last executing test programs:

4.080612839s ago: executing program 2 (id=1248):
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), r1)
sendmsg$NET_DM_CMD_START(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14, r2, 0x1}, 0x14}}, 0x0)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r2, 0x1, 0x10000000}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)

3.900488793s ago: executing program 2 (id=1249):
syz_emit_vhci(0x0, 0x8)
syz_io_uring_setup(0x114, &(0x7f00000004c0)={0x0, 0x2b7c, 0x400, 0x0, 0x8}, 0x0, &(0x7f0000000800))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x32, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
bind$unix(r3, &(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e)
mount(&(0x7f0000000240)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='msdos\x00', 0x10000, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f00000000c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
socket$qrtr(0x2a, 0x2, 0x0)
epoll_create1(0x0)
epoll_create1(0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000480)={'syztnl0\x00', &(0x7f0000000180)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x3b, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @dev={0xac, 0x14, 0x14, 0x3d}, @broadcast}}}})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r4, 0x800448f0, 0x0)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
unshare(0xc000d00)
msgget$private(0x0, 0x510)
r5 = socket$inet6(0xa, 0x3, 0x9)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x142}, 0x1c)
connect$inet6(r5, &(0x7f0000000300)={0xa, 0x4e20, 0x10, @local, 0x101}, 0x1c)

3.560605969s ago: executing program 1 (id=1253):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000440)={0x53, 0x33, 0x10, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0x38, r4, 0xc4fc9e906872338b, 0x0, 0x0, {{0x15}, {@val={0x8}, @val={0xc, 0x99, {0xfffffffc}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4, 0x3, 0x0, 0x0}]}]}]}]}, 0x38}}, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000780)={0x16c, r4, 0x20, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x3, 0xa}}}}, [@NL80211_ATTR_4ADDR={0x5}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "4a269c17570daee0b940ce9882c9433e1fa2a61272705468"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "0c01f3545831fba42e82146bfecba537797487e83c72d405"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}], @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x1c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x28, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "892d85265755b3fb1b30a524dae55ac83da893d7dcd7187c"}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "f6e72dc2941f44aadd73eda00897b084e43f8c4d0f28104c"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "b0c19fefe069c4f76b9b386fecd4a03c6db63db803919763"}, @NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}]}], @NL80211_ATTR_IFTYPE={0x8}, @NL80211_ATTR_4ADDR={0x5}]}, 0x16c}, 0x1, 0x0, 0x0, 0x840}, 0x20040044)
recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000000380)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xad4fca9791db5523, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000001840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000580)={'veth0_macvtap\x00', <r8=>0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x80800)
write$P9_RVERSION(r10, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r11 = dup(r10)
write$FUSE_BMAP(r11, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r11, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r9, @ANYBLOB=',wfdno=', @ANYRESHEX=r11])
statfs(&(0x7f0000001a80)='./file0\x00', 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="64000000100003050000000000ffff0000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800c0001006d6163766c616e00240002800800010010000000100005800a000400aaaaaaaaaa000000080003000300000008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x64}}, 0x0)

2.869051404s ago: executing program 2 (id=1257):
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0x7000000, @empty}, {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0)

2.790276895s ago: executing program 2 (id=1258):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
sched_getscheduler(0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$netlink(0x10, 0x3, 0x4)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000180)='./file1\x00', &(0x7f0000000240)='v7\x00', 0x1c041, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f00000024c0)={0x0, 0x0, &(0x7f0000002480)={&(0x7f0000002380)={0x28, 0x3, 0x8, 0x301, 0x0, 0x0, {}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_SYN_SENT={0x8}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x28}}, 0x0)
readv(r0, &(0x7f0000003400)=[{&(0x7f0000001200)=""/139, 0x8b}, {&(0x7f00000001c0)=""/4105, 0x1009}], 0x2)
writev(r2, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0xc04c5349, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x8008551d, 0x0)

2.45029356s ago: executing program 3 (id=1261):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = syz_open_dev$usbfs(&(0x7f0000000400), 0x8, 0x252983)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x6, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180500002020642500000000002020207b1af8ff00000000bfa1010000000100070100e200ffffffb782000008000000b703000834120000850000000800000095", @ANYBLOB="b14c346f6e8bf11e34b993cefab89723b964142be414746ae7437a62b8327bcd0fdef52fc8592e1a564af9b4c690aae61011a5a422b68a2b2b2b594fd56268782431b470e464f5079b88f0fbb3878bdd18e451b1e95c6fdf60b6f3847f38c84339cb933be2b172cd8d410a40b41a30dec1d01c2ad49edce728d7ab706ac502ef56404e1cfa44733a4adf30d2c8be29a3a2003a4b866d52034ab4573c0bbf253495b46dd147faed4930073cdf06c073150a4b93bb67c2638dc9d4dc2dba47e099b374dd2b22d0b7f0"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x14, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, @void, @value}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a64000000060a010400000000000000000200000038000480340001800c0001007061796c6f6164002400028008000440000000000800034000000000080002400000000008000140000000080900010073797a30001900000900020073797a3200000000140000001100010000000000000000000000000a72f946d0b46d2d7c84bd7e1e36989842444f58d6f4ec6c8addb7f28d"], 0x8c}}, 0x4000)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
r3 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r3, 0xfd)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r4)
sendmsg$nl_route_sched(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x18, 0x30, 0x8, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x44890}, 0x0)
prlimit64(0xffffffffffffffff, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x105, &(0x7f0000000440)=ANY=[@ANYRES32=0x0], &(0x7f0000000280)={0x1, 0x3, [0x7c5, 0x8b7, 0x892, 0xf3]})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x80010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x2000c031)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r7, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x2, 0x4}}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
syz_open_dev$tty20(0xc, 0x4, 0x0)

2.289169747s ago: executing program 2 (id=1262):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
recvmsg(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, 0x0}, 0x0)
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000ce8000/0x2000)=nil, 0x930, 0x0, 0x12, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x46201000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000140)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @multicast2}, 0x2}}, 0x2e)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

2.209846759s ago: executing program 1 (id=1263):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f00000007c0), 0xffffffffffffffff)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="9c358d97d89d11d3c421206429816a0f3e0a78d245c74fba15c9933911a5516a52e4d6141d49f958013f770bea279b7150eea1d80c11c5816c7776860d951f7a3d88d213c41b2bb2a788a58c487f5860f17f1c86797bd363201b6451aa2e7ecb28b1596113dcbc7f667b621c14bb3a335f4361d8cff426c3f3e5e1e113f2bedba48cd79c5590af9c710b49b91061e4a7bd540e208fb3c9698261de5090916f1b866d19", @ANYRES16=0x0], 0x60}, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000400)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180), &(0x7f00000001c0))
socket(0x2b, 0x80801, 0x1)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100, 0x1})
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x48241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r7 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r6, &(0x7f0000000040)=ANY=[@ANYBLOB="00000806000003"], 0xfdef)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
dup3(r5, r4, 0x0)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/custom1\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x11, r8, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r8, 0x4018620d, &(0x7f00000001c0))
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000004c0)="e0"})
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000480)={0x98, 0x0, &(0x7f0000001540)=[@acquire, @transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

2.150470972s ago: executing program 2 (id=1264):
syz_usb_connect$uac1(0x6, 0x0, 0x0, 0x0)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x100000000)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001e0081064e81f782db44b9040a02080006007c09e8fe04a10a0015c00200142603600e120800080024000000a86286cf6c00014003000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db701000000400ad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
r6 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$smc(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f00000004c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$FOU_CMD_ADD(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r5, 0x209, 0x0, 0x0, {0x1, 0x0, 0x106}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @local}, @FOU_ATTR_IFINDEX={0x8, 0xb, r7}]}, 0x24}}, 0x0)

1.550226173s ago: executing program 3 (id=1265):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, 0x0, 0x0)
write$tun(0xffffffffffffffff, 0x0, 0x46)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @multicast2}, 0xffffffffffffff5c)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
mknod(&(0x7f0000000540)='./file1\x00', 0x0, 0x3)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000140))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(0xffffffffffffffff, 0x2def, 0x4000, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[])
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x3fffff})
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})

1.482032862s ago: executing program 1 (id=1266):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
lstat64(&(0x7f0000000080)='./cgroup\x00', 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0), 0x80001, 0x0)
ioctl$BLKZEROOUT(r6, 0x127f, &(0x7f0000000240)={0x600, 0x1000000})
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x989, 0x0, 0x10}, 0x9c)
r8 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'lo\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r10, {0x0, 0xa}, {0xffff, 0xffff}, {0xfff3, 0x10}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0x0, 0x401, 0x7, 0x8}, {0x12, 0x3, 0x0, 0x401, 0x8001, 0x400}, 0x10a5, 0x4, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmmsg$inet6(r7, &(0x7f0000003f00)=[{{0x0, 0xf, &(0x7f0000000300)=[{&(0x7f0000000140)="a2", 0x1a058}], 0x1}}], 0x1, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x38, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xac}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000840), r11)
sendmsg$NFC_CMD_DEACTIVATE_TARGET(r11, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000900)=ANY=[@ANYBLOB='$]J\x00', @ANYRES16=r12, @ANYBLOB="010000000000000000001e000000080004000000000008000100", @ANYRES32=0x0, @ANYBLOB], 0x24}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000080))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000000c0))

1.178999487s ago: executing program 3 (id=1267):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$netlink(0x10, 0x3, 0x0) (async)
r2 = socket(0x200000000000011, 0x4000000000080002, 0x0) (async)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="029faf80000000e84d250000020000000000000600000000"], 0x10}, 0x1, 0x7}, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x3, 0x300) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
bind$packet(r2, &(0x7f0000000040)={0x11, 0x0, r5}, 0x14) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000004000)=@newtaction={0xe68, 0x30, 0x25, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x4}, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x84d}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x24}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8512}, {}, {0x0, 0x0, 0x6}, {}, {}, {0xffffffff, 0x0, 0x0, 0x100000}, {}, {0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x1000000}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000, 0x9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x80000001}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2000}, {}, {0x3, 0x200}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6c}, {}, {}, {}, {0x0, 0x0, 0x0, 0x5}, {}, {}, {0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x10}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0) (async)
r8 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r9 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x0, 0x13100}, &(0x7f0000000100)=<r10=>0x0, &(0x7f0000000000)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) (async)
io_uring_enter(r9, 0x2def, 0x0, 0x0, 0x0, 0x0) (async)
ioctl$TIOCVHANGUP(r8, 0x5437, 0x2)
sendmsg$nl_route_sched(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@gettaction={0x28, 0x32, 0x6dd711a25f4cb68b, 0x0, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}]}, 0x28}}, 0x0) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r7)
writev(r1, &(0x7f0000000780)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff010000000100000056000000250000001900040004e0144000000007fd17e5ffff0800040000000000", 0x39}], 0x1) (async)
r12 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_group_source_req(r12, 0x29, 0x2e, &(0x7f0000000340)={0x51, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @local}}}, 0x108) (async)
writev(r1, 0x0, 0x0)
r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r13, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x5502000000000000}, 0x0) (async)
r14 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r14, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5400000010001f591ddbb6f6fbee37ff00040000000000fc84c41d3555", @ANYRES32=r8, @ANYBLOB="04000000000000002c0012800b00010067726574617000001c0002800600180000000000060003000000000006000e00000000000500100007000000"], 0x54}}, 0x4040014) (async)
r15 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r15, 0x0, 0x0)

1.134514187s ago: executing program 3 (id=1268):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x300, &(0x7f0000000b00)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_LEN={0x8}, @NFTA_PAYLOAD_SREG={0x8}, @NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0xf}, @NFTA_PAYLOAD_BASE={0x8}, @NFTA_PAYLOAD_CSUM_OFFSET={0x8, 0x8, 0x1, 0x0, 0x13}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0)

1.120158585s ago: executing program 1 (id=1269):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000940)}, 0x1)
setsockopt$sock_attach_bpf(r0, 0x1, 0xa, &(0x7f0000000180), 0x4)
recvmsg(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x800, 0x70bd2c, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x7c45, &(0x7f0000000180)={0x0, 0x20, 0x40, 0x0, 0xfffffffc}, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
r5 = syz_open_dev$usbfs(&(0x7f0000000000), 0x76, 0x121301)
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x80045519, &(0x7f0000001840)=ANY=[])
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r6, 0xffffffffffffffff, 0x0)

1.117333576s ago: executing program 3 (id=1270):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
recvmsg$unix(r2, &(0x7f00000006c0)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000880)=[{&(0x7f0000000040)=""/13, 0xd}, {&(0x7f0000000300)=""/160, 0xa0}, {&(0x7f00000001c0)=""/98, 0x62}, {&(0x7f0000000700)=""/229, 0xe5}, {&(0x7f0000000540)=""/149, 0x95}, {&(0x7f0000000600)=""/130, 0x82}, {&(0x7f0000000440)=""/47, 0x2f}, {&(0x7f0000000480)=""/141, 0x8d}, {&(0x7f0000000800)=""/101, 0x65}], 0x9}, 0x40000002)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newlink={0x38, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x0, 0x110d1}, [@IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN={0x10, 0x2, {0x2, 0xa3a, 0xffff7fff}}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048000}, 0x40000880)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000024000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000280)="67f2f2360f01b700000000c4e3d50f3b0d430f00d2c443614beb9b3e0f2013b805000000b9050000000f01c1c4e1fd64458d670fc79900300000430f01cf410fc75a04", 0x43}], 0x1, 0x41, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

661.856128ms ago: executing program 0 (id=1272):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
recvmsg(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, 0x0}, 0x0)
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000ce8000/0x2000)=nil, 0x930, 0x0, 0x12, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x46201000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000140)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @multicast2}, 0x2}}, 0x2e)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

490.379371ms ago: executing program 1 (id=1273):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x34, r1, 0x1, 0x0, 0x0, {0x2, 0x2, 0x2}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}]}, 0x34}, 0x1, 0x40030000000000}, 0x0)

385.491194ms ago: executing program 1 (id=1274):
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x8c, 0xc, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x60, 0x3, 0x0, 0x1, [{0x5c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x50, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0x18, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @void}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x110}}, 0x0)
bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x3000002, 0x6031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x18)
accept4(r1, 0x0, 0x0, 0x80000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_freezer_state(r7, &(0x7f0000000140), 0x2, 0x0)
sendfile(r8, r8, 0x0, 0x9)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r9, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @rand_addr, 0x4}, 0x1c)

384.815889ms ago: executing program 0 (id=1275):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="12000000050000000800000008"], 0x48) (fail_nth: 7)

319.791602ms ago: executing program 0 (id=1276):
set_mempolicy(0x4005, &(0x7f0000000040)=0x1001, 0x4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) (fail_nth: 8)

319.265319ms ago: executing program 0 (id=1277):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000005ededf15e536c8475dafa1", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000041000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000000f400850000008600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r2 = openat$drirender128(0xffffff9c, &(0x7f0000000380), 0x40000, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(r2, 0xc0086420, &(0x7f00000003c0)) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="06000000040000000400000005"], 0x48) (async)
mount$tmpfs(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000600), 0x3012000, &(0x7f0000000640)={[{@grpquota}, {@mpol={'mpol', 0x3d, {'local', '=relative', @void}}}, {@inode64}, {@usrquota_block_hardlimit={'usrquota_block_hardlimit', 0x3d, [0x37, 0x35, 0x34]}}, {@usrquota}], [{@func={'func', 0x3d, 'PATH_CHECK'}}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000ec0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(0x3) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000051932d322f72599934fc86ed8b20143e24aa32b70c490391c3f3c1c225ab7b4bde3c2c6487dc126423bb87d044c2f4db53ca4d88976ab8ad473c04b42f04d8622a180334d76c24cd4861577e9bb9ed7a640028abc4aa69b0ee8cce5672ad76c", @ANYRES32, @ANYBLOB="17ffffffff00000000000000040000", @ANYRES32=r4, @ANYRES32, @ANYRESHEX=r3], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r5}, 0x10) (async)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000340)={{r3}, &(0x7f0000000200), &(0x7f0000000300)='%ps    \x00'}, 0x20) (async)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000b68d7c5369109b000000000045000000020000009500002600000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3b) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) (async)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
close(r6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)) (async)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) (async)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
ioctl$TUNSETQUEUE(r8, 0x400454d9, &(0x7f0000000200)={'caif0\x00', 0x400}) (async)
close(r7)
write$cgroup_devices(r8, &(0x7f0000000140)=ANY=[@ANYBLOB="1e0306003c5c980128836360864666702c1ffe80000000000000ff1422f4c2f96901a1"], 0xffdd) (async)
write$P9_RXATTRWALK(r4, &(0x7f00000001c0)={0xf, 0x1f, 0x2, 0x8}, 0xf)

318.951894ms ago: executing program 0 (id=1278):
r0 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x47e4})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000140)={0xffffffff, 0x0, &(0x7f0000000100)=[0xffffffffffffffff]}, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000180)='contention_end\x00', r1}, 0x18)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_DEL(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000021c0)={0x20, 0x0, 0x1, 0x0, 0x0, {0x3, 0x2, 0x2}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x40030000000000}, 0x0)
r3 = openat$sndseq(0xffffff9c, &(0x7f00000001c0), 0x400d03)
write$sndseq(r3, &(0x7f0000000200)=[{0x4, 0x4, 0x3, 0xf7, @tick, {0x8d, 0x81}, {0x5, 0x88}, @addr={0x8, 0xe}}], 0x1c)

261.866202ms ago: executing program 0 (id=1279):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
tgkill(r0, r0, 0x1a)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)=0x3, 0x12)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$tipc(0xffffffffffffffff, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x40, 0x1, 0x4}}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r3, 0x84, 0x12, &(0x7f00000002c0)=0x2, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x8, 0x0, 0x3f8, 0x0, 0x4, 0x0, 0xff}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r4, &(0x7f0000000200)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002fc0)=@newqdisc={0x34, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newtfilter={0x3c, 0x2c, 0xd2f, 0x289, 0xfffffffc, {0x0, 0x0, 0x0, r5, {}, {}, {0x2, 0xf}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_CLASSID={0x8, 0x1, {0xc, 0xffff}}]}}]}, 0x3c}}, 0x0)

0s ago: executing program 3 (id=1280):
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/ipc\x00')
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b28, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_interrupt={0x1, {0x3, 0x1}, 0x5, 0x2, 0x0, 0x0, 0xfffffff9, 0x1, 0x0, 0x10b, 0x6, 0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x2, 0x0, @rand_addr, @multicast1}, @address_request}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000280)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0x1, 0x39)
mkdirat$cgroup(r1, &(0x7f00000000c0)='syz1\x00', 0x1ff)
r3 = syz_open_dev$video(&(0x7f0000000080), 0x507, 0x82003)
ioctl$VIDIOC_G_AUDIO(r3, 0x80345621, &(0x7f0000000240))
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r2, 0x4008af23, &(0x7f0000000040)={0x2, 0x7db})

kernel console output (not intermixed with test programs):

T8562] CPU: 3 UID: 0 PID: 8562 Comm: syz.2.655 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  128.114121][ T8562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.117971][ T8562] Call Trace:
[  128.119381][ T8562]  <TASK>
[  128.120695][ T8562]  dump_stack_lvl+0x16c/0x1f0
[  128.122489][ T8562]  should_fail_ex+0x497/0x5b0
[  128.124280][ T8562]  ? fs_reclaim_acquire+0xae/0x150
[  128.126216][ T8562]  should_failslab+0xc2/0x120
[  128.128087][ T8562]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  128.130239][ T8562]  ? ksys_write+0x12b/0x250
[  128.131864][ T8562]  ? sock_alloc_inode+0x25/0x1c0
[  128.133654][ T8562]  ? __pfx_sock_alloc_inode+0x10/0x10
[  128.135751][ T8562]  sock_alloc_inode+0x25/0x1c0
[  128.136941][ T8562]  alloc_inode+0x5d/0x230
[  128.138080][ T8562]  sock_alloc+0x40/0x280
[  128.139204][ T8562]  do_accept+0xf8/0x530
[  128.140295][ T8562]  ? do_raw_spin_lock+0x12d/0x2c0
[  128.141609][ T8562]  ? __pfx_do_accept+0x10/0x10
[  128.142872][ T8562]  __sys_accept4+0xfe/0x1b0
[  128.144054][ T8562]  ? __pfx___sys_accept4+0x10/0x10
[  128.145374][ T8562]  ? __pfx_ksys_write+0x10/0x10
[  128.146682][ T8562]  __ia32_sys_accept4+0x94/0x100
[  128.147913][ T8562]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  128.149535][ T8562]  __do_fast_syscall_32+0x73/0x120
[  128.150862][ T8562]  do_fast_syscall_32+0x32/0x80
[  128.152269][ T8562]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  128.153900][ T8562] RIP: 0023:0xf7ff6579
[  128.155002][ T8562] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  128.160523][ T8562] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 000000000000016c
[  128.163309][ T8562] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[  128.165333][ T8562] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  128.167401][ T8562] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  128.169469][ T8562] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  128.171419][ T8562] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  128.173461][ T8562]  </TASK>
[  128.219051][ T8564] netlink: 12 bytes leftover after parsing attributes in process `syz.2.656'.
[  128.622247][ T5295] Bluetooth: hci3: command 0x0c1a tx timeout
[  128.928610][ T8585] bond0: (slave rose0): Enslaving as an active interface with an up link
[  129.031665][ T8594] netlink: 4 bytes leftover after parsing attributes in process `syz.3.662'.
[  129.064041][ T8594] lo speed is unknown, defaulting to 1000
[  129.065065][ T8600] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  129.067466][ T8600] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  129.070101][ T8600] vhci_hcd vhci_hcd.0: Device attached
[  129.083807][ T8601] vhci_hcd: connection closed
[  129.086569][  T207] vhci_hcd: stop threads
[  129.089843][  T207] vhci_hcd: release socket
[  129.091894][  T207] vhci_hcd: disconnect device
[  129.132394][ T8604] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  129.198209][ T8610] lo speed is unknown, defaulting to 1000
[  129.497677][ T8622] netlink: 12 bytes leftover after parsing attributes in process `syz.3.669'.
[  129.589356][ T8626] can0: slcan on ttyS3.
[  129.713759][ T8626] can0 (unregistered): slcan off ttyS3.
[  129.861190][ T8638] netlink: 'syz.0.672': attribute type 4 has an invalid length.
[  129.885812][ T8638] netlink: 'syz.0.672': attribute type 4 has an invalid length.
[  130.766024][ T8659] lo speed is unknown, defaulting to 1000
[  130.861975][ T8661] netlink: 4 bytes leftover after parsing attributes in process `syz.0.675'.
[  130.967000][ T8668] lo speed is unknown, defaulting to 1000
[  131.019286][ T8661] lo speed is unknown, defaulting to 1000
[  131.172995][ T8680] pim6reg: entered allmulticast mode
[  131.184039][ T8680] batadv0: entered allmulticast mode
[  131.276337][ T8676] batadv0: left allmulticast mode
[  131.279104][ T8676] pim6reg: left allmulticast mode
[  131.769737][ T8699] netlink: 12 bytes leftover after parsing attributes in process `syz.2.684'.
[  132.028930][ T8705] netlink: 4 bytes leftover after parsing attributes in process `syz.1.685'.
[  132.136699][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  132.138903][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  132.396112][ T8713] lo speed is unknown, defaulting to 1000
[  132.741221][ T8729] FAULT_INJECTION: forcing a failure.
[  132.741221][ T8729] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.745749][ T8729] CPU: 3 UID: 0 PID: 8729 Comm: syz.2.689 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  132.748500][ T8729] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.751481][ T8729] Call Trace:
[  132.752567][ T8729]  <TASK>
[  132.753613][ T8729]  dump_stack_lvl+0x16c/0x1f0
[  132.755314][ T8729]  should_fail_ex+0x497/0x5b0
[  132.757074][ T8729]  _copy_to_user+0x32/0xd0
[  132.758713][ T8729]  move_addr_to_user+0x178/0x1d0
[  132.760980][ T8729]  ____sys_recvmsg+0x27f/0x6b0
[  132.763217][ T8729]  ? __pfx_____sys_recvmsg+0x10/0x10
[  132.765558][ T8729]  ___sys_recvmsg+0x115/0x1a0
[  132.767349][ T8729]  ? __pfx____sys_recvmsg+0x10/0x10
[  132.769277][ T8729]  ? __fget_files+0x1fc/0x3a0
[  132.770986][ T8729]  ? trace_lock_acquire+0x14e/0x1f0
[  132.772918][ T8729]  ? __fget_files+0x206/0x3a0
[  132.774543][ T8729]  do_recvmmsg+0x55d/0x740
[  132.776104][ T8729]  ? __pfx_do_recvmmsg+0x10/0x10
[  132.777852][ T8729]  ? lock_acquire+0x2f/0xb0
[  132.779504][ T8729]  ? __might_fault+0xe3/0x190
[  132.781246][ T8729]  ? __might_fault+0xe3/0x190
[  132.783040][ T8729]  ? __pfx_get_old_timespec32+0x10/0x10
[  132.785113][ T8729]  ? __fget_files+0x206/0x3a0
[  132.787034][ T8729]  __sys_recvmmsg+0x111/0x280
[  132.789310][ T8729]  ? __pfx___sys_recvmmsg+0x10/0x10
[  132.791576][ T8729]  ? __pfx_ksys_write+0x10/0x10
[  132.793340][ T8729]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  132.795589][ T8729]  ? lockdep_hardirqs_on+0x7c/0x110
[  132.797572][ T8729]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  132.799459][ T8729]  __do_fast_syscall_32+0x73/0x120
[  132.800827][ T8729]  do_fast_syscall_32+0x32/0x80
[  132.802389][ T8729]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  132.804717][ T8729] RIP: 0023:0xf7ff6579
[  132.806104][ T8729] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  132.813047][ T8729] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000151
[  132.816102][ T8729] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200037c0
[  132.818827][ T8729] RDX: 00000000000003b4 RSI: 0000000000000000 RDI: 0000000020003700
[  132.821604][ T8729] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  132.824530][ T8729] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  132.827397][ T8729] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  132.830275][ T8729]  </TASK>
[  132.903985][ T8727] netlink: 4 bytes leftover after parsing attributes in process `syz.1.688'.
[  132.972045][ T8727] lo speed is unknown, defaulting to 1000
[  134.413157][ T8773] netlink: 'syz.3.699': attribute type 1 has an invalid length.
[  134.415373][ T8773] netlink: 224 bytes leftover after parsing attributes in process `syz.3.699'.
[  134.447642][ T8776] can0: slcan on ttyS3.
[  134.562856][ T8776] can0 (unregistered): slcan off ttyS3.
[  134.585493][ T8781] netlink: 4 bytes leftover after parsing attributes in process `syz.1.701'.
[  134.622688][ T8781] lo speed is unknown, defaulting to 1000
[  135.264290][ T8801] netlink: 20 bytes leftover after parsing attributes in process `syz.2.705'.
[  135.429812][ T8813] netlink: 20 bytes leftover after parsing attributes in process `syz.1.707'.
[  135.785448][ T8825] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  135.789093][ T8823] lo speed is unknown, defaulting to 1000
[  135.879035][ T8827] netlink: 4 bytes leftover after parsing attributes in process `syz.0.712'.
[  135.926656][ T8827] lo speed is unknown, defaulting to 1000
[  136.006715][ T8834] netlink: 12 bytes leftover after parsing attributes in process `syz.3.713'.
[  136.017358][ T8839] netlink: 12 bytes leftover after parsing attributes in process `syz.2.714'.
[  136.754065][ T8861] program syz.1.716 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  136.788083][ T8866] netlink: 8 bytes leftover after parsing attributes in process `syz.0.717'.
[  136.791450][ T8866] netlink: 8 bytes leftover after parsing attributes in process `syz.0.717'.
[  137.716737][ T8884] lo speed is unknown, defaulting to 1000
[  138.003999][ T8895] __nla_validate_parse: 1 callbacks suppressed
[  138.004015][ T8895] netlink: 12 bytes leftover after parsing attributes in process `syz.1.726'.
[  139.074788][ T8914] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  139.076534][ T8914] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  139.090955][ T8914] vhci_hcd vhci_hcd.0: Device attached
[  139.097260][ T8914] netlink: 24 bytes leftover after parsing attributes in process `syz.2.731'.
[  139.191405][ T8915] vhci_hcd: connection closed
[  139.192630][   T45] vhci_hcd: stop threads
[  139.201000][   T45] vhci_hcd: release socket
[  139.202977][   T45] vhci_hcd: disconnect device
[  139.261502][ T8923] dlm: Unknown command passed to DLM device : 0
[  139.261502][ T8923] 
[  139.274472][   T64] vhci_hcd: vhci_device speed not set
[  139.759085][ T8930] netlink: 20 bytes leftover after parsing attributes in process `syz.0.733'.
[  139.767455][ T8929] lo speed is unknown, defaulting to 1000
[  139.908029][ T8938] netlink: 12 bytes leftover after parsing attributes in process `syz.1.737'.
[  140.325893][ T8945] lo speed is unknown, defaulting to 1000
[  140.579512][ T8955] netlink: 232 bytes leftover after parsing attributes in process `syz.2.740'.
[  141.009894][ T8971] use of bytesused == 0 is deprecated and will be removed in the future,
[  141.014275][ T8971] use the actual size instead.
[  141.137784][ T8975] block device autoloading is deprecated and will be removed.
[  141.351103][ T8967] netlink: 168 bytes leftover after parsing attributes in process `syz.2.741'.
[  141.401022][ T8967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.741'.
[  141.508379][ T8981] netlink: 20 bytes leftover after parsing attributes in process `syz.1.747'.
[  142.185854][ T8991] netlink: 12 bytes leftover after parsing attributes in process `syz.1.750'.
[  142.656316][ T8998] netlink: 4 bytes leftover after parsing attributes in process `syz.0.751'.
[  142.658757][ T8998] bridge_slave_1: left allmulticast mode
[  142.660262][ T8998] bridge_slave_1: left promiscuous mode
[  142.662500][ T8998] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.671514][ T8998] bridge_slave_0: left allmulticast mode
[  142.673014][ T8998] bridge_slave_0: left promiscuous mode
[  142.675533][ T8998] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.054547][ T9014] netlink: 4 bytes leftover after parsing attributes in process `syz.3.755'.
[  143.280491][ T9019] netlink: 4 bytes leftover after parsing attributes in process `syz.3.757'.
[  143.434073][ T9019] lo speed is unknown, defaulting to 1000
[  143.691100][ T9025] netlink: 4 bytes leftover after parsing attributes in process `syz.3.758'.
[  143.870601][ T9036] xt_CT: You must specify a L4 protocol and not use inversions on it
[  143.985791][ T9040] netlink: 12 bytes leftover after parsing attributes in process `syz.0.762'.
[  144.715963][ T9055] lo speed is unknown, defaulting to 1000
[  145.610104][ T9078] lo speed is unknown, defaulting to 1000
[  145.659366][ T9079] lo speed is unknown, defaulting to 1000
[  145.880335][ T9085] netlink: 12 bytes leftover after parsing attributes in process `syz.1.773'.
[  146.238422][ T9087] netlink: 4 bytes leftover after parsing attributes in process `syz.3.774'.
[  146.294359][ T9088] lo speed is unknown, defaulting to 1000
[  146.637098][ T9110] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  146.639329][ T9110] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  146.669223][ T9110] vhci_hcd vhci_hcd.0: Device attached
[  146.686760][ T9111] vhci_hcd: connection closed
[  146.688090][   T66] vhci_hcd: stop threads
[  146.690696][   T66] vhci_hcd: release socket
[  146.692598][   T66] vhci_hcd: disconnect device
[  147.243907][ T9119] netlink: 12 bytes leftover after parsing attributes in process `syz.0.780'.
[  147.374142][ T9122] lo speed is unknown, defaulting to 1000
[  147.535124][ T9129] syz.2.782: attempt to access beyond end of device
[  147.535124][ T9129] nbd2: rw=0, sector=64, nr_sectors = 1 limit=0
[  147.538970][ T9129] syz.2.782: attempt to access beyond end of device
[  147.538970][ T9129] nbd2: rw=0, sector=256, nr_sectors = 1 limit=0
[  147.543104][ T9129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  147.555304][ T9129] syz.2.782: attempt to access beyond end of device
[  147.555304][ T9129] nbd2: rw=0, sector=512, nr_sectors = 1 limit=0
[  147.558682][ T9129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  147.571906][ T9129] syz.2.782: attempt to access beyond end of device
[  147.571906][ T9129] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  147.575605][ T9129] syz.2.782: attempt to access beyond end of device
[  147.575605][ T9129] nbd2: rw=0, sector=512, nr_sectors = 2 limit=0
[  147.578906][ T9129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  147.582077][ T9129] syz.2.782: attempt to access beyond end of device
[  147.582077][ T9129] nbd2: rw=0, sector=1024, nr_sectors = 2 limit=0
[  147.585842][ T9129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  147.589180][ T9129] syz.2.782: attempt to access beyond end of device
[  147.589180][ T9129] nbd2: rw=0, sector=64, nr_sectors = 4 limit=0
[  147.592888][ T9129] syz.2.782: attempt to access beyond end of device
[  147.592888][ T9129] nbd2: rw=0, sector=1024, nr_sectors = 4 limit=0
[  147.596810][ T9129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  147.599640][ T9129] syz.2.782: attempt to access beyond end of device
[  147.599640][ T9129] nbd2: rw=0, sector=2048, nr_sectors = 4 limit=0
[  147.603873][ T9129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  147.617071][ T9133] mmap: syz.2.782 (9133) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  147.617195][ T9129] syz.2.782: attempt to access beyond end of device
[  147.617195][ T9129] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0
[  147.624066][ T9129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  147.626811][ T9129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  147.629286][ T9129] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  147.659113][ T9134] netlink: 187320 bytes leftover after parsing attributes in process `syz.3.783'.
[  147.661713][ T9134] netlink: zone id is out of range
[  147.663135][ T9134] netlink: zone id is out of range
[  147.664591][ T9134] netlink: zone id is out of range
[  147.665921][ T9134] netlink: zone id is out of range
[  147.667275][ T9134] netlink: zone id is out of range
[  147.669080][ T9134] netlink: zone id is out of range
[  147.671330][ T9134] netlink: zone id is out of range
[  147.672779][ T9134] netlink: zone id is out of range
[  147.674218][ T9134] netlink: zone id is out of range
[  147.752735][ T9139] fuse: Bad value for 'user_id'
[  147.754424][ T9139] fuse: Bad value for 'user_id'
[  147.831642][ T9143] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  147.833404][ T9143] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  147.838419][ T9143] vhci_hcd vhci_hcd.0: Device attached
[  147.841127][ T9143] program syz.0.787 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  147.844334][ T9144] vhci_hcd: connection closed
[  147.845816][   T12] vhci_hcd: stop threads
[  147.848229][   T12] vhci_hcd: release socket
[  147.849440][   T12] vhci_hcd: disconnect device
[  148.464762][ T9165] FAULT_INJECTION: forcing a failure.
[  148.464762][ T9165] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  148.469697][ T9165] CPU: 2 UID: 0 PID: 9165 Comm: syz.3.792 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  148.473699][ T9165] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.477637][ T9165] Call Trace:
[  148.478950][ T9165]  <TASK>
[  148.480029][ T9165]  dump_stack_lvl+0x16c/0x1f0
[  148.481795][ T9165]  should_fail_ex+0x497/0x5b0
[  148.483588][ T9165]  strncpy_from_user+0x3b/0x2d0
[  148.485387][ T9165]  __do_sys_request_key+0xa9/0x3d0
[  148.487240][ T9165]  ? __pfx___do_sys_request_key+0x10/0x10
[  148.489521][ T9165]  ? ksys_write+0x1ba/0x250
[  148.491403][ T9165]  __do_fast_syscall_32+0x73/0x120
[  148.493464][ T9165]  do_fast_syscall_32+0x32/0x80
[  148.495418][ T9165]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  148.497904][ T9165] RIP: 0023:0xf7f97579
[  148.499413][ T9165] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  148.506444][ T9165] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 000000000000011f
[  148.508619][ T9165] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 0000000020001ffb
[  148.510682][ T9165] RDX: 0000000020001fee RSI: 0000000000000000 RDI: 0000000000000000
[  148.512744][ T9165] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  148.514886][ T9165] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  148.515253][ T9163] lo speed is unknown, defaulting to 1000
[  148.516935][ T9165] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  148.516955][ T9165]  </TASK>
[  148.589582][ T9169] lo speed is unknown, defaulting to 1000
[  148.790488][ T9175] netlink: 12 bytes leftover after parsing attributes in process `syz.1.794'.
[  149.540800][    T8] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  149.690799][    T8] usb 5-1: Using ep0 maxpacket: 8
[  149.694939][    T8] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  149.697134][    T8] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  149.699641][    T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  149.713910][    T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  149.722707][    T8] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  149.733488][    T8] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  149.742035][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.973379][    T8] usb 5-1: GET_CAPABILITIES returned 0
[  149.974909][    T8] usbtmc 5-1:16.0: can't read capabilities
[  150.142459][ T9199] FAULT_INJECTION: forcing a failure.
[  150.142459][ T9199] name failslab, interval 1, probability 0, space 0, times 0
[  150.145735][ T9199] CPU: 2 UID: 0 PID: 9199 Comm: syz.2.802 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  150.148567][ T9199] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.151472][ T9199] Call Trace:
[  150.152361][ T9199]  <TASK>
[  150.153232][ T9199]  dump_stack_lvl+0x16c/0x1f0
[  150.154873][ T9199]  should_fail_ex+0x497/0x5b0
[  150.156578][ T9199]  ? fs_reclaim_acquire+0xae/0x150
[  150.158422][ T9199]  should_failslab+0xc2/0x120
[  150.160127][ T9199]  __kmalloc_noprof+0xce/0x4f0
[  150.161737][ T9199]  ? d_absolute_path+0x137/0x1b0
[  150.163172][ T9199]  ? tomoyo_encode2+0x100/0x3e0
[  150.164843][ T9199]  tomoyo_encode2+0x100/0x3e0
[  150.166564][ T9199]  tomoyo_realpath_from_path+0x1a7/0x710
[  150.168459][ T9199]  tomoyo_path_number_perm+0x248/0x5b0
[  150.170306][ T9199]  ? tomoyo_path_number_perm+0x235/0x5b0
[  150.172218][ T9199]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  150.174292][ T9199]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  150.176189][ T9199]  ? find_held_lock+0x2d/0x110
[  150.177740][ T9199]  security_file_ioctl_compat+0x9b/0x240
[  150.179628][ T9199]  __do_compat_sys_ioctl+0x4e/0x2c0
[  150.181453][ T9199]  __do_fast_syscall_32+0x73/0x120
[  150.183312][ T9199]  do_fast_syscall_32+0x32/0x80
[  150.185073][ T9199]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.187280][ T9199] RIP: 0023:0xf7ff6579
[  150.188717][ T9199] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.194486][ T9199] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  150.196716][ T9199] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005414
[  150.198909][ T9199] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  150.201725][ T9199] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.203962][ T9199] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.206065][ T9199] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.208308][ T9199]  </TASK>
[  150.213345][ T9202] lo speed is unknown, defaulting to 1000
[  150.217268][ T9199] ERROR: Out of memory at tomoyo_realpath_from_path.
[  150.305204][ T5828] usb 5-1: USB disconnect, device number 4
[  150.311733][ T9205] netlink: 4 bytes leftover after parsing attributes in process `syz.2.804'.
[  150.407548][ T9205] lo speed is unknown, defaulting to 1000
[  150.576324][ T9220] netlink: 12 bytes leftover after parsing attributes in process `syz.2.807'.
[  150.578732][ T9220] netlink: 20 bytes leftover after parsing attributes in process `syz.2.807'.
[  150.583440][ T9220] netlink: 20 bytes leftover after parsing attributes in process `syz.2.807'.
[  150.606671][ T9221] lo speed is unknown, defaulting to 1000
[  150.820863][ T5983] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  150.980830][ T5983] usb 7-1: Using ep0 maxpacket: 32
[  150.985937][ T5983] usb 7-1: config 0 has an invalid interface number: 185 but max is 0
[  150.988126][ T5983] usb 7-1: config 0 has no interface number 0
[  150.989799][ T5983] usb 7-1: config 0 interface 185 altsetting 0 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  151.000762][ T5983] usb 7-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=c6.c2
[  151.003359][ T5983] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.007478][ T5983] usb 7-1: config 0 descriptor??
[  151.224137][ T5983] usb 7-1: USB disconnect, device number 4
[  151.421352][ T9236] FAULT_INJECTION: forcing a failure.
[  151.421352][ T9236] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.428665][ T9236] CPU: 3 UID: 0 PID: 9236 Comm: syz.1.812 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  151.431824][ T9236] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.435780][ T9236] Call Trace:
[  151.437029][ T9236]  <TASK>
[  151.438164][ T9236]  dump_stack_lvl+0x16c/0x1f0
[  151.439950][ T9236]  should_fail_ex+0x497/0x5b0
[  151.441614][ T9236]  _copy_to_user+0x32/0xd0
[  151.443286][ T9236]  simple_read_from_buffer+0xd0/0x160
[  151.445084][ T9236]  proc_fail_nth_read+0x198/0x270
[  151.446422][ T9236]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  151.447875][ T9236]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  151.449323][ T9236]  vfs_read+0x1df/0xbe0
[  151.450444][ T9236]  ? __fget_files+0x1fc/0x3a0
[  151.451687][ T9236]  ? __pfx___mutex_lock+0x10/0x10
[  151.453016][ T9236]  ? __pfx_vfs_read+0x10/0x10
[  151.454313][ T9236]  ? __fget_files+0x206/0x3a0
[  151.455556][ T9236]  ksys_read+0x12b/0x250
[  151.456659][ T9236]  ? __pfx_ksys_read+0x10/0x10
[  151.457913][ T9236]  __do_fast_syscall_32+0x73/0x120
[  151.459267][ T9236]  do_fast_syscall_32+0x32/0x80
[  151.460533][ T9236]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.462186][ T9236] RIP: 0023:0xf7f61579
[  151.463286][ T9236] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.470084][ T9236] RSP: 002b:00000000f50d65b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  151.473775][ T9236] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50d6620
[  151.476485][ T9236] RDX: 000000000000000f RSI: 00000000f73ebff4 RDI: 0000000000000000
[  151.479404][ T9236] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  151.482789][ T9236] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  151.485907][ T9236] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.488970][ T9236]  </TASK>
[  151.563344][ T9242] lo speed is unknown, defaulting to 1000
[  152.205053][ T9270] FAULT_INJECTION: forcing a failure.
[  152.205053][ T9270] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.209683][ T9270] CPU: 0 UID: 0 PID: 9270 Comm: syz.3.822 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  152.213464][ T9270] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.217208][ T9270] Call Trace:
[  152.218415][ T9270]  <TASK>
[  152.219481][ T9270]  dump_stack_lvl+0x16c/0x1f0
[  152.221248][ T9270]  should_fail_ex+0x497/0x5b0
[  152.222721][ T9270]  _copy_from_user+0x2e/0xd0
[  152.224225][ T9270]  ucma_resolve_ip+0x91/0x220
[  152.225904][ T9270]  ? __pfx_ucma_resolve_ip+0x10/0x10
[  152.227997][ T9270]  ? __pfx_ucma_resolve_ip+0x10/0x10
[  152.229992][ T9270]  ucma_write+0x1f9/0x330
[  152.231416][ T9270]  ? __pfx_ucma_write+0x10/0x10
[  152.232593][ T9270]  ? bpf_lsm_file_permission+0x9/0x10
[  152.234069][ T9270]  ? security_file_permission+0x71/0x210
[  152.235601][ T9270]  ? __pfx_ucma_write+0x10/0x10
[  152.236902][ T9270]  vfs_write+0x24c/0x1150
[  152.238088][ T9270]  ? __fget_files+0x1fc/0x3a0
[  152.239358][ T9270]  ? __pfx_lock_release+0x10/0x10
[  152.240981][ T9270]  ? __pfx_vfs_write+0x10/0x10
[  152.242928][ T9270]  ? lock_acquire+0x2f/0xb0
[  152.244870][ T9270]  ? __fget_files+0x40/0x3a0
[  152.246776][ T9270]  ? __fget_files+0x206/0x3a0
[  152.248547][ T9270]  ksys_write+0x207/0x250
[  152.250172][ T9270]  ? __pfx_ksys_write+0x10/0x10
[  152.251918][ T9270]  __do_fast_syscall_32+0x73/0x120
[  152.253798][ T9270]  do_fast_syscall_32+0x32/0x80
[  152.255602][ T9270]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.257886][ T9270] RIP: 0023:0xf7f97579
[  152.259410][ T9270] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  152.266384][ T9270] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  152.268661][ T9270] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000200
[  152.270805][ T9270] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  152.273016][ T9270] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  152.275263][ T9270] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  152.277463][ T9270] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.279676][ T9270]  </TASK>
[  152.555996][ T9273] netlink: 'syz.3.823': attribute type 10 has an invalid length.
[  152.558426][ T9273] netlink: 2 bytes leftover after parsing attributes in process `syz.3.823'.
[  152.562090][ T9273] team0: entered promiscuous mode
[  152.563959][ T9273] bridge0: port 1(team0) entered blocking state
[  152.566094][ T9273] bridge0: port 1(team0) entered disabled state
[  152.568502][ T9273] team0: entered allmulticast mode
[  152.757273][ T9279] netlink: 24 bytes leftover after parsing attributes in process `syz.2.824'.
[  152.768110][ T9279] bridge2: the hash_elasticity option has been deprecated and is always 16
[  153.183541][   T39] audit: type=1326 audit(1733797300.123:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.204285][   T39] audit: type=1326 audit(1733797300.123:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.231172][   T39] audit: type=1326 audit(1733797300.123:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.237470][   T39] audit: type=1326 audit(1733797300.123:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.243862][   T39] audit: type=1326 audit(1733797300.123:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.250928][   T39] audit: type=1326 audit(1733797300.123:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.257335][   T39] audit: type=1326 audit(1733797300.123:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.263504][   T39] audit: type=1326 audit(1733797300.123:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.269477][   T39] audit: type=1326 audit(1733797300.123:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  153.276040][   T39] audit: type=1326 audit(1733797300.123:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.3.823" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7fc00000
[  154.434928][ T9317] netlink: 12 bytes leftover after parsing attributes in process `syz.3.835'.
[  154.490991][ T9303] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  154.494485][ T9303] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  154.821502][ T9328] FAULT_INJECTION: forcing a failure.
[  154.821502][ T9328] name failslab, interval 1, probability 0, space 0, times 0
[  154.824847][ T9328] CPU: 2 UID: 0 PID: 9328 Comm: syz.2.837 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  154.827564][ T9328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.830357][ T9328] Call Trace:
[  154.831232][ T9328]  <TASK>
[  154.832010][ T9328]  dump_stack_lvl+0x16c/0x1f0
[  154.833245][ T9328]  should_fail_ex+0x497/0x5b0
[  154.834495][ T9328]  ? fs_reclaim_acquire+0xae/0x150
[  154.835849][ T9328]  should_failslab+0xc2/0x120
[  154.837075][ T9328]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  154.838556][ T9328]  ? __d_alloc+0x35/0x8c0
[  154.839681][ T9328]  __d_alloc+0x35/0x8c0
[  154.840777][ T9328]  d_alloc_pseudo+0x1c/0xc0
[  154.842068][ T9328]  alloc_file_pseudo+0xd2/0x200
[  154.843414][ T9328]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  154.844881][ T9328]  ? alloc_fd+0x41f/0x760
[  154.846422][ T9328]  ? __pfx_lock_release+0x10/0x10
[  154.848281][ T9328]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  154.850261][ T9328]  __anon_inode_getfile+0x136/0x3c0
[  154.852154][ T9328]  ? _raw_spin_unlock+0x28/0x50
[  154.853948][ T9328]  ? __pfx___anon_inode_getfile+0x10/0x10
[  154.855957][ T9328]  anon_inode_getfd+0x52/0xb0
[  154.857568][ T9328]  map_create+0xd6b/0x1f20
[  154.859126][ T9328]  ? __pfx_lock_release+0x10/0x10
[  154.860836][ T9328]  ? trace_lock_acquire+0x14e/0x1f0
[  154.862613][ T9328]  ? __pfx_map_create+0x10/0x10
[  154.864278][ T9328]  ? lock_acquire+0x2f/0xb0
[  154.865895][ T9328]  ? __might_fault+0xe3/0x190
[  154.867620][ T9328]  ? __might_fault+0xe3/0x190
[  154.869264][ T9328]  __sys_bpf+0x4f58/0x57a0
[  154.870845][ T9328]  ? __pfx_lock_release+0x10/0x10
[  154.872620][ T9328]  ? __pfx___sys_bpf+0x10/0x10
[  154.874298][ T9328]  ? vfs_write+0x306/0x1150
[  154.875830][ T9328]  ? __mutex_unlock_slowpath+0x164/0x690
[  154.877862][ T9328]  ? fput+0x67/0x440
[  154.879307][ T9328]  ? ksys_write+0x1ba/0x250
[  154.880898][ T9328]  ? __pfx_ksys_write+0x10/0x10
[  154.882636][ T9328]  __ia32_sys_bpf+0x76/0xe0
[  154.884242][ T9328]  __do_fast_syscall_32+0x73/0x120
[  154.886042][ T9328]  do_fast_syscall_32+0x32/0x80
[  154.887730][ T9328]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.890005][ T9328] RIP: 0023:0xf7ff6579
[  154.891438][ T9328] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  154.898026][ T9328] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  154.900838][ T9328] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200009c0
[  154.903513][ T9328] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  154.906220][ T9328] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  154.909262][ T9328] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  154.911903][ T9328] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.914679][ T9328]  </TASK>
[  155.090376][ T9331] FAULT_INJECTION: forcing a failure.
[  155.090376][ T9331] name failslab, interval 1, probability 0, space 0, times 0
[  155.097512][ T9331] CPU: 3 UID: 0 PID: 9331 Comm: syz.3.839 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  155.101164][ T9331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.104843][ T9331] Call Trace:
[  155.106054][ T9331]  <TASK>
[  155.107130][ T9331]  dump_stack_lvl+0x16c/0x1f0
[  155.108876][ T9331]  should_fail_ex+0x497/0x5b0
[  155.110566][ T9331]  ? fs_reclaim_acquire+0xae/0x150
[  155.112800][ T9331]  should_failslab+0xc2/0x120
[  155.114465][ T9331]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  155.116310][ T9331]  ? security_inode_alloc+0x3b/0x2b0
[  155.118125][ T9331]  security_inode_alloc+0x3b/0x2b0
[  155.119879][ T9331]  inode_init_always_gfp+0xce4/0x1030
[  155.121748][ T9331]  alloc_inode+0x82/0x230
[  155.123277][ T9331]  new_inode+0x22/0x210
[  155.124727][ T9331]  hugetlbfs_get_inode+0x358/0x740
[  155.126485][ T9331]  hugetlb_file_setup+0x15b/0x620
[  155.128370][ T9331]  ksys_mmap_pgoff+0x189/0x5c0
[  155.130187][ T9331]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  155.132118][ T9331]  __do_fast_syscall_32+0x73/0x120
[  155.134160][ T9331]  do_fast_syscall_32+0x32/0x80
[  155.136016][ T9331]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  155.138180][ T9331] RIP: 0023:0xf7f97579
[  155.139575][ T9331] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  155.146306][ T9331] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 00000000000000c0
[  155.149131][ T9331] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000ff5000
[  155.151716][ T9331] RDX: 0000000000000002 RSI: 000000000004c831 RDI: 00000000ffffffff
[  155.154488][ T9331] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  155.157275][ T9331] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  155.160595][ T9331] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  155.163402][ T9331]  </TASK>
[  155.202531][ T9336] netlink: 20 bytes leftover after parsing attributes in process `syz.3.840'.
[  155.225461][ T9336] netlink: 20 bytes leftover after parsing attributes in process `syz.3.840'.
[  155.546535][ T9346] FAULT_INJECTION: forcing a failure.
[  155.546535][ T9346] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.550120][ T9346] CPU: 0 UID: 0 PID: 9346 Comm: syz.3.842 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  155.553161][ T9346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.555970][ T9346] Call Trace:
[  155.556947][ T9346]  <TASK>
[  155.557755][ T9346]  dump_stack_lvl+0x16c/0x1f0
[  155.559030][ T9346]  should_fail_ex+0x497/0x5b0
[  155.560274][ T9346]  _copy_from_iter+0x29b/0x1400
[  155.561580][ T9346]  ? trace_lock_acquire+0x14e/0x1f0
[  155.563670][ T9346]  ? __alloc_skb+0x200/0x380
[  155.565257][ T9346]  ? __pfx__copy_from_iter+0x10/0x10
[  155.566697][ T9346]  ? __virt_addr_valid+0x1a4/0x590
[  155.568195][ T9346]  ? __virt_addr_valid+0x5e/0x590
[  155.569681][ T9346]  ? __phys_addr_symbol+0x30/0x80
[  155.571161][ T9346]  ? __check_object_size+0x488/0x710
[  155.572938][ T9346]  netlink_sendmsg+0x813/0xd70
[  155.574264][ T9346]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.575647][ T9346]  ____sys_sendmsg+0x9ae/0xb40
[  155.576913][ T9346]  ? __pfx_____sys_sendmsg+0x10/0x10
[  155.578350][ T9346]  ? get_compat_msghdr+0x11b/0x170
[  155.579692][ T9346]  ___sys_sendmsg+0x135/0x1e0
[  155.580923][ T9346]  ? __pfx____sys_sendmsg+0x10/0x10
[  155.582445][ T9346]  ? __pfx_lock_release+0x10/0x10
[  155.583752][ T9346]  ? trace_lock_acquire+0x14e/0x1f0
[  155.585128][ T9346]  ? __fget_files+0x206/0x3a0
[  155.586428][ T9346]  __sys_sendmsg+0x16e/0x220
[  155.587651][ T9346]  ? __pfx___sys_sendmsg+0x10/0x10
[  155.589144][ T9346]  __do_fast_syscall_32+0x73/0x120
[  155.590867][ T9346]  do_fast_syscall_32+0x32/0x80
[  155.592592][ T9346]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  155.594652][ T9346] RIP: 0023:0xf7f97579
[  155.596013][ T9346] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  155.602712][ T9346] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  155.605884][ T9346] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  155.608762][ T9346] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  155.611536][ T9346] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  155.614325][ T9346] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  155.617084][ T9346] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  155.619723][ T9346]  </TASK>
[  155.750271][ T9348] netlink: 'syz.1.843': attribute type 2 has an invalid length.
[  155.755265][ T9356] lo speed is unknown, defaulting to 1000
[  155.798563][ T9363] netlink: 12 bytes leftover after parsing attributes in process `syz.0.847'.
[  155.811041][ T5295] Bluetooth: hci2: command 0x0c1a tx timeout
[  155.842796][ T9365] lo speed is unknown, defaulting to 1000
[  155.984282][ T9372] FAULT_INJECTION: forcing a failure.
[  155.984282][ T9372] name failslab, interval 1, probability 0, space 0, times 0
[  155.987655][ T9372] CPU: 3 UID: 0 PID: 9372 Comm: syz.1.848 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  155.990413][ T9372] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.993143][ T9372] Call Trace:
[  155.994040][ T9372]  <TASK>
[  155.994808][ T9372]  dump_stack_lvl+0x16c/0x1f0
[  155.996053][ T9372]  should_fail_ex+0x497/0x5b0
[  155.997387][ T9372]  ? fs_reclaim_acquire+0xae/0x150
[  155.998876][ T9372]  should_failslab+0xc2/0x120
[  156.000288][ T9372]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  156.002196][ T9372]  ? string+0x202/0x3d0
[  156.003308][ T9372]  ? kstrdup_const+0x63/0x80
[  156.004528][ T9372]  kstrdup+0x42/0xb0
[  156.005566][ T9372]  kstrdup_const+0x63/0x80
[  156.006748][ T9372]  __kernfs_new_node+0x9c/0x890
[  156.008042][ T9372]  ? __pfx___kernfs_new_node+0x10/0x10
[  156.009463][ T9372]  ? kernfs_add_one+0x24a/0x520
[  156.010752][ T9372]  ? snprintf+0xc8/0x100
[  156.011871][ T9372]  ? __pfx_snprintf+0x10/0x10
[  156.013108][ T9372]  kernfs_new_node+0x186/0x240
[  156.014389][ T9372]  __kernfs_create_file+0x53/0x350
[  156.015745][ T9372]  cgroup_addrm_files+0x547/0xc20
[  156.017067][ T9372]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  156.018517][ T9372]  ? cpuset_css_online+0x2cb/0x930
[  156.019866][ T9372]  css_populate_dir+0x169/0x530
[  156.021154][ T9372]  cgroup_apply_control_enable+0x3fc/0xc80
[  156.023071][ T9372]  cgroup_subtree_control_write+0xb53/0xf00
[  156.024614][ T9372]  ? __pfx_cgroup_subtree_control_write+0x10/0x10
[  156.026268][ T9372]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  156.027828][ T9372]  cgroup_file_write+0x211/0x7d0
[  156.029414][ T9372]  ? __pfx_cgroup_subtree_control_write+0x10/0x10
[  156.031410][ T9372]  ? __pfx_cgroup_file_write+0x10/0x10
[  156.033077][ T9372]  ? lock_acquire+0x2f/0xb0
[  156.034410][ T9372]  kernfs_fop_write_iter+0x33d/0x500
[  156.035854][ T9372]  ? __pfx_cgroup_file_write+0x10/0x10
[  156.037237][ T9372]  vfs_write+0x5ae/0x1150
[  156.038359][ T9372]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  156.039832][ T9372]  ? __pfx___mutex_lock+0x10/0x10
[  156.041170][ T9372]  ? __pfx_vfs_write+0x10/0x10
[  156.042444][ T9372]  ksys_write+0x12b/0x250
[  156.043547][ T9372]  ? __pfx_ksys_write+0x10/0x10
[  156.044802][ T9372]  __do_fast_syscall_32+0x73/0x120
[  156.046101][ T9372]  do_fast_syscall_32+0x32/0x80
[  156.047329][ T9372]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  156.048965][ T9372] RIP: 0023:0xf7f61579
[  156.050061][ T9372] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  156.055392][ T9372] RSP: 002b:00000000f50b557c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  156.057563][ T9372] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000200000c0
[  156.059603][ T9372] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  156.061538][ T9372] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  156.063526][ T9372] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  156.066248][ T9372] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  156.069180][ T9372]  </TASK>
[  156.076024][ T9372] cgroup: cgroup_addrm_files: failed to add mems, err=-12
[  156.238455][ T9386] sctp: [Deprecated]: syz.3.850 (pid 9386) Use of struct sctp_assoc_value in delayed_ack socket option.
[  156.238455][ T9386] Use struct sctp_sack_info instead
[  156.394676][ T9390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.853'.
[  156.429887][ T9390] lo speed is unknown, defaulting to 1000
[  156.530858][ T5295] Bluetooth: hci3: command 0x0c1a tx timeout
[  156.560769][ T5828] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  156.652899][ T9394] rdma_rxe: rxe_newlink: failed to add lo
[  156.710935][ T5828] usb 5-1: Using ep0 maxpacket: 32
[  156.723600][ T5828] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[  156.724223][ T9398] netlink: 44 bytes leftover after parsing attributes in process `syz.2.856'.
[  156.727178][ T5828] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  156.735769][ T5828] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  156.739040][ T5828] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.741684][ T5828] usb 5-1: Product: 苾撉槢꣦솆�뺰᢯�䤀僡轈ᆡ䌔㲤ṡ훩瓕�䔡쀣ꗣ惖⾪쿡퀟ଯ嚢˨ꨑዹꕾᬜᣘᖖ，窧ꕓ멚
[  156.746901][ T5828] usb 5-1: Manufacturer: 㪼䂿鋀裷䮌⢨픦�ﹷ촞評�ƻ養）�衈἟胳�回厀Ⓥ◿䔨♙筠쫩䬋猪릛㎎ꕔ㾒頌☪䠻㪗𥳐�䤺
[  156.752238][ T5828] usb 5-1: SerialNumber: �袇
[  156.920333][ T9400] x_tables: ip_tables: MASQUERADE target: used from hooks INPUT, but only usable from POSTROUTING
[  156.977801][ T5828] cdc_ncm 5-1:1.0: bind() failure
[  156.992665][ T5828] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  157.012358][ T5828] cdc_ncm 5-1:1.1: bind() failure
[  157.017015][ T5828] usb 5-1: USB disconnect, device number 5
[  157.529731][ T9406] lo speed is unknown, defaulting to 1000
[  157.572365][ T9407] netlink: 12 bytes leftover after parsing attributes in process `syz.0.858'.
[  157.577275][ T9407] geneve2: entered promiscuous mode
[  157.579247][ T9407] geneve2: entered allmulticast mode
[  157.600201][ T9407] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  157.605970][ T9407] overlayfs: failed to set xattr on upper
[  157.607937][ T9407] overlayfs: ...falling back to redirect_dir=nofollow.
[  157.610292][ T9407] overlayfs: ...falling back to index=off.
[  157.614637][ T9407] overlayfs: ...falling back to uuid=null.
[  157.637862][ T9410] netlink: 16 bytes leftover after parsing attributes in process `syz.2.859'.
[  158.003422][ T5953] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  158.089119][ T9422] netlink: 8 bytes leftover after parsing attributes in process `syz.1.864'.
[  158.160823][ T5953] usb 7-1: Using ep0 maxpacket: 32
[  158.163693][ T5953] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  158.166162][ T5953] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  158.168600][ T5953] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  158.171636][ T5953] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  158.174508][ T5953] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  158.177194][ T5953] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  158.181187][ T5953] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  158.183696][ T5953] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.187145][ T5953] usb 7-1: config 0 descriptor??
[  159.299156][ T5953] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  159.303821][ T5953] usb 7-1: USB disconnect, device number 5
[  159.307735][ T5953] usblp0: removed
[  159.640781][ T5953] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  160.390020][ T9446] vlan2: entered promiscuous mode
[  160.391554][ T9446] vlan2: entered allmulticast mode
[  160.392906][ T9446] hsr_slave_1: entered allmulticast mode
[  160.400858][ T5953] usb 7-1: Using ep0 maxpacket: 32
[  160.405024][ T5953] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  160.407655][ T5953] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  160.410401][ T5953] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  160.413812][ T5953] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  160.417241][ T5953] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  160.420609][ T5953] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  160.425224][ T5953] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  160.428500][ T5953] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.430017][ T9446] netlink: 4 bytes leftover after parsing attributes in process `syz.3.869'.
[  160.433265][ T5953] usb 7-1: config 0 descriptor??
[  160.489608][ T9448] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  160.491430][ T9448] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  160.493785][ T9448] vhci_hcd vhci_hcd.0: Device attached
[  160.573985][ T9446] hsr_slave_1 (unregistering): left allmulticast mode
[  160.615972][ T9446] hsr_slave_1 (unregistering): left promiscuous mode
[  160.675776][ T5953] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 6 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  160.681628][ T5828] vhci_hcd: vhci_device speed not set
[  160.682834][ T5953] usb 7-1: USB disconnect, device number 6
[  160.697887][ T5953] usblp0: removed
[  160.740885][ T5828] usb 37-1: new high-speed USB device number 2 using vhci_hcd
[  161.219791][ T9449] vhci_hcd: connection reset by peer
[  161.222004][   T11] vhci_hcd: stop threads
[  161.223569][   T11] vhci_hcd: release socket
[  161.225359][   T11] vhci_hcd: disconnect device
[  161.288856][ T9471] openvswitch: netlink: IP tunnel dst address not specified
[  161.458783][ T9478] netlink: 12 bytes leftover after parsing attributes in process `syz.2.878'.
[  161.751600][ T9488] netlink: 'syz.3.880': attribute type 11 has an invalid length.
[  162.815921][ T9511] capability: warning: `syz.2.886' uses deprecated v2 capabilities in a way that may be insecure
[  162.819453][ T9511] FAULT_INJECTION: forcing a failure.
[  162.819453][ T9511] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.823103][ T9511] CPU: 3 UID: 0 PID: 9511 Comm: syz.2.886 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  162.825879][ T9511] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.828687][ T9511] Call Trace:
[  162.829593][ T9511]  <TASK>
[  162.830386][ T9511]  dump_stack_lvl+0x16c/0x1f0
[  162.831642][ T9511]  should_fail_ex+0x497/0x5b0
[  162.832888][ T9511]  _copy_to_user+0x32/0xd0
[  162.834314][ T9511]  simple_read_from_buffer+0xd0/0x160
[  162.836290][ T9511]  proc_fail_nth_read+0x198/0x270
[  162.837887][ T9511]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  162.839388][ T9511]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  162.840981][ T9511]  vfs_read+0x1df/0xbe0
[  162.842475][ T9511]  ? __fget_files+0x1fc/0x3a0
[  162.844109][ T9511]  ? __pfx___mutex_lock+0x10/0x10
[  162.845864][ T9511]  ? __pfx_vfs_read+0x10/0x10
[  162.847497][ T9511]  ? __fget_files+0x206/0x3a0
[  162.849147][ T9511]  ksys_read+0x12b/0x250
[  162.850639][ T9511]  ? __pfx_ksys_read+0x10/0x10
[  162.852316][ T9511]  __do_fast_syscall_32+0x73/0x120
[  162.854088][ T9511]  do_fast_syscall_32+0x32/0x80
[  162.855361][ T9511]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  162.857011][ T9511] RIP: 0023:0xf7ff6579
[  162.858102][ T9511] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  162.862982][ T9511] RSP: 002b:00000000f51665b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  162.865259][ T9511] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5166620
[  162.867321][ T9511] RDX: 000000000000000f RSI: 00000000f747bff4 RDI: 0000000000000000
[  162.869375][ T9511] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  162.871439][ T9511] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  162.873489][ T9511] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  162.875795][ T9511]  </TASK>
[  163.120062][ T9522] netlink: 1268 bytes leftover after parsing attributes in process `syz.0.889'.
[  163.122938][ T9522] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  163.240458][ T9525] netlink: 12 bytes leftover after parsing attributes in process `syz.1.890'.
[  164.027916][ T6660] IPVS: starting estimator thread 0...
[  164.121066][ T9542] IPVS: using max 37 ests per chain, 88800 per kthread
[  164.346066][ T9549] netlink: 4 bytes leftover after parsing attributes in process `syz.3.893'.
[  164.358893][ T9549] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  164.361324][ T9549] IPv6: NLM_F_CREATE should be set when creating new route
[  164.375340][ T9549] netlink: 4 bytes leftover after parsing attributes in process `syz.3.893'.
[  164.538549][   T39] kauditd_printk_skb: 65 callbacks suppressed
[  164.538562][   T39] audit: type=1326 audit(1733797311.473:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.556539][   T39] audit: type=1326 audit(1733797311.483:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.575926][   T39] audit: type=1326 audit(1733797311.483:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.585304][   T39] audit: type=1326 audit(1733797311.483:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.592015][   T39] audit: type=1326 audit(1733797311.483:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.597860][   T39] audit: type=1326 audit(1733797311.493:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=9 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.603732][   T39] audit: type=1326 audit(1733797311.493:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.650364][   T39] audit: type=1326 audit(1733797311.493:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.658003][   T39] audit: type=1326 audit(1733797311.493:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  164.665021][   T39] audit: type=1326 audit(1733797311.493:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9560 comm="syz.3.898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x7ffc0000
[  165.824721][ T9587] nbd: socks must be embedded in a SOCK_ITEM attr
[  165.881093][ T5828] vhci_hcd: vhci_device speed not set
[  166.045768][ T9612] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  166.055114][ T9617] netlink: 20 bytes leftover after parsing attributes in process `syz.3.907'.
[  166.144305][ T5985] IPVS: starting estimator thread 0...
[  166.230902][ T9625] IPVS: using max 38 ests per chain, 91200 per kthread
[  166.461941][ T9601] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  166.463860][ T9601] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  166.848469][ T9671] netlink: 12 bytes leftover after parsing attributes in process `syz.3.915'.
[  167.191684][ T9698] netlink: 12 bytes leftover after parsing attributes in process `syz.1.923'.
[  167.266526][ T9702] FAULT_INJECTION: forcing a failure.
[  167.266526][ T9702] name failslab, interval 1, probability 0, space 0, times 0
[  167.266588][ T9702] CPU: 3 UID: 0 PID: 9702 Comm: syz.1.924 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  167.266601][ T9702] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.266608][ T9702] Call Trace:
[  167.266612][ T9702]  <TASK>
[  167.266616][ T9702]  dump_stack_lvl+0x16c/0x1f0
[  167.266632][ T9702]  should_fail_ex+0x497/0x5b0
[  167.266645][ T9702]  ? fs_reclaim_acquire+0xae/0x150
[  167.266657][ T9702]  should_failslab+0xc2/0x120
[  167.266674][ T9702]  __kmalloc_noprof+0xce/0x4f0
[  167.266687][ T9702]  ? bio_kmalloc+0x41/0x70
[  167.266699][ T9702]  bio_kmalloc+0x41/0x70
[  167.266709][ T9702]  blk_rq_map_kern+0x3b5/0x790
[  167.266725][ T9702]  scsi_execute_cmd+0x379/0xff0
[  167.266738][ T9702]  ? kasan_save_stack+0x42/0x60
[  167.266754][ T9702]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  167.266770][ T9702]  sr_do_ioctl+0x21c/0x830
[  167.266784][ T9702]  ? __pfx_sr_do_ioctl+0x10/0x10
[  167.266801][ T9702]  sr_read_tocentry.isra.0+0x174/0x530
[  167.266813][ T9702]  ? __pfx_sr_read_tocentry.isra.0+0x10/0x10
[  167.266824][ T9702]  ? __pfx_sr_read_tochdr.isra.0+0x10/0x10
[  167.266837][ T9702]  ? kasan_save_stack+0x42/0x60
[  167.266848][ T9702]  ? kasan_save_stack+0x33/0x60
[  167.266858][ T9702]  ? kasan_save_track+0x14/0x30
[  167.266869][ T9702]  ? kasan_save_free_info+0x3b/0x60
[  167.266878][ T9702]  ? __kasan_slab_free+0x51/0x70
[  167.266892][ T9702]  sr_audio_ioctl+0x277/0x2e0
[  167.266903][ T9702]  ? __pfx_sr_audio_ioctl+0x10/0x10
[  167.266915][ T9702]  ? __pfx_mark_lock+0x10/0x10
[  167.266934][ T9702]  cdrom_count_tracks+0x3df/0x7e0
[  167.266952][ T9702]  ? __pfx_cdrom_count_tracks+0x10/0x10
[  167.266967][ T9702]  ? hlock_class+0x4e/0x130
[  167.266978][ T9702]  ? __lock_acquire+0xc01/0x3c40
[  167.266996][ T9702]  cdrom_ioctl+0xfe2/0x3280
[  167.267007][ T9702]  ? mark_lock+0xb5/0xc60
[  167.267021][ T9702]  ? __pfx_cdrom_ioctl+0x10/0x10
[  167.267032][ T9702]  ? __pfx_mark_lock+0x10/0x10
[  167.267046][ T9702]  ? trace_rpm_return_int+0x1a6/0x230
[  167.267059][ T9702]  ? rpm_resume+0x81c/0x1330
[  167.267070][ T9702]  ? lock_acquire.part.0+0x11b/0x380
[  167.267079][ T9702]  ? find_held_lock+0x2d/0x110
[  167.267093][ T9702]  ? __pfx_lock_release+0x10/0x10
[  167.267109][ T9702]  ? mark_held_locks+0x9f/0xe0
[  167.267124][ T9702]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  167.267135][ T9702]  ? lockdep_hardirqs_on+0x7c/0x110
[  167.267145][ T9702]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  167.267155][ T9702]  ? __pm_runtime_resume+0xc3/0x170
[  167.267168][ T9702]  sr_block_ioctl+0x1b0/0x250
[  167.267179][ T9702]  ? __pfx_sr_block_ioctl+0x10/0x10
[  167.267189][ T9702]  blkdev_compat_ptr_ioctl+0x9c/0xe0
[  167.267204][ T9702]  ? __pfx_blkdev_compat_ptr_ioctl+0x10/0x10
[  167.267216][ T9702]  compat_blkdev_ioctl+0x2f7/0x750
[  167.267230][ T9702]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  167.267242][ T9702]  ? __fget_files+0x206/0x3a0
[  167.267256][ T9702]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  167.267269][ T9702]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  167.267285][ T9702]  __do_fast_syscall_32+0x73/0x120
[  167.267297][ T9702]  do_fast_syscall_32+0x32/0x80
[  167.267308][ T9702]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.267322][ T9702] RIP: 0023:0xf7f61579
[  167.267331][ T9702] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.267341][ T9702] RSP: 002b:00000000f50d657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  167.267352][ T9702] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005327
[  167.267358][ T9702] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  167.267364][ T9702] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.267370][ T9702] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.267376][ T9702] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.267388][ T9702]  </TASK>
[  167.293394][ T9691] IPv6: NLM_F_CREATE should be specified when creating new route
[  167.444943][ T9708] netlink: 4 bytes leftover after parsing attributes in process `syz.1.926'.
[  167.536380][ T9719] netlink: 'syz.3.930': attribute type 1 has an invalid length.
[  167.543970][ T9719] 8021q: adding VLAN 0 to HW filter on device bond1
[  167.584266][ T9719] bond1: (slave veth3): Enslaving as an active interface with a down link
[  167.740829][ T5295] Bluetooth: hci2: command 0x0c1a tx timeout
[  167.822350][ T9735] nbd: socks must be embedded in a SOCK_ITEM attr
[  167.836099][ T9745] ksmbd: Unknown IPC event: 3, ignore.
[  167.855118][ T9743] FAULT_INJECTION: forcing a failure.
[  167.855118][ T9743] name failslab, interval 1, probability 0, space 0, times 0
[  167.858542][ T9743] CPU: 0 UID: 0 PID: 9743 Comm: syz.1.936 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  167.861711][ T9743] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.865395][ T9743] Call Trace:
[  167.866566][ T9743]  <TASK>
[  167.867609][ T9743]  dump_stack_lvl+0x16c/0x1f0
[  167.869420][ T9743]  should_fail_ex+0x497/0x5b0
[  167.871063][ T9743]  ? fs_reclaim_acquire+0xae/0x150
[  167.872775][ T9743]  should_failslab+0xc2/0x120
[  167.874639][ T9743]  __kmalloc_cache_noprof+0x68/0x420
[  167.876444][ T9743]  ? do_raw_spin_lock+0x12d/0x2c0
[  167.878182][ T9743]  ? __pfx_v9fs_fid_find_inode+0x10/0x10
[  167.880220][ T9743]  p9_fid_create+0x45/0x470
[  167.881780][ T9743]  p9_client_attach+0x92/0x2b0
[  167.883567][ T9743]  ? __pfx_p9_client_attach+0x10/0x10
[  167.885573][ T9743]  ? hlock_class+0x4e/0x130
[  167.887299][ T9743]  v9fs_fid_lookup+0x97d/0xec0
[  167.889046][ T9743]  ? __pfx_v9fs_mapped_dotl_flags+0x10/0x10
[  167.891078][ T9743]  v9fs_vfs_lookup+0x1a3/0x5c0
[  167.892714][ T9743]  ? __pfx_v9fs_vfs_lookup+0x10/0x10
[  167.894650][ T9743]  ? __pfx_lock_release+0x10/0x10
[  167.896377][ T9743]  v9fs_vfs_atomic_open_dotl+0x21f/0xd60
[  167.898293][ T9743]  ? d_alloc_parallel+0x6b8/0x12b0
[  167.900031][ T9743]  ? __pfx_v9fs_vfs_atomic_open_dotl+0x10/0x10
[  167.902140][ T9743]  ? __pfx_d_alloc_parallel+0x10/0x10
[  167.903995][ T9743]  ? __d_lookup+0x266/0x4a0
[  167.905546][ T9743]  ? __pfx_v9fs_vfs_atomic_open_dotl+0x10/0x10
[  167.907736][ T9743]  lookup_open.isra.0+0xc9f/0x14c0
[  167.909550][ T9743]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  167.911453][ T9743]  ? path_openat+0x88a/0x2d60
[  167.913053][ T9743]  ? lookup_fast+0x155/0x540
[  167.914642][ T9743]  path_openat+0x904/0x2d60
[  167.916199][ T9743]  ? __pfx_path_openat+0x10/0x10
[  167.917891][ T9743]  ? __pfx___lock_acquire+0x10/0x10
[  167.919662][ T9743]  ? lock_acquire.part.0+0x11b/0x380
[  167.921440][ T9743]  ? find_held_lock+0x2d/0x110
[  167.923080][ T9743]  do_filp_open+0x20c/0x470
[  167.924617][ T9743]  ? __pfx_do_filp_open+0x10/0x10
[  167.926346][ T9743]  ? find_held_lock+0x2d/0x110
[  167.927976][ T9743]  ? _raw_spin_unlock+0x28/0x50
[  167.929651][ T9743]  ? alloc_fd+0x41f/0x760
[  167.931120][ T9743]  do_sys_openat2+0x17a/0x1e0
[  167.932720][ T9743]  ? __pfx_do_sys_openat2+0x10/0x10
[  167.934500][ T9743]  ? __fget_files+0x206/0x3a0
[  167.936113][ T9743]  __ia32_compat_sys_open+0x147/0x1e0
[  167.937934][ T9743]  ? __pfx___ia32_compat_sys_open+0x10/0x10
[  167.939948][ T9743]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  167.942202][ T9743]  __do_fast_syscall_32+0x73/0x120
[  167.943948][ T9743]  do_fast_syscall_32+0x32/0x80
[  167.945602][ T9743]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.947737][ T9743] RIP: 0023:0xf7f61579
[  167.949130][ T9743] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.955611][ T9743] RSP: 002b:00000000f50d657c EFLAGS: 00000292 ORIG_RAX: 0000000000000005
[  167.958427][ T9743] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 0000000000000000
[  167.961094][ T9743] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  167.963753][ T9743] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.966415][ T9743] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.969088][ T9743] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.971700][ T9743]  </TASK>
[  168.356790][ T9761] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  168.359063][ T9761] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  168.363650][ T9761] vhci_hcd vhci_hcd.0: Device attached
[  168.371471][ T9763] FAULT_INJECTION: forcing a failure.
[  168.371471][ T9763] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.376623][ T9763] CPU: 3 UID: 0 PID: 9763 Comm: syz.2.942 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  168.380608][ T9763] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.384704][ T9763] Call Trace:
[  168.385767][ T9763]  <TASK>
[  168.386847][ T9763]  dump_stack_lvl+0x16c/0x1f0
[  168.388561][ T9763]  should_fail_ex+0x497/0x5b0
[  168.390278][ T9763]  _copy_from_user+0x2e/0xd0
[  168.391982][ T9763]  __do_compat_sys_socketcall+0x14f/0x700
[  168.394016][ T9763]  ? __fget_files+0x206/0x3a0
[  168.395645][ T9763]  ? __pfx___do_compat_sys_socketcall+0x10/0x10
[  168.397783][ T9763]  ? fput+0x67/0x440
[  168.399161][ T9763]  ? ksys_write+0x1ba/0x250
[  168.400718][ T9763]  ? __pfx_ksys_write+0x10/0x10
[  168.402716][ T9763]  __do_fast_syscall_32+0x73/0x120
[  168.404249][ T9763]  do_fast_syscall_32+0x32/0x80
[  168.405574][ T9763]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  168.407365][ T9763] RIP: 0023:0xf7ff6579
[  168.408844][ T9763] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  168.415632][ T9763] RSP: 002b:00000000f5165450 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[  168.418422][ T9763] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f5165464
[  168.421310][ T9763] RDX: 0000000000000000 RSI: 00000000f5165580 RDI: 00000000f747bff4
[  168.423637][ T9763] RBP: 00000000f5165580 R08: 0000000000000000 R09: 0000000000000000
[  168.425753][ T9763] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  168.428051][ T9763] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  168.430414][ T9763]  </TASK>
[  168.431431][    C3] vkms_vblank_simulate: vblank timer overrun
[  168.530794][ T5295] Bluetooth: hci3: command 0x0c1a tx timeout
[  168.551797][ T5985] vhci_hcd: vhci_device speed not set
[  168.615116][ T5985] usb 39-1: new low-speed USB device number 3 using vhci_hcd
[  168.716050][ T9782] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  168.719164][ T9782] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  168.723139][ T9782] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  168.861379][ T1105] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  168.863104][ T1105] ata1: failed to read log page 10h (errno=-5)
[  168.864835][ T1105] ata1.00: exception Emask 0x1 SAct 0x400 SErr 0x0 action 0x0
[  168.866935][ T1105] ata1.00: irq_stat 0x40000000
[  168.868309][ T1105] ata1.00: failed command: WRITE FPDMA QUEUED
[  168.869984][ T1105] ata1.00: cmd 61/30:50:d2:08:10/00:00:00:00:00/40 tag 10 ncq dma 24576 out
[  168.869984][ T1105]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  168.874814][ T1105] ata1.00: status: { DRDY }
[  168.876307][ T1105] ata1.00: error: { ABRT }
[  168.878149][ T1105] ata1.00: configured for UDMA/100
[  168.879970][ T1105] ata1: EH complete
[  169.021934][    C3] ata1: illegal qc_active transition (00000000->00000010)
[  169.345227][ T1105] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300)
[  169.348010][ T1105] ata1.00: configured for UDMA/100
[  169.593604][ T9764] vhci_hcd: connection reset by peer
[  169.595433][   T66] vhci_hcd: stop threads
[  169.597198][   T66] vhci_hcd: release socket
[  169.602703][   T66] vhci_hcd: disconnect device
[  169.987705][ T9796] input: syz0 as /devices/virtual/input/input16
[  170.067840][ T9796] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[  170.070923][ T9796] PKCS7: Only support pkcs7_signedData type
[  170.862945][ T9810] lo speed is unknown, defaulting to 1000
[  170.904496][ T9812] netlink: 8 bytes leftover after parsing attributes in process `syz.0.954'.
[  171.124238][ T9816] xt_CT: You must specify a L4 protocol and not use inversions on it
[  171.141490][ T9817] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  171.300594][ T9816] netlink: 104 bytes leftover after parsing attributes in process `syz.2.955'.
[  171.608583][ T9825] netlink: 4 bytes leftover after parsing attributes in process `syz.1.957'.
[  172.206211][ T9837] lo speed is unknown, defaulting to 1000
[  172.467959][   T39] kauditd_printk_skb: 227 callbacks suppressed
[  172.467971][   T39] audit: type=1804 audit(1733797319.403:736): pid=9849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.962" name="/newroot/255/file0/file0" dev="9p" ino=36837525 res=1 errno=0
[  172.485148][   T39] audit: type=1804 audit(1733797319.423:737): pid=9849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.962" name="/newroot/255/file0/file0" dev="9p" ino=36837525 res=1 errno=0
[  173.647128][   T39] audit: type=1326 audit(1733797320.583:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9882 comm="syz.2.972" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[  173.720842][ T5985] vhci_hcd: vhci_device speed not set
[  173.829714][ T9898] netlink: 8 bytes leftover after parsing attributes in process `syz.3.977'.
[  173.833814][ T9898] netlink: 4 bytes leftover after parsing attributes in process `syz.3.977'.
[  173.836650][ T9898] netlink: 'syz.3.977': attribute type 12 has an invalid length.
[  173.838864][ T9898] netlink: 'syz.3.977': attribute type 11 has an invalid length.
[  173.919918][ T9899] lo speed is unknown, defaulting to 1000
[  174.388891][ T9911] lo speed is unknown, defaulting to 1000
[  174.876352][ T9927] lo speed is unknown, defaulting to 1000
[  175.578868][ T9943] pim6reg: entered allmulticast mode
[  175.583816][ T9943] pim6reg: left allmulticast mode
[  176.430229][ T9970] netlink: 16 bytes leftover after parsing attributes in process `syz.3.993'.
[  176.432823][ T9970] netlink: 64 bytes leftover after parsing attributes in process `syz.3.993'.
[  176.469327][ T9972] FAULT_INJECTION: forcing a failure.
[  176.469327][ T9972] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.478956][ T9972] CPU: 2 UID: 0 PID: 9972 Comm: syz.2.995 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  176.483039][ T9972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.486683][ T9972] Call Trace:
[  176.487818][ T9972]  <TASK>
[  176.488854][ T9972]  dump_stack_lvl+0x16c/0x1f0
[  176.490677][ T9972]  should_fail_ex+0x497/0x5b0
[  176.492510][ T9972]  _copy_from_user+0x2e/0xd0
[  176.494314][ T9972]  __sys_bpf+0x215/0x57a0
[  176.495986][ T9972]  ? __pfx_lock_release+0x10/0x10
[  176.497956][ T9972]  ? __pfx___sys_bpf+0x10/0x10
[  176.499626][ T9972]  ? vfs_write+0x306/0x1150
[  176.501197][ T9972]  ? __mutex_unlock_slowpath+0x164/0x690
[  176.503166][ T9972]  ? fput+0x67/0x440
[  176.504524][ T9972]  ? ksys_write+0x1ba/0x250
[  176.506072][ T9972]  ? __pfx_ksys_write+0x10/0x10
[  176.507716][ T9972]  __ia32_sys_bpf+0x76/0xe0
[  176.509328][ T9972]  __do_fast_syscall_32+0x73/0x120
[  176.511129][ T9972]  do_fast_syscall_32+0x32/0x80
[  176.512782][ T9972]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  176.514954][ T9972] RIP: 0023:0xf7ff6579
[  176.516294][ T9972] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  176.522572][ T9972] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  176.525776][ T9972] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000200
[  176.528714][ T9972] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  176.531409][ T9972] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  176.534143][ T9972] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  176.536874][ T9972] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  176.539942][ T9972]  </TASK>
[  176.541382][    C2] vkms_vblank_simulate: vblank timer overrun
[  176.592044][ T9974] FAULT_INJECTION: forcing a failure.
[  176.592044][ T9974] name failslab, interval 1, probability 0, space 0, times 0
[  176.596315][ T9974] CPU: 0 UID: 0 PID: 9974 Comm: syz.2.996 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  176.599554][ T9974] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.602389][ T9974] Call Trace:
[  176.603302][ T9974]  <TASK>
[  176.604323][ T9974]  dump_stack_lvl+0x16c/0x1f0
[  176.605994][ T9974]  should_fail_ex+0x497/0x5b0
[  176.607697][ T9974]  ? fs_reclaim_acquire+0xae/0x150
[  176.609576][ T9974]  should_failslab+0xc2/0x120
[  176.611427][ T9974]  __kmalloc_noprof+0xce/0x4f0
[  176.613236][ T9974]  ? __pfx_d_absolute_path+0x10/0x10
[  176.615263][ T9974]  ? tomoyo_encode2+0x100/0x3e0
[  176.617147][ T9974]  tomoyo_encode2+0x100/0x3e0
[  176.619133][ T9974]  tomoyo_realpath_from_path+0x1a7/0x710
[  176.621228][ T9974]  tomoyo_mount_acl+0x66d/0x880
[  176.622948][ T9974]  ? hlock_class+0x4e/0x130
[  176.624446][ T9974]  ? __lock_acquire+0x15a9/0x3c40
[  176.625584][ T9974]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  176.626920][ T9974]  ? __pfx___lock_acquire+0x10/0x10
[  176.628296][ T9974]  ? stack_trace_save+0x95/0xd0
[  176.629599][ T9974]  ? __pfx_lock_release+0x10/0x10
[  176.630978][ T9974]  ? trace_lock_acquire+0x14e/0x1f0
[  176.632337][ T9974]  ? tomoyo_mount_permission+0x149/0x420
[  176.633934][ T9974]  ? lock_acquire+0x2f/0xb0
[  176.635200][ T9974]  ? tomoyo_mount_permission+0x149/0x420
[  176.636658][ T9974]  tomoyo_mount_permission+0x16e/0x420
[  176.638078][ T9974]  ? tomoyo_mount_permission+0x149/0x420
[  176.639535][ T9974]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  176.641056][ T9974]  ? get_current_fs_domain+0x184/0x1f0
[  176.642825][ T9974]  security_sb_mount+0x9b/0x260
[  176.644189][ T9974]  path_mount+0x129/0x1f10
[  176.645678][ T9974]  ? kmem_cache_free+0x152/0x4c0
[  176.647506][ T9974]  ? __pfx_path_mount+0x10/0x10
[  176.649327][ T9974]  ? putname+0x13c/0x180
[  176.650978][ T9974]  __ia32_sys_mount+0x292/0x310
[  176.652882][ T9974]  ? __pfx___ia32_sys_mount+0x10/0x10
[  176.655196][ T9974]  __do_fast_syscall_32+0x73/0x120
[  176.657131][ T9974]  do_fast_syscall_32+0x32/0x80
[  176.658968][ T9974]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  176.661074][ T9974] RIP: 0023:0xf7ff6579
[  176.662164][ T9974] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  176.667623][ T9974] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  176.669843][ T9974] RAX: ffffffffffffffda RBX: 0000000020000080 RCX: 0000000020004a00
[  176.671883][ T9974] RDX: 0000000020000100 RSI: 0000000000008007 RDI: 0000000000000000
[  176.674078][ T9974] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  176.676360][ T9974] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  176.678592][ T9974] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  176.680788][ T9974]  </TASK>
[  176.682202][ T9974] ERROR: Out of memory at tomoyo_realpath_from_path.
[  176.818278][ T9979] lo speed is unknown, defaulting to 1000
[  176.858421][  T834] libceph: connect (1)[c::]:6789 error -101
[  176.861238][  T834] libceph: mon0 (1)[c::]:6789 connect error
[  177.121179][  T834] libceph: connect (1)[c::]:6789 error -101
[  177.124884][  T834] libceph: mon0 (1)[c::]:6789 connect error
[  177.260959][ T5953] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  177.425431][ T5953] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  177.428753][ T5953] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  177.434061][ T5953] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 112, changing to 10
[  177.438510][ T5953] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  177.442923][ T5953] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  177.449158][ T5953] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  177.452980][ T5953] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.461939][ T5953] usb 7-1: config 0 descriptor??
[  177.466501][ T9992] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  177.634371][  T834] libceph: connect (1)[c::]:6789 error -101
[  177.636601][  T834] libceph: mon0 (1)[c::]:6789 connect error
[  177.677157][ T9982] ceph: No mds server is up or the cluster is laggy
[  177.929478][ T5953] plantronics 0003:047F:FFFF.0006: unknown main item tag 0xd
[  177.936051][ T5953] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  177.941694][ T5953] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  177.945855][ T9999] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  177.960819][   T25] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  178.100284][T10002] nbd: nbd3 already in use
[  178.119402][   T25] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  178.121893][   T25] usb 6-1: config 1 has an invalid descriptor of length 102, skipping remainder of the config
[  178.125553][   T25] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  178.128233][   T25] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 30768, setting to 64
[  178.136071][   T25] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  178.138278][   T25] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  178.140392][   T25] usb 6-1: Product: syz
[  178.141871][   T25] usb 6-1: Manufacturer: syz
[  178.147098][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  178.148965][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  178.150979][   T25] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  178.353439][ T9997] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1002'.
[  178.359011][ T6660] usb 6-1: USB disconnect, device number 4
[  178.530832][ T5941] Bluetooth: hci3: command 0x0c1a tx timeout
[  179.270857][ T5985] usb 7-1: reset high-speed USB device number 7 using dummy_hcd
[  180.179191][T10043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1016'.
[  180.251904][T10036] overlayfs: failed to resolve './file0': -2
[  180.829041][ T5983] usb 7-1: USB disconnect, device number 7
[  180.863745][T10064] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  180.865974][T10064] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  180.869288][T10064] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  180.871487][T10064] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  180.883714][T10066] 9pnet_fd: Insufficient options for proto=fd
[  180.931103][T10072] FAULT_INJECTION: forcing a failure.
[  180.931103][T10072] name failslab, interval 1, probability 0, space 0, times 0
[  180.934713][T10072] CPU: 3 UID: 0 PID: 10072 Comm: syz.2.1025 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  180.937584][T10072] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.940413][T10072] Call Trace:
[  180.941483][T10072]  <TASK>
[  180.942457][T10072]  dump_stack_lvl+0x16c/0x1f0
[  180.944114][T10072]  should_fail_ex+0x497/0x5b0
[  180.945836][T10072]  ? __pfx___lock_acquire+0x10/0x10
[  180.947660][T10072]  should_failslab+0xc2/0x120
[  180.949355][T10072]  __kmalloc_cache_noprof+0x68/0x420
[  180.951242][T10072]  nsim_fib_event_nb+0x1b6/0xec0
[  180.952775][T10072]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  180.954300][T10072]  ? rcu_is_watching+0x12/0xc0
[  180.955633][T10072]  notifier_call_chain+0xb7/0x410
[  180.956985][T10072]  ? __pfx_nsim_fib_event_nb+0x10/0x10
[  180.958454][T10072]  atomic_notifier_call_chain+0x71/0x1c0
[  180.959902][T10072]  call_fib_notifiers+0x33/0x70
[  180.961160][T10072]  fib_table_insert+0xf5d/0x1d70
[  180.962453][T10072]  ? __pfx_fib_table_insert+0x10/0x10
[  180.963840][T10072]  ? fib_magic+0x1a8/0x5c0
[  180.965089][T10072]  ? __schedule+0xe60/0x5ad0
[  180.966598][T10072]  ? lock_acquire+0x2f/0xb0
[  180.968203][T10072]  ? fib_magic+0x4d6/0x5c0
[  180.969732][T10072]  fib_magic+0x4d6/0x5c0
[  180.971037][T10072]  ? __pfx_fib_magic+0x10/0x10
[  180.972271][T10072]  ? lockdep_hardirqs_on+0x7c/0x110
[  180.973603][T10072]  ? queue_work_on+0x9d/0x140
[  180.974829][T10072]  fib_add_ifaddr+0x174/0x560
[  180.976032][T10072]  ? preempt_schedule_notrace_thunk+0x1a/0x30
[  180.977668][T10072]  fib_inetaddr_event+0x174/0x2c0
[  180.979405][T10072]  notifier_call_chain+0xb7/0x410
[  180.980742][T10072]  ? __pfx_fib_inetaddr_event+0x10/0x10
[  180.982670][T10072]  blocking_notifier_call_chain+0x69/0xa0
[  180.984245][T10072]  __inet_insert_ifa+0x8c9/0xc50
[  180.985571][T10072]  ? __pfx___inet_insert_ifa+0x10/0x10
[  180.987027][T10072]  ? __inet_del_ifa+0x3f1/0xf40
[  180.988357][T10072]  devinet_ioctl+0xfca/0x1f40
[  180.989629][T10072]  ? __pfx_devinet_ioctl+0x10/0x10
[  180.990996][T10072]  ? _copy_from_user+0x59/0xd0
[  180.992277][T10072]  inet_ioctl+0x3aa/0x3f0
[  180.993436][T10072]  ? __pfx_inet_ioctl+0x10/0x10
[  180.994731][T10072]  ? find_held_lock+0x2d/0x110
[  180.995996][T10072]  ? tomoyo_path_number_perm+0x298/0x5b0
[  180.997595][T10072]  ? __pfx_lock_release+0x10/0x10
[  180.998984][T10072]  ? tomoyo_path_number_perm+0x190/0x5b0
[  181.000583][T10072]  sock_do_ioctl+0x116/0x280
[  181.001949][T10072]  ? __pfx_sock_do_ioctl+0x10/0x10
[  181.003304][T10072]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  181.004656][T10072]  compat_sock_ioctl+0x318/0x7e0
[  181.005992][T10072]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  181.007445][T10072]  ? __fget_files+0x206/0x3a0
[  181.008698][T10072]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  181.010130][T10072]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  181.011513][T10072]  __do_fast_syscall_32+0x73/0x120
[  181.012860][T10072]  do_fast_syscall_32+0x32/0x80
[  181.014476][T10072]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  181.016220][T10072] RIP: 0023:0xf7ff6579
[  181.017428][T10072] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  181.022773][T10072] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  181.024937][T10072] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008918
[  181.027028][T10072] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000000000000
[  181.029166][T10072] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  181.031309][T10072] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  181.033893][T10072] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  181.036142][T10072]  </TASK>
[  181.078104][T10077] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1027'.
[  181.084517][T10077] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1027'.
[  181.333474][T10089] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1028'.
[  181.349263][   T39] audit: type=1326 audit(1733797328.283:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.358618][T10093] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1032'.
[  181.375475][   T39] audit: type=1326 audit(1733797328.283:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.384920][   T39] audit: type=1326 audit(1733797328.293:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=399 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.391018][   T39] audit: type=1326 audit(1733797328.293:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.396477][   T39] audit: type=1326 audit(1733797328.293:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.402691][   T39] audit: type=1326 audit(1733797328.293:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.408736][   T39] audit: type=1326 audit(1733797328.293:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.418379][   T39] audit: type=1326 audit(1733797328.293:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.429011][   T39] audit: type=1326 audit(1733797328.293:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.436941][   T39] audit: type=1326 audit(1733797328.293:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10092 comm="syz.0.1032" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7f90579 code=0x7ffc0000
[  181.561226][T10098] overlay: ./bus is not a directory
[  181.661972][T10103] FAULT_INJECTION: forcing a failure.
[  181.661972][T10103] name failslab, interval 1, probability 0, space 0, times 0
[  181.665659][T10103] CPU: 3 UID: 0 PID: 10103 Comm: syz.0.1035 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  181.668604][T10103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  181.671471][T10103] Call Trace:
[  181.672428][T10103]  <TASK>
[  181.673314][T10103]  dump_stack_lvl+0x16c/0x1f0
[  181.674702][T10103]  should_fail_ex+0x497/0x5b0
[  181.676264][T10103]  ? fs_reclaim_acquire+0xae/0x150
[  181.677736][T10103]  should_failslab+0xc2/0x120
[  181.679293][T10103]  __kmalloc_noprof+0xce/0x4f0
[  181.680563][T10103]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  181.682157][T10103]  ? tomoyo_realpath_from_path+0xbf/0x710
[  181.683663][T10103]  tomoyo_realpath_from_path+0xbf/0x710
[  181.685133][T10103]  ? tomoyo_path_number_perm+0x235/0x5b0
[  181.686632][T10103]  tomoyo_path_number_perm+0x248/0x5b0
[  181.688053][T10103]  ? tomoyo_path_number_perm+0x235/0x5b0
[  181.689511][T10103]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  181.691260][T10103]  ? __pfx_lock_release+0x10/0x10
[  181.692644][T10103]  ? trace_lock_acquire+0x14e/0x1f0
[  181.694115][T10103]  ? lock_acquire+0x2f/0xb0
[  181.695432][T10103]  ? __fget_files+0x40/0x3a0
[  181.696787][T10103]  ? __fget_files+0x206/0x3a0
[  181.698106][T10103]  security_file_ioctl_compat+0x9b/0x240
[  181.699555][T10103]  __do_compat_sys_ioctl+0x4e/0x2c0
[  181.700898][T10103]  __do_fast_syscall_32+0x73/0x120
[  181.702244][T10103]  do_fast_syscall_32+0x32/0x80
[  181.703511][T10103]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  181.705152][T10103] RIP: 0023:0xf7f90579
[  181.706226][T10103] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  181.711297][T10103] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  181.713617][T10103] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008946
[  181.715798][T10103] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  181.717841][T10103] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  181.719869][T10103] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  181.721913][T10103] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  181.723973][T10103]  </TASK>
[  181.725405][T10103] ERROR: Out of memory at tomoyo_realpath_from_path.
[  182.104394][T10119] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1039'.
[  182.412757][T10132] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  182.415759][T10132] UDF-fs: Scanning with blocksize 512 failed
[  182.425653][T10132] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  182.427691][T10132] UDF-fs: Scanning with blocksize 1024 failed
[  182.430307][T10132] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  182.434139][T10132] UDF-fs: Scanning with blocksize 2048 failed
[  182.436321][T10132] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  182.438287][T10132] UDF-fs: Scanning with blocksize 4096 failed
[  182.710806][ T9318] usb 8-1: new full-speed USB device number 5 using dummy_hcd
[  182.780840][ T6660] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  182.866781][ T9318] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  182.870296][ T9318] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22
[  182.884851][ T9318] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  182.887987][ T9318] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  182.902178][ T9318] usb 8-1: SerialNumber: syz
[  182.912068][ T9318] cdc_acm 8-1:1.0: Control and data interfaces are not separated!
[  182.914017][ T9318] cdc_acm 8-1:1.0: This needs exactly 3 endpoints
[  182.915718][ T9318] cdc_acm 8-1:1.0: probe with driver cdc_acm failed with error -22
[  183.030796][ T6660] usb 7-1: Using ep0 maxpacket: 8
[  183.034917][ T6660] usb 7-1: config index 0 descriptor too short (expected 5924, got 36)
[  183.037531][ T6660] usb 7-1: config 250 has an invalid interface number: 228 but max is -1
[  183.039897][ T6660] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0
[  183.042820][ T6660] usb 7-1: config 250 has no interface number 0
[  183.044707][ T6660] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  183.047963][ T6660] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  183.051092][ T6660] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  183.054165][ T6660] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  183.056996][ T6660] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  183.060865][ T6660] usb 7-1: config 250 interface 228 has no altsetting 0
[  183.065262][ T6660] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  183.067652][ T6660] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  183.069714][ T6660] usb 7-1: Product: syz
[  183.070967][ T6660] usb 7-1: SerialNumber: syz
[  183.083635][ T6660] hub 7-1:250.228: bad descriptor, ignoring hub
[  183.085292][ T6660] hub 7-1:250.228: probe with driver hub failed with error -5
[  183.316318][ T6660] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 8 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  183.587561][T10132] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1044'.
[  183.853735][ T6660] usb 8-1: USB disconnect, device number 5
[  183.901082][ T5983] usb 7-1: USB disconnect, device number 8
[  183.904868][ T5983] usblp0: removed
[  184.111488][T10159] lo speed is unknown, defaulting to 1000
[  184.180754][ T6660] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  184.360844][ T6660] usb 8-1: Using ep0 maxpacket: 8
[  184.364004][ T6660] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  184.366796][ T6660] usb 8-1: config 0 has no interface number 0
[  184.369004][ T6660] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  184.380875][ T6660] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  184.383268][ T6660] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.388258][ T6660] usb 8-1: config 0 descriptor??
[  184.393094][ T6660] iowarrior 8-1:0.1: no interrupt-in endpoint found
[  184.401564][T10170] ./file0: Can't lookup blockdev
[  184.777602][T10182] loop9: detected capacity change from 0 to 6
[  185.044050][T10182] Dev loop9: unable to read RDB block 6
[  185.045623][T10182]  loop9: unable to read partition table
[  185.047177][T10182] loop9: partition table beyond EOD, truncated
[  185.048908][T10182] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  185.048908][T10182] 
) failed (rc=-5)
[  185.076688][T10190] netlink: 'syz.1.1058': attribute type 8 has an invalid length.
[  185.078783][T10190] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1058'.
[  185.258871][T10195] input: syz0 as /devices/virtual/input/input19
[  185.727648][T10201] lo speed is unknown, defaulting to 1000
[  186.021009][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  186.192332][    T9] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  186.195105][    T9] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  186.198159][    T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  186.213798][    T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  186.217730][    T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  186.223173][    T9] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  186.225619][    T9] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  186.227632][    T9] usb 5-1: Product: syz
[  186.228927][    T9] usb 5-1: Manufacturer: syz
[  186.238498][    T9] cdc_wdm 5-1:1.0: skipping garbage
[  186.239825][    T9] cdc_wdm 5-1:1.0: skipping garbage
[  186.242391][    T9] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  186.243982][    T9] cdc_wdm 5-1:1.0: Unknown control protocol
[  186.296056][T10213] tmpfs: Bad value for 'nr_blocks'
[  186.640258][ T5983] usb 5-1: USB disconnect, device number 6
[  186.808360][ T5953] usb 8-1: USB disconnect, device number 6
[  187.540571][T10222] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  187.545182][T10222] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  187.639584][T10254] capability: warning: `syz.0.1077' uses 32-bit capabilities (legacy support in use)
[  187.657057][T10256] ufs: Invalid option: "Å" or missing value
[  187.663093][T10256] ufs: wrong mount options
[  188.255569][T10277] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  188.258175][T10277] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  188.850841][ T5295] Bluetooth: hci2: command 0x0c1a tx timeout
[  188.883601][T10280] can0: slcan on ttyS3.
[  188.891975][T10280] program syz.0.1084 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  189.082243][T10290] syzkaller0: entered promiscuous mode
[  189.084458][T10290] syzkaller0: entered allmulticast mode
[  189.571771][ T5295] Bluetooth: hci3: command 0x0c1a tx timeout
[  190.941137][T10278] can0 (unregistered): slcan off ttyS3.
[  191.067792][ T5295] Bluetooth: hci3: unexpected event for opcode 0x080f
[  191.074792][ T5983] hid (null): unknown global tag 0xc
[  191.086655][ T5983] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  191.089143][ T5983] hid-generic 0000:0000:0000.0007: unknown global tag 0xc
[  191.092885][ T5983] hid-generic 0000:0000:0000.0007: item 0 2 1 12 parsing failed
[  191.096535][ T5983] hid-generic 0000:0000:0000.0007: probe with driver hid-generic failed with error -22
[  191.206483][T10329] tmpfs: Bad value for 'mpol'
[  191.545360][   T78] Bluetooth: hci4: Frame reassembly failed (-84)
[  192.148848][T10334] lo speed is unknown, defaulting to 1000
[  192.387737][T10339] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1096'.
[  192.390361][T10339] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1096'.
[  192.693753][T10349] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  192.709534][T10349] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  192.755013][T10349] bond0 (unregistering): Released all slaves
[  193.472436][   T39] kauditd_printk_skb: 29 callbacks suppressed
[  193.472448][   T39] audit: type=1326 audit(1733797340.413:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10365 comm="syz.0.1105" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f90579 code=0x0
[  193.571302][ T5941] Bluetooth: hci4: command 0xfc11 tx timeout
[  193.571611][ T5295] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  193.572354][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  193.572379][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  193.652354][T10369] lo speed is unknown, defaulting to 1000
[  194.390549][T10386] can: request_module (can-proto-0) failed.
[  194.487209][T10394] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1113'.
[  194.547135][T10394] netlink: 'syz.0.1113': attribute type 12 has an invalid length.
[  194.924072][T10407] lo speed is unknown, defaulting to 1000
[  194.938590][T10406] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  195.093409][ T5295] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  195.096235][ T5295] Bluetooth: hci3: Injecting HCI hardware error event
[  195.099566][ T5295] Bluetooth: hci3: hardware error 0x00
[  196.400356][T10436] input: syz0 as /devices/virtual/input/input20
[  196.402404][T10436] input: failed to attach handler leds to device input20, error: -6
[  196.409079][T10436] netlink: 'syz.3.1122': attribute type 3 has an invalid length.
[  196.687842][T10450] input: syz0 as /devices/virtual/input/input21
[  196.787907][ T6002] libceph: connect (1)[c::]:6789 error -101
[  196.790008][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[  196.826017][T10454] ceph: No mds server is up or the cluster is laggy
[  196.946370][T10460] lo speed is unknown, defaulting to 1000
[  197.180965][ T5295] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  197.234597][T10471] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1132'.
[  197.397286][T10480] ax25_connect(): syz.1.1136 uses autobind, please contact jreuter@yaina.de
[  198.043377][T10493] netlink: 'syz.0.1139': attribute type 10 has an invalid length.
[  198.045267][T10493] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[  198.048510][T10493] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  198.191712][T10496] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1140'.
[  198.292270][T10498] lo speed is unknown, defaulting to 1000
[  198.533206][T10505] FAULT_INJECTION: forcing a failure.
[  198.533206][T10505] name failslab, interval 1, probability 0, space 0, times 0
[  198.542699][T10505] CPU: 0 UID: 0 PID: 10505 Comm: syz.3.1144 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  198.542730][T10505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  198.542737][T10505] Call Trace:
[  198.542741][T10505]  <TASK>
[  198.542747][T10505]  dump_stack_lvl+0x16c/0x1f0
[  198.542781][T10505]  should_fail_ex+0x497/0x5b0
[  198.542800][T10505]  ? fs_reclaim_acquire+0xae/0x150
[  198.542813][T10505]  should_failslab+0xc2/0x120
[  198.542828][T10505]  __kmalloc_noprof+0xce/0x4f0
[  198.542841][T10505]  ? d_absolute_path+0x137/0x1b0
[  198.542855][T10505]  ? tomoyo_encode2+0x100/0x3e0
[  198.542872][T10505]  tomoyo_encode2+0x100/0x3e0
[  198.542892][T10505]  tomoyo_realpath_from_path+0x1a7/0x710
[  198.542917][T10505]  tomoyo_path_number_perm+0x248/0x5b0
[  198.542933][T10505]  ? tomoyo_path_number_perm+0x235/0x5b0
[  198.542948][T10505]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  198.542989][T10505]  ? __pfx_lock_release+0x10/0x10
[  198.543006][T10505]  ? trace_lock_acquire+0x14e/0x1f0
[  198.543020][T10505]  ? lock_acquire+0x2f/0xb0
[  198.543028][T10505]  ? __fget_files+0x40/0x3a0
[  198.543041][T10505]  ? __fget_files+0x206/0x3a0
[  198.543054][T10505]  security_file_ioctl_compat+0x9b/0x240
[  198.543066][T10505]  __do_compat_sys_ioctl+0x4e/0x2c0
[  198.543082][T10505]  __do_fast_syscall_32+0x73/0x120
[  198.543095][T10505]  do_fast_syscall_32+0x32/0x80
[  198.543106][T10505]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  198.543121][T10505] RIP: 0023:0xf7f97579
[  198.543129][T10505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  198.543139][T10505] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  198.543151][T10505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000545c
[  198.543158][T10505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  198.543167][T10505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  198.543174][T10505] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  198.543181][T10505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  198.543193][T10505]  </TASK>
[  198.543259][T10505] ERROR: Out of memory at tomoyo_realpath_from_path.
[  200.088851][T10558] lo speed is unknown, defaulting to 1000
[  201.290842][   T25] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  201.451243][ T5295] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  201.453990][ T5295] Bluetooth: hci2: unexpected event for opcode 0x0419
[  201.561690][T10590] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1162'.
[  201.582959][T10592] FAULT_INJECTION: forcing a failure.
[  201.582959][T10592] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  201.586956][T10592] CPU: 1 UID: 0 PID: 10592 Comm: syz.2.1163 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  201.590154][T10592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  201.592978][T10592] Call Trace:
[  201.593934][T10592]  <TASK>
[  201.594914][T10592]  dump_stack_lvl+0x16c/0x1f0
[  201.596482][T10592]  should_fail_ex+0x497/0x5b0
[  201.598182][T10592]  _copy_to_user+0x32/0xd0
[  201.599566][T10592]  simple_read_from_buffer+0xd0/0x160
[  201.601731][T10592]  proc_fail_nth_read+0x198/0x270
[  201.603895][T10592]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  201.605531][T10592]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  201.607077][T10592]  vfs_read+0x1df/0xbe0
[  201.608214][T10592]  ? __fget_files+0x1fc/0x3a0
[  201.609464][T10592]  ? __pfx___mutex_lock+0x10/0x10
[  201.610832][T10592]  ? __pfx_vfs_read+0x10/0x10
[  201.612087][T10592]  ? __fget_files+0x206/0x3a0
[  201.613352][T10592]  ksys_read+0x12b/0x250
[  201.614498][T10592]  ? __pfx_ksys_read+0x10/0x10
[  201.615761][T10592]  __do_fast_syscall_32+0x73/0x120
[  201.617106][T10592]  do_fast_syscall_32+0x32/0x80
[  201.618706][T10592]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  201.620639][T10592] RIP: 0023:0xf7ff6579
[  201.621857][T10592] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  201.627320][T10592] RSP: 002b:00000000f51665b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  201.629529][T10592] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5166620
[  201.631605][T10592] RDX: 000000000000000f RSI: 00000000f747bff4 RDI: 0000000000000000
[  201.633668][T10592] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  201.636016][T10592] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  201.638432][T10592] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  201.640794][T10592]  </TASK>
[  201.675826][   T25] usb 5-1: device descriptor read/64, error -71
[  201.910806][   T25] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  201.918358][T10600] blktrace: Concurrent blktraces are not allowed on sg0
[  202.040900][   T25] usb 5-1: device descriptor read/64, error -71
[  202.105746][T10603] FAULT_INJECTION: forcing a failure.
[  202.105746][T10603] name failslab, interval 1, probability 0, space 0, times 0
[  202.110533][T10603] CPU: 3 UID: 0 PID: 10603 Comm: syz.1.1166 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  202.114051][T10603] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  202.117700][T10603] Call Trace:
[  202.119111][T10603]  <TASK>
[  202.120413][T10603]  dump_stack_lvl+0x16c/0x1f0
[  202.122205][T10603]  should_fail_ex+0x497/0x5b0
[  202.123878][T10603]  ? fs_reclaim_acquire+0xae/0x150
[  202.125776][T10603]  should_failslab+0xc2/0x120
[  202.127436][T10603]  __kmalloc_node_noprof+0xd1/0x520
[  202.128901][T10603]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  202.130435][T10603]  __kvmalloc_node_noprof+0xad/0x1a0
[  202.131922][T10603]  seq_read_iter+0x82a/0x12b0
[  202.133238][T10603]  ? __pfx_aa_file_perm+0x10/0x10
[  202.134738][T10603]  seq_read+0x39f/0x4e0
[  202.135855][T10603]  ? __pfx_seq_read+0x10/0x10
[  202.137209][T10603]  ? import_ubuf+0x1b6/0x220
[  202.138541][T10603]  ? __import_iovec+0x1f2/0x6d0
[  202.140022][T10603]  ? __pfx_seq_read+0x10/0x10
[  202.141345][T10603]  vfs_readv+0x6bf/0x890
[  202.142445][T10603]  ? __pfx___lock_acquire+0x10/0x10
[  202.144068][T10603]  ? find_held_lock+0x2d/0x110
[  202.145359][T10603]  ? __pfx_vfs_readv+0x10/0x10
[  202.146681][T10603]  ? __fget_files+0x1fc/0x3a0
[  202.148102][T10603]  ? __pfx_lock_release+0x10/0x10
[  202.149574][T10603]  ? __fget_files+0x206/0x3a0
[  202.150915][T10603]  ? do_preadv+0x1b1/0x270
[  202.152283][T10603]  do_preadv+0x1b1/0x270
[  202.153385][T10603]  ? __pfx_do_preadv+0x10/0x10
[  202.154659][T10603]  __do_fast_syscall_32+0x73/0x120
[  202.155297][   T25] usb usb5-port1: attempt power cycle
[  202.156452][T10603]  do_fast_syscall_32+0x32/0x80
[  202.159595][T10603]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  202.161697][T10603] RIP: 0023:0xf7f61579
[  202.162834][T10603] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  202.168019][T10603] RSP: 002b:00000000f50b557c EFLAGS: 00000292 ORIG_RAX: 000000000000014d
[  202.170261][T10603] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200031c0
[  202.172447][T10603] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  202.174768][T10603] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  202.177124][T10603] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  202.179792][T10603] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  202.181944][T10603]  </TASK>
[  202.500775][   T25] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  202.522124][   T25] usb 5-1: device descriptor read/8, error -71
[  202.761217][   T25] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  202.781305][   T25] usb 5-1: device descriptor read/8, error -71
[  202.891242][   T25] usb usb5-port1: unable to enumerate USB device
[  202.995073][T10651] can0: slcan on ttyS3.
[  203.052513][T10651] can0 (unregistered): slcan off ttyS3.
[  203.084249][T10659] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  203.086470][T10659] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  203.188747][T10662] lo speed is unknown, defaulting to 1000
[  203.493122][T10670] netlink: 'syz.3.1175': attribute type 4 has an invalid length.
[  203.500181][T10670] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  203.540753][   T39] audit: type=1326 audit(1733797350.473:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10673 comm="syz.3.1177" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f97579 code=0x0
[  203.726784][T10682] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1176'.
[  203.998267][T10679] smc: ib device syz0 ibport 1 applied user defined pnetid SYZ1
[  204.062777][T10689] input: syz0 as /devices/virtual/input/input23
[  204.417144][T10702] can0: slcan on ttyS3.
[  204.484771][T10702] can0 (unregistered): slcan off ttyS3.
[  205.175618][T10728] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  205.178443][T10728] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  205.303503][T10733] evm: overlay not supported
[  205.331872][T10731] input: syz0 as /devices/virtual/input/input24
[  205.398597][T10738] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  205.400550][T10738] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  205.404830][T10738] vhci_hcd vhci_hcd.0: Device attached
[  205.414247][T10738] tun0: tun_chr_ioctl cmd 1074025675
[  205.415869][T10738] tun0: persist disabled
[  205.424805][T10738] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1191'.
[  205.571801][T10739] vhci_hcd: connection closed
[  205.573165][   T12] vhci_hcd: stop threads
[  205.576535][   T12] vhci_hcd: release socket
[  205.578376][   T12] vhci_hcd: disconnect device
[  205.583130][   T25] vhci_hcd: vhci_device speed not set
[  206.232708][T10752] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1194'.
[  206.338170][T10760] IPv6: NLM_F_REPLACE set, but no existing node found!
[  206.342604][T10757] program syz.1.1194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  206.413964][T10765] lo speed is unknown, defaulting to 1000
[  206.471338][T10769] input: syz0 as /devices/virtual/input/input25
[  207.786760][T10796] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  207.789440][T10796] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  208.008934][T10799] FAULT_INJECTION: forcing a failure.
[  208.008934][T10799] name failslab, interval 1, probability 0, space 0, times 0
[  208.012697][T10799] CPU: 3 UID: 0 PID: 10799 Comm: syz.2.1207 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  208.015661][T10799] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  208.018459][T10799] Call Trace:
[  208.019360][T10799]  <TASK>
[  208.020587][T10799]  dump_stack_lvl+0x16c/0x1f0
[  208.022280][T10799]  should_fail_ex+0x497/0x5b0
[  208.023704][T10799]  ? fs_reclaim_acquire+0xae/0x150
[  208.025065][T10799]  should_failslab+0xc2/0x120
[  208.026330][T10799]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  208.027986][T10799]  ? __lock_acquire+0xcc5/0x3c40
[  208.029345][T10799]  ? __alloc_skb+0x2b3/0x380
[  208.030611][T10799]  __alloc_skb+0x2b3/0x380
[  208.031801][T10799]  ? __pfx___alloc_skb+0x10/0x10
[  208.033179][T10799]  ? __pfx___lock_acquire+0x10/0x10
[  208.034564][T10799]  ? hlock_class+0x4e/0x130
[  208.035879][T10799]  ? mark_lock+0xb5/0xc60
[  208.037090][T10799]  alloc_skb_with_frags+0xe4/0x850
[  208.038534][T10799]  ? find_held_lock+0x2d/0x110
[  208.040004][T10799]  sock_alloc_send_pskb+0x7f1/0x980
[  208.041698][T10799]  ? hlock_class+0x4e/0x130
[  208.043032][T10799]  ? mark_lock+0xb5/0xc60
[  208.044328][T10799]  ? lock_acquire+0x2f/0xb0
[  208.045619][T10799]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  208.047119][T10799]  ? hlock_class+0x4e/0x130
[  208.048337][T10799]  ? mark_lock+0xb5/0xc60
[  208.049633][T10799]  ? hlock_class+0x4e/0x130
[  208.050918][T10799]  ? hlock_class+0x4e/0x130
[  208.052165][T10799]  ? __pfx_mark_lock+0x10/0x10
[  208.053417][T10799]  __ip_append_data+0x19c7/0x4160
[  208.054867][T10799]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  208.056356][T10799]  ? ip_dst_mtu_maybe_forward.constprop.0+0x274/0x4c0
[  208.058147][T10799]  ? __pfx___ip_append_data+0x10/0x10
[  208.059547][T10799]  ip_make_skb+0x27d/0x300
[  208.060823][T10799]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  208.062325][T10799]  ? __pfx_ip_make_skb+0x10/0x10
[  208.063929][T10799]  ? udp_sendmsg+0x185d/0x29b0
[  208.065948][T10799]  udp_sendmsg+0x185d/0x29b0
[  208.067888][T10799]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  208.069937][T10799]  ? __lock_acquire+0x15a9/0x3c40
[  208.071764][T10799]  ? __pfx_udp_sendmsg+0x10/0x10
[  208.073574][T10799]  ? __pfx___might_resched+0x10/0x10
[  208.075584][T10799]  ? __pfx_udp_sendmsg+0x10/0x10
[  208.077376][T10799]  inet_sendmsg+0x105/0x140
[  208.079028][T10799]  ____sys_sendmsg+0x907/0xb40
[  208.080767][T10799]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.082652][T10799]  ? get_compat_msghdr+0x11b/0x170
[  208.084575][T10799]  ___sys_sendmsg+0x135/0x1e0
[  208.086355][T10799]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.088359][T10799]  ? trace_lock_acquire+0x14e/0x1f0
[  208.090430][T10799]  __sys_sendmmsg+0x2fa/0x420
[  208.092153][T10799]  ? __pfx___sys_sendmmsg+0x10/0x10
[  208.094023][T10799]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  208.096159][T10799]  ? fput+0x67/0x440
[  208.097587][T10799]  ? ksys_write+0x1ba/0x250
[  208.099243][T10799]  ? __pfx_ksys_write+0x10/0x10
[  208.100960][T10799]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  208.102978][T10799]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  208.105346][T10799]  __do_fast_syscall_32+0x73/0x120
[  208.107330][T10799]  do_fast_syscall_32+0x32/0x80
[  208.109352][T10799]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  208.111940][T10799] RIP: 0023:0xf7ff6579
[  208.113461][T10799] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  208.119857][T10799] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  208.122769][T10799] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000c40
[  208.125847][T10799] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  208.129422][T10799] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  208.132592][T10799] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  208.135439][T10799] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  208.138163][T10799]  </TASK>
[  208.364391][T10804] input: syz0 as /devices/virtual/input/input26
[  208.435092][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  208.590908][T10814] random: crng reseeded on system resumption
[  208.614669][T10814] trusted_key: encrypted_key: keyword 'up]ate' not recognized
[  209.911100][T10821] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  210.460961][ T5295] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  211.046719][T10854] input: syz0 as /devices/virtual/input/input27
[  211.124949][T10858] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1223'.
[  211.476109][T10871] netlink: 'syz.3.1227': attribute type 4 has an invalid length.
[  211.781026][ T5983] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  211.890871][ T5985] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[  211.936928][ T5983] usb 8-1: too many configurations: 180, using maximum allowed: 8
[  211.942460][ T5983] usb 8-1: unable to read config index 0 descriptor/start: -61
[  211.945480][ T5983] usb 8-1: can't read configurations, error -61
[  212.043928][ T5985] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  212.047851][ T5985] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  212.052850][ T5985] usb 6-1: New USB device found, idVendor=0b43, idProduct=0003, bcdDevice= 0.00
[  212.056127][ T5985] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.060596][ T5985] usb 6-1: config 0 descriptor??
[  212.080820][ T5983] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  212.261947][T10885] lo speed is unknown, defaulting to 1000
[  212.270467][T10883] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.274456][T10883] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  212.275516][ T5983] usb 8-1: too many configurations: 180, using maximum allowed: 8
[  212.279814][ T5983] usb 8-1: unable to read config index 0 descriptor/start: -61
[  212.281949][ T5983] usb 8-1: can't read configurations, error -61
[  212.284326][ T5983] usb usb8-port1: attempt power cycle
[  212.306946][ T5985] usbhid 6-1:0.0: can't add hid device: -71
[  212.308690][ T5985] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  212.312212][ T5985] usb 6-1: USB disconnect, device number 5
[  212.641172][ T5983] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  212.661718][ T5983] usb 8-1: too many configurations: 180, using maximum allowed: 8
[  212.666966][ T5983] usb 8-1: unable to read config index 0 descriptor/start: -61
[  212.669818][ T5983] usb 8-1: can't read configurations, error -61
[  212.815936][ T5983] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  212.832526][ T5983] usb 8-1: too many configurations: 180, using maximum allowed: 8
[  212.836871][ T5983] usb 8-1: unable to read config index 0 descriptor/start: -61
[  212.839472][ T5983] usb 8-1: can't read configurations, error -61
[  212.842340][ T5983] usb usb8-port1: unable to enumerate USB device
[  213.269175][   T39] audit: type=1326 audit(1733797360.203:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10900 comm="syz.2.1236" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[  214.572051][T10917] lo speed is unknown, defaulting to 1000
[  214.575216][T10897] netfs: Couldn't get user pages (rc=-14)
[  215.368905][T10942] FAULT_INJECTION: forcing a failure.
[  215.368905][T10942] name failslab, interval 1, probability 0, space 0, times 0
[  215.376836][T10942] CPU: 2 UID: 0 PID: 10942 Comm: syz.0.1246 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  215.380508][T10942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  215.383652][T10942] Call Trace:
[  215.384688][T10942]  <TASK>
[  215.385742][T10942]  dump_stack_lvl+0x16c/0x1f0
[  215.387200][T10942]  should_fail_ex+0x497/0x5b0
[  215.388742][T10942]  ? fs_reclaim_acquire+0xae/0x150
[  215.390274][T10942]  should_failslab+0xc2/0x120
[  215.391818][T10942]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  215.393769][T10942]  ? vm_area_dup+0x53/0x300
[  215.395332][T10942]  vm_area_dup+0x53/0x300
[  215.396513][T10942]  __split_vma+0x181/0x1210
[  215.397769][T10942]  ? __pfx___split_vma+0x10/0x10
[  215.399258][T10942]  ? hlock_class+0x4e/0x130
[  215.400588][T10942]  vms_gather_munmap_vmas+0x38b/0x1730
[  215.402194][T10942]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  215.403983][T10942]  ? mas_walk+0x6a6/0x910
[  215.405582][T10942]  __mmap_region+0x31d/0x2670
[  215.407146][T10942]  ? __pfx___mmap_region+0x10/0x10
[  215.408531][T10942]  ? hlock_class+0x4e/0x130
[  215.409777][T10942]  ? mark_lock+0xb5/0xc60
[  215.411183][T10942]  ? __pfx___lock_acquire+0x10/0x10
[  215.412923][T10942]  ? cap_mmap_addr+0x53/0x320
[  215.414302][T10942]  mmap_region+0x127/0x320
[  215.415635][T10942]  do_mmap+0xc00/0xfc0
[  215.416897][T10942]  vm_mmap_pgoff+0x1ba/0x360
[  215.418436][T10942]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  215.420088][T10942]  ? __fget_files+0x206/0x3a0
[  215.422003][T10942]  ksys_mmap_pgoff+0x32c/0x5c0
[  215.424265][T10942]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  215.425837][T10942]  __do_fast_syscall_32+0x73/0x120
[  215.427403][T10942]  do_fast_syscall_32+0x32/0x80
[  215.429316][T10942]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  215.431855][T10942] RIP: 0023:0xf7f90579
[  215.433025][T10942] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  215.438677][T10942] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 00000000000000c0
[  215.441713][T10942] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000400000
[  215.445195][T10942] RDX: 0000000001000002 RSI: 0000000000011012 RDI: 0000000000000004
[  215.448910][T10942] RBP: 0000000000000020 R08: 0000000000000000 R09: 0000000000000000
[  215.452188][T10942] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  215.455293][T10942] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  215.458316][T10942]  </TASK>
[  215.626408][T10944] lo speed is unknown, defaulting to 1000
[  216.278665][T10956] ./file0: Can't lookup blockdev
[  216.497343][T10961] lo speed is unknown, defaulting to 1000
[  217.434263][T10992] =======================================================
[  217.434263][T10992] WARNING: The mand mount option has been deprecated and
[  217.434263][T10992]          and is ignored by this kernel. Remove the mand
[  217.434263][T10992]          option from the mount to silence this warning.
[  217.434263][T10992] =======================================================
[  217.452583][T10992] bio_check_eod: 2 callbacks suppressed
[  217.452596][T10992] syz.2.1258: attempt to access beyond end of device
[  217.452596][T10992] nbd2: rw=0, sector=1, nr_sectors = 1 limit=0
[  217.457559][T10992] VFS: could not find a valid V7 on nbd2.
[  217.850396][T11006] lo speed is unknown, defaulting to 1000
[  217.890798][ T9318] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  218.130825][ T9318] usb 5-1: Using ep0 maxpacket: 8
[  218.140256][ T9318] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  218.143113][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  218.146829][ T9318] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  218.150852][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  218.153726][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  218.166326][T11017] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1264'.
[  218.174270][T11017] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1264'.
[  218.182158][ T9318] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  218.185978][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  218.192799][ T9318] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  218.196166][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  218.199698][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  218.208140][ T9318] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  218.213348][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  218.218325][ T9318] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  218.226973][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  218.233765][ T9318] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  218.248207][ T9318] usb 5-1: string descriptor 0 read error: -22
[  218.252551][ T9318] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  218.256414][ T9318] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  218.309465][ T9318] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  218.662350][T11023] netlink: 'syz.3.1265': attribute type 10 has an invalid length.
[  218.666316][T11023] bond0: (slave wlan1): Opening slave failed
[  218.672772][ T9318] usb 5-1: USB disconnect, device number 11
[  218.847697][T11025] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  219.543044][T11048] lo speed is unknown, defaulting to 1000
[  219.680531][T11058] FAULT_INJECTION: forcing a failure.
[  219.680531][T11058] name failslab, interval 1, probability 0, space 0, times 0
[  219.684100][T11058] CPU: 3 UID: 0 PID: 11058 Comm: syz.0.1275 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  219.686896][T11058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  219.689679][T11058] Call Trace:
[  219.690552][T11058]  <TASK>
[  219.691328][T11058]  dump_stack_lvl+0x16c/0x1f0
[  219.692561][T11058]  should_fail_ex+0x497/0x5b0
[  219.693809][T11058]  ? fs_reclaim_acquire+0xae/0x150
[  219.695139][T11058]  should_failslab+0xc2/0x120
[  219.696362][T11058]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  219.697822][T11058]  ? alloc_empty_file+0x73/0x1e0
[  219.699118][T11058]  alloc_empty_file+0x73/0x1e0
[  219.700374][T11058]  alloc_file_pseudo+0x13d/0x200
[  219.701715][T11058]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  219.703429][T11058]  ? alloc_fd+0x41f/0x760
[  219.704695][T11058]  ? __pfx_lock_release+0x10/0x10
[  219.706048][T11058]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  219.707528][T11058]  __anon_inode_getfile+0x136/0x3c0
[  219.708915][T11058]  ? _raw_spin_unlock+0x28/0x50
[  219.710218][T11058]  ? __pfx___anon_inode_getfile+0x10/0x10
[  219.711677][T11058]  anon_inode_getfd+0x52/0xb0
[  219.712828][T11058]  map_create+0xd6b/0x1f20
[  219.713938][T11058]  ? __pfx_lock_release+0x10/0x10
[  219.715175][T11058]  ? trace_lock_acquire+0x14e/0x1f0
[  219.716456][T11058]  ? __pfx_map_create+0x10/0x10
[  219.717669][T11058]  ? lock_acquire+0x2f/0xb0
[  219.718772][T11058]  ? __might_fault+0xe3/0x190
[  219.719946][T11058]  ? __might_fault+0xe3/0x190
[  219.721192][T11058]  __sys_bpf+0x4f58/0x57a0
[  219.722355][T11058]  ? __pfx_lock_release+0x10/0x10
[  219.723597][T11058]  ? __pfx___sys_bpf+0x10/0x10
[  219.724816][T11058]  ? vfs_write+0x306/0x1150
[  219.725997][T11058]  ? __mutex_unlock_slowpath+0x164/0x690
[  219.727467][T11058]  ? fput+0x67/0x440
[  219.728508][T11058]  ? ksys_write+0x1ba/0x250
[  219.729724][T11058]  ? __pfx_ksys_write+0x10/0x10
[  219.730964][T11058]  __ia32_sys_bpf+0x76/0xe0
[  219.732115][T11058]  __do_fast_syscall_32+0x73/0x120
[  219.733407][T11058]  do_fast_syscall_32+0x32/0x80
[  219.734619][T11058]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  219.736179][T11058] RIP: 0023:0xf7f90579
[  219.737199][T11058] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  219.742076][T11058] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  219.744269][T11058] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200009c0
[  219.746246][T11058] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  219.748254][T11058] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  219.750228][T11058] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  219.752191][T11058] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  219.754192][T11058]  </TASK>
[  220.150848][T11075] ------------[ cut here ]------------
[  220.153193][T11075] WARNING: CPU: 3 PID: 11075 at net/core/skbuff.c:1216 sk_skb_reason_drop+0x97/0x1a0
[  220.156174][T11075] Modules linked in:
[  220.157542][T11075] CPU: 3 UID: 0 PID: 11075 Comm: syz.3.1280 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  220.162486][T11075] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.165431][T11075] RIP: 0010:sk_skb_reason_drop+0x97/0x1a0
[  220.167048][T11075] Code: 5d 41 5c 41 5d 41 5e e9 97 c4 a0 f8 e8 92 c4 a0 f8 31 ff 44 89 e6 e8 c8 c6 a0 f8 45 85 e4 0f 85 b2 00 00 00 e8 7a c4 a0 f8 90 <0f> 0b 90 e8 71 c4 a0 f8 44 89 e6 bf 01 00 00 00 e8 a4 c6 a0 f8 41
[  220.173118][T11075] RSP: 0018:ffffc90007d67228 EFLAGS: 00010287
[  220.174894][T11075] RAX: 0000000000008ca5 RBX: ffff88804b81d180 RCX: ffffc9000c8b3000
[  220.177517][T11075] RDX: 0000000000080000 RSI: ffffffff88f87976 RDI: 0000000000000007
[  220.181000][T11075] RBP: 000000000000ffff R08: 0000000000000007 R09: 0000000000000003
[  220.183307][T11075] R10: 000000000000ffff R11: 0000000000000002 R12: 00000000ffffffea
[  220.185521][T11075] R13: 0000000000000000 R14: ffff88804b81d264 R15: ffff88804b81d1d8
[  220.187659][T11075] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000f5106b40
[  220.190389][T11075] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  220.192313][T11075] CR2: 0000000000000000 CR3: 000000006efc4000 CR4: 0000000000352ef0
[  220.194567][T11075] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  220.196797][T11075] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  220.199873][T11075] Call Trace:
[  220.201279][T11075]  <TASK>
[  220.202501][T11075]  ? __warn+0xea/0x3c0
[  220.203868][T11075]  ? sk_skb_reason_drop+0x97/0x1a0
[  220.205330][T11075]  ? report_bug+0x3c0/0x580
[  220.206830][T11075]  ? handle_bug+0x54/0xa0
[  220.208188][T11075]  ? exc_invalid_op+0x17/0x50
[  220.209767][T11075]  ? asm_exc_invalid_op+0x1a/0x20
[  220.211482][T11075]  ? sk_skb_reason_drop+0x96/0x1a0
[  220.213113][T11075]  ? sk_skb_reason_drop+0x97/0x1a0
[  220.214679][T11075]  ? sk_skb_reason_drop+0x96/0x1a0
[  220.216196][T11075]  ip_rcv_finish_core.constprop.0+0x11d2/0x2290
[  220.217949][T11075]  ip_list_rcv_finish.constprop.0+0x1be/0x720
[  220.219837][T11075]  ? __pfx_ip_list_rcv_finish.constprop.0+0x10/0x10
[  220.221954][T11075]  ? __pfx_ip_rcv_finish+0x10/0x10
[  220.223848][T11075]  ip_list_rcv+0x339/0x450
[  220.225427][T11075]  ? __pfx_ip_list_rcv+0x10/0x10
[  220.226868][T11075]  ? __pfx___lock_acquire+0x10/0x10
[  220.228337][T11075]  ? __pfx_ip_list_rcv+0x10/0x10
[  220.229896][T11075]  __netif_receive_skb_list_core+0x755/0x950
[  220.231712][T11075]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  220.233529][T11075]  ? rcu_is_watching+0x12/0xc0
[  220.234923][T11075]  ? ktime_get_with_offset+0x273/0x3a0
[  220.236463][T11075]  ? lockdep_hardirqs_on+0x7c/0x110
[  220.237975][T11075]  ? lock_acquire+0x2f/0xb0
[  220.239362][T11075]  ? netif_receive_skb_list_internal+0x359/0xdb0
[  220.241250][T11075]  netif_receive_skb_list_internal+0x753/0xdb0
[  220.243010][T11075]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  220.244842][T11075]  ? __pfx_eth_type_trans+0x10/0x10
[  220.246380][T11075]  ? __build_skb_around+0x278/0x3b0
[  220.247961][T11075]  netif_receive_skb_list+0x4d/0x4b0
[  220.249526][T11075]  xdp_test_run_batch.constprop.0+0x1710/0x1d70
[  220.251322][T11075]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[  220.253187][T11075]  ? __pfx_lock_release+0x10/0x10
[  220.254650][T11075]  ? trace_lock_acquire+0x14e/0x1f0
[  220.256156][T11075]  ? read_tsc+0x9/0x20
[  220.257313][T11075]  ? ktime_get+0x1ac/0x300
[  220.258660][T11075]  bpf_test_run_xdp_live+0x365/0x500
[  220.260177][T11075]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  220.261891][T11075]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  220.263603][T11075]  ? __pfx_lock_release+0x10/0x10
[  220.265051][T11075]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  220.266743][T11075]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  220.268468][T11075]  ? 0xffffffffa00045c0
[  220.269730][T11075]  ? 0xffffffffa00045c0
[  220.271032][T11075]  ? 0xffffffffa00045c0
[  220.272222][T11075]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  220.274037][T11075]  bpf_prog_test_run_xdp+0x827/0x1580
[  220.275521][T11075]  ? lock_acquire+0x2f/0xb0
[  220.276805][T11075]  ? __fget_files+0x40/0x3a0
[  220.278184][T11075]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  220.279804][T11075]  ? __fget_files+0x206/0x3a0
[  220.281260][T11075]  ? fput+0x67/0x440
[  220.282517][T11075]  ? __bpf_prog_get+0xa0/0x290
[  220.283865][T11075]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  220.285537][T11075]  __sys_bpf+0x1921/0x57a0
[  220.286835][T11075]  ? __pfx_futex_wake+0x10/0x10
[  220.288221][T11075]  ? __pfx___sys_bpf+0x10/0x10
[  220.289589][T11075]  ? vfs_write+0x80f/0x1150
[  220.290994][T11075]  ? vfs_write+0x306/0x1150
[  220.292271][T11075]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  220.293840][T11075]  ? do_futex+0x123/0x350
[  220.295160][T11075]  ? __pfx_do_futex+0x10/0x10
[  220.296551][T11075]  ? xfd_validate_state+0x5d/0x180
[  220.298071][T11075]  ? rcu_is_watching+0x12/0xc0
[  220.299449][T11075]  __ia32_sys_bpf+0x76/0xe0
[  220.300766][T11075]  __do_fast_syscall_32+0x73/0x120
[  220.302216][T11075]  do_fast_syscall_32+0x32/0x80
[  220.303649][T11075]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.305432][T11075] RIP: 0023:0xf7f97579
[  220.306629][T11075] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.311947][T11075] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  220.314277][T11075] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000600
[  220.316471][T11075] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  220.318632][T11075] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.320882][T11075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  220.323164][T11075] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.325413][T11075]  </TASK>
[  220.326372][T11075] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  220.328348][T11075] CPU: 3 UID: 0 PID: 11075 Comm: syz.3.1280 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  220.331211][T11075] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.334042][T11075] Call Trace:
[  220.334954][T11075]  <TASK>
[  220.335761][T11075]  dump_stack_lvl+0x3d/0x1f0
[  220.336999][T11075]  panic+0x71d/0x800
[  220.338237][T11075]  ? __pfx_panic+0x10/0x10
[  220.339429][T11075]  ? show_trace_log_lvl+0x29d/0x3d0
[  220.340956][T11075]  ? sk_skb_reason_drop+0x97/0x1a0
[  220.342608][T11075]  check_panic_on_warn+0xab/0xb0
[  220.343972][T11075]  __warn+0xf6/0x3c0
[  220.345048][T11075]  ? sk_skb_reason_drop+0x97/0x1a0
[  220.346488][T11075]  report_bug+0x3c0/0x580
[  220.347742][T11075]  handle_bug+0x54/0xa0
[  220.348886][T11075]  exc_invalid_op+0x17/0x50
[  220.350117][T11075]  asm_exc_invalid_op+0x1a/0x20
[  220.351430][T11075] RIP: 0010:sk_skb_reason_drop+0x97/0x1a0
[  220.352981][T11075] Code: 5d 41 5c 41 5d 41 5e e9 97 c4 a0 f8 e8 92 c4 a0 f8 31 ff 44 89 e6 e8 c8 c6 a0 f8 45 85 e4 0f 85 b2 00 00 00 e8 7a c4 a0 f8 90 <0f> 0b 90 e8 71 c4 a0 f8 44 89 e6 bf 01 00 00 00 e8 a4 c6 a0 f8 41
[  220.358083][T11075] RSP: 0018:ffffc90007d67228 EFLAGS: 00010287
[  220.359680][T11075] RAX: 0000000000008ca5 RBX: ffff88804b81d180 RCX: ffffc9000c8b3000
[  220.361742][T11075] RDX: 0000000000080000 RSI: ffffffff88f87976 RDI: 0000000000000007
[  220.363841][T11075] RBP: 000000000000ffff R08: 0000000000000007 R09: 0000000000000003
[  220.365946][T11075] R10: 000000000000ffff R11: 0000000000000002 R12: 00000000ffffffea
[  220.368105][T11075] R13: 0000000000000000 R14: ffff88804b81d264 R15: ffff88804b81d1d8
[  220.370272][T11075]  ? sk_skb_reason_drop+0x96/0x1a0
[  220.371611][T11075]  ? sk_skb_reason_drop+0x96/0x1a0
[  220.372961][T11075]  ip_rcv_finish_core.constprop.0+0x11d2/0x2290
[  220.374661][T11075]  ip_list_rcv_finish.constprop.0+0x1be/0x720
[  220.376357][T11075]  ? __pfx_ip_list_rcv_finish.constprop.0+0x10/0x10
[  220.378406][T11075]  ? __pfx_ip_rcv_finish+0x10/0x10
[  220.380228][T11075]  ip_list_rcv+0x339/0x450
[  220.381628][T11075]  ? __pfx_ip_list_rcv+0x10/0x10
[  220.383144][T11075]  ? __pfx___lock_acquire+0x10/0x10
[  220.384559][T11075]  ? __pfx_ip_list_rcv+0x10/0x10
[  220.385905][T11075]  __netif_receive_skb_list_core+0x755/0x950
[  220.387548][T11075]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[  220.389305][T11075]  ? rcu_is_watching+0x12/0xc0
[  220.390602][T11075]  ? ktime_get_with_offset+0x273/0x3a0
[  220.392071][T11075]  ? lockdep_hardirqs_on+0x7c/0x110
[  220.393468][T11075]  ? lock_acquire+0x2f/0xb0
[  220.394675][T11075]  ? netif_receive_skb_list_internal+0x359/0xdb0
[  220.396448][T11075]  netif_receive_skb_list_internal+0x753/0xdb0
[  220.398658][T11075]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[  220.401058][T11075]  ? __pfx_eth_type_trans+0x10/0x10
[  220.402749][T11075]  ? __build_skb_around+0x278/0x3b0
[  220.404539][T11075]  netif_receive_skb_list+0x4d/0x4b0
[  220.406474][T11075]  xdp_test_run_batch.constprop.0+0x1710/0x1d70
[  220.408772][T11075]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[  220.410983][T11075]  ? __pfx_lock_release+0x10/0x10
[  220.412885][T11075]  ? trace_lock_acquire+0x14e/0x1f0
[  220.414810][T11075]  ? read_tsc+0x9/0x20
[  220.416302][T11075]  ? ktime_get+0x1ac/0x300
[  220.417944][T11075]  bpf_test_run_xdp_live+0x365/0x500
[  220.419822][T11075]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  220.422169][T11075]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  220.424053][T11075]  ? __pfx_lock_release+0x10/0x10
[  220.425601][T11075]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  220.427673][T11075]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  220.429703][T11075]  ? 0xffffffffa00045c0
[  220.430885][T11075]  ? 0xffffffffa00045c0
[  220.432062][T11075]  ? 0xffffffffa00045c0
[  220.433317][T11075]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  220.435216][T11075]  bpf_prog_test_run_xdp+0x827/0x1580
[  220.436750][T11075]  ? lock_acquire+0x2f/0xb0
[  220.437980][T11075]  ? __fget_files+0x40/0x3a0
[  220.439153][T11075]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  220.440858][T11075]  ? __fget_files+0x206/0x3a0
[  220.442443][T11075]  ? fput+0x67/0x440
[  220.443511][T11075]  ? __bpf_prog_get+0xa0/0x290
[  220.444810][T11075]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  220.446674][T11075]  __sys_bpf+0x1921/0x57a0
[  220.448306][T11075]  ? __pfx_futex_wake+0x10/0x10
[  220.450099][T11075]  ? __pfx___sys_bpf+0x10/0x10
[  220.451974][T11075]  ? vfs_write+0x80f/0x1150
[  220.453656][T11075]  ? vfs_write+0x306/0x1150
[  220.455309][T11075]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  220.457049][T11075]  ? do_futex+0x123/0x350
[  220.458394][T11075]  ? __pfx_do_futex+0x10/0x10
[  220.459767][T11075]  ? xfd_validate_state+0x5d/0x180
[  220.461456][T11075]  ? rcu_is_watching+0x12/0xc0
[  220.462953][T11075]  __ia32_sys_bpf+0x76/0xe0
[  220.464265][T11075]  __do_fast_syscall_32+0x73/0x120
[  220.465947][T11075]  do_fast_syscall_32+0x32/0x80
[  220.467932][T11075]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.470073][T11075] RIP: 0023:0xf7f97579
[  220.471170][T11075] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.476464][T11075] RSP: 002b:00000000f510657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  220.478891][T11075] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000600
[  220.480983][T11075] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  220.483661][T11075] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.485959][T11075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  220.488771][T11075] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.490905][T11075]  </TASK>
[  220.492485][T11075] Kernel Offset: disabled
[  220.493870][T11075] Rebooting in 86400 seconds..

VM DIAGNOSIS:
02:22:47  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffff88802b43ed00 RCX=0000000000000100 RDX=0000000000000001
RSI=0000000000000004 RDI=ffff88802b43ed02 RBP=dffffc0000000000 RSP=ffffffff8da07aa0
R8 =0000000000000001 R9 =ffffed1005687da0 R10=ffff88802b43ed03 R11=0000000000000000
R12=0000000000000000 R13=0000000000007fe0 R14=ffff88802b43fc40 R15=ffffed1005687da0
RIP=ffffffff8b1c6c65 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000761e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000002 RBX=ffff8880685f4a40 RCX=ffffffff88fa46f6 RDX=ffff888022cfa440
RSI=0000000000000000 RDI=0000000000000005 RBP=dffffc0000000000 RSP=ffffc9000629f708
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff8880685f4b28 R13=ffff8880219cc280 R14=0000000000000000 R15=ffffc9000629f898
RIP=ffffffff81993df0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000761e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=1ffff92001caeed6 RCX=ffff88806af0a474 RDX=ffffed100d5e148e
RSI=ffffffff8bb15660 RDI=ffff88802b53ed40 RBP=0000000000000010 RSP=ffffc9000e577688
R8 =0000000000000000 R9 =ffffed100d5e150e R10=ffff88806af0a877 R11=0000000000000002
R12=ffff88806af0a454 R13=ffff88806af0ae40 R14=ffff88806af0a440 R15=0000000000000007
RIP=ffffffff816a0fca RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000043788000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000079 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85142bd5 RDI=ffffffff9a662300 RBP=ffffffff9a6622c0 RSP=ffffc90007d66b88
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000006
R12=0000000000000000 R13=0000000000000079 R14=ffffffff85142b70 R15=0000000000000000
RIP=ffffffff85142bff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000006efc4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000