xe6/0x1f0
[ 1242.652451][T27951]  ? __mutex_lock+0x1ca/0xb90
[ 1242.652468][T27951]  ? kasan_save_stack+0x42/0x60
[ 1242.652484][T27951]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1242.652509][T27951]  ? __pfx___mutex_lock+0x10/0x10
[ 1242.652525][T27951]  ? udpv6_setsockopt+0x7d/0xd0
[ 1242.652545][T27951]  ? do_sock_setsockopt+0xf0/0x1d0
[ 1242.652565][T27951]  ? __do_fast_syscall_32+0x7c/0x3a0
[ 1242.652582][T27951]  ? do_fast_syscall_32+0x32/0x80
[ 1242.652599][T27951]  ? xt_compat_init_offsets+0xe6/0x1f0
[ 1242.652619][T27951]  __vmalloc_node_noprof+0xad/0xf0
[ 1242.652640][T27951]  ? xt_compat_init_offsets+0xe6/0x1f0
[ 1242.652664][T27951]  xt_compat_init_offsets+0xe6/0x1f0
[ 1242.652687][T27951]  translate_compat_table+0x1f3/0x18d0
[ 1242.652713][T27951]  ? find_held_lock+0x2b/0x80
[ 1242.652730][T27951]  ? __might_fault+0x13b/0x190
[ 1242.652747][T27951]  ? __pfx_translate_compat_table+0x10/0x10
[ 1242.652787][T27951]  compat_do_replace+0x255/0x3c0
[ 1242.652810][T27951]  ? __pfx_compat_do_replace+0x10/0x10
[ 1242.652833][T27951]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 1242.652854][T27951]  ? rcu_is_watching+0x12/0xc0
[ 1242.652879][T27951]  ? bpf_lsm_capable+0x9/0x10
[ 1242.652900][T27951]  ? security_capable+0x7e/0x260
[ 1242.652923][T27951]  do_ip6t_set_ctl+0x55d/0xa70
[ 1242.652945][T27951]  ? nf_sockopt_find.constprop.0+0x222/0x290
[ 1242.652968][T27951]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[ 1242.652993][T27951]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1242.653015][T27951]  ? __lock_acquire+0x622/0x1c90
[ 1242.653041][T27951]  ? nf_sockopt_find.constprop.0+0x222/0x290
[ 1242.653063][T27951]  nf_setsockopt+0x8a/0xf0
[ 1242.653085][T27951]  ipv6_setsockopt+0x135/0x170
[ 1242.653108][T27951]  udpv6_setsockopt+0x7d/0xd0
[ 1242.653131][T27951]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1242.653173][T27951]  do_sock_setsockopt+0xf0/0x1d0
[ 1242.653196][T27951]  __sys_setsockopt+0x120/0x1a0
[ 1242.653222][T27951]  __ia32_sys_setsockopt+0xbc/0x160
[ 1242.653235][T27951]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1242.653251][T27951]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1242.653268][T27951]  __do_fast_syscall_32+0x7c/0x3a0
[ 1242.653287][T27951]  do_fast_syscall_32+0x32/0x80
[ 1242.653304][T27951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1242.653321][T27951] RIP: 0023:0xf7f55579
[ 1242.653335][T27951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1242.653351][T27951] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[ 1242.653367][T27951] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029
[ 1242.653376][T27951] RDX: 0000000000000040 RSI: 0000000080000000 RDI: 00000000000006fc
[ 1242.653386][T27951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1242.653395][T27951] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1242.653404][T27951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1242.653427][T27951]  </TASK>
[ 1242.653553][T27951] syz.2.5886: vmalloc error: size 48, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1242.834626][T27951] CPU: 3 UID: 0 PID: 27951 Comm: syz.2.5886 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1242.834641][T27951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1242.834647][T27951] Call Trace:
[ 1242.834652][T27951]  <TASK>
[ 1242.834656][T27951]  dump_stack_lvl+0x16c/0x1f0
[ 1242.834671][T27951]  warn_alloc+0x248/0x3a0
[ 1242.834683][T27951]  ? __pfx_warn_alloc+0x10/0x10
[ 1242.834694][T27951]  ? kfree+0x2b4/0x4d0
[ 1242.834711][T27951]  ? __get_vm_area_node+0x208/0x330
[ 1242.834728][T27951]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[ 1242.834744][T27951]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1242.834763][T27951]  ? xt_compat_init_offsets+0xe6/0x1f0
[ 1242.834779][T27951]  ? __mutex_lock+0x1ca/0xb90
[ 1242.834790][T27951]  ? kasan_save_stack+0x42/0x60
[ 1242.834800][T27951]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1242.834816][T27951]  ? __pfx___mutex_lock+0x10/0x10
[ 1242.834826][T27951]  ? udpv6_setsockopt+0x7d/0xd0
[ 1242.834841][T27951]  ? do_sock_setsockopt+0xf0/0x1d0
[ 1242.834855][T27951]  ? __do_fast_syscall_32+0x7c/0x3a0
[ 1242.834865][T27951]  ? do_fast_syscall_32+0x32/0x80
[ 1242.834877][T27951]  ? xt_compat_init_offsets+0xe6/0x1f0
[ 1242.834890][T27951]  __vmalloc_node_noprof+0xad/0xf0
[ 1242.834904][T27951]  ? xt_compat_init_offsets+0xe6/0x1f0
[ 1242.834919][T27951]  xt_compat_init_offsets+0xe6/0x1f0
[ 1242.834933][T27951]  translate_compat_table+0x1f3/0x18d0
[ 1242.834951][T27951]  ? find_held_lock+0x2b/0x80
[ 1242.834962][T27951]  ? __might_fault+0x13b/0x190
[ 1242.834972][T27951]  ? __pfx_translate_compat_table+0x10/0x10
[ 1242.834998][T27951]  compat_do_replace+0x255/0x3c0
[ 1242.835013][T27951]  ? __pfx_compat_do_replace+0x10/0x10
[ 1242.835027][T27951]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 1242.835041][T27951]  ? rcu_is_watching+0x12/0xc0
[ 1242.835057][T27951]  ? bpf_lsm_capable+0x9/0x10
[ 1242.835072][T27951]  ? security_capable+0x7e/0x260
[ 1242.835087][T27951]  do_ip6t_set_ctl+0x55d/0xa70
[ 1242.835100][T27951]  ? nf_sockopt_find.constprop.0+0x222/0x290
[ 1242.835116][T27951]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[ 1242.835132][T27951]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1242.835146][T27951]  ? __lock_acquire+0x622/0x1c90
[ 1242.835162][T27951]  ? nf_sockopt_find.constprop.0+0x222/0x290
[ 1242.835176][T27951]  nf_setsockopt+0x8a/0xf0
[ 1242.835190][T27951]  ipv6_setsockopt+0x135/0x170
[ 1242.835209][T27951]  udpv6_setsockopt+0x7d/0xd0
[ 1242.835224][T27951]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1242.835239][T27951]  do_sock_setsockopt+0xf0/0x1d0
[ 1242.835254][T27951]  __sys_setsockopt+0x120/0x1a0
[ 1242.835266][T27951]  __ia32_sys_setsockopt+0xbc/0x160
[ 1242.835276][T27951]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1242.835286][T27951]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1242.835297][T27951]  __do_fast_syscall_32+0x7c/0x3a0
[ 1242.835309][T27951]  do_fast_syscall_32+0x32/0x80
[ 1242.835320][T27951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1242.835334][T27951] RIP: 0023:0xf7f55579
[ 1242.835342][T27951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1242.835353][T27951] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[ 1242.835363][T27951] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029
[ 1242.835369][T27951] RDX: 0000000000000040 RSI: 0000000080000000 RDI: 00000000000006fc
[ 1242.835376][T27951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1242.835382][T27951] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1242.835388][T27951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1242.835401][T27951]  </TASK>
[ 1242.835405][T27951] Mem-Info:
[ 1242.948666][T27951] active_anon:5780 inactive_anon:469 isolated_anon:50
[ 1242.948666][T27951]  active_file:14785 inactive_file:4067 isolated_file:0
[ 1242.948666][T27951]  unevictable:20827 dirty:185 writeback:0
[ 1242.948666][T27951]  slab_reclaimable:6654 slab_unreclaimable:67839
[ 1242.948666][T27951]  mapped:23797 shmem:5575 pagetables:1561
[ 1242.948666][T27951]  sec_pagetables:333 bounce:0
[ 1242.948666][T27951]  kernel_misc_reclaimable:0
[ 1242.948666][T27951]  free:37612 free_pcp:17881 free_cma:0
[ 1242.962807][T27951] Node 0 active_anon:208kB inactive_anon:76kB active_file:340kB inactive_file:56kB unevictable:3552kB isolated(anon):0kB isolated(file):0kB mapped:4020kB dirty:4kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:7552kB pagetables:1436kB sec_pagetables:1136kB all_unreclaimable? no Balloon:0kB
[ 1242.972689][T27951] Node 1 active_anon:22912kB inactive_anon:1800kB active_file:58800kB inactive_file:16212kB unevictable:85456kB isolated(anon):200kB isolated(file):0kB mapped:91168kB dirty:736kB writeback:0kB shmem:18760kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:6328kB pagetables:4808kB sec_pagetables:196kB all_unreclaimable? no Balloon:0kB
[ 1242.986989][T27951] Node 0 DMA free:2056kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:668kB local_pcp:140kB free_cma:0kB
[ 1242.993633][T27885] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1242.999733][T27951] lowmem_reserve[]: 0 289 289 289 289
[ 1243.001054][T27885] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1243.001518][T27951] Node 0 DMA32 free:17740kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:4096KB free_highatomic:1748KB active_anon:208kB inactive_anon:76kB active_file:340kB inactive_file:56kB unevictable:3552kB writepending:4kB present:1032196kB managed:296004kB mlocked:16kB bounce:0kB free_pcp:9564kB local_pcp:3156kB free_cma:0kB
[ 1243.019065][T27951] lowmem_reserve[]: 0 0 0 0 0
[ 1243.020583][T27951] Node 1 DMA32 free:122296kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:10240KB free_highatomic:1864KB active_anon:50712kB inactive_anon:1800kB active_file:58800kB inactive_file:16212kB unevictable:57756kB writepending:736kB present:1048432kB managed:948284kB mlocked:54220kB bounce:0kB free_pcp:64336kB local_pcp:21896kB free_cma:0kB
[ 1243.021282][T27885] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1243.031077][T27951] lowmem_reserve[]: 0 0 0 0 0
[ 1243.031115][T27951] Node 0 DMA: 6*4kB (UM) 6*8kB (UM) 10*16kB (UM) 9*32kB (UM) 0*64kB 2*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2056kB
[ 1243.042582][T27951] Node 0 DMA32: 217*4kB (UMEH) 183*8kB (UMEH) 55*16kB (UMEH) 47*32kB (UMEH) 55*64kB (UME) 26*128kB (UME) 10*256kB (UMEH) 7*512kB (UMH) 0*1024kB 0*2048kB 0*4096kB = 17708kB
[ 1243.048306][T27951] Node 1 DMA32: 302*4kB (UMEH) 113*8kB (UMEH) 26*16kB (UEH) 32*32kB (UMEH) 15*64kB (UEH) 178*128kB (UE) 105*256kB (UE) 43*512kB (UE) 29*1024kB (UM) 6*2048kB (UM) 1*4096kB (U) = 122272kB
[ 1243.055471][T27951] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1243.058751][T27885] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1243.065695][T27885] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1243.073237][T27951] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1243.073797][T27885] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1243.076435][T27951] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1243.082586][T27951] Node 1 hugepages_total=4 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 1243.093304][T27951] 24994 total pagecache pages
[ 1243.095081][T27951] 571 pages in swap cache
[ 1243.096801][T27951] Free swap  = 40600kB
[ 1243.103204][T27951] Total swap = 124996kB
[ 1243.104771][T27951] 524155 pages RAM
[ 1243.106262][T27951] 0 pages HighMem/MovableOnly
[ 1243.108120][T27951] 209243 pages reserved
[ 1243.109768][T27951] 0 pages cma reserved
[ 1243.126516][T27885] hsr_slave_0: entered promiscuous mode
[ 1243.129000][T27885] hsr_slave_1: entered promiscuous mode
[ 1243.131109][T27885] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1243.133542][T27885] Cannot create hsr debugfs directory
[ 1243.179258][T27964] FAULT_INJECTION: forcing a failure.
[ 1243.179258][T27964] name failslab, interval 1, probability 0, space 0, times 0
[ 1243.243211][T27964] CPU: 1 UID: 0 PID: 27964 Comm: syz.2.5887 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1243.243227][T27964] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1243.243234][T27964] Call Trace:
[ 1243.243238][T27964]  <TASK>
[ 1243.243242][T27964]  dump_stack_lvl+0x16c/0x1f0
[ 1243.243257][T27964]  should_fail_ex+0x512/0x640
[ 1243.243268][T27964]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 1243.243281][T27964]  should_failslab+0xc2/0x120
[ 1243.243294][T27964]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1243.243304][T27964]  ? __alloc_skb+0x2b2/0x380
[ 1243.243317][T27964]  __alloc_skb+0x2b2/0x380
[ 1243.243327][T27964]  ? __pfx___alloc_skb+0x10/0x10
[ 1243.243338][T27964]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1243.243354][T27964]  netlink_alloc_large_skb+0x69/0x130
[ 1243.243368][T27964]  netlink_sendmsg+0x6a1/0xdd0
[ 1243.243382][T27964]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1243.243396][T27964]  ? __import_iovec+0x1dd/0x650
[ 1243.243411][T27964]  ____sys_sendmsg+0xa98/0xc70
[ 1243.243426][T27964]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1243.243439][T27964]  ? get_compat_msghdr+0x11a/0x170
[ 1243.243460][T27964]  ___sys_sendmsg+0x134/0x1d0
[ 1243.243472][T27964]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1243.243488][T27964]  ? find_held_lock+0x2b/0x80
[ 1243.243508][T27964]  __sys_sendmsg+0x16d/0x220
[ 1243.243519][T27964]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1243.243535][T27964]  ? rcu_is_watching+0x12/0xc0
[ 1243.243548][T27964]  __do_fast_syscall_32+0x7c/0x3a0
[ 1243.243560][T27964]  do_fast_syscall_32+0x32/0x80
[ 1243.243571][T27964]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1243.243584][T27964] RIP: 0023:0xf7f55579
[ 1243.243593][T27964] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1243.243603][T27964] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1243.243613][T27964] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[ 1243.243620][T27964] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1243.243626][T27964] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1243.243632][T27964] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1243.243638][T27964] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1243.243651][T27964]  </TASK>
[ 1243.433995][ T5965] Bluetooth: hci2: command tx timeout
[ 1243.592989][T27980] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1243.612613][T27981] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1243.664155][T27982] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5888'.
[ 1244.575757][T27990] overlayfs: failed to resolve 'hash': -2
[ 1244.633247][ T5965] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1244.655115][ T6040] usb 7-1: new high-speed USB device number 50 using dummy_hcd
[ 1244.805156][ T6040] usb 7-1: config index 0 descriptor too short (expected 9, got 0)
[ 1244.807637][ T6040] usb 7-1: can't read configurations, error -22
[ 1244.933334][ T6040] usb 7-1: new high-speed USB device number 51 using dummy_hcd
[ 1245.084751][ T6040] usb 7-1: config index 0 descriptor too short (expected 9, got 0)
[ 1245.087245][ T6040] usb 7-1: can't read configurations, error -22
[ 1245.089430][ T6040] usb usb7-port1: attempt power cycle
[ 1245.171640][   T12] bond0 (unregistering): Released all slaves
[ 1245.179480][   T12] bond1 (unregistering): Released all slaves
[ 1245.185658][   T12] bond2 (unregistering): Released all slaves
[ 1245.279290][   T12] bond3 (unregistering): Released all slaves
[ 1245.433620][ T6040] usb 7-1: new high-speed USB device number 52 using dummy_hcd
[ 1245.455203][ T6040] usb 7-1: config index 0 descriptor too short (expected 9, got 0)
[ 1245.457691][ T6040] usb 7-1: can't read configurations, error -22
[ 1245.513300][ T5965] Bluetooth: hci2: command tx timeout
[ 1245.584137][ T6040] usb 7-1: new high-speed USB device number 53 using dummy_hcd
[ 1245.607987][ T6040] usb 7-1: config index 0 descriptor too short (expected 9, got 0)
[ 1245.610655][ T6040] usb 7-1: can't read configurations, error -22
[ 1245.612779][ T6040] usb usb7-port1: unable to enumerate USB device
[ 1245.770933][T27885] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1245.805999][T27885] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1245.852212][T27885] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1245.858644][T27885] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1245.933071][T27885] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1245.953924][T27885] 8021q: adding VLAN 0 to HW filter on device team0
[ 1245.985798][   T12] hsr_slave_0: left promiscuous mode
[ 1246.067758][   T12] veth1_vlan: left promiscuous mode
[ 1246.713266][ T5965] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1246.863581][ T6025] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[ 1247.060882][ T6025] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1247.063936][ T6025] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1247.067301][ T6025] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1247.070383][ T6025] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1247.073967][ T6025] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1247.089937][ T6025] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1247.094284][ T6025] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1247.096736][ T6025] usb 9-1: Product: syz
[ 1247.098039][ T6025] usb 9-1: Manufacturer: syz
[ 1247.111184][ T6025] cdc_wdm 9-1:1.0: skipping garbage
[ 1247.112984][ T6025] cdc_wdm 9-1:1.0: skipping garbage
[ 1247.117429][ T6025] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[ 1247.119722][ T6025] cdc_wdm 9-1:1.0: Unknown control protocol
[ 1247.386120][T14334] usb 9-1: USB disconnect, device number 7
[ 1247.564672][T18234] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1247.567228][T18234] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1247.588953][T18235] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1247.591198][T18235] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1247.593267][ T5965] Bluetooth: hci2: command tx timeout
[ 1247.784659][T27885] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1247.863054][T28039] FAULT_INJECTION: forcing a failure.
[ 1247.863054][T28039] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1247.867442][T28039] CPU: 3 UID: 0 PID: 28039 Comm: syz.3.5902 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1247.867455][T28039] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1247.867462][T28039] Call Trace:
[ 1247.867467][T28039]  <TASK>
[ 1247.867471][T28039]  dump_stack_lvl+0x16c/0x1f0
[ 1247.867486][T28039]  should_fail_ex+0x512/0x640
[ 1247.867499][T28039]  __kvm_read_guest_page+0x186/0x250
[ 1247.867514][T28039]  kvm_fetch_guest_virt+0x128/0x1a0
[ 1247.867527][T28039]  __do_insn_fetch_bytes+0x41e/0x6d0
[ 1247.867544][T28039]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[ 1247.867560][T28039]  ? __pfx_kvm_tdp_mmu_map+0x10/0x10
[ 1247.867576][T28039]  x86_decode_insn+0xb90/0x5540
[ 1247.867594][T28039]  ? vmx_segment_cache_test_set+0x14b/0x400
[ 1247.867604][T28039]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1247.867620][T28039]  ? __pfx_x86_decode_insn+0x10/0x10
[ 1247.867632][T28039]  ? vmx_cache_reg+0x333/0x5e0
[ 1247.867645][T28039]  ? kvm_register_read_raw+0xe9/0x240
[ 1247.867657][T28039]  ? init_decode_cache+0xd/0x210
[ 1247.867669][T28039]  ? init_emulate_ctxt+0x337/0x510
[ 1247.867683][T28039]  ? __pfx_init_emulate_ctxt+0x10/0x10
[ 1247.867701][T28039]  x86_emulate_instruction+0x9b2/0x1a90
[ 1247.867718][T28039]  handle_ud+0x103/0x280
[ 1247.867729][T28039]  ? __pfx_handle_ud+0x10/0x10
[ 1247.867741][T28039]  ? __lock_acquire+0xb8a/0x1c90
[ 1247.867757][T28039]  ? __vmx_complete_interrupts+0x111/0x4e0
[ 1247.867770][T28039]  handle_exception_nmi+0x856/0x1750
[ 1247.867782][T28039]  ? __pfx_handle_exception_nmi+0x10/0x10
[ 1247.867793][T28039]  vmx_handle_exit+0x124c/0x1bd0
[ 1247.867806][T28039]  vcpu_run+0x315e/0x5500
[ 1247.867823][T28039]  ? __pfx_vcpu_run+0x10/0x10
[ 1247.867838][T28039]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[ 1247.867849][T28039]  ? __local_bh_enable_ip+0xa4/0x120
[ 1247.867864][T28039]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[ 1247.867877][T28039]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[ 1247.867893][T28039]  kvm_vcpu_ioctl+0x5eb/0x1690
[ 1247.867907][T28039]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1247.867920][T28039]  ? tomoyo_path_number_perm+0x18d/0x580
[ 1247.867936][T28039]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1247.867976][T28039]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1247.867994][T28039]  ? do_vfs_ioctl+0x523/0x1a60
[ 1247.868009][T28039]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1247.868034][T28039]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[ 1247.868048][T28039]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[ 1247.868060][T28039]  ? __fget_files+0x20e/0x3c0
[ 1247.868075][T28039]  ? __fput_deferred+0x480/0x480
[ 1247.868090][T28039]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[ 1247.868104][T28039]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1247.868119][T28039]  __do_fast_syscall_32+0x7c/0x3a0
[ 1247.868132][T28039]  do_fast_syscall_32+0x32/0x80
[ 1247.868143][T28039]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1247.868159][T28039] RIP: 0023:0xf7f57579
[ 1247.868172][T28039] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1247.868182][T28039] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1247.868192][T28039] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 000000000000ae80
[ 1247.868199][T28039] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1247.868205][T28039] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1247.868211][T28039] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1247.868217][T28039] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1247.868230][T28039]  </TASK>
[ 1247.993790][T28047] FAULT_INJECTION: forcing a failure.
[ 1247.993790][T28047] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1247.998803][T28047] CPU: 3 UID: 0 PID: 28047 Comm: syz.4.5903 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1247.998817][T28047] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1247.998824][T28047] Call Trace:
[ 1247.998828][T28047]  <TASK>
[ 1247.998833][T28047]  dump_stack_lvl+0x16c/0x1f0
[ 1247.998847][T28047]  should_fail_ex+0x512/0x640
[ 1247.998861][T28047]  _copy_from_user+0x2e/0xd0
[ 1247.998873][T28047]  copy_folio_from_user+0x118/0x2f0
[ 1247.998893][T28047]  mfill_atomic_copy+0x1993/0x1cd0
[ 1247.998913][T28047]  ? __pfx_mfill_atomic_copy+0x10/0x10
[ 1247.998930][T28047]  userfaultfd_ioctl+0x236c/0x38e0
[ 1247.998944][T28047]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1247.998960][T28047]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[ 1247.998980][T28047]  ? find_held_lock+0x2b/0x80
[ 1247.998991][T28047]  ? hook_file_ioctl_common+0x145/0x410
[ 1247.999008][T28047]  ? __fget_files+0x20e/0x3c0
[ 1247.999022][T28047]  ? __fput_deferred+0x480/0x480
[ 1247.999035][T28047]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[ 1247.999049][T28047]  ? compat_ptr_ioctl+0x6e/0xa0
[ 1247.999061][T28047]  compat_ptr_ioctl+0x6e/0xa0
[ 1247.999073][T28047]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[ 1247.999086][T28047]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1247.999102][T28047]  __do_fast_syscall_32+0x7c/0x3a0
[ 1247.999114][T28047]  do_fast_syscall_32+0x32/0x80
[ 1247.999125][T28047]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1247.999138][T28047] RIP: 0023:0xf7f92579
[ 1247.999151][T28047] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1247.999161][T28047] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1247.999171][T28047] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa03
[ 1247.999178][T28047] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[ 1247.999184][T28047] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1247.999190][T28047] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1247.999196][T28047] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1247.999209][T28047]  </TASK>
[ 1248.103962][T27885] veth0_vlan: entered promiscuous mode
[ 1248.108844][T27885] veth1_vlan: entered promiscuous mode
[ 1248.161142][T27885] veth0_macvtap: entered promiscuous mode
[ 1248.174715][T27885] veth1_macvtap: entered promiscuous mode
[ 1248.188055][T27885] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1248.192550][T27885] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1248.197597][T27885] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1248.201901][T27885] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1248.205051][T27885] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1248.207809][T27885] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1248.254879][T18229] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1248.258004][T18229] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1248.272176][T18229] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1248.275027][T18229] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1248.384187][T28059] FAULT_INJECTION: forcing a failure.
[ 1248.384187][T28059] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1248.388954][T28059] CPU: 2 UID: 0 PID: 28059 Comm: syz.5.5874 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1248.388968][T28059] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1248.388975][T28059] Call Trace:
[ 1248.388979][T28059]  <TASK>
[ 1248.388984][T28059]  dump_stack_lvl+0x16c/0x1f0
[ 1248.389009][T28059]  should_fail_ex+0x512/0x640
[ 1248.389023][T28059]  should_fail_alloc_page+0xe7/0x130
[ 1248.389037][T28059]  prepare_alloc_pages+0x3c2/0x610
[ 1248.389051][T28059]  ? rcu_is_watching+0x12/0xc0
[ 1248.389064][T28059]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1248.389078][T28059]  ? __lock_acquire+0x622/0x1c90
[ 1248.389095][T28059]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1248.389105][T28059]  ? __lock_acquire+0x622/0x1c90
[ 1248.389124][T28059]  ? __lock_acquire+0x622/0x1c90
[ 1248.389139][T28059]  ? __lock_acquire+0x622/0x1c90
[ 1248.389152][T28059]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1248.389173][T28059]  ? policy_nodemask+0xea/0x4e0
[ 1248.389187][T28059]  alloc_pages_mpol+0x1fb/0x550
[ 1248.389199][T28059]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1248.389215][T28059]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1248.389230][T28059]  vma_alloc_folio_noprof+0xed/0x1e0
[ 1248.389244][T28059]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1248.389258][T28059]  ? rcu_read_unlock+0x2d/0xb0
[ 1248.389271][T28059]  do_wp_page+0x1136/0x4f20
[ 1248.389288][T28059]  ? __pfx_do_wp_page+0x10/0x10
[ 1248.389302][T28059]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1248.389322][T28059]  __handle_mm_fault+0x2223/0x5490
[ 1248.389342][T28059]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1248.389356][T28059]  ? __pfx_mt_find+0x10/0x10
[ 1248.389375][T28059]  ? find_vma+0xbf/0x140
[ 1248.389387][T28059]  ? __pfx_find_vma+0x10/0x10
[ 1248.389401][T28059]  handle_mm_fault+0x589/0xd10
[ 1248.389417][T28059]  ? __pkru_allows_pkey+0x51/0xb0
[ 1248.389432][T28059]  do_user_addr_fault+0x7a6/0x1370
[ 1248.389448][T28059]  ? rcu_is_watching+0x12/0xc0
[ 1248.389460][T28059]  exc_page_fault+0x5c/0xb0
[ 1248.389477][T28059]  asm_exc_page_fault+0x26/0x30
[ 1248.389487][T28059] RIP: 0010:_copy_to_iter+0x37e/0x16f0
[ 1248.389499][T28059] Code: fc 4d 85 f6 0f 85 52 ff ff ff e8 6d 63 e5 fc 4c 8b 74 24 18 89 de 4c 89 f7 e8 0e c6 49 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 f6 <f3> a4 0f 1f 00 48 89 cd 0f 01 ca 49 89 df 49 29 cf e9 22 ff ff ff
[ 1248.389510][T28059] RSP: 0018:ffffc9000384f948 EFLAGS: 00050246
[ 1248.389519][T28059] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000000500
[ 1248.389525][T28059] RDX: 0000000000000000 RSI: ffff888064f12b00 RDI: 0000000080005000
[ 1248.389532][T28059] RBP: 0000000080004500 R08: 0000000000000000 R09: ffffed100c9e25ff
[ 1248.389538][T28059] R10: ffff888064f12fff R11: 0000000000000000 R12: ffffc9000384fc68
[ 1248.389544][T28059] R13: 0000000080005500 R14: ffff888064f12000 R15: 00007ffffffff000
[ 1248.389558][T28059]  ? _copy_to_iter+0x372/0x16f0
[ 1248.389571][T28059]  ? do_raw_spin_unlock+0x172/0x230
[ 1248.389587][T28059]  ? _raw_spin_unlock+0x28/0x50
[ 1248.389602][T28059]  ? __pfx__copy_to_iter+0x10/0x10
[ 1248.389617][T28059]  ? __folio_put+0x32e/0x450
[ 1248.389630][T28059]  copy_page_to_iter+0x12a/0x1e0
[ 1248.389644][T28059]  pipe_to_user+0xb0/0x170
[ 1248.389659][T28059]  ? anon_pipe_buf_release+0x3ed/0x500
[ 1248.389671][T28059]  __splice_from_pipe+0x39a/0x800
[ 1248.389688][T28059]  ? __pfx_pipe_to_user+0x10/0x10
[ 1248.389705][T28059]  __do_sys_vmsplice+0x716/0x1180
[ 1248.389724][T28059]  ? __pfx___do_sys_vmsplice+0x10/0x10
[ 1248.389742][T28059]  ? get_pid_task+0x106/0x250
[ 1248.389757][T28059]  ? find_held_lock+0x2b/0x80
[ 1248.389771][T28059]  ? find_held_lock+0x2b/0x80
[ 1248.389790][T28059]  ? __fget_files+0x20e/0x3c0
[ 1248.389805][T28059]  ? handle_mm_fault+0x250/0xd10
[ 1248.389822][T28059]  ? fput+0x70/0xf0
[ 1248.389834][T28059]  ? ksys_write+0x1ac/0x250
[ 1248.389843][T28059]  ? __pfx_ksys_write+0x10/0x10
[ 1248.389856][T28059]  ? __do_fast_syscall_32+0x7c/0x3a0
[ 1248.389867][T28059]  __do_fast_syscall_32+0x7c/0x3a0
[ 1248.389879][T28059]  do_fast_syscall_32+0x32/0x80
[ 1248.389890][T28059]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1248.389903][T28059] RIP: 0023:0xf705e579
[ 1248.389911][T28059] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1248.389921][T28059] RSP: 002b:00000000f502d55c EFLAGS: 00000296 ORIG_RAX: 000000000000013c
[ 1248.389930][T28059] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[ 1248.389936][T28059] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[ 1248.389942][T28059] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1248.389948][T28059] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1248.389954][T28059] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1248.389968][T28059]  </TASK>
[ 1248.408246][T28058] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1248.624488][T28065] afs: Unknown parameter 'dy�!'
[ 1248.877625][T28069] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1249.673219][ T5965] Bluetooth: hci2: command tx timeout
[ 1250.172569][T28085] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5912'.
[ 1250.182178][T28085] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1250.185951][T28085] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1250.189257][T28085] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1250.192671][T28085] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1250.330425][T28085] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1250.333304][T28085] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1250.336052][T28085] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1250.338791][T28085] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1250.450724][T28089] vivid-000: disconnect
[ 1250.453727][T28088] vivid-000: reconnect
[ 1250.504809][T28090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5914'.
[ 1250.521342][T28090] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1250.523953][T28090] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1250.527017][T28090] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1250.530001][T28090] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1250.542151][T28090] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1250.545117][T28090] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1250.548890][T28090] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1250.552676][T28090] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1250.627852][T28095] FAULT_INJECTION: forcing a failure.
[ 1250.627852][T28095] name failslab, interval 1, probability 0, space 0, times 0
[ 1250.631700][T28095] CPU: 3 UID: 0 PID: 28095 Comm: syz.2.5916 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1250.631714][T28095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1250.631720][T28095] Call Trace:
[ 1250.631724][T28095]  <TASK>
[ 1250.631729][T28095]  dump_stack_lvl+0x16c/0x1f0
[ 1250.631743][T28095]  should_fail_ex+0x512/0x640
[ 1250.631754][T28095]  ? fs_reclaim_acquire+0xae/0x150
[ 1250.631769][T28095]  ? tomoyo_encode2+0x100/0x3e0
[ 1250.631779][T28095]  should_failslab+0xc2/0x120
[ 1250.631791][T28095]  __kmalloc_noprof+0xd2/0x510
[ 1250.631801][T28095]  ? d_absolute_path+0x136/0x1a0
[ 1250.631817][T28095]  tomoyo_encode2+0x100/0x3e0
[ 1250.631828][T28095]  tomoyo_encode+0x29/0x50
[ 1250.631837][T28095]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1250.631851][T28095]  tomoyo_path_number_perm+0x245/0x580
[ 1250.631865][T28095]  ? tomoyo_path_number_perm+0x237/0x580
[ 1250.631881][T28095]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1250.631909][T28095]  ? find_held_lock+0x2b/0x80
[ 1250.631936][T28095]  ? hook_file_ioctl_common+0x145/0x410
[ 1250.631954][T28095]  ? __fget_files+0x20e/0x3c0
[ 1250.631970][T28095]  ? __fput_deferred+0x480/0x480
[ 1250.631985][T28095]  security_file_ioctl_compat+0x9b/0x240
[ 1250.632001][T28095]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1250.632017][T28095]  __do_fast_syscall_32+0x7c/0x3a0
[ 1250.632030][T28095]  do_fast_syscall_32+0x32/0x80
[ 1250.632041][T28095]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1250.632054][T28095] RIP: 0023:0xf7f55579
[ 1250.632062][T28095] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1250.632072][T28095] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1250.632083][T28095] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000c008561c
[ 1250.632089][T28095] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1250.632095][T28095] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1250.632101][T28095] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1250.632107][T28095] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1250.632120][T28095]  </TASK>
[ 1250.713444][T28095] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1250.716055][T28095] vivid-000: disconnect
[ 1250.721256][T28094] vivid-000: reconnect
[ 1250.821969][   T40] kauditd_printk_skb: 59 callbacks suppressed
[ 1250.821978][   T40] audit: type=1326 audit(1753159810.497:3648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.837692][   T40] audit: type=1326 audit(1753159810.507:3649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.844559][   T40] audit: type=1326 audit(1753159810.507:3650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.852632][   T40] audit: type=1326 audit(1753159810.517:3651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.859986][   T40] audit: type=1326 audit(1753159810.517:3652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.866682][   T40] audit: type=1326 audit(1753159810.517:3653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.873654][   T40] audit: type=1326 audit(1753159810.517:3654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.881084][   T40] audit: type=1326 audit(1753159810.517:3655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.888023][   T40] audit: type=1326 audit(1753159810.527:3656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1250.896005][   T40] audit: type=1326 audit(1753159810.527:3657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28103 comm="syz.5.5918" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[ 1251.640920][T28114] netlink: 'syz.3.5920': attribute type 1 has an invalid length.
[ 1251.701147][T28115] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5920'.
[ 1251.739013][T28114] bond2: entered promiscuous mode
[ 1251.740818][T28114] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1252.080368][T28122] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5921'.
[ 1252.089666][T28122] futex_wake_op: syz.4.5921 tries to shift op by -1; fix this program
[ 1252.109092][T28125] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5923'.
[ 1252.333819][T28130] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5925'.
[ 1252.337001][T28130] futex_wake_op: syz.3.5925 tries to shift op by -1; fix this program
[ 1252.354676][T28131] tmpfs: Unknown parameter 'grpquKta_block_hardlim'
[ 1253.553221][ T6040] usb 7-1: new full-speed USB device number 54 using dummy_hcd
[ 1253.735368][ T6040] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1253.738414][ T6040] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1253.742557][ T6040] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1253.746010][ T6040] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1254.006491][ T6040] usb 7-1: usb_control_msg returned -32
[ 1254.009086][ T6040] usbtmc 7-1:16.0: can't read capabilities
[ 1255.102646][T28170] orangefs_mount: mount request failed with -4
[ 1255.136817][T28179] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5936'.
[ 1255.140055][T28179] futex_wake_op: syz.5.5936 tries to shift op by -1; fix this program
[ 1255.427605][T28189] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1256.315485][ T6014] usb 7-1: USB disconnect, device number 54
[ 1256.405548][T28201] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5943'.
[ 1256.618638][T28207] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1257.275886][T28211] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1257.496251][T28216] netlink: 'syz.3.5949': attribute type 1 has an invalid length.
[ 1257.507659][T28216] bond3: entered promiscuous mode
[ 1257.509516][T28216] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1257.613054][T28220] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1257.650619][T28216] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5949'.
[ 1258.599105][   T40] kauditd_printk_skb: 19 callbacks suppressed
[ 1258.599117][   T40] audit: type=1326 audit(1753159818.277:3677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.638985][   T40] audit: type=1326 audit(1753159818.277:3678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=314 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.646727][   T40] audit: type=1326 audit(1753159818.277:3679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.657915][   T40] audit: type=1326 audit(1753159818.287:3680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.671948][   T40] audit: type=1326 audit(1753159818.287:3681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.683243][   T40] audit: type=1326 audit(1753159818.287:3682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.689906][   T40] audit: type=1326 audit(1753159818.287:3683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.696570][   T40] audit: type=1326 audit(1753159818.287:3684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.703072][   T40] audit: type=1326 audit(1753159818.287:3685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.709978][   T40] audit: type=1326 audit(1753159818.287:3686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28221 comm="syz.2.5951" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f55579 code=0x7ffc0000
[ 1258.810079][T28231] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5954'.
[ 1258.813482][T28231] futex_wake_op: syz.5.5954 tries to shift op by -1; fix this program
[ 1258.895294][T28234] 9pnet_fd: Insufficient options for proto=fd
[ 1259.121662][T28246] FAULT_INJECTION: forcing a failure.
[ 1259.121662][T28246] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1259.125940][T28246] CPU: 1 UID: 0 PID: 28246 Comm: syz.5.5956 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1259.125965][T28246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1259.125972][T28246] Call Trace:
[ 1259.125976][T28246]  <TASK>
[ 1259.125980][T28246]  dump_stack_lvl+0x16c/0x1f0
[ 1259.125995][T28246]  should_fail_ex+0x512/0x640
[ 1259.126009][T28246]  _copy_to_user+0x32/0xd0
[ 1259.126021][T28246]  drm_ioctl+0x5eb/0xc30
[ 1259.126035][T28246]  ? __pfx_drm_set_client_name+0x10/0x10
[ 1259.126047][T28246]  ? __pfx_drm_ioctl+0x10/0x10
[ 1259.126069][T28246]  drm_compat_ioctl+0x327/0x460
[ 1259.126088][T28246]  ? __pfx_drm_compat_ioctl+0x10/0x10
[ 1259.126103][T28246]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1259.126119][T28246]  __do_fast_syscall_32+0x7c/0x3a0
[ 1259.126132][T28246]  do_fast_syscall_32+0x32/0x80
[ 1259.126143][T28246]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1259.126156][T28246] RIP: 0023:0xf705e579
[ 1259.126165][T28246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1259.126175][T28246] RSP: 002b:00000000f500c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1259.126186][T28246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c06864d1
[ 1259.126192][T28246] RDX: 0000000080000600 RSI: 0000000000000000 RDI: 0000000000000000
[ 1259.126198][T28246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1259.126204][T28246] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1259.126210][T28246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1259.126223][T28246]  </TASK>
[ 1259.183104][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1259.366883][T28243] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1260.169451][T28264] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5958'.
[ 1261.677025][T28290] FAULT_INJECTION: forcing a failure.
[ 1261.677025][T28290] name failslab, interval 1, probability 0, space 0, times 0
[ 1261.681100][T28290] CPU: 0 UID: 0 PID: 28290 Comm: syz.5.5967 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1261.681114][T28290] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1261.681121][T28290] Call Trace:
[ 1261.681125][T28290]  <TASK>
[ 1261.681130][T28290]  dump_stack_lvl+0x16c/0x1f0
[ 1261.681144][T28290]  should_fail_ex+0x512/0x640
[ 1261.681158][T28290]  should_failslab+0xc2/0x120
[ 1261.681171][T28290]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1261.681182][T28290]  ? skb_clone+0x190/0x3f0
[ 1261.681196][T28290]  skb_clone+0x190/0x3f0
[ 1261.681207][T28290]  netlink_deliver_tap+0xabd/0xd30
[ 1261.681223][T28290]  netlink_dump+0x85e/0xd00
[ 1261.681235][T28290]  ? __pfx_netlink_dump+0x10/0x10
[ 1261.681256][T28290]  __netlink_dump_start+0x6d6/0x990
[ 1261.681269][T28290]  ? __pfx_tc_dump_tfilter+0x10/0x10
[ 1261.681283][T28290]  rtnetlink_rcv_msg+0xb3e/0xe90
[ 1261.681294][T28290]  ? __pfx_tc_dump_tfilter+0x10/0x10
[ 1261.681307][T28290]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1261.681321][T28290]  ? __pfx_rtnl_dumpit+0x10/0x10
[ 1261.681335][T28290]  ? __pfx_tc_dump_tfilter+0x10/0x10
[ 1261.681349][T28290]  ? ref_tracker_free+0x37c/0x830
[ 1261.681362][T28290]  netlink_rcv_skb+0x155/0x420
[ 1261.681374][T28290]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1261.681387][T28290]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1261.681404][T28290]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1261.681419][T28290]  netlink_unicast+0x58d/0x850
[ 1261.681434][T28290]  ? __pfx_netlink_unicast+0x10/0x10
[ 1261.681450][T28290]  netlink_sendmsg+0x8d1/0xdd0
[ 1261.681465][T28290]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1261.681478][T28290]  ? __import_iovec+0x1dd/0x650
[ 1261.681493][T28290]  ____sys_sendmsg+0xa98/0xc70
[ 1261.681507][T28290]  ? gfs2_fileattr_set+0x690/0xae0
[ 1261.681520][T28290]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1261.681533][T28290]  ? get_compat_msghdr+0x11a/0x170
[ 1261.681550][T28290]  ___sys_sendmsg+0x134/0x1d0
[ 1261.681562][T28290]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1261.681579][T28290]  ? find_held_lock+0x2b/0x80
[ 1261.681599][T28290]  __sys_sendmsg+0x16d/0x220
[ 1261.681610][T28290]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1261.681626][T28290]  ? rcu_is_watching+0x12/0xc0
[ 1261.681639][T28290]  __do_fast_syscall_32+0x7c/0x3a0
[ 1261.681652][T28290]  do_fast_syscall_32+0x32/0x80
[ 1261.681663][T28290]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1261.681676][T28290] RIP: 0023:0xf705e579
[ 1261.681685][T28290] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1261.681696][T28290] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1261.681706][T28290] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[ 1261.681712][T28290] RDX: 0000000004041080 RSI: 0000000000000000 RDI: 0000000000000000
[ 1261.681719][T28290] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1261.681725][T28290] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1261.681731][T28290] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1261.681744][T28290]  </TASK>
[ 1261.847101][T28279] orangefs_mount: mount request failed with -4
[ 1262.073488][T28311] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5975'.
[ 1262.076530][T28311] futex_wake_op: syz.4.5975 tries to shift op by -1; fix this program
[ 1262.888886][T28342] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[ 1262.897264][T28342] ptm ptm5: ldisc open failed (-12), clearing slot 5
[ 1263.166260][T28351] FAULT_INJECTION: forcing a failure.
[ 1263.166260][T28351] name failslab, interval 1, probability 0, space 0, times 0
[ 1263.170753][T28351] CPU: 1 UID: 0 PID: 28351 Comm: syz.5.5984 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1263.170778][T28351] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1263.170785][T28351] Call Trace:
[ 1263.170789][T28351]  <TASK>
[ 1263.170793][T28351]  dump_stack_lvl+0x16c/0x1f0
[ 1263.170808][T28351]  should_fail_ex+0x512/0x640
[ 1263.170819][T28351]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1263.170837][T28351]  should_failslab+0xc2/0x120
[ 1263.170850][T28351]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1263.170865][T28351]  ? __genradix_ptr_alloc+0x340/0x5f0
[ 1263.170877][T28351]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1263.170886][T28351]  ? sctp_auth_shkey_create+0x9e/0x210
[ 1263.170901][T28351]  sctp_auth_shkey_create+0x9e/0x210
[ 1263.170914][T28351]  sctp_auth_asoc_copy_shkeys+0x1f2/0x360
[ 1263.170929][T28351]  sctp_association_new+0x19ad/0x2a00
[ 1263.170948][T28351]  sctp_connect_new_asoc+0x1b6/0x790
[ 1263.170963][T28351]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1263.170979][T28351]  ? __rcu_read_unlock+0x2b4/0x580
[ 1263.170995][T28351]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[ 1263.171011][T28351]  sctp_sendmsg+0x15f9/0x1ee0
[ 1263.171024][T28351]  ? rcu_is_watching+0x12/0xc0
[ 1263.171039][T28351]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1263.171059][T28351]  ? __pfx___might_resched+0x10/0x10
[ 1263.171075][T28351]  ? __might_fault+0xe3/0x190
[ 1263.171086][T28351]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1263.171103][T28351]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1263.171118][T28351]  inet_sendmsg+0x11c/0x140
[ 1263.171134][T28351]  __sys_sendto+0x43c/0x520
[ 1263.171151][T28351]  ? __pfx___sys_sendto+0x10/0x10
[ 1263.171179][T28351]  ? ksys_write+0x1ac/0x250
[ 1263.171192][T28351]  __ia32_sys_sendto+0xdd/0x1b0
[ 1263.171207][T28351]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1263.171216][T28351]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1263.171228][T28351]  __do_fast_syscall_32+0x7c/0x3a0
[ 1263.171240][T28351]  do_fast_syscall_32+0x32/0x80
[ 1263.171251][T28351]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1263.171264][T28351] RIP: 0023:0xf705e579
[ 1263.171273][T28351] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1263.171283][T28351] RSP: 002b:00000000f500c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1263.171293][T28351] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080847fff
[ 1263.171300][T28351] RDX: 000000000000fee4 RSI: 0000000000000000 RDI: 000000008005ffe4
[ 1263.171306][T28351] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1263.171312][T28351] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1263.171319][T28351] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1263.171332][T28351]  </TASK>
[ 1263.257222][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1263.654032][T28356] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1264.643692][T28359] orangefs_mount: mount request failed with -4
[ 1264.712974][T28374] FAULT_INJECTION: forcing a failure.
[ 1264.712974][T28374] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1264.717664][T28374] CPU: 2 UID: 0 PID: 28374 Comm: syz.3.5992 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1264.717678][T28374] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1264.717685][T28374] Call Trace:
[ 1264.717689][T28374]  <TASK>
[ 1264.717694][T28374]  dump_stack_lvl+0x16c/0x1f0
[ 1264.717708][T28374]  should_fail_ex+0x512/0x640
[ 1264.717721][T28374]  _copy_to_user+0x32/0xd0
[ 1264.717734][T28374]  simple_read_from_buffer+0xcb/0x170
[ 1264.717751][T28374]  proc_fail_nth_read+0x197/0x270
[ 1264.717766][T28374]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1264.717781][T28374]  ? rw_verify_area+0xcf/0x680
[ 1264.717796][T28374]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1264.717810][T28374]  vfs_read+0x1e4/0xc60
[ 1264.717820][T28374]  ? fdget_pos+0x2a2/0x370
[ 1264.717832][T28374]  ? __pfx_vfs_read+0x10/0x10
[ 1264.717840][T28374]  ? find_held_lock+0x2b/0x80
[ 1264.717854][T28374]  ? __fget_files+0x20e/0x3c0
[ 1264.717874][T28374]  ksys_read+0x12a/0x250
[ 1264.717883][T28374]  ? __pfx_ksys_read+0x10/0x10
[ 1264.717894][T28374]  ? rcu_is_watching+0x12/0xc0
[ 1264.717907][T28374]  __do_fast_syscall_32+0x7c/0x3a0
[ 1264.717919][T28374]  do_fast_syscall_32+0x32/0x80
[ 1264.717930][T28374]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1264.717943][T28374] RIP: 0023:0xf7f57579
[ 1264.717952][T28374] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1264.717962][T28374] RSP: 002b:00000000f5076590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1264.717972][T28374] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5076620
[ 1264.717979][T28374] RDX: 000000000000000f RSI: 00000000f73e4ff4 RDI: 0000000000000000
[ 1264.717985][T28374] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1264.717991][T28374] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1264.717997][T28374] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1264.718010][T28374]  </TASK>
[ 1264.903468][  T838] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[ 1264.944189][T28388] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5995'.
[ 1264.947404][T28388] futex_wake_op: syz.3.5995 tries to shift op by -1; fix this program
[ 1265.074284][  T838] usb 10-1: too many configurations: 9, using maximum allowed: 8
[ 1265.078665][  T838] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1265.081512][  T838] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1265.085180][  T838] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1265.089176][  T838] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1265.092268][  T838] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1265.228732][T28393] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1265.372434][  T838] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1265.391369][  T838] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1265.394214][  T838] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1265.397531][  T838] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1265.401300][  T838] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1265.404360][  T838] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1265.407423][  T838] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1265.410434][  T838] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1265.413517][  T838] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1265.417036][  T838] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1265.419922][  T838] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1265.422706][  T838] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1265.426315][  T838] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1265.429382][  T838] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1265.432151][  T838] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1265.435755][  T838] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1265.438920][  T838] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1265.441734][  T838] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1265.445259][  T838] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1265.449596][  T838] usb 10-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[ 1265.452432][  T838] usb 10-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[ 1265.455247][  T838] usb 10-1: Product: syz
[ 1265.456606][  T838] usb 10-1: Manufacturer: syz
[ 1265.458085][  T838] usb 10-1: SerialNumber: syz
[ 1265.460941][  T838] usb 10-1: config 0 descriptor??
[ 1265.466805][  T838] yurex 10-1:0.0: USB YUREX device now attached to Yurex #0
[ 1265.730423][T28396] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1265.753917][T28396] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1265.762448][T28397] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1266.178603][T28401] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5998'.
[ 1266.209134][ T6014] usb 10-1: USB disconnect, device number 12
[ 1266.213904][ T6014] yurex 10-1:0.0: USB YUREX #0 now disconnected
[ 1266.228070][T28403] netlink: 'syz.5.6000': attribute type 4 has an invalid length.
[ 1266.234326][T28404] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5998'.
[ 1266.609642][T28417] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6002'.
[ 1266.838356][T28420] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6004'.
[ 1266.842326][T28420] futex_wake_op: syz.2.6004 tries to shift op by -1; fix this program
[ 1267.064797][T28422] binder: 28421:28422 ioctl c0306201 80000780 returned -14
[ 1267.193807][T28411] orangefs_mount: mount request failed with -4
[ 1267.423269][T28440] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6012'.
[ 1267.953451][T28450] binder: 28449:28450 ioctl c0306201 80000080 returned -14
[ 1267.999527][T28452] random: crng reseeded on system resumption
[ 1268.067784][T28453] batman_adv: batadv0: Adding interface: ip6gretap1
[ 1268.069925][T28453] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1268.085122][T28453] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[ 1268.186413][T28455] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[ 1268.188490][T28455] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1268.191060][T28455] vhci_hcd vhci_hcd.0: Device attached
[ 1268.255367][T28459] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6016'.
[ 1268.369308][T28462] block device autoloading is deprecated and will be removed.
[ 1268.372537][T28462] syz.5.6013: attempt to access beyond end of device
[ 1268.372537][T28462] md0: rw=2048, sector=3656, nr_sectors = 8 limit=0
[ 1268.433239][ T6408] usb 41-1: new high-speed USB device number 9 using vhci_hcd
[ 1268.433656][T28467] FAULT_INJECTION: forcing a failure.
[ 1268.433656][T28467] name failslab, interval 1, probability 0, space 0, times 0
[ 1268.439626][T28467] CPU: 0 UID: 0 PID: 28467 Comm: syz.4.6020 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1268.439640][T28467] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1268.439647][T28467] Call Trace:
[ 1268.439651][T28467]  <TASK>
[ 1268.439656][T28467]  dump_stack_lvl+0x16c/0x1f0
[ 1268.439670][T28467]  should_fail_ex+0x512/0x640
[ 1268.439681][T28467]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1268.439694][T28467]  should_failslab+0xc2/0x120
[ 1268.439706][T28467]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1268.439717][T28467]  ? skb_clone+0x190/0x3f0
[ 1268.439730][T28467]  skb_clone+0x190/0x3f0
[ 1268.439741][T28467]  nfnetlink_rcv_batch+0x1cf/0x2330
[ 1268.439777][T28467]  ? consume_skb+0xcc/0x100
[ 1268.439791][T28467]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[ 1268.439806][T28467]  ? __local_bh_enable_ip+0xa4/0x120
[ 1268.439819][T28467]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1268.439828][T28467]  ? __dev_queue_xmit+0x896/0x43e0
[ 1268.439843][T28467]  ? __local_bh_enable_ip+0xa4/0x120
[ 1268.439853][T28467]  ? __dev_queue_xmit+0x896/0x43e0
[ 1268.439868][T28467]  ? __dev_queue_xmit+0x8b7/0x43e0
[ 1268.439887][T28467]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1268.439903][T28467]  ? __asan_memset+0x23/0x50
[ 1268.439918][T28467]  ? __nla_validate_parse+0x600/0x2880
[ 1268.439932][T28467]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 1268.439946][T28467]  ? rcu_is_watching+0x12/0xc0
[ 1268.439957][T28467]  ? __pfx___nla_validate_parse+0x10/0x10
[ 1268.439972][T28467]  ? apparmor_capable+0x114/0x1d0
[ 1268.439987][T28467]  ? __nla_parse+0x40/0x60
[ 1268.440004][T28467]  nfnetlink_rcv+0x3c1/0x430
[ 1268.440021][T28467]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 1268.440038][T28467]  netlink_unicast+0x58d/0x850
[ 1268.440053][T28467]  ? __pfx_netlink_unicast+0x10/0x10
[ 1268.440069][T28467]  netlink_sendmsg+0x8d1/0xdd0
[ 1268.440083][T28467]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1268.440097][T28467]  ? __import_iovec+0x1dd/0x650
[ 1268.440111][T28467]  ____sys_sendmsg+0xa98/0xc70
[ 1268.440127][T28467]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1268.440150][T28467]  ? get_compat_msghdr+0x11a/0x170
[ 1268.440169][T28467]  ___sys_sendmsg+0x134/0x1d0
[ 1268.440181][T28467]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1268.440198][T28467]  ? find_held_lock+0x2b/0x80
[ 1268.440217][T28467]  __sys_sendmsg+0x16d/0x220
[ 1268.440228][T28467]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1268.440244][T28467]  ? rcu_is_watching+0x12/0xc0
[ 1268.440257][T28467]  __do_fast_syscall_32+0x7c/0x3a0
[ 1268.440269][T28467]  do_fast_syscall_32+0x32/0x80
[ 1268.440280][T28467]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1268.440293][T28467] RIP: 0023:0xf7f92579
[ 1268.440301][T28467] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1268.440311][T28467] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1268.440322][T28467] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[ 1268.440328][T28467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1268.440334][T28467] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1268.440341][T28467] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1268.440347][T28467] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1268.440360][T28467]  </TASK>
[ 1269.113275][ T5951] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[ 1269.264333][ T5951] usb 10-1: too many configurations: 178, using maximum allowed: 8
[ 1269.291701][ T5951] usb 10-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1269.295284][ T5951] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1269.297858][ T5951] usb 10-1: Product: syz
[ 1269.299185][ T5951] usb 10-1: Manufacturer: syz
[ 1269.300758][ T5951] usb 10-1: SerialNumber: syz
[ 1269.309049][ T5951] usb 10-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1269.372525][  T838] usb 10-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1270.069846][T28456] vhci_hcd: connection reset by peer
[ 1270.071571][T18232] vhci_hcd: stop threads
[ 1270.072934][T18232] vhci_hcd: release socket
[ 1270.083529][T18232] vhci_hcd: disconnect device
[ 1270.420801][  T838] ath9k_htc 10-1:1.0: ath9k_htc: Target is unresponsive
[ 1270.423834][  T838] ath9k_htc: Failed to initialize the device
[ 1270.446900][  T838] usb 10-1: ath9k_htc: USB layer deinitialized
[ 1270.558718][T28495] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6028'.
[ 1270.614273][   T40] kauditd_printk_skb: 51 callbacks suppressed
[ 1270.614284][   T40] audit: type=1804 audit(1753159830.297:3738): pid=28502 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.6029" name="/newroot/350/file0/file0" dev="9p" ino=35913879 res=1 errno=0
[ 1270.626655][T28502] tmpfs: Unknown parameter 'grpquota 0
[ 1270.626655][T28502] '
[ 1271.193414][ T5951] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[ 1271.353316][ T5951] usb 9-1: Using ep0 maxpacket: 8
[ 1271.358217][ T5951] usb 9-1: config 1 has an invalid interface number: 162 but max is 1
[ 1271.360895][ T5951] usb 9-1: config 1 has an invalid interface number: 84 but max is 1
[ 1271.364029][ T5951] usb 9-1: config 1 has an invalid interface number: 5 but max is 1
[ 1271.366763][ T5951] usb 9-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1271.369716][ T5951] usb 9-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1271.372654][ T5951] usb 9-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1271.375924][ T5951] usb 9-1: config 1 has an invalid descriptor of length 12, skipping remainder of the config
[ 1271.379415][ T5951] usb 9-1: config 1 has 3 interfaces, different from the descriptor's value: 2
[ 1271.382448][ T5951] usb 9-1: config 1 has no interface number 0
[ 1271.384628][ T5951] usb 9-1: config 1 has no interface number 1
[ 1271.386641][ T5951] usb 9-1: config 1 has no interface number 2
[ 1271.388736][ T5951] usb 9-1: config 1 interface 162 altsetting 0 has an endpoint descriptor with address 0xF9, changing to 0x89
[ 1271.392586][ T5951] usb 9-1: config 1 interface 162 altsetting 0 endpoint 0x89 has invalid maxpacket 6011, setting to 64
[ 1271.396225][ T5951] usb 9-1: config 1 interface 162 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1271.400442][ T5951] usb 9-1: config 1 interface 84 altsetting 46 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1271.404838][ T5951] usb 9-1: too many endpoints for config 1 interface 5 altsetting 155: 107, using maximum allowed: 30
[ 1271.408414][ T5951] usb 9-1: config 1 interface 5 altsetting 155 has 0 endpoint descriptors, different from the interface descriptor's value: 107
[ 1271.412462][ T5951] usb 9-1: config 1 interface 84 has no altsetting 0
[ 1271.414827][ T5951] usb 9-1: config 1 interface 5 has no altsetting 0
[ 1271.418869][ T5951] usb 9-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=42.76
[ 1271.421987][ T5951] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1271.424748][ T5951] usb 9-1: Manufacturer: 㐉
[ 1271.426291][ T5951] usb 9-1: SerialNumber: syz
[ 1271.663841][ T5951] usb 9-1: probing VID:PID(0424:012C)   
[ 1271.667210][ T5951] usb 9-1: vub300 testing UNKNOWN EndPoint(0) 89
[ 1271.669283][ T5951] usb 9-1: vub300 ignoring EndPoint(0) 89
[ 1271.671106][ T5951] usb 9-1: vub300 testing UNKNOWN EndPoint(1) 0C
[ 1271.673329][ T5951] usb 9-1: vub300 ignoring EndPoint(1) 0C
[ 1271.675817][ T5951] usb 9-1: Could not find two sets of bulk-in/out endpoint pairs
[ 1271.685347][T28527] FAULT_INJECTION: forcing a failure.
[ 1271.685347][T28527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1271.690551][T28527] CPU: 2 UID: 0 PID: 28527 Comm: syz.4.6036 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1271.690572][T28527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1271.690583][T28527] Call Trace:
[ 1271.690591][T28527]  <TASK>
[ 1271.690598][T28527]  dump_stack_lvl+0x16c/0x1f0
[ 1271.690621][T28527]  should_fail_ex+0x512/0x640
[ 1271.690643][T28527]  _copy_to_user+0x32/0xd0
[ 1271.690665][T28527]  bpf_test_finish.isra.0+0x4b4/0x6e0
[ 1271.690686][T28527]  ? __pfx___static_call_update+0x10/0x10
[ 1271.690710][T28527]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[ 1271.690733][T28527]  ? 0xffffffffa0205f80
[ 1271.690746][T28527]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[ 1271.690778][T28527]  bpf_prog_test_run_xdp+0xa0d/0x1590
[ 1271.690809][T28527]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1271.690830][T28527]  ? __might_fault+0xe0/0x190
[ 1271.690851][T28527]  ? fput+0x70/0xf0
[ 1271.690871][T28527]  ? __bpf_prog_get+0x97/0x2a0
[ 1271.690893][T28527]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1271.690912][T28527]  __sys_bpf+0x1707/0x4ea0
[ 1271.690939][T28527]  ? __pfx___sys_bpf+0x10/0x10
[ 1271.690955][T28527]  ? ksys_write+0x190/0x250
[ 1271.690976][T28527]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1271.691013][T28527]  ? fput+0x70/0xf0
[ 1271.691033][T28527]  ? ksys_write+0x1ac/0x250
[ 1271.691049][T28527]  ? __pfx_ksys_write+0x10/0x10
[ 1271.691071][T28527]  __ia32_sys_bpf+0x76/0xe0
[ 1271.691088][T28527]  __do_fast_syscall_32+0x7c/0x3a0
[ 1271.691109][T28527]  do_fast_syscall_32+0x32/0x80
[ 1271.691127][T28527]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1271.691148][T28527] RIP: 0023:0xf7f92579
[ 1271.691162][T28527] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1271.691179][T28527] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 1271.691195][T28527] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[ 1271.691206][T28527] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[ 1271.691217][T28527] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1271.691227][T28527] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1271.691237][T28527] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1271.691258][T28527]  </TASK>
[ 1271.724836][ T5951] vub300 9-1:1.162: probe with driver vub300 failed with error -22
[ 1271.778900][ T5951] usb 9-1: probing VID:PID(0424:012C)   
[ 1271.781589][ T5951] usb 9-1: Could not find two sets of bulk-in/out endpoint pairs
[ 1271.802068][ T5951] vub300 9-1:1.84: probe with driver vub300 failed with error -22
[ 1271.805806][ T6039] usb 10-1: USB disconnect, device number 13
[ 1271.810856][ T5951] usb 9-1: probing VID:PID(0424:012C)   
[ 1271.814512][ T5951] usb 9-1: Could not find two sets of bulk-in/out endpoint pairs
[ 1271.825692][ T5951] vub300 9-1:1.5: probe with driver vub300 failed with error -22
[ 1271.833411][ T5951] usb 9-1: USB disconnect, device number 8
[ 1272.709047][T28552] bond0: entered promiscuous mode
[ 1272.710674][T28552] bond_slave_0: entered promiscuous mode
[ 1272.712548][T28552] bond_slave_1: entered promiscuous mode
[ 1272.765681][T28555] netlink: 'syz.5.6046': attribute type 1 has an invalid length.
[ 1272.768678][T28555] netlink: 17 bytes leftover after parsing attributes in process `syz.5.6046'.
[ 1272.773799][T28553] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1272.878673][T28558] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1273.587543][ T6408] vhci_hcd: vhci_device speed not set
[ 1273.785494][T28561] FAULT_INJECTION: forcing a failure.
[ 1273.785494][T28561] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1273.789512][T28561] CPU: 2 UID: 0 PID: 28561 Comm: syz.3.6049 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1273.789525][T28561] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1273.789532][T28561] Call Trace:
[ 1273.789536][T28561]  <TASK>
[ 1273.789541][T28561]  dump_stack_lvl+0x16c/0x1f0
[ 1273.789555][T28561]  should_fail_ex+0x512/0x640
[ 1273.789568][T28561]  _copy_from_user+0x2e/0xd0
[ 1273.789580][T28561]  get_compat_msghdr+0xa7/0x170
[ 1273.789592][T28561]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1273.789604][T28561]  ? __pfx__kstrtoull+0x10/0x10
[ 1273.789634][T28561]  ___sys_sendmsg+0x1ae/0x1d0
[ 1273.789647][T28561]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1273.789657][T28561]  ? __lock_acquire+0x622/0x1c90
[ 1273.789688][T28561]  __sys_sendmmsg+0x2f9/0x420
[ 1273.789701][T28561]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1273.789716][T28561]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1273.789733][T28561]  ? fput+0x70/0xf0
[ 1273.789745][T28561]  ? ksys_write+0x1ac/0x250
[ 1273.789755][T28561]  ? __pfx_ksys_write+0x10/0x10
[ 1273.789766][T28561]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 1273.789778][T28561]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1273.789789][T28561]  __do_fast_syscall_32+0x7c/0x3a0
[ 1273.789801][T28561]  do_fast_syscall_32+0x32/0x80
[ 1273.789812][T28561]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1273.789825][T28561] RIP: 0023:0xf7f57579
[ 1273.789834][T28561] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1273.789844][T28561] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[ 1273.789854][T28561] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080002200
[ 1273.789861][T28561] RDX: 0000000000000002 RSI: 0000000000048801 RDI: 0000000000000000
[ 1273.789867][T28561] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1273.789873][T28561] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1273.789880][T28561] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1273.789893][T28561]  </TASK>
[ 1274.456092][T28588] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6057'.
[ 1275.020092][T28598] FAULT_INJECTION: forcing a failure.
[ 1275.020092][T28598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1275.029957][T28598] CPU: 1 UID: 0 PID: 28598 Comm: syz.3.6058 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1275.029972][T28598] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1275.029979][T28598] Call Trace:
[ 1275.029985][T28598]  <TASK>
[ 1275.029990][T28598]  dump_stack_lvl+0x16c/0x1f0
[ 1275.030005][T28598]  should_fail_ex+0x512/0x640
[ 1275.030019][T28598]  _copy_from_user+0x2e/0xd0
[ 1275.030031][T28598]  get_compat_msghdr+0xa7/0x170
[ 1275.030043][T28598]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1275.030059][T28598]  ___sys_sendmsg+0x1ae/0x1d0
[ 1275.030071][T28598]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1275.030087][T28598]  ? find_held_lock+0x2b/0x80
[ 1275.030107][T28598]  __sys_sendmsg+0x16d/0x220
[ 1275.030118][T28598]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1275.030134][T28598]  ? rcu_is_watching+0x12/0xc0
[ 1275.030148][T28598]  __do_fast_syscall_32+0x7c/0x3a0
[ 1275.030160][T28598]  do_fast_syscall_32+0x32/0x80
[ 1275.030171][T28598]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1275.030183][T28598] RIP: 0023:0xf7f57579
[ 1275.030191][T28598] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1275.030202][T28598] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1275.030212][T28598] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[ 1275.030218][T28598] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1275.030224][T28598] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1275.030230][T28598] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1275.030236][T28598] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1275.030249][T28598]  </TASK>
[ 1275.086208][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1275.172768][T28605] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[ 1275.989736][T28626] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1276.287849][T28631] FAULT_INJECTION: forcing a failure.
[ 1276.287849][T28631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1276.292338][T28631] CPU: 1 UID: 0 PID: 28631 Comm: syz.5.6069 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1276.292371][T28631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1276.292378][T28631] Call Trace:
[ 1276.292431][T28631]  <TASK>
[ 1276.292437][T28631]  dump_stack_lvl+0x16c/0x1f0
[ 1276.292524][T28631]  should_fail_ex+0x512/0x640
[ 1276.292566][T28631]  _copy_from_user+0x2e/0xd0
[ 1276.292582][T28631]  get_compat_msghdr+0xa7/0x170
[ 1276.292600][T28631]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1276.292620][T28631]  ? __lock_acquire+0x622/0x1c90
[ 1276.292645][T28631]  ___sys_recvmsg+0x191/0x1a0
[ 1276.292662][T28631]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1276.292677][T28631]  ? find_held_lock+0x2b/0x80
[ 1276.292709][T28631]  do_recvmmsg+0x55d/0x750
[ 1276.292728][T28631]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1276.292753][T28631]  ? __fget_files+0x20e/0x3c0
[ 1276.292769][T28631]  ? handle_mm_fault+0x250/0xd10
[ 1276.292785][T28631]  __sys_recvmmsg+0x21c/0x280
[ 1276.292797][T28631]  ? __pfx___sys_recvmmsg+0x10/0x10
[ 1276.292808][T28631]  ? __pfx_ksys_write+0x10/0x10
[ 1276.292821][T28631]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 1276.292838][T28631]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1276.292853][T28631]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1276.292871][T28631]  __do_fast_syscall_32+0x7c/0x3a0
[ 1276.292889][T28631]  do_fast_syscall_32+0x32/0x80
[ 1276.292904][T28631]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1276.292923][T28631] RIP: 0023:0xf705e579
[ 1276.292935][T28631] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1276.292951][T28631] RSP: 002b:00000000f502d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 1276.292966][T28631] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000840
[ 1276.292976][T28631] RDX: 0000000000000414 RSI: 0000000000000000 RDI: 0000000000000000
[ 1276.292986][T28631] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1276.292993][T28631] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1276.292999][T28631] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1276.293019][T28631]  </TASK>
[ 1277.547085][T28642] orangefs_mount: mount request failed with -4
[ 1277.834178][ T6014] usb 7-1: new high-speed USB device number 55 using dummy_hcd
[ 1277.925338][T28669] netlink: 40 bytes leftover after parsing attributes in process `syz.5.6083'.
[ 1277.928550][T28669] futex_wake_op: syz.5.6083 tries to shift op by -1; fix this program
[ 1277.963292][ T6014] usb 7-1: device descriptor read/64, error -71
[ 1278.179804][T28678] misc userio: Begin command sent, but we're already running
[ 1278.204036][ T6014] usb 7-1: new high-speed USB device number 56 using dummy_hcd
[ 1278.333228][ T6014] usb 7-1: device descriptor read/64, error -71
[ 1278.443397][ T6014] usb usb7-port1: attempt power cycle
[ 1278.785300][ T6014] usb 7-1: new high-speed USB device number 57 using dummy_hcd
[ 1278.804929][ T6014] usb 7-1: device descriptor read/8, error -71
[ 1279.043310][ T6014] usb 7-1: new high-speed USB device number 58 using dummy_hcd
[ 1279.074187][ T6014] usb 7-1: device descriptor read/8, error -71
[ 1279.183451][ T6014] usb usb7-port1: unable to enumerate USB device
[ 1279.796857][T28689] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1280.743190][T28703] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6093'.
[ 1280.746318][T28703] futex_wake_op: syz.2.6093 tries to shift op by -1; fix this program
[ 1280.911294][T28705] vivid-000: =================  START STATUS  =================
[ 1280.914893][T28705] vivid-000: Test Pattern: 75% Colorbar
[ 1280.917377][T28705] vivid-000: Fill Percentage of Frame: 100
[ 1280.919864][T28705] vivid-000: Horizontal Movement: No Movement
[ 1280.922483][T28705] vivid-000: Vertical Movement: No Movement
[ 1280.928548][T28705] vivid-000: OSD Text Mode: All
[ 1280.931058][T28705] vivid-000: Show Border: false
[ 1280.933690][T28705] vivid-000: Show Square: false
[ 1280.935779][T28705] vivid-000: Sensor Flipped Horizontally: false
[ 1280.938483][T28705] vivid-000: Sensor Flipped Vertically: false
[ 1280.941528][T28705] vivid-000: Insert SAV Code in Image: false
[ 1280.944278][T28705] vivid-000: Insert EAV Code in Image: false
[ 1280.947108][T28705] vivid-000: Insert Video Guard Band: false
[ 1280.950106][T28705] vivid-000: Reduced Framerate: false
[ 1280.952824][T28705] vivid-000: HDMI 000-0 Is Connected To: Output HDMI 023-0
[ 1280.956213][T28705] vivid-000: S-Video 000-0 Is Connected To: None
[ 1280.958579][T28705] vivid-000: Enable Capture Cropping: true
[ 1280.960920][T28705] vivid-000: Enable Capture Composing: true
[ 1280.963938][T28705] vivid-000: Enable Capture Scaler: true
[ 1280.966299][T28705] vivid-000: Timestamp Source: End of Frame
[ 1280.968884][T28705] vivid-000: Colorspace: sRGB
[ 1280.974493][T28705] vivid-000: Transfer Function: Default
[ 1280.975147][T28707] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[ 1280.976035][T28705] vivid-000: Y'CbCr Encoding: 
[ 1280.978534][T28707] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1280.979180][T28707] vhci_hcd vhci_hcd.0: Device attached
[ 1280.988669][T28705] Default
[ 1280.989974][T28705] vivid-000: HSV Encoding: Hue 0-179
[ 1280.992281][T28705] vivid-000: Quantization: Default
[ 1280.994526][T28705] vivid-000: Apply Alpha To Red Only: false
[ 1280.997039][T28705] vivid-000: Standard Aspect Ratio: 4x3
[ 1280.999927][T28705] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[ 1281.004788][T28708] usbip_core: unknown command
[ 1281.006330][T28708] vhci_hcd: unknown pdu 0
[ 1281.007622][T28708] usbip_core: unknown command
[ 1281.009264][T28705] vivid-000: DV Timings: 640x480p59 inactive
[ 1281.009344][T13761] vhci_hcd: stop threads
[ 1281.013038][T13761] vhci_hcd: release socket
[ 1281.014406][T28705] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[ 1281.015777][T13761] vhci_hcd: disconnect device
[ 1281.016777][T28705] vivid-000: Maximum EDID Blocks: 2
[ 1281.020339][T28705] vivid-000: Limited RGB Range (16-235): false
[ 1281.022577][T28705] vivid-000: Rx RGB Quantization Range: Automatic
[ 1281.025081][T28705] vivid-000: Power Present: 0x00000001
[ 1281.027114][T28705] tpg source WxH: 1920x1080 (Y'CbCr)
[ 1281.028897][T28705] tpg field: 1
[ 1281.030053][T28705] tpg crop: (0,0)/1920x1080
[ 1281.031428][T28705] tpg compose: (0,0)/1920x1080
[ 1281.032872][T28705] tpg colorspace: 2
[ 1281.034770][T28705] tpg transfer function: 0/0
[ 1281.036329][T28705] tpg Y'CbCr encoding: 0/0
[ 1281.037701][T28705] tpg quantization: 0/0
[ 1281.086675][T28705] tpg RGB range: 0/2
[ 1281.092314][T28713] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6095'.
[ 1281.102017][T28713] netlink: 'syz.4.6095': attribute type 10 has an invalid length.
[ 1281.119226][T28713] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1281.123940][T28713] team0: Port device bond0 added
[ 1281.196936][T28717] netlink: 48 bytes leftover after parsing attributes in process `syz.3.6091'.
[ 1281.207757][T28705] vivid-000: ==================  END STATUS  ==================
[ 1281.996035][T28724] netlink: 48 bytes leftover after parsing attributes in process `syz.5.6097'.
[ 1282.147192][T28727] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1283.193350][T12148] Bluetooth: hci2: command 0x0405 tx timeout
[ 1283.365065][T28733] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1283.368008][T28733] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6102'.
[ 1283.385709][T28735] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6101'.
[ 1283.388882][T28735] netlink: 104 bytes leftover after parsing attributes in process `syz.5.6101'.
[ 1283.391716][T28735] netlink: 104 bytes leftover after parsing attributes in process `syz.5.6101'.
[ 1283.430172][T28735] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1283.502149][T28739] binder: 28731:28739 ioctl c0306201 80000240 returned -11
[ 1283.521196][T28735] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1283.610565][T28735] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1283.775452][T28735] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1283.915365][T28735] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1283.924550][T28735] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1283.931889][T28735] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1283.937964][T28735] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1284.147975][T28747] FAULT_INJECTION: forcing a failure.
[ 1284.147975][T28747] name failslab, interval 1, probability 0, space 0, times 0
[ 1284.163583][T28747] CPU: 3 UID: 0 PID: 28747 Comm: syz.4.6105 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1284.163600][T28747] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1284.163606][T28747] Call Trace:
[ 1284.163610][T28747]  <TASK>
[ 1284.163630][T28747]  dump_stack_lvl+0x16c/0x1f0
[ 1284.163647][T28747]  should_fail_ex+0x512/0x640
[ 1284.163658][T28747]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[ 1284.163672][T28747]  should_failslab+0xc2/0x120
[ 1284.163684][T28747]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[ 1284.163696][T28747]  ? ethnl_default_set_doit+0x397/0xb10
[ 1284.163710][T28747]  kmemdup_noprof+0x29/0x60
[ 1284.163722][T28747]  ethnl_default_set_doit+0x397/0xb10
[ 1284.163734][T28747]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[ 1284.163747][T28747]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1284.163763][T28747]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1284.163780][T28747]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1284.163795][T28747]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1284.163810][T28747]  ? trace_cap_capable+0x18d/0x200
[ 1284.163826][T28747]  ? bpf_lsm_capable+0x9/0x10
[ 1284.163841][T28747]  ? security_capable+0x7e/0x260
[ 1284.163854][T28747]  ? ns_capable+0xd7/0x110
[ 1284.163867][T28747]  genl_rcv_msg+0x55c/0x800
[ 1284.163882][T28747]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1284.163896][T28747]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[ 1284.163913][T28747]  netlink_rcv_skb+0x155/0x420
[ 1284.163925][T28747]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1284.163939][T28747]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1284.163957][T28747]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1284.163972][T28747]  genl_rcv+0x28/0x40
[ 1284.163984][T28747]  netlink_unicast+0x58d/0x850
[ 1284.163998][T28747]  ? __pfx_netlink_unicast+0x10/0x10
[ 1284.164014][T28747]  netlink_sendmsg+0x8d1/0xdd0
[ 1284.164029][T28747]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1284.164043][T28747]  ? __import_iovec+0x1dd/0x650
[ 1284.164057][T28747]  ____sys_sendmsg+0xa98/0xc70
[ 1284.164073][T28747]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1284.164086][T28747]  ? get_compat_msghdr+0x11a/0x170
[ 1284.164104][T28747]  ___sys_sendmsg+0x134/0x1d0
[ 1284.164115][T28747]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1284.164138][T28747]  ? find_held_lock+0x2b/0x80
[ 1284.164158][T28747]  __sys_sendmsg+0x16d/0x220
[ 1284.164169][T28747]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1284.164186][T28747]  ? rcu_is_watching+0x12/0xc0
[ 1284.164199][T28747]  __do_fast_syscall_32+0x7c/0x3a0
[ 1284.164211][T28747]  do_fast_syscall_32+0x32/0x80
[ 1284.164222][T28747]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1284.164235][T28747] RIP: 0023:0xf7f92579
[ 1284.164243][T28747] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1284.164253][T28747] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1284.164264][T28747] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000640
[ 1284.164270][T28747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1284.164276][T28747] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1284.164282][T28747] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1284.164288][T28747] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1284.164314][T28747]  </TASK>
[ 1284.170379][T28749] bond0: entered promiscuous mode
[ 1284.278660][T28749] bond_slave_0: entered promiscuous mode
[ 1284.281246][T28749] bond_slave_1: entered promiscuous mode
[ 1284.290545][T28754] bond0: entered promiscuous mode
[ 1284.292625][T28754] bond_slave_0: entered promiscuous mode
[ 1284.295222][T28754] bond_slave_1: entered promiscuous mode
[ 1284.461891][T28766] tmpfs: Bad value for 'mpol'
[ 1284.467026][T28766] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6111'.
[ 1284.917528][T28771] netlink: 48 bytes leftover after parsing attributes in process `syz.3.6112'.
[ 1285.068537][T28773] input: syz0 as /devices/virtual/input/input31
[ 1285.208875][T28778] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6110'.
[ 1285.315792][T28784] netlink: 'syz.2.6116': attribute type 2 has an invalid length.
[ 1285.318336][T28784] netlink: 76 bytes leftover after parsing attributes in process `syz.2.6116'.
[ 1286.303327][T28808] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6124'.
[ 1286.307457][T28808] FAULT_INJECTION: forcing a failure.
[ 1286.307457][T28808] name failslab, interval 1, probability 0, space 0, times 0
[ 1286.311586][T28808] CPU: 0 UID: 0 PID: 28808 Comm: syz.2.6124 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1286.311627][T28808] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1286.311639][T28808] Call Trace:
[ 1286.311646][T28808]  <TASK>
[ 1286.311653][T28808]  dump_stack_lvl+0x16c/0x1f0
[ 1286.311675][T28808]  should_fail_ex+0x512/0x640
[ 1286.311697][T28808]  should_failslab+0xc2/0x120
[ 1286.311720][T28808]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1286.311740][T28808]  ? skb_clone+0x190/0x3f0
[ 1286.311763][T28808]  skb_clone+0x190/0x3f0
[ 1286.311782][T28808]  netlink_deliver_tap+0xabd/0xd30
[ 1286.311807][T28808]  netlink_dump+0x85e/0xd00
[ 1286.311829][T28808]  ? __pfx_netlink_dump+0x10/0x10
[ 1286.311865][T28808]  __netlink_dump_start+0x6d6/0x990
[ 1286.311887][T28808]  ? __pfx_tc_dump_tfilter+0x10/0x10
[ 1286.311903][T28808]  rtnetlink_rcv_msg+0xb3e/0xe90
[ 1286.311914][T28808]  ? __pfx_tc_dump_tfilter+0x10/0x10
[ 1286.311927][T28808]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1286.311939][T28808]  ? __pfx_rtnl_dumpit+0x10/0x10
[ 1286.311952][T28808]  ? __pfx_tc_dump_tfilter+0x10/0x10
[ 1286.311967][T28808]  ? ref_tracker_free+0x37c/0x830
[ 1286.311980][T28808]  netlink_rcv_skb+0x155/0x420
[ 1286.311992][T28808]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1286.312005][T28808]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1286.312022][T28808]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1286.312041][T28808]  netlink_unicast+0x58d/0x850
[ 1286.312055][T28808]  ? __pfx_netlink_unicast+0x10/0x10
[ 1286.312072][T28808]  netlink_sendmsg+0x8d1/0xdd0
[ 1286.312086][T28808]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1286.312099][T28808]  ? __import_iovec+0x1dd/0x650
[ 1286.312115][T28808]  ____sys_sendmsg+0xa98/0xc70
[ 1286.312130][T28808]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1286.312143][T28808]  ? get_compat_msghdr+0x11a/0x170
[ 1286.312160][T28808]  ___sys_sendmsg+0x134/0x1d0
[ 1286.312172][T28808]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1286.312189][T28808]  ? find_held_lock+0x2b/0x80
[ 1286.312208][T28808]  __sys_sendmsg+0x16d/0x220
[ 1286.312219][T28808]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1286.312236][T28808]  ? rcu_is_watching+0x12/0xc0
[ 1286.312249][T28808]  __do_fast_syscall_32+0x7c/0x3a0
[ 1286.312262][T28808]  do_fast_syscall_32+0x32/0x80
[ 1286.312273][T28808]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1286.312285][T28808] RIP: 0023:0xf7f55579
[ 1286.312294][T28808] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1286.312304][T28808] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1286.312314][T28808] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[ 1286.312321][T28808] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1286.312327][T28808] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1286.312333][T28808] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1286.312339][T28808] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1286.312352][T28808]  </TASK>
[ 1286.572514][T28825] FAULT_INJECTION: forcing a failure.
[ 1286.572514][T28825] name failslab, interval 1, probability 0, space 0, times 0
[ 1286.576712][T28825] CPU: 0 UID: 0 PID: 28825 Comm: syz.3.6128 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1286.576727][T28825] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1286.576733][T28825] Call Trace:
[ 1286.576738][T28825]  <TASK>
[ 1286.576743][T28825]  dump_stack_lvl+0x16c/0x1f0
[ 1286.576757][T28825]  should_fail_ex+0x512/0x640
[ 1286.576771][T28825]  should_failslab+0xc2/0x120
[ 1286.576786][T28825]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1286.576797][T28825]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1286.576809][T28825]  ? kmem_cache_alloc_node_noprof+0x225/0x3b0
[ 1286.576819][T28825]  ? __alloc_skb+0x2b2/0x380
[ 1286.576832][T28825]  __alloc_skb+0x2b2/0x380
[ 1286.576842][T28825]  ? __pfx___alloc_skb+0x10/0x10
[ 1286.576852][T28825]  ? __alloc_skb+0x200/0x380
[ 1286.576862][T28825]  ? __pfx___alloc_skb+0x10/0x10
[ 1286.576874][T28825]  create_monitor_ctrl_event+0x3b/0x450
[ 1286.576887][T28825]  mgmt_cmd_status+0x29e/0x510
[ 1286.576898][T28825]  hci_sock_sendmsg+0x21f8/0x25f0
[ 1286.576912][T28825]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[ 1286.576927][T28825]  sock_write_iter+0x4fc/0x5b0
[ 1286.576941][T28825]  ? __pfx_sock_write_iter+0x10/0x10
[ 1286.576960][T28825]  ? bpf_lsm_file_permission+0x9/0x10
[ 1286.576973][T28825]  ? security_file_permission+0x71/0x210
[ 1286.576991][T28825]  ? rw_verify_area+0xcf/0x680
[ 1286.577007][T28825]  vfs_write+0x6c4/0x1150
[ 1286.577017][T28825]  ? __pfx_sock_write_iter+0x10/0x10
[ 1286.577037][T28825]  ? __pfx_vfs_write+0x10/0x10
[ 1286.577045][T28825]  ? find_held_lock+0x2b/0x80
[ 1286.577065][T28825]  ksys_write+0x1f8/0x250
[ 1286.577075][T28825]  ? __pfx_ksys_write+0x10/0x10
[ 1286.577086][T28825]  ? rcu_is_watching+0x12/0xc0
[ 1286.577099][T28825]  __do_fast_syscall_32+0x7c/0x3a0
[ 1286.577112][T28825]  do_fast_syscall_32+0x32/0x80
[ 1286.577123][T28825]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1286.577136][T28825] RIP: 0023:0xf7f57579
[ 1286.577144][T28825] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1286.577155][T28825] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[ 1286.577165][T28825] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800002c0
[ 1286.577172][T28825] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000000
[ 1286.577178][T28825] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1286.577184][T28825] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1286.577190][T28825] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1286.577203][T28825]  </TASK>
[ 1286.783426][ T6014] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[ 1286.813565][T28839] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1286.815636][T28839] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1286.818618][T28839] vhci_hcd vhci_hcd.0: Device attached
[ 1286.957141][ T6014] usb 10-1: config 1 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1286.973657][ T6014] usb 10-1: config 1 interface 0 has no altsetting 0
[ 1286.981468][ T6014] usb 10-1: New USB device found, idVendor=056a, idProduct=0038, bcdDevice= 0.40
[ 1286.984525][ T6014] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1286.986989][ T6014] usb 10-1: Product: ᰊ
[ 1286.988328][ T6014] usb 10-1: Manufacturer: 狌벱뢆꩖ጃ㜗荆혎劢䨔獈ꈓ䇎篃恊帑螬䆂談멶ᱭ径뱍㸺㯲葎꿣躓騖㡻퓵滑ꅜ솩쬙面뮰䈦Ჽ煃꒪⭴뙋˖资驯뫴︷≈鎑뒁ڙ鉐❁餃륣쬮⩖篳走ޡ겶릿븷甐苝ኹ犍羄⊂ᤡ평
[ 1286.996367][ T6014] usb 10-1: SerialNumber: syz
[ 1287.035933][T28846] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6126'.
[ 1287.083456][ T6040] usb 42-1: SetAddress Request (10) to port 0
[ 1287.086502][ T6040] usb 42-1: new SuperSpeed USB device number 10 using vhci_hcd
[ 1287.162658][T28850] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1287.195461][ T6039] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[ 1287.198252][ T6039] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[ 1287.203175][    C2] ------------[ cut here ]------------
[ 1287.205216][    C2] workqueue: cannot queue hci_cmd_timeout on wq hci1
[ 1287.207317][    C2] WARNING: CPU: 2 PID: 0 at kernel/workqueue.c:2257 __queue_work+0xc9c/0x10f0
[ 1287.210300][    C2] Modules linked in:
[ 1287.211946][    C2] CPU: 2 UID: 0 PID: 0 Comm: swapper/2 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1287.216281][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1287.219645][    C2] RIP: 0010:__queue_work+0xc9c/0x10f0
[ 1287.221422][    C2] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 28 04 00 00 48 8b 75 18 4c 89 f2 48 c7 c7 20 06 ac 8b e8 45 44 f7 ff 90 <0f> 0b 90 90 e9 96 f7 ff ff e8 96 e9 37 00 90 0f 0b 90 e9 1b f6 ff
[ 1287.227521][    C2] RSP: 0018:ffffc90000538be8 EFLAGS: 00010082
[ 1287.229470][    C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817ab108
[ 1287.232245][    C2] RDX: ffff88801dedc880 RSI: ffffffff817ab115 RDI: 0000000000000001
[ 1287.234673][    C2] RBP: ffff8880552e0970 R08: 0000000000000001 R09: 0000000000000000
[ 1287.237101][    C2] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff920000a718f
[ 1287.239600][    C2] R13: 0000000080000101 R14: ffff88801386c978 R15: 0000000000000001
[ 1287.242142][    C2] FS:  0000000000000000(0000) GS:ffff88809772d000(0000) knlGS:0000000000000000
[ 1287.244879][    C2] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1287.246911][    C2] CR2: 00000000313bdffc CR3: 0000000059702000 CR4: 0000000000352ef0
[ 1287.249391][    C2] Call Trace:
[ 1287.250771][    C2]  <IRQ>
[ 1287.251726][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[ 1287.253546][    C2]  call_timer_fn+0x197/0x620
[ 1287.254998][    C2]  ? __pfx_call_timer_fn+0x10/0x10
[ 1287.256596][    C2]  ? __run_timers+0x559/0x960
[ 1287.258076][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[ 1287.260089][    C2]  __run_timers+0x569/0x960
[ 1287.261674][    C2]  ? __pfx___run_timers+0x10/0x10
[ 1287.263251][    C2]  run_timer_base+0x114/0x190
[ 1287.264717][    C2]  ? __pfx_run_timer_base+0x10/0x10
[ 1287.266328][    C2]  ? rcu_is_watching+0x12/0xc0
[ 1287.267821][    C2]  run_timer_softirq+0x1a/0x40
[ 1287.269349][    C2]  handle_softirqs+0x219/0x8e0
[ 1287.271336][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[ 1287.273133][    C2]  __irq_exit_rcu+0x109/0x170
[ 1287.274594][    C2]  irq_exit_rcu+0x9/0x30
[ 1287.275928][    C2]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1287.277666][    C2]  </IRQ>
[ 1287.278588][    C2]  <TASK>
[ 1287.279608][    C2]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1287.281608][    C2] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1287.283360][    C2] Code: bb 70 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d d3 67 27 00 fb f4 <e9> 8c fb 02 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[ 1287.289216][    C2] RSP: 0018:ffffc9000047fdf8 EFLAGS: 00000286
[ 1287.291467][    C2] RAX: 00000000025f6229 RBX: 0000000000000002 RCX: ffffffff8b82ac69
[ 1287.293895][    C2] RDX: 0000000000000000 RSI: ffffffff8de29c33 RDI: ffffffff8c155de0
[ 1287.296319][    C2] RBP: ffffed1003bdb910 R08: 0000000000000001 R09: ffffed1005686645
[ 1287.298721][    C2] R10: ffff88802b43322b R11: 0000000000000001 R12: 0000000000000002
[ 1287.301500][    C2] R13: ffff88801dedc880 R14: ffffffff90a95b50 R15: 0000000000000000
[ 1287.303951][    C2]  ? ct_kernel_exit+0x139/0x190
[ 1287.305470][    C2]  default_idle+0x13/0x20
[ 1287.306824][    C2]  default_idle_call+0x6d/0xb0
[ 1287.308318][    C2]  do_idle+0x391/0x510
[ 1287.309711][    C2]  ? __pfx_do_idle+0x10/0x10
[ 1287.311475][    C2]  ? trace_sched_exit_tp+0x31/0x130
[ 1287.313110][    C2]  cpu_startup_entry+0x4f/0x60
[ 1287.314601][    C2]  start_secondary+0x21d/0x2b0
[ 1287.316099][    C2]  ? __pfx_start_secondary+0x10/0x10
[ 1287.317737][    C2]  common_startup_64+0x13e/0x148
[ 1287.319284][    C2]  </TASK>
[ 1287.320438][    C2] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1287.322668][    C2] CPU: 2 UID: 0 PID: 0 Comm: swapper/2 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 1287.325673][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1287.329161][    C2] Call Trace:
[ 1287.330523][    C2]  <IRQ>
[ 1287.331524][    C2]  dump_stack_lvl+0x3d/0x1f0
[ 1287.332976][    C2]  panic+0x71c/0x800
[ 1287.334160][    C2]  ? __pfx_panic+0x10/0x10
[ 1287.335558][    C2]  ? show_trace_log_lvl+0x29b/0x3e0
[ 1287.337185][    C2]  ? check_panic_on_warn+0x1f/0xb0
[ 1287.338773][    C2]  ? __queue_work+0xc9c/0x10f0
[ 1287.340449][    C2]  check_panic_on_warn+0xab/0xb0
[ 1287.341998][    C2]  __warn+0xf6/0x3c0
[ 1287.343243][    C2]  ? __queue_work+0xc9c/0x10f0
[ 1287.344751][    C2]  report_bug+0x3c3/0x580
[ 1287.346112][    C2]  ? __queue_work+0xc9c/0x10f0
[ 1287.347616][    C2]  handle_bug+0x184/0x210
[ 1287.348983][    C2]  exc_invalid_op+0x17/0x50
[ 1287.350766][    C2]  asm_exc_invalid_op+0x1a/0x20
[ 1287.352303][    C2] RIP: 0010:__queue_work+0xc9c/0x10f0
[ 1287.353967][    C2] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 28 04 00 00 48 8b 75 18 4c 89 f2 48 c7 c7 20 06 ac 8b e8 45 44 f7 ff 90 <0f> 0b 90 90 e9 96 f7 ff ff e8 96 e9 37 00 90 0f 0b 90 e9 1b f6 ff
[ 1287.359986][    C2] RSP: 0018:ffffc90000538be8 EFLAGS: 00010082
[ 1287.361859][    C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817ab108
[ 1287.364305][    C2] RDX: ffff88801dedc880 RSI: ffffffff817ab115 RDI: 0000000000000001
[ 1287.366735][    C2] RBP: ffff8880552e0970 R08: 0000000000000001 R09: 0000000000000000
[ 1287.369172][    C2] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff920000a718f
[ 1287.371993][    C2] R13: 0000000080000101 R14: ffff88801386c978 R15: 0000000000000001
[ 1287.374414][    C2]  ? __warn_printk+0x198/0x350
[ 1287.375894][    C2]  ? __warn_printk+0x1a5/0x350
[ 1287.377344][    C2]  ? __queue_work+0xc9b/0x10f0
[ 1287.378813][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[ 1287.381027][    C2]  call_timer_fn+0x197/0x620
[ 1287.382472][    C2]  ? __pfx_call_timer_fn+0x10/0x10
[ 1287.384059][    C2]  ? __run_timers+0x559/0x960
[ 1287.385523][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[ 1287.387319][    C2]  __run_timers+0x569/0x960
[ 1287.388755][    C2]  ? __pfx___run_timers+0x10/0x10
[ 1287.390690][    C2]  run_timer_base+0x114/0x190
[ 1287.392247][    C2]  ? __pfx_run_timer_base+0x10/0x10
[ 1287.393857][    C2]  ? rcu_is_watching+0x12/0xc0
[ 1287.395343][    C2]  run_timer_softirq+0x1a/0x40
[ 1287.396810][    C2]  handle_softirqs+0x219/0x8e0
[ 1287.398271][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[ 1287.400061][    C2]  __irq_exit_rcu+0x109/0x170
[ 1287.401542][    C2]  irq_exit_rcu+0x9/0x30
[ 1287.402862][    C2]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1287.404601][    C2]  </IRQ>
[ 1287.405531][    C2]  <TASK>
[ 1287.406467][    C2]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1287.408321][    C2] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1287.410321][    C2] Code: bb 70 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d d3 67 27 00 fb f4 <e9> 8c fb 02 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[ 1287.415850][    C2] RSP: 0018:ffffc9000047fdf8 EFLAGS: 00000286
[ 1287.417694][    C2] RAX: 00000000025f6229 RBX: 0000000000000002 RCX: ffffffff8b82ac69
[ 1287.420280][    C2] RDX: 0000000000000000 RSI: ffffffff8de29c33 RDI: ffffffff8c155de0
[ 1287.422701][    C2] RBP: ffffed1003bdb910 R08: 0000000000000001 R09: ffffed1005686645
[ 1287.425130][    C2] R10: ffff88802b43322b R11: 0000000000000001 R12: 0000000000000002
[ 1287.427494][    C2] R13: ffff88801dedc880 R14: ffffffff90a95b50 R15: 0000000000000000
[ 1287.430193][    C2]  ? ct_kernel_exit+0x139/0x190
[ 1287.431797][    C2]  default_idle+0x13/0x20
[ 1287.433144][    C2]  default_idle_call+0x6d/0xb0
[ 1287.434629][    C2]  do_idle+0x391/0x510
[ 1287.436014][    C2]  ? __pfx_do_idle+0x10/0x10
[ 1287.437474][    C2]  ? trace_sched_exit_tp+0x31/0x130
[ 1287.439106][    C2]  cpu_startup_entry+0x4f/0x60
[ 1287.440795][    C2]  start_secondary+0x21d/0x2b0
[ 1287.442297][    C2]  ? __pfx_start_secondary+0x10/0x10
[ 1287.443965][    C2]  common_startup_64+0x13e/0x148
[ 1287.445521][    C2]  </TASK>
[ 1287.447176][    C2] Kernel Offset: disabled
[ 1287.448657][    C2] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:50:47  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88802b227d00 RCX=0000000000000000 RDX=0000000000010003
RSI=0000000000000004 RDI=ffff88802b2285f8 RBP=0000000000000001 RSP=ffffc90000007e38
R8 =0000000000000000 R9 =fffffbfff35fb67d R10=ffffffff9afdb3eb R11=0000000000000001
R12=ffff88802b227c80 R13=0000012bac8ad080 R14=ffff88802b2285f8 R15=ffff88802b227c80
RIP=ffffffff81a85a70 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809752d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080003348 CR3=0000000062ae5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000063c62b3 RBX=0000000000000000 RCX=ffffffff81c3235f RDX=0000000000000000
RSI=ffffffff8de29c33 RDI=ffffffff8c155de0 RBP=ffff88802b23a400 RSP=ffffc9000046fb10
R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff90a95b57 R11=ffff88802b23b260
R12=ffff88802877c620 R13=ffff88802b23a400 R14=ffff88802b33a400 R15=dffffc0000000000
RIP=ffffffff818afd54 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809762d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002cac8ffc CR3=0000000062ae5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8556d065 RDI=ffffffff9b09f540 RBP=ffffffff9b09f500 RSP=ffffc90000538550
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000030 R14=ffffffff9b09f500 R15=ffffffff8556d000
RIP=ffffffff8556d08f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809772d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000313bdffc CR3=0000000059702000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000046 RBX=ffffffff8b8543a2 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8de29c6b RDI=ffffffff8c155de0 RBP=0000000000000246 RSP=ffffc90006ccfa50
R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff90a95b57 R11=0000000000000001
R12=ffff888024bb2440 R13=000000000000c9c5 R14=ffff888026679300 R15=ffff88806f5b5340
RIP=ffffffff8b829d53 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809782d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080002000 CR3=0000000069622000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 741d59f4e2ee75e7 ec2ccd8a0a8da526
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 360872e2e949a32a 57bb3a117ac72f65
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d8ed162d079c7fac ccbb1c67b44ddbcc
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8c70e07e4d6f1a5a a2a8f9a5918e3bca
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000001569240
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00030c6b00030c6b 8001000000030c6b
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9f1650009fbef800 a1f6860000030c6b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 800100009f73e800 00030c6b80010000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a000ce0080010000 800100009b65d200
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ca1d7f07f4f38747 f5b7505dc282686b
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ea7963869b2f5da3 2259a327c5b1c6b8
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000