last executing test programs:

7.071939586s ago: executing program 3 (id=1901):
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
syz_usb_connect$hid(0xf63067478e218e8, 0x36, &(0x7f00000000c0)=ANY=[], 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x30, 0x0, 0x0, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}]}, 0x30}}, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="580000000002000000000000000000000000000010000180f7000280050001000000000030"], 0x58}}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900030073797a32000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a300000000028000480240001800b0001007470726f787900001400028008000240000006000800014000000002"], 0xc4}}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x14c}}, 0x0)
sendmsg$kcm(r3, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
recvmsg$kcm(r3, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00'})
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000440)=ANY=[@ANYBLOB="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"])
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000300)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x1, 0x0, 0xa, 0x0, 0x101}, 0x20)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000100), &(0x7f0000000140)=0xc)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x32d}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000140)={0x64, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5}, @IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x64}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001000070100dd217cbfff43790f000138", @ANYRES32=0x0, @ANYBLOB="000000000080000008001b00000000000500100005"], 0x30}}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4c}, [@IFLA_GROUP={0x8}, @IFLA_OPERSTATE={0x5, 0x10, 0x6}]}, 0x30}, 0x1, 0xffffa888}, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(r1, 0x0, 0x81, &(0x7f0000000180)={'filter\x00', 0x0, 0x3, 0x5e, [0x1, 0x101, 0xe, 0x4783, 0x7, 0xf], 0x2, &(0x7f0000000000)=[{}, {}], &(0x7f0000000100)=""/94}, &(0x7f0000000080)=0x78)
sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000000000008000000000c0900001417038008000500ac141400080001"], 0x28}}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)

6.099817648s ago: executing program 3 (id=1911):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="64000000020605000000000000000009725f3ea1000000000115000300686173683a69702c706f72742c7b6574000000000900020073797a32000000000500040000000000140007800800124000000000050015000300000005000500020000000500010006000000"], 0x64}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r2 = socket$netlink(0x10, 0x3, 0x4)
write(r2, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
r3 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
read$alg(r3, &(0x7f0000000080)=""/16, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b702000014000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c03406910927c6b0b55b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfe79578e51bc53099e90f4580d760551b5b342f7cbdb9cd38bdb2209c676b2ac2deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f132020000002cbe7bc04b82d2789cb1b2b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c41146dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a42b359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780c70014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e506d1387b63112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece08ac772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2ef0ae4f390a8337841cef386e22cc22ee17476d738952229682e24b92513ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a3f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099bdae7ed04935c2c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adeb988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ffa3c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe4a3ced846891180604b6dd2499d16d7d9158ffffff069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb0814040000007874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dbae3428d2129ecfce1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296c6a298c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aa38c41a86fd19d8dc6245a1bbee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f050000000000000026049fe86e09623524f390bf79b441b75fc790c58e273cd905deb28c13c10b1c0d9cae846b03008cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f885cc48f97496079654f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b4749c28eb5167e9936ed327fb237a56224e49d9ea956d1798571b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecf743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be182724d95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd0403a099f32468f1561f058960d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b656dc0e32384f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bbe3e8ef76f57a2d0e69115d33394e86e4b83c0f3c2a34635f3eee4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cd082027c641ec4355eb4acff90756d1a1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8cc3fe28bc3586844f5fecb92aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a5906002fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128ab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0afd9ae134400f70b5e6aefb7eee403502732df858a2ea033b6c91c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80ffb8f386bb79f5589829b6b0679b5d65a00000000000000e6ff00000000000000000000faff0000bab50bc8508a9644d3e7c328b0ff22035c8073f8c1f0e3da7339fc81d4ab3ef2857ef70a81d8a1628da28c942571880e22df7cabae56d5ff5e483c9c1f5a258b8f1f34cc300312f76a374a6e9b3f9dbd7f538a80b00f97e47895b3201c5126feca0888956a7d768198d9c2109ac508a47ebb99c539ef45af7d87b308117a9e321a3861bc42cf41942c31268a4020221d7b1622585094eddd83c7f4acdd7f5c23d8b730bf03118261edada8b8487a3b1b7548a4687a91f12bf70bb1df3bfe7d4b92ad6fcbf401efd6eb004cf20016ad8d1dad136dd856ffca238b39482811f9c8524bf182f1956a3d044423927df28880bbd11c06407220df8e1d1d483d947d990dc175803d765ca14a915a0040b641959ad3e776b4bb4852fea12983dc18b7404914a6137dc4a78f1e0d331c60a9019c21698cd18753491df962f496f2395563e9c3d7b1228d0e488cf7e50a29541aa757f2e2ee9ff4433d65db0de5a123d569e39dce481156cbec"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x40, @void, @value}, 0x90)
r4 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_aout(r5, &(0x7f00000010c0)=ANY=[], 0x1a3)
write$binfmt_misc(r5, &(0x7f0000000140), 0xff79)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f00000002c0)={r5, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})
recvmmsg(r3, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x10000, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102370, 0x18fe2}], 0x1, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r7, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x4, 0x10, 0x5, 0x9, 0x9, 0x0, 0xfebc})
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000e80)='afs_make_fs_call1\x00', r8, 0x0, 0x6b5}, 0x18)
r9 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r9, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x0, @private}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000007"], 0x18}, 0x0)
mkdir(&(0x7f00000003c0)='./file1\x00', 0xc6)

5.827356094s ago: executing program 0 (id=1913):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x20, 0x14, 0x509, 0x0, 0x0, {0x2, 0x1f, 0x0, 0x0, r1}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
pipe(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000), 0xfffffecc)
splice(r2, 0x0, r4, 0x0, 0x8001, 0x0) (fail_nth: 12)

5.379999711s ago: executing program 2 (id=1915):
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x0, 0x0, @buffer={0x2, 0x0, 0x0}, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fcntl$getownex(r1, 0x10, &(0x7f00000003c0))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
write$binfmt_script(0xffffffffffffffff, 0x0, 0xfffffe5d)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r4}, 0x10)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x8000002, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
fchdir(r4)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x22004001, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
socket(0x2000000000000021, 0x2, 0x10000000000002)
r5 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0xec, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}]}}, @TCA_STAB={0x48, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x1, 0x5, 0x0, 0x2, 0x0, 0x2baf1e3f, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5}}, {0x4}}]}]}, 0xec}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[], 0x0)
syz_emit_ethernet(0x1de, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x1a8, 0x0, 0x0, @dev, @mcast2, {[], "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"}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r3}, 0x10)
setitimer(0x0, 0x0, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8b30, &(0x7f0000000040)={'wlan0\x00'})

5.215653554s ago: executing program 2 (id=1917):
mremap(&(0x7f0000ffe000/0x1000)=nil, 0xffffdf004002, 0xffffdf004000, 0x2000000, &(0x7f0000ffc000/0x1000)=nil)

5.213540974s ago: executing program 3 (id=1919):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_OCB(r1, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x44, r2, 0x4, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x125}]}, 0x44}, 0x1, 0x0, 0x0, 0x4048052}, 0x8086)
prctl$PR_SET_MM_MAP(0x41, 0x3, 0x0, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r3, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
munmap(&(0x7f0000800000/0x800000)=nil, 0x800002)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x7fa962bfffff, 0x13012, r3, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x17}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x10)
r4 = socket$kcm(0x2, 0x3, 0x106)
syz_usb_connect$hid(0x3, 0x3f, &(0x7f0000000100)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x56a, 0x303, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x9, 0xa0, 0x8, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x3, 0x1, 0x2, 0xad, {0x9, 0x21, 0x6a3, 0x1, 0x1, {0x22, 0xd67}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x2, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x40, 0x9, 0xad}}]}}}]}}]}}, &(0x7f0000000500)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x0, 0x3, 0x93, 0x6, 0x20, 0x6}, 0xf, &(0x7f0000000180)={0x5, 0xf, 0xf, 0x2, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0x1, 0x6, 0x9f}, @ptm_cap={0x3}]}, 0x7, [{0x62, &(0x7f0000000240)=@string={0x62, 0x3, "70bcb372a9b0062b9e835fd0c511ed4fad05d7816e7ad41ea91c8389f5998dd2ec4b39c50daec10d0548d2864a5009e60785024b1873c6811d1d90582d8f572a047ca1cb494ad896ad86422615bc6730a60e09ae356ebb2cde36ed38e8bdbad2"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x41f}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x180a}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x3a0fa7e582d842f1}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x1407}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x402}}, {0x7b, &(0x7f0000000480)=@string={0x7b, 0x3, "d5e8b314900e4cc49f121d208a9ae8354c28845e83f5b2bf6ab74ab11595c3a256572afbbb00940f50a4c911bcaba8037f449249ff18b523d15519f997e1e865921507cc18778c0b039b114142a4090a2467c5c5ff7cba7ac4b7b6c621e4a024664678ebc7999fed77c08c5da9b50769d1d90e27977c19e1bf"}}]})
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00002)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r5, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$inet(r4, &(0x7f0000000340)={&(0x7f0000000380)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000080)="b5fa4fc56eb4d42dbbf6c41786780df56e5be707", 0x14}], 0x1}, 0x0)

5.150150153s ago: executing program 2 (id=1920):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1e2) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1e2)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2081, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
r0 = openat$autofs(0xffffff9c, &(0x7f0000000240), 0x48000, 0x0)
accept4$rose(0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x80800) (async)
r1 = accept4$rose(0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x80800)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000340)={{0x1, 0x1, 0x18, r1, {0x800}}, './file0\x00'})
chdir(&(0x7f0000000280)='./file0\x00')
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb, [{}, {}, {}, {}, {}, {}, {}, {0x0, 0x4}]}}) (async)
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb, [{}, {}, {}, {}, {}, {}, {}, {0x0, 0x4}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
userfaultfd(0x801) (async)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r4, 0xc028aa05, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
gettid() (async)
gettid()
syz_open_procfs(0x0, &(0x7f0000000680)='net/mcfilter\x00') (async)
r5 = syz_open_procfs(0x0, &(0x7f0000000680)='net/mcfilter\x00')
preadv(r5, &(0x7f0000000100)=[{&(0x7f0000002840)=""/4096, 0x1000}], 0x1, 0x0, 0x0)
fchdir(r2) (async)
fchdir(r2)
r6 = fcntl$dupfd(r2, 0x406, r2)
r7 = openat$cgroup_ro(r6, &(0x7f0000000080)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000066c0)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x111, 0x5}}, 0x20)
openat$udambuf(0xffffff9c, &(0x7f0000000040), 0x2)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r7, &(0x7f0000006700)={0x10, 0x30, 0xfa00, {0x0, 0x4, {0xa, 0x4e23, 0xd8, @dev={0xfe, 0x80, '\x00', 0x1e}, 0x8}}}, 0x38)

4.940157123s ago: executing program 0 (id=1922):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xffff, 0x0, "4ae23ae17df2e98c69ba36c4095c911abad88f"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x36)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000002c0), 0x2200800, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r2 = open(&(0x7f0000000000)='./bus\x00', 0x105c42, 0x5)
write$binfmt_script(r2, 0x0, 0xffffff3c)
fsetxattr$security_ima(r0, &(0x7f00000012c0), &(0x7f0000001300)=@v2={0x3, 0x2, 0x10, 0x4, 0x4, "74828ff1"}, 0xd, 0x1)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
write(r3, &(0x7f0000000040)="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", 0x1000)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r3, 0x40186f40, 0x20000502)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xd)
r5 = dup(r4)
r6 = syz_io_uring_setup(0x5169, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r7=>0x0)
syz_io_uring_setup(0x145f, &(0x7f0000000280), &(0x7f0000000140)=<r8=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r8, r7, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
ioctl$VIDIOC_ENUM_DV_TIMINGS(r5, 0xc0945662, &(0x7f0000000380)={0x9, 0x0, '\x00', {0x0, @reserved}})
io_uring_enter(r6, 0x5089, 0x0, 0x0, 0x0, 0x0)
read$FUSE(r5, 0x0, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080))
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000f00)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r9, 0x40046205, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r10 = syz_open_dev$sg(&(0x7f0000000040), 0x1, 0x8242)
r11 = fcntl$dupfd(r10, 0x0, r10)
write$sndseq(r11, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time={0x0, 0x1002}, {}, {}, @raw8={"13a6e1fefa8c7d0d9a12351e"}}], 0x38)

4.519979088s ago: executing program 1 (id=1923):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x20, 0x1, 0x1c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000580], 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="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"]}, 0x218)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='rxrpc_rx_abort\x00'}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x4040083)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r3 = syz_io_uring_setup(0x71d3, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={'nicvf0\x00', 0x3666b165f8ff1357})
ioctl$TUNGETVNETLE(r4, 0x400454de, &(0x7f0000001940))
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000045c0)={0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f0000004640)={0xf8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
openat$sndtimer(0xffffff9c, &(0x7f0000000380), 0x80000)
splice(r5, 0x0, r6, 0x0, 0xf3a, 0x0)
r7 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0xffffffffffffffc3)
ioctl$sock_kcm_SIOCKCMCLONE(r7, 0x8916, &(0x7f0000000000))
mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000b, 0x8012, r2, 0x0)

4.518366115s ago: executing program 0 (id=1924):
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r0, &(0x7f0000000180))
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}], {0x14}}, 0x64}}, 0x0)
r2 = timerfd_create(0x9, 0x80000)
timerfd_gettime(r2, &(0x7f0000000000))

4.336128005s ago: executing program 0 (id=1925):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) (async)
r2 = openat$vim2m(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000080)=<r3=>0xffffffffffffffff)
ioctl$vim2m_VIDIOC_QUERYBUF(r2, 0xc04c5609, &(0x7f0000000180)=@multiplanar_mmap={0x9, 0x1, 0x4, 0x0, 0x3ff, {0x77359400}, {0x4, 0x1, 0xd, 0x5, 0x2, 0xff, "47fa91df"}, 0x6, 0x1, {&(0x7f0000000100)=[{0x7, 0x1, {0x80000001}, 0xfffffffd}, {0xb6be, 0x9, {0x10000}, 0x3}]}, 0x2, 0x0, r3})
r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_X86_SET_MCE(r5, 0x4040ae9e, &(0x7f0000000380)={0xa400000000000000})
r6 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000400), 0x695df953a780185e, 0x0) (async)
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r7, 0x29, 0x36, &(0x7f00000000c0)=ANY=[], 0x8)
r8 = dup2(r6, r6)
readv(r8, &(0x7f00000000c0)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1) (async)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a31000000005c000000060a010400000000000000000100080008000b400000000034000480300001800e000100696d6d6564696174650000001c0002800800014000000000100002800c00028008000180fffffffc0900010073797a3000000000140000001100010000000000000000000000000a"], 0xd0}}, 0x40) (async)
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r9, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r9, &(0x7f0000006380)={0x2020, 0x0, <r10=>0x0}, 0x2020)
write$FUSE_INIT(r9, &(0x7f0000000100)={0x50, 0x0, r10, {0x7, 0x1f, 0x0, 0x8000}}, 0x50) (async)
write$FUSE_INIT(r8, &(0x7f0000000200)={0x50, 0x0, r10, {0x7, 0x28, 0x6, 0x0, 0x5, 0x1, 0x1ff, 0x6b}}, 0x50)

4.180350124s ago: executing program 0 (id=1926):
io_submit(0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20041, 0x0)
write$binfmt_aout(r0, &(0x7f0000001000)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'ipvlan0\x00', &(0x7f0000000140)=@ethtool_link_settings={0x4c, 0x0, 0x89, 0x40, 0x38, 0x0, 0x0, 0x6, 0xa, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4d26]}})
prlimit64(0x0, 0x2, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000ac0)={0x6, 0x29, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000ff010000000000000500000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000008520000004000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300007e0000008500000006000000186500000700000000000000060000008520000001000000774c0400fcffffffb7080000000000007b8af8ff00000000b7080000060000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000bf91000000000000b702005a7e4482e1b9ba8cd00d5994e57d272d000100000085000000840000a03eee1f53ab2d8600000000000000000098f84ae6abb065913dc77c7e9eff29127c09fe2a694aa38a0df9a6971bf3559c794d21018b32c9abba38508d4d430d9c74a9c72b5d8e6670840c5d6b0ee3807877b836562cc6befa5de90a93b01fee3d5fefbe7eba8aac3946"], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0xea, &(0x7f0000000880)=""/234, 0x41000, 0xc, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000980)={0x2, 0x2}, 0x8, 0x10, &(0x7f00000009c0)={0x1, 0x5, 0x1, 0x7}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000000a00)=[0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000a40)=[{0x5, 0x4, 0xb, 0x5}, {0x3, 0x1, 0x8, 0x1}, {0x4, 0x200003, 0x8000b, 0x3}, {0x4, 0x4, 0xf, 0xd}, {0x0, 0x3, 0x1, 0x9}], 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r3, 0xffffffffffffffff, 0x34, 0x0, @void}, 0x10)
openat$ipvs(0xffffff9c, &(0x7f00000005c0)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$P9_RGETLOCK(r4, &(0x7f00000002c0)=ANY=[], 0x200002e6)
fcntl$setpipe(r4, 0x407, 0x7000000)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x129842, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r6, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_usb_connect(0x6, 0x24, &(0x7f0000000000)=ANY=[], 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
munlock(&(0x7f0000ff5000/0x3000)=nil, 0x3000)
socket$nl_route(0x10, 0x3, 0x0)

2.579904078s ago: executing program 2 (id=1927):
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x0, 0x0, @buffer={0x2, 0x0, 0x0}, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fcntl$getownex(r1, 0x10, &(0x7f00000003c0))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
write$binfmt_script(0xffffffffffffffff, 0x0, 0xfffffe5d)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r4}, 0x10)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x8000002, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
fchdir(r4)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x22004001, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
socket(0x2000000000000021, 0x2, 0x10000000000002)
r5 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0xec, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}]}}, @TCA_STAB={0x48, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x1, 0x5, 0x0, 0x2, 0x0, 0x2baf1e3f, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5}}, {0x4}}]}]}, 0xec}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[], 0x0)
syz_emit_ethernet(0x1de, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x1a8, 0x0, 0x0, @dev, @mcast2, {[], "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"}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r3}, 0x10)
setitimer(0x0, 0x0, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8b30, &(0x7f0000000040)={'wlan0\x00'})

2.576092072s ago: executing program 2 (id=1935):
r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0) (async)
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0) (async)
syz_emit_ethernet(0x66, &(0x7f0000000080)={@broadcast, @random="fdf9a684a51b", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "108f84", 0x30, 0x3a, 0xff, @remote, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @local, [{0x2, 0x3, "562f7ff4783b8db00ba044cb09cf9f635e9aaebd2bc0"}]}}}}}}, 0x0)
syz_usb_connect(0x0, 0xbab, &(0x7f0000000580)={{0x12, 0x1, 0x200, 0x9f, 0x70, 0x5d, 0x10, 0x1b3d, 0x192, 0xb83d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xb99, 0x4, 0x3, 0xa, 0x60, 0x0, [{{0x9, 0x4, 0x71, 0x4, 0x9, 0xcb, 0x35, 0x23, 0x2a, [], [{{0x9, 0x5, 0x0, 0x4, 0x10, 0x7, 0xb0}}, {{0x9, 0x5, 0x80, 0x1, 0x40, 0x8, 0x7, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x86, 0xf0, 0x101}]}}, {{0x9, 0x5, 0xc, 0x0, 0x3ff, 0x7, 0x7f, 0x80}}, {{0x9, 0x5, 0xb, 0x3, 0x200, 0x7, 0x9, 0x10, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x7, 0x4}]}}, {{0x9, 0x5, 0x7, 0x2, 0x20, 0x8, 0x4, 0xf, [@generic={0x72, 0x8, "9c7f828d9c731dfc4b36ef6447032adae7ea85cd292ac32cef2f9b2822b09569b2203d7a200dff9eaa4f48f1523dfa576044d955d26436edfd42cec78837d976ea886979ef8ddda1a64843e2e62658c4abfea80d0c7a4f8baa52398cbe39acf22d0183e99fb71618f3357d9d07b5ebef"}]}}, {{0x9, 0x5, 0x4, 0x4, 0x8, 0x7, 0x80, 0xe, [@generic={0xda, 0xf, "0b36976435cf068e719d11d4325ae7a2cb04198155af24c3efb4ff4270a0e80e8ad3b6496a9d3c6555a75c8e8de44a6c2a573c5bf8a3bf88e607d7344ef250e15c8ff09bf081ee7bf3f86d6e5c71eed89da37517fc138e63aae50acc05b06a26bff6277ea65b1a01ce80c32ecdd7aa429e01b45a88eb675b8021e3724b781e02b8f85f697fde75a9f1f496d8ea075138718709f7b8a5daaa8d78ff7a77a2f47d09b57e6ae310fb362a5be8635fd1a1ec1f8662a26e7eda30ca1f892a346a4b8cdc58f2f273b88616a1ce90efdb5b0001f9a43fc48c21465e"}]}}, {{0x9, 0x5, 0x8, 0x3, 0x8, 0x8, 0x5, 0x0, [@generic={0xd, 0xa, "282c730790d86e31209a06"}]}}, {{0x9, 0x5, 0x9, 0x10, 0x8, 0x8, 0xc1, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x81, 0x9}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0xf5, 0x8}]}}, {{0x9, 0x5, 0x3, 0x10, 0x200, 0xc0, 0x1, 0xfa}}]}}, {{0x9, 0x4, 0x3f, 0xc, 0x6, 0xff, 0x0, 0x0, 0x8, [@cdc_ncm={{0x8, 0x24, 0x6, 0x0, 0x1, "9c9575"}, {0x5, 0x24, 0x0, 0x4}, {0xd, 0x24, 0xf, 0x1, 0x6, 0x7, 0x5, 0x1}, {0x6, 0x24, 0x1a, 0xfb35, 0x10}, [@mbim_extended={0x8, 0x24, 0x1c, 0x7, 0x2, 0x3}, @mbim={0xc, 0x24, 0x1b, 0x2, 0x5, 0x9, 0x7, 0x6, 0x7f}]}, @uac_as], [{{0x9, 0x5, 0x5, 0x70de6d61bb6ddffd, 0x58f, 0x3, 0x0, 0x6}}, {{0x9, 0x5, 0x4, 0x10, 0x40, 0x3, 0x81, 0xa, [@generic={0x77, 0x22, "1f6850ed6d989862ac70e33308795cfb556dd3fdb70b56ac7e99fd39ce61eb0d808debae7c7f0d2d3b6a4079e399388aca738c6c79cc6210c7cc6d61eca4fc86189f9eaafca70872e290022029158605b24798bb7523523ac094a3cd2510fa8111ac72753c6538385ce80ff08cd20832af2737ae7e"}]}}, {{0x9, 0x5, 0xe, 0x10, 0x400, 0x80, 0xb, 0x6}}, {{0x9, 0x5, 0x8, 0x0, 0x20, 0xdf, 0x2, 0x24}}, {{0x9, 0x5, 0xa, 0x4, 0x40, 0xb2, 0x2, 0x80, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x1, 0x5}]}}, {{0x9, 0x5, 0x4, 0x4, 0x3d7, 0x9f, 0xff, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x4, 0xeb}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0xa, 0x6}]}}]}}, {{0x9, 0x4, 0x80, 0x8, 0xf, 0xff, 0x2, 0x35, 0x2, [], [{{0x9, 0x5, 0x1, 0x0, 0x3ff, 0x40, 0x8, 0xff}}, {{0x9, 0x5, 0x9, 0x10, 0x200, 0x7f, 0x2a, 0x5, [@generic={0x99, 0x30, "9f65f14d415144fee155befd76ba7df4d2cd60d93bac41866b5f43cbcc6598d516c5328cd9dfa57e8b2930cb4ea18db0ed7832771fd00de45e6770530a19d91fca05e97ba1786c38228d765fa0f00b0a01263d0af8e966fa13b225eafa922ca935ccff2f58ce82b22eb3da9d4c4cd9530be039a478a876ef49a05feb3bf0281092e345cd6a6937e46407ee08c976b77966c887b4c2bf82"}]}}, {{0x9, 0x5, 0x8, 0x10, 0x400, 0xba, 0x2, 0x43}}, {{0x9, 0x5, 0xd, 0x2, 0x8, 0x1, 0x1, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xa, 0x5}]}}, {{0x9, 0x5, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x81, 0x3f8}]}}, {{0x9, 0x5, 0x3, 0x0, 0x8, 0x32, 0x56, 0x15}}, {{0x9, 0x5, 0xa, 0x0, 0x8, 0xd, 0x0, 0xf, [@generic={0x7b, 0x8, "e50e728967253d022dbfd6bba81d0456d62d417c83ab808a6d81f53ac536814c00eed8ab1d49465f54c177d35d4b0c3981e6c0a93ef353a2a4bf8b9f24f5ad1919e81d84e922adc5ff695c13f99095730b30b690536a8023438a0828face7a1c627e3640c9e0822b2d8ad762e0c6225f77a1ca50ec7a9a195f"}]}}, {{0x9, 0x5, 0xa, 0x8, 0x8, 0x7, 0x7, 0xa3, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xf1}]}}, {{0x9, 0x5, 0x0, 0x0, 0x3ff, 0xd7, 0xc7, 0x6}}, {{0x9, 0x5, 0xc, 0x10, 0x8, 0x10, 0x6, 0x84, [@generic={0xa6, 0xa, "553acc41ba22c147d70c9411eb3ddbb9cd1ac584c24fb8d4c0f671afe15bc9f07e3af29ddb696b1741147d4721a292da529a70b31647609bb9505fb1174f90655b0bc179d6739285b7bcb37d8c8c0099c808f83c1d4538f7d746832379b9d9288fea48ebd0f753c20e0c42bb5e05c2e33989367f539b598bdb298155baafcb1093d4c1bccfa5324d512a66824ab292f3607e5ddfe7ca348b0434d8547bbbfadeb2a18732"}, @uac_iso={0x7, 0x25, 0x1, 0x82, 0x3}]}}, {{0x9, 0x5, 0x5, 0x4, 0x10, 0x5, 0x7d, 0xc2, [@generic={0xa7, 0xd, "5525e4c39231ceab6fb34a6f95f9f1bfdc4cc062f85b2f94f68f80dc0d7190c51a5b744160bc77da9e330514f18155981688b274fbcaa7f9b12c8798d7fb35069fd7776518dc798be0559cc31edeb99d5e7ac7754662924bade845d9b3c83139c14987fa571e036b2b67e2499bda656bc54b42529c5ec37bf85c7d07a4ae084e13c82a6832eb43404ecded76aaa6b2fce0136319e89f81458eb913a40048d61ec15c758244"}, @generic={0xfc, 0x3, "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"}]}}, {{0x9, 0x5, 0xd, 0x0, 0x3ff, 0xf8, 0x1, 0x0, [@generic={0x47, 0x5, "47d86a40a004d5c7ac16c1cfce494b367ef034568772cf134a7cd6c81cb614b6a16341892c2b93eb693a7c9484dbb6c0bb98f3d666fba3862b165425e80bc2141ad93ae51c"}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0xcd, 0x5}]}}, {{0x9, 0x5, 0xe, 0x4, 0x400, 0x66, 0x1, 0x3}}, {{0x9, 0x5, 0xe, 0x1, 0x200, 0x2, 0xdf, 0xc, [@generic={0x34, 0x22, "3f248f86c0d8cfad2920ac8cceb2791ea29b612add3765c1ef8f414b803b6b798cab0c9a1dc1f639c62acd59f93770c9bd1d"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0xc, 0x5}]}}, {{0x9, 0x5, 0x80, 0xc, 0x3ff, 0xc, 0xf, 0x2}}]}}, {{0x9, 0x4, 0x17, 0x8, 0xd, 0xdf, 0x5c, 0xac, 0x3, [@generic={0xa0, 0x1b, "bbc0f6dd31ec1469ea8cb8b3ccc165822f5b14ff788203e6a2add87dc423d66eb8f0340735288c34c9e40c9188e73ad9080d62878332bb976a6a679eaef2d8cabcff78033d804b2cbd16857d493cebf249a23611c89146ad6b5bb6ce5f48891a45e6845339b41a5438cd91d586a07b3062ccf944c5abbc446c1b9268ff1854cf4dec5b1039c1e8c19d8c6a9d146ddd7dedb914486dfe1a0456bf5ec27541"}, @cdc_ecm={{0x8, 0x24, 0x6, 0x0, 0x0, "7ee212"}, {0x5, 0x24, 0x0, 0x3ff}, {0xd, 0x24, 0xf, 0x1, 0x2d801d1, 0x9, 0xc509, 0x5}, [@acm={0x4, 0x24, 0x2, 0x5}]}], [{{0x9, 0x5, 0x84, 0x10, 0x200, 0x1, 0x5, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0xe9, 0x5}]}}, {{0x9, 0x5, 0x3, 0x8, 0x10, 0xff, 0x3, 0x2}}, {{0x9, 0x5, 0xc, 0x10, 0x10, 0x2, 0x5, 0x3, [@generic={0x1b, 0x10, "2116f37d68379307befbd16002541258a2060044995252bd71"}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0xe, 0x3}]}}, {{0x9, 0x5, 0xe, 0xc, 0x400, 0x81, 0x1, 0x0, [@generic={0x48, 0x2, "bc4bb91ef632949633822ee1f66846540df9449e30b3d49274485ab47d098c6e05a6d43819f049c173b48ba45b15e4061f629f22adeb1809866b8f9ec36726a03513901a07ff"}, @generic={0x54, 0x9, "e70f3b1b62ffb991276291934241f21cb734b765602f8698b31ccfc85491bb28eb13bf6f8b4ac7e955912c3ac0b994d644655696fb545bc73d0e4c641089e1e83f5ada53ed9898ef57b0a969be64e4057788"}]}}, {{0x9, 0x5, 0x2, 0x8, 0x0, 0xb, 0x40, 0x38, [@generic={0xef, 0x11, "ffbc1c56385f1f19d3881421628455050cd744d445e4fa034f828f6485919455ff6a053b42319fd610389317352bcb23e21fe1777f87d013a5904ff4649c1de15a9c322c8ba41702877e3ebcaedc1906811baa839a8cdb8b1925d12e05f541429f7a28c6d0da20393c373144180e5f0f9cde1dfea5a4abcc3c371bc895f73f7fd70bc2822af7f571539048629185a98ce6810edd477121e2f5c2795bf37f61e14eae1ee069570e6dc1da54a90d7c9e14e0347fa3f2127fd0fb073aec26cfc8402aa5b1d520982299ec66f8dd013558bccee616c630a5a41f516080d4b3606328fdb295b04ebfc3a5786f59d42f"}, @generic={0x35, 0x22, "4f745f7873b6a7bf230083196dd353bdc16192e8b2cc661d84e24490e3c40d7a2c8e9ec649032c122348cf48df3dbaad569e53"}]}}, {{0x9, 0x5, 0x6, 0x2, 0x200, 0x40, 0x29, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0xf, 0x8}]}}, {{0x9, 0x5, 0x5, 0x0, 0x20, 0x4, 0x5, 0xfc, [@generic={0xb5, 0x24, "aada7ca19f11c4ed4270c730e6b833ccf2e045a96e4340401320bde9fb3e76b013688624df9513b38b824ec862eb41b5c013a8970ccf3cda155e583b8ce5102b4686b123151cc208426ff51886c354b1a17de61f4473915e660492cc510b33283da0eb94fc5a0f39c773f342b70a18b4df3bb4603a65dac3f5bc40f387cd05f37a0ad89edf6de2b07906a4337cf55e6233cf03bd7d9014b42dbdd92768290127b829e306282d5a932ea8a16da6f6b98668f1b4"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x3, 0x4}]}}, {{0x9, 0x5, 0x3, 0xc, 0x200, 0x0, 0xf, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x40, 0xd}]}}, {{0x9, 0x5, 0xc, 0x10, 0x40, 0x7, 0x6}}, {{0x9, 0x5, 0x9, 0x0, 0x40, 0xd2, 0xff, 0x4, [@generic={0x41, 0x7, "7cd2a4208df3be2b6e21eed998afb53bb2113672c714f64800a57ccde94d2682049c1f4981d18a282cfaaaa2b40f53bac6bb11a4da205ddfdb73b5545f82ac"}]}}, {{0x9, 0x5, 0xb, 0x10, 0x200, 0x7, 0x5, 0x7}}, {{0x9, 0x5, 0x8, 0x8, 0x200, 0x0, 0x8, 0x4}}, {{0x9, 0x5, 0x2, 0x0, 0x200, 0x2, 0x8, 0x1}}]}}]}}]}}, &(0x7f0000000300)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x200, 0x6, 0xe2, 0x7, 0x0, 0x2}, 0x8, &(0x7f00000001c0)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x1, [{0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x402}}]}) (async)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/../file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x13}, 0x18) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"/11, @ANYRES32, @ANYBLOB="0000000000000000b702000040420f00b7030000000005008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, @void, @value}, 0x90) (async)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCGETS2(r1, 0x802c542a, &(0x7f0000000040)) (async)
unshare(0x26020600)
socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/timer_list\x00', 0x0, 0x0)
pread64(r2, &(0x7f00000002c0)=""/40, 0x28, 0x4f)

676.624875ms ago: executing program 0 (id=1928):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="64000000020605000000000000000009725f3ea1000000000115000300686173683a69702c706f72742c7b6574000000000900020073797a32000000000500040000000000140007800800124000000000050015000300000005000500020000000500010006000000"], 0x64}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r2 = socket$netlink(0x10, 0x3, 0x4)
write(r2, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
r3 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
read$alg(r3, &(0x7f0000000080)=""/16, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x40, @void, @value}, 0x90)
r4 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_aout(r5, &(0x7f00000010c0)=ANY=[], 0x1a3)
write$binfmt_misc(r5, &(0x7f0000000140), 0xff79)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f00000002c0)={r5, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})
recvmmsg(r3, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x10000, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102370, 0x18fe2}], 0x1, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r7, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x4, 0x10, 0x5, 0x9, 0x9, 0x0, 0xfebc})
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000e80)='afs_make_fs_call1\x00', r8, 0x0, 0x6b5}, 0x18)
r9 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r9, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x0, @private}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000007"], 0x18}, 0x0)
mkdir(&(0x7f00000003c0)='./file1\x00', 0xc6)

676.321555ms ago: executing program 1 (id=1929):
r0 = socket(0x1e, 0x4, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000005c0), 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000380)={0x0, &(0x7f0000000280)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR2(r1, 0xc02464bb, &(0x7f00000003c0)={0x1, r2})
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x5e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r7, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r7, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r7, 0x0)
bind$inet6(r6, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r6, 0x0)
openat$apparmor_thread_current(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000100)={@initdev, @multicast2, <r8=>0x0}, &(0x7f0000000300)=0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, 0x0, r4, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x1}], 0x1}}], 0x1, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000340), r9)
dup3(r3, r0, 0x0)
recvmmsg$unix(r0, &(0x7f00000021c0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000180)=""/92, 0x3514}], 0x1}}], 0x1, 0x0, 0x0)

675.881305ms ago: executing program 2 (id=1930):
socket$alg(0x26, 0x5, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x4004054)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020d0000100000002f3144e8edffffff03000600ff18000002004909000100000000000000001e0e080012000200010000d200000000000030006c540203009f7eae02000000adb20200000000f5"], 0x80}}, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$nl_generic(r2, &(0x7f0000000140)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000003c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="600100002c00000328bd7000fedbdf250800000008007000", @ANYRES32=0x0, @ANYBLOB="08008c00", @ANYRES32=r1, @ANYBLOB="ea338ea33aa1b226e60e5a527a3fa9abc572b45d56e38776a80804f8a4bdfadb4ef5f5c8a1044616e98d962c8f4770c380270a6513053f2d75131a99c47bafefea3de5a71cca828177b6a6c660a0a6abef7fb5c1fc854204e0f7994fc7de18e2fe3ecc41404eb033823299733bfd10163d96a9ecc236a8682f5d064a4be01d5d6ee31f609d7f81f0d35d33e2eff78daaf456b68cf4117a35ef300aa567ac4e47a68d0252780ea631452f6816bc9c39ed736214100710769c517ca8fe33045cf7e00fff21ad3bea71b2397bd893f1b6f52553ed3555e8ae1dc023204359fc26d76cc35418412160b9e384948e647b0daca852c2b22912393a0fca61127712a59116bb8f53a935260a5ebc6caf68c175d5af447a32de257e224f3e99f7369d1ae2d00570fbbc5d4b5b6964b5507d989300000023f5460c5d6fee147fccb2f066b3c81ab6b1b33502bc8f2f18fd5ef6d43a2f472664800ae70687e8863e711a2340c1b80b16f5bd3d63d089cdb8b1b579c1a8ce3d3c7391dc"], 0x160}, 0x1, 0x0, 0x0, 0x8040}, 0x200040d1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb010098000000000000000c0000000cd000000000000000ffffff00000009100000000100855d9ce7de9427ec85459f5589c5a72d2e9f15f2ad922cc0a492f7d0a4dbc95e91305b95eb6d727b3f38e1f1e2b9976c1c33ad27e8f294d07f32d2e7659126934521cd15d928ec25ba60d8504ccfee77625bc25bba5588c959e90b882162f842"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f00000004c0)=ANY=[])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
r5 = fsopen(&(0x7f0000000040)='devpts\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$EVIOCGLED(r6, 0x80404519, &(0x7f0000000180)=""/167)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r8 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r8, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
ioctl$TUNSETLINK(r7, 0x400454cd, 0x313)
syz_fuse_handle_req(r3, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r3, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ccc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6b3f0000f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784753f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a748cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d9f95e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0xa, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
dup(0xffffffffffffffff)

675.702564ms ago: executing program 3 (id=1931):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xffff, 0x0, "4ae23ae17df2e98c69ba36c4095c911abad88f"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x36)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000002c0), 0x2200800, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r2 = open(&(0x7f0000000000)='./bus\x00', 0x105c42, 0x5)
write$binfmt_script(r2, 0x0, 0xffffff3c)
fsetxattr$security_ima(r0, &(0x7f00000012c0), &(0x7f0000001300)=@v2={0x3, 0x2, 0x10, 0x4, 0x4, "74828ff1"}, 0xd, 0x1)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
write(r3, &(0x7f0000000040)="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", 0x1000)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r3, 0x40186f40, 0x20000502)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xd)
r5 = dup(r4)
r6 = syz_io_uring_setup(0x5169, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r7=>0x0)
syz_io_uring_setup(0x145f, &(0x7f0000000280), &(0x7f0000000140)=<r8=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r8, r7, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
ioctl$VIDIOC_ENUM_DV_TIMINGS(r5, 0xc0945662, &(0x7f0000000380)={0x9, 0x0, '\x00', {0x0, @reserved}})
io_uring_enter(r6, 0x5089, 0x0, 0x0, 0x0, 0x0)
read$FUSE(r5, 0x0, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080))
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000f00)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r9, 0x40046205, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r10 = syz_open_dev$sg(&(0x7f0000000040), 0x1, 0x8242)
r11 = fcntl$dupfd(r10, 0x0, r10)
write$sndseq(r11, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time={0x0, 0x1002}, {}, {}, @raw8={"13a6e1fefa8c7d0d9a12351e"}}], 0x38)

530.48446ms ago: executing program 1 (id=1932):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x3f, 0x40, 0x42, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000003c0), &(0x7f0000000080), 0x1003, r0}, 0x38)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
socket(0x8000000010, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_MSRS(r5, 0xc048aeca, &(0x7f0000000580)=ANY=[@ANYRES16=r1])

291.100606ms ago: executing program 3 (id=1933):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x48, 0x10, 0x10, 0x4, [@int={0x3, 0x0, 0x0, 0x1, 0x0, 0x1e, 0x0, 0x1b, 0x2}]}, {0x0, [0x61, 0x30]}}, 0x0, 0x2c, 0x0, 0x1, 0x2, 0x0, @void, @value}, 0x20)

210.448449ms ago: executing program 1 (id=1934):
write$cgroup_type(0xffffffffffffffff, &(0x7f00000021c0), 0x9)
syz_emit_ethernet(0x44e, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r0)
openat$kvm(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000240)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="80f57e6622a7718105080000006ec7e94692704ad6a008ffffffec2b39"], 0x28}, 0x1, 0x0, 0x0, 0x8840}, 0x0)
mremap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/ip_vs\x00')
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r3, &(0x7f0000001000)=[{{&(0x7f00000002c0)={0xa, 0x4e21, 0x8, @loopback, 0xfffffffb}, 0x1c, 0x0, 0x0, &(0x7f0000000780)=[@hoplimit_2292={{0x10, 0x29, 0x8, 0xe6}}], 0x10}}], 0x1, 0x9821)
read$FUSE(r2, &(0x7f00000000c0)={0x2020}, 0x2020)
write$cgroup_int(r2, &(0x7f0000000200)=0x2, 0x12)
connect$phonet_pipe(0xffffffffffffffff, &(0x7f00000001c0)={0x23, 0x4, 0x1, 0x4}, 0x10)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000002100)="384d91a98b99fa85aae38aac368df583be3e1ff23042db7d831a4577c88fe30d8ed0c47c93ba96138f67a80d3518c70b62fb824b28d511238596de2c09bd9720c90883a82c3ef90c953305b5dac4a2b8d0268eba13b868147666c2689e3be40fcc5c5e29f3b5eef27ab63051423a056cd5b0739217b06260f982a81fe2825c9b0c5f2882c365d36aae204d2cd3e358aef781838b9077cdb835a0ecf48fd050a700067b4c9207a5c017d2818d93a0517cb7658e967c62188a67", 0xb9)

149.596797ms ago: executing program 1 (id=1936):
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x0, 0x0, @buffer={0x2, 0x0, 0x0}, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
fcntl$getownex(r1, 0x10, &(0x7f00000003c0))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
write$binfmt_script(0xffffffffffffffff, 0x0, 0xfffffe5d)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r4}, 0x10)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x8000002, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
fchdir(r4)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x22004001, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
socket(0x2000000000000021, 0x2, 0x10000000000002)
r5 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0xec, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}]}}, @TCA_STAB={0x48, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x1, 0x5, 0x0, 0x2, 0x0, 0x2baf1e3f, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5}}, {0x4}}]}]}, 0xec}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[], 0x0)
syz_emit_ethernet(0x1de, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x1a8, 0x0, 0x0, @dev, @mcast2, {[], "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"}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r3}, 0x10)
setitimer(0x0, 0x0, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8b30, &(0x7f0000000040)={'wlan0\x00'})

59.76837ms ago: executing program 3 (id=1937):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x20, 0x1, 0x1c8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000580], 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="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"]}, 0x218)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='rxrpc_rx_abort\x00'}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x4040083)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r3 = syz_io_uring_setup(0x71d3, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={'nicvf0\x00', 0x3666b165f8ff1357})
ioctl$TUNGETVNETLE(r4, 0x400454de, &(0x7f0000001940))
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000045c0)={0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f0000004640)={0xf8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
openat$sndtimer(0xffffff9c, &(0x7f0000000380), 0x80000)
splice(r5, 0x0, r6, 0x0, 0xf3a, 0x0)
r7 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0xffffffffffffffc3)
ioctl$sock_kcm_SIOCKCMCLONE(r7, 0x8916, &(0x7f0000000000))
mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000b, 0x8012, r2, 0x0)

0s ago: executing program 1 (id=1938):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_OCB(r1, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x44, r2, 0x4, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x125}]}, 0x44}, 0x1, 0x0, 0x0, 0x4048052}, 0x8086)
prctl$PR_SET_MM_MAP(0x41, 0x3, 0x0, 0x0)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r3, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
munmap(&(0x7f0000800000/0x800000)=nil, 0x800002)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x7fa962bfffff, 0x13012, r3, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x17}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x10)
r4 = socket$kcm(0x2, 0x3, 0x106)
syz_usb_connect$hid(0x3, 0x3f, &(0x7f0000000100)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x56a, 0x303, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x9, 0xa0, 0x8, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x3, 0x1, 0x2, 0xad, {0x9, 0x21, 0x6a3, 0x1, 0x1, {0x22, 0xd67}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x2, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x40, 0x9, 0xad}}]}}}]}}]}}, &(0x7f0000000500)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x0, 0x3, 0x93, 0x6, 0x20, 0x6}, 0xf, &(0x7f0000000180)={0x5, 0xf, 0xf, 0x2, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0x1, 0x6, 0x9f}, @ptm_cap={0x3}]}, 0x7, [{0x62, &(0x7f0000000240)=@string={0x62, 0x3, "70bcb372a9b0062b9e835fd0c511ed4fad05d7816e7ad41ea91c8389f5998dd2ec4b39c50daec10d0548d2864a5009e60785024b1873c6811d1d90582d8f572a047ca1cb494ad896ad86422615bc6730a60e09ae356ebb2cde36ed38e8bdbad2"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x41f}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x180a}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x3a0fa7e582d842f1}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x1407}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x402}}, {0x7b, &(0x7f0000000480)=@string={0x7b, 0x3, "d5e8b314900e4cc49f121d208a9ae8354c28845e83f5b2bf6ab74ab11595c3a256572afbbb00940f50a4c911bcaba8037f449249ff18b523d15519f997e1e865921507cc18778c0b039b114142a4090a2467c5c5ff7cba7ac4b7b6c621e4a024664678ebc7999fed77c08c5da9b50769d1d90e27977c19e1bf"}}]})
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00002)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r5, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$inet(r4, &(0x7f0000000340)={&(0x7f0000000380)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000080)="b5fa4fc56eb4d42dbbf6c41786780df56e5be707", 0x14}], 0x1}, 0x0)

kernel console output (not intermixed with test programs):

b_control_msg returned -32
[  258.660590][ T5233] usbtmc 6-1:16.0: can't read capabilities
[  259.012083][T10201] usbtmc 6-1:16.0: send_request_dev_dep_msg_in returned -90
[  259.337096][T10204] __nla_validate_parse: 1 callbacks suppressed
[  259.337109][T10204] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1525'.
[  259.413282][T10214] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1525'.
[  260.338392][ T4826] usb 7-1: reset high-speed USB device number 19 using dummy_hcd
[  260.347204][ T4826] usb 7-1: device reset changed ep0 maxpacket size!
[  260.355043][   T25] usb 7-1: USB disconnect, device number 19
[  260.497075][   T25] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  260.589944][T10237] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  260.666966][   T25] usb 7-1: Using ep0 maxpacket: 8
[  260.670967][   T25] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  260.673128][   T25] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  260.675660][   T25] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  260.678333][   T25] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  260.680911][   T25] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  260.684277][   T25] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  260.686621][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.895203][   T25] usb 7-1: usb_control_msg returned -32
[  260.896762][   T25] usbtmc 7-1:16.0: can't read capabilities
[  260.983790][   T25] usb 6-1: USB disconnect, device number 20
[  261.023233][T10241] FAULT_INJECTION: forcing a failure.
[  261.023233][T10241] name failslab, interval 1, probability 0, space 0, times 0
[  261.026648][T10241] CPU: 0 UID: 0 PID: 10241 Comm: syz.1.1537 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  261.029461][T10241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  261.032272][T10241] Call Trace:
[  261.033165][T10241]  <TASK>
[  261.033959][T10241]  dump_stack_lvl+0x16c/0x1f0
[  261.035241][T10241]  should_fail_ex+0x497/0x5b0
[  261.036506][T10241]  ? fs_reclaim_acquire+0xae/0x160
[  261.037872][T10241]  should_failslab+0xc2/0x120
[  261.039132][T10241]  __kmalloc_node_noprof+0xd1/0x440
[  261.040514][T10241]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  261.042018][T10241]  __kvmalloc_node_noprof+0xad/0x1a0
[  261.043441][T10241]  __do_sys_add_key+0x1f8/0x460
[  261.044736][T10241]  ? __pfx___do_sys_add_key+0x10/0x10
[  261.046150][T10241]  ? ksys_write+0x1ad/0x260
[  261.047368][T10241]  __do_fast_syscall_32+0x73/0x120
[  261.048728][T10241]  do_fast_syscall_32+0x32/0x80
[  261.050021][T10241]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  261.051703][T10241] RIP: 0023:0xf747e579
[  261.052790][T10241] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  261.058009][T10241] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 000000000000011e
[  261.060216][T10241] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 0000000000000000
[  261.062295][T10241] RDX: 0000000020000080 RSI: 0000000000000024 RDI: 0000000010812264
[  261.064403][T10241] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  261.066485][T10241] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  261.068583][T10241] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  261.070693][T10241]  </TASK>
[  262.515301][T10279] io-wq is not configured for unbound workers
[  262.606656][T10274] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1547'.
[  263.195808][ T5233] usb 7-1: USB disconnect, device number 20
[  263.224102][T10298] FAULT_INJECTION: forcing a failure.
[  263.224102][T10298] name failslab, interval 1, probability 0, space 0, times 0
[  263.230274][T10298] CPU: 3 UID: 0 PID: 10298 Comm: syz.1.1555 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  263.233122][T10298] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.235930][T10298] Call Trace:
[  263.236824][T10298]  <TASK>
[  263.237619][T10298]  dump_stack_lvl+0x16c/0x1f0
[  263.238876][T10298]  should_fail_ex+0x497/0x5b0
[  263.240130][T10298]  ? fs_reclaim_acquire+0xae/0x160
[  263.241481][T10298]  should_failslab+0xc2/0x120
[  263.242738][T10298]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  263.244152][T10298]  ? __kernfs_new_node+0xd3/0x890
[  263.245486][T10298]  __kernfs_new_node+0xd3/0x890
[  263.246796][T10298]  ? __pfx___kernfs_new_node+0x10/0x10
[  263.248229][T10298]  ? __pfx_lock_release+0x10/0x10
[  263.249568][T10298]  ? kernfs_add_one+0x39d/0x520
[  263.250866][T10298]  ? up_write+0x1b2/0x520
[  263.252012][T10298]  kernfs_new_node+0x186/0x240
[  263.253284][T10298]  __kernfs_create_file+0x53/0x350
[  263.254633][T10298]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  263.256040][T10298]  internal_create_group+0x565/0xe50
[  263.257412][T10298]  ? __pfx_internal_create_group+0x10/0x10
[  263.258958][T10298]  ? sysfs_create_dir_ns+0x14d/0x2b0
[  263.260346][T10298]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  263.261813][T10298]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  263.263263][T10298]  internal_create_groups+0x9d/0x150
[  263.264650][T10298]  kobject_add_internal+0x317/0x990
[  263.266028][T10298]  kobject_init_and_add+0x11c/0x190
[  263.267408][T10298]  ? __pfx_kobject_init_and_add+0x10/0x10
[  263.268898][T10298]  ? __do_fast_syscall_32+0x73/0x120
[  263.270302][T10298]  netdev_queue_update_kobjects+0x29c/0x5b0
[  263.271875][T10298]  netif_set_real_num_tx_queues+0x168/0x880
[  263.273436][T10298]  tun_attach.isra.0+0x6a4/0x17a0
[  263.274784][T10298]  ? trace_lock_acquire+0x14a/0x1d0
[  263.276155][T10298]  __tun_chr_ioctl+0x1ba3/0x4960
[  263.277481][T10298]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  263.278890][T10298]  ? __fget_files+0x244/0x3f0
[  263.280145][T10298]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  263.281644][T10298]  __do_compat_sys_ioctl+0x259/0x2b0
[  263.283036][T10298]  __do_fast_syscall_32+0x73/0x120
[  263.284370][T10298]  do_fast_syscall_32+0x32/0x80
[  263.285661][T10298]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  263.287293][T10298] RIP: 0023:0xf747e579
[  263.288379][T10298] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  263.293385][T10298] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  263.295583][T10298] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400454ca
[  263.297654][T10298] RDX: 0000000020002280 RSI: 0000000000000000 RDI: 0000000000000000
[  263.299738][T10298] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  263.301804][T10298] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  263.303890][T10298] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  263.305985][T10298]  </TASK>
[  263.307944][T10298] kobject: kobject_add_internal failed for tx-1 (error: -12 parent: queues)
[  263.432368][T10313] input: syz1 as /devices/virtual/input/input26
[  263.740276][T10324] FAULT_INJECTION: forcing a failure.
[  263.740276][T10324] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  263.743787][T10324] CPU: 2 UID: 0 PID: 10324 Comm: syz.3.1563 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  263.746613][T10324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.749472][T10324] Call Trace:
[  263.750372][T10324]  <TASK>
[  263.751363][T10324]  dump_stack_lvl+0x16c/0x1f0
[  263.752646][T10324]  should_fail_ex+0x497/0x5b0
[  263.753923][T10324]  _copy_to_user+0x30/0xc0
[  263.755149][T10324]  simple_read_from_buffer+0xd0/0x160
[  263.756593][T10324]  proc_fail_nth_read+0x198/0x270
[  263.757952][T10324]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  263.759448][T10324]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  263.761004][T10324]  vfs_read+0x1ce/0xbd0
[  263.762122][T10324]  ? __fget_files+0x23a/0x3f0
[  263.763403][T10324]  ? fdget_pos+0x24c/0x360
[  263.764605][T10324]  ? __pfx_lock_release+0x10/0x10
[  263.765955][T10324]  ? trace_lock_acquire+0x14a/0x1d0
[  263.767357][T10324]  ? __pfx_vfs_read+0x10/0x10
[  263.768630][T10324]  ? __pfx___mutex_lock+0x10/0x10
[  263.769986][T10324]  ? __fget_files+0x244/0x3f0
[  263.771263][T10324]  ksys_read+0x12f/0x260
[  263.772415][T10324]  ? __pfx_ksys_read+0x10/0x10
[  263.773714][T10324]  __do_fast_syscall_32+0x73/0x120
[  263.775113][T10324]  do_fast_syscall_32+0x32/0x80
[  263.776427][T10324]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  263.778122][T10324] RIP: 0023:0xf7f24579
[  263.779236][T10324] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  263.784362][T10324] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  263.786564][T10324] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f56a6620
[  263.788676][T10324] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000
[  263.790780][T10324] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  263.792887][T10324] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  263.794993][T10324] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  263.797094][T10324]  </TASK>
[  263.831667][T10328] FAULT_INJECTION: forcing a failure.
[  263.831667][T10328] name failslab, interval 1, probability 0, space 0, times 0
[  263.835423][T10328] CPU: 1 UID: 0 PID: 10328 Comm: syz.3.1565 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  263.838363][T10328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.841147][T10328] Call Trace:
[  263.842031][T10328]  <TASK>
[  263.842834][T10328]  dump_stack_lvl+0x16c/0x1f0
[  263.844091][T10328]  should_fail_ex+0x497/0x5b0
[  263.845338][T10328]  ? fs_reclaim_acquire+0xae/0x160
[  263.846700][T10328]  should_failslab+0xc2/0x120
[  263.848009][T10328]  __kmalloc_node_noprof+0xd1/0x440
[  263.849387][T10328]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  263.850834][T10328]  __kvmalloc_node_noprof+0xad/0x1a0
[  263.852224][T10328]  io_uring_setup+0x7bb/0x3730
[  263.853496][T10328]  ? __pfx_io_uring_setup+0x10/0x10
[  263.854872][T10328]  ? __fget_files+0x244/0x3f0
[  263.856108][T10328]  ? ksys_write+0x1ad/0x260
[  263.857300][T10328]  ? __pfx_ksys_write+0x10/0x10
[  263.858581][T10328]  __ia32_sys_io_uring_setup+0x97/0x140
[  263.860028][T10328]  __do_fast_syscall_32+0x73/0x120
[  263.861368][T10328]  do_fast_syscall_32+0x32/0x80
[  263.862661][T10328]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  263.864306][T10328] RIP: 0023:0xf7f24579
[  263.865376][T10328] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  263.870488][T10328] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 00000000000001a9
[  263.872795][T10328] RAX: ffffffffffffffda RBX: 0000000000003055 RCX: 00000000200001c0
[  263.874902][T10328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  263.877660][T10328] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  263.880001][T10328] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  263.882065][T10328] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  263.884207][T10328]  </TASK>
[  264.011433][T10336] FAULT_INJECTION: forcing a failure.
[  264.011433][T10336] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  264.031272][T10336] CPU: 0 UID: 0 PID: 10336 Comm: syz.3.1568 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  264.034136][T10336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  264.036959][T10336] Call Trace:
[  264.037849][T10336]  <TASK>
[  264.038646][T10336]  dump_stack_lvl+0x16c/0x1f0
[  264.039898][T10336]  should_fail_ex+0x497/0x5b0
[  264.041154][T10336]  _copy_from_user+0x30/0xf0
[  264.042378][T10336]  get_compat_msghdr+0xa8/0x170
[  264.043681][T10336]  ? __pfx_get_compat_msghdr+0x10/0x10
[  264.045121][T10336]  ? find_held_lock+0x2d/0x110
[  264.046420][T10336]  ___sys_recvmsg+0x193/0x1a0
[  264.047685][T10336]  ? __pfx____sys_recvmsg+0x10/0x10
[  264.049067][T10336]  ? lock_acquire+0x2f/0xb0
[  264.050279][T10336]  ? __fget_files+0x40/0x3f0
[  264.051528][T10336]  ? fdget+0x176/0x210
[  264.052612][T10336]  do_recvmmsg+0x51a/0x750
[  264.053801][T10336]  ? __pfx_do_recvmmsg+0x10/0x10
[  264.055146][T10336]  ? get_signal+0x185/0x26d0
[  264.056388][T10336]  ? arch_do_signal_or_restart+0x212/0x7e0
[  264.058028][T10336]  __sys_recvmmsg+0x21e/0x280
[  264.059291][T10336]  ? __pfx___sys_recvmmsg+0x10/0x10
[  264.060677][T10336]  ? rcu_is_watching+0x12/0xc0
[  264.061965][T10336]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  264.063623][T10336]  ? do_int80_emulation+0xd1/0x200
[  264.064989][T10336]  ? lockdep_hardirqs_on+0x7c/0x110
[  264.066371][T10336]  do_int80_emulation+0x104/0x200
[  264.067730][T10336]  asm_int80_emulation+0x1a/0x20
[  264.069048][T10336] RIP: 0023:0xf7f24579
[  264.070142][T10336] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  264.075223][T10336] RSP: 002b:00000000f568556c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  264.077421][T10336] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020003c40
[  264.079520][T10336] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  264.081603][T10336] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  264.083703][T10336] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  264.085786][T10336] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  264.087885][T10336]  </TASK>
[  264.660802][T10358] fuse: Bad value for 'fd'
[  264.857302][   T39] kauditd_printk_skb: 8 callbacks suppressed
[  264.857314][   T39] audit: type=1326 audit(1727951668.466:5973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.864769][   T39] audit: type=1326 audit(1727951668.466:5974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.870996][   T39] audit: type=1326 audit(1727951668.476:5975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.876857][   T39] audit: type=1326 audit(1727951668.476:5976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.883689][T10379] FAULT_INJECTION: forcing a failure.
[  264.883689][T10379] name failslab, interval 1, probability 0, space 0, times 0
[  264.887255][   T39] audit: type=1326 audit(1727951668.486:5977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.892837][T10379] CPU: 1 UID: 0 PID: 10379 Comm: syz.3.1581 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  264.895672][T10379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  264.898485][T10379] Call Trace:
[  264.899380][T10379]  <TASK>
[  264.900170][T10379]  dump_stack_lvl+0x16c/0x1f0
[  264.901420][T10379]  should_fail_ex+0x497/0x5b0
[  264.902676][T10379]  ? fs_reclaim_acquire+0xae/0x160
[  264.904026][T10379]  should_failslab+0xc2/0x120
[  264.905282][T10379]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  264.906710][T10379]  ? audit_log_start+0x2bc/0x7e0
[  264.908049][T10379]  audit_log_start+0x2bc/0x7e0
[  264.909313][T10379]  ? __pfx_audit_log_start+0x10/0x10
[  264.910711][T10379]  ? __pfx_lock_release+0x10/0x10
[  264.912045][T10379]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  264.913506][T10379]  ? migrate_enable+0x1ef/0x260
[  264.914802][T10379]  ? __pfx_migrate_enable+0x10/0x10
[  264.916178][T10379]  audit_seccomp+0x61/0x280
[  264.917383][T10379]  __seccomp_filter+0x816/0xf40
[  264.918681][T10379]  ? __pfx___seccomp_filter+0x10/0x10
[  264.920095][T10379]  ? fput+0x30/0x390
[  264.921109][T10379]  ? ksys_read+0x1ad/0x260
[  264.922289][T10379]  __secure_computing+0x26c/0x3f0
[  264.923625][T10379]  syscall_trace_enter+0x8b/0x240
[  264.924952][T10379]  __do_fast_syscall_32+0xc2/0x120
[  264.926300][T10379]  do_fast_syscall_32+0x32/0x80
[  264.927616][T10379]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  264.929295][T10379] RIP: 0023:0xf7f24579
[  264.930375][T10379] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  264.935354][T10379] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  264.937513][T10379] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56a6620
[  264.939572][T10379] RDX: 0000000000000001 RSI: 00000000f73abff4 RDI: 0000000000000000
[  264.941634][T10379] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  264.943689][T10379] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  264.945725][T10379] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  264.947821][T10379]  </TASK>
[  264.948913][   T39] audit: type=1326 audit(1727951668.486:5978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.952555][T10381] netlink: 'syz.1.1577': attribute type 1 has an invalid length.
[  264.954455][   T39] audit: type=1326 audit(1727951668.486:5979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.962192][T10381] netlink: 'syz.1.1577': attribute type 2 has an invalid length.
[  264.965493][   T39] audit: type=1326 audit(1727951668.486:5980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.971142][   T39] audit: type=1326 audit(1727951668.486:5981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=133 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  264.976698][   T39] audit: type=1326 audit(1727951668.486:5982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10378 comm="syz.3.1581" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7f24579 code=0x7ffc0000
[  267.134334][T10432] binder: 10429:10432 ioctl 810c9365 20000980 returned -22
[  268.803846][T10431] netlink: 'syz.0.1592': attribute type 4 has an invalid length.
[  269.052466][T10449] netlink: 'syz.0.1595': attribute type 4 has an invalid length.
[  269.055432][T10449] binder: 10439:10449 ioctl 810c9365 20000980 returned -22
[  269.118836][T10453] FAULT_INJECTION: forcing a failure.
[  269.118836][T10453] name failslab, interval 1, probability 0, space 0, times 0
[  269.122136][T10453] CPU: 2 UID: 0 PID: 10453 Comm: syz.3.1599 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  269.124930][T10453] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  269.127733][T10453] Call Trace:
[  269.128619][T10453]  <TASK>
[  269.129403][T10453]  dump_stack_lvl+0x16c/0x1f0
[  269.130668][T10453]  should_fail_ex+0x497/0x5b0
[  269.131923][T10453]  should_failslab+0xc2/0x120
[  269.133182][T10453]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  269.134620][T10453]  ? skb_clone+0x190/0x3f0
[  269.135814][T10453]  skb_clone+0x190/0x3f0
[  269.136948][T10453]  bpf_clone_redirect+0xb2/0x3d0
[  269.138263][T10453]  bpf_prog_64e505a7b7f97a05+0x5e/0x63
[  269.139691][T10453]  ? find_held_lock+0x2d/0x110
[  269.140963][T10453]  ? ktime_get+0xd9/0x1a0
[  269.142111][T10453]  ? __pfx_lock_release+0x10/0x10
[  269.143455][T10453]  ? trace_lock_acquire+0x14a/0x1d0
[  269.144828][T10453]  ? ktime_get+0xd9/0x1a0
[  269.145975][T10453]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  269.147489][T10453]  ? lockdep_hardirqs_on+0x7c/0x110
[  269.148858][T10453]  ? read_tsc+0x9/0x20
[  269.149941][T10453]  ? timekeeping_debug_get_ns+0x334/0x5b0
[  269.151443][T10453]  ? __pfx___cant_migrate+0x10/0x10
[  269.152812][T10453]  ? ktime_get+0xfb/0x1a0
[  269.153977][T10453]  bpf_test_run+0x49d/0xa90
[  269.155203][T10453]  ? __pfx_bpf_test_run+0x10/0x10
[  269.156541][T10453]  ? krealloc_noprof+0xff/0x130
[  269.157828][T10453]  bpf_prog_test_run_skb+0xb8b/0x2140
[  269.159249][T10453]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  269.160770][T10453]  ? fput+0x30/0x390
[  269.161812][T10453]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  269.163353][T10453]  __sys_bpf+0x1921/0x5780
[  269.164537][T10453]  ? ksys_write+0x21e/0x260
[  269.165740][T10453]  ? __pfx___sys_bpf+0x10/0x10
[  269.167015][T10453]  ? vfs_write+0x14d/0x1140
[  269.168228][T10453]  ? __mutex_unlock_slowpath+0x164/0x650
[  269.169717][T10453]  ? fput+0x30/0x390
[  269.170770][T10453]  ? ksys_write+0x1ad/0x260
[  269.171972][T10453]  ? __pfx_ksys_write+0x10/0x10
[  269.173257][T10453]  __ia32_sys_bpf+0x76/0xe0
[  269.174473][T10453]  __do_fast_syscall_32+0x73/0x120
[  269.175837][T10453]  do_fast_syscall_32+0x32/0x80
[  269.177135][T10453]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  269.178927][T10453] RIP: 0023:0xf7f24579
[  269.180000][T10453] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  269.185011][T10453] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  269.187196][T10453] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200000c0
[  269.189266][T10453] RDX: 0000000000000028 RSI: 0000000000000000 RDI: 0000000000000000
[  269.191343][T10453] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  269.193420][T10453] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  269.195512][T10453] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  269.197596][T10453]  </TASK>
[  269.868302][   T39] kauditd_printk_skb: 66 callbacks suppressed
[  269.868313][   T39] audit: type=1326 audit(1727951673.476:6047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.875497][   T39] audit: type=1326 audit(1727951673.476:6048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.885441][   T39] audit: type=1326 audit(1727951673.476:6049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.892719][   T39] audit: type=1326 audit(1727951673.476:6050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.899753][   T39] audit: type=1326 audit(1727951673.476:6051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.905349][   T39] audit: type=1326 audit(1727951673.476:6052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.911970][   T39] audit: type=1326 audit(1727951673.476:6053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.927627][   T39] audit: type=1326 audit(1727951673.476:6054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.933303][   T39] audit: type=1326 audit(1727951673.476:6055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.939134][   T39] audit: type=1326 audit(1727951673.476:6056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10474 comm="syz.0.1605" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  269.978195][T10481] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1608'.
[  269.984627][T10481] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1608'.
[  269.987430][T10481] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1608'.
[  269.992524][T10485] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1608'.
[  269.994960][T10485] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1608'.
[  269.998183][T10485] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1608'.
[  270.436951][    T9] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  270.503845][T10507] openvswitch: netlink: Actions may not be safe on all matching packets
[  270.598849][    T9] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  270.601094][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  270.604748][    T9] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  270.609533][    T9] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  270.613145][    T9] usb 6-1: Manufacturer: syz
[  270.618756][    T9] usb 6-1: config 0 descriptor??
[  270.697314][    T9] rc_core: IR keymap rc-hauppauge not found
[  270.700326][    T9] Registered IR keymap rc-empty
[  270.704929][    T9] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  270.713428][    T9] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input27
[  271.192262][T10533] delete_channel: no stack
[  271.397962][T10542] ahci 0000:00:1f.2: Using 39-bit DMA addresses
[  280.424796][T10576] delete_channel: no stack
[  280.430571][ T5352] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  280.434398][ T5352] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  280.436770][ T5352] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  280.439107][ T5352] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  280.441140][ T5352] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  280.443054][ T5352] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  280.448355][ T5358] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  280.451018][ T5358] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  280.453288][ T5358] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  280.455429][ T5358] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  280.457634][ T5358] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  280.459555][ T5358] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  280.561528][T10578] chnl_net:caif_netlink_parms(): no params data found
[  280.808203][T10578] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.810099][T10578] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.812339][T10578] bridge_slave_0: entered allmulticast mode
[  280.814429][T10578] bridge_slave_0: entered promiscuous mode
[  280.818686][T10578] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.820575][T10578] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.822471][T10578] bridge_slave_1: entered allmulticast mode
[  280.824822][T10578] bridge_slave_1: entered promiscuous mode
[  280.905272][T10599] FAULT_INJECTION: forcing a failure.
[  280.905272][T10599] name failslab, interval 1, probability 0, space 0, times 0
[  280.908739][T10599] CPU: 1 UID: 0 PID: 10599 Comm: syz.3.1638 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  280.911521][T10599] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  280.914298][T10599] Call Trace:
[  280.915186][T10599]  <TASK>
[  280.915969][T10599]  dump_stack_lvl+0x16c/0x1f0
[  280.917215][T10599]  should_fail_ex+0x497/0x5b0
[  280.918636][T10599]  ? fs_reclaim_acquire+0xae/0x160
[  280.919983][T10599]  should_failslab+0xc2/0x120
[  280.921257][T10599]  kmem_cache_alloc_node_noprof+0x71/0x310
[  280.922792][T10599]  ? alloc_vmap_area+0xdc8/0x2a70
[  280.924113][T10599]  alloc_vmap_area+0xdc8/0x2a70
[  280.925403][T10599]  ? __pfx_alloc_vmap_area+0x10/0x10
[  280.926796][T10599]  __get_vm_area_node+0x17e/0x2d0
[  280.928094][T10599]  __vmalloc_node_range_noprof+0x26a/0x15a0
[  280.929630][T10599]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  280.931080][T10599]  ? hlock_class+0x4e/0x130
[  280.932273][T10599]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  280.933721][T10599]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  280.935385][T10599]  ? __pfx___lock_acquire+0x10/0x10
[  280.936773][T10599]  ? __pfx_aa_get_newest_label+0x10/0x10
[  280.938259][T10599]  ? __pfx___lock_acquire+0x10/0x10
[  280.939630][T10599]  ? __pfx_mark_lock+0x10/0x10
[  280.940890][T10599]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  280.942341][T10599]  __vmalloc_noprof+0x6d/0x90
[  280.943593][T10599]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  280.945055][T10599]  bpf_prog_alloc_no_stats+0x54/0x5e0
[  280.946465][T10599]  ? security_capable+0x7e/0x260
[  280.947782][T10599]  bpf_prog_alloc+0x3b/0x230
[  280.949001][T10599]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  280.950558][T10599]  bpf_prog_load+0x1758/0x2670
[  280.951822][T10599]  ? __pfx_bpf_prog_load+0x10/0x10
[  280.953186][T10599]  ? find_held_lock+0x2d/0x110
[  280.954463][T10599]  __sys_bpf+0x4c8c/0x5780
[  280.955663][T10599]  ? ksys_write+0x21e/0x260
[  280.956858][T10599]  ? __pfx___sys_bpf+0x10/0x10
[  280.958117][T10599]  ? vfs_write+0x14d/0x1140
[  280.959326][T10599]  ? __mutex_unlock_slowpath+0x164/0x650
[  280.960801][T10599]  ? fput+0x30/0x390
[  280.961843][T10599]  ? ksys_write+0x1ad/0x260
[  280.963052][T10599]  ? __pfx_ksys_write+0x10/0x10
[  280.964334][T10599]  __ia32_sys_bpf+0x76/0xe0
[  280.965534][T10599]  __do_fast_syscall_32+0x73/0x120
[  280.966890][T10599]  do_fast_syscall_32+0x32/0x80
[  280.968270][T10599]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  280.969919][T10599] RIP: 0023:0xf7f24579
[  280.970996][T10599] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  280.975988][T10599] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  280.978155][T10599] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200000c0
[  280.980230][T10599] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  280.982299][T10599] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  280.984406][T10599] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  280.986466][T10599] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  280.988695][T10599]  </TASK>
[  281.016918][   T39] kauditd_printk_skb: 65 callbacks suppressed
[  281.016931][   T39] audit: type=1326 audit(1727951684.606:6122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.032420][   T39] audit: type=1326 audit(1727951684.606:6123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.038150][   T39] audit: type=1326 audit(1727951684.616:6124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.043657][   T39] audit: type=1326 audit(1727951684.616:6125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.049372][   T39] audit: type=1326 audit(1727951684.616:6126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.066251][   T39] audit: type=1326 audit(1727951684.626:6127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.071875][   T39] audit: type=1326 audit(1727951684.626:6128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.086933][   T39] audit: type=1326 audit(1727951684.626:6129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.095560][   T39] audit: type=1326 audit(1727951684.626:6130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.101322][   T39] audit: type=1326 audit(1727951684.626:6131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10602 comm="syz.2.1637" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  281.119155][T10578] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  281.123354][T10578] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  281.234176][T10578] team0: Port device team_slave_0 added
[  281.237584][T10578] team0: Port device team_slave_1 added
[  281.270415][T10578] batman_adv: batadv0: Adding interface: batadv_slave_0
[  281.272278][T10578] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.296980][T10578] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  281.300988][T10578] batman_adv: batadv0: Adding interface: batadv_slave_1
[  281.302832][T10578] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.317014][T10578] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  281.368923][T10578] hsr_slave_0: entered promiscuous mode
[  281.380682][T10578] hsr_slave_1: entered promiscuous mode
[  281.869506][T10578] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.529097][ T5358] Bluetooth: hci4: command tx timeout
[  282.992672][T10635] delete_channel: no stack
[  284.023461][T10578] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.030254][T10637] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1645'.
[  284.046990][T10637] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1645'.
[  284.208679][T10578] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.411985][T10578] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.595077][T10578] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  284.598599][T10578] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  284.602975][T10578] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  284.606324][T10578] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  284.616955][ T5358] Bluetooth: hci4: command tx timeout
[  284.646594][T10578] 8021q: adding VLAN 0 to HW filter on device bond0
[  284.660919][T10578] 8021q: adding VLAN 0 to HW filter on device team0
[  284.665514][   T74] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.667449][   T74] bridge0: port 1(bridge_slave_0) entered forwarding state
[  284.679889][   T74] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.681771][   T74] bridge0: port 2(bridge_slave_1) entered forwarding state
[  284.788616][T10578] 8021q: adding VLAN 0 to HW filter on device batadv0
[  284.805653][T10578] veth0_vlan: entered promiscuous mode
[  284.813896][T10578] veth1_vlan: entered promiscuous mode
[  284.825203][T10578] veth0_macvtap: entered promiscuous mode
[  284.829779][T10578] veth1_macvtap: entered promiscuous mode
[  284.838709][T10578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.841481][T10578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.844778][T10578] batman_adv: batadv0: Interface activated: batadv_slave_0
[  284.850120][T10578] batman_adv: batadv0: Interface activated: batadv_slave_1
[  284.854088][T10578] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  284.856421][T10578] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  284.860182][T10578] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  284.862518][T10578] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  284.905953][   T74] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  284.913767][   T74] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.925032][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  284.928037][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  286.687082][ T5358] Bluetooth: hci4: command tx timeout
[  287.279574][T10693] FAULT_INJECTION: forcing a failure.
[  287.279574][T10693] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.283159][T10693] CPU: 0 UID: 0 PID: 10693 Comm: syz.0.1661 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  287.285944][T10693] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  287.288753][T10693] Call Trace:
[  287.289636][T10693]  <TASK>
[  287.290430][T10693]  dump_stack_lvl+0x16c/0x1f0
[  287.291675][T10693]  should_fail_ex+0x497/0x5b0
[  287.292923][T10693]  _copy_to_user+0x30/0xc0
[  287.294114][T10693]  simple_read_from_buffer+0xd0/0x160
[  287.295541][T10693]  proc_fail_nth_read+0x198/0x270
[  287.296939][T10693]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  287.298403][T10693]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  287.299869][T10693]  vfs_read+0x1ce/0xbd0
[  287.300973][T10693]  ? __fget_files+0x23a/0x3f0
[  287.302218][T10693]  ? fdget_pos+0x24c/0x360
[  287.303407][T10693]  ? __pfx_lock_release+0x10/0x10
[  287.304740][T10693]  ? trace_lock_acquire+0x14a/0x1d0
[  287.306118][T10693]  ? __pfx_vfs_read+0x10/0x10
[  287.307379][T10693]  ? __pfx___mutex_lock+0x10/0x10
[  287.308710][T10693]  ? __fget_files+0x244/0x3f0
[  287.309959][T10693]  ksys_read+0x12f/0x260
[  287.311092][T10693]  ? __pfx_ksys_read+0x10/0x10
[  287.312409][T10693]  __do_fast_syscall_32+0x73/0x120
[  287.313769][T10693]  do_fast_syscall_32+0x32/0x80
[  287.315088][T10693]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  287.316752][T10693] RIP: 0023:0xf7f17579
[  287.317844][T10693] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  287.323049][T10693] RSP: 002b:00000000f56965a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  287.325209][T10693] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5696620
[  287.327331][T10693] RDX: 000000000000000f RSI: 00000000f739bff4 RDI: 0000000000000000
[  287.329424][T10693] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  287.331543][T10693] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  287.333631][T10693] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  287.335739][T10693]  </TASK>
[  287.354218][T10695] delete_channel: no stack
[  287.487236][  T829] usb 7-1: new full-speed USB device number 21 using dummy_hcd
[  287.616937][  T829] usb 7-1: device descriptor read/64, error -71
[  287.641972][T10705] Driver unsupported XDP return value 0 on prog  (id 1018) dev N/A, expect packet loss!
[  287.820009][T10716] FAULT_INJECTION: forcing a failure.
[  287.820009][T10716] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.823707][T10716] CPU: 1 UID: 0 PID: 10716 Comm: syz.1.1671 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  287.826497][T10716] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  287.829320][T10716] Call Trace:
[  287.830207][T10716]  <TASK>
[  287.831003][T10716]  dump_stack_lvl+0x16c/0x1f0
[  287.832259][T10716]  should_fail_ex+0x497/0x5b0
[  287.833525][T10716]  _copy_from_iter+0x29b/0x13e0
[  287.834839][T10716]  ? __pfx__copy_from_iter+0x10/0x10
[  287.836241][T10716]  ? __virt_addr_valid+0x1a4/0x590
[  287.837609][T10716]  ? __virt_addr_valid+0x5e/0x590
[  287.838943][T10716]  ? __phys_addr_symbol+0x30/0x80
[  287.840267][T10716]  ? __check_object_size+0x488/0x710
[  287.841661][T10716]  file_tty_write.constprop.0+0x48d/0x9a0
[  287.843218][T10716]  vfs_write+0x6b5/0x1140
[  287.844372][T10716]  ? __pfx_tty_write+0x10/0x10
[  287.845656][T10716]  ? trace_lock_acquire+0x14a/0x1d0
[  287.847039][T10716]  ? __pfx_vfs_write+0x10/0x10
[  287.848509][T10716]  ? __fget_files+0x40/0x3f0
[  287.849738][T10716]  ksys_write+0x12f/0x260
[  287.850890][T10716]  ? __pfx_ksys_write+0x10/0x10
[  287.852180][T10716]  __do_fast_syscall_32+0x73/0x120
[  287.853536][T10716]  do_fast_syscall_32+0x32/0x80
[  287.854841][T10716]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  287.856507][T10716] RIP: 0023:0xf7f27579
[  287.857588][T10716] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  287.862659][T10716] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  287.864843][T10716] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000
[  287.867153][T10716] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000
[  287.869420][T10716] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  287.871492][T10716] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  287.873564][T10716] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  287.875716][T10716]  </TASK>
[  287.876730][  T829] usb 7-1: new full-speed USB device number 22 using dummy_hcd
[  288.037500][  T829] usb 7-1: device descriptor read/64, error -71
[  288.157142][  T829] usb usb7-port1: attempt power cycle
[  288.264957][T10742] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1676'.
[  288.497406][  T829] usb 7-1: new full-speed USB device number 23 using dummy_hcd
[  288.517434][  T829] usb 7-1: device descriptor read/8, error -71
[  288.767037][ T5358] Bluetooth: hci4: command tx timeout
[  288.778760][  T829] usb 7-1: new full-speed USB device number 24 using dummy_hcd
[  288.798973][  T829] usb 7-1: device descriptor read/8, error -71
[  288.826976][ T5602] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  288.917108][  T829] usb usb7-port1: unable to enumerate USB device
[  288.976941][ T5602] usb 5-1: Using ep0 maxpacket: 32
[  288.979523][ T5602] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  288.981717][ T5602] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  288.984380][ T5602] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  288.986725][ T5602] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  288.989594][ T5602] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  288.992145][ T5602] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  288.995680][ T5602] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  288.998271][ T5602] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.001836][ T5602] usb 5-1: config 0 descriptor??
[  289.210737][ T5602] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 21 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  289.217270][ T5602] usb 5-1: USB disconnect, device number 21
[  289.227889][ T5602] usblp0: removed
[  289.657074][    T9] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  289.806979][    T9] usb 5-1: Using ep0 maxpacket: 32
[  289.809779][    T9] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  289.812165][    T9] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  289.814519][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  289.817188][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  289.819806][    T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  289.822368][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  289.825826][    T9] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  289.828582][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.836177][    T9] usb 5-1: config 0 descriptor??
[  290.051131][    T9] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 22 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  290.062468][    T9] usb 5-1: USB disconnect, device number 22
[  290.065956][    T9] usblp0: removed
[  290.289098][T10764] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  290.296801][T10764] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  290.501818][T10764] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  290.504560][T10764] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  290.508319][T10764] FAULT_INJECTION: forcing a failure.
[  290.508319][T10764] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  290.511757][T10764] CPU: 0 UID: 0 PID: 10764 Comm: syz.1.1683 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  290.514554][T10764] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  290.517419][T10764] Call Trace:
[  290.518350][T10764]  <TASK>
[  290.519141][T10764]  dump_stack_lvl+0x16c/0x1f0
[  290.520392][T10764]  should_fail_ex+0x497/0x5b0
[  290.521646][T10764]  _copy_to_user+0x30/0xc0
[  290.522840][T10764]  simple_read_from_buffer+0xd0/0x160
[  290.524259][T10764]  proc_fail_nth_read+0x198/0x270
[  290.525597][T10764]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  290.527058][T10764]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  290.528517][T10764]  vfs_read+0x1ce/0xbd0
[  290.529620][T10764]  ? __fget_files+0x23a/0x3f0
[  290.530940][T10764]  ? fdget_pos+0x24c/0x360
[  290.532138][T10764]  ? __pfx_lock_release+0x10/0x10
[  290.533487][T10764]  ? trace_lock_acquire+0x14a/0x1d0
[  290.534896][T10764]  ? __pfx_vfs_read+0x10/0x10
[  290.536137][T10764]  ? __pfx___mutex_lock+0x10/0x10
[  290.537484][T10764]  ? __fget_files+0x244/0x3f0
[  290.538780][T10764]  ksys_read+0x12f/0x260
[  290.539902][T10764]  ? __pfx_ksys_read+0x10/0x10
[  290.541165][T10764]  __do_fast_syscall_32+0x73/0x120
[  290.542526][T10764]  do_fast_syscall_32+0x32/0x80
[  290.543803][T10764]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  290.545439][T10764] RIP: 0023:0xf7f27579
[  290.546575][T10764] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  290.551609][T10764] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  290.553766][T10764] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f56a6620
[  290.555842][T10764] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000
[  290.557918][T10764] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  290.559960][T10764] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  290.562033][T10764] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  290.564090][T10764]  </TASK>
[  290.657075][   T30] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  290.807041][   T30] usb 7-1: Using ep0 maxpacket: 32
[  290.810416][   T30] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  290.813551][   T30] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  290.816676][   T30] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  290.819194][   T30] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  290.821685][   T30] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  290.824180][   T30] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  290.828086][   T30] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  290.831344][   T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.835802][   T30] usb 7-1: config 0 descriptor??
[  291.043804][   T30] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 25 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  291.048808][   T30] usb 7-1: USB disconnect, device number 25
[  291.051697][   T30] usblp0: removed
[  291.477064][    T9] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  291.637003][    T9] usb 7-1: Using ep0 maxpacket: 32
[  291.640178][    T9] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  291.642415][    T9] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  291.644700][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  291.647533][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  291.650070][    T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  291.652623][    T9] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  291.656091][    T9] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  291.658597][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.661994][    T9] usb 7-1: config 0 descriptor??
[  291.867185][    T9] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 26 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  291.954505][    T9] usb 7-1: USB disconnect, device number 26
[  291.962558][    T9] usblp0: removed
[  300.731145][T10774] binder: 10771:10774 ioctl d000943d 200d3b40 returned -22
[  300.733538][T10774] netlink: 204 bytes leftover after parsing attributes in process `syz.0.1685'.
[  300.733749][T10776] FAULT_INJECTION: forcing a failure.
[  300.733749][T10776] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  300.747205][T10776] CPU: 3 UID: 0 PID: 10776 Comm: syz.1.1686 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  300.751258][T10776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  300.757144][T10776] Call Trace:
[  300.757154][T10776]  <TASK>
[  300.757162][T10776]  dump_stack_lvl+0x16c/0x1f0
[  300.757194][T10776]  should_fail_ex+0x497/0x5b0
[  300.757225][T10776]  _copy_to_user+0x30/0xc0
[  300.757247][T10776]  simple_read_from_buffer+0xd0/0x160
[  300.757278][T10776]  proc_fail_nth_read+0x198/0x270
[  300.757304][T10776]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  300.757333][T10776]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  300.757357][T10776]  vfs_read+0x1ce/0xbd0
[  300.757378][T10776]  ? __fget_files+0x23a/0x3f0
[  300.757402][T10776]  ? fdget_pos+0x24c/0x360
[  300.757420][T10776]  ? __pfx_lock_release+0x10/0x10
[  300.757447][T10776]  ? trace_lock_acquire+0x14a/0x1d0
[  300.757469][T10776]  ? __pfx_vfs_read+0x10/0x10
[  300.757487][T10776]  ? __pfx___mutex_lock+0x10/0x10
[  300.757520][T10776]  ? __fget_files+0x244/0x3f0
[  300.757547][T10776]  ksys_read+0x12f/0x260
[  300.757567][T10776]  ? __pfx_ksys_read+0x10/0x10
[  300.757595][T10776]  __do_fast_syscall_32+0x73/0x120
[  300.757623][T10776]  do_fast_syscall_32+0x32/0x80
[  300.757648][T10776]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  300.757674][T10776] RIP: 0023:0xf7f27579
[  300.757690][T10776] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  300.757708][T10776] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  300.757729][T10776] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56a6620
[  300.757743][T10776] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000
[  300.757755][T10776] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  300.757766][T10776] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  300.757778][T10776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  300.757803][T10776]  </TASK>
[  300.832567][ T5352] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  300.863846][ T5352] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  300.864892][ T5352] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  300.865773][ T5352] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  300.866377][ T5352] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  300.866800][ T5352] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  300.988513][T10779] chnl_net:caif_netlink_parms(): no params data found
[  301.243792][T10779] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.246447][T10779] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.249700][T10779] bridge_slave_0: entered allmulticast mode
[  301.252186][T10779] bridge_slave_0: entered promiscuous mode
[  301.255263][T10779] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.265086][T10779] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.273815][T10779] bridge_slave_1: entered allmulticast mode
[  301.305806][T10779] bridge_slave_1: entered promiscuous mode
[  301.404644][T10779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  301.418864][T10779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  301.437547][T10818] FAULT_INJECTION: forcing a failure.
[  301.437547][T10818] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  301.441024][T10818] CPU: 0 UID: 0 PID: 10818 Comm: syz.1.1701 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  301.443827][T10818] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  301.446746][T10818] Call Trace:
[  301.447626][T10818]  <TASK>
[  301.448411][T10818]  dump_stack_lvl+0x16c/0x1f0
[  301.449662][T10818]  should_fail_ex+0x497/0x5b0
[  301.450915][T10818]  _copy_to_user+0x30/0xc0
[  301.452123][T10818]  simple_read_from_buffer+0xd0/0x160
[  301.453565][T10818]  proc_fail_nth_read+0x198/0x270
[  301.454910][T10818]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  301.456357][T10818]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  301.457846][T10818]  vfs_read+0x1ce/0xbd0
[  301.458954][T10818]  ? __fget_files+0x23a/0x3f0
[  301.460192][T10818]  ? fdget_pos+0x24c/0x360
[  301.461381][T10818]  ? __pfx_lock_release+0x10/0x10
[  301.462717][T10818]  ? trace_lock_acquire+0x14a/0x1d0
[  301.464081][T10818]  ? __pfx_vfs_read+0x10/0x10
[  301.465326][T10818]  ? __pfx___mutex_lock+0x10/0x10
[  301.466656][T10818]  ? __fget_files+0x244/0x3f0
[  301.467957][T10818]  ksys_read+0x12f/0x260
[  301.469073][T10818]  ? __pfx_ksys_read+0x10/0x10
[  301.470338][T10818]  __do_fast_syscall_32+0x73/0x120
[  301.471685][T10818]  do_fast_syscall_32+0x32/0x80
[  301.472975][T10818]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  301.474655][T10818] RIP: 0023:0xf7f27579
[  301.475728][T10818] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  301.480747][T10818] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  301.482915][T10818] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56a6620
[  301.484999][T10818] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000
[  301.487066][T10818] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  301.489224][T10818] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  301.491291][T10818] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  301.493362][T10818]  </TASK>
[  301.561871][T10779] team0: Port device team_slave_0 added
[  301.565592][T10779] team0: Port device team_slave_1 added
[  301.584861][T10779] batman_adv: batadv0: Adding interface: batadv_slave_0
[  301.586745][T10779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.594768][T10779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  301.598665][T10779] batman_adv: batadv0: Adding interface: batadv_slave_1
[  301.600483][T10779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.607379][T10779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  301.638088][T10779] hsr_slave_0: entered promiscuous mode
[  301.640307][T10779] hsr_slave_1: entered promiscuous mode
[  301.642324][T10779] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  301.645511][T10779] Cannot create hsr debugfs directory
[  301.657078][ T5602] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  301.665576][T10827] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1705'.
[  301.679593][T10827] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1705'.
[  301.788394][T10779] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.829591][ T5602] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  301.835181][ T5602] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  301.847758][ T5602] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  301.850301][ T5602] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  301.857247][ T5602] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  301.860129][ T5602] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.863585][ T5602] usb 5-1: config 0 descriptor??
[  301.869922][T10779] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.942182][T10779] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  302.041418][T10779] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  302.179967][T10779] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  302.185734][T10779] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  302.191269][T10779] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  302.201037][T10779] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  302.245731][T10779] 8021q: adding VLAN 0 to HW filter on device bond0
[  302.256481][T10779] 8021q: adding VLAN 0 to HW filter on device team0
[  302.262417][ T1203] bridge0: port 1(bridge_slave_0) entered blocking state
[  302.264365][ T1203] bridge0: port 1(bridge_slave_0) entered forwarding state
[  302.271477][ T1111] bridge0: port 2(bridge_slave_1) entered blocking state
[  302.273364][ T1111] bridge0: port 2(bridge_slave_1) entered forwarding state
[  302.276223][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.280684][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.282671][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.287045][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.293900][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.297454][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.300606][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.304392][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.308594][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.313077][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.315169][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.320708][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.323254][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.328607][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.330670][ T5602] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  302.334185][ T5602] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  302.338545][ T5602] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  302.383545][T10779] 8021q: adding VLAN 0 to HW filter on device batadv0
[  302.404253][T10779] veth0_vlan: entered promiscuous mode
[  302.412159][T10779] veth1_vlan: entered promiscuous mode
[  302.426441][T10779] veth0_macvtap: entered promiscuous mode
[  302.430050][T10779] veth1_macvtap: entered promiscuous mode
[  302.437430][T10779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  302.440299][T10779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.442925][T10779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  302.445694][T10779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.451131][T10779] batman_adv: batadv0: Interface activated: batadv_slave_0
[  302.463856][T10779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  302.466741][T10779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  302.471920][T10779] batman_adv: batadv0: Interface activated: batadv_slave_1
[  302.478783][T10779] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  302.481215][T10779] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  302.483627][T10779] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  302.486004][T10779] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  302.528630][ T1097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  302.531239][ T1097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  302.540829][ T1097] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  302.544094][   T30] usb 5-1: USB disconnect, device number 23
[  302.544621][ T1097] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  302.599257][T10855] random: crng reseeded on system resumption
[  302.659830][T10855] bond0: Error: Cannot enslave bond to itself.
[  302.763554][T10855] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1714'.
[  303.546412][T10895] FAULT_INJECTION: forcing a failure.
[  303.546412][T10895] name failslab, interval 1, probability 0, space 0, times 0
[  303.551822][T10895] CPU: 1 UID: 0 PID: 10895 Comm: syz.0.1727 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  303.555447][T10895] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  303.559026][T10895] Call Trace:
[  303.560165][T10895]  <TASK>
[  303.561169][T10895]  dump_stack_lvl+0x16c/0x1f0
[  303.562829][T10895]  should_fail_ex+0x497/0x5b0
[  303.564429][T10895]  ? fs_reclaim_acquire+0xae/0x160
[  303.565783][T10895]  should_failslab+0xc2/0x120
[  303.567386][T10895]  __kmalloc_noprof+0xcb/0x410
[  303.568674][T10895]  ? __pfx_ethnl_default_start+0x10/0x10
[  303.570158][T10895]  ethnl_default_start+0x114/0x420
[  303.571890][T10895]  ? kasan_save_track+0x14/0x30
[  303.573183][T10895]  ? __pfx_ethnl_default_start+0x10/0x10
[  303.574684][T10895]  genl_start+0x5f4/0x950
[  303.575851][T10895]  __netlink_dump_start+0x615/0x980
[  303.577291][T10895]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[  303.578802][T10895]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  303.580439][T10895]  ? __pfx_genl_get_cmd+0x10/0x10
[  303.581763][T10895]  ? __pfx_genl_start+0x10/0x10
[  303.583059][T10895]  ? __pfx_genl_dumpit+0x10/0x10
[  303.584365][T10895]  ? __pfx_genl_done+0x10/0x10
[  303.585621][T10895]  ? __radix_tree_lookup+0x21f/0x2c0
[  303.587026][T10895]  genl_rcv_msg+0x470/0x800
[  303.588234][T10895]  ? __pfx_genl_rcv_msg+0x10/0x10
[  303.589558][T10895]  ? __pfx_ethnl_default_start+0x10/0x10
[  303.591039][T10895]  ? __pfx_ethnl_default_dumpit+0x10/0x10
[  303.592530][T10895]  ? __pfx_ethnl_default_done+0x10/0x10
[  303.594050][T10895]  ? __pfx___lock_acquire+0x10/0x10
[  303.595443][T10895]  netlink_rcv_skb+0x165/0x410
[  303.596710][T10895]  ? __pfx_genl_rcv_msg+0x10/0x10
[  303.598046][T10895]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  303.599459][T10895]  ? down_read+0xc9/0x330
[  303.600606][T10895]  ? __pfx_down_read+0x10/0x10
[  303.601870][T10895]  ? netlink_deliver_tap+0x1ae/0xcf0
[  303.603282][T10895]  genl_rcv+0x28/0x40
[  303.604360][T10895]  netlink_unicast+0x53c/0x7f0
[  303.605632][T10895]  ? __pfx_netlink_unicast+0x10/0x10
[  303.607037][T10895]  ? __phys_addr_symbol+0x30/0x80
[  303.608410][T10895]  ? __check_object_size+0x4a1/0x710
[  303.609825][T10895]  netlink_sendmsg+0x8b8/0xd70
[  303.611112][T10895]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.612500][T10895]  ? lock_acquire+0x2f/0xb0
[  303.613708][T10895]  ____sys_sendmsg+0x9ae/0xb40
[  303.615006][T10895]  ? __pfx_____sys_sendmsg+0x10/0x10
[  303.616394][T10895]  ? get_compat_msghdr+0x11b/0x170
[  303.617748][T10895]  ? __pfx___lock_acquire+0x10/0x10
[  303.619136][T10895]  ___sys_sendmsg+0x135/0x1e0
[  303.620404][T10895]  ? __pfx____sys_sendmsg+0x10/0x10
[  303.621783][T10895]  ? lock_acquire+0x2f/0xb0
[  303.623004][T10895]  ? __fget_files+0x40/0x3f0
[  303.624274][T10895]  ? fdget+0x176/0x210
[  303.625361][T10895]  __sys_sendmsg+0x117/0x1f0
[  303.626613][T10895]  ? __pfx___sys_sendmsg+0x10/0x10
[  303.627969][T10895]  ? __fget_files+0x244/0x3f0
[  303.629233][T10895]  __do_fast_syscall_32+0x73/0x120
[  303.630597][T10895]  do_fast_syscall_32+0x32/0x80
[  303.631887][T10895]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.633556][T10895] RIP: 0023:0xf7f17579
[  303.634663][T10895] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  303.639684][T10895] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  303.641867][T10895] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000440
[  303.643934][T10895] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  303.645983][T10895] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  303.648052][T10895] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  303.650120][T10895] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  303.652191][T10895]  </TASK>
[  303.843868][T10905] netlink: 'syz.0.1731': attribute type 2 has an invalid length.
[  303.846181][T10905] netlink: 'syz.0.1731': attribute type 1 has an invalid length.
[  303.921195][T10913] FAULT_INJECTION: forcing a failure.
[  303.921195][T10913] name failslab, interval 1, probability 0, space 0, times 0
[  303.926973][T10913] CPU: 1 UID: 0 PID: 10913 Comm: syz.2.1734 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  303.929765][T10913] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  303.932555][T10913] Call Trace:
[  303.933445][T10913]  <TASK>
[  303.934245][T10913]  dump_stack_lvl+0x16c/0x1f0
[  303.935508][T10913]  should_fail_ex+0x497/0x5b0
[  303.936810][T10913]  ? fs_reclaim_acquire+0xae/0x160
[  303.938178][T10913]  should_failslab+0xc2/0x120
[  303.939432][T10913]  kmem_cache_alloc_node_noprof+0x71/0x310
[  303.940962][T10913]  ? __alloc_skb+0x2b3/0x380
[  303.942200][T10913]  __alloc_skb+0x2b3/0x380
[  303.943392][T10913]  ? __pfx___alloc_skb+0x10/0x10
[  303.944692][T10913]  ? lock_acquire+0x2f/0xb0
[  303.945899][T10913]  netlink_alloc_large_skb+0x69/0x130
[  303.947319][T10913]  netlink_sendmsg+0x689/0xd70
[  303.948593][T10913]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.949992][T10913]  ? lock_acquire+0x2f/0xb0
[  303.951231][T10913]  ____sys_sendmsg+0x9ae/0xb40
[  303.952651][T10913]  ? __pfx_____sys_sendmsg+0x10/0x10
[  303.954073][T10913]  ? get_compat_msghdr+0x11b/0x170
[  303.955471][T10913]  ? __pfx___lock_acquire+0x10/0x10
[  303.956868][T10913]  ___sys_sendmsg+0x135/0x1e0
[  303.958139][T10913]  ? __pfx____sys_sendmsg+0x10/0x10
[  303.959531][T10913]  ? lock_acquire+0x2f/0xb0
[  303.960742][T10913]  ? __fget_files+0x40/0x3f0
[  303.961976][T10913]  ? fdget+0x176/0x210
[  303.963085][T10913]  __sys_sendmsg+0x117/0x1f0
[  303.964308][T10913]  ? __pfx___sys_sendmsg+0x10/0x10
[  303.965642][T10913]  ? __fget_files+0x244/0x3f0
[  303.966890][T10913]  __do_fast_syscall_32+0x73/0x120
[  303.968316][T10913]  do_fast_syscall_32+0x32/0x80
[  303.969587][T10913]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.971256][T10913] RIP: 0023:0xf73be579
[  303.972321][T10913] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  303.977310][T10913] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  303.979482][T10913] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000080
[  303.981526][T10913] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  303.983669][T10913] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  303.985723][T10913] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  303.987789][T10913] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  303.989857][T10913]  </TASK>
[  304.164915][T10922] FAULT_INJECTION: forcing a failure.
[  304.164915][T10922] name failslab, interval 1, probability 0, space 0, times 0
[  304.170698][T10922] CPU: 2 UID: 0 PID: 10922 Comm: syz.2.1737 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  304.173549][T10922] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  304.176391][T10922] Call Trace:
[  304.177280][T10922]  <TASK>
[  304.178071][T10922]  dump_stack_lvl+0x16c/0x1f0
[  304.179335][T10922]  should_fail_ex+0x497/0x5b0
[  304.180588][T10922]  ? fs_reclaim_acquire+0xae/0x160
[  304.181943][T10922]  should_failslab+0xc2/0x120
[  304.183204][T10922]  __kmalloc_noprof+0xcb/0x410
[  304.184473][T10922]  ? __pfx_d_absolute_path+0x10/0x10
[  304.185868][T10922]  tomoyo_encode2+0x100/0x3e0
[  304.187122][T10922]  tomoyo_realpath_from_path+0x1a7/0x710
[  304.188605][T10922]  tomoyo_path_number_perm+0x245/0x5b0
[  304.190052][T10922]  ? tomoyo_path_number_perm+0x232/0x5b0
[  304.191545][T10922]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  304.193140][T10922]  ? trace_lock_acquire+0x14a/0x1d0
[  304.194537][T10922]  ? lock_acquire+0x2f/0xb0
[  304.195749][T10922]  ? __fget_files+0x40/0x3f0
[  304.196971][T10922]  ? __fget_files+0x244/0x3f0
[  304.198222][T10922]  security_file_ioctl_compat+0x9b/0x240
[  304.199708][T10922]  __do_compat_sys_ioctl+0x52/0x2b0
[  304.201089][T10922]  __do_fast_syscall_32+0x73/0x120
[  304.202459][T10922]  do_fast_syscall_32+0x32/0x80
[  304.203754][T10922]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  304.205421][T10922] RIP: 0023:0xf73be579
[  304.206517][T10922] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  304.211530][T10922] RSP: 002b:00000000f568556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  304.213714][T10922] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c06864a2
[  304.215799][T10922] RDX: 0000000020000400 RSI: 0000000000000000 RDI: 0000000000000000
[  304.217963][T10922] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  304.220071][T10922] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  304.222160][T10922] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  304.224232][T10922]  </TASK>
[  304.225176][    C2] vkms_vblank_simulate: vblank timer overrun
[  304.227038][    C2] hpet_rtc_timer_reinit: 62 callbacks suppressed
[  304.227048][    C2] hpet: Lost 3 RTC interrupts
[  304.234403][T10922] ERROR: Out of memory at tomoyo_realpath_from_path.
[  305.859076][T10953] FAULT_INJECTION: forcing a failure.
[  305.859076][T10953] name failslab, interval 1, probability 0, space 0, times 0
[  305.862610][T10953] CPU: 1 UID: 0 PID: 10953 Comm: syz.1.1746 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  305.865398][T10953] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  305.868183][T10953] Call Trace:
[  305.869068][T10953]  <TASK>
[  305.869854][T10953]  dump_stack_lvl+0x16c/0x1f0
[  305.871111][T10953]  should_fail_ex+0x497/0x5b0
[  305.872361][T10953]  ? fs_reclaim_acquire+0xae/0x160
[  305.873711][T10953]  should_failslab+0xc2/0x120
[  305.875055][T10953]  kmem_cache_alloc_node_noprof+0x71/0x310
[  305.876597][T10953]  ? __alloc_skb+0x2b3/0x380
[  305.877831][T10953]  __alloc_skb+0x2b3/0x380
[  305.879038][T10953]  ? __pfx___alloc_skb+0x10/0x10
[  305.880343][T10953]  ? lock_acquire+0x2f/0xb0
[  305.881560][T10953]  netlink_alloc_large_skb+0x69/0x130
[  305.882998][T10953]  netlink_sendmsg+0x689/0xd70
[  305.884260][T10953]  ? __pfx_netlink_sendmsg+0x10/0x10
[  305.885644][T10953]  ? lock_acquire+0x2f/0xb0
[  305.886852][T10953]  ____sys_sendmsg+0x9ae/0xb40
[  305.888139][T10953]  ? __pfx_____sys_sendmsg+0x10/0x10
[  305.889541][T10953]  ? get_compat_msghdr+0x11b/0x170
[  305.890909][T10953]  ? __pfx___lock_acquire+0x10/0x10
[  305.892298][T10953]  ___sys_sendmsg+0x135/0x1e0
[  305.893556][T10953]  ? __pfx____sys_sendmsg+0x10/0x10
[  305.894955][T10953]  ? lock_acquire+0x2f/0xb0
[  305.896483][T10953]  ? __fget_files+0x40/0x3f0
[  305.898053][T10953]  ? fdget+0x176/0x210
[  305.899440][T10953]  __sys_sendmsg+0x117/0x1f0
[  305.901003][T10953]  ? __pfx___sys_sendmsg+0x10/0x10
[  305.902733][T10953]  ? __fget_files+0x244/0x3f0
[  305.904332][T10953]  __do_fast_syscall_32+0x73/0x120
[  305.906099][T10953]  do_fast_syscall_32+0x32/0x80
[  305.907742][T10953]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  305.909844][T10953] RIP: 0023:0xf7f27579
[  305.911226][T10953] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  305.917650][T10953] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  305.920442][T10953] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200003c0
[  305.923131][T10953] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  305.925775][T10953] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  305.928544][T10953] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  305.931191][T10953] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  305.933832][T10953]  </TASK>
[  305.934950][    C1] vkms_vblank_simulate: vblank timer overrun
[  308.586078][T10984] FAULT_INJECTION: forcing a failure.
[  308.586078][T10984] name failslab, interval 1, probability 0, space 0, times 0
[  308.592438][T10984] CPU: 1 UID: 0 PID: 10984 Comm: syz.1.1756 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  308.595345][T10984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  308.598139][T10984] Call Trace:
[  308.599029][T10984]  <TASK>
[  308.599820][T10984]  dump_stack_lvl+0x16c/0x1f0
[  308.601068][T10984]  should_fail_ex+0x497/0x5b0
[  308.602328][T10984]  ? fs_reclaim_acquire+0xae/0x160
[  308.603675][T10984]  should_failslab+0xc2/0x120
[  308.604921][T10984]  __kmalloc_noprof+0xcb/0x410
[  308.606188][T10984]  ? __pfx_d_absolute_path+0x10/0x10
[  308.607588][T10984]  tomoyo_encode2+0x100/0x3e0
[  308.608875][T10984]  tomoyo_realpath_from_path+0x1a7/0x710
[  308.610352][T10984]  tomoyo_path_number_perm+0x245/0x5b0
[  308.611772][T10984]  ? tomoyo_path_number_perm+0x232/0x5b0
[  308.613240][T10984]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  308.614831][T10984]  ? trace_lock_acquire+0x14a/0x1d0
[  308.616188][T10984]  ? lock_acquire+0x2f/0xb0
[  308.617392][T10984]  ? __fget_files+0x40/0x3f0
[  308.618625][T10984]  ? __fget_files+0x244/0x3f0
[  308.619872][T10984]  security_file_ioctl_compat+0x9b/0x240
[  308.621347][T10984]  __do_compat_sys_ioctl+0x52/0x2b0
[  308.622728][T10984]  __do_fast_syscall_32+0x73/0x120
[  308.624154][T10984]  do_fast_syscall_32+0x32/0x80
[  308.625443][T10984]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  308.627108][T10984] RIP: 0023:0xf7f27579
[  308.628182][T10984] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  308.633151][T10984] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  308.635326][T10984] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c06864a2
[  308.637380][T10984] RDX: 0000000020000400 RSI: 0000000000000000 RDI: 0000000000000000
[  308.639449][T10984] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  308.641548][T10984] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  308.643604][T10984] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  308.645662][T10984]  </TASK>
[  308.646564][    C1] vkms_vblank_simulate: vblank timer overrun
[  308.655150][T10984] ERROR: Out of memory at tomoyo_realpath_from_path.
[  311.604901][T11002] FAULT_INJECTION: forcing a failure.
[  311.604901][T11002] name failslab, interval 1, probability 0, space 0, times 0
[  311.610272][T11002] CPU: 3 UID: 0 PID: 11002 Comm: syz.3.1760 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  311.613065][T11002] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  311.615904][T11002] Call Trace:
[  311.616797][T11002]  <TASK>
[  311.617593][T11002]  dump_stack_lvl+0x16c/0x1f0
[  311.618862][T11002]  should_fail_ex+0x497/0x5b0
[  311.620120][T11002]  ? fs_reclaim_acquire+0xae/0x160
[  311.621555][T11002]  should_failslab+0xc2/0x120
[  311.622872][T11002]  __kmalloc_noprof+0xcb/0x410
[  311.624303][T11002]  ? __pfx_d_absolute_path+0x10/0x10
[  311.625872][T11002]  tomoyo_encode2+0x100/0x3e0
[  311.627236][T11002]  tomoyo_realpath_from_path+0x1a7/0x710
[  311.628735][T11002]  tomoyo_path_number_perm+0x245/0x5b0
[  311.630201][T11002]  ? tomoyo_path_number_perm+0x232/0x5b0
[  311.631697][T11002]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  311.633303][T11002]  ? trace_lock_acquire+0x14a/0x1d0
[  311.634719][T11002]  ? lock_acquire+0x2f/0xb0
[  311.635934][T11002]  ? __fget_files+0x40/0x3f0
[  311.637173][T11002]  ? __fget_files+0x244/0x3f0
[  311.638427][T11002]  security_file_ioctl_compat+0x9b/0x240
[  311.639980][T11002]  __do_compat_sys_ioctl+0x52/0x2b0
[  311.641355][T11002]  __do_fast_syscall_32+0x73/0x120
[  311.642722][T11002]  do_fast_syscall_32+0x32/0x80
[  311.644010][T11002]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  311.645674][T11002] RIP: 0023:0xf7f58579
[  311.646760][T11002] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  311.651735][T11002] RSP: 002b:00000000f56b556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  311.653925][T11002] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c06864a2
[  311.656048][T11002] RDX: 0000000020000400 RSI: 0000000000000000 RDI: 0000000000000000
[  311.658108][T11002] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  311.660166][T11002] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  311.662219][T11002] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  311.664273][T11002]  </TASK>
[  311.665194][    C3] vkms_vblank_simulate: vblank timer overrun
[  311.667026][T11002] ERROR: Out of memory at tomoyo_realpath_from_path.
[  314.366385][T11041] FAULT_INJECTION: forcing a failure.
[  314.366385][T11041] name failslab, interval 1, probability 0, space 0, times 0
[  314.391180][T11041] CPU: 3 UID: 0 PID: 11041 Comm: syz.1.1771 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  314.394062][T11041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  314.396885][T11041] Call Trace:
[  314.397771][T11041]  <TASK>
[  314.398580][T11041]  dump_stack_lvl+0x16c/0x1f0
[  314.399831][T11041]  should_fail_ex+0x497/0x5b0
[  314.401072][T11041]  ? fs_reclaim_acquire+0xae/0x160
[  314.402443][T11041]  should_failslab+0xc2/0x120
[  314.403723][T11041]  __kmalloc_noprof+0xcb/0x410
[  314.405023][T11041]  ? __pfx_d_absolute_path+0x10/0x10
[  314.406518][T11041]  tomoyo_encode2+0x100/0x3e0
[  314.407849][T11041]  tomoyo_realpath_from_path+0x1a7/0x710
[  314.409389][T11041]  tomoyo_path_number_perm+0x245/0x5b0
[  314.410888][T11041]  ? tomoyo_path_number_perm+0x232/0x5b0
[  314.412358][T11041]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  314.413959][T11041]  ? trace_lock_acquire+0x14a/0x1d0
[  314.415359][T11041]  ? lock_acquire+0x2f/0xb0
[  314.416560][T11041]  ? __fget_files+0x40/0x3f0
[  314.417786][T11041]  ? __fget_files+0x244/0x3f0
[  314.419050][T11041]  security_file_ioctl_compat+0x9b/0x240
[  314.420527][T11041]  __do_compat_sys_ioctl+0x52/0x2b0
[  314.421981][T11041]  __do_fast_syscall_32+0x73/0x120
[  314.423364][T11041]  do_fast_syscall_32+0x32/0x80
[  314.424650][T11041]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  314.426350][T11041] RIP: 0023:0xf7f27579
[  314.427430][T11041] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  314.432514][T11041] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  314.434707][T11041] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c02064b6
[  314.436810][T11041] RDX: 00000000200003c0 RSI: 0000000000000000 RDI: 0000000000000000
[  314.438910][T11041] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  314.440974][T11041] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  314.443014][T11041] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  314.445080][T11041]  </TASK>
[  314.445927][    C3] vkms_vblank_simulate: vblank timer overrun
[  314.453943][T11041] ERROR: Out of memory at tomoyo_realpath_from_path.
[  316.144284][T11065] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  316.183097][T11068] syzkaller0: entered promiscuous mode
[  316.184618][T11068] syzkaller0: entered allmulticast mode
[  316.187807][T11068] FAULT_INJECTION: forcing a failure.
[  316.187807][T11068] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.221871][T11068] CPU: 3 UID: 0 PID: 11068 Comm: syz.0.1777 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  316.224849][T11068] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  316.227667][T11068] Call Trace:
[  316.228556][T11068]  <TASK>
[  316.229344][T11068]  dump_stack_lvl+0x16c/0x1f0
[  316.230606][T11068]  should_fail_ex+0x497/0x5b0
[  316.231859][T11068]  _copy_from_iter+0x29b/0x13e0
[  316.233146][T11068]  ? _copy_from_iter+0x159/0x13e0
[  316.234571][T11068]  ? __pfx__copy_from_iter+0x10/0x10
[  316.235963][T11068]  ? __pfx__copy_from_iter+0x10/0x10
[  316.237351][T11068]  ? __virt_addr_valid+0x1a4/0x590
[  316.238719][T11068]  copy_page_from_iter+0xa5/0x120
[  316.240055][T11068]  skb_copy_datagram_from_iter+0x29b/0x710
[  316.241588][T11068]  tun_get_user+0x1964/0x3d70
[  316.242843][T11068]  ? find_held_lock+0x2d/0x110
[  316.244141][T11068]  ? __pfx_tun_get_user+0x10/0x10
[  316.245595][T11068]  ? find_held_lock+0x2d/0x110
[  316.246893][T11068]  ? __pfx_lock_release+0x10/0x10
[  316.248347][T11068]  tun_chr_write_iter+0xdc/0x210
[  316.249736][T11068]  vfs_write+0x6b5/0x1140
[  316.250892][T11068]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  316.252345][T11068]  ? trace_lock_acquire+0x14a/0x1d0
[  316.253806][T11068]  ? __pfx_vfs_write+0x10/0x10
[  316.255094][T11068]  ? __fget_files+0x40/0x3f0
[  316.256356][T11068]  ksys_write+0x12f/0x260
[  316.257504][T11068]  ? __pfx_ksys_write+0x10/0x10
[  316.258800][T11068]  __do_fast_syscall_32+0x73/0x120
[  316.260155][T11068]  do_fast_syscall_32+0x32/0x80
[  316.261446][T11068]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  316.263197][T11068] RIP: 0023:0xf7f17579
[  316.264287][T11068] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  316.269364][T11068] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  316.271545][T11068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000200
[  316.273650][T11068] RDX: 000000000000ffdd RSI: 0000000000000000 RDI: 0000000000000000
[  316.275739][T11068] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  316.277814][T11068] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  316.279891][T11068] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  316.282039][T11068]  </TASK>
[  316.282923][    C3] vkms_vblank_simulate: vblank timer overrun
[  316.461981][ T1375] ieee802154 phy0 wpan0: encryption failed: -22
[  316.463707][ T1375] ieee802154 phy1 wpan1: encryption failed: -22
[  316.961987][T11085] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1783'.
[  316.973269][T11085] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1783'.
[  317.201276][T11103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1788'.
[  317.213261][T11103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1788'.
[  317.389493][T11109] block nbd0: not configured, cannot reconfigure
[  317.487961][T11113] FAULT_INJECTION: forcing a failure.
[  317.487961][T11113] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.492719][T11113] CPU: 0 UID: 0 PID: 11113 Comm: syz.0.1791 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  317.495537][T11113] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.498379][T11113] Call Trace:
[  317.499291][T11113]  <TASK>
[  317.500076][T11113]  dump_stack_lvl+0x16c/0x1f0
[  317.501324][T11113]  should_fail_ex+0x497/0x5b0
[  317.502577][T11113]  _copy_from_user+0x30/0xf0
[  317.503762][T11113]  get_compat_msghdr+0xa8/0x170
[  317.505043][T11113]  ? __pfx_get_compat_msghdr+0x10/0x10
[  317.506471][T11113]  ? __pfx___lock_acquire+0x10/0x10
[  317.507873][T11113]  ___sys_sendmsg+0x1b0/0x1e0
[  317.509113][T11113]  ? __pfx____sys_sendmsg+0x10/0x10
[  317.510489][T11113]  ? lock_acquire+0x2f/0xb0
[  317.511694][T11113]  ? __fget_files+0x40/0x3f0
[  317.512912][T11113]  ? fdget+0x176/0x210
[  317.513998][T11113]  __sys_sendmsg+0x117/0x1f0
[  317.515268][T11113]  ? __pfx___sys_sendmsg+0x10/0x10
[  317.516611][T11113]  ? __fget_files+0x244/0x3f0
[  317.517916][T11113]  __do_fast_syscall_32+0x73/0x120
[  317.519312][T11113]  do_fast_syscall_32+0x32/0x80
[  317.520596][T11113]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  317.522255][T11113] RIP: 0023:0xf7f17579
[  317.523342][T11113] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  317.528360][T11113] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  317.530591][T11113] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000280
[  317.532661][T11113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  317.534742][T11113] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  317.536796][T11113] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  317.538892][T11113] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  317.540960][T11113]  </TASK>
[  318.640343][T11118] block nbd0: shutting down sockets
[  318.662641][T11130] syzkaller0: entered promiscuous mode
[  318.664381][T11130] syzkaller0: entered allmulticast mode
[  319.372001][T11143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1799'.
[  319.414364][T11143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1799'.
[  319.495972][T11147] Bluetooth: MGMT ver 1.23
[  321.895529][T11181] FAULT_INJECTION: forcing a failure.
[  321.895529][T11181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.906906][T11181] CPU: 2 UID: 0 PID: 11181 Comm: syz.1.1811 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  321.909704][T11181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  321.912476][T11181] Call Trace:
[  321.913369][T11181]  <TASK>
[  321.914178][T11181]  dump_stack_lvl+0x16c/0x1f0
[  321.915420][T11181]  should_fail_ex+0x497/0x5b0
[  321.916657][T11181]  _copy_from_user+0x30/0xf0
[  321.917876][T11181]  kstrtouint_from_user+0xd7/0x1c0
[  321.919230][T11181]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  321.920759][T11181]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  321.922246][T11181]  proc_fail_nth_write+0x84/0x250
[  321.923574][T11181]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  321.925051][T11181]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  321.926530][T11181]  vfs_write+0x28e/0x1140
[  321.927673][T11181]  ? __fget_files+0x23a/0x3f0
[  321.928914][T11181]  ? fdget_pos+0x24c/0x360
[  321.930106][T11181]  ? __pfx_lock_release+0x10/0x10
[  321.931446][T11181]  ? trace_lock_acquire+0x14a/0x1d0
[  321.932827][T11181]  ? __pfx_vfs_write+0x10/0x10
[  321.934111][T11181]  ? __pfx___mutex_lock+0x10/0x10
[  321.935449][T11181]  ? __fget_files+0x244/0x3f0
[  321.936692][T11181]  ksys_write+0x12f/0x260
[  321.937954][T11181]  ? __pfx_ksys_write+0x10/0x10
[  321.939244][T11181]  __do_fast_syscall_32+0x73/0x120
[  321.940590][T11181]  do_fast_syscall_32+0x32/0x80
[  321.941876][T11181]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  321.943550][T11181] RIP: 0023:0xf7f27579
[  321.944629][T11181] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  321.949615][T11181] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  321.951784][T11181] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f56a6620
[  321.953849][T11181] RDX: 0000000000000001 RSI: 00000000f73abff4 RDI: 0000000000000000
[  321.955925][T11181] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  321.957981][T11181] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  321.960035][T11181] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  321.962103][T11181]  </TASK>
[  321.963230][    C2] hpet: Lost 2 RTC interrupts
[  322.031857][T11188] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1812'.
[  322.037390][T11187] binder: BINDER_SET_CONTEXT_MGR already set
[  322.040283][T11187] binder: 11179:11187 ioctl 4018620d 20000040 returned -16
[  322.088462][T11188] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1812'.
[  322.239398][T11182] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  322.728462][T11210] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1819'.
[  323.349487][T11218] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  323.352168][T11218] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  323.365371][T11218] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  323.531211][T11225] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1825'.
[  323.536126][T11225] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1825'.
[  324.627384][   T39] audit: type=1326 audit(1727951728.236:6194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11253 comm="syz.3.1832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7fc00000
[  324.633923][   T39] audit: type=1326 audit(1727951728.236:6195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11253 comm="syz.3.1832" exe="/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf7f58579 code=0x7fc00000
[  324.671117][   T39] audit: type=1326 audit(1727951728.276:6196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11253 comm="syz.3.1832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7fc00000
[  325.359139][T11267] block device autoloading is deprecated and will be removed.
[  325.418315][ T5352] Bluetooth: hci4: command 0x0c1a tx timeout
[  325.539615][T11266] md: could not open device unknown-block(0,0).
[  325.542438][T11266] md: md_import_device returned -6
[  325.544490][   T39] audit: type=1326 audit(1727951729.146:6197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11265 comm="syz.1.1835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7fc00000
[  325.567123][   T39] audit: type=1326 audit(1727951729.156:6198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11265 comm="syz.1.1835" exe="/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf7f27579 code=0x7fc00000
[  325.587177][   T39] audit: type=1326 audit(1727951729.156:6199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11265 comm="syz.1.1835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7fc00000
[  325.782564][T11285] binder: BINDER_SET_CONTEXT_MGR already set
[  325.784166][T11285] binder: 11284:11285 ioctl 4018620d 20000040 returned -16
[  326.082915][T11301] FAULT_INJECTION: forcing a failure.
[  326.082915][T11301] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  326.086276][T11301] CPU: 2 UID: 0 PID: 11301 Comm: syz.0.1847 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  326.089055][T11301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.091844][T11301] Call Trace:
[  326.092735][T11301]  <TASK>
[  326.093509][T11301]  dump_stack_lvl+0x16c/0x1f0
[  326.094773][T11301]  should_fail_ex+0x497/0x5b0
[  326.096013][T11301]  _copy_to_user+0x30/0xc0
[  326.097185][T11301]  simple_read_from_buffer+0xd0/0x160
[  326.098593][T11301]  proc_fail_nth_read+0x198/0x270
[  326.099912][T11301]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  326.101365][T11301]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  326.102819][T11301]  vfs_read+0x1ce/0xbd0
[  326.103921][T11301]  ? __fget_files+0x23a/0x3f0
[  326.105318][T11301]  ? fdget_pos+0x24c/0x360
[  326.106535][T11301]  ? __pfx_lock_release+0x10/0x10
[  326.107876][T11301]  ? trace_lock_acquire+0x14a/0x1d0
[  326.109249][T11301]  ? __pfx_vfs_read+0x10/0x10
[  326.110501][T11301]  ? __pfx___mutex_lock+0x10/0x10
[  326.111835][T11301]  ? __fget_files+0x244/0x3f0
[  326.113091][T11301]  ksys_read+0x12f/0x260
[  326.114243][T11301]  ? __pfx_ksys_read+0x10/0x10
[  326.115529][T11301]  __do_fast_syscall_32+0x73/0x120
[  326.116882][T11301]  do_fast_syscall_32+0x32/0x80
[  326.118172][T11301]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  326.119827][T11301] RIP: 0023:0xf7f17579
[  326.120909][T11301] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  326.125961][T11301] RSP: 002b:00000000f56965a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  326.128138][T11301] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5696620
[  326.130196][T11301] RDX: 000000000000000f RSI: 00000000f739bff4 RDI: 0000000000000000
[  326.132249][T11301] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  326.134318][T11301] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  326.136379][T11301] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  326.138458][T11301]  </TASK>
[  326.139673][    C2] hpet: Lost 3 RTC interrupts
[  326.317126][T11309] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1851'.
[  327.046259][T11306] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  327.431618][T11330] netlink: 'syz.1.1857': attribute type 10 has an invalid length.
[  327.434241][T11330] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.436632][T11330] bridge0: port 1(bridge_slave_0) entered disabled state
[  327.445085][T11330] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.447013][T11330] bridge0: port 2(bridge_slave_1) entered forwarding state
[  327.448985][T11330] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.450886][T11330] bridge0: port 1(bridge_slave_0) entered forwarding state
[  327.455418][T11330] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  327.460618][T11330] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1857'.
[  327.462978][T11330] bridge_slave_1: left allmulticast mode
[  327.464578][T11330] bridge_slave_1: left promiscuous mode
[  327.466138][T11330] bridge0: port 2(bridge_slave_1) entered disabled state
[  327.469692][T11330] bridge_slave_0: left allmulticast mode
[  327.471180][T11330] bridge_slave_0: left promiscuous mode
[  327.472696][T11330] bridge0: port 1(bridge_slave_0) entered disabled state
[  327.515980][T11330] bond0: (slave bridge0): Releasing backup interface
[  328.356840][T11343] binder: BINDER_SET_CONTEXT_MGR already set
[  328.373204][T11343] binder: 11342:11343 ioctl 4018620d 20000040 returned -16
[  328.527026][ T5352] Bluetooth: hci4: command 0x0c1a tx timeout
[  329.514903][T11347] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  330.204883][T11362] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  330.362578][T11368] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1867'.
[  330.648319][T11377] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.1869'.
[  330.872505][T11379] netlink: 176 bytes leftover after parsing attributes in process `syz.1.1870'.
[  330.875732][T11379] netlink: 'syz.1.1870': attribute type 1 has an invalid length.
[  330.927005][ T5352] Bluetooth: hci4: command 0x0c1a tx timeout
[  331.667610][T11384] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  331.682460][T11384] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  331.694622][   T39] audit: type=1804 audit(1727951735.296:6200): pid=11384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1872" name="/newroot/81/bus/file0" dev="overlay" ino=465 res=1 errno=0
[  332.508957][T11386] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  332.544991][T11387] Process accounting resumed
[  332.673505][T11409] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1880'.
[  332.784034][T11411] loop0: detected capacity change from 0 to 128
[  332.792193][T11411]  loop0: [CUMANA/ADFS] p1 [ADFS] p1
[  332.793762][T11411] loop0: partition table partially beyond EOD, truncated
[  332.797788][T11411] loop0: p1 size 348879409 extends beyond EOD, truncated
[  332.991025][T10741] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.082480][T10741] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.237604][T10741] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.308376][T10741] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  333.697743][T10741] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  333.702514][T10741] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  333.706447][T10741] bond0 (unregistering): Released all slaves
[  334.077423][T10741] hsr_slave_0: left promiscuous mode
[  334.079481][T10741] hsr_slave_1: left promiscuous mode
[  334.081412][T10741] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  334.083492][T10741] batman_adv: batadv0: Removing interface: batadv_slave_0
[  334.085895][T10741] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  334.089052][T10741] batman_adv: batadv0: Removing interface: batadv_slave_1
[  334.113725][T10741] veth1_macvtap: left promiscuous mode
[  334.115252][T10741] veth0_macvtap: left promiscuous mode
[  334.116726][T10741] veth1_vlan: left promiscuous mode
[  334.118462][T10741] veth0_vlan: left promiscuous mode
[  335.031538][T10741] team0 (unregistering): Port device team_slave_1 removed
[  335.133249][T10741] team0 (unregistering): Port device team_slave_0 removed
[  336.104968][ T5358] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  336.129318][ T5358] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  336.139857][ T5358] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  336.144661][ T5358] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  336.147892][ T5358] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  336.150112][ T5358] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  336.345293][T11450] chnl_net:caif_netlink_parms(): no params data found
[  336.650071][T11450] bridge0: port 1(bridge_slave_0) entered blocking state
[  336.655483][T11450] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.661336][T11450] bridge_slave_0: entered allmulticast mode
[  336.665371][T11450] bridge_slave_0: entered promiscuous mode
[  336.672183][T11450] bridge0: port 2(bridge_slave_1) entered blocking state
[  336.676232][T11450] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.682086][T11450] bridge_slave_1: entered allmulticast mode
[  336.688332][T11450] bridge_slave_1: entered promiscuous mode
[  336.776080][T11450] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  336.818380][T11450] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  336.979393][T11450] team0: Port device team_slave_0 added
[  336.983763][T11450] team0: Port device team_slave_1 added
[  337.029269][T11459] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  337.031968][T11459] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  337.042459][T11459] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  337.069522][T11450] batman_adv: batadv0: Adding interface: batadv_slave_0
[  337.076099][T11450] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  337.083377][T11450] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  337.090998][T11450] batman_adv: batadv0: Adding interface: batadv_slave_1
[  337.093227][T11450] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  337.109575][T11450] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  337.204660][T11450] hsr_slave_0: entered promiscuous mode
[  337.213276][T11450] hsr_slave_1: entered promiscuous mode
[  337.299529][T11495] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1890'.
[  338.335169][T11450] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  338.339752][T11450] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  338.368725][T11450] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  338.372414][T11450] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  338.421068][T11450] 8021q: adding VLAN 0 to HW filter on device bond0
[  338.431250][T11450] 8021q: adding VLAN 0 to HW filter on device team0
[  338.437844][ T1097] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.439790][ T1097] bridge0: port 1(bridge_slave_0) entered forwarding state
[  338.444535][ T1097] bridge0: port 2(bridge_slave_1) entered blocking state
[  338.446422][ T1097] bridge0: port 2(bridge_slave_1) entered forwarding state
[  338.527015][ T5352] Bluetooth: hci4: command 0x041b tx timeout
[  338.676521][T11450] 8021q: adding VLAN 0 to HW filter on device batadv0
[  338.787560][T11450] veth0_vlan: entered promiscuous mode
[  338.799641][T11450] veth1_vlan: entered promiscuous mode
[  338.830758][T11450] veth0_macvtap: entered promiscuous mode
[  338.848132][T11450] veth1_macvtap: entered promiscuous mode
[  338.897399][T11450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.914548][T11450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.917269][T11450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.919953][T11450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.923593][T11450] batman_adv: batadv0: Interface activated: batadv_slave_0
[  338.948306][T11450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.954600][T11450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.968055][T11450] batman_adv: batadv0: Interface activated: batadv_slave_1
[  338.992005][T11450] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  338.994481][T11450] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  339.001636][T11450] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  339.003936][T11450] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  339.067723][T10744] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  339.069790][T10744] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  339.093427][ T1111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  339.095492][ T1111] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  339.585789][T11559] fuse: Unknown parameter 'ft'
[  339.650233][T11562] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1892'.
[  339.713089][T11567] loop0: detected capacity change from 0 to 128
[  339.716294][T11567]  loop0: [CUMANA/ADFS] p1 [ADFS] p1
[  339.717975][T11567] loop0: partition table partially beyond EOD, truncated
[  339.720917][T11567] loop0: p1 size 348879409 extends beyond EOD, truncated
[  340.127558][T11584] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1897'.
[  340.153188][T11584] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1897'.
[  340.477318][T11599] random: crng reseeded on system resumption
[  340.479889][T11598] FAULT_INJECTION: forcing a failure.
[  340.479889][T11598] name failslab, interval 1, probability 0, space 0, times 0
[  340.483364][T11598] CPU: 3 UID: 0 PID: 11598 Comm: syz.2.1899 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  340.486192][T11598] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  340.488982][T11598] Call Trace:
[  340.489864][T11598]  <TASK>
[  340.490669][T11598]  dump_stack_lvl+0x16c/0x1f0
[  340.491935][T11598]  should_fail_ex+0x497/0x5b0
[  340.493190][T11598]  ? fs_reclaim_acquire+0xae/0x160
[  340.494574][T11598]  should_failslab+0xc2/0x120
[  340.495824][T11598]  __kmalloc_node_noprof+0xd1/0x440
[  340.497200][T11598]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  340.498766][T11598]  __kvmalloc_node_noprof+0xad/0x1a0
[  340.500170][T11598]  nf_hook_entries_grow+0x282/0x810
[  340.501542][T11598]  ? __call_rcu_common.constprop.0+0x36e/0x7a0
[  340.503154][T11598]  __nf_register_net_hook+0x1cd/0x730
[  340.504567][T11598]  nf_register_net_hook+0x109/0x160
[  340.505957][T11598]  nf_register_net_hooks+0x5d/0xd0
[  340.507341][T11598]  nf_ct_netns_do_get+0x38b/0x620
[  340.508680][T11598]  ? __pfx_nf_ct_netns_do_get+0x10/0x10
[  340.510158][T11598]  ? nft_validate_register_store+0xc0/0x1f0
[  340.511712][T11598]  nf_ct_netns_get+0x39/0x150
[  340.512946][T11598]  nft_ct_get_init+0x2ae/0x730
[  340.514271][T11598]  ? __pfx_nft_ct_get_init+0x10/0x10
[  340.515675][T11598]  nf_tables_newrule+0xe99/0x2890
[  340.517012][T11598]  ? __pfx_nf_tables_newrule+0x10/0x10
[  340.518516][T11598]  ? net_generic+0xea/0x2a0
[  340.519725][T11598]  ? __pfx_lock_release+0x10/0x10
[  340.521060][T11598]  ? trace_lock_acquire+0x14a/0x1d0
[  340.522463][T11598]  ? __nla_parse+0x40/0x60
[  340.523645][T11598]  nfnetlink_rcv_batch+0x1a28/0x24e0
[  340.525051][T11598]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  340.526557][T11598]  ? __pfx_lock_release+0x10/0x10
[  340.527942][T11598]  ? __local_bh_enable_ip+0xa4/0x120
[  340.529340][T11598]  ? lockdep_hardirqs_on+0x7c/0x110
[  340.530828][T11598]  ? __pfx___dev_queue_xmit+0x10/0x10
[  340.532256][T11598]  ? __nla_parse+0x40/0x60
[  340.533442][T11598]  nfnetlink_rcv+0x3c3/0x430
[  340.534706][T11598]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  340.536056][T11598]  netlink_unicast+0x53c/0x7f0
[  340.537330][T11598]  ? __pfx_netlink_unicast+0x10/0x10
[  340.538792][T11598]  ? __phys_addr_symbol+0x30/0x80
[  340.540132][T11598]  ? __check_object_size+0x488/0x710
[  340.541527][T11598]  netlink_sendmsg+0x8b8/0xd70
[  340.542826][T11598]  ? __pfx_netlink_sendmsg+0x10/0x10
[  340.544228][T11598]  ? lock_acquire+0x2f/0xb0
[  340.545441][T11598]  ____sys_sendmsg+0x9ae/0xb40
[  340.546801][T11598]  ? __pfx_____sys_sendmsg+0x10/0x10
[  340.548198][T11598]  ? get_compat_msghdr+0x11b/0x170
[  340.549556][T11598]  ? __pfx___lock_acquire+0x10/0x10
[  340.550961][T11598]  ___sys_sendmsg+0x135/0x1e0
[  340.552214][T11598]  ? __pfx____sys_sendmsg+0x10/0x10
[  340.553611][T11598]  ? lock_acquire+0x2f/0xb0
[  340.554837][T11598]  ? __fget_files+0x40/0x3f0
[  340.556068][T11598]  ? fdget+0x176/0x210
[  340.557160][T11598]  __sys_sendmsg+0x117/0x1f0
[  340.558450][T11598]  ? __pfx___sys_sendmsg+0x10/0x10
[  340.559803][T11598]  ? __fget_files+0x244/0x3f0
[  340.561077][T11598]  __do_fast_syscall_32+0x73/0x120
[  340.562495][T11598]  do_fast_syscall_32+0x32/0x80
[  340.563790][T11598]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  340.565456][T11598] RIP: 0023:0xf73be579
[  340.566562][T11598] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  340.571600][T11598] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  340.573785][T11598] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  340.575876][T11598] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  340.578078][T11598] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  340.580152][T11598] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  340.582253][T11598] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  340.584336][T11598]  </TASK>
[  340.616992][ T5352] Bluetooth: hci4: command 0x041b tx timeout
[  340.667340][T11599] bridge0: port 1(bridge_slave_0) entered disabled state
[  340.723903][T11599] bridge0: port 2(bridge_slave_1) entered disabled state
[  340.860937][T11606] bridge0: port 1(bridge_slave_0) entered blocking state
[  340.862837][T11606] bridge0: port 1(bridge_slave_0) entered forwarding state
[  340.868674][T11606] bridge0: port 2(bridge_slave_1) entered blocking state
[  340.870599][T11606] bridge0: port 2(bridge_slave_1) entered forwarding state
[  340.948819][T11625] FAULT_INJECTION: forcing a failure.
[  340.948819][T11625] name failslab, interval 1, probability 0, space 0, times 0
[  340.952634][T11625] CPU: 0 UID: 0 PID: 11625 Comm: syz.2.1906 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  340.955486][T11625] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  340.958300][T11625] Call Trace:
[  340.959187][T11625]  <TASK>
[  340.959983][T11625]  dump_stack_lvl+0x16c/0x1f0
[  340.961244][T11625]  should_fail_ex+0x497/0x5b0
[  340.962507][T11625]  ? fs_reclaim_acquire+0xae/0x160
[  340.963873][T11625]  should_failslab+0xc2/0x120
[  340.965126][T11625]  __kmalloc_noprof+0xcb/0x410
[  340.966408][T11625]  ? find_held_lock+0x2d/0x110
[  340.967737][T11625]  ovl_cache_entry_new+0x38/0x700
[  340.969086][T11625]  ? __pfx_lock_release+0x10/0x10
[  340.970439][T11625]  ? do_raw_spin_lock+0x12d/0x2c0
[  340.971783][T11625]  ovl_fill_merge+0x5ee/0xa80
[  340.973180][T11625]  offset_readdir+0x41f/0xaa0
[  340.974970][T11625]  ? __pfx_ovl_fill_merge+0x10/0x10
[  340.976623][T11625]  ? __pfx_offset_readdir+0x10/0x10
[  340.978333][T11625]  ? apparmor_file_permission+0x251/0x400
[  340.979850][T11625]  iterate_dir+0x52f/0xb40
[  340.981057][T11625]  ovl_dir_read_merged+0x21d/0x5d0
[  340.982441][T11625]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[  340.984000][T11625]  ? __pfx_ovl_fill_merge+0x10/0x10
[  340.985394][T11625]  ? kasan_save_track+0x14/0x30
[  340.986718][T11625]  ovl_iterate+0x865/0xe40
[  340.987928][T11625]  ? down_read_killable+0xcc/0x380
[  340.989317][T11625]  ? __pfx_down_read_killable+0x10/0x10
[  340.990816][T11625]  ? __pfx_ovl_iterate+0x10/0x10
[  340.992152][T11625]  wrap_directory_iterator+0x9f/0xe0
[  340.993569][T11625]  iterate_dir+0x52f/0xb40
[  340.994814][T11625]  __ia32_compat_sys_getdents+0x14c/0x2d0
[  340.996334][T11625]  ? __pfx___ia32_compat_sys_getdents+0x10/0x10
[  340.998010][T11625]  ? __pfx_compat_filldir+0x10/0x10
[  340.999452][T11625]  __do_fast_syscall_32+0x73/0x120
[  341.000825][T11625]  do_fast_syscall_32+0x32/0x80
[  341.002148][T11625]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  341.003834][T11625] RIP: 0023:0xf73be579
[  341.004939][T11625] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  341.010097][T11625] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 000000000000008d
[  341.012287][T11625] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000300
[  341.014420][T11625] RDX: 0000000000000068 RSI: 0000000000000000 RDI: 0000000000000000
[  341.016495][T11625] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  341.018575][T11625] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  341.020645][T11625] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  341.022753][T11625]  </TASK>
[  341.072377][T11630] FAULT_INJECTION: forcing a failure.
[  341.072377][T11630] name failslab, interval 1, probability 0, space 0, times 0
[  341.076481][T11630] CPU: 0 UID: 0 PID: 11630 Comm: syz.2.1907 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  341.079363][T11630] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  341.082952][T11630] Call Trace:
[  341.084096][T11630]  <TASK>
[  341.085114][T11630]  dump_stack_lvl+0x16c/0x1f0
[  341.086735][T11630]  should_fail_ex+0x497/0x5b0
[  341.088346][T11630]  should_failslab+0xc2/0x120
[  341.089958][T11630]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  341.091769][T11630]  ? skb_clone+0x190/0x3f0
[  341.093124][T11630]  skb_clone+0x190/0x3f0
[  341.094297][T11630]  neigh_probe+0x54/0x110
[  341.095452][T11630]  __neigh_event_send+0xaa7/0x13b0
[  341.096809][T11630]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  341.098311][T11630]  neigh_resolve_output+0x5ed/0x950
[  341.099682][T11630]  ? ip_finish_output2+0x364/0x2530
[  341.101058][T11630]  ip_finish_output2+0x82d/0x2530
[  341.102406][T11630]  ? mark_held_locks+0x9f/0xe0
[  341.103676][T11630]  ? __pfx_ip_finish_output2+0x10/0x10
[  341.105116][T11630]  ? ip_skb_dst_mtu+0x3fc/0xc70
[  341.106421][T11630]  ? __pfx_ip_skb_dst_mtu+0x10/0x10
[  341.107796][T11630]  __ip_finish_output+0x49e/0x950
[  341.109165][T11630]  ip_finish_output+0x31/0x310
[  341.110655][T11630]  ip_output+0x13b/0x2a0
[  341.111808][T11630]  ? __pfx_ip_output+0x10/0x10
[  341.113092][T11630]  ip_push_pending_frames+0x2fb/0x5b0
[  341.114539][T11630]  raw_sendmsg+0x1475/0x3ad0
[  341.115788][T11630]  ? __pfx_raw_sendmsg+0x10/0x10
[  341.117111][T11630]  ? __pfx_tomoyo_check_inet_address+0x10/0x10
[  341.118776][T11630]  ? __pfx___might_resched+0x10/0x10
[  341.120215][T11630]  ? __pfx_aa_sk_perm+0x10/0x10
[  341.121522][T11630]  ? __import_iovec+0x1fd/0x6e0
[  341.122841][T11630]  ? __pfx_raw_sendmsg+0x10/0x10
[  341.124232][T11630]  ? inet_sendmsg+0x119/0x140
[  341.125471][T11630]  inet_sendmsg+0x119/0x140
[  341.126697][T11630]  ____sys_sendmsg+0x907/0xb40
[  341.127968][T11630]  ? __pfx_____sys_sendmsg+0x10/0x10
[  341.129372][T11630]  ? get_compat_msghdr+0x11b/0x170
[  341.130769][T11630]  ? __pfx___lock_acquire+0x10/0x10
[  341.132143][T11630]  ___sys_sendmsg+0x135/0x1e0
[  341.133396][T11630]  ? __pfx____sys_sendmsg+0x10/0x10
[  341.134791][T11630]  ? lock_acquire+0x2f/0xb0
[  341.135966][T11630]  ? __fget_files+0x40/0x3f0
[  341.137191][T11630]  ? fdget+0x176/0x210
[  341.138280][T11630]  __sys_sendmsg+0x117/0x1f0
[  341.139581][T11630]  ? __pfx___sys_sendmsg+0x10/0x10
[  341.140946][T11630]  ? __fget_files+0x244/0x3f0
[  341.142208][T11630]  __do_fast_syscall_32+0x73/0x120
[  341.143583][T11630]  do_fast_syscall_32+0x32/0x80
[  341.144876][T11630]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  341.146549][T11630] RIP: 0023:0xf73be579
[  341.147631][T11630] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  341.152625][T11630] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  341.154848][T11630] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000340
[  341.156953][T11630] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  341.159027][T11630] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  341.161085][T11630] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  341.163178][T11630] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  341.165537][T11630]  </TASK>
[  341.432348][T11645] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1911'.
[  341.528801][T11646] loop0: detected capacity change from 0 to 128
[  341.534874][T11646]  loop0: [CUMANA/ADFS] p1 [ADFS] p1
[  341.536339][T11646] loop0: partition table partially beyond EOD, truncated
[  341.547922][T11646] loop0: p1 size 348879409 extends beyond EOD, truncated
[  341.729743][ T4841]  loop0: [CUMANA/ADFS] p1 [ADFS] p1
[  341.732376][ T4841] loop0: partition table partially beyond EOD, truncated
[  341.736313][ T4841] loop0: p1 size 348879409 extends beyond EOD, truncated
[  341.826350][T11652] FAULT_INJECTION: forcing a failure.
[  341.826350][T11652] name failslab, interval 1, probability 0, space 0, times 0
[  341.830264][T11652] CPU: 0 UID: 0 PID: 11652 Comm: syz.0.1913 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  341.833099][T11652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  341.836407][T11652] Call Trace:
[  341.837481][T11652]  <TASK>
[  341.838398][T11652]  dump_stack_lvl+0x16c/0x1f0
[  341.839958][T11652]  should_fail_ex+0x497/0x5b0
[  341.841433][T11652]  should_failslab+0xc2/0x120
[  341.843073][T11652]  __kmalloc_node_track_caller_noprof+0xcf/0x440
[  341.845418][T11652]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  341.847307][T11652]  ? sctp_addr_wq_mgmt+0x41a/0x7d0
[  341.849145][T11652]  ? sctp_addr_wq_mgmt+0x42/0x7d0
[  341.850972][T11652]  kmemdup_noprof+0x29/0x60
[  341.852475][T11652]  sctp_addr_wq_mgmt+0x41a/0x7d0
[  341.854059][T11652]  ? lock_acquire+0x2f/0xb0
[  341.855387][T11652]  ? sctp_inetaddr_event+0x488/0x6d0
[  341.856919][T11652]  sctp_inetaddr_event+0x586/0x6d0
[  341.858585][T11652]  ? ieee80211_ifa_changed+0xe3/0x6a0
[  341.860417][T11652]  notifier_call_chain+0xb9/0x410
[  341.862138][T11652]  ? __pfx_sctp_inetaddr_event+0x10/0x10
[  341.864069][T11652]  blocking_notifier_call_chain+0x69/0xa0
[  341.865746][T11652]  __inet_insert_ifa+0x93f/0xc30
[  341.867487][T11652]  ? __pfx___inet_insert_ifa+0x10/0x10
[  341.869577][T11652]  inet_rtm_newaddr+0x565/0xae0
[  341.871463][T11652]  ? rtnetlink_rcv_msg+0x35a/0xea0
[  341.873457][T11652]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  341.875666][T11652]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  341.877720][T11652]  rtnetlink_rcv_msg+0x3c7/0xea0
[  341.879508][T11652]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.881353][T11652]  ? __pfx___lock_acquire+0x10/0x10
[  341.883107][T11652]  netlink_rcv_skb+0x165/0x410
[  341.884716][T11652]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  341.886570][T11652]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  341.888348][T11652]  ? netlink_deliver_tap+0x1ae/0xcf0
[  341.890126][T11652]  netlink_unicast+0x53c/0x7f0
[  341.891730][T11652]  ? __pfx_netlink_unicast+0x10/0x10
[  341.893491][T11652]  ? netlink_sendmsg+0x822/0xd70
[  341.895203][T11652]  netlink_sendmsg+0x8b8/0xd70
[  341.896957][T11652]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.898938][T11652]  sock_sendmsg+0x369/0x410
[  341.900413][T11652]  ? pipe_lock+0x64/0x80
[  341.901801][T11652]  ? __pfx_sock_sendmsg+0x10/0x10
[  341.903694][T11652]  splice_to_socket+0xaac/0x1040
[  341.905480][T11652]  ? find_held_lock+0x2d/0x110
[  341.907070][T11652]  ? __pfx_splice_to_socket+0x10/0x10
[  341.908833][T11652]  ? apparmor_file_permission+0x251/0x400
[  341.910624][T11652]  ? bpf_lsm_file_permission+0x9/0x10
[  341.912485][T11652]  ? security_file_permission+0x71/0x210
[  341.914419][T11652]  ? rw_verify_area+0xd0/0x700
[  341.916093][T11652]  ? __pfx_splice_to_socket+0x10/0x10
[  341.917991][T11652]  do_splice+0x145c/0x1f60
[  341.919503][T11652]  ? find_held_lock+0x2d/0x110
[  341.921227][T11652]  ? __pfx_do_splice+0x10/0x10
[  341.922842][T11652]  ? __pfx_pipe_clear_nowait+0x10/0x10
[  341.924727][T11652]  ? trace_lock_acquire+0x14a/0x1d0
[  341.926468][T11652]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  341.928465][T11652]  __do_splice+0x327/0x360
[  341.929970][T11652]  ? __pfx___do_splice+0x10/0x10
[  341.931596][T11652]  __ia32_sys_splice+0x1ce/0x270
[  341.933216][T11652]  __do_fast_syscall_32+0x73/0x120
[  341.934911][T11652]  do_fast_syscall_32+0x32/0x80
[  341.936597][T11652]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  341.938747][T11652] RIP: 0023:0xf7f17579
[  341.940110][T11652] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  341.946477][T11652] RSP: 002b:00000000f567556c EFLAGS: 00000296 ORIG_RAX: 0000000000000139
[  341.949325][T11652] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[  341.951969][T11652] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000008001
[  341.954663][T11652] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  341.957297][T11652] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  341.959938][T11652] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  341.962496][T11652]  </TASK>
[  341.963624][    C0] vkms_vblank_simulate: vblank timer overrun
[  342.251383][    C2] hpet: Lost 1 RTC interrupts
[  342.394132][    C2] hpet: Lost 1 RTC interrupts
[  342.687036][ T5352] Bluetooth: hci4: command 0x041b tx timeout
[  342.718573][   T39] audit: type=1800 audit(1727951746.306:6201): pid=11671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1922" name="bus" dev="9p" ino=35922823 res=0 errno=0
[  342.844372][   T39] audit: type=1800 audit(1727951746.446:6202): pid=11672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.0.1922" name="/" dev="sockfs" ino=51290 res=0 errno=0
[  343.098108][    C2] hpet: Lost 1 RTC interrupts
[  343.137695][T11682] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1924'.
[  344.774406][ T5352] Bluetooth: hci4: command 0x041b tx timeout
[  346.847084][ T5352] Bluetooth: hci4: command 0x041b tx timeout
[  346.889622][    C2] hpet: Lost 1 RTC interrupts
[  346.937609][T11712] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1928'.
[  346.957002][   T39] audit: type=1800 audit(1727951750.556:6203): pid=11711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1931" name="bus" dev="9p" ino=35922823 res=0 errno=0
[  346.961370][T11711] netfs: Couldn't get user pages (rc=-14)
[  346.996523][T11713] fuse: Unknown parameter 'ˆ!bøB'
[  347.031440][T11715] loop0: detected capacity change from 0 to 128
[  347.038928][T11715]  loop0: [CUMANA/ADFS] p1 [ADFS] p1
[  347.040839][T11715] loop0: partition table partially beyond EOD, truncated
[  347.043443][T11715] loop0: p1 size 348879409 extends beyond EOD, truncated
[  347.153610][   T39] audit: type=1800 audit(1727951750.736:6204): pid=11711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.1931" name="/" dev="sockfs" ino=49577 res=0 errno=0
[  347.600023][T11732] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  347.616106][T11732] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  347.687338][T11732] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000b: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  347.694060][T11732] KASAN: null-ptr-deref in range [0x0000000000000058-0x000000000000005f]
[  347.704464][T11732] CPU: 2 UID: 0 PID: 11732 Comm: syz.1.1938 Not tainted 6.12.0-rc1-syzkaller-00042-gf23aa4c0761a #0
[  347.708529][T11732] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.712043][T11732] RIP: 0010:follow_pfnmap_start+0x115/0xdc0
[  347.721763][T11732] Code: 48 c1 ea 03 80 3c 02 00 0f 85 10 0b 00 00 4c 8b bd 80 00 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7f 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 d3 0a 00 00 48 c7 c0 38 f8 1c 90 49 8b 57 58 48
[  347.728412][T11732] RSP: 0018:ffffc90007acf498 EFLAGS: 00010202
[  347.730517][T11732] RAX: dffffc0000000000 RBX: ffffc90007acf578 RCX: ffffc900034c1000
[  347.732946][T11732] RDX: 000000000000000b RSI: ffffffff81d4293a RDI: 0000000000000058
[  347.735767][T11732] RBP: ffff88800021bd90 R08: 0000000000000007 R09: 0000000000000000
[  347.738342][T11732] R10: 0000000001000000 R11: 0000000000000000 R12: 0000000020ffb000
[  347.740289][T11732] R13: 1ffff92000f59e97 R14: ffff888071541300 R15: 0000000000000000
[  347.742610][T11732] FS:  0000000000000000(0000) GS:ffff88802b600000(0063) knlGS:00000000f5696b40
[  347.745545][T11732] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  347.747792][T11732] CR2: 00000000f735b1dc CR3: 000000006a450000 CR4: 0000000000352ef0
[  347.750661][T11732] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  347.753141][T11732] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  347.756309][T11732] Call Trace:
[  347.757649][T11732]  <TASK>
[  347.758617][T11732]  ? die_addr+0x3b/0xa0
[  347.759999][T11732]  ? exc_general_protection+0x155/0x230
[  347.761685][T11732]  ? asm_exc_general_protection+0x26/0x30
[  347.763700][T11732]  ? follow_pfnmap_start+0x6a/0xdc0
[  347.765507][T11732]  ? follow_pfnmap_start+0x115/0xdc0
[  347.767267][T11732]  ? follow_pfnmap_start+0x6a/0xdc0
[  347.769111][T11732]  ? __pfx_follow_pfnmap_start+0x10/0x10
[  347.771199][T11732]  ? hlock_class+0x4e/0x130
[  347.772769][T11732]  ? __lock_acquire+0x163e/0x3ce0
[  347.774554][T11732]  get_pat_info+0x118/0x320
[  347.776166][T11732]  ? __pfx_get_pat_info+0x10/0x10
[  347.777927][T11732]  untrack_pfn+0xf7/0x4d0
[  347.779430][T11732]  ? __pfx_untrack_pfn+0x10/0x10
[  347.781232][T11732]  ? unmap_vmas+0x1d1/0x490
[  347.782893][T11732]  ? __pfx_lock_release+0x10/0x10
[  347.784911][T11732]  ? trace_lock_acquire+0x14a/0x1d0
[  347.787039][T11732]  unmap_single_vma+0x1bd/0x2b0
[  347.789098][T11732]  unmap_vmas+0x22f/0x490
[  347.790828][T11732]  ? __pfx_unmap_vmas+0x10/0x10
[  347.792546][T11732]  ? __pfx_lock_release+0x10/0x10
[  347.794464][T11732]  ? lock_acquire+0x2f/0xb0
[  347.796127][T11732]  ? mlock_drain_local+0x6f/0x4f0
[  347.797641][T11732]  unmap_region+0x201/0x480
[  347.799057][T11732]  ? __pfx_unmap_region+0x10/0x10
[  347.800613][T11732]  mmap_region+0x1c00/0x2a50
[  347.802149][T11732]  ? __pfx_mmap_region+0x10/0x10
[  347.804047][T11732]  ? bpf_lsm_mmap_addr+0x9/0x10
[  347.805631][T11732]  ? security_mmap_addr+0x6c/0x1e0
[  347.807486][T11732]  ? __get_unmapped_area+0x26b/0x3a0
[  347.809394][T11732]  do_mmap+0xc00/0xfc0
[  347.811062][T11732]  vm_mmap_pgoff+0x1ba/0x360
[  347.813146][T11732]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  347.815105][T11732]  ? __fget_files+0x244/0x3f0
[  347.816754][T11732]  ksys_mmap_pgoff+0x32c/0x5c0
[  347.818514][T11732]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  347.820533][T11732]  __do_fast_syscall_32+0x73/0x120
[  347.822333][T11732]  do_fast_syscall_32+0x32/0x80
[  347.824004][T11732]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  347.826177][T11732] RIP: 0023:0xf73ae579
[  347.827577][T11732] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  347.834134][T11732] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  347.836987][T11732] RAX: ffffffffffffffda RBX: 0000000020ffb000 RCX: 0000000000000930
[  347.839817][T11732] RDX: 000000000300000f RSI: 0000000000000012 RDI: 0000000000000008
[  347.842532][T11732] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  347.845250][T11732] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  347.848031][T11732] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  347.850784][T11732]  </TASK>
[  347.851882][T11732] Modules linked in:
[  347.854181][    C2] hpet: Lost 9 RTC interrupts
[  347.857154][T11732] ---[ end trace 0000000000000000 ]---
[  347.877936][T11732] RIP: 0010:follow_pfnmap_start+0x115/0xdc0
[  347.879560][T11732] Code: 48 c1 ea 03 80 3c 02 00 0f 85 10 0b 00 00 4c 8b bd 80 00 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7f 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 d3 0a 00 00 48 c7 c0 38 f8 1c 90 49 8b 57 58 48
[  347.889732][T11732] RSP: 0018:ffffc90007acf498 EFLAGS: 00010202
[  347.902554][T11732] RAX: dffffc0000000000 RBX: ffffc90007acf578 RCX: ffffc900034c1000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  347.960314][T11732] RDX: 000000000000000b RSI: ffffffff81d4293a RDI: 0000000000000058
[  347.962493][T11732] RBP: ffff88800021bd90 R08: 0000000000000007 R09: 0000000000000000
[  347.977057][T11732] R10: 0000000001000000 R11: 0000000000000000 R12: 0000000020ffb000
[  347.979312][T11732] R13: 1ffff92000f59e97 R14: ffff888071541300 R15: 0000000000000000
[  347.981600][T11732] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5696b40
[  347.984887][T11732] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  348.038662][T11732] CR2: 000000002d309ff8 CR3: 000000006a450000 CR4: 0000000000352ef0
[  348.041534][T11732] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  348.044465][T11732] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  348.048073][T11732] Kernel panic - not syncing: Fatal exception
[  348.056812][T11732] Kernel Offset: disabled
[  348.058354][T11732] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:35:51  Registers:
info registers vcpu 0

CPU#0
RAX=00000002000008fb RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000002
RSI=00000000000000fb RDI=0000000000000002 RBP=0000000000000001 RSP=ffffc90000007e20
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc90000007ff8
R12=0000000000000001 R13=0000000000000000 R14=ffff88802b53ee80 R15=ffff88801f414c01
RIP=ffffffff813ba068 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000ffd91000 CR3=00000000627aa000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffff88802b43ee80 RCX=0000000000000000 RDX=1ffff110056a7f91
RSI=ffffffff815c5422 RDI=ffff88802b43ee98 RBP=ffffc9000719f738 RSP=ffffc9000719f6d8
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff815c5370 R11=0000000000000001
R12=ffff88802b53fca0 R13=ffff8880624da440 R14=0000000000000000 R15=ffff88802b43ee80
RIP=ffffffff816a25e0 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001304 CR3=000000007096e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85035a15 RDI=ffffffff9a63a260 RBP=ffffffff9a63a220 RSP=ffffc90007acee70
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000020 R14=ffffffff850359b0 R15=0000000000000000
RIP=ffffffff85035a3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f735b1dc CR3=000000006a450000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000039d054 RBX=0000000000000003 RCX=ffffffff8b12e739 RDX=ffffed10056e7026
RSI=ffffffff8bb11fa0 RDI=ffffffff8164098c RBP=ffffed100376c488 RSP=ffffc90000497e08
R8 =0000000000000000 R9 =ffffed10056e7025 R10=ffff88802b73812b R11=0000000000000001
R12=0000000000000003 R13=ffff88801bb62440 R14=ffffffff901cc548 R15=0000000000000000
RIP=ffffffff8b12fb1f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00000000
FS =0000 0000000000000000 ffffffff 00000000
GS =0000 ffff88802b700000 ffffffff 00000000
LDT=0000 0000000000000000 ffffffff 00000000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7386b0c CR3=000000007096e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000