last executing test programs:

4.712691176s ago: executing program 1 (id=1847):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000200)=0xfffffffd)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, 0x41, 0x107, 0xfffffffc, 0x0, {0x3, 0x7c}, [@nested={0x4, 0x136}, @nested={0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
setresuid(0x0, 0xee01, 0xee00)
fsmount(0xffffffffffffffff, 0x0, 0xd)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r3, 0x10f, 0x81, &(0x7f0000000480), 0x4)
recvmmsg(r3, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000400)=""/53, 0x35}], 0x1, &(0x7f00000004c0)=""/164, 0xa4}}], 0x1, 0x0, 0x0)
sendmsg$tipc(r3, &(0x7f0000000200)={&(0x7f0000000c00)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x4}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000040)='\v', 0x57}], 0x1}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000440)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fsetxattr$security_capability(r2, &(0x7f00000000c0), &(0x7f0000000140)=@v2={0x2000000, [{0x9, 0xf97}, {0x5, 0x400}]}, 0x14, 0x1)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@mpls_delroute={0xa0, 0x19, 0x1, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_NEWDST={0x84, 0x12}]}, 0xa0}}, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r5, 0xc0182101, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f00000004c0)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000240)={r6, 0x1, r5})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}], {0x14}}, 0x68}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a48000000160a01080000000000000000020000000900020073797a30000000000900010073797a30000000001c00038018000380140001006261746164765f736c6176655f31000014000000110001"], 0x70}}, 0x24040880)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f00000002c0)={r6, 0xf1534aba9f6c4738, r7, 0x2})
capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x0, 0x10ffff, 0xfffffffd})
prctl$PR_CAP_AMBIENT(0x2f, 0x4, 0x1)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)

4.080508722s ago: executing program 2 (id=1850):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd8073a46b08b94214d816f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb4147000001000000008f2b9000f22425e4097ed62cbc891061017cfa6f6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe68db8d9"], 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1e00000008000000ff0000000400000010000000", @ANYRES32=r1, @ANYBLOB="0600"/20, @ANYRES16=r1, @ANYRES32=r0, @ANYBLOB="9f2edb7f9a994d3f840400000005000000030000000b0000f20000042200000000040000001ae30e7ed98169b43f7e20cc635b07871d9adec6bbc1552c301172841d75a9cdfbbccecab3af1665056b9dad3d10085c3f115cdf7f22e19e9f5abaa3fb95fe32e2632527622003135b3d134d2381158ce557ca751e7d0ed9d8467549dfeb06000000000000000fbcc8775d7a5f594328affa90f84578c2af685597cc5c20134290041a1b59690f0fc5cd3d8e7f0cbdaf4acef6be6d7d0e8c02954249cb836c7385aa4b174a37ff3d7b"], 0x50)
close(0x3)
close(r2)
userfaultfd(0x80001)
mkdir(&(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0xa, 0x2)
syz_emit_ethernet(0x4a, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd"], 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="016f0800010000000000200000004600003f00000000008490783fffffffac1414aa00000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="ba0000fe9078001809c4000502004b00000000000000261d5d46b181919e00008399571ad9"], 0x4e)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYBLOB="01000000040000000200"/21], 0x50)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x30}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x4, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = socket(0x2a, 0x2, 0x0)
r7 = syz_io_uring_setup(0x837, &(0x7f0000000180)={0x0, 0x2b94, 0x8, 0x4, 0x3cf}, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x40, 0x0, r6, 0x0, 0x0})
io_uring_enter(r7, 0x3516, 0x7, 0x44, 0x0, 0x0)

3.789161734s ago: executing program 1 (id=1851):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xf691, 0x10100, 0x3, 0x169, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x0, 0x0, 0x0)
unshare(0x2c020400)
r5 = msgget$private(0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_WANTLQI(r6, 0x0, 0x3, &(0x7f0000001380)=0x1, 0x4)
ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc044560f, &(0x7f00000001c0)=@fd={0x6, 0x1, 0x4, 0x8, 0x7, {0x77359400}, {0x1, 0x2, 0xc5, 0x85, 0x0, 0xcc, "c47e603b"}, 0x7, 0x4, {}, 0xfd})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000900000000000008000003000000040004001c000180180010"], 0x34}}, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff1085000000ae00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket(0x10, 0x803, 0x0)
getsockname$packet(r8, &(0x7f00000000c0)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x18)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYBLOB="0100000200"/22], 0x1c}, 0x1, 0x0, 0x0, 0x40800}, 0x80)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a", @ANYRES32=r9, @ANYBLOB="020000000000800080001200080001007674693674000200"], 0xa0}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_REMOVE(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="010028bd70005fd5df25020000"], 0x1c}}, 0xc0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), r6)
msgrcv(r5, 0x0, 0x0, 0x3, 0x3000)

3.010532863s ago: executing program 2 (id=1854):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$radio(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_G_FREQUENCY(r1, 0xc02c5638, &(0x7f0000000000))
socket$inet6(0xa, 0x3, 0x5)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = dup(0xffffffffffffffff)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000140)=@IORING_OP_POLL_ADD)
io_uring_enter(r4, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

2.940141078s ago: executing program 2 (id=1855):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
fanotify_mark(r0, 0x1, 0x8001001, 0xffffffffffffffff, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r4 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x1)
pwritev(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r3, r3, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x40000004, 0x0, 0xffffffff, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310978042a8bfe1406584a128d7469166f4f07b84819e7df4af14e1df82d", [0x6, 0x7]})
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r2)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100000000010000002003000000180001800f00193d4e05ab80eb5e65766531000004000280"], 0x2c}}, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000ac0)={0x100, 0x0, 0xbb47b0394e9483d, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x5c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x444a}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x12, 0x1, @l2={'ib', 0x3a, 'virt_wifi0\x00'}}]}, @TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3ff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}, @TIPC_NLA_NODE={0x54, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x46, 0x4, {'gcm(aes)\x00', 0x1e, "7af2f61153136c32695353801b4102087392bf9bcdb92da6704223a7e0f4"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x100}, 0x1, 0x0, 0x0, 0x4001}, 0x84000)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, 0x0)
r5 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r6 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000240), &(0x7f0000000380)='$\x00LQ->\xa0\x85\'\xf4\xfc\x8f\x96\x96\xfd\xb6\xef\x7f\x04\a\x1b\x1c\xf4\xb8', 0x0)
fsconfig$FSCONFIG_SET_FD(r6, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r6)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000000)='syzkaller\x00', &(0x7f0000001140)='\xf1\x95\xb3>-\x8c\xd4\r\x01\xfa\xe2{eED\x0e\xaaPV\x11\xff\xb6j\xd4~6\x82^\x9b b', 0x0)
syz_usb_connect(0x6, 0xee4, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x200, 0xc, 0x1, 0xff, 0x10, 0xff}, 0x3b, &(0x7f00000002c0)={0x5, 0xf, 0x3b, 0x4, [@ss_container_id={0x14, 0x10, 0x4, 0x6, "f5dd2a2326846f7cfec277922aff8c8f"}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x5, 0xd, 0xff80}, @wireless={0xb, 0x10, 0x1, 0x4, 0x20, 0xfc, 0x6, 0x0, 0xfd}, @ssp_cap={0x10, 0x10, 0xa, 0x7, 0x1, 0x9, 0xf000, 0x6, [0xff003f]}]}, 0x1, [{0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x1007}}]})
syz_usb_control_io$hid(r5, 0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000480)=[{0x0}], 0x1)
open(&(0x7f0000000500)='./file0\x00', 0x424481, 0x24)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
close_range(r7, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000006400)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x5}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x5c}}, 0x0)
r8 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x284502, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000080)={<r9=>0x0, 0x1, 0x0, 0x0, 0x9}, &(0x7f0000000100)=0x18)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r8, 0x84, 0x23, &(0x7f0000000140)={r9, 0x2}, 0xffffffffffffff7a)

2.837074379s ago: executing program 1 (id=1856):
mount$bind(0x0, 0x0, 0x0, 0x24b858, 0x0)
syz_open_dev$sndpcmc(0x0, 0x0, 0x14900)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000000)=0x20002, 0x4)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, 0x0, &(0x7f0000000080))
r1 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x1a1002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
write$binfmt_misc(r1, &(0x7f0000000240)="df6bf5f59aaa716743b702c0f8a44303a3ff9652af78b2424ebdb97f92a04cc80c4238aa0db97033512d81d0a2ceebc7d5ba4da001c473ebac47a02a72537f01d8e4c339ba0759540455958e78eba58bf06df55a1ba0293a6bf040a44e2dfbda42f821b80cee58692b40ed4914b5dae1466d24ff65d969e6ee1399ee4166c98afb910c337f4fd54878d4448e91709e0795441143f92769dbb0009f77f660994c6f3edf888df8f15b74f51264ee2a21b1b3d0faeab8f4ffa04d8012bc18e756b6534173625d8ca27dd7c7e048d150119834", 0xd1)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(0xffffffffffffffff, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

2.620082833s ago: executing program 3 (id=1862):
r0 = socket(0x2a, 0x2, 0x0)
r1 = syz_io_uring_setup(0x837, &(0x7f0000000180)={0x0, 0x2b94, 0x8, 0x4, 0x3cf}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x40, 0x0, r0, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x7, 0x44, 0x0, 0x0)

2.508314823s ago: executing program 3 (id=1863):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$radio(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_G_FREQUENCY(r1, 0xc02c5638, &(0x7f0000000000))
socket$inet6(0xa, 0x3, 0x5)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r4}, &(0x7f0000000180)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r3})
io_uring_enter(r5, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

2.230395857s ago: executing program 2 (id=1864):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000400)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)=ANY=[@ANYRES32=0x0, @ANYBLOB="000000000000000008000d000200000008002c00ffffffff08000a00", @ANYRES32=r3, @ANYBLOB="94011880980001801400040095ae7c3dcdaaf2bdd26c876ecac204750500060004000000050006000800000009000200235d7b7b0000000014000500763dbe7a1f4d8525e2b39a7dd643865214000400fd1fe8279d33f25c373229e077a86b7508000100ff07000008000100060000001400050070735c7d9c21378f4dcab4d3f1715bde0800010008000000050002003000000005000600000000001c00018005000600050000000500020000000000070002003a2b00005000018014000400a10fe78a620be14a8f14ef619aa658c2050006000600000005000600010000000e0002002b2526405d237b282d0000000500060009000000050006000b000000080001000b00000038000180080001000100000014000400bef05e808fd20d11998c0a5db972c7920400020014000400ea3c8d6444295cae3ecd6aa4dee836151800018014000500487f1c3154ff777e3bc6391e146b5c703c000180100002002f2929257d3a2e2a252a2e0014000400e0e56324d13038361f9353e2b260169414000400cb6231fc6b80465e74787430ed706e19a40216802c0001800c00090002000000020000000c0003007f0000000500000010000b00de7700000800000000000000100001800c00070001000000f2ffffff6000018040000c80140001000500000082010000ebf4ffff000000001400010002000000a10e00000800000081000000140001000b000000dd0b000004000000810000001000020007000000340d00000f0000000c000900469b0000010000004401018010000a0006000000020000000000000010000b0005000000914f0000000000000c00030000800000000000000c00070004000000020000000c00090009000000ffff0000b8000c80140001000400000014090000ffff000088a8000014000100ffffffff6a00000005000000810000001400010093f70000300d0000070000008100000014000100740a0000ce0100000100000088a8000014000100030000008c08000084560000810000001400010008000000440a00000200000088a800001400010000000000d60100000800000009a80000140001009a090000fa0000003d00000088a8000014000100ffffffff010f00000900000088a80000100006009012000005000000239200000c000900fe0000007f0000002800010004000000ffffffffffff00000000000000000000000000000000000000000000000000002400018010000b0007000000090000000000000010000a000f00000004000000000000009c0001802800010003000000bbbbbbbbbbbb00000000000000000000000000000000000000000000000000000c000500060000001b0000001000060003000000020000000000000018000c801400010002000000b20e00000500000088a800000c0005000f000000d4000000100002001883a84b870e00000100000010000200090000005a0400000000000010000b0005fffffff900000000000000040014001fa86feb4dea6e6815f2ae37f5c274f011f803f3df43b4e7450333f2307e027343dabebd7e167fa265cc58d14878a0e5b7b617fb29dc0abd4bc78d99390a99c259f799369b5d6da4c61f231f9365a54ab77d6b4bb2fef4b1c1"], 0x474}}, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = openat$cdrom(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$CDROM_SET_OPTIONS(r5, 0x5320, 0x8)
r6 = dup(r4)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r6}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
r10 = socket$caif_seqpacket(0x25, 0x5, 0x2)
connect$caif(r10, &(0x7f0000000000)=@util={0x25, "8474f12002f862273317dfcc2400058a"}, 0x18)
syz_io_uring_submit(r8, r9, &(0x7f0000000480)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r7, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r11 = socket$tipc(0x1e, 0x2, 0x0)
r12 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r12, 0xc1105517, &(0x7f0000001340)={{0x0, 0x5, 0x0, 0x0, '\x00', 0xdc}, 0x5, 0x0, 0x3, 0xffffffffffffffff, 0x0, 0x207, 'syz1\x00', 0x0})
r13 = socket$tipc(0x1e, 0x5, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000240)={{{@in6=@private2, @in=@dev}}, {{@in6=@loopback}, 0x0, @in=@multicast2}}, &(0x7f00000004c0)=0xe4)
bind$tipc(r13, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0xfffffffd}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r11, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x2, 0x2}, 0x10)
sendmsg$tipc(r11, &(0x7f0000002340)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0}, 0x1000000)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="140100002e00010000000000fcdbdf250401f2800c00180008ac0f000000000014000100"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

1.913472183s ago: executing program 1 (id=1865):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xf691, 0x10100, 0x3, 0x169, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x0, 0x0, 0x0)
unshare(0x2c020400)
r5 = msgget$private(0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_WANTLQI(r6, 0x0, 0x3, &(0x7f0000001380)=0x1, 0x4)
ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc044560f, &(0x7f00000001c0)=@fd={0x6, 0x1, 0x4, 0x8, 0x7, {0x77359400}, {0x1, 0x2, 0xc5, 0x85, 0x0, 0xcc, "c47e603b"}, 0x7, 0x4, {}, 0xfd})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000900000000000008000003000000040004001c000180180010"], 0x34}}, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff1085000000ae00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="410000000000000001000603000014000300060a0004090300f006e8ffffffffffff070007003a3a0909140002"], 0x44}, 0x1, 0x1000000}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r10, @ANYBLOB="0100000200"/22], 0x1c}, 0x1, 0x0, 0x0, 0x40800}, 0x80)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a", @ANYRES32, @ANYBLOB="020000000000800080001200080001007674693674000200"], 0xa0}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_REMOVE(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="010028bd70005fd5df25020000"], 0x1c}}, 0xc0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), r6)
msgrcv(r5, 0x0, 0x0, 0x3, 0x3000)

1.753570307s ago: executing program 2 (id=1867):
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x315500, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="0400"/12, @ANYRES32, @ANYBLOB="a87bd9ee0f576b7f154d335c2fc98bc19437485733999bcced68ee36d32fa86eda06129a4b4ef469cc3b15535be1fac5a3e57a8782598899a58b6f55870a666d57ea2cc1e9d382acbf80bc9b6b6b167abe318df21221f16789f450082e30e20684f5ade1a81fae6e5942567a9e386fa19dade09af668ed210193c04d972b5e8c16eaf89fadad4ec880bfb31b6b8056d73988bf", @ANYRES64=0x0], 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100, 0x1}, &(0x7f0000000180), 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xd)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x15, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
creat(&(0x7f00000002c0)='./file0\x00', 0x6)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020a000002000000000000ff00000000de5e241f6626b8d76664a6e6ac30061802b064256b3ed7b491cc0b66e1ec8f16038c256990affb1a77fa44fbfd5f9c5b92bd997e7202fc3bc6758a0c13e0a3160c700ffebfc608f8de1b162ff6bfde3f61c1c0f43ba5a8b86d8e029323d0798a4d73297b55fd5ef4a2bf"], 0x10}}, 0x0)
readv(r5, &(0x7f00000005c0)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e23, 0xc, @mcast1}, 0x1c)
mkdir(0x0, 0x0)

1.619897984s ago: executing program 3 (id=1869):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000001480)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x12, 0xa01, 0x0, 0x0, {0x80}}, 0x26}}, 0x0)
recvmmsg(r2, &(0x7f0000003c80)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x12222, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
openat$rtc(0xffffff9c, &(0x7f00000000c0), 0x26040, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kfree\x00', r4}, 0x18)
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
setsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000000100)={{{@in=@empty, @in=@multicast2, 0x4e21, 0x9, 0x4e20, 0x40, 0xa, 0xc0, 0x80, 0x3a, r7}, {0xf, 0x7ff, 0x4, 0x80000000, 0x6, 0x3, 0x0, 0xfffffffffffffbf2}, {0x6, 0x1, 0x9b1, 0x7fc}, 0x4, 0x6e6bb0, 0x0, 0x1, 0x3, 0x3}, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x4d5, 0xff}, 0xa, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x3501, 0x3, 0x1, 0x2, 0x638, 0x3, 0x9}}, 0xe8)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000000), 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000800000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r9}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x58}}]}, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
close(r0)

1.339945135s ago: executing program 3 (id=1870):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x10, 0x3, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = openat$cdrom(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$CDROM_SET_OPTIONS(r1, 0x5320, 0x8)
r2 = dup(r0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
socket$caif_seqpacket(0x25, 0x5, 0x2)
syz_io_uring_submit(r4, r5, &(0x7f0000000480)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r6 = socket$tipc(0x1e, 0x2, 0x0)
r7 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r7, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0xfffffffd}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x2, 0x2}, 0x10)
sendmsg$tipc(r6, &(0x7f0000002340)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0}, 0x1000000)

949.938035ms ago: executing program 1 (id=1873):
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x13c, 0x30, 0x1, 0x70bd28, 0x0, {}, [{0x128, 0x1, [@m_simple={0xb0, 0x13, 0x0, 0x0, {{0xb}, {0x54, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x6, 0x3, '/\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x9, 0x9, 0x5, 0x4719, 0x126}}, @TCA_DEF_PARMS={0x18, 0x2, {0x661, 0x3a, 0x0, 0xff, 0xfff}}, @TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x8e89, 0x5, 0x6, 0x3ff}}]}, {0x32, 0x6, "cbfcf34d95b26bde0a6f0669fd480ad3d8ccb5a2a8e745c79bfae9d581e06e6d86539830d9597f73dc03804b60f2"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_ife={0x74, 0x1, 0x0, 0x0, {{0x8}, {0x4c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0x24, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x9}, @IFE_META_PRIO={0x8, 0x3, @val=0xc}, @IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_PRIO={0x4, 0x3, @void}]}, @TCA_IFE_TYPE={0x6, 0x5, 0x5d5b}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000440)={0x1, 'veth1_to_team\x00', 0xfffffffe}, 0x18)
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_DV_TIMINGS_CAP(r3, 0xc0905664, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000180)=ANY=[@ANYRESDEC=r2, @ANYRES16=0x0])
chdir(&(0x7f0000000300)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r4, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000340)=@gcm_128={{0x304}, "0100", "1fd33cb95d66a1781f31bf07fd2ae874", "62266bd8", "fb966026a03150f3"}, 0x28)
write$binfmt_script(r4, &(0x7f0000000380)={'#! ', './file0', [{0x20, '#! '}, {}], 0xa, "65148ce47ce2de8a7cd73644d637c941ace8e1d604"}, 0x25)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x5, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x4}, {0x6ce, 0x4, 0x97, 0x6}, {0x4a, 0x1, 0x2, 0x8000}, {0x800, 0x8, 0x2, 0x7ff}, {0x8, 0x0, 0x7, 0x7fff}]})
msgget$private(0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)

811.880574ms ago: executing program 2 (id=1874):
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x315500, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="0400"/12, @ANYRES32, @ANYBLOB="a87bd9ee0f576b7f154d335c2fc98bc19437485733999bcced68ee36d32fa86eda06129a4b4ef469cc3b15535be1fac5a3e57a8782598899a58b6f55870a666d57ea2cc1e9d382acbf80bc9b6b6b167abe318df21221f16789f450082e30e20684f5ade1a81fae6e5942567a9e386fa19dade09af668ed210193c04d972b5e8c16eaf89fadad4ec880bfb31b6b8056d73988bf", @ANYRES64=0x0], 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100, 0x1}, &(0x7f0000000180), 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xd)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x15, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
creat(&(0x7f00000002c0)='./file0\x00', 0x6)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020a000002000000000000ff00000000de5e241f6626b8d76664a6e6ac30061802b064256b3ed7b491cc0b66e1ec8f16038c256990affb1a77fa44fbfd5f9c5b92bd997e7202fc3bc6758a0c13e0a3160c700ffebfc608f8de1b162ff6bfde3f61c1c0f43ba5a8b86d8e029323d0798a4d73297b55fd5ef4a2bf"], 0x10}}, 0x0)
readv(r5, &(0x7f00000005c0)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e23, 0xc, @mcast1}, 0x1c)
mkdir(0x0, 0x0)

559.768663ms ago: executing program 0 (id=1875):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000001c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, 0x0)

418.666ms ago: executing program 3 (id=1876):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[], 0x14}}, 0x0)

370.460605ms ago: executing program 0 (id=1877):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$radio(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_G_FREQUENCY(r1, 0xc02c5638, &(0x7f0000000000))
socket$inet6(0xa, 0x3, 0x5)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r4}, &(0x7f0000000180)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r3})
io_uring_enter(r5, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

365.419689ms ago: executing program 3 (id=1878):
mount$bind(0x0, 0x0, 0x0, 0x24b858, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000b80), 0xffffffffffffffff)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000d"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\x00', @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x11, 0x15, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000002000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000070000007b8af8ff000000003fa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000090000017b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r4}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYBLOB="000000000000000408000a00", @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
recvmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x17}}], 0x400000000000179, 0x0, 0x0)
syz_open_dev$sndpcmc(0x0, 0x0, 0x214900)
r5 = socket$inet(0x2, 0xa, 0xd)
setsockopt$SO_TIMESTAMP(r5, 0x1, 0x1d, &(0x7f0000000000)=0x20002, 0x4)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10)
openat(r6, &(0x7f0000000040)='./file0\x00', 0x44400, 0x95)
getsockopt$SO_TIMESTAMP(r5, 0x1, 0x3f, 0x0, &(0x7f0000000080))
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x1a1002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x400000000000041, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002a00)={0xa, 0x15, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xc5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r6}}, @map_fd={0x18, 0xb, 0x1, 0x0, r3}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0x6, 0x0, 0x0, 0x0, 0x900}, @generic={0xc2, 0x5, 0x5, 0x3, 0xfffffffb}]}, &(0x7f0000000a80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)

364.819673ms ago: executing program 0 (id=1879):
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)}, 0x8890)
r0 = shmget$private(0x0, 0x9000, 0x0, &(0x7f0000ff7000/0x9000)=nil)
shmat(r0, &(0x7f0000365000/0x2000)=nil, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x400, &(0x7f0000000a40)=ANY=[@ANYBLOB=',debug=0x0000007,version=9p20\\++},%{!(6,afid=0x000000003f5689c', @ANYRES16])
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x8c)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd25, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x7fff, 0x0, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = openat$dsp1(0xffffff9c, 0x0, 0x24003, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000005ac0)=[{{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000001c0)=[{&(0x7f00000005c0)="e84cd183cff48f2c822654fc44debb2f57ef96c4e98d08750538a75ae2f74c5e5088e1b5dc79f37fc2d8ce103979555b9ba5239b212650cc2c7389ac523c82ed996caa1d4b27644c5f0f9e8da2bf869f8b5261c480f9f6f9647d05a666e329467cb6b9c8712671ec52af1afbf95aa04427b1b0a96eb94bb081bd5f94d06db28cc92fe015ac998811bd2416177525bc1ee83fc8ce4e63857272a5961a7963a038594629aa8a79c55af7dbb9672f00ae338402fbc5415056b5668a5af0a073cc8cd75f47e9382af9509d71c2f7abb9217d4a991f618aaa099a496168c53e9f3eda", 0xe0}], 0x1, &(0x7f0000000780)=ANY=[@ANYBLOB="000000000100000002000000", @ANYRES32=r3, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000002000000", @ANYRES32=r3, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="0000d607000000000000000000000000b949f6050243f051d8e3ab4632e6ba707f47c0ca0c15ad03099ba1da83a0b76078e5d93ea50ebd45fac5950bc0973f944451d82e3ccbe73df9de7355459b320ad4ae5d3c84f3111caa", @ANYRES32=r3, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="000000000100000001000000", @ANYRES32, @ANYRES32=r5, @ANYRES32=r5], 0x0, 0x40}}, {{&(0x7f00000009c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000003c00)=[{&(0x7f0000002ac0)="3cf340107c2fef9d42d023eb86252274a905770e2513d0698edb918d8a0a3087d1982622cfd763c49352dd7cd68327befd149654803d4a303c45672300b1060627d120564e1783238255ae146de05769493c5de03976ba19614cbc46468cc6ca8e010667a4c8d3cda6bdabade8fca21dd03876", 0x73}, {&(0x7f0000002b40)="a23d2147df46b3bbc13efcd3c17990cafae1fa96e928828a9237feeaf2c2451bd9a47cb19fe1f788d60bed9eff6719f89a09c46f8ca864697ce5dc554a299ad5a27f2a5a989fb5c18ce61640c59814788f0db001292a710676427636be03f778b177f5c320265d79d5494fa49115f58ef20cf201c4c1ed95cfa2f5ee0544cedb02642d1ce162e529a54a4a19c69e7cda2341abddbfb28640026c870787114f29f2ceb122fbea712a63051b9e82", 0xad}, {&(0x7f0000002c00)="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", 0x1000}], 0x3, &(0x7f0000000a80)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="18bae3a9337064e572df0000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="280000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYRES32, @ANYRES32, @ANYBLOB="100000000100000001000000", @ANYRES32=r4, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="580000000100f80400730100", @ANYRES32=r2, @ANYRES32=r5, @ANYRES32], 0xc8, 0x40000014}}, {{&(0x7f0000003e40)=@file={0x1, './file1\x00'}, 0x6e, &(0x7f0000004180)=[{&(0x7f0000003ec0)="11bb210dbb92be2d8f93e4443068ff3105a80f99fb7cbdeca2f33dd727469f67c2a0efdba47c3ec24c794fe72de0dd9137fc56adb8605f8237d75a06c3a96dd606e324d4bff19ed74420c8f11fb3ef886fad5edc91b8afd3cfad0835628edab0f5467336f73277bafc304a9f3d7e8595713b41e387a9a025d3caf026bae3e7ef967fef539295aaabd778bc63a2e28c6acb4d84849accd9167cdd91e1a981d4e1e173f448a83a1ac230f66ef23d9c94c434092e117a0a8fa81beb37de244b63f53c743def1451", 0xc6}, {&(0x7f0000003fc0)="81a3c3955abd568ec0e9f32062fdf315f357b128ba0caff71c3280954cc46c143adf005b219d92b07929e28e097bedf8052dd7f68a48faf78fcec3147589a172fbb7017b54a806e01aab74bc4e5221e901", 0x51}, {&(0x7f0000004040)="db8da5f66212396ff9cd632a525cfb06c47355fac6b741aa1f5410514c1863bb40a0b0e0648f8f9e82b751a4f0a551dd9e9e199bbc63bb58bcb330c679fe5445e0", 0x41}, {&(0x7f00000040c0)="5b0792694e5d3a1041d900255106ed52192054152ee02181602a288ee4bfae506903ef2f2f2553894c5e40eaa0087354279d8f6a672870af555e8f11696b8215fa0ece48443e5a863fd9c2c16bb3a6d19cce47bac721e0d222545af6a037215fd8f535ba4d7f18d4c6a5132e6d4e837ad4c493d38e47999acd1d993a67285283c59f218a3a2f308e03829df71a9a766c849ed61395d9ff", 0x97}], 0x4, &(0x7f0000000880)=ANY=[@ANYBLOB="000200000100000001080000", @ANYRES32=r2, @ANYBLOB="000000000100000002000000", @ANYRES32=0x0, @ANYRES8=r5, @ANYRES32=0x0, @ANYBLOB="000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000002000000", @ANYRES32=0x0, @ANYBLOB="016ac9ca27ceb524a6494ac2ff43462dbfe76104a37622a66cbd550844263f78b42c6d9937c0207b3f72d7d09b9f8ff06407d00ad38cc949b93432edd268e6d0095f1a14ed458ed28b52794120d9e3d15e362b67e7747c528dbf803ae5c8c087924947ea8a14ce0edcc6bf702c78b32e62b99cb1479c6b6fe8964c71763cc3ef334d6e07cf673c7251abc37b76862e051881bf058a797c67153f0dfc64fcf781ab07f36baf1ef01d0fa1dfeb89234b97f53e7f6be915ebc18461c47287187bed966a624c4351ba", @ANYRES32=0x0, @ANYBLOB="000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x0, 0x20048441}}, {{&(0x7f0000004240)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f00000044c0)=[{&(0x7f00000042c0)="53102f38ddea07858739db77261bedcde1420c13da23744c456d98242edc675f31618e73769346875df4a793c2200fb4f014f41d5ba83b313246c8c45b369ee6b606bdaa996dfca3914e21bf5bf7528abefb9a16ee77156b6bff5b376d69b6d1fef724fa06b44d3114b83139d151a39d91c1e4ad97356852b01fdcf23094476a7809de229b6c7328cb6b96b0dd80f10b05ef223886471a3835096e2d9f875e98c2b56a41a1359da3bc16e98f15532fd31393829f3f2c307cbcc0b92ac02e385aeed3294f541d069f478e45fd19ff3be5770de13877115c19283110", 0xdb}, {&(0x7f00000043c0)="4185f1c8a2ee13172af1197cdba0b84a02c2b780a4f538b5772d63ae64afc878358e70e63a8eb0c78b6e6f4ab68622ee6fef2f5448ea7a941234399a08b0f18e78c213c5a5cb7ea12d3faa1f2a1f2e734cf67548ebfaaf73448d50a6858ca15c41e93799b708caf6c4a2bf", 0x6b}, {&(0x7f0000004440)="fc02ea0befe6d472b35a40f1e8f30465e6a9666cb9a410997bbb", 0x1a}, {&(0x7f0000004480)="0a856a36df274d2c7f58c41485fe968a28902964580b7d168f3da77c8c57caf22c66f069d973d9429d462540f43c583bc879e285aee76c9b7990", 0x3a}], 0x4, &(0x7f0000004580)=[@rights={{0x28, 0x1, 0x1, [r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}}], 0x70, 0x20000010}}, {{0x0, 0x0, &(0x7f0000005980)=[{&(0x7f0000004600)="24d3a8703d30e344a49ec21d97101729977b94118cb60cde3440e859af4fed342c334be4141c8b6ba26367947d24a9eaf5c49b4d58e80fdc026a13f65d30ce2ff088fe72386bad1b2e3750b3d9d0a1734a18eee7157fb187b7055dfd1ed27f64716919b72baa81ed71b91be86fd870060dfc92fdebff4e53ea9239309f394e98e4c2d3c6932365261df7", 0x8a}, {&(0x7f00000046c0)="56a70f70f34a59d71e8c69ae95108eee92b75ae8ed0d92640999466fef196333745cb9fa96890d5491358dea30b21aedf25e279394b5a19ab5a2429ce75e0210be5cb08b5d44944913778f145a7ed24cd6edc51214b010b472fc3ad32e80c1aac26f7d4144f24978cf0c39a501bd76d4dd03c3dc09fd1d1419074e7dd3df810d0c8ef795", 0x84}, {&(0x7f0000004780)="aee4ac709b6f91ef84887af19c70be3257b1f6011b8c7cb1d392d49c1b98cec5748cb1a26bf07bfc0bc92aa989baf5930f22d83220c61c", 0x37}, {&(0x7f00000047c0)}, {&(0x7f0000004800)="9fe281be47a6f92c2cf36e9b6d20b28f52c68258873fc9a4a61efb0ed20da7a9665cfdbc4f32ac20fcc812f3d26f9cdea4ea396a926415a9c907dae97cf90484c4789f34822020ba101799bcca69640f84df7bb640cef27f1d6ee5f553c83bfc92377f9c411e3939254e9dffce40d35a2ede9a499051d7ac9ef44ab13bd55d43d984e3ce0b5b6bd3c90805e2a7f9c18afffad470eb369e3058928967b84feca25130cf2f65cfb71a9b58442cd54343f489f3b801648cfc40a0c490a58723a10235b8b811e371615cd95e103d615603039033f4e34635642e25804ce047b083b2c550be7a37443398e833d93aa86cacd5c0010455f27b5d25d63feec9f07ee67b28764985d7a115867943ff2f6221d6d6ee0f1fb1a28b4b98ee4a8a7eb396b72d24635339656574098dffce4bfc0639daf44b711948bad410879145369cbc64617af14221796f6780bdc0650ab7abe98c8236b00ae19d4f580ac4f06a5d3db37cfd6bf4fa67c786f8dc1b8db774b73aa5164a632a1e2f90f3540dbd766fd44dcfec2bca9998e33b6ae5cf948400d4ba20179f170633317863c7a68d5c89b669b4d559d1f2fc54e43440e7811c1e1237d9b0e495d9c9ac3ea634ff8cb9888f3dd97e97474a37f1762cf3bbb28303afb736b7d7526eb3250d49badc6fcf9a11e16047257d085bd649bfacf8cc23cd0cc39762d604317771186119a9dd9ba926adf0c7097ad3612c205ee34c13cbcdb35bef78458a638c261ee865fa500cbe59b777c025bd045e1227ba29ddce13f8a53228ec57bb052f668100853fd360209821d2a9b9bffdcbea26c58b849d0e6046461f560d0165f9ab8f2e9dc283fcbcbaf1886f03f5f8b1daca7b4b795f5d8a0fcd054380c47c3a306b2c16d8295fc41c60a1011307b25ccb4f8dbb660090e50cb3f2b926965cfeae8d0572bfb8107e04587e98b7d39a2653eb897a616257c5eec5ee94500f11c1efd301a325dcd4e55a0fc9113080d6f703e563f5d2fe5af95cea6cb718e1d89b0e9d15213d6cee5861f290ba9aa55dc91ff9d752bfbe16c85b9be15a1c95693ef906a25136608472b9af14c731066a002e8cb4ba5dd6b3dfec1a37e3800bde5f5e6dc12273f29bef6eb591a831576ed4ee82f8477638b162c15d48abb5090439c2404d3b75be15c37b57f879aad1f34a63ff69345e797bcdcc6de2d3ad0fb2792910fd04794e8d8d46c16e95a092d8060f3209719df1e61d9291df988eb59784fd72b9c5d6f712f3423df16996b929e2ae3af92ce5232566fef755ec722d4f6d30dbd71e009c9d4d4a6d2de4fc470fcb652f4ac5d7ca6fbb6891dbb449c2b53776abf64d6bccbf95786bc359894a77d948e7b01d30dd518b1fff2514745a9f0688f63971b3486d2f472bd69781b279bcd77983e4b5c26cc213810a30d2a0d88e4283c17de01b48cc3210703a2b0f92be232e4789d3537e97a9935ff85c0acf163fd5c0b346165f421cc699ce2bca42cfd68b607cd5f7f54aa6a56d68fb9f0a94e1383cd4b646d2c34421a56d28bd64db8382ed4607998c228612b9cf7ddb496462c4181312fa23a27abd35eb4d8171de9987f34a18451b40e9363ab420031fff25f79803c2a9b040d40a5205569313a9abb89c9694e9f0b7266b2949259ce98f63afc038ff4643be88d0a00fac70f93a94f5675cbb0ffde49369c43ae56141bb5b94cc0d49d3872aadf100dfaa41739002f1f76facc956cf627eaf431d0585a74574fe894690a16debc100391b27b76a5515b1a072432d79e339e5fd2ddeb0274addeb439dc640701b9119c1046cc72b7accfe23df37e1379120a4c1493dd1829225d16c66a738d9a673a48f793302d3fba3ca92b1a110bb2d897eb1af0466506decac9ee9c350563d375f070d58692a8eb88afc93cc0f2d5e257cc10392fc5ee125d324a68c0b45d19bdaead5e7dc77f0167f75e9c5d910bdb2a1b5f62ce1cf4c5aaa673cb3348af67ade6b0c8fd70d821e3f0f3b740b719d1cb5070e5accd6eaf9f31254aaad6c0f1ee4d31a18e64c8ecce31fb17b13102b6aa44e1e5ee9224a91fae0aa499c43a602ff64cdbe6850ee640569fe30f019bc8d898e9541c57103bbb7cd67bfbc990c54e746fd46e734e23ea0e4ad6cf7a06540ae72666a95e8452c33b13d109078e7101de1453daa165695a3c20e0d82a801f7466383b9a43dd7701969ef9fcd59a3547a2d0cc01719694242024ab73258d8cc8719ea18398ac935157ddb1ed157e70320006329c03dcaf1d16260568663d8476832a8e5e7acad4f366a18dc99413ecf5fa8d195501f8c29afa6772523b4d9309336f5a5fe1b4db1c9c68c4808f6d65680cc8039fbb75bacd77f5e32fedb3063e2d90b1623b946bff2f5560e374f93438adec472355058d83ffaabe0cc347ec8ed61af647c4811a6e0f619d51e8ece6156f1cf903d82a93edb1226c68a8679e0b71f68ecbd8d488768c812ae70c5240f92e022a8eb71299f524bb75777e304369d0ce2e7d64ae3a276a02af02a7f7005505ae360a529ddac89efc13af524e1ab4b034286f905aa23a2ed9595382f9a02d7f0a4f749a62fcee0c632456f30d85298983391685c8d68cb8993ec251e1ad905a341a1828e9f7ad687c10998b490cc014ede14510a1bb6356e28a1c7a2f4f2096c9e70116278ab7216a2f9132a62e291a9e6a217e2445e96154eb0feca287ec00d69f778fabf17447b679c04357f540730d1e68a69a3074ac042ae893b138f6bf0327441b172d1bc86c2653b96740f058d70c0d017762bfce586b6269dcf59b3c3498cdb6d5f901ccabcf2e5db406f174d1db06089dd53a518c65b518000584bc3af40fa40ab8896a43c1e200ee2d916a13aee7ed66a1cb1a6f564c38602e80ab824c8336417c7c1281c3d0156ea14546eb8cc82f0bad88d34395e7d9b27e01019c1aad7e769b08ca01d86aff5bd24916c3269694c61e69c4786efdf7c85bf9896de1ac54b9b2e4c78f58a8c8a5fc84b6c0ed689c8bbd32c139851817fc5aeae468c882ba7a0be79437caa49c9993a558d2543ade9d2921561b57053b77fdc109d6afdbb81258760e0cd8108d696b098aa26a2824130d4951f9939f4eb39a0546b5a9124545a7569ab17c91161837bc214d61a20ee01a83cd4625ba67966d4b8d623c1e05d4026d2740baa6b00ce6390a96848a8281f2956a812c4e9bc31c13c97861968bb35b5d3034ac53781e4e33256dad2f941ff9e7eecb2746db3516cb8db14703fd7aea9175c87c199424ff04ab91ca111440bf7bddbfe3acccfb7410624fff54f2c2e96ebb4fbc3e4f77bdf0078067f38206ed2799f4f8d4cd3045004b3151eda92ebb331539ffdd2e3b223cc7a7db564a9ed12ce76691f0afc90af222eccb3ff677544c3ed4d8d76622b11b2f1cd868ed6cb42ab0ed8b4d9e4cb702bfa846feaddb8b25847a725a02b091874432fd25a49e9f110f4ccf2a022af9c53d94ba83122bc065c572832ed85b83aef3380ab9c3f0a8fe3914cde6b06548ce86184e87c999a73bedece7686085cf77d9e783aa324bbd63b21250a74937e8e70faa0e142674063a4be4517fa681139f20d7d10820cc2807616b2d4014a1150d465cb1c846c12bb254151ed0ae2c356fa299ce588b503ab8f9d12ae5f689c03b39446f80f70d527c17acee4150c3fce8e24d55f7e2c80d3afb20f4c44e450c7a3afb901bfe4a90576b5bd6f9c2ead1af13ea294f445ae9d5a27b86284d4ccbcdbf143b1197c71af3beab46b76f511e41edbfb4fa3ba400378fc4bcb289d433b2a739ba46df88757e3c99587aa97085cdd5d63edbb4cc354f9de3787a125eba1af535df51ef677366a057f587d00ebfb0862b0d571ecf5e81af4a8aab1b33366817bbcac533cfe83d2603c96a70440a9190da432d14f2bafd5744f222e06e56c95e89c34bcc9ac1cb608a22de10b431738969c2322723cd6833ef73902340866a54c9fa265dd812c2b8ddfc33684c6d364aa7fec0a85144e90889cf86770b77b2c1dea7c42c8dbd5209b487eaf2dcc2cac1cdcef212e9a2bd0d43fb7a046ce7b66143d3d1ab4e154d7fa7746ce28c8821d7d82b242bf8227f228292b23ed9b65f605afe16ba3eec5f9e2e851a5d3c41776f89354f624732e8a3924803b2d3618081dd14a7cd2512bb773c02fc3a47d44b431f3d4c5dcca00f73257e15aaee70c10f27b3e80a700f5a899dc0a6a5348b81c2d08c29e0b0845add4258a550db00e2ad516b03ce631b9d667821f0cddc4e5574e014a821e7fa992ab15167a72756ba39e7c8e0f890184f77d99ef4e371f59b0c4baf67da6babc1082fb435091a797f0843fce45df79982dac70e4beba6ff89925f73be1706c65be776b4ac98a11ae34e992fc85a5f9d32d5ffe2300c368341aa5578ea1fe9f17f745a5bc112ebc3c264dfd1f5662923ee915eb391fb280c088e425c04add34576a89ce7991df799ce7e99a061e547aa7684415340de643958f92ea37976e4f7e630c9148ba41d678abbcf1a2c5cb4c35a9581d3a8d7afcc43cdd7d5076fca600ddc6c00414146b20f46d32b2b86ee240b6b5a2f31008c9d84bb2866f832f445a1c61fb60de370f24aa5fde223e0fba4330613f9b7f66f1cee92625ba6a7ceaaab62133abbd5018ef59f3f36f42097562732832bfad82cf53c9078c38dad3defb632e043a153ad9ceac0eb9d9edf4dc24c290db78433b8cb0f9a059b1bb3bc8938dd6562297f220f07455d14a78dff33fc6fa0d124f0a332bbcd91c644bb154ce477c822c2ae530fd1cb6d914574d1b5620997386c85545f4d3c37020929338167de04fee6e2818250c27868a9dcc0a5fe54a4d04fd57b3de4767d5a48c33a20b2f053c7da5c46170b2790f2d0072436f19ab8a4076866e839488ab12d05ff71c09e80fbd805bf562d97a1b980458517dfb550d8e2cdd96899e762075713b96d468e0e0c5e0ab6dbfdefa93f11372f53d3d05b2a134a34e851d3db3d546b23e457c55e27ac9b57efaecba70a18cbca8a11e7651f74f3a94cc204cc7b84c0d0a6d95ca0a8d6d948edf4644460ddfdac8869440386f8e5df3f5fbb5d058e4f53a89f8e71a3085f34ab78610509698ecf49efb0ff663ff5cd8773e76a05468f78986eadb108785c576d7ca39682ced4d354b4ce06bd164493fe1c2d7ad56ba11092bd81bdcc4176fec35781391b5ff0b2b66c3edc50ea8dd21b14a046368fa0a32c8d75094178e0f06e8c7da635a4a8506cf6a2e293d410ef97c150a08b02ba08a3bb5be689c6e32c394d091a80275639ee132f5212f6f001b7e47ff3a667539b0bb07c9ce9e6ea6797e72387d3fc9ece2fe187e14eeab2441fd52c9322a5f62f1584acf4d6de30b1cfa420edf79a192e7e79d9a8f6ff4c57abbd86a0be79e32bd8668de7a660bbb5a893953ff7f272e4dc02237bd1a95376dd991ccb4ca3c2335e5e790a017a79d829d55dad70f679f396beb3783999677c233ddabcabb138296aac02fbbb3b3184b326b32e5e35dde59fcaf1d9abd0a55193fdf567142ffcc49997a511b810b3d17ecef7cb09a4a9735ccbcb4942000a420e6d6d2c44cf1c79fb83d19105d01c9ce95071c4fdb48ee49f8c3e463e421c23bc2c1e33eaf0c9e544d4ced5b5323720c1632ee1e5ffe46f6aad4284430f1b327965740b23a95ad791bc281e39058882528a5cd89d8327f98960554ceccf62284c1e647dd09726cf7120455fbbab30d94f47661f6339da3d20a04d40fc3f3518eb083ed21b0d899aff1cfac5810caea285435", 0x1000}, {&(0x7f0000005800)='\x00'/15, 0xf}, {&(0x7f0000005840)="03b5a002fc9dc603f74bd425bec73c316073ea9a32d5bbf6239fda08af1ec1a5e4b6c0cdb24d4f1572afee4e4d5778bb24b42111260aee48e46c7e32ea32f0684cefc6b9ab085298345f832563501dc852ddd9b2c1a9dffe3313a1bfd4959085212eb4d6e41a134a5ca6f626685d39e5659ac8337d0fb9d9410d0ba870b8d3d17534d3d36ce9aa979a05fb290f2cfc41eaa02eb8bec09d6253ceeedf45d9700872cfc6b1ec5ca0dde99faae9f6b146c1143c0887908c6e7939702d093584", 0xbe}, {&(0x7f0000005900)="6fe69a6c5ddcfc0b4c9b49a2278e793c62412d923dc8ad89aafe7e1222d327de87c96d707ef5b6e65e422bf09613767ae1e7f1dcc811e5686f53705a7748f0abb882aa14dc4dbd21", 0x48}], 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="1c0000000133737800000000", @ANYRES32, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="200000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0x9c, 0x40c4}}], 0x5, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fanotify_init(0x4c, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10)
shutdown(0xffffffffffffffff, 0x1)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200), 0xd4, &(0x7f0000000180)={[{@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './file0'}}], [], 0x2c})
r6 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
shmat(r0, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
shmctl$SHM_STAT_ANY(r0, 0xf, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x3, 0x43, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000021e340a1592d588050080000000000000000000008500000022000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000d4448d49850000000600000095c561ba05d9be267a84ddc524271fafb76d9bdfa980400a"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r7, 0x18000000000002a0, 0x4f, 0x0, &(0x7f00000002c0)="d2ff03076003008cb89e08f086dd", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

113.735668ms ago: executing program 0 (id=1880):
r0 = socket(0x2a, 0x2, 0x0)
r1 = syz_io_uring_setup(0x837, &(0x7f0000000180)={0x0, 0x2b94, 0x8, 0x4, 0x3cf}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x40, 0x0, r0, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x7, 0x44, 0x0, 0x0)

59.423993ms ago: executing program 1 (id=1881):
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x315500, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="0400"/12, @ANYRES32, @ANYBLOB="a87bd9ee0f576b7f154d335c2fc98bc19437485733999bcced68ee36d32fa86eda06129a4b4ef469cc3b15535be1fac5a3e57a8782598899a58b6f55870a666d57ea2cc1e9d382acbf80bc9b6b6b167abe318df21221f16789f450082e30e20684f5ade1a81fae6e5942567a9e386fa19dade09af668ed210193c04d972b5e8c16eaf89fadad4ec880bfb31b6b8056d73988bf", @ANYRES64=0x0], 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100, 0x1}, &(0x7f0000000180), 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xd)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x15, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
creat(&(0x7f00000002c0)='./file0\x00', 0x6)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020a000002000000000000ff00000000de5e241f6626b8d76664a6e6ac30061802b064256b3ed7b491cc0b66e1ec8f16038c256990affb1a77fa44fbfd5f9c5b92bd997e7202fc3bc6758a0c13e0a3160c700ffebfc608f8de1b162ff6bfde3f61c1c0f43ba5a8b86d8e029323d0798a4d73297b55fd5ef4a2bf"], 0x10}}, 0x0)
readv(r5, &(0x7f00000005c0)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e23, 0xc, @mcast1}, 0x1c)
mkdir(0x0, 0x0)

347.545µs ago: executing program 0 (id=1882):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)

0s ago: executing program 0 (id=1883):
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x315500, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="0400"/12, @ANYRES32, @ANYBLOB="a87bd9ee0f576b7f154d335c2fc98bc19437485733999bcced68ee36d32fa86eda06129a4b4ef469cc3b15535be1fac5a3e57a8782598899a58b6f55870a666d57ea2cc1e9d382acbf80bc9b6b6b167abe318df21221f16789f450082e30e20684f5ade1a81fae6e5942567a9e386fa19dade09af668ed210193c04d972b5e8c16eaf89fadad4ec880bfb31b6b8056d73988bf", @ANYRES64=0x0], 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100, 0x1}, &(0x7f0000000180), 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xd)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x15, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
creat(&(0x7f00000002c0)='./file0\x00', 0x6)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020a000002000000000000ff00000000de5e241f6626b8d76664a6e6ac30061802b064256b3ed7b491cc0b66e1ec8f16038c256990affb1a77fa44fbfd5f9c5b92bd997e7202fc3bc6758a0c13e0a3160c700ffebfc608f8de1b162ff6bfde3f61c1c0f43ba5a8b86d8e029323d0798a4d73297b55fd5ef4a2bf"], 0x10}}, 0x0)
readv(r5, &(0x7f00000005c0)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
chdir(&(0x7f0000000000)='./cgroup\x00')
mkdir(0x0, 0x0)

kernel console output (not intermixed with test programs):

 ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004b4e
[  300.905718][T10586] RDX: 0000000004000020 RSI: 0000000000000000 RDI: 0000000000000000
[  300.905728][T10586] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  300.905738][T10586] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  300.905748][T10586] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  300.905773][T10586]  </TASK>
[  300.905834][T10586] ERROR: Out of memory at tomoyo_realpath_from_path.
[  301.681055][ T1021] usb 8-1: new high-speed USB device number 38 using dummy_hcd
[  301.753864][T10594] overlayfs: failed to clone lowerpath
[  301.832386][ T1021] usb 8-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  301.835822][ T1021] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  301.839162][ T1021] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  301.842269][ T1021] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.846132][ T1021] usb 8-1: config 0 descriptor??
[  302.053384][T10592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1225'.
[  302.058369][T10592] xt_hashlimit: overflow, rate too high: 0
[  302.265327][ T1021] usb 8-1: USB disconnect, device number 38
[  302.510380][T10602] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1229'.
[  302.632642][T10608] netlink: 'syz.1.1229': attribute type 1 has an invalid length.
[  302.635195][T10608] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1229'.
[  302.657126][T10610] fuse: Unknown parameter 'group_id00000000000000000000'
[  303.041328][T10621] netlink: 'syz.1.1234': attribute type 1 has an invalid length.
[  303.043863][T10621] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1234'.
[  303.068152][T10624] overlayfs: failed to clone lowerpath
[  303.231150][ T5942] usb 8-1: new high-speed USB device number 39 using dummy_hcd
[  303.381079][ T5942] usb 8-1: Using ep0 maxpacket: 16
[  303.384291][ T5942] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  303.387934][ T5942] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  303.393388][ T5942] usb 8-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  303.396279][ T5942] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.398927][ T5942] usb 8-1: Product: syz
[  303.400308][ T5942] usb 8-1: Manufacturer: syz
[  303.401964][ T5942] usb 8-1: SerialNumber: syz
[  303.404823][ T5942] usb 8-1: config 0 descriptor??
[  303.612312][ T5942] appledisplay: Apple Cinema Display connected
[  303.819391][ T5942] usb 8-1: USB disconnect, device number 39
[  303.821426][    C3] usb 8-1: appledisplay_complete - usb_submit_urb failed with result -19
[  303.827408][ T5942] appledisplay: Apple Cinema Display disconnected
[  303.922196][T10639] fuse: Unknown parameter 'group_id00000000000000000000'
[  303.961520][T10643] overlayfs: failed to clone lowerpath
[  303.967307][T10643] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1242'.
[  304.191075][ T5999] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  304.342236][ T5999] usb 6-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  304.345420][ T5999] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  304.348228][ T5999] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  304.352053][ T5999] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.355653][ T5999] usb 6-1: config 0 descriptor??
[  304.565910][T10641] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1241'.
[  304.571193][T10641] xt_hashlimit: overflow, rate too high: 0
[  304.708501][T10661] netlink: 'syz.3.1246': attribute type 1 has an invalid length.
[  304.711129][T10661] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1246'.
[  304.780438][ T5999] usb 6-1: USB disconnect, device number 34
[  304.859525][T10665] overlayfs: failed to clone lowerpath
[  305.309229][T10671] fuse: Unknown parameter 'group_id00000000000000000000'
[  305.550645][T10678] 9pnet_virtio: no channels available for device syz
[  305.563983][   T40] audit: type=1800 audit(1748751301.313:6): pid=10678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1252" name="file0" dev="9p" ino=35913881 res=0 errno=0
[  305.565206][T10679] 9pnet_virtio: no channels available for device syz
[  305.565966][T10678] 9pnet_virtio: no channels available for device syz
[  305.598896][T10678] syzkaller0: entered promiscuous mode
[  305.600726][T10678] syzkaller0: entered allmulticast mode
[  305.735787][T10685] overlayfs: failed to clone lowerpath
[  305.743883][T10685] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1255'.
[  306.081093][ T1019] usb 8-1: new high-speed USB device number 40 using dummy_hcd
[  306.222585][T10690] FAULT_INJECTION: forcing a failure.
[  306.222585][T10690] name failslab, interval 1, probability 0, space 0, times 0
[  306.226514][T10690] CPU: 0 UID: 0 PID: 10690 Comm: syz.1.1256 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  306.226529][T10690] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  306.226537][T10690] Call Trace:
[  306.226542][T10690]  <TASK>
[  306.226547][T10690]  dump_stack_lvl+0x16c/0x1f0
[  306.226563][T10690]  should_fail_ex+0x512/0x640
[  306.226579][T10690]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  306.226592][T10690]  should_failslab+0xc2/0x120
[  306.226606][T10690]  __kmalloc_cache_noprof+0x6a/0x3e0
[  306.226617][T10690]  ? copy_mount_options+0x55/0x190
[  306.226634][T10690]  copy_mount_options+0x55/0x190
[  306.226649][T10690]  __ia32_sys_mount+0x1ac/0x310
[  306.226662][T10690]  ? __pfx___ia32_sys_mount+0x10/0x10
[  306.226677][T10690]  ? rcu_is_watching+0x12/0xc0
[  306.226694][T10690]  __do_fast_syscall_32+0x7c/0x3a0
[  306.226709][T10690]  do_fast_syscall_32+0x32/0x80
[  306.226722][T10690]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  306.226736][T10690] RIP: 0023:0xf7fc6579
[  306.226745][T10690] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  306.226755][T10690] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  306.226766][T10690] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000440
[  306.226773][T10690] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000080000400
[  306.226779][T10690] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  306.226786][T10690] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  306.226792][T10690] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  306.226805][T10690]  </TASK>
[  306.285175][ T1019] usb 8-1: Using ep0 maxpacket: 16
[  306.294069][ T1019] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  306.297618][ T1019] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  306.303204][ T1019] usb 8-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  306.306027][ T1019] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  306.308530][ T1019] usb 8-1: Product: syz
[  306.309854][ T1019] usb 8-1: Manufacturer: syz
[  306.311417][ T1019] usb 8-1: SerialNumber: syz
[  306.314184][ T1019] usb 8-1: config 0 descriptor??
[  306.523972][ T1019] appledisplay: Apple Cinema Display connected
[  306.571099][ T5999] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  306.606315][T10696] overlayfs: failed to clone lowerpath
[  306.732686][ T5999] usb 6-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  306.732764][ T5985] usb 8-1: USB disconnect, device number 40
[  306.732896][    C0] usb 8-1: appledisplay_complete - usb_submit_urb failed with result -19
[  306.736732][ T5999] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  306.744825][ T5985] appledisplay: Apple Cinema Display disconnected
[  306.746736][ T5999] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  306.752719][ T5999] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.757380][ T5999] usb 6-1: config 0 descriptor??
[  306.967812][T10694] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1258'.
[  306.974396][T10694] xt_hashlimit: overflow, rate too high: 0
[  307.182864][ T5999] usb 6-1: USB disconnect, device number 35
[  307.364662][T10702] fuse: Bad value for 'user_id'
[  307.366227][T10702] fuse: Bad value for 'user_id'
[  307.468380][T10709] overlayfs: failed to clone lowerpath
[  307.791330][T10719] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1267'.
[  307.911933][T10723] netlink: 'syz.1.1267': attribute type 1 has an invalid length.
[  307.914382][T10723] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1267'.
[  308.407698][T10740] fuse: Bad value for 'user_id'
[  308.409391][T10740] fuse: Bad value for 'user_id'
[  308.600652][T10749] netlink: 'syz.3.1273': attribute type 1 has an invalid length.
[  308.603234][T10749] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1273'.
[  309.051430][ T1021] usb 8-1: new high-speed USB device number 41 using dummy_hcd
[  309.088625][T10757] overlayfs: failed to clone lowerpath
[  309.093748][T10757] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1277'.
[  309.202311][ T1021] usb 8-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  309.205532][ T1021] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  309.208332][ T1021] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  309.211306][ T1021] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.215828][ T1021] usb 8-1: config 0 descriptor??
[  309.424629][T10751] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1274'.
[  309.431140][T10751] xt_hashlimit: overflow, rate too high: 0
[  309.638725][ T1021] usb 8-1: USB disconnect, device number 41
[  309.985036][T10768] fuse: Bad value for 'user_id'
[  309.986664][T10768] fuse: Bad value for 'user_id'
[  310.014813][T10770] overlayfs: failed to clone lowerpath
[  310.293885][T10776] netlink: 'syz.3.1282': attribute type 1 has an invalid length.
[  310.296461][T10776] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1282'.
[  310.876725][T10788] overlayfs: failed to clone lowerpath
[  310.891013][   T61] usb 8-1: new high-speed USB device number 42 using dummy_hcd
[  310.967503][T10792] netlink: 'syz.2.1288': attribute type 1 has an invalid length.
[  310.969993][T10792] netlink: 228 bytes leftover after parsing attributes in process `syz.2.1288'.
[  310.972988][T10792] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1288'.
[  311.012078][T10794] fuse: Bad value for 'fd'
[  311.041238][   T61] usb 8-1: Using ep0 maxpacket: 16
[  311.044093][   T61] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  311.047655][   T61] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  311.052600][   T61] usb 8-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  311.055553][   T61] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  311.058608][   T61] usb 8-1: Product: syz
[  311.060352][   T61] usb 8-1: Manufacturer: syz
[  311.062378][   T61] usb 8-1: SerialNumber: syz
[  311.066265][   T61] usb 8-1: config 0 descriptor??
[  311.249375][T10802] netlink: 'syz.1.1291': attribute type 1 has an invalid length.
[  311.251921][T10802] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1291'.
[  311.271014][ T5999] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  311.276080][   T61] appledisplay: Apple Cinema Display connected
[  311.422678][ T5999] usb 7-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  311.425940][ T5999] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  311.428842][ T5999] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  311.432169][ T5999] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.437599][ T5999] usb 7-1: config 0 descriptor??
[  311.481805][   T61] usb 8-1: USB disconnect, device number 42
[  311.483745][    C3] usb 8-1: appledisplay_complete - usb_submit_urb failed with result -19
[  311.489959][   T61] appledisplay: Apple Cinema Display disconnected
[  311.643278][T10796] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1290'.
[  311.652157][T10796] xt_hashlimit: overflow, rate too high: 0
[  311.862753][ T5999] usb 7-1: USB disconnect, device number 36
[  312.400834][T10827] fuse: Bad value for 'fd'
[  312.550669][T10835] netlink: 'syz.2.1300': attribute type 1 has an invalid length.
[  312.553854][T10835] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1300'.
[  313.172992][T10851] netlink: 'syz.1.1304': attribute type 1 has an invalid length.
[  313.175691][T10851] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1304'.
[  313.421027][ T6035] usb 8-1: new high-speed USB device number 43 using dummy_hcd
[  313.571060][ T6035] usb 8-1: Using ep0 maxpacket: 16
[  313.575278][ T6035] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  313.578985][ T6035] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  313.581017][ T5985] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  313.584741][ T6035] usb 8-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  313.587785][ T6035] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.590365][ T6035] usb 8-1: Product: syz
[  313.591837][ T6035] usb 8-1: Manufacturer: syz
[  313.593433][ T6035] usb 8-1: SerialNumber: syz
[  313.596610][ T6035] usb 8-1: config 0 descriptor??
[  313.753751][ T5985] usb 6-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  313.757152][ T5985] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  313.760197][ T5985] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  313.763289][ T5985] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.767974][ T5985] usb 6-1: config 0 descriptor??
[  313.802946][ T6035] appledisplay: Apple Cinema Display connected
[  313.975926][T10853] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1306'.
[  313.982627][T10853] xt_hashlimit: overflow, rate too high: 0
[  314.011391][ T1021] usb 8-1: USB disconnect, device number 43
[  314.011537][    C2] usb 8-1: appledisplay_complete - usb_submit_urb failed with result -19
[  314.017344][ T1021] appledisplay: Apple Cinema Display disconnected
[  314.192647][ T5985] usb 6-1: USB disconnect, device number 36
[  314.473612][T10860] fuse: Bad value for 'fd'
[  314.619655][T10865] netlink: 'syz.2.1309': attribute type 1 has an invalid length.
[  314.622417][T10865] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1309'.
[  314.836081][T10880] overlayfs: failed to clone lowerpath
[  315.699276][T10898] fuse: Bad value for 'fd'
[  315.730213][T10902] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1319'.
[  315.734518][T10902] xt_hashlimit: overflow, rate too high: 0
[  316.121311][ T1021] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  316.277586][T10915] netlink: 'syz.1.1321': attribute type 1 has an invalid length.
[  316.279914][T10915] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1321'.
[  316.308233][ T1021] usb 7-1: Using ep0 maxpacket: 16
[  316.312013][ T1021] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  316.315694][ T1021] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  316.328633][ T1021] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  316.331749][ T1021] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.334505][ T1021] usb 7-1: Product: syz
[  316.335961][ T1021] usb 7-1: Manufacturer: syz
[  316.337709][ T1021] usb 7-1: SerialNumber: syz
[  316.340732][ T1021] usb 7-1: config 0 descriptor??
[  316.417795][T10918] syz.3.1322: attempt to access beyond end of device
[  316.417795][T10918] nbd3: rw=0, sector=16, nr_sectors = 1 limit=0
[  316.423004][T10918] qnx6: unable to read the first superblock
[  316.426817][T10918] syz.3.1322: attempt to access beyond end of device
[  316.426817][T10918] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  316.432022][T10918] qnx6: unable to read the first superblock
[  316.434634][T10918] qnx6: unable to read the first superblock
[  316.547042][ T1021] appledisplay: Apple Cinema Display connected
[  316.594833][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  316.756451][ T1021] usb 7-1: USB disconnect, device number 37
[  316.758525][    C1] usb 7-1: appledisplay_complete - usb_submit_urb failed with result -19
[  316.762912][ T1021] appledisplay: Apple Cinema Display disconnected
[  316.799049][T10926] overlayfs: failed to clone lowerpath
[  317.264757][T10930] fuse: Bad value for 'fd'
[  317.641291][ T5999] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  317.668237][T10943] overlayfs: failed to clone lowerpath
[  317.802250][ T5999] usb 7-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  317.805242][ T5999] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  317.807884][ T5999] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  317.810663][ T5999] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.814687][ T5999] usb 7-1: config 0 descriptor??
[  318.022418][T10938] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1331'.
[  318.029033][T10938] xt_hashlimit: overflow, rate too high: 0
[  318.246505][ T5999] usb 7-1: USB disconnect, device number 38
[  318.526909][T10951] overlayfs: failed to clone lowerpath
[  318.793019][T10954] FAULT_INJECTION: forcing a failure.
[  318.793019][T10954] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.797402][T10954] CPU: 1 UID: 60928 PID: 10954 Comm: syz.2.1336 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  318.797428][T10954] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  318.797436][T10954] Call Trace:
[  318.797440][T10954]  <TASK>
[  318.797447][T10954]  dump_stack_lvl+0x16c/0x1f0
[  318.797464][T10954]  should_fail_ex+0x512/0x640
[  318.797482][T10954]  _copy_from_user+0x2e/0xd0
[  318.797500][T10954]  vmemdup_user+0x66/0xe0
[  318.797514][T10954]  setxattr_copy+0x148/0x210
[  318.797527][T10954]  path_setxattrat+0x104/0x2a0
[  318.797538][T10954]  ? __pfx_path_setxattrat+0x10/0x10
[  318.797551][T10954]  ? ksys_write+0x190/0x250
[  318.797574][T10954]  ? fput+0x70/0xf0
[  318.797588][T10954]  ? ksys_write+0x1ac/0x250
[  318.797598][T10954]  ? __pfx_ksys_write+0x10/0x10
[  318.797612][T10954]  __ia32_sys_fsetxattr+0xc4/0x140
[  318.797623][T10954]  ? lockdep_hardirqs_on+0x7c/0x110
[  318.797636][T10954]  __do_fast_syscall_32+0x7c/0x3a0
[  318.797651][T10954]  do_fast_syscall_32+0x32/0x80
[  318.797664][T10954]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  318.797678][T10954] RIP: 0023:0xf712e579
[  318.797687][T10954] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  318.797698][T10954] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000e4
[  318.797708][T10954] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  318.797715][T10954] RDX: 0000000080000c00 RSI: 0000000000000024 RDI: 0000000000000001
[  318.797721][T10954] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  318.797728][T10954] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  318.797734][T10954] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  318.797747][T10954]  </TASK>
[  318.884299][T10956] fuse: Bad value for 'fd'
[  319.045358][T10967] netlink: 'syz.1.1340': attribute type 1 has an invalid length.
[  319.049417][T10967] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1340'.
[  319.261066][ T5972] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  319.411074][T10983] netlink: 'syz.3.1343': attribute type 1 has an invalid length.
[  319.416529][T10981] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1344'.
[  319.420313][T10983] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1343'.
[  319.421003][ T5972] usb 7-1: Using ep0 maxpacket: 16
[  319.426984][ T5972] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  319.427322][T10981] xt_hashlimit: overflow, rate too high: 0
[  319.431317][ T5972] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  319.445857][ T5972] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  319.449003][ T5972] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.451716][ T5972] usb 7-1: Product: syz
[  319.453130][ T5972] usb 7-1: Manufacturer: syz
[  319.454585][ T5972] usb 7-1: SerialNumber: syz
[  319.458585][ T5972] usb 7-1: config 0 descriptor??
[  319.666305][ T5972] appledisplay: Apple Cinema Display connected
[  319.778098][T10990] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  319.982474][T10994] fuse: Invalid rootmode
[  320.012130][T10996] overlayfs: failed to clone lowerpath
[  320.148562][ T5972] usb 7-1: USB disconnect, device number 39
[  320.150464][    C0] usb 7-1: appledisplay_complete - usb_submit_urb failed with result -19
[  320.155927][ T5972] appledisplay: Apple Cinema Display disconnected
[  320.338341][T11005] syz.1.1351: attempt to access beyond end of device
[  320.338341][T11005] nbd1: rw=0, sector=16, nr_sectors = 1 limit=0
[  320.342629][T11005] qnx6: unable to read the first superblock
[  320.344881][T11005] syz.1.1351: attempt to access beyond end of device
[  320.344881][T11005] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  320.348901][T11005] qnx6: unable to read the first superblock
[  320.350790][T11005] qnx6: unable to read the first superblock
[  320.614702][T11014] netlink: 'syz.3.1353': attribute type 1 has an invalid length.
[  320.617668][T11014] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1353'.
[  321.121023][ T6000] usb 8-1: new high-speed USB device number 44 using dummy_hcd
[  321.215923][T11025] fuse: Invalid rootmode
[  321.245456][T11027] overlayfs: failed to clone lowerpath
[  321.272792][ T6000] usb 8-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  321.276800][ T6000] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  321.280299][ T6000] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  321.285975][ T6000] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.290842][ T6000] usb 8-1: config 0 descriptor??
[  321.498410][T11021] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1356'.
[  321.506049][T11021] xt_hashlimit: overflow, rate too high: 0
[  321.713301][ T6000] usb 8-1: USB disconnect, device number 44
[  322.406434][T11048] netlink: 'syz.2.1363': attribute type 1 has an invalid length.
[  322.408860][T11048] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1363'.
[  322.416216][T11049] netlink: 'syz.3.1364': attribute type 1 has an invalid length.
[  322.418865][T11049] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1364'.
[  322.777889][T11057] fuse: Invalid rootmode
[  322.994435][ T6000] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  323.035178][T11064] overlayfs: failed to clone lowerpath
[  323.151146][ T6000] usb 7-1: Using ep0 maxpacket: 16
[  323.159531][ T6000] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  323.163267][ T6000] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  323.168327][ T6000] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  323.172668][ T6000] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.175178][ T6000] usb 7-1: Product: syz
[  323.176616][ T6000] usb 7-1: Manufacturer: syz
[  323.178394][ T6000] usb 7-1: SerialNumber: syz
[  323.183563][ T6000] usb 7-1: config 0 descriptor??
[  323.390506][ T6000] appledisplay: Apple Cinema Display connected
[  323.461130][   T61] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  323.612950][   T61] usb 6-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  323.612973][   T61] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  323.612998][   T61] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  323.613086][   T61] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.614900][   T61] usb 6-1: config 0 descriptor??
[  323.821857][T11067] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1370'.
[  323.824507][T11067] xt_hashlimit: overflow, rate too high: 0
[  323.891135][ T6035] usb 7-1: USB disconnect, device number 40
[  323.891193][    C3] usb 7-1: appledisplay_complete - usb_submit_urb failed with result -19
[  323.904068][ T6035] appledisplay: Apple Cinema Display disconnected
[  323.925049][T11073] overlayfs: failed to clone lowerpath
[  324.031103][   T61] usb 6-1: USB disconnect, device number 37
[  324.556779][T11085] fuse: Bad value for 'rootmode'
[  324.875226][T11094] overlayfs: failed to clone lowerpath
[  324.977892][T11095] syz.2.1378: attempt to access beyond end of device
[  324.977892][T11095] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  324.983080][T11095] qnx6: unable to read the first superblock
[  324.988736][T11095] syz.2.1378: attempt to access beyond end of device
[  324.988736][T11095] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  324.993629][T11095] qnx6: unable to read the first superblock
[  324.995938][T11095] qnx6: unable to read the first superblock
[  325.928458][T11110] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1383'.
[  326.229499][T11118] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1386'.
[  326.233949][T11118] xt_hashlimit: overflow, rate too high: 0
[  326.501041][ T5942] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  326.651117][ T5942] usb 6-1: Using ep0 maxpacket: 16
[  326.653978][ T5942] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  326.657604][ T5942] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  326.663395][ T5942] usb 6-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  326.666172][ T5942] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  326.668697][ T5942] usb 6-1: Product: syz
[  326.670018][ T5942] usb 6-1: Manufacturer: syz
[  326.671609][ T5942] usb 6-1: SerialNumber: syz
[  326.674567][ T5942] usb 6-1: config 0 descriptor??
[  326.772608][T11122] fuse: Bad value for 'rootmode'
[  326.806945][T11125] overlayfs: failed to clone lowerpath
[  326.879026][ T5942] appledisplay: Apple Cinema Display connected
[  326.905467][T11130] netlink: 'syz.3.1387': attribute type 1 has an invalid length.
[  326.908470][T11130] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1387'.
[  327.343285][ T5972] usb 6-1: USB disconnect, device number 38
[  327.343319][    C3] usb 6-1: appledisplay_complete - usb_submit_urb failed with result -19
[  327.351848][ T5972] appledisplay: Apple Cinema Display disconnected
[  328.001467][T11150] FAULT_INJECTION: forcing a failure.
[  328.001467][T11150] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  328.005851][T11150] CPU: 2 UID: 0 PID: 11150 Comm: syz.3.1396 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  328.005866][T11150] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  328.005873][T11150] Call Trace:
[  328.005877][T11150]  <TASK>
[  328.005881][T11150]  dump_stack_lvl+0x16c/0x1f0
[  328.005898][T11150]  should_fail_ex+0x512/0x640
[  328.005917][T11150]  _copy_from_user+0x2e/0xd0
[  328.005934][T11150]  csum_and_copy_from_iter_full+0x21a/0x1f70
[  328.005957][T11150]  ? policy_nodemask+0xea/0x4e0
[  328.005972][T11150]  ? __pfx_csum_and_copy_from_iter_full+0x10/0x10
[  328.005989][T11150]  ? alloc_pages_mpol+0x25a/0x550
[  328.006003][T11150]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  328.006021][T11150]  ip_generic_getfrag+0x170/0x270
[  328.006038][T11150]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  328.006055][T11150]  ? sk_page_frag_refill+0x6c/0x300
[  328.006067][T11150]  __ip_append_data+0x140a/0x4240
[  328.006086][T11150]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  328.006125][T11150]  ? __pfx___ip_append_data+0x10/0x10
[  328.006142][T11150]  ? do_raw_spin_lock+0x12c/0x2b0
[  328.006158][T11150]  ip_append_data+0x10f/0x1a0
[  328.006175][T11150]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  328.006192][T11150]  udp_sendmsg+0xa5b/0x29f0
[  328.006211][T11150]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  328.006227][T11150]  ? unwind_get_return_address+0x59/0xa0
[  328.006241][T11150]  ? arch_stack_walk+0xa6/0x100
[  328.006256][T11150]  ? __pfx_udp_sendmsg+0x10/0x10
[  328.006272][T11150]  ? __lock_acquire+0x622/0x1c90
[  328.006289][T11150]  ? __pfx___might_resched+0x10/0x10
[  328.006305][T11150]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  328.006321][T11150]  ? aa_sk_perm+0x2f4/0xb10
[  328.006338][T11150]  ? __pfx_udp_sendmsg+0x10/0x10
[  328.006354][T11150]  inet_sendmsg+0x105/0x140
[  328.006366][T11150]  sock_write_iter+0x4aa/0x5b0
[  328.006383][T11150]  ? __pfx_sock_write_iter+0x10/0x10
[  328.006405][T11150]  ? bpf_lsm_file_permission+0x9/0x10
[  328.006421][T11150]  ? security_file_permission+0x71/0x210
[  328.006435][T11150]  ? rw_verify_area+0xcf/0x680
[  328.006454][T11150]  vfs_write+0x6c7/0x1150
[  328.006466][T11150]  ? __pfx_sock_write_iter+0x10/0x10
[  328.006483][T11150]  ? __pfx_vfs_write+0x10/0x10
[  328.006495][T11150]  ? find_held_lock+0x2b/0x80
[  328.006528][T11150]  ksys_write+0x1f8/0x250
[  328.006543][T11150]  ? __pfx_ksys_write+0x10/0x10
[  328.006562][T11150]  ? rcu_is_watching+0x12/0xc0
[  328.006587][T11150]  __do_fast_syscall_32+0x7c/0x3a0
[  328.006610][T11150]  do_fast_syscall_32+0x32/0x80
[  328.006631][T11150]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  328.006652][T11150] RIP: 0023:0xf70ce579
[  328.006665][T11150] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  328.006677][T11150] RSP: 002b:00000000f50be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  328.006688][T11150] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  328.006695][T11150] RDX: 00000000000005b0 RSI: 0000000000000000 RDI: 0000000000000000
[  328.006701][T11150] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  328.006708][T11150] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  328.006714][T11150] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  328.006728][T11150]  </TASK>
[  328.111766][    C2] vkms_vblank_simulate: vblank timer overrun
[  328.326521][T11161] netlink: 'syz.1.1398': attribute type 1 has an invalid length.
[  328.329033][T11161] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1398'.
[  328.371004][ T6035] usb 8-1: new high-speed USB device number 45 using dummy_hcd
[  328.561617][ T6035] usb 8-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  328.564990][ T6035] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  328.569352][ T6035] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  328.573264][ T6035] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.574620][T11169] fuse: Bad value for 'rootmode'
[  328.583764][ T6035] usb 8-1: config 0 descriptor??
[  328.809248][T11155] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1397'.
[  328.902969][T11155] xt_hashlimit: overflow, rate too high: 0
[  329.122994][ T6035] usb 8-1: USB disconnect, device number 45
[  329.331020][ T5942] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  329.481026][ T5942] usb 7-1: Using ep0 maxpacket: 16
[  329.485132][ T5942] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  329.490031][ T5942] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  329.497162][ T5942] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  329.501237][ T5942] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  329.504482][ T5942] usb 7-1: Product: syz
[  329.506265][ T5942] usb 7-1: Manufacturer: syz
[  329.508294][ T5942] usb 7-1: SerialNumber: syz
[  329.512888][ T5942] usb 7-1: config 0 descriptor??
[  329.719257][ T5942] appledisplay: Apple Cinema Display connected
[  329.924864][T11191] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1406'.
[  330.198630][ T5942] usb 7-1: USB disconnect, device number 41
[  330.200602][    C3] usb 7-1: appledisplay_complete - usb_submit_urb failed with result -19
[  330.210190][ T5942] appledisplay: Apple Cinema Display disconnected
[  331.143899][T11217] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1411'.
[  331.144373][T11219] netlink: 'syz.2.1410': attribute type 1 has an invalid length.
[  331.146911][T11217] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  331.149922][T11219] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1410'.
[  331.185791][T11221] fuse: Unknown parameter 'use00000000000000000000'
[  331.358358][T11228] netlink: 'syz.1.1413': attribute type 1 has an invalid length.
[  331.367434][T11228] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1413'.
[  331.406337][T11230] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1414'.
[  331.415105][T11230] xt_hashlimit: overflow, rate too high: 0
[  332.238233][T11247] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1420'.
[  332.242460][T11247] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  332.276337][T11249] fuse: Unknown parameter 'use00000000000000000000'
[  332.341033][ T5972] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  332.378837][T11255] overlayfs: failed to clone lowerpath
[  332.491384][T11261] syz.2.1422: attempt to access beyond end of device
[  332.491384][T11261] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  332.496664][T11261] qnx6: unable to read the first superblock
[  332.500419][T11261] syz.2.1422: attempt to access beyond end of device
[  332.500419][T11261] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  332.509123][T11261] qnx6: unable to read the first superblock
[  332.512132][T11261] qnx6: unable to read the first superblock
[  332.521009][ T5972] usb 6-1: Using ep0 maxpacket: 16
[  332.525729][ T5972] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  332.532555][ T5972] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  332.538807][ T5972] usb 6-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  332.541747][ T5972] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.544274][ T5972] usb 6-1: Product: syz
[  332.545600][ T5972] usb 6-1: Manufacturer: syz
[  332.547108][ T5972] usb 6-1: SerialNumber: syz
[  332.555854][ T5972] usb 6-1: config 0 descriptor??
[  332.763868][ T5972] appledisplay: Apple Cinema Display connected
[  333.243665][ T6035] usb 6-1: USB disconnect, device number 39
[  333.243684][    C0] usb 6-1: appledisplay_complete - usb_submit_urb failed with result -19
[  333.248722][ T6035] appledisplay: Apple Cinema Display disconnected
[  333.254492][T11265] overlayfs: failed to clone lowerpath
[  333.501172][ T1465] usb 8-1: new high-speed USB device number 46 using dummy_hcd
[  333.653533][ T1465] usb 8-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[  333.657929][ T1465] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  333.662037][ T1465] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  333.665542][ T1465] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.670588][ T1465] usb 8-1: config 0 descriptor??
[  333.879162][T11267] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1426'.
[  333.886143][T11267] xt_hashlimit: overflow, rate too high: 0
[  334.095927][ T1465] usb 8-1: USB disconnect, device number 46
[  334.204692][T11276] overlayfs: failed to clone lowerpath
[  334.628168][T11280] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1430'.
[  334.631573][T11280] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  334.666103][T11282] fuse: Unknown parameter 'use00000000000000000000'
[  334.831307][T11292] netlink: 'syz.3.1433': attribute type 1 has an invalid length.
[  334.841580][T11292] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1433'.
[  335.119916][T11296] fuse: Unknown parameter 'user_i00000000000000000000'
[  335.159136][T11297] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  335.162137][T11300] overlayfs: failed to clone lowerpath
[  335.166514][T11297] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1434'.
[  336.431565][T11324] syz.2.1440: attempt to access beyond end of device
[  336.431565][T11324] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  336.435606][T11324] qnx6: unable to read the first superblock
[  336.437539][T11324] syz.2.1440: attempt to access beyond end of device
[  336.437539][T11324] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  336.441598][T11324] qnx6: unable to read the first superblock
[  336.443445][T11324] qnx6: unable to read the first superblock
[  336.727147][T11333] overlayfs: failed to clone lowerpath
[  337.391564][ T5301] Bluetooth: hci1: command tx timeout
[  337.592982][T11341] overlayfs: failed to clone lowerpath
[  337.699386][T11344] syz.1.1445: attempt to access beyond end of device
[  337.699386][T11344] nbd1: rw=0, sector=16, nr_sectors = 1 limit=0
[  337.703797][T11344] qnx6: unable to read the first superblock
[  337.706105][T11344] syz.1.1445: attempt to access beyond end of device
[  337.706105][T11344] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  337.710190][T11344] qnx6: unable to read the first superblock
[  337.712300][T11344] qnx6: unable to read the first superblock
[  340.053053][T11363] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1452'.
[  340.056001][T11363] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  340.241040][T11373] netlink: 'syz.3.1454': attribute type 1 has an invalid length.
[  340.243419][T11373] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1454'.
[  340.276863][T11375] overlayfs: failed to clone lowerpath
[  340.284717][T11375] netlink: 1084 bytes leftover after parsing attributes in process `syz.0.1456'.
[  340.962965][T11390] syz.1.1457: attempt to access beyond end of device
[  340.962965][T11390] nbd1: rw=0, sector=16, nr_sectors = 1 limit=0
[  340.967963][T11390] qnx6: unable to read the first superblock
[  340.970472][T11390] syz.1.1457: attempt to access beyond end of device
[  340.970472][T11390] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  340.975491][T11390] qnx6: unable to read the first superblock
[  340.977822][T11390] qnx6: unable to read the first superblock
[  340.986222][T11395] syz.3.1459: attempt to access beyond end of device
[  340.986222][T11395] nbd3: rw=0, sector=16, nr_sectors = 1 limit=0
[  340.990422][T11395] qnx6: unable to read the first superblock
[  340.995061][T11395] syz.3.1459: attempt to access beyond end of device
[  340.995061][T11395] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  340.999617][T11395] qnx6: unable to read the first superblock
[  341.002058][T11395] qnx6: unable to read the first superblock
[  341.088068][T11396] syz.2.1460: attempt to access beyond end of device
[  341.088068][T11396] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  341.095142][T11396] qnx6: unable to read the first superblock
[  341.105400][T11396] syz.2.1460: attempt to access beyond end of device
[  341.105400][T11396] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  341.113748][T11396] qnx6: unable to read the first superblock
[  341.116497][T11396] qnx6: unable to read the first superblock
[  342.089040][T11407] overlayfs: failed to clone lowerpath
[  343.730629][T11418] netlink: 'syz.1.1465': attribute type 1 has an invalid length.
[  343.733306][T11418] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1465'.
[  343.974782][T11431] syz.3.1466: attempt to access beyond end of device
[  343.974782][T11431] nbd3: rw=0, sector=16, nr_sectors = 1 limit=0
[  343.979492][T11431] qnx6: unable to read the first superblock
[  343.987503][T11431] syz.3.1466: attempt to access beyond end of device
[  343.987503][T11431] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  343.995133][T11431] qnx6: unable to read the first superblock
[  343.997085][T11431] qnx6: unable to read the first superblock
[  344.798787][T11446] overlayfs: failed to clone lowerpath
[  345.117318][T11453] syz.2.1471: attempt to access beyond end of device
[  345.117318][T11453] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  345.121150][T11453] qnx6: unable to read the first superblock
[  345.123130][T11453] syz.2.1471: attempt to access beyond end of device
[  345.123130][T11453] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  345.127892][T11453] qnx6: unable to read the first superblock
[  345.130171][T11453] qnx6: unable to read the first superblock
[  345.675709][T11459] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1474'.
[  345.679870][T11459] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  346.705835][T11479] netlink: 'syz.1.1478': attribute type 1 has an invalid length.
[  346.708619][T11479] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1478'.
[  346.903259][T11492] fuse: Bad value for 'fd'
[  348.009299][T11514] syz.3.1489: attempt to access beyond end of device
[  348.009299][T11514] nbd3: rw=0, sector=16, nr_sectors = 1 limit=0
[  348.015335][T11527] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1491'.
[  348.122260][T11514] qnx6: unable to read the first superblock
[  348.131317][T11514] syz.3.1489: attempt to access beyond end of device
[  348.131317][T11514] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  348.153469][T11514] qnx6: unable to read the first superblock
[  348.155515][T11514] qnx6: unable to read the first superblock
[  348.716563][T11532] fuse: Bad value for 'fd'
[  349.201127][   T54] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  349.371003][   T54] usb 7-1: Using ep0 maxpacket: 16
[  349.373850][   T54] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  349.378011][   T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  349.383647][   T54] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  349.386546][   T54] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  349.389369][   T54] usb 7-1: Product: syz
[  349.390740][   T54] usb 7-1: Manufacturer: syz
[  349.392419][   T54] usb 7-1: SerialNumber: syz
[  349.396006][   T54] usb 7-1: config 0 descriptor??
[  349.612451][   T54] appledisplay: Apple Cinema Display connected
[  350.093914][    C2] usb 7-1: appledisplay_complete - usb_submit_urb failed with result -19
[  350.093904][ T5942] usb 7-1: USB disconnect, device number 42
[  350.101781][ T5942] appledisplay: Apple Cinema Display disconnected
[  350.802469][T11556] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  350.818208][T11556] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1498'.
[  350.826596][T11559] overlayfs: overlapping lowerdir path
[  351.276724][T11575] overlayfs: overlapping lowerdir path
[  351.403813][T11579] netlink: 'syz.1.1505': attribute type 1 has an invalid length.
[  351.406518][T11579] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1505'.
[  351.848695][T11594] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1511'.
[  351.853150][T11594] autofs: Bad value for 'uid'
[  351.854698][T11594] autofs: Bad value for 'uid'
[  352.141062][ T5998] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  352.291087][ T5998] usb 6-1: Using ep0 maxpacket: 16
[  352.295339][ T5998] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  352.300243][ T5998] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  352.307503][ T5998] usb 6-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  352.311273][ T5998] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.314591][ T5998] usb 6-1: Product: syz
[  352.316378][ T5998] usb 6-1: Manufacturer: syz
[  352.318249][ T5998] usb 6-1: SerialNumber: syz
[  352.321412][ T5998] usb 6-1: config 0 descriptor??
[  352.416324][T11601] overlayfs: failed to clone lowerpath
[  352.533387][ T5998] appledisplay: Apple Cinema Display connected
[  352.732896][T11613] netlink: 'syz.3.1518': attribute type 1 has an invalid length.
[  352.736111][T11613] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1518'.
[  352.997064][T11617] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  352.999754][T11617] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1519'.
[  353.024709][ T5972] usb 6-1: USB disconnect, device number 40
[  353.026600][    C0] usb 6-1: appledisplay_complete - usb_submit_urb failed with result -19
[  353.030180][ T5972] appledisplay: Apple Cinema Display disconnected
[  353.289532][T11623] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  353.336411][T11623] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1520'.
[  354.223439][T11644] FAULT_INJECTION: forcing a failure.
[  354.223439][T11644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  354.227599][T11644] CPU: 3 UID: 0 PID: 11644 Comm: syz.2.1526 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  354.227620][T11644] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  354.227627][T11644] Call Trace:
[  354.227632][T11644]  <TASK>
[  354.227637][T11644]  dump_stack_lvl+0x16c/0x1f0
[  354.227654][T11644]  should_fail_ex+0x512/0x640
[  354.227673][T11644]  _copy_to_user+0x32/0xd0
[  354.227691][T11644]  simple_read_from_buffer+0xcb/0x170
[  354.227710][T11644]  proc_fail_nth_read+0x197/0x270
[  354.227728][T11644]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  354.227746][T11644]  ? rw_verify_area+0xcf/0x680
[  354.227763][T11644]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  354.227780][T11644]  vfs_read+0x1e1/0xc60
[  354.227791][T11644]  ? fdget_pos+0x2a2/0x370
[  354.227805][T11644]  ? __pfx_vfs_read+0x10/0x10
[  354.227819][T11644]  ? find_held_lock+0x2b/0x80
[  354.227844][T11644]  ? __fget_files+0x20e/0x3c0
[  354.227859][T11644]  ksys_read+0x12a/0x250
[  354.227874][T11644]  ? __pfx_ksys_read+0x10/0x10
[  354.227887][T11644]  ? rcu_is_watching+0x12/0xc0
[  354.227903][T11644]  __do_fast_syscall_32+0x7c/0x3a0
[  354.227918][T11644]  do_fast_syscall_32+0x32/0x80
[  354.227931][T11644]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  354.227946][T11644] RIP: 0023:0xf712e579
[  354.227955][T11644] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  354.227965][T11644] RSP: 002b:00000000f50fd590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  354.227976][T11644] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50fd620
[  354.227983][T11644] RDX: 000000000000000f RSI: 00000000f7492ff4 RDI: 0000000000000000
[  354.227989][T11644] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  354.227995][T11644] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  354.228002][T11644] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  354.228015][T11644]  </TASK>
[  354.294010][    C3] vkms_vblank_simulate: vblank timer overrun
[  354.315864][T11647] 9pnet_virtio: no channels available for device ./file0/file0
[  354.322149][   T54] libceph: connect (1)[c::]:6789 error -101
[  354.324419][   T54] libceph: mon0 (1)[c::]:6789 connect error
[  354.362313][T11645] ceph: No mds server is up or the cluster is laggy
[  354.581689][T11656] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1527'.
[  355.190808][T11671] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  355.199778][T11671] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1532'.
[  355.212848][T11674] FAULT_INJECTION: forcing a failure.
[  355.212848][T11674] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  355.216777][T11674] CPU: 1 UID: 0 PID: 11674 Comm: syz.1.1533 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  355.216793][T11674] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.216800][T11674] Call Trace:
[  355.216804][T11674]  <TASK>
[  355.216808][T11674]  dump_stack_lvl+0x16c/0x1f0
[  355.216825][T11674]  should_fail_ex+0x512/0x640
[  355.216843][T11674]  _copy_from_user+0x2e/0xd0
[  355.216860][T11674]  do_bnep_sock_ioctl.constprop.0+0x3d7/0x590
[  355.216879][T11674]  ? __pfx_do_bnep_sock_ioctl.constprop.0+0x10/0x10
[  355.216899][T11674]  ? tomoyo_path_number_perm+0x18d/0x580
[  355.216917][T11674]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  355.216936][T11674]  bnep_sock_compat_ioctl+0x87/0x1d0
[  355.216953][T11674]  ? __pfx_bnep_sock_compat_ioctl+0x10/0x10
[  355.216973][T11674]  ? __pfx_bnep_sock_compat_ioctl+0x10/0x10
[  355.216990][T11674]  compat_sock_ioctl+0x176/0x730
[  355.217010][T11674]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  355.217026][T11674]  ? hook_file_ioctl_common+0x145/0x410
[  355.217040][T11674]  ? __fget_files+0x20e/0x3c0
[  355.217050][T11674]  ? fput+0x60/0xf0
[  355.217067][T11674]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  355.217083][T11674]  __ia32_compat_sys_ioctl+0x23f/0x370
[  355.217104][T11674]  __do_fast_syscall_32+0x7c/0x3a0
[  355.217118][T11674]  do_fast_syscall_32+0x32/0x80
[  355.217132][T11674]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  355.217145][T11674] RIP: 0023:0xf7fc6579
[  355.217154][T11674] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  355.217164][T11674] RSP: 002b:00000000f50c555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  355.217175][T11674] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000400442c8
[  355.217182][T11674] RDX: 0000000080000540 RSI: 0000000000000000 RDI: 0000000000000000
[  355.217188][T11674] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  355.217194][T11674] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  355.217200][T11674] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  355.217213][T11674]  </TASK>
[  355.427555][T11678] syz.2.1534: attempt to access beyond end of device
[  355.427555][T11678] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  355.432790][T11678] qnx6: unable to read the first superblock
[  355.436815][T11678] syz.2.1534: attempt to access beyond end of device
[  355.436815][T11678] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  355.442820][T11678] qnx6: unable to read the first superblock
[  355.445089][T11678] qnx6: unable to read the first superblock
[  356.570116][T11696] netlink: 'syz.3.1539': attribute type 7 has an invalid length.
[  356.572745][T11696] netlink: 140 bytes leftover after parsing attributes in process `syz.3.1539'.
[  356.808858][T11703] tmpfs: Unknown parameter 'grpquota_inode_ha'
[  357.860418][T11716] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1545'.
[  358.200098][T11731] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1551'.
[  358.408444][T11753] netlink: 'syz.2.1552': attribute type 1 has an invalid length.
[  358.411133][T11753] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1552'.
[  358.704962][T11766] FAULT_INJECTION: forcing a failure.
[  358.704962][T11766] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.710355][T11766] CPU: 1 UID: 0 PID: 11766 Comm: syz.2.1553 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  358.710378][T11766] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  358.710390][T11766] Call Trace:
[  358.710396][T11766]  <TASK>
[  358.710403][T11766]  dump_stack_lvl+0x16c/0x1f0
[  358.710429][T11766]  should_fail_ex+0x512/0x640
[  358.710458][T11766]  _copy_from_user+0x2e/0xd0
[  358.710484][T11766]  video_usercopy+0x723/0x1440
[  358.710508][T11766]  ? __pfx___video_do_ioctl+0x10/0x10
[  358.710529][T11766]  ? __pfx_video_usercopy+0x10/0x10
[  358.710559][T11766]  ? hook_file_ioctl_common+0x145/0x410
[  358.710583][T11766]  v4l2_ioctl+0x1bd/0x250
[  358.710601][T11766]  ? fput+0x61/0xf0
[  358.710625][T11766]  v4l2_compat_ioctl32+0x214/0x2c0
[  358.710643][T11766]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  358.710661][T11766]  __ia32_compat_sys_ioctl+0x23f/0x370
[  358.710690][T11766]  __do_fast_syscall_32+0x7c/0x3a0
[  358.710714][T11766]  do_fast_syscall_32+0x32/0x80
[  358.710735][T11766]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  358.710756][T11766] RIP: 0023:0xf712e579
[  358.710770][T11766] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  358.710786][T11766] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  358.710803][T11766] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0745645
[  358.710814][T11766] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[  358.710824][T11766] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  358.710833][T11766] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  358.710843][T11766] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  358.710865][T11766]  </TASK>
[  358.933912][T11781] netlink: 'syz.2.1554': attribute type 1 has an invalid length.
[  358.936471][T11781] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1554'.
[  359.170178][T11784] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  359.176753][T11784] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1555'.
[  359.233519][ T1465] hid-generic 0000:0006:0000.0003: unknown main item tag 0x0
[  359.236445][ T1465] hid-generic 0000:0006:0000.0003: unknown main item tag 0x0
[  359.238780][ T1465] hid-generic 0000:0006:0000.0003: unknown main item tag 0x0
[  359.245576][ T1465] hid-generic 0000:0006:0000.0003: hidraw1: <UNKNOWN> HID v4.00 Device [syz0] on syz1
[  359.284879][T11792] fido_id[11792]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  359.288036][T11789] FAULT_INJECTION: forcing a failure.
[  359.288036][T11789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  359.296157][T11789] CPU: 2 UID: 0 PID: 11789 Comm: syz.3.1557 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  359.296174][T11789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.296181][T11789] Call Trace:
[  359.296186][T11789]  <TASK>
[  359.296191][T11789]  dump_stack_lvl+0x16c/0x1f0
[  359.296207][T11789]  should_fail_ex+0x512/0x640
[  359.296227][T11789]  _copy_to_user+0x32/0xd0
[  359.296245][T11789]  simple_read_from_buffer+0xcb/0x170
[  359.296265][T11789]  proc_fail_nth_read+0x197/0x270
[  359.296284][T11789]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.296303][T11789]  ? rw_verify_area+0xcf/0x680
[  359.296321][T11789]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  359.296339][T11789]  vfs_read+0x1e1/0xc60
[  359.296351][T11789]  ? fdget_pos+0x2a2/0x370
[  359.296365][T11789]  ? __pfx_vfs_read+0x10/0x10
[  359.296375][T11789]  ? find_held_lock+0x2b/0x80
[  359.296395][T11789]  ? __fget_files+0x20e/0x3c0
[  359.296410][T11789]  ksys_read+0x12a/0x250
[  359.296422][T11789]  ? __pfx_ksys_read+0x10/0x10
[  359.296434][T11789]  ? rcu_is_watching+0x12/0xc0
[  359.296452][T11789]  __do_fast_syscall_32+0x7c/0x3a0
[  359.296468][T11789]  do_fast_syscall_32+0x32/0x80
[  359.296482][T11789]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  359.296496][T11789] RIP: 0023:0xf70ce579
[  359.296505][T11789] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  359.296517][T11789] RSP: 002b:00000000f50be590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  359.296528][T11789] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50be620
[  359.296535][T11789] RDX: 000000000000000f RSI: 00000000f7432ff4 RDI: 0000000000000000
[  359.296542][T11789] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  359.296548][T11789] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  359.296555][T11789] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  359.296569][T11789]  </TASK>
[  359.376499][T11796] syzkaller1: entered promiscuous mode
[  359.378279][T11796] syzkaller1: entered allmulticast mode
[  359.651619][T11808] netlink: 'syz.3.1562': attribute type 1 has an invalid length.
[  359.654091][T11808] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1562'.
[  360.009002][T11813] FAULT_INJECTION: forcing a failure.
[  360.009002][T11813] name failslab, interval 1, probability 0, space 0, times 0
[  360.014324][T11813] CPU: 0 UID: 0 PID: 11813 Comm: syz.3.1565 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  360.014341][T11813] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  360.014348][T11813] Call Trace:
[  360.014353][T11813]  <TASK>
[  360.014357][T11813]  dump_stack_lvl+0x16c/0x1f0
[  360.014374][T11813]  should_fail_ex+0x512/0x640
[  360.014393][T11813]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  360.014415][T11813]  should_failslab+0xc2/0x120
[  360.014436][T11813]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  360.014456][T11813]  ? __alloc_skb+0x2b2/0x380
[  360.014479][T11813]  __alloc_skb+0x2b2/0x380
[  360.014498][T11813]  ? __pfx___alloc_skb+0x10/0x10
[  360.014519][T11813]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  360.014548][T11813]  netlink_alloc_large_skb+0x69/0x130
[  360.014573][T11813]  netlink_sendmsg+0x6a1/0xdd0
[  360.014601][T11813]  ? __pfx_netlink_sendmsg+0x10/0x10
[  360.014627][T11813]  ? __import_iovec+0x1dd/0x650
[  360.014659][T11813]  ____sys_sendmsg+0xa95/0xc70
[  360.014686][T11813]  ? __pfx_____sys_sendmsg+0x10/0x10
[  360.014710][T11813]  ? get_compat_msghdr+0x11a/0x170
[  360.014741][T11813]  ___sys_sendmsg+0x134/0x1d0
[  360.014759][T11813]  ? __pfx____sys_sendmsg+0x10/0x10
[  360.014778][T11813]  ? find_held_lock+0x2b/0x80
[  360.014803][T11813]  __sys_sendmsg+0x16d/0x220
[  360.014816][T11813]  ? __pfx___sys_sendmsg+0x10/0x10
[  360.014835][T11813]  ? rcu_is_watching+0x12/0xc0
[  360.014852][T11813]  __do_fast_syscall_32+0x7c/0x3a0
[  360.014867][T11813]  do_fast_syscall_32+0x32/0x80
[  360.014880][T11813]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  360.014894][T11813] RIP: 0023:0xf70ce579
[  360.014903][T11813] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  360.014913][T11813] RSP: 002b:00000000f50be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  360.014924][T11813] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  360.014931][T11813] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  360.014937][T11813] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  360.014943][T11813] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  360.014950][T11813] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  360.014962][T11813]  </TASK>
[  360.436108][T11832] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[  360.572447][ T5999] hid-generic 0000:0006:0000.0004: unknown main item tag 0x0
[  360.572599][T11837] fuse: Unknown parameter '/dev/uhid'
[  360.578281][ T5999] hid-generic 0000:0006:0000.0004: unknown main item tag 0x0
[  360.580622][ T5999] hid-generic 0000:0006:0000.0004: unknown main item tag 0x0
[  360.584701][ T5999] hid-generic 0000:0006:0000.0004: hidraw1: <UNKNOWN> HID v4.00 Device [syz0] on syz1
[  360.672600][T11841] fuse: Unknown parameter 'fd0x0000000000000003'
[  360.951158][ T6000] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  361.112594][ T6000] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  361.122911][ T6000] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  361.126595][ T6000] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  361.136581][ T6000] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.144789][T11843] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  361.152206][ T6000] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  361.230539][T11850] dlm: non-version read from control device 8224
[  361.355970][   T61] usb 7-1: USB disconnect, device number 43
[  361.501017][ T6000] usb 8-1: new high-speed USB device number 47 using dummy_hcd
[  361.594618][T11864] FAULT_INJECTION: forcing a failure.
[  361.594618][T11864] name failslab, interval 1, probability 0, space 0, times 0
[  361.599112][T11864] CPU: 0 UID: 0 PID: 11864 Comm: syz.1.1581 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  361.599128][T11864] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.599134][T11864] Call Trace:
[  361.599139][T11864]  <TASK>
[  361.599144][T11864]  dump_stack_lvl+0x16c/0x1f0
[  361.599160][T11864]  should_fail_ex+0x512/0x640
[  361.599191][T11864]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  361.599208][T11864]  should_failslab+0xc2/0x120
[  361.599222][T11864]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  361.599235][T11864]  ? __d_alloc+0x31/0xaa0
[  361.599250][T11864]  __d_alloc+0x31/0xaa0
[  361.599262][T11864]  ? __d_lookup+0x266/0x4a0
[  361.599278][T11864]  d_alloc+0x4a/0x1e0
[  361.599291][T11864]  lookup_one_qstr_excl_raw.part.0+0x96/0x160
[  361.599308][T11864]  ? lookup_dcache+0x66/0x170
[  361.599324][T11864]  lookup_one_qstr_excl+0x3e/0x120
[  361.599340][T11864]  do_unlinkat+0x284/0x6a0
[  361.599353][T11864]  ? __pfx_do_unlinkat+0x10/0x10
[  361.599366][T11864]  ? strncpy_from_user+0x203/0x2e0
[  361.599382][T11864]  ? getname_flags.part.0+0x1c5/0x550
[  361.599397][T11864]  ? __pfx_ksys_write+0x10/0x10
[  361.599411][T11864]  __ia32_sys_unlinkat+0xbf/0x130
[  361.599424][T11864]  __do_fast_syscall_32+0x7c/0x3a0
[  361.599439][T11864]  do_fast_syscall_32+0x32/0x80
[  361.599452][T11864]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  361.599466][T11864] RIP: 0023:0xf7fc6579
[  361.599474][T11864] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  361.599485][T11864] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 000000000000012d
[  361.599496][T11864] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000280
[  361.599503][T11864] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  361.599509][T11864] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.599535][T11864] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  361.599546][T11864] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.599563][T11864]  </TASK>
[  361.676935][ T6000] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  361.682367][ T6000] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  361.686478][ T6000] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  361.690234][ T6000] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.697979][T11854] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  361.704889][ T6000] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  361.719188][T11866] fuse: Unknown parameter 'fd0x0000000000000003'
[  361.962752][ T5999] usb 8-1: USB disconnect, device number 47
[  361.969847][T11873] syz.1.1583: attempt to access beyond end of device
[  361.969847][T11873] nbd1: rw=0, sector=16, nr_sectors = 1 limit=0
[  361.974051][T11873] qnx6: unable to read the first superblock
[  361.976226][T11873] syz.1.1583: attempt to access beyond end of device
[  361.976226][T11873] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  361.980396][T11873] qnx6: unable to read the first superblock
[  361.982428][T11873] qnx6: unable to read the first superblock
[  362.904809][T11890] netlink: 'syz.2.1587': attribute type 1 has an invalid length.
[  362.908206][T11890] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1587'.
[  363.366336][T11899] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1590'.
[  363.400473][T11901] fuse: Unknown parameter 'fd0x0000000000000003'
[  363.404343][T11903] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1592'.
[  363.452404][T11908] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1595'.
[  363.454835][T11909] fuse: Unknown parameter '/dev/uhid'
[  363.719629][T11919] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1597'.
[  363.723927][T11919] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1597'.
[  364.488040][T11932] overlayfs: failed to clone upperpath
[  364.495966][T11932] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'.
[  364.812169][ T5998] hid-generic 0000:0006:0000.0005: unknown main item tag 0x0
[  364.812324][T11935] fuse: Unknown parameter '/dev/uhid'
[  364.814715][ T5998] hid-generic 0000:0006:0000.0005: unknown main item tag 0x0
[  364.821143][ T5998] hid-generic 0000:0006:0000.0005: unknown main item tag 0x0
[  364.825953][ T5998] hid-generic 0000:0006:0000.0005: hidraw1: <UNKNOWN> HID v4.00 Device [syz0] on syz1
[  365.423152][T11956] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  365.438246][T11956] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1608'.
[  366.001024][ T5985] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  366.161625][ T5985] usb 6-1: Using ep0 maxpacket: 16
[  366.165814][ T5985] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  366.174140][ T5985] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  366.180625][ T5985] usb 6-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  366.183752][ T5985] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.186367][ T5985] usb 6-1: Product: syz
[  366.187916][ T5985] usb 6-1: Manufacturer: syz
[  366.189641][ T5985] usb 6-1: SerialNumber: syz
[  366.196790][ T5985] usb 6-1: config 0 descriptor??
[  366.471297][ T5985] appledisplay 6-1:0.0: Error while getting initial brightness: -110
[  366.476035][ T5985] appledisplay 6-1:0.0: probe with driver appledisplay failed with error -110
[  366.482354][    C1] raw-gadget.0 gadget.1: ignoring, device is not running
[  366.486730][ T5985] usb 6-1: USB disconnect, device number 41
[  366.498823][T11972] syz.2.1613: attempt to access beyond end of device
[  366.498823][T11972] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  366.503212][T11972] qnx6: unable to read the first superblock
[  366.505827][T11972] syz.2.1613: attempt to access beyond end of device
[  366.505827][T11972] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  366.510058][T11972] qnx6: unable to read the first superblock
[  366.512433][T11972] qnx6: unable to read the first superblock
[  366.771362][T11983] 9pnet_fd: Insufficient options for proto=fd
[  367.689252][T11998] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  367.697950][T11998] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1621'.
[  368.384451][T12012] netlink: 'syz.3.1623': attribute type 1 has an invalid length.
[  368.386956][T12012] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1623'.
[  368.967429][T12028] FAULT_INJECTION: forcing a failure.
[  368.967429][T12028] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.971900][T12028] CPU: 3 UID: 0 PID: 12028 Comm: syz.1.1630 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  368.971916][T12028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.971923][T12028] Call Trace:
[  368.971928][T12028]  <TASK>
[  368.971934][T12028]  dump_stack_lvl+0x16c/0x1f0
[  368.971952][T12028]  should_fail_ex+0x512/0x640
[  368.971971][T12028]  _copy_from_user+0x2e/0xd0
[  368.971989][T12028]  hci_sock_ioctl+0x6e0/0x7d0
[  368.972005][T12028]  ? __pfx_hci_sock_ioctl+0x10/0x10
[  368.972022][T12028]  hci_sock_compat_ioctl+0x68/0x80
[  368.972035][T12028]  ? __pfx_hci_sock_compat_ioctl+0x10/0x10
[  368.972049][T12028]  compat_sock_ioctl+0x176/0x730
[  368.972069][T12028]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  368.972085][T12028]  ? hook_file_ioctl_common+0x145/0x410
[  368.972100][T12028]  ? __fget_files+0x20e/0x3c0
[  368.972111][T12028]  ? fput+0x60/0xf0
[  368.972128][T12028]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  368.972144][T12028]  __ia32_compat_sys_ioctl+0x23f/0x370
[  368.972163][T12028]  __do_fast_syscall_32+0x7c/0x3a0
[  368.972178][T12028]  do_fast_syscall_32+0x32/0x80
[  368.972191][T12028]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  368.972205][T12028] RIP: 0023:0xf7fc6579
[  368.972214][T12028] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  368.972225][T12028] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  368.972236][T12028] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400448e7
[  368.972243][T12028] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  368.972249][T12028] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  368.972255][T12028] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  368.972261][T12028] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  368.972274][T12028]  </TASK>
[  369.321195][T12039] overlayfs: overlapping lowerdir path
[  369.445674][T12044] netlink: 'syz.2.1633': attribute type 1 has an invalid length.
[  369.448230][T12044] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1633'.
[  369.743027][T12049] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  369.765834][T12049] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1634'.
[  370.029123][T12056] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  370.055711][T12056] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1636'.
[  370.906773][T12076] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1641'.
[  370.911955][T12076] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1641'.
[  371.054487][T12082] syz.1.1642: attempt to access beyond end of device
[  371.054487][T12082] nbd1: rw=0, sector=16, nr_sectors = 1 limit=0
[  371.058607][T12082] qnx6: unable to read the first superblock
[  371.061764][T12082] syz.1.1642: attempt to access beyond end of device
[  371.061764][T12082] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  371.066600][T12082] qnx6: unable to read the first superblock
[  371.068646][T12082] qnx6: unable to read the first superblock
[  371.147827][T12084] overlayfs: overlapping lowerdir path
[  371.277762][T12089] netlink: 'syz.2.1643': attribute type 1 has an invalid length.
[  371.280806][T12089] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1643'.
[  372.365368][T12103] FAULT_INJECTION: forcing a failure.
[  372.365368][T12103] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.370035][T12103] CPU: 3 UID: 0 PID: 12103 Comm: syz.2.1647 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  372.370050][T12103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  372.370058][T12103] Call Trace:
[  372.370062][T12103]  <TASK>
[  372.370066][T12103]  dump_stack_lvl+0x16c/0x1f0
[  372.370083][T12103]  should_fail_ex+0x512/0x640
[  372.370103][T12103]  _copy_from_user+0x2e/0xd0
[  372.370120][T12103]  input_event_from_user+0x137/0x290
[  372.370135][T12103]  ? __pfx_input_event_from_user+0x10/0x10
[  372.370149][T12103]  ? input_inject_event+0x1a5/0x390
[  372.370164][T12103]  evdev_write+0x26b/0x440
[  372.370178][T12103]  ? __pfx_evdev_write+0x10/0x10
[  372.370191][T12103]  ? bpf_lsm_file_permission+0x9/0x10
[  372.370208][T12103]  ? security_file_permission+0x71/0x210
[  372.370235][T12103]  ? rw_verify_area+0xcf/0x680
[  372.370253][T12103]  ? __pfx_evdev_write+0x10/0x10
[  372.370264][T12103]  vfs_write+0x2a0/0x1150
[  372.370279][T12103]  ? __pfx_vfs_write+0x10/0x10
[  372.370289][T12103]  ? find_held_lock+0x2b/0x80
[  372.370305][T12103]  ? __fget_files+0x204/0x3c0
[  372.370317][T12103]  ? __fget_files+0x20e/0x3c0
[  372.370332][T12103]  ksys_write+0x1f8/0x250
[  372.370343][T12103]  ? __pfx_ksys_write+0x10/0x10
[  372.370355][T12103]  ? rcu_is_watching+0x12/0xc0
[  372.370372][T12103]  __do_fast_syscall_32+0x7c/0x3a0
[  372.370388][T12103]  do_fast_syscall_32+0x32/0x80
[  372.370401][T12103]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  372.370415][T12103] RIP: 0023:0xf712e579
[  372.370423][T12103] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  372.370434][T12103] RSP: 002b:00000000f511e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  372.370444][T12103] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  372.370451][T12103] RDX: 00000000000012d8 RSI: 0000000000000000 RDI: 0000000000000000
[  372.370457][T12103] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  372.370463][T12103] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  372.370470][T12103] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  372.370483][T12103]  </TASK>
[  373.193644][T12122] overlayfs: failed to clone lowerpath
[  373.985760][T12136] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 108
[  374.124925][T12145] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  374.771054][T12150] wireguard0: entered promiscuous mode
[  374.773523][T12150] wireguard0: entered allmulticast mode
[  374.785209][T12154] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  374.800801][T12154] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1663'.
[  375.028020][T12165] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1666'.
[  375.031494][T12165] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1666'.
[  375.067576][T12169] overlayfs: failed to clone lowerpath
[  375.115306][ T5998] IPVS: starting estimator thread 0...
[  375.210306][T12173] IPVS: using max 42 ests per chain, 100800 per kthread
[  375.603734][T12178] overlayfs: overlapping lowerdir path
[  376.568634][T12201] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  377.068270][T12215] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1676'.
[  377.283866][T12222] netlink: 1100 bytes leftover after parsing attributes in process `syz.1.1681'.
[  377.371094][   T61] usb 8-1: new high-speed USB device number 48 using dummy_hcd
[  377.413630][T12228] netlink: 'syz.1.1681': attribute type 1 has an invalid length.
[  377.416862][T12228] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1681'.
[  377.541082][   T61] usb 8-1: Using ep0 maxpacket: 8
[  377.544796][   T61] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  377.547830][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  377.552404][   T61] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  377.558022][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  377.564381][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  377.570614][   T61] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  377.573553][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  377.577172][   T61] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  377.582075][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  377.586643][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  377.593589][   T61] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  377.596997][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  377.601614][   T61] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  377.606475][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  377.610229][   T61] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  377.616794][   T61] usb 8-1: string descriptor 0 read error: -22
[  377.619349][   T61] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  377.622249][   T61] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.632986][   T61] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  377.769099][T12232] netlink: 1100 bytes leftover after parsing attributes in process `syz.1.1684'.
[  377.905186][T12238] netlink: 'syz.1.1684': attribute type 1 has an invalid length.
[  377.907647][T12238] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1684'.
[  378.043073][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  378.286080][T12248] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  378.965459][T12260] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  378.992805][T12260] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1691'.
[  379.103454][T12264] netlink: 1092 bytes leftover after parsing attributes in process `syz.1.1692'.
[  379.326619][T12268] netlink: 'syz.1.1692': attribute type 1 has an invalid length.
[  379.792435][   T61] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[  379.951044][   T61] usb 6-1: Using ep0 maxpacket: 8
[  379.952003][ T5999] usb 8-1: USB disconnect, device number 48
[  379.956498][   T61] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  379.958808][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  379.962360][   T61] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  379.965928][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  379.969332][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  379.973673][   T61] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  379.975939][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  379.979300][   T61] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  379.983389][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  379.986857][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  379.991310][   T61] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  379.993641][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  379.997206][   T61] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  380.001057][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  380.004461][   T61] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  380.010389][   T61] usb 6-1: string descriptor 0 read error: -22
[  380.012857][   T61] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  380.015721][   T61] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.024260][   T61] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  380.131366][ T6035] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[  380.222104][T12272] FAULT_INJECTION: forcing a failure.
[  380.222104][T12272] name failslab, interval 1, probability 0, space 0, times 0
[  380.226076][T12272] CPU: 3 UID: 0 PID: 12272 Comm: syz.1.1694 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  380.226091][T12272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  380.226099][T12272] Call Trace:
[  380.226103][T12272]  <TASK>
[  380.226108][T12272]  dump_stack_lvl+0x16c/0x1f0
[  380.226124][T12272]  should_fail_ex+0x512/0x640
[  380.226141][T12272]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  380.226156][T12272]  should_failslab+0xc2/0x120
[  380.226170][T12272]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  380.226183][T12272]  ? alloc_empty_file+0x55/0x1e0
[  380.226200][T12272]  alloc_empty_file+0x55/0x1e0
[  380.226215][T12272]  path_openat+0xda/0x2cb0
[  380.226226][T12272]  ? do_fast_syscall_32+0x32/0x80
[  380.226239][T12272]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  380.226258][T12272]  ? __pfx_path_openat+0x10/0x10
[  380.226273][T12272]  do_filp_open+0x20b/0x470
[  380.226285][T12272]  ? __pfx_do_filp_open+0x10/0x10
[  380.226306][T12272]  ? _raw_spin_unlock+0x28/0x50
[  380.226317][T12272]  ? alloc_fd+0x471/0x7d0
[  380.226331][T12272]  do_sys_openat2+0x11b/0x1d0
[  380.226347][T12272]  ? __pfx_do_sys_openat2+0x10/0x10
[  380.226365][T12272]  ? __fget_files+0x20e/0x3c0
[  380.226378][T12272]  __ia32_compat_sys_openat+0x16d/0x210
[  380.226394][T12272]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  380.226410][T12272]  ? ksys_write+0x1ac/0x250
[  380.226424][T12272]  ? rcu_is_watching+0x12/0xc0
[  380.226441][T12272]  __do_fast_syscall_32+0x7c/0x3a0
[  380.226455][T12272]  do_fast_syscall_32+0x32/0x80
[  380.226468][T12272]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  380.226480][T12272] RIP: 0023:0xf7fc6579
[  380.226489][T12272] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  380.226499][T12272] RSP: 002b:00000000f50e6100 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  380.226510][T12272] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f50e6150
[  380.226517][T12272] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 00000000f7452ff4
[  380.226524][T12272] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  380.226530][T12272] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  380.226536][T12272] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  380.226549][T12272]  </TASK>
[  380.227074][   T61] usb 6-1: USB disconnect, device number 42
[  380.301000][ T6035] usb 7-1: Using ep0 maxpacket: 8
[  380.305956][ T6035] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  380.315491][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  380.321110][ T6035] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  380.325646][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  380.329784][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  380.335924][ T6035] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  380.338182][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  380.341598][ T6035] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  380.345261][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  380.348594][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  380.353975][ T6035] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  380.356330][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  380.360288][ T6035] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  380.364213][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  380.368111][ T6035] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  380.374059][ T6035] usb 7-1: string descriptor 0 read error: -22
[  380.376041][ T6035] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  380.379162][ T6035] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.389517][ T6035] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  380.640628][   T61] usb 7-1: USB disconnect, device number 44
[  380.761019][T12295] sctp: [Deprecated]: syz.1.1703 (pid 12295) Use of struct sctp_assoc_value in delayed_ack socket option.
[  380.761019][T12295] Use struct sctp_sack_info instead
[  381.086794][T12306] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  381.092619][T12306] __nla_validate_parse: 1 callbacks suppressed
[  381.092629][T12306] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1707'.
[  382.128576][T12319] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1711'.
[  383.145683][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880262e2400: rx timeout, send abort
[  383.645933][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880262e3800: rx timeout, send abort
[  383.649168][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880262e2400: abort rx timeout. Force session deactivation
[  383.826057][T12348] netlink: 1092 bytes leftover after parsing attributes in process `syz.3.1718'.
[  383.929457][T12352] netlink: 'syz.0.1717': attribute type 4 has an invalid length.
[  383.949584][T12353] netlink: 'syz.3.1718': attribute type 1 has an invalid length.
[  383.953046][T12353] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1718'.
[  384.148544][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880262e3800: abort rx timeout. Force session deactivation
[  384.388306][T12367] nvme_fabrics: missing parameter 'transport=%s'
[  384.390659][T12367] nvme_fabrics: missing parameter 'nqn=%s'
[  385.206284][T12380] random: crng reseeded on system resumption
[  385.343778][T12389] netlink: 1092 bytes leftover after parsing attributes in process `syz.1.1727'.
[  385.467234][T12393] netlink: 'syz.1.1727': attribute type 1 has an invalid length.
[  385.470531][T12393] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1727'.
[  385.931066][ T5998] usb 6-1: new full-speed USB device number 43 using dummy_hcd
[  386.102509][ T5998] usb 6-1: config 0 has no interfaces?
[  386.104529][ T5998] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  386.107929][ T5998] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  386.112461][ T5998] usb 6-1: config 0 descriptor??
[  387.559209][T12428] input: syz1 as /devices/virtual/input/input19
[  388.324814][T12444] 9pnet_fd: Insufficient options for proto=fd
[  388.700592][ T5998] usb 6-1: USB disconnect, device number 43
[  389.351663][T12462] FAULT_INJECTION: forcing a failure.
[  389.351663][T12462] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  389.366306][T12462] CPU: 1 UID: 0 PID: 12462 Comm: syz.3.1747 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  389.366334][T12462] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  389.366342][T12462] Call Trace:
[  389.366346][T12462]  <TASK>
[  389.366350][T12462]  dump_stack_lvl+0x16c/0x1f0
[  389.366367][T12462]  should_fail_ex+0x512/0x640
[  389.366385][T12462]  _copy_from_user+0x2e/0xd0
[  389.366403][T12462]  do_handle_open+0x61b/0xb70
[  389.366419][T12462]  ? __pfx___schedule+0x10/0x10
[  389.366432][T12462]  ? __pfx_do_handle_open+0x10/0x10
[  389.366455][T12462]  ? ksys_write+0x1ac/0x250
[  389.366471][T12462]  ? __do_fast_syscall_32+0x7c/0x3a0
[  389.366484][T12462]  __do_fast_syscall_32+0x7c/0x3a0
[  389.366498][T12462]  do_fast_syscall_32+0x32/0x80
[  389.366512][T12462]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  389.366526][T12462] RIP: 0023:0xf70ce579
[  389.366534][T12462] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  389.366545][T12462] RSP: 002b:00000000f507c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000156
[  389.366556][T12462] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800000c0
[  389.366563][T12462] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  389.366569][T12462] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  389.366575][T12462] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  389.366582][T12462] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  389.366595][T12462]  </TASK>
[  389.420618][    C1] vkms_vblank_simulate: vblank timer overrun
[  389.813926][T12464] netlink: 1084 bytes leftover after parsing attributes in process `syz.1.1748'.
[  389.943071][T12468] netlink: 'syz.1.1748': attribute type 1 has an invalid length.
[  389.946056][T12468] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1748'.
[  391.866579][T12506] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1759'.
[  392.041856][T12506] ubi31: attaching mtd0
[  392.311446][T12511] netlink: 1084 bytes leftover after parsing attributes in process `syz.1.1760'.
[  392.434401][T12520] netlink: 'syz.1.1760': attribute type 1 has an invalid length.
[  392.437573][T12520] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1760'.
[  392.779678][T12524] syz.2.1762: attempt to access beyond end of device
[  392.779678][T12524] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  392.787325][T12524] qnx6: unable to read the first superblock
[  392.790668][T12524] syz.2.1762: attempt to access beyond end of device
[  392.790668][T12524] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  392.796255][T12524] qnx6: unable to read the first superblock
[  392.798919][T12524] qnx6: unable to read the first superblock
[  392.836562][T12528] netlink: 'syz.1.1763': attribute type 10 has an invalid length.
[  393.116135][T12538] overlayfs: missing 'lowerdir'
[  393.238636][T12544] netlink: 'syz.1.1767': attribute type 1 has an invalid length.
[  393.241710][T12544] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1767'.
[  393.269219][T12539] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  393.300818][T12539] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1766'.
[  393.438599][T12547] mkiss: ax0: crc mode is auto.
[  393.669501][T12549] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  393.676900][T12549] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1769'.
[  394.343534][T12561] FAULT_INJECTION: forcing a failure.
[  394.343534][T12561] name failslab, interval 1, probability 0, space 0, times 0
[  394.347910][T12561] CPU: 2 UID: 0 PID: 12561 Comm: syz.1.1772 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  394.347936][T12561] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  394.347944][T12561] Call Trace:
[  394.347948][T12561]  <TASK>
[  394.347952][T12561]  dump_stack_lvl+0x16c/0x1f0
[  394.347970][T12561]  should_fail_ex+0x512/0x640
[  394.347986][T12561]  ? kmem_cache_alloc_bulk_noprof+0x6d/0xbc0
[  394.348002][T12561]  should_failslab+0xc2/0x120
[  394.348017][T12561]  kmem_cache_alloc_bulk_noprof+0x85/0xbc0
[  394.348032][T12561]  ? trace_kmem_cache_alloc+0x28/0xc0
[  394.348047][T12561]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  394.348060][T12561]  ? mas_alloc_nodes+0x18b/0x8b0
[  394.348072][T12561]  ? mas_alloc_nodes+0x2f1/0x8b0
[  394.348082][T12561]  mas_alloc_nodes+0x2f1/0x8b0
[  394.348096][T12561]  mas_node_count_gfp+0x105/0x130
[  394.348108][T12561]  mas_preallocate+0x53e/0xcd0
[  394.348125][T12561]  ? __pfx_mas_preallocate+0x10/0x10
[  394.348145][T12561]  ? anon_vma_name+0x75/0x100
[  394.348162][T12561]  __split_vma+0x33b/0x1030
[  394.348176][T12561]  ? __pfx___split_vma+0x10/0x10
[  394.348195][T12561]  vms_gather_munmap_vmas+0x392/0x1310
[  394.348210][T12561]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  394.348224][T12561]  ? mas_walk+0x6a6/0x910
[  394.348240][T12561]  __mmap_region+0x314/0x27c0
[  394.348254][T12561]  ? __pfx___mmap_region+0x10/0x10
[  394.348272][T12561]  ? rcu_is_watching+0x12/0xc0
[  394.348287][T12561]  ? trace_sched_exit_tp+0xde/0x130
[  394.348304][T12561]  ? __schedule+0x1181/0x5de0
[  394.348341][T12561]  mmap_region+0x1ab/0x3f0
[  394.348354][T12561]  ? __get_unmapped_area+0x267/0x440
[  394.348373][T12561]  do_mmap+0xd8e/0x11b0
[  394.348392][T12561]  ? __pfx_do_mmap+0x10/0x10
[  394.348408][T12561]  ? __pfx_down_write_killable+0x10/0x10
[  394.348426][T12561]  vm_mmap_pgoff+0x281/0x450
[  394.348445][T12561]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  394.348463][T12561]  ? fput+0x70/0xf0
[  394.348476][T12561]  ? ksys_write+0x1ac/0x250
[  394.348489][T12561]  ksys_mmap_pgoff+0x7d/0x5c0
[  394.348504][T12561]  ? rcu_is_watching+0x12/0xc0
[  394.348518][T12561]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  394.348535][T12561]  __do_fast_syscall_32+0x7c/0x3a0
[  394.348550][T12561]  do_fast_syscall_32+0x32/0x80
[  394.348563][T12561]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  394.348577][T12561] RIP: 0023:0xf7fc6579
[  394.348585][T12561] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  394.348596][T12561] RSP: 002b:00000000f50c555c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  394.348607][T12561] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000fbe000
[  394.348614][T12561] RDX: 0000000000000002 RSI: 0000000000000031 RDI: 00000000ffffffff
[  394.348620][T12561] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  394.348626][T12561] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  394.348633][T12561] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  394.348646][T12561]  </TASK>
[  394.443860][    C2] hpet: Lost 4 RTC interrupts
[  394.641475][T12566] ip6tnl0: entered promiscuous mode
[  394.646045][T12566] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1775'.
[  394.932235][T12573] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1776'.
[  394.940403][T12573] bridge_slave_0: left allmulticast mode
[  394.943993][T12573] bridge_slave_0: left promiscuous mode
[  394.946106][T12573] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.965983][T12573] bridge_slave_1: left allmulticast mode
[  394.968438][T12573] bridge_slave_1: left promiscuous mode
[  394.971083][T12573] bridge0: port 2(bridge_slave_1) entered disabled state
[  394.980607][T12573] bond0: (slave bond_slave_0): Releasing backup interface
[  394.986315][T12573] bond0: (slave bond_slave_1): Releasing backup interface
[  395.003808][T12573] team0: Port device team_slave_0 removed
[  395.014203][T12573] team0: Port device team_slave_1 removed
[  395.016733][T12573] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  395.019266][T12573] batman_adv: batadv0: Removing interface: batadv_slave_0
[  395.025909][T12573] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  395.028404][T12573] batman_adv: batadv0: Removing interface: batadv_slave_1
[  395.528883][T12595] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1782'.
[  395.556551][T12595] bond1: entered promiscuous mode
[  395.559538][T12595] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  395.565680][T12595] bond1: left promiscuous mode
[  395.717199][T12598] FAULT_INJECTION: forcing a failure.
[  395.717199][T12598] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  395.722699][T12598] CPU: 1 UID: 0 PID: 12598 Comm: syz.3.1781 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  395.722726][T12598] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  395.722732][T12598] Call Trace:
[  395.722737][T12598]  <TASK>
[  395.722741][T12598]  dump_stack_lvl+0x16c/0x1f0
[  395.722758][T12598]  should_fail_ex+0x512/0x640
[  395.722776][T12598]  should_fail_alloc_page+0xe7/0x130
[  395.722792][T12598]  prepare_alloc_pages+0x3c2/0x610
[  395.722812][T12598]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  395.722825][T12598]  ? lock_acquire+0x179/0x350
[  395.722837][T12598]  ? find_held_lock+0x2b/0x80
[  395.722853][T12598]  ? mark_held_locks+0x49/0x80
[  395.722862][T12598]  ? finish_task_switch.isra.0+0x221/0xc10
[  395.722878][T12598]  ? lockdep_hardirqs_on+0x7c/0x110
[  395.722890][T12598]  ? finish_task_switch.isra.0+0x221/0xc10
[  395.722905][T12598]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  395.722917][T12598]  ? rcu_is_watching+0x12/0xc0
[  395.722933][T12598]  ? __schedule+0x1181/0x5de0
[  395.722950][T12598]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  395.722964][T12598]  ? policy_nodemask+0xea/0x4e0
[  395.722980][T12598]  alloc_pages_mpol+0x1fb/0x550
[  395.723001][T12598]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  395.723024][T12598]  folio_alloc_mpol_noprof+0x36/0x2f0
[  395.723041][T12598]  vma_alloc_folio_noprof+0xed/0x1e0
[  395.723056][T12598]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  395.723073][T12598]  ? __handle_mm_fault+0x2498/0x5450
[  395.723084][T12598]  ? __handle_mm_fault+0x286c/0x5450
[  395.723096][T12598]  __handle_mm_fault+0x2fac/0x5450
[  395.723111][T12598]  ? __pfx___handle_mm_fault+0x10/0x10
[  395.723130][T12598]  ? find_vma+0xbf/0x140
[  395.723144][T12598]  ? __pfx_find_vma+0x10/0x10
[  395.723161][T12598]  handle_mm_fault+0x3fe/0xad0
[  395.723174][T12598]  do_user_addr_fault+0x7a6/0x1370
[  395.723188][T12598]  ? rcu_is_watching+0x12/0xc0
[  395.723223][T12598]  exc_page_fault+0x5c/0xb0
[  395.723240][T12598]  asm_exc_page_fault+0x26/0x30
[  395.723251][T12598] RIP: 0010:_copy_to_user+0xb6/0xd0
[  395.723268][T12598] Code: 89 ee 48 89 ef e8 aa e3 e4 fc 4d 85 ff 75 a8 e8 f0 e8 e4 fc 89 de 4c 89 e7 e8 26 8f 4a fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[  395.723279][T12598] RSP: 0018:ffffc9002088fd10 EFLAGS: 00050297
[  395.723288][T12598] RAX: 0000000000000001 RBX: 0000000000000004 RCX: 0000000000000004
[  395.723295][T12598] RDX: fffff52004111fb8 RSI: ffffc9002088fdc0 RDI: 0000000080bbdffc
[  395.723302][T12598] RBP: 0000000080bbdffc R08: 0000000000000000 R09: fffff52004111fb8
[  395.723308][T12598] R10: 0000000000000003 R11: 0000000000000001 R12: ffffc9002088fdc0
[  395.723314][T12598] R13: 0000000080bbe000 R14: 00007ffffffff000 R15: 0000000000000000
[  395.723330][T12598]  do_timer_create+0x6dc/0x14e0
[  395.723345][T12598]  ? __pfx_do_timer_create+0x10/0x10
[  395.723364][T12598]  ? __asan_memset+0x23/0x50
[  395.723381][T12598]  __ia32_compat_sys_timer_create+0x17c/0x1c0
[  395.723403][T12598]  ? __pfx___ia32_compat_sys_timer_create+0x10/0x10
[  395.723421][T12598]  ? fput+0x70/0xf0
[  395.723443][T12598]  ? rcu_is_watching+0x12/0xc0
[  395.723459][T12598]  __do_fast_syscall_32+0x7c/0x3a0
[  395.723475][T12598]  do_fast_syscall_32+0x32/0x80
[  395.723488][T12598]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  395.723501][T12598] RIP: 0023:0xf70ce579
[  395.723510][T12598] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  395.723520][T12598] RSP: 002b:00000000f507c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000103
[  395.723530][T12598] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080533fa0
[  395.723537][T12598] RDX: 0000000080bbdffc RSI: 0000000000000000 RDI: 0000000000000000
[  395.723543][T12598] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  395.723549][T12598] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  395.723555][T12598] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  395.723568][T12598]  </TASK>
[  395.919069][T12605] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  395.929992][T12605] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1784'.
[  395.981538][T12608] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1785'.
[  396.319776][T12618] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  396.574455][T12625] overlayfs: missing 'lowerdir'
[  396.703829][T12631] netlink: 'syz.3.1789': attribute type 1 has an invalid length.
[  396.707048][T12631] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1789'.
[  396.858297][T12633] overlayfs: missing 'lowerdir'
[  397.265288][T12643] FAULT_INJECTION: forcing a failure.
[  397.265288][T12643] name failslab, interval 1, probability 0, space 0, times 0
[  397.269205][T12643] CPU: 1 UID: 0 PID: 12643 Comm: syz.2.1791 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  397.269232][T12643] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  397.269239][T12643] Call Trace:
[  397.269244][T12643]  <TASK>
[  397.269249][T12643]  dump_stack_lvl+0x16c/0x1f0
[  397.269265][T12643]  should_fail_ex+0x512/0x640
[  397.269283][T12643]  ? rds_message_alloc+0x42/0x230
[  397.269297][T12643]  should_failslab+0xc2/0x120
[  397.269312][T12643]  __kmalloc_noprof+0xd2/0x510
[  397.269328][T12643]  rds_message_alloc+0x42/0x230
[  397.269342][T12643]  rds_send_probe.constprop.0+0xa3/0xcb0
[  397.269359][T12643]  ? lock_acquire+0x179/0x350
[  397.269370][T12643]  ? find_held_lock+0x2b/0x80
[  397.269385][T12643]  ? __pfx_rds_send_probe.constprop.0+0x10/0x10
[  397.269402][T12643]  ? rcu_is_watching+0x12/0xc0
[  397.269417][T12643]  ? finish_task_switch.isra.0+0x221/0xc10
[  397.269432][T12643]  ? lockdep_hardirqs_on+0x7c/0x110
[  397.269448][T12643]  rds_recv_incoming+0xc5f/0x11b0
[  397.269463][T12643]  ? entry_SYSENTER_compat+0x10/0x2d
[  397.269480][T12643]  ? __pfx_rds_recv_incoming+0x10/0x10
[  397.269497][T12643]  ? do_raw_spin_lock+0x12c/0x2b0
[  397.269513][T12643]  rds_loop_xmit+0x11f/0x2b0
[  397.269523][T12643]  ? __pfx_rds_loop_xmit+0x10/0x10
[  397.269535][T12643]  rds_send_xmit+0xf9d/0x25c0
[  397.269558][T12643]  ? __pfx_rds_send_xmit+0x10/0x10
[  397.269579][T12643]  rds_sendmsg+0x2875/0x31f0
[  397.269594][T12643]  ? __lock_acquire+0xb8a/0x1c90
[  397.269610][T12643]  ? __pfx_rds_sendmsg+0x10/0x10
[  397.269628][T12643]  ? aa_sk_perm+0x2f4/0xb10
[  397.269642][T12643]  ? __pfx_aa_sk_perm+0x10/0x10
[  397.269655][T12643]  ? __import_iovec+0x1dd/0x650
[  397.269674][T12643]  ? ____sys_sendmsg+0xa95/0xc70
[  397.269690][T12643]  ____sys_sendmsg+0xa95/0xc70
[  397.269708][T12643]  ? __pfx_____sys_sendmsg+0x10/0x10
[  397.269723][T12643]  ? get_compat_msghdr+0x11a/0x170
[  397.269743][T12643]  ___sys_sendmsg+0x134/0x1d0
[  397.269756][T12643]  ? __pfx____sys_sendmsg+0x10/0x10
[  397.269776][T12643]  ? find_held_lock+0x2b/0x80
[  397.269799][T12643]  __sys_sendmsg+0x16d/0x220
[  397.269812][T12643]  ? __pfx___sys_sendmsg+0x10/0x10
[  397.269831][T12643]  ? rcu_is_watching+0x12/0xc0
[  397.269847][T12643]  __do_fast_syscall_32+0x7c/0x3a0
[  397.269862][T12643]  do_fast_syscall_32+0x32/0x80
[  397.269875][T12643]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  397.269888][T12643] RIP: 0023:0xf712e579
[  397.269896][T12643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  397.269907][T12643] RSP: 002b:00000000f50dc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  397.269917][T12643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  397.269924][T12643] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  397.269930][T12643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  397.269936][T12643] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  397.269943][T12643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  397.269956][T12643]  </TASK>
[  397.428208][T12644] syz.3.1792: attempt to access beyond end of device
[  397.428208][T12644] nbd3: rw=0, sector=16, nr_sectors = 1 limit=0
[  397.432696][T12644] qnx6: unable to read the first superblock
[  397.438567][T12644] syz.3.1792: attempt to access beyond end of device
[  397.438567][T12644] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  397.444317][T12644] qnx6: unable to read the first superblock
[  397.447966][T12644] qnx6: unable to read the first superblock
[  397.840444][T12651] syz.1.1793: attempt to access beyond end of device
[  397.840444][T12651] nbd1: rw=0, sector=16, nr_sectors = 1 limit=0
[  397.844670][T12651] qnx6: unable to read the first superblock
[  397.846676][T12651] syz.1.1793: attempt to access beyond end of device
[  397.846676][T12651] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  397.850781][T12651] qnx6: unable to read the first superblock
[  397.853257][T12651] qnx6: unable to read the first superblock
[  400.206545][T12698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1800'.
[  400.213128][T12698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1800'.
[  400.593063][T12705] FAULT_INJECTION: forcing a failure.
[  400.593063][T12705] name failslab, interval 1, probability 0, space 0, times 0
[  400.609369][T12705] CPU: 2 UID: 0 PID: 12705 Comm: syz.3.1803 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  400.609387][T12705] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  400.609394][T12705] Call Trace:
[  400.609398][T12705]  <TASK>
[  400.609403][T12705]  dump_stack_lvl+0x16c/0x1f0
[  400.609420][T12705]  should_fail_ex+0x512/0x640
[  400.609444][T12705]  ? is_bpf_text_address+0x94/0x1a0
[  400.609459][T12705]  ? rds_message_alloc+0x42/0x230
[  400.609474][T12705]  should_failslab+0xc2/0x120
[  400.609489][T12705]  __kmalloc_noprof+0xd2/0x510
[  400.609501][T12705]  ? arch_stack_walk+0xa6/0x100
[  400.609518][T12705]  rds_message_alloc+0x42/0x230
[  400.609533][T12705]  rds_send_probe.constprop.0+0xa3/0xcb0
[  400.609550][T12705]  ? rds_message_alloc+0x42/0x230
[  400.609564][T12705]  ? stack_trace_save+0x8e/0xc0
[  400.609581][T12705]  ? __pfx_rds_send_probe.constprop.0+0x10/0x10
[  400.609604][T12705]  rds_recv_incoming+0xc5f/0x11b0
[  400.609619][T12705]  ? entry_SYSENTER_compat+0x10/0x2d
[  400.609633][T12705]  ? __pfx_rds_recv_incoming+0x10/0x10
[  400.609650][T12705]  ? do_raw_spin_lock+0x12c/0x2b0
[  400.609667][T12705]  rds_loop_xmit+0x11f/0x2b0
[  400.609677][T12705]  ? __pfx_rds_loop_xmit+0x10/0x10
[  400.609689][T12705]  rds_send_xmit+0xf9d/0x25c0
[  400.609713][T12705]  ? __pfx_rds_send_xmit+0x10/0x10
[  400.609733][T12705]  rds_sendmsg+0x2875/0x31f0
[  400.609749][T12705]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  400.609769][T12705]  ? __pfx_rds_sendmsg+0x10/0x10
[  400.609787][T12705]  ? aa_sk_perm+0x2f4/0xb10
[  400.609802][T12705]  ? __pfx_aa_sk_perm+0x10/0x10
[  400.609814][T12705]  ? __import_iovec+0x1dd/0x650
[  400.609833][T12705]  ? ____sys_sendmsg+0xa95/0xc70
[  400.609850][T12705]  ____sys_sendmsg+0xa95/0xc70
[  400.609868][T12705]  ? __pfx_____sys_sendmsg+0x10/0x10
[  400.609883][T12705]  ? get_compat_msghdr+0x11a/0x170
[  400.609903][T12705]  ___sys_sendmsg+0x134/0x1d0
[  400.609918][T12705]  ? __pfx____sys_sendmsg+0x10/0x10
[  400.609937][T12705]  ? find_held_lock+0x2b/0x80
[  400.609959][T12705]  __sys_sendmsg+0x16d/0x220
[  400.609973][T12705]  ? __pfx___sys_sendmsg+0x10/0x10
[  400.609992][T12705]  ? rcu_is_watching+0x12/0xc0
[  400.610008][T12705]  __do_fast_syscall_32+0x7c/0x3a0
[  400.610023][T12705]  do_fast_syscall_32+0x32/0x80
[  400.610036][T12705]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  400.610050][T12705] RIP: 0023:0xf70ce579
[  400.610059][T12705] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  400.610069][T12705] RSP: 002b:00000000f509d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  400.610080][T12705] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  400.610088][T12705] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  400.610094][T12705] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  400.610100][T12705] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  400.610106][T12705] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  400.610119][T12705]  </TASK>
[  400.721360][    C2] hpet: Lost 6 RTC interrupts
[  401.272879][T12719] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1808'.
[  401.280378][T12719] bridge_slave_0: left allmulticast mode
[  401.283484][T12719] bridge_slave_0: left promiscuous mode
[  401.285932][T12719] bridge0: port 1(bridge_slave_0) entered disabled state
[  401.295179][T12719] bridge_slave_1: left allmulticast mode
[  401.297601][T12719] bridge_slave_1: left promiscuous mode
[  401.300142][T12719] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.310819][T12719] bond0: (slave bond_slave_0): Releasing backup interface
[  401.318648][T12719] bond0: (slave bond_slave_1): Releasing backup interface
[  401.339466][T12719] team0: Port device team_slave_0 removed
[  401.349074][T12719] team0: Port device team_slave_1 removed
[  401.353782][T12719] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  401.356915][T12719] batman_adv: batadv0: Removing interface: batadv_slave_0
[  401.361795][T12719] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  401.364944][T12719] batman_adv: batadv0: Removing interface: batadv_slave_1
[  401.460703][T12724] overlayfs: missing 'lowerdir'
[  401.583236][T12733] netlink: 'syz.1.1809': attribute type 1 has an invalid length.
[  401.585917][T12733] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1809'.
[  401.830576][T12736] syz.3.1811: attempt to access beyond end of device
[  401.830576][T12736] nbd3: rw=0, sector=16, nr_sectors = 1 limit=0
[  401.835518][T12736] qnx6: unable to read the first superblock
[  401.837727][T12736] syz.3.1811: attempt to access beyond end of device
[  401.837727][T12736] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  401.841867][T12736] qnx6: unable to read the first superblock
[  401.843789][T12736] qnx6: unable to read the first superblock
[  402.186423][T12748] FAULT_INJECTION: forcing a failure.
[  402.186423][T12748] name failslab, interval 1, probability 0, space 0, times 0
[  402.190410][T12748] CPU: 0 UID: 0 PID: 12748 Comm: syz.1.1816 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  402.190436][T12748] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  402.190443][T12748] Call Trace:
[  402.190448][T12748]  <TASK>
[  402.190452][T12748]  dump_stack_lvl+0x16c/0x1f0
[  402.190469][T12748]  should_fail_ex+0x512/0x640
[  402.190485][T12748]  ? kmem_cache_alloc_bulk_noprof+0x6d/0xbc0
[  402.190501][T12748]  should_failslab+0xc2/0x120
[  402.190515][T12748]  kmem_cache_alloc_bulk_noprof+0x85/0xbc0
[  402.190530][T12748]  ? trace_kmem_cache_alloc+0x28/0xc0
[  402.190545][T12748]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  402.190558][T12748]  ? mas_alloc_nodes+0x18b/0x8b0
[  402.190570][T12748]  ? mas_alloc_nodes+0x2f1/0x8b0
[  402.190580][T12748]  mas_alloc_nodes+0x2f1/0x8b0
[  402.190594][T12748]  mas_node_count_gfp+0x105/0x130
[  402.190606][T12748]  mas_preallocate+0x53e/0xcd0
[  402.190627][T12748]  ? __pfx_mas_preallocate+0x10/0x10
[  402.190647][T12748]  ? anon_vma_name+0x75/0x100
[  402.190664][T12748]  __split_vma+0x33b/0x1030
[  402.190679][T12748]  ? __pfx___split_vma+0x10/0x10
[  402.190697][T12748]  vms_gather_munmap_vmas+0x392/0x1310
[  402.190713][T12748]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  402.190726][T12748]  ? mas_walk+0x6a6/0x910
[  402.190743][T12748]  __mmap_region+0x314/0x27c0
[  402.190757][T12748]  ? __pfx___mmap_region+0x10/0x10
[  402.190776][T12748]  ? __lock_acquire+0x622/0x1c90
[  402.190789][T12748]  ? _parse_integer_limit+0x17f/0x1d0
[  402.190821][T12748]  ? mm_get_unmapped_area+0x95/0xe0
[  402.190841][T12748]  mmap_region+0x1ab/0x3f0
[  402.190854][T12748]  ? __get_unmapped_area+0x267/0x440
[  402.190871][T12748]  do_mmap+0xd8e/0x11b0
[  402.190890][T12748]  ? __pfx_do_mmap+0x10/0x10
[  402.190906][T12748]  ? __pfx_down_write_killable+0x10/0x10
[  402.190937][T12748]  vm_mmap_pgoff+0x281/0x450
[  402.190956][T12748]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  402.190974][T12748]  ? fput+0x70/0xf0
[  402.190988][T12748]  ? ksys_write+0x1ac/0x250
[  402.191000][T12748]  ksys_mmap_pgoff+0x7d/0x5c0
[  402.191016][T12748]  ? rcu_is_watching+0x12/0xc0
[  402.191030][T12748]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  402.191047][T12748]  __do_fast_syscall_32+0x7c/0x3a0
[  402.191062][T12748]  do_fast_syscall_32+0x32/0x80
[  402.191075][T12748]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  402.191089][T12748] RIP: 0023:0xf7fc6579
[  402.191098][T12748] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  402.191109][T12748] RSP: 002b:00000000f50c555c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  402.191121][T12748] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000fbe000
[  402.191128][T12748] RDX: 0000000000000002 RSI: 0000000000000031 RDI: 00000000ffffffff
[  402.191134][T12748] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  402.191140][T12748] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  402.191162][T12748] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  402.191177][T12748]  </TASK>
[  402.743031][T12758] capability: warning: `syz.2.1819' uses deprecated v2 capabilities in a way that may be insecure
[  403.867398][T12782] IPVS: You probably need to specify IP address on multicast interface.
[  403.872134][T12782] IPVS: Error connecting to the multicast addr
[  403.877308][T12782] xt_TCPMSS: Only works on TCP SYN packets
[  404.121288][T12788] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1829'.
[  404.571293][T12802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1830'.
[  404.627096][T12807] FAULT_INJECTION: forcing a failure.
[  404.627096][T12807] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  404.631514][T12807] CPU: 3 UID: 0 PID: 12807 Comm: syz.3.1834 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  404.631530][T12807] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  404.631538][T12807] Call Trace:
[  404.631542][T12807]  <TASK>
[  404.631546][T12807]  dump_stack_lvl+0x16c/0x1f0
[  404.631563][T12807]  should_fail_ex+0x512/0x640
[  404.631582][T12807]  _copy_from_user+0x2e/0xd0
[  404.631599][T12807]  snd_seq_event_dup+0x73d/0x900
[  404.631621][T12807]  ? __pfx_snd_seq_event_dup+0x10/0x10
[  404.631638][T12807]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  404.631650][T12807]  ? lockdep_hardirqs_on+0x7c/0x110
[  404.631662][T12807]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  404.631676][T12807]  snd_seq_client_enqueue_event.constprop.0+0x210/0x440
[  404.631694][T12807]  ? __pfx_snd_seq_client_enqueue_event.constprop.0+0x10/0x10
[  404.631713][T12807]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  404.631729][T12807]  snd_seq_write+0x361/0x6d0
[  404.631747][T12807]  ? __pfx_snd_seq_write+0x10/0x10
[  404.631764][T12807]  ? bpf_lsm_file_permission+0x9/0x10
[  404.631780][T12807]  ? security_file_permission+0x71/0x210
[  404.631794][T12807]  ? rw_verify_area+0xcf/0x680
[  404.631813][T12807]  ? __pfx_snd_seq_write+0x10/0x10
[  404.631827][T12807]  vfs_write+0x2a0/0x1150
[  404.631842][T12807]  ? __pfx_vfs_write+0x10/0x10
[  404.631852][T12807]  ? find_held_lock+0x2b/0x80
[  404.631867][T12807]  ? __fget_files+0x204/0x3c0
[  404.631880][T12807]  ? __fget_files+0x20e/0x3c0
[  404.631894][T12807]  ksys_write+0x1f8/0x250
[  404.631905][T12807]  ? __pfx_ksys_write+0x10/0x10
[  404.631918][T12807]  ? rcu_is_watching+0x12/0xc0
[  404.631934][T12807]  __do_fast_syscall_32+0x7c/0x3a0
[  404.631949][T12807]  do_fast_syscall_32+0x32/0x80
[  404.631962][T12807]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  404.631976][T12807] RIP: 0023:0xf70ce579
[  404.631984][T12807] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  404.631995][T12807] RSP: 002b:00000000f50be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  404.632006][T12807] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  404.632013][T12807] RDX: 000000000000ffc8 RSI: 0000000000000000 RDI: 0000000000000000
[  404.632019][T12807] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  404.632025][T12807] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  404.632031][T12807] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  404.632044][T12807]  </TASK>
[  405.276029][T12829] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  405.280720][T12829] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1839'.
[  405.413694][T12835] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  405.426468][T12835] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1841'.
[  405.954800][T12842] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1843'.
[  406.250095][T12848] FAULT_INJECTION: forcing a failure.
[  406.250095][T12848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  406.254511][T12848] CPU: 1 UID: 0 PID: 12848 Comm: syz.3.1844 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  406.254537][T12848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  406.254545][T12848] Call Trace:
[  406.254550][T12848]  <TASK>
[  406.254554][T12848]  dump_stack_lvl+0x16c/0x1f0
[  406.254571][T12848]  should_fail_ex+0x512/0x640
[  406.254590][T12848]  _copy_from_user+0x2e/0xd0
[  406.254607][T12848]  get_compat_msghdr+0xa7/0x170
[  406.254621][T12848]  ? __pfx_get_compat_msghdr+0x10/0x10
[  406.254640][T12848]  ___sys_sendmsg+0x1ae/0x1d0
[  406.254655][T12848]  ? __pfx____sys_sendmsg+0x10/0x10
[  406.254674][T12848]  ? find_held_lock+0x2b/0x80
[  406.254698][T12848]  __sys_sendmsg+0x16d/0x220
[  406.254711][T12848]  ? __pfx___sys_sendmsg+0x10/0x10
[  406.254730][T12848]  ? rcu_is_watching+0x12/0xc0
[  406.254746][T12848]  __do_fast_syscall_32+0x7c/0x3a0
[  406.254761][T12848]  do_fast_syscall_32+0x32/0x80
[  406.254774][T12848]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  406.254788][T12848] RIP: 0023:0xf70ce579
[  406.254796][T12848] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  406.254808][T12848] RSP: 002b:00000000f507c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  406.254818][T12848] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000180
[  406.254825][T12848] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  406.254831][T12848] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  406.254837][T12848] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  406.254843][T12848] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  406.254857][T12848]  </TASK>
[  406.450058][T12849] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  406.468116][T12849] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1845'.
[  406.824785][T12862] fuse: Unknown parameter '0xffffffffffffffff017777777777777777777770000000000000000000000000000000000000000'
[  407.008213][T12866] FAULT_INJECTION: forcing a failure.
[  407.008213][T12866] name failslab, interval 1, probability 0, space 0, times 0
[  407.013528][T12866] CPU: 1 UID: 0 PID: 12866 Comm: syz.3.1848 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  407.013553][T12866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  407.013564][T12866] Call Trace:
[  407.013570][T12866]  <TASK>
[  407.013577][T12866]  dump_stack_lvl+0x16c/0x1f0
[  407.013603][T12866]  should_fail_ex+0x512/0x640
[  407.013627][T12866]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  407.013664][T12866]  should_failslab+0xc2/0x120
[  407.013687][T12866]  __kmalloc_cache_noprof+0x6a/0x3e0
[  407.013705][T12866]  ? refill_pi_state_cache+0x89/0x250
[  407.013728][T12866]  refill_pi_state_cache+0x89/0x250
[  407.013746][T12866]  futex_requeue+0x75d/0x2030
[  407.013771][T12866]  ? find_held_lock+0x2b/0x80
[  407.013795][T12866]  ? __pfx_futex_requeue+0x10/0x10
[  407.013817][T12866]  ? get_pid_task+0x106/0x250
[  407.013838][T12866]  ? find_held_lock+0x2b/0x80
[  407.013865][T12866]  ? find_held_lock+0x2b/0x80
[  407.013888][T12866]  ? ksys_write+0x190/0x250
[  407.013910][T12866]  do_futex+0x1ad/0x350
[  407.013928][T12866]  ? __pfx_do_futex+0x10/0x10
[  407.013961][T12866]  __ia32_sys_futex_time32+0x1d9/0x460
[  407.013982][T12866]  ? fput+0x70/0xf0
[  407.014002][T12866]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  407.014019][T12866]  ? ksys_write+0x1ac/0x250
[  407.014037][T12866]  ? __pfx_ksys_write+0x10/0x10
[  407.014057][T12866]  ? rcu_is_watching+0x12/0xc0
[  407.014084][T12866]  __do_fast_syscall_32+0x7c/0x3a0
[  407.014108][T12866]  do_fast_syscall_32+0x32/0x80
[  407.014129][T12866]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  407.014150][T12866] RIP: 0023:0xf70ce579
[  407.014164][T12866] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  407.014181][T12866] RSP: 002b:00000000f509d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  407.014198][T12866] RAX: ffffffffffffffda RBX: 000000008000cffc RCX: 000000000000000c
[  407.014209][T12866] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000080048000
[  407.014219][T12866] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  407.014229][T12866] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  407.014239][T12866] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  407.014262][T12866]  </TASK>
[  407.016879][T12866] lo speed is unknown, defaulting to 1000
[  407.096025][T12866] lo speed is unknown, defaulting to 1000
[  407.099274][T12866] lo speed is unknown, defaulting to 1000
[  407.105018][T12866] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  407.110858][T12866] infiniband s�R4: RDMA CMA: cma_listen_on_dev, error -98
[  407.129408][T12866] lo speed is unknown, defaulting to 1000
[  407.133680][T12866] lo speed is unknown, defaulting to 1000
[  407.136749][T12866] lo speed is unknown, defaulting to 1000
[  407.139638][T12866] lo speed is unknown, defaulting to 1000
[  407.688792][T12879] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  407.772594][T12879] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1851'.
[  407.891302][T12888] overlayfs: overlapping lowerdir path
[  408.700251][T12905] nvme_fabrics: unknown parameter or missing value '�k����qgC����C���R�x�BN����L�B8��p3Q-�Т���պM�
�s�G�*rS
���9�YTU��x륋�m�Z�):k�@�N-��B�!��Xi+@�I���Fm$�e�i����AfɊ��3O�Hx�D��p��DC�'i۰' in ctrl creation request
[  409.222832][T12921] netlink: 'syz.2.1864': attribute type 1 has an invalid length.
[  409.226319][T12921] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1864'.
[  409.540495][T12925] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  409.576745][T12925] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1865'.
[  411.003531][ T1019] lo speed is unknown, defaulting to 1000
[  411.058872][T12973] 9pnet: Unknown protocol version 9p20\++}
[  411.164999][T12973] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  411.168526][T12973] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  411.527502][T12971] ------------[ cut here ]------------
[  411.529249][T12971] WARNING: CPU: 1 PID: 12971 at mm/shmem.c:1388 shmem_evict_inode+0x8f0/0xbe0
[  411.532063][T12971] Modules linked in:
[  411.533418][T12971] CPU: 1 UID: 0 PID: 12971 Comm: syz.2.1874 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  411.538832][T12971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  411.542411][T12971] RIP: 0010:shmem_evict_inode+0x8f0/0xbe0
[  411.544224][T12971] Code: fe e8 f4 a3 bd ff 45 85 ff 75 ac e8 aa a8 bd ff 48 8b 74 24 28 48 8b 7c 24 30 e8 2b 8b 96 ff e9 e3 fd ff ff e8 91 a8 bd ff 90 <0f> 0b 90 e9 4f f9 ff ff e8 83 a8 bd ff 4c 89 e2 48 b8 00 00 00 00
[  411.550171][T12971] RSP: 0018:ffffc90026547788 EFLAGS: 00010293
[  411.552351][T12971] RAX: 0000000000000000 RBX: ffff888067454fe0 RCX: ffffffff81fda8ee
[  411.554854][T12971] RDX: ffff888027294880 RSI: ffffffff81fdaf9f RDI: 0000000000000007
[  411.557742][T12971] RBP: ffffc900265478b0 R08: 0000000000000007 R09: 0000000000000000
[  411.560770][T12971] R10: 0000000000000008 R11: 0000000000000001 R12: 0000000000000008
[  411.563637][T12971] R13: 0000000000000000 R14: ffff888067455010 R15: ffff888067454ed0
[  411.566412][T12971] FS:  0000000000000000(0000) GS:ffff88809787b000(0000) knlGS:0000000000000000
[  411.571275][T12971] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  411.573817][T12971] CR2: 000000008057f000 CR3: 000000002762e000 CR4: 0000000000352ef0
[  411.576525][T12971] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  411.579218][T12971] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  411.582004][T12971] Call Trace:
[  411.583108][T12971]  <TASK>
[  411.584072][T12971]  ? __pfx_shmem_evict_inode+0x10/0x10
[  411.585842][T12971]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[  411.587771][T12971]  ? find_held_lock+0x2b/0x80
[  411.589855][T12971]  ? evict+0x3a2/0x920
[  411.591890][T12971]  ? __pfx_shmem_evict_inode+0x10/0x10
[  411.594464][T12971]  evict+0x3e3/0x920
[  411.596014][T12971]  ? __pfx_evict+0x10/0x10
[  411.597777][T12971]  ? iput+0x519/0x880
[  411.599448][T12971]  iput+0x521/0x880
[  411.600899][T12971]  ? __pfx_generic_delete_inode+0x10/0x10
[  411.602899][T12971]  dentry_unlink_inode+0x29c/0x480
[  411.604647][T12971]  __dentry_kill+0x1d0/0x600
[  411.606195][T12971]  dput.part.0+0x4b1/0x9b0
[  411.607864][T12971]  dput+0x1f/0x30
[  411.609406][T12971]  __fput+0x51c/0xb70
[  411.611083][T12971]  ? _raw_spin_unlock_irq+0x23/0x50
[  411.613098][T12971]  task_work_run+0x150/0x240
[  411.614854][T12971]  ? __pfx_task_work_run+0x10/0x10
[  411.616786][T12971]  ? do_raw_spin_unlock+0x172/0x230
[  411.618575][T12971]  do_exit+0xae2/0x2c70
[  411.620139][T12971]  ? __pfx_do_exit+0x10/0x10
[  411.622121][T12971]  ? do_raw_spin_lock+0x12c/0x2b0
[  411.623955][T12971]  ? find_held_lock+0x2b/0x80
[  411.625679][T12971]  do_group_exit+0xd3/0x2a0
[  411.627407][T12971]  get_signal+0x2673/0x26d0
[  411.628936][T12971]  ? __schedule+0x1181/0x5de0
[  411.630579][T12971]  ? __pfx_get_signal+0x10/0x10
[  411.632404][T12971]  ? do_futex+0x122/0x350
[  411.633826][T12971]  ? __pfx_do_futex+0x10/0x10
[  411.635642][T12971]  arch_do_signal_or_restart+0x8f/0x790
[  411.637529][T12971]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  411.639538][T12971]  ? __pfx_do_mkdirat+0x10/0x10
[  411.641418][T12971]  exit_to_user_mode_loop+0x84/0x110
[  411.643644][T12971]  __do_fast_syscall_32+0x2ac/0x3a0
[  411.645837][T12971]  do_fast_syscall_32+0x32/0x80
[  411.647949][T12971]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  411.650591][T12971] RIP: 0023:0xf712e579
[  411.652403][T12971] Code: Unable to access opcode bytes at 0xf712e54f.
[  411.655363][T12971] RSP: 002b:00000000f445a60c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  411.658820][T12971] RAX: fffffffffffffe00 RBX: 00000000f74c5258 RCX: 0000000000000080
[  411.662364][T12971] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f74c525c
[  411.665669][T12971] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[  411.668964][T12971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  411.672357][T12971] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  411.675618][T12971]  </TASK>
[  411.676924][T12971] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  411.679947][T12971] CPU: 1 UID: 0 PID: 12971 Comm: syz.2.1874 Not tainted 6.15.0-syzkaller-10402-g4cb6c8af8591 #0 PREEMPT(full) 
[  411.684733][T12971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  411.688985][T12971] Call Trace:
[  411.690309][T12971]  <TASK>
[  411.691626][T12971]  dump_stack_lvl+0x3d/0x1f0
[  411.693286][T12971]  panic+0x71c/0x800
[  411.694874][T12971]  ? __pfx_panic+0x10/0x10
[  411.696326][T12971]  ? show_trace_log_lvl+0x29b/0x3e0
[  411.697956][T12971]  ? check_panic_on_warn+0x1f/0xb0
[  411.699565][T12971]  ? shmem_evict_inode+0x8f0/0xbe0
[  411.701173][T12971]  check_panic_on_warn+0xab/0xb0
[  411.702747][T12971]  __warn+0xf6/0x3c0
[  411.703990][T12971]  ? shmem_evict_inode+0x8f0/0xbe0
[  411.705596][T12971]  report_bug+0x3c3/0x580
[  411.706973][T12971]  ? shmem_evict_inode+0x8f0/0xbe0
[  411.708600][T12971]  handle_bug+0x184/0x210
[  411.709991][T12971]  exc_invalid_op+0x17/0x50
[  411.711452][T12971]  asm_exc_invalid_op+0x1a/0x20
[  411.712991][T12971] RIP: 0010:shmem_evict_inode+0x8f0/0xbe0
[  411.714772][T12971] Code: fe e8 f4 a3 bd ff 45 85 ff 75 ac e8 aa a8 bd ff 48 8b 74 24 28 48 8b 7c 24 30 e8 2b 8b 96 ff e9 e3 fd ff ff e8 91 a8 bd ff 90 <0f> 0b 90 e9 4f f9 ff ff e8 83 a8 bd ff 4c 89 e2 48 b8 00 00 00 00
[  411.720737][T12971] RSP: 0018:ffffc90026547788 EFLAGS: 00010293
[  411.722660][T12971] RAX: 0000000000000000 RBX: ffff888067454fe0 RCX: ffffffff81fda8ee
[  411.725107][T12971] RDX: ffff888027294880 RSI: ffffffff81fdaf9f RDI: 0000000000000007
[  411.727603][T12971] RBP: ffffc900265478b0 R08: 0000000000000007 R09: 0000000000000000
[  411.730049][T12971] R10: 0000000000000008 R11: 0000000000000001 R12: 0000000000000008
[  411.732511][T12971] R13: 0000000000000000 R14: ffff888067455010 R15: ffff888067454ed0
[  411.734952][T12971]  ? shmem_evict_inode+0x23e/0xbe0
[  411.736562][T12971]  ? shmem_evict_inode+0x8ef/0xbe0
[  411.738149][T12971]  ? shmem_evict_inode+0x8ef/0xbe0
[  411.739774][T12971]  ? __pfx_shmem_evict_inode+0x10/0x10
[  411.741515][T12971]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[  411.743440][T12971]  ? find_held_lock+0x2b/0x80
[  411.744930][T12971]  ? evict+0x3a2/0x920
[  411.746245][T12971]  ? __pfx_shmem_evict_inode+0x10/0x10
[  411.747949][T12971]  evict+0x3e3/0x920
[  411.749190][T12971]  ? __pfx_evict+0x10/0x10
[  411.750598][T12971]  ? iput+0x519/0x880
[  411.751879][T12971]  iput+0x521/0x880
[  411.753107][T12971]  ? __pfx_generic_delete_inode+0x10/0x10
[  411.754873][T12971]  dentry_unlink_inode+0x29c/0x480
[  411.756405][T12971]  __dentry_kill+0x1d0/0x600
[  411.757745][T12971]  dput.part.0+0x4b1/0x9b0
[  411.759113][T12971]  dput+0x1f/0x30
[  411.760295][T12971]  __fput+0x51c/0xb70
[  411.761560][T12971]  ? _raw_spin_unlock_irq+0x23/0x50
[  411.763204][T12971]  task_work_run+0x150/0x240
[  411.764659][T12971]  ? __pfx_task_work_run+0x10/0x10
[  411.766264][T12971]  ? do_raw_spin_unlock+0x172/0x230
[  411.767905][T12971]  do_exit+0xae2/0x2c70
[  411.769219][T12971]  ? __pfx_do_exit+0x10/0x10
[  411.770674][T12971]  ? do_raw_spin_lock+0x12c/0x2b0
[  411.772512][T12971]  ? find_held_lock+0x2b/0x80
[  411.774472][T12971]  do_group_exit+0xd3/0x2a0
[  411.776256][T12971]  get_signal+0x2673/0x26d0
[  411.777702][T12971]  ? __schedule+0x1181/0x5de0
[  411.779205][T12971]  ? __pfx_get_signal+0x10/0x10
[  411.780754][T12971]  ? do_futex+0x122/0x350
[  411.782121][T12971]  ? __pfx_do_futex+0x10/0x10
[  411.783640][T12971]  arch_do_signal_or_restart+0x8f/0x790
[  411.785368][T12971]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  411.787319][T12971]  ? __pfx_do_mkdirat+0x10/0x10
[  411.788882][T12971]  exit_to_user_mode_loop+0x84/0x110
[  411.790532][T12971]  __do_fast_syscall_32+0x2ac/0x3a0
[  411.792170][T12971]  do_fast_syscall_32+0x32/0x80
[  411.793713][T12971]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  411.795682][T12971] RIP: 0023:0xf712e579
[  411.796961][T12971] Code: Unable to access opcode bytes at 0xf712e54f.
[  411.799018][T12971] RSP: 002b:00000000f445a60c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  411.801600][T12971] RAX: fffffffffffffe00 RBX: 00000000f74c5258 RCX: 0000000000000080
[  411.804092][T12971] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f74c525c
[  411.806561][T12971] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[  411.809052][T12971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  411.811546][T12971] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  411.814005][T12971]  </TASK>
[  411.815695][T12971] Kernel Offset: disabled
[  411.817062][T12971] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:16:47  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff97541198 RBX=0000000000000111 RCX=0000000000026644 RDX=0000000000000144
RSI=00000000000001ad RDI=ffffffff9739d278 RBP=0000000000000030 RSP=ffffc90003256f80
R8 =ffffffff95b3b538 R9 =000000000000009d R10=ffffc90003257120 R11=0000000000000001
R12=ffffffff81978880 R13=ffffc90003257020 R14=ffffffff81979390 R15=ffffffff9739ff88
RIP=ffffffff8197a873 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fd045c8a740 ffffffff 00c00000
GS =0000 ffff88809777b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffec5df9000 CR3=0000000049f35000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000074 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8555b045 RDI=ffffffff9ae53d80 RBP=ffffffff9ae53d40 RSP=ffffc900265470f0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000074 R14=ffffffff9ae53d40 R15=ffffffff8555afe0
RIP=ffffffff8555b06f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809787b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008057f000 CR3=000000002762e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000000005de RBX=0000000000000001 RCX=000000001e0eec3b RDX=0000000000000000
RSI=000000002c27410a RDI=ffff88804b7e5370 RBP=ffff88804b7e4880 RSP=ffffc90002d77060
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88804b7e5370 R13=ffff88804b7e5398 R14=0000000000000001 R15=0000000000000001
RIP=ffffffff81979013 RFL=00000007 [-----PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f2efcdffc80 ffffffff 00c00000
GS =0000 ffff88809797b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2efd168468 CR3=000000002437e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffffffff8e3c2600 RCX=ffffc90002120001 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc9000211ede0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000006005
R12=ffffffff816a7954 R13=ffffc9000211eea0 R14=ffff888022010000 R15=ffffc9000211eed4
RIP=ffffffff8197fc6d RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a7b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7436188 CR3=000000002762e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000