last executing test programs:

41.821203871s ago: executing program 1 (id=233):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r3, 0x0, r1, 0x0, 0x2, 0x0)
fcntl$setstatus(r1, 0x4, 0x2000)
vmsplice(r0, &(0x7f0000000180)=[{&(0x7f0000000080)="a164b3", 0x3}], 0x1, 0x8)
write$binfmt_elf64(r2, &(0x7f0000000000)=ANY=[], 0x18c6)
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0x3e, &(0x7f0000000a00)=0x4, 0x4)
bind$llc(r4, &(0x7f0000000040), 0x10)

41.6254696s ago: executing program 1 (id=235):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0, 0x0, 0x40000}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xd, &(0x7f0000000100)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}], 0x0, 0x0, 0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
eventfd(0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r3, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0xc000000, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
syz_fuse_handle_req(r4, &(0x7f0000006380)="c66dd220cbdeb68f27c1f98bf43fd861bcf841572658a3308737983b31a434673f1003eeeb6d9b934bcd19cf754f4882114d61e15354449f763f772e86c9e2252731f7a098faad2accca3e470845b32918bcf530f9474d3cd610d9028cb7b247d3a73d887719f70554d8976c10784c8073e521a80b5ebe7501d6c3b6b5cf9a498a1e97b8201ac756e5f35d71bdd4d196e73cae0cc34c7140cde8380de823e8c76662f0844f549818b5ef6c732b8f412b79273508b69f2e6a653709b4d9bded080b6c15ca5c5b8ff23309e05d460dfb40403f60a3e5a0e1d4e1aa59d53823a047427673267e79d40fdd6f12ef696fe22887d24087373f64987e48ba20e7f47d1f08871e0c22a02593156648fc106c4529d8cf17c71d473f4ad43992b1cdbf5cfaaf1ce401d5ad8b9c6bdc3c60a88a91c52f5aae74a5d25e0cd738fd80169a98b84d4d24a7e86c9d8e4c3e3ff1a9fc44a87558aeb7acbfec13a26a4b121b2cb9ae628c682aa4c44311c45a673bab25880665d6cdf589e5c5415794c4fd6b940e7a44df93a34a684183581c850fbe97ef8c1de852ea836e0db1a104b498d6dd8fdf65c606e772de2e9dfe46a418fac3c0bdd72916c951e3df04f2ae85839305be2a86aebcf4898b6e49c27df6033ad2b8651279ceb20c779716240d3d0fef3bb6c417a8c6f75398a91942d8ab11f21f5795767650a96e246c7244f8e4935e9c01349616a098ae810487d657fd095beee05a36812f39f4266f25f4508e80f19a4aec7116f1d8bc48bc2c1f0f96ff34b66a965d428852766b78f1e7eb0260bbb355cc0859af6988ff7efa0b3fede3d5f2f2147ffae4a5eb58a7585b596270334c360a1547787a95634e13d59bf53f51f48e75a6a3e48f8348f4cb495d9699dfdf8cc71668c5b9622578100f7163394cb3171fc8a6c1e7f88f08b8c3cf4b0cd9a1bc16bd1488ebe43199d97cdf4bbcde8a06a79c5af6ff2ebf1a04add74830cfac0b946514b18de249e934dd8a1a96fce085320fa857c853480170208533acd3d41c4384a932eeccd4ce7d09827efae4c0d19d00c5b48943c4d877017be59434dae6bef767fb9ffd073c2261b06c0f23a0c77a5bcb1f5738dceb6abee00bd7c649f6ebc64b4b8b948319a22ed4add48eedda8a2cd1bad6799e1d9ed778e5ce22d5fead0cd06806cb4b7b5661f9db6bcf9ddcdc9e49e0e6a8ec98fc42c660d5d75311fb9c9d06074611ebbdbea45672dd78760ed92d0e95c1d5ae234d674dc3ffaeef3d928aa4b93c0fe55fa886bd3f2371a5bb22c4dd6b8bc13250490cf279d4e56b646dec4eaa53951d55f602c1f4081d49316f6bcb35aad0453b44c7f266e99838683404859bc372d1df5f1512f35558b3706b32093b72a78a40c8a188852a0b5aca11a34ba23195cb598ca595f243c260392cd793b65dda856f81be1b54d873a0366407ac26687262d6bda693e058f598bde80e304c83dd0c2fd0e634ff15e1ca4e2918bfa8e3a626aee7b5e445aa7fae096595fe58032c993eb06ce49c1045b1f132f2c90d6e23b76076838ad7ed7a6a74245d7ad72b38bdc04e458d3908d1d272f23fe18f68ad746e5440cfbcc3b7ad477dccd6fb2db536df0e4d24480d2765e724ca06cbde7e01cd32e36681796a454c801adc1b25b501cc4aaae778f3783dad15d12e656b09bb3d8f37efc86cc7faea5e51913902faed79ae5973f4413e275f78e7e66099f9e41bd73a07445a780dde0b189308e3b83d1a3cf5aef2d3e11fcad930eb6c60ebb899b22cdbd539412b2371d28a4331394d8f29d8b16f94ffd91d4eb5c278e7f6b4024fcc7af9dfde1b3c915b06dae683760fad05d6638c6389fdd19a9b12956c11e9b9ea7d30e09b13d9f681e012f1e41746341a61b71ac6c333b29883ca2cd1aaa3c02e66c85de1e3b2b7e77b0dd1469ab9db5c17beb2d33862db20fd77de685a1e70ba55b0d9cf4b2d3d1196196b5317324e5f189605baa37493c9586b7e475865b4bb21b335e8b291b9dea17f6afc1cd84618b189567817511de821a866a00b62c62516b716cf55dcf7f5b7d7520306fe03f00cc61b7dc297886459d74bedb8ac1d05cc506db74d018c877da735481c318224fd06f349b59f69b0d2d017c817e5a1f934d263789d418eb69c772d923b01a6a4a6afbba4a6980fbf7cddd84f8e4392eaccb98cdd30488919ea6d492d32f9ca4233649117474f4116f6ca4cb762d524c0f92bbb40d3f430dbd50dba20adda8b4170a73c3b66257c412311a7bd3ea3ecca0da47a7a00ef0a464ee0a4b2402b61db833f3cfe1847b9630de47f331d575f6e3c6fb44a9021700c6d8055ea982a05a5ba6a91a41e7445fdba7ac09202fee733a5c216b3c3090991225b98178508d1985832f8e7dae58482ec0fa2215c935bd0ef9f03c0ed3caf97bf4de023605aa8535f1e88e841471bd8842084c6715a3fd3acd07ec9c43f635e5f868d82cdc6f9424ed978d39e72cc92535c2637164f15e9a67770389535ba46cbf786189562908872274ba126b313bd1c0780e9d0ca38956d1277b58f04eaa1f97ed8c6c83d9c05df0df8b43da930707a84662e480a33d1868edc9ff65368d51fda828ad29ecbd3b2cc0ddb0aad251b4736f872ba5f066617a9e9675ed7f80685544af44c677b9d39a1a353984ea4ccbf36d759b490f8dcd5621e573baaa2c03ef367f543ca5d36d1c9d33d4762bb0b1e02ec67d3511582d69b06a57d15f5260fab5ed8d9361948eabf88d9e776a18c5c4f2d42bb46373861b613db9a91ccff8fbd563ddb37f0738fa1723c23c85cac0f9eb53a41d115fe0339eed3167f59b2f2f0739cf9c0ba5769b18a213d5809bccadecee6e781811bf584c22a6557516d12bd58420f5c67c673fdf0888ab31edcee3198927b5b87a63f89f7a07d1da8cb946f0a87e7d3bb455c888f394d17694378446c9073e54368564dc546b6c930ae17afcc8360cb2e31d87ad8923f60033aa637a399707398ffa51645ab1d9963c29375c834746004ac16d24d8f006e9674e45da3d938de524857c57fd39b22678f39096309527ed22c41677a65a67dc0998a8babc9cb688a56628d09a732773d9019d92399415e93852a12d66ccbfa571837b7689c7cc50026ed643a89c8f1bdef6d01016e6e1c21bb779db52c2254f5dae40ff173943ba62ce343ec035d93d5c92c64884d654777cf6995dd0c485c7c132db383769ae1f35f1980654d2b47e92b1862f653eeb81ada4eed6c9d0fe9da3d7db5dfb4d66b2d576676beddc4394ade2acf55f9ec24aee7c4c77138e799f62deb19367ce226a66715da515479b176c9ca06c739566d279142ce2163b8835c840a3de6e2d275b5d5a948b26ec8faa6cf322c5038fc00fb0a27f0b76b5e305780c9145e99feadf571bf8d87dc93ea0f8ff3bc246b16d4e43256507abc7ccc92e113a037ab13855058ba1e0770b90f52e0740c157d68963b3d236f681454589385c6124bddf948c5aa2e147a3543c301dc6d82acb504f76239c890b7d3d76dbd7c26445ab6fe66f9f71d95f4f0d6c51533ce4b05353ef27178f6b6813366189ff4cc19cc5c9f7aca4d6b6f3b5b213e828cbf8b8b5cacb42ade1fa2594cc4ccd3457a45a5b19926f17b9061c9072fdce96afbd3f2bbecc6dfbdf9d9b3e1a621e65a7cdf0a97cb0223b220b39a88b7414ce91e5fb52f3c9c7e10199ffc8fad826d40a798ecaebbd8881c1605f986bb0af06f416280f63f3a3c28d399d13c21e6d79501cbbfcc9483a73a931e91358807fbebefd39b466cb9f251fa4fc7d5f4fd2d87d4604c9750593d3a801b963085ad7aaa91e023977742b728d292b046d0bd49f81717a686f10096e154681b85aeb81a26fa8f46bf3dfdf5dc7c7ca37aa3da37e53a105be5935640baff476453f53ffcf786894eac35d1933a5e97fb9b6d975f9fbe7914d09dc948d305005eb4aba3a9b8cdefb30dbb3300f46041db06567956ba4327280721addb17425a2b223e81bc41467cb413cebbe16818468eeb5b24b6cd79ec4787f693f3c301e5dd10747bea13bf042d6fde42d18c48fec0e3e43454799da1d5501130fc98917fed27d696ae85a39debdb67d5b3d70a82a2097095476e24211757626c91a29e917796766bc4016456c4acf0436b6c02055778ce7f34e605264f7d6d1321072c4ba341866ac6f78e9b99a30478eb7f09a17f4fb3e23184e878c2f60d2c18617185007841778c7c256750a287ec0bbdd20bd37ab50538e43a5929456d336fb46a04593765b2692ba15e7b71b97788970a7903e12088211098bd356132862a4d586508b4aac077d3acd4f77c67d9066b436d14b20d3e2870cb19cdad5581de2e08da761fc95755c43cf0dc2cff84e6a3a8fa2d0390fcfee285a133b37ac7b2fefd0d3665b1705784187e228579680be97982194329136fb72d8b61cdeaa88f3dfc835ae22167c0130529fe81043b0e1c3aebccb1f4aadc28cb484f850158504439d389d1e559ff424217dc031d422a8b7b51731db75dc541e16fed8fae14f58c1f9c8d0fb91a685245ba558c1aeb243aa728db51c3f3aa6d8f7a4a547b8d95018402283a59a45173e7696f02304954ebfb43c2215f180c8e47e433e5262e279fdb63405c81b0f128b7d6a095ff5f85690331d94d34923a3e8beef5cccbf7b208b2a0aa898f9a32b2f1bb55aca4eaaefcdf09acd871f4b88feb535be87dfdbb5ad45ff3c26a2765230011d90baa4b5d5baaac5519f9013c8fd497d57083403ee6eb0c4e23428cf3846bd34d69840d021196f9a9a4fc101016fe2d4fbf4ec23c11e9d737c5e6d2cc3da7e0981c00ea9df07ed88ab05b7821033b2d311f2fe0525176660d0a33b0eb23a57f5b1d41e2c1698ac7bfe5f59c27792f899fd39610052b705862e798a27084450edfccd180a13d8adf8072430e9305f41b0a67bd1784b6ba9450b1e872794e0b7b55b22a2f649f83270b98d0a0137694fec0d16ec2ebf37c72d9398d231a71e40c912428929a29a433dc0fdcb697f64e07540da92067b1b5a7735fb7fb8ac8da2591fa44b676bbaa32ef5e6cc11f1b2ab3b262d9bc4b2082e081ee50fe71def63cf6e2d588bb8d66a8daa8c8a30ca07d2956463e1affc76003e4bacc632cdeee50098fe80cd7485fefed6eab639d8c42a1357fefae5a5a779fad536474e3bdebf6aab699552e807ffd8a44030f439756748dee9ddf19a6cbf5f75307b03c5ef4185a31a41583fb4ca3699e06319371c5d932d6e5f4e1bf77c02c70564d2140f7510e183ba2fa7ead8a9b8cfb085a9d0fa7dbca7561bd9dc1e5c1a1da0322982ff29c0fa2cc33bea18646445cc59b44965a01570b7b739d730df8f1f2cfe3558e7102de13994d6745ef8f91965265fbe0d29c3f381e1eb9c63242962a4409ddb0a4946ef9ce5b0eda90f8365362681943247a0d87d9b7fbbdd26d4902be34068499b6e2ab2ea746634402e1065c8cb9c32a211d10fc2796f1a7045c59b9cbc4771dbf56a5c38303f93951194d06a1b8cce31dd4869a148ae90a797d09de168e47974ed9699eab3a6424781f481d03cf1046df28b454af02df72c0f56c693343a82f7f383afb3ac452200ff155444010f6c988de71e3fb6f079bc6ac2bfab6ff451242b7e3e70578b8206529816764206d47115cda77b3e356e54f825ec745017ea8c3dcb412523b754b951d19fc075ec66012cceff51da925af9079f547e840c3f2774239cce5fd6533f3ee8d194812de2d4499ef18c4bebfa8d7273307d7aa0ac09e6ebfd95ba99946a585a4bd4afef8bb0b52857e8415a32b42e0a9ccb0749599d7a43cec793b22c96b3de91534c905456b25a5972124b83c7d8f0520cd71c5544e49afab26cccacdb7e112f0af1acbcb2b68760c7538aa6c990814d7cf7bde5ddd618bfd55bfbdd968e53e28f94042fafa2796b5bf2d1be612c81dbafbf90b0728b4b06fe216aab91b8898780ab06cff75be5239c39ac836dbdb5482222e61ff5971ea492c5b5ef509720fc886f8a07a9232653d427d176574c99d65244f1618fdaab109f732e1e1295391a25f9b750c9761bbceb81d316d9f9dcd555afb762191b7e173f06a4d8f4d97ab88b9ae19f6c85c361b8b5cbe91a3493cae594063ed457f3be99772485b34d3308da4e751e58a14cf7c771d8e5be77f88c7567af095caae1eb83d259cea709ea5441047ce96f0e21faf89ed491bba5d0dcc6bc33a07237fbef2fe671447ce14e16a1cae4361938767ce65ecfe0c63e1261cce5fbf603a2537d21b50c9a3a3ed6a7cf112a0586a653b43f813912a226aa4722f7edaf8dda5553efb22721dc71924aa73bf232c2439b1d806d3beaf157442643c81ce2b551b82d63cbcd4195029e2f63aef127ed4df0bffd41665d87213512557ce90ee54fcd01078a6a19085bde6a0343595f540b1ff610bd7a5a2d695bdc5e508cbf544d15cf5920b3e405ef4e10e6651c5ffff039adde2f805143b78916188fec05cadac443c93447d23bb25b0a0cfc787754a20f7efcdee5798de939b758f238f15c23f2622b8ed682378017c8f251dda0261baa33c6262d42d6365e68e85d43a46d92aaf04acee203c09487755df49f07ea1129782b1be0feb6f011bb914266fe2cf5361c377fe33a491089f701ac61bcab2bfa3bbe8bf7b0b834dba1bf187ab78fca751b57f1bddfc670c80d83c34c3461d823d7762b45ff0accc3af21b38137276d4e4d7a5d0a075902865f17f084cfa94cc28f70ee7296e216401b172184df0e060dd61be91efcdbeb03b4a6699c88a16ebb18f3e938cb458a377e29a3f3cbdaaf121e278b691c02b6f0dc775510840b3970b1f905b421a1cb376043cc7511e70e94cc63941ed0f864b4118592878538e12e986b9abaaf2ed588ad5f0e5e0851ffc29ef21aed080eb6f35fa10052f27767d0ddf3fea5a08c14657d68a9c3e6cba422d93a6aff222c40eee9f3c9fcb03a310453b616a80c48646f7d196433736fedcfc2ff4fa1a43bf9f8fc0a0660cf9f79fd0d8e106591a2319cff5eb0a5be578d178e0e184a9eca92991ca63bf1e9c5b1c56dba3c836975a74d9eb9b763ce7c5dc753cde77fb2d048e3656a15f9aa7f9dea249c4a3dc0456b64533513e69861fcb9f4348d78acd5b8ce1f3c41271b8551ba4d5754fbb123862236bc94192a5306c29adb2b0b053cd7d4deaa1be6c61f75bca27b53765a7356dd34a48437d5e5b356d48db64749243fea9b1f44e4625fe7ce820dc9f1a6022d77198e6e917cd4f5e23622d5b3b2fafd4f9be0b85db21371f5d35c7c651a616a8351a02dbfa74f9d273a0eb7d2ab9fca254bd28509b3d6f5420108cabc42d9a5670779dfdfb78afe74cd87fdf8e3be937e6c6981eb88156f5cbc91e4b92f8d65a151ee3307cce381dc189c54a29d21c9fa9f512c50dbc9f1c0ddb43b6b10d5190b8169f9e06f7c60a2103c9c30540e0d1cab8358cf4ddf95d5e26fbed636b2f1f474b7d10426afb5aa21948f7486e0df5275ffa6c091c46c3868703c4e30e1a15a8d27a708b6d5fa7d123f1524c221fb93b5f9f8d87b0286de38c6112a05d1f07706923b531e335db326ff756acf6cf9a5e5352953d112a842d7b2f05d296f644b01bca413f2686dbdea6b2cc6dd8115e22d832af742eb801ee61f6b90f93d227b694fe474385125801d6eb58867c15246faa6c0a1cae0b05f104fb2e97476c73a79185796e0c26bb1b59527aba4b79db6ec99f1650898b996e068329d17b94730cd6ab79a3d77d80e5ed78eecc7d680b5425231357f24c46fd01732052eb18737634915131c7ffcdb0b48a35d8761c402ff5b56aa1a9080b46836e4a888c86d7a260fb6cc2f3b9f68d52201531220bbfe0e7b2890a390acb33831fa1126b88dceb126a555181edbfa4680cadb08d38abe00c91980ce68ab58274ec28eaa697f8a4d7d6db744d8c9daac2035d40a5eb565e12c8be5c2bc1d725f713d45a03ac14ceaf91bb1c5dddcac87553b9d22e23d738742e3bf994412ab153f66ddea53a35c9ec19c555a49ae1aea112a70ddc10201258536ba93ae0dc7fb60d51ffbbe9e96eb8eeea6878e3784dcd686fc0db4516249cdfcb9f6d880fdcf8f86cdadd23ea7455b3b7e3a0e8affc9b61be59814f8e32175c869adaf7dbb5acb4c994e2269d2657011e8751c5c0e6e97e9eda4e8e6c309e842c8ea01c20de3c5f4f6372cc8cb7cdf2b0e3519155e4c662fc8572c36d9d3b7eb3ee19e985bfab9eb20e077c20dec4172e584357cc54f9cd49742e0b31d1fed87812f19efa9ae81ebebb021df0c280aa9790d2f1acb94b38f268ca7861b1da63cbb86daaeac3a5b067c86fc532a1db230a29578563f16dee5b4267f9d474c81c9ad762216452cb3a37c8ed44cbaab2e4b9a9583b134da3a64390fe5f76946879a1757d127e6e10b3b3042de48189350d844ede16134c770dba47cf56483cc14e2cfc93fc11f47cd33b06b720f531efdd1ff1254966b68fc46645ec3b45c2a60427e69ba1d710f25571522ba90622315f9f0cad33f8b1a1053a45aa07964892621ecc9256b7c4e21716e546c235fdb618f339b55c377a30b61a9add4e3b5657e3433a6feaff5b67ef34771ae6d04449b5228b6b99ce7237996b307613d14602d76f21a58a55cdc71a1f348ca18265634f094012bf4eae241df634d7424de578eb4c4199de382f2795c17eefa11ac2ad4625be7263373de4bbe189d42fa51953652d433323b9e6110f00c7cb44e4e7df1e6e1cc421c5cc5e78eac4009824d73b4bf0a0340ebd883acb90e928f6034d6a44edee021abc40726df358ef83429351f46aaf10b63b0a5f4c68bdf4e425f8ce7c6a8ad95dc4874836a56a298f586a602ad7b33350fabaacfda30b80210432dc6b59cb807d50782399624d624bbb5e759c09daec8ab3afbff204f62f94754e377cca96b00ba4842d52d8f12a5ce7d1dd81b760c1c5392f739d91f8bdc8c290090fc6e3221ee69abd2648b6c7a818e8a0d04ffd83464f7b26002e4d5614392848205fc0e766713e4c65f46ec2f9d221e98fdeaa5c329d8a0e7481690164fa1ad829ce9dd2eec2fe92231b33415c3f564161353ea7f823e3dc97c9e905f40d693082be719aff77b3b35a832ed3fc16e3bf57305fbabfbbadea1d33ece1f05ba482d3dcc391e0c709c02c335a6289a8deb035fd5b99edde61f0d936631e21251eb65c1dc23574a7a8f9ba8fd0b6c958ee146954cdab3daf90c17ffe92aef5390b4e19d32fef469e9e60ef8ea16af6b66dab7de1d6ddfeeb602cd69d8f32e4d5f06bfaebe7f000d62abc793ad34d77d1369c63affc73dda9287bc8f4d9e27d33038b699431f56285f92fd9f02e78745fcdca4a4840dcfc307bf8f1806146d954ed5ccc8a66edf2179e2a5356624b3b30f8f78839ddc9940794acce40290e5eb73dbb52fe1c633e88d1492aedc69b351912a0890b63eda0d8756a5b7c47c740fcd73a0f419fa363fbf0cd3fcdd38f0fd055627932c998421f086ee0cbe0520b2f2fd6d38fce1575a2c90fef9f81aa23fc7c4c5625d6f46fbfd02ac31cd1620a92c43b7884e4a050e5ef5bb9b8f9825a159bb0370c828519ef71090e09ab43ff2bd2cc75563fb9073eadcfd869f0d9b6986e4320b1986ce3f19a3f5dce202f8c13757726e5d6a9fc9e2b0b357625362fb873709fb307ee51bc58494857fdd3811f6a8aee0086b0a62da4e327c698e5639e373567d5eefc76e0d6725272527cdbc01a2b40e7511ac986e32bb7e48558756dca3b944855fd9dfdbb2358a52e53769817cad50af13d8a5941c41f6bd121cb267acdc461c500855c6f6c0750367c62dd32fa41595a6070e728f1915bab951e5536ff8230a0608ac96c2e19a5c1415209a3774c091174f575bc937d544d495370294aaffc5e6be76364c7a212bbb4ec7f3bd38db75a159b68e2b3075ae6bb68ffa02e6bfb42553b505da20f133b2855572b7e6f8f3de240d9ab1ff32b3d9825f087774f4932024be806b78f059d4b3b40414df456aef405d1cffb2f3604834dae38932d830298df7045d404f005f5edf81061850808d4998f6ce80bc7569081765875d908d4b6a0edcb434317543a4f5954a5e0e5b7c4da75cb369e2810e2aebf950b973ad3380bca5d0de8311e59a6ed3f01d8f7c1b39060fddc7ac1febe659626ed7ad27dcee7b3d409b9f84e4f55ceb2e462f55627857f8c485c35c9abdc2fa87c4281365790ecdf1971f3a285ea0bb2038ae91d927729f4bf847bf0fc724b002cb029d2a57b89218bd4a763ab01902b7b48cb609cf3b9ad8fb568aef0ceff20c5def1a4faee11d33d304e2227b83f3ab06f0b9fa5502b1d9c6fe2a34bf9abb9a5b13928800149488cead47e48c754c75a061d5ea8a515f7f55611b0c048b88c9772ca4b1eb3d6fc931801990f1611e9b1171223527dceccfe8cfd72600a88a8486e088e21c30b997af1b60b55bc5443cecb18c2dcf54dbca3ac34f10ad2be9d755679519bb674b42904be579df62436bcf06de4cfd636d592840d674d11195edeb4dfe61370e9a9453378957fdecf2115ee008224fb8c97fcd051ddb1ed8d0419b950f2cd085bf1debaafb2a46cf65be863939cffde741797fdf64c17f3b447464be0e6bb90324c4c65b3cf66958a15d537a1675dffbc4e41f7a6c92ed27c5ef0dd0dcce6f96225b4e0ece510ce00f9611e395215e116026499dce3417cee3fbde0106b2a6fbd5937423124f6549c2206afc2ad1df5bedcc5e1371ed2b9f09f76576589450b09dd990811c59c3f848c1a4fccdfe686968903edffbc010eb73f55ac5a675fa3db70db12c826c8b7360617d8abeacefa6e2a8da62e4f304543cc9217fe1b0ec4fb044ca849802c4a140b91cc056d566c8670e4600941a54b2eb8643ff206c3401c0bd9838a025545227ae3e6bcb47fa3dcd1b40d8a0917f63744fb1ec2b72211c6cfda13248b2d0b4232e4fe7015cc42d4928f07ca9161640102f22236cca7ca3b81ffc81c4ff20532b5203e0d94771b8d0ec70e637135fdbb788fa8b4704e11d3c6083a45f51efd8560c0e63435516586aa82eaa998c140767d3ce35491e301c12f74583c61cd4d2ef1caa6fea3e353637cdeb3332d964155c9d32f826829a7174ab06c44e32063e46ce742b7027cffb8999302b602949c60496a0bf3c7cdf859d4ba51102674414867af614cffb88ac177dfbdb6131f7370dcb851002cec1742fb1561257716850c9ed3b075a6c023bcf05b5d580ac8e5d7ab7e5b1723212c681989e5f91958b635e0d076634584920c1b98d7f6ea0ddded6be9eb74de778b3c57c36b18e0c56c3a051014e09fac70ce6a7b0f042f5eeca8b8885e500bcb41f6fd974e5f6888859abdf3600706a3de9fce060c3069600c63106aff24210461c5d3423fa4e350041fd166902ad86bdba8cf965917f7e3ab019e1911d8013dad576465319c4e04b89b5ee1d07f54705718592d6aa453558294743daa8dba33159fb0e291829ac220562b007597e067e5f65841563673b69cc1d549f50e9efbdf256d797fe8c7d09596c167a45d00", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
close(r4)

41.046076225s ago: executing program 1 (id=241):
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
r0 = openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_type(r0, &(0x7f0000000280), 0x9)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setscheduler(0x0, 0x5, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r1, &(0x7f00000003c0)=ANY=[], 0xff49)
r2 = socket(0xa, 0x3, 0x3a)
ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000040)={0x2, 0x2, 0x4, 0x101000})
r3 = openat$vimc1(0xffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VIDIOC_G_SELECTION(r3, 0xc040565e, &(0x7f0000000100)={0x0, 0x100, 0x5, {0x0, 0x1, 0x0, 0xfffffffe}})
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000180)={0x1000, 0x32315659, 0x786, 0x438, 0x2, @stepwise={{0xaa15, 0x4}, {0x539, 0x8}, {0xd000, 0x29}}})
setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000080)={0x1, 0x1, 0x8, 0x0, 0x5}, 0xc)

40.965934291s ago: executing program 1 (id=242):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x1d)
mmap$dsp(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x200000f, 0x11, r0, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$sock_int(r1, 0x1, 0x2, 0x0, &(0x7f0000000300))
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
syz_io_uring_setup(0x881, &(0x7f0000000480)={0x0, 0xeb6a, 0x100, 0x2}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000080))
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
syz_open_dev$sndctrl(&(0x7f0000000240), 0x1000, 0x535a41)
ioperm(0x83, 0x6, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000080)={0xf0f080, 0x19})
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x80000001}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0x2}, {{@in6=@mcast2, 0x4d5, 0x2b}, 0x0, @in=@empty, 0x0, 0x0, 0x0, 0x10}}, 0xe4)
r6 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x20000)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="b80000001300e99900000000fcffffffe0000001000000000000000000000000ac1414140000000000000000000000004e200000000000000a00"], 0xb8}}, 0x4004084)
r8 = dup(r3)
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0x1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r8, 0x4040534e, &(0x7f0000000200)={0x40, @tick=0x401, 0x9, {0x2, 0x2}, 0x81, 0x2, 0xe0})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r9 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
bind$unix(r9, 0x0, 0x0)

40.675271389s ago: executing program 1 (id=245):
personality(0x5400004)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40, @void, @value}, 0x94)
r0 = memfd_create(&(0x7f0000000940)='y\x105\xfb\xf7u\x83%\b\x00\x00\x00\x00\x00\x00\x00\xea_\xccZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x10\x00\x00\x00\x04\x879\xa24\xa9a\b\x00\xb2\xd3\xcbZJ\x7fa\xc4\x1acB\xaa\xc1\xfb Q\x96\xd9xJ2\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea\b\x00\x00\x00\x00\x00\x00\x00\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9V\x01A\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\x0f<\x91\xb0\xa8\x9eo\xebF(\a\x00\x01vRk\xaabB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\x80\x81\xa0\xa2-g\b\x99\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xd5\xf3\\\x00\xbe]Et\xad*\xecn\x02\xc8\xc4\f\x04\x99\xf6\xfc\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc8L\xae\x1ff\xcf\xb3\xb65\x12\x89\x02\x82t\x0f\xb0\xe89\x16\fO\x19\x91\xfd\x10\x0e\xa7r\x12\xab\xd4\xd1d\xad\f\x11\xb3\xb3c\xe2\xfe\xcd\x9f7\xa1\x14\xfa\xe2\xdf\x7f\xf4NG\xe3\xeb\x18\xde|\xb3\xf5S\x9a\x04\xb4Lry\xa9\xd6\xfb\xbc\n+N\xf7\xf6\x87\x95\xd9+\xd2sc/\x06\xaa#K3,k\xf3(\xcc\xc7\xb47\xfa\xc3\x1c\x91!\xd3\xd2`-\xa2xrR\x1c\x81i\x87u|29Q\xdf\xed\x10\x9b\x930\xa8v\xa0\x88\xa4t\x17\xb2\xca9\x02\x03\xc9P\xcc\xe0\xb7\x9c\x82\xb4\x03\x83e\xee\x95\xccO\x1b\x83\f\n{\xf3\x12\x90\xcf\x10\xb5>\b3\x80\x8d\xb2%7\x10\xeee\xe4\xc3\xb2^\xad\xb6~\xa2\xbdE\xbf\x91\vqt\x81\xbd\x19\xde\x81\tw\xd4p\xd1\x8aNJ\xb3M\a\xc4\xfa\xb0,$\x81j\xb4Hs\x93>\x16U\xd0t\xe4\xca0T\xb7\xf7\x9d4\b\xd9\xdeps\xec\xa0\nJ\xa5\xfe\xda{(\xee\xb5\x11?\xc3I-\x8bc\xc9\xfb\a\xe5\xab\xf8v1\xdc\xc5\x8c\xebs1\x81\xca\x81l\xa12\xff<\xf5\x12\xcc+\xd4\xab\x84\x16\xa4+\x0e\xd4\x02\xe3\xaa1\xeam\x8ce\xb4r\x0eo&3wff\xe6\x91\x7f\xba\xad\x05\xdd\xc0+\"\xa5\x80\'#\xfd\x9dA&\xee \x18\xe5\x17\x1bd\xd0\xb9\x90\xde\xec\xe4M\xe5\x06\x03r\fc\x8c\x10\x99x\xec`e`\xc3F\xdf\xbc\xa8\xff\x05\xe6\xea\xc3u\xd7\t\x88<\"\xf7!\xd6\x0e\xbbE^\xcd\xb0\x15g\xe6\xf2?y1\x9f\xd3\x95\xc4E\xd0\xb4\x16`r\x14\xad\x02\x17\x9a\x86I]\x02f\xd3\xc9\xe1H\xd7c\xcaQ\x8cE7\xcc\xcf=\xf3\xf7\xb9\xf6s\x88\bZi\b*w\xc5;\x88\r\xab\xa1\t\xf1\x02)5\x00\x84', 0xb)
ftruncate(r0, 0xffff)
fcntl$addseals(r0, 0x409, 0x7)
ftruncate(r0, 0x5)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0xff, 0x7fff0010}]})
fstat(r1, &(0x7f0000000100))
mmap(&(0x7f0000552000/0x2000)=nil, 0x2000, 0x9, 0x10031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000))
r2 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_SMBUS(r2, 0x720, &(0x7f0000000180)={0x0, 0x0, 0x8, &(0x7f0000000140)={0x1, "96e67ad2d329458afe83c910c40800000000000000000000000000f000"}})
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)=ANY=[@ANYBLOB="180000000114a73a0000000000000800085eaa4ae006051f64d87f99ffa9439b10c18ed0d92f1aeb19be0c8e9df077f0b8b454d8643e8eb072ddb48cc8f777331736924a0c729af90283940f8c4a9117362f6beb32f2408f40ce72"], 0x18}, 0x1, 0x0, 0x0, 0x4008810}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
socket$kcm(0x2, 0xa, 0x2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='io.stat\x00', 0x26e1, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="580000000206010400000000000000000000000005000400000000000900020073797a31000000000c0007800800064000000000050005000a000000050001000600000012000300686173683a6e7fbb375b6f7274000000"], 0x58}}, 0x0)
close(r4)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000200)='./file0/bus\x00', &(0x7f00000001c0)='sysfs\x00', 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
ioctl$SIOCSIFHWADDR(r4, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random="020000202000"})
openat$fuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)

40.587793318s ago: executing program 1 (id=249):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
tee(r0, r0, 0x4, 0x0) (async, rerun: 32)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002b80)={0x6, 0x4, &(0x7f0000001a00)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@alu={0x7, 0x0, 0x9, 0x0, 0x0, 0x1, 0xffffffffffffffff}]}, &(0x7f0000001a40)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (rerun: 32)

25.254481848s ago: executing program 32 (id=249):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
tee(r0, r0, 0x4, 0x0) (async, rerun: 32)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002b80)={0x6, 0x4, &(0x7f0000001a00)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@alu={0x7, 0x0, 0x9, 0x0, 0x0, 0x1, 0xffffffffffffffff}]}, &(0x7f0000001a40)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (rerun: 32)

4.585675172s ago: executing program 4 (id=486):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000000800), 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
sendfile(r5, r4, 0x0, 0x10000)
mmap(&(0x7f0000a30000/0x2000)=nil, 0x2000, 0x0, 0x20010, r0, 0x0)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000f00)={0x8, 0x0, [{0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}]})
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000c80)={'lo\x00'})
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_user\x00', 0x275a, 0x0)

4.435461684s ago: executing program 0 (id=488):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_ACCEPT(r0, &(0x7f0000001080)={0x8, 0x102, 0xfa00, {0x4, {0x80, 0x9, "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", 0x2, 0xef, 0x6, 0x9, 0x0, 0x4, 0x8, 0x1}}}, 0x128)
r1 = getpid()
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, &(0x7f0000000240)=ANY=[@ANYRES16])
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={@map=r2, 0x14, 0x0, 0x9, &(0x7f0000000000)=[0x0], 0x1, 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
sendmsg$NFULNL_MSG_CONFIG(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000100000500010001"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

3.675571407s ago: executing program 4 (id=491):
r0 = syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
ioctl$MEDIA_IOC_ENUM_ENTITIES(r0, 0xc1007c01, &(0x7f0000000380))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='adfs\x00', 0x0, 0x0)
r5 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000480)=ANY=[@ANYBLOB="2b637075736574202fa7b2e2d4785970502b230ce21413b592646b4a97abf3a5d6dae8e993adb0a9f9b726718b5b6889d1639b7f411e88443c8aa30f2485bc752447cebd9af6aebe02c4e45bf604860d340913df90ede69e0b78697694f8f7a0f31dd2d2413d6bdc61c0a256ea352f128951f7bf6c566461e27efd5f4fab953e67af7493a5bf2803111135bc34b17e8d80bc0454a56dc6bf24f68e1e03f7e274442b34e8851d51453fc36bc002a85a84565d82df1a9d64bfcd2ad7d2efe75d54895370c8ffb1a9d3e3ad8d5840"], 0x8)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000000206010100000000000060171eb995890000000000"], 0x14}}, 0x0)
ioctl$TIOCL_UNBLANKSCREEN(0xffffffffffffffff, 0x541c, &(0x7f0000000240))
ioctl$TIOCL_SELLOADLUT(r4, 0x541c, &(0x7f00000000c0))
ioctl$CDROM_SEND_PACKET(r3, 0x5393, &(0x7f0000000100)={"4689d4c4841a41c9e4641d9d", 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0})
openat$kvm(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="580012001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03800000800000002800128009000100766c616e00000000180002800c0002000a0000000a000000060001000000000008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r8, @ANYBLOB="c302000000219ea1e6dd93c7083d4de8d32d5fe9d1fb46cee2424f1455fa770e1f17fc235cafd415be3679ab00a23bd3c16585b15d732879d6af0d935474ebe65f2531a76f705b27789a0d1462060f0eaac92fa47d58190cf738c2b927dafaa14e6b0f7f22caf144561a06bacdd30a7ad0f9a85b7e199c860d0f33985e5399d79626297e5ccae7b8ddc12f68a1342db5929e1355d2d8b3d0b4c53046dad018a31e2f481ccea17b64e5f2524fe1c9e440"], 0x58}, 0x1, 0x0, 0x0, 0x20000881}, 0x0)
bind$inet(r6, 0x0, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r9 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r9, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
write$uinput_user_dev(r9, &(0x7f0000000800)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x296, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x0, 0x8, 0x1000, 0x3b6, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x54, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1]}, 0x45c)

3.575406531s ago: executing program 3 (id=492):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000000)={0x16, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3a, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_CURSOR(r2, 0xc01c64a3, &(0x7f0000000040)={0x2, 0x0, 0x10000003, 0x8000, 0x9ab, 0x401fc, 0x5})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f0000002540)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
shmat(0x0, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
shmdt(0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000002340), 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00'}, 0x2c)
write(r1, &(0x7f00000000c0), 0x0)
ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000080)={0xf0f046})
r7 = fsopen(&(0x7f0000000000)='rootfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f00000000c0), &(0x7f0000000240)=@v3={0x3000000, [{0x1, 0x1}, {0x7, 0x8}]}, 0x18, 0x3)
fsmount(r7, 0x0, 0x0)

3.506014234s ago: executing program 0 (id=493):
pipe(&(0x7f0000000440)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r2, 0x800442d3, &(0x7f00000000c0)={0x10001, 0x0, 0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'pimreg0\x00'})
sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=ANY=[@ANYBLOB="8c00000010000304000000000000000000000400", @ANYRES32=0x0, @ANYBLOB="97020000000000005c00128009000100626f6e64000000004c00028008000a00000000001800088000000000e00000017f000001640101020000000005000100000000000800070001"], 0x8c}}, 0x0)
tee(r0, 0xffffffffffffffff, 0x8, 0xd)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)={0x24, 0x3, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x9}, [@CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x3}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0xc0)
sendmsg$nl_route(r3, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="2c0000001a00010000000000000a000000000000000000000006001d000000000005001b0000000000000000"], 0x2c}}, 0x0)

3.171229819s ago: executing program 0 (id=494):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="600000000206010200000000000000000000000014000780050014000700000008001240000500000900020073797a3200000000050001000700000011000300686173683a6e65742c6e6574000000000500050002000000050004"], 0x60}, 0x1, 0x0, 0x0, 0x2200c815}, 0x0) (fail_nth: 17)

2.826610754s ago: executing program 0 (id=495):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x12, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
setsockopt$inet_mreqsrc(r1, 0x0, 0x25, &(0x7f0000000100)={@multicast2, @loopback, @empty}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000002000000950000000000000097a96292a2285bcde1e56b419c2624ddd4be5dd6d5d698ab3ec9b044cf6dd06d37c0e9ac8183aaaab1847f367790ac7d7a98e0926f5da83552f4"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[0x1], 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
cachestat(r0, &(0x7f0000000240)={0x7f, 0x10000}, &(0x7f0000000480), 0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x2, 0x7fffffff}]})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r5, 0x0)
cachestat(r5, &(0x7f0000000040), &(0x7f0000000080), 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vm(0xffffffffffffffff, 0x4018aee2, &(0x7f0000000080)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000040)={0x9, 0x2}})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
r8 = dup2(r7, r4)
close_range(r8, 0xffffffffffffffff, 0x0)

2.613935424s ago: executing program 3 (id=497):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="053b6e00040000ab480000000b00000000000000", @ANYRES32, @ANYRES8=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1, 0x0, 0x6}, 0x18)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000180)={'veth1_virt_wifi\x00', &(0x7f00000004c0)=@ethtool_perm_addr={0x20, 0xd5, "dcd86cf29ce9d276380e81852c95d951bbf6d6193966028d017ad509e930b30cee64110a0afed516efb548df6e5404afba7fcb1b244698af9a631b181854308c449cc85312adaefd009c2eebc0ca149ebc83aea091b0e1430fb4c9351997bce5f7870acc3eaed631d934bb762feaf751d75f8727bfe1adac10d35a12ad41665035c18c8932aaaa05f5f17cb809dfc605913fecbe5147da71b2c4f066bee8dbe3bc29763e6bac04244687d70c77b1f9d36496b5649b1d13ef727a8d43b93eb45f45b6c96c92bd6eb5e3b3673c663699ca844dc045ca"}})
sched_setaffinity(0x0, 0x0, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000400)={r0, &(0x7f0000000680)="cc140fdaa2670201b1f68d33eb67c71e046ee5fd6526e5cf1729f3d48fe9b2500f5b3f3673cdc6ea116b7b8a7f25a108ad6d4dab6e26423e402dda479310b641598a0f2fe0ef840cb287010e0c0e30fffd67e81ae6caa548983bf067628bebeb9f77b4273fc99a8830a3906d4b11b3110048f9ab588470298e75c0f6e855e60a31eeae8d4385875c18124bf457b15030c2fb4468fbc4d6441626264cc5e34821b8ae58a7cbdd26f7110acf358d2a82677bcc92ec0f3d75cda0370acb2cbd1342cc92facf8e53552b5bf2a2b5520f723f4ce3651d256dd3b18cbe122cad9bc0c364dad443c1405154440a4c835b748594aed6a2afffa03d97", &(0x7f0000000200)=@tcp6=r2, 0x4}, 0x1c)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
socket(0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0x0, 0x1000})
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0/../file0\x00', &(0x7f0000000240), 0x600, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX])
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000b80)={{r0, <r7=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000b40)=r1}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0xd, 0xc, &(0x7f0000000440)=@raw=[@alu={0x7, 0x1, 0x2, 0x9, 0x3, 0xfffffffffffffff4, 0x8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xbab}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @alu={0x4, 0x1, 0xc, 0x6, 0x1, 0x1, 0xffffffffffffffff}, @exit], &(0x7f0000000780)='GPL\x00', 0x8312, 0xd1, &(0x7f00000007c0)=""/209, 0x41000, 0x8, '\x00', 0x0, @fallback=0xb, r3, 0x8, &(0x7f00000008c0)={0x3, 0x3}, 0x8, 0x10, &(0x7f0000000900)={0x4, 0x8, 0x36, 0x1}, 0x10, 0x0, r4, 0x6, &(0x7f0000000bc0)=[r3, r3, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r3, r6, r7], &(0x7f0000000940)=[{0x3, 0x3, 0x0, 0xa}, {0x5, 0x3, 0xa, 0x9}, {0x4, 0x2, 0x10, 0x9}, {0x1, 0x1, 0xe, 0x3}, {0x3, 0x2, 0x7, 0xb}, {0x2, 0x1, 0x6, 0xc}], 0x10, 0x3, @void, @value}, 0x94)
r8 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_SET_SIZE_BLOCKS(r8, 0xab07, 0xb)
r9 = syz_open_dev$ndb(&(0x7f00000001c0), 0x0, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c09425, &(0x7f00000005c0)={"dc042fa03dce518f41d4d27b568e1f88", 0x0, 0x0, {0x4ecda616, 0x6}, {0xfffffffffffffffd, 0x4}, 0x4, [0x8e2, 0x7, 0x5, 0x7fffffffffffffff, 0x4, 0x1, 0xd, 0x7fffffff, 0x9, 0x14, 0x8, 0xffffffffffffa09b, 0x400, 0x5, 0x9, 0x2]})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r10=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r9, 0xab00, r10)
ioctl$NBD_DO_IT(r9, 0xab03)
ioctl$NBD_CLEAR_SOCK(r8, 0xab04)
syz_open_dev$ndb(&(0x7f00000002c0), 0x0, 0x0)
semget(0x1, 0x0, 0x4cc)

1.986115369s ago: executing program 0 (id=498):
socket$qrtr(0x2a, 0x2, 0x0)
r0 = syz_open_dev$vim2m(&(0x7f0000000640), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x3, 0x34324152, 0x0, 0x2, [{0x0, 0xbf}, {}, {0x0, 0xfffffffe}, {0x1}, {}, {0x2, 0x5}], 0x0, 0x0, 0x8, 0x0, 0x1}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000480)={0x0, 0x707b, 0x0, 0x4, 0x288}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_open_dev$cec(0x0, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x3516, 0x0, 0x7000000, 0x0, 0x0)

1.875256195s ago: executing program 2 (id=499):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000013000000000000001f37c624000001000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x100000}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='afs_edit_dir\x00'}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x4400, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './file2'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r5, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "0f03c8c7e8da000000000000ffffff017f000000cce67e1d0000e565aa9a9d32c7627ffe7a54cdbd77b3000000000000000000060000000000000000deff00"}, 0x60)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x1c, &(0x7f0000000ac0)=@raw=[@jmp, @exit, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x38}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}}], &(0x7f0000000440)='GPL\x00', 0x401, 0x93, &(0x7f0000000480)=""/147, 0x41000, 0xf, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000980)=[{0x1, 0x0, 0xf, 0x1}], 0x10, 0x7, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@bloom_filter={0x1e, 0x3, 0x3, 0x6, 0x74a7adcf4a9448a1, r3, 0x101, '\x00', 0x0, r3, 0x1, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
write(0xffffffffffffffff, &(0x7f0000000740)="fc0000001c000704ab5b2509b868030002ab087a0100000005481093210001c0f0030584250060100000000000031815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec1000000000000000b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239", 0xa6)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r6}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, 0x0, &(0x7f0000000540), 0x6c, r6}, 0x38)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r8 = getpgid(0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000640)={{{@in=@local, @in6=@ipv4={""/10, ""/2, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@private1}, 0x0, @in=@remote}}, &(0x7f00000001c0)=0xe4)
r10 = syz_open_dev$dmmidi(&(0x7f00000003c0), 0x2, 0x682041)
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r12 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r12, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r11, &(0x7f00000006c0)={@void, @void, @eth={@broadcast, @local, @val={@void}, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x29, 0x0, 0x0, 0x0, 0x6, 0x0, @dev={0xac, 0x14, 0x14, 0x3}, @initdev={0xac, 0x1e, 0x0, 0x0}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x3fffff28}, {"a0"}}}}}}}, 0x3b)
sendmsg$unix(r3, &(0x7f00000008c0)={&(0x7f0000000140)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000340)="46d097e68cf2f92b0ee0d081fef743f3f9c5742730c14e692b3845b8b6491f3b11f4be202e572fd5fb5468604cc147408688ac178fa8d00c0e01d43096ee1e91d7106aab0174c02d68d4a537495d5b1bcc517ef6a35d719d6fa10a0648dc4ed6", 0x60}, {&(0x7f0000000540)="897c17a40e225f2e7a068780e12b3a1e29e9edc8aba4fe56f927efb6faa198644d5fa6c19cfe66445aef3654efb2b7ca15b90544f277be899062bc2ffc3b4e20e201ea9ff626a5ad803b46348a51293bdc40508153e4fb76d2f45214bb4543f276407a56efb02d9443c0638ebde50c185a48903004d01e9f24ff5dd6233d4ded0d1e1579f923d4d0ec4a3b2a84f9c76cac7787e7617e6facb773cd139762aa6ac8aa8f80b41fa0f9accb6a9628fd05b5997c48dde8b48a3c4981f26c2a9993245498fe0da700b1f3dfa6eb62db1d17eeb527c6a63b8ddc41fcd3507b04fee0", 0xdf}], 0x2, &(0x7f0000000400)=[@rights={{0x14, 0x1, 0x1, [r6, r7]}}, @cred={{0x18, 0x1, 0x2, {r8, r9, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [r4, r10]}}], 0x40, 0x20000010}, 0x20048001)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={0xffffffffffffffff, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x10, &(0x7f0000000300), &(0x7f0000000340), 0x8, 0x0, 0x8, 0x0, 0x0}}, 0x10)

1.515101723s ago: executing program 2 (id=500):
syz_usb_connect(0x1, 0xfffffffffffffd22, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000001180)=@newlink={0x3c, 0x10, 0x403, 0xfffffffc, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ARP_INTERVAL={0x8}]}}}]}, 0x3c}, 0x1, 0xba01}, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf, @void, @value}, 0x94)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, 0x0)
unshare(0x64000600)

1.210148566s ago: executing program 3 (id=501):
syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000002100)={0x0, 0x0, &(0x7f00000020c0)={&(0x7f0000002040)={0x24, 0x2, 0x3, 0x301, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x2b}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0xad}]}, 0x24}, 0x1, 0x1f, 0x0, 0x44010}, 0x20000000)

1.105422594s ago: executing program 3 (id=502):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_ifreq(r0, 0x8970, &(0x7f0000000040)={'ip6gretap0\x00', @ifru_flags})
r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x28301)
ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f0000000240)=0x100439)
ioctl$EVIOCGNAME(r1, 0x40044590, 0x0)

1.04479847s ago: executing program 3 (id=503):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mkdir(0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = creat(&(0x7f0000000340)='./file0\x00', 0x0)
close(r2)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0xe0c01a, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}})
sendmsg$IPSET_CMD_RENAME(r2, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000080)={0x20, 0x5, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000010)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r6, 0x0, 0x7f}, 0x18)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x8, 0x3, 0x408, 0x0, 0x11, 0x148, 0x14c, 0x10, 0x374, 0x2a8, 0x2a8, 0x374, 0x2a8, 0x7fffffe, 0x0, {[{{@uncond, 0x10, 0x104, 0x14c, 0x1c, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip6gretap0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x8}}}, @common=@unspec=@limit={{0x3c}, {0x6, 0x8, 0x2, 0x12, 0x0, 0x7, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x1ff, 0x0, 0x2, 'snmp\x00', {0xff}}}}, {{@ip={@multicast1, @rand_addr=0x64010102, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_batadv\x00'}, 0x0, 0x1c8, 0x228, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_0\x00', {0x459, 0x0, 0x48, 0x0, 0x0, 0x3, 0x2, 0x80, 0x0, 0x18}, {0x91}}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x3, [0x1, 0x3, 0x2, 0x0, 0x2, 0x1]}, {0x1, [0x3, 0x2, 0x1, 0x0, 0x3, 0x5], 0x4}}}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x464)

1.044545741s ago: executing program 0 (id=504):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368813d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) (fail_nth: 25)
syz_usb_ep_write(r0, 0x81, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioperm(0x0, 0xbea, 0x4)
getresgid(&(0x7f0000000280), &(0x7f0000000300), &(0x7f0000000380))
close_range(r1, 0xffffffffffffffff, 0x0)
socket$xdp(0x2c, 0x3, 0x0)

785.217929ms ago: executing program 2 (id=505):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x20, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x251, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40e0, 0x8, 0x0, 0x0}}, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x7001, 0x1, 0x170, [], 0x0, 0x0, 0x0}, 0x1e8) (fail_nth: 11)

743.899567ms ago: executing program 2 (id=506):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000000)="5f2b930aaf0e52350a4f43df767323cd9502c15e494be7c865f909b0127bb1fff4933276e28c", 0x26}], 0x1}}], 0x1, 0x24008094)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
syz_io_uring_setup(0x112d, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
r2 = syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$PTRACE_GETSIGMASK(0x420a, 0x0, 0x8, &(0x7f00000001c0))
syz_open_dev$vcsa(&(0x7f0000000080), 0x1ff, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x7, 0xba, &(0x7f0000000140)=""/186, 0x2936e9239afce1fc, 0x37, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket(0x10, 0x3, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000680)=ANY=[@ANYBLOB="0180c2000000a538ae4646320800", @ANYBLOB], 0x0)
openat$cdrom(0xffffff9c, &(0x7f0000000000), 0xa40, 0x0)

269.619074ms ago: executing program 4 (id=507):
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
r0 = openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_type(r0, &(0x7f0000000280), 0x9)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r1, &(0x7f00000003c0)=ANY=[], 0xff49)
r2 = socket(0xa, 0x3, 0x3a)
ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000040)={0x2, 0x2, 0x4, 0x101000})
r3 = openat$vimc1(0xffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VIDIOC_G_SELECTION(r3, 0xc040565e, &(0x7f0000000100)={0x0, 0x100, 0x5, {0x0, 0x1, 0x0, 0xfffffffe}})
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000180)={0x1000, 0x32315659, 0x786, 0x438, 0x2, @stepwise={{0xaa15, 0x4}, {0x539, 0x8}, {0xd000, 0x29}}})
setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000080)={0x1, 0x1, 0x8, 0x0, 0x5}, 0xc)

269.352364ms ago: executing program 2 (id=508):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000540)=ANY=[@ANYBLOB], 0x114}], 0x1}, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x206, 0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, 0x0, 0x0)
socket$inet(0x2, 0x6, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{}, {0x0, 0x0, 0x40}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB="01000000000000000000", @ANYRES32, @ANYBLOB], 0x64}}, 0x0)
r3 = socket$kcm(0x1e, 0x1, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r3, &(0x7f00000014c0)={&(0x7f00000000c0)=@tipc=@name={0x1e, 0x2, 0x0, {{0x0, 0xfffffffc}, 0xfffffffa}}, 0x80, 0x0}, 0x24040044)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e1f, 0x0, @rand_addr, 0x2}, 0x1c)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg(r2, &(0x7f00000092c0), 0x4ff, 0x11)

163.842089ms ago: executing program 4 (id=509):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x20, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r1, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
setsockopt$inet6_int(r1, 0x29, 0x21, &(0x7f0000000300)=0x6, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e22, @private=0xa010102}, @in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}], 0x2c)
r2 = socket$xdp(0x2c, 0x3, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
openat$cachefiles(0xffffff9c, &(0x7f0000000040), 0x402840, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x800}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f00000001c0)=0x1, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0xc52, &(0x7f0000000580)={0x0, 0xfd1b, 0x20, 0x0, 0x12a, 0x0, r2}, &(0x7f00000003c0), &(0x7f0000000600))
r5 = fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001f00), r4)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000001f80)={0x28, r6, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x7, 0x2}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r7=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r2, &(0x7f0000000100)={0x2c, 0x7, r7, 0x26}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001e80)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000780)=ANY=[@ANYBLOB="2000000011000304000000000000004000000000", @ANYRES32=r10], 0x20}}, 0x84880)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000240)=[@in6={0xa, 0x4e23, 0x7, @ipv4={'\x00', '\xff\xff', @loopback}, 0xfffffffd}], 0x1c)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, r0, 0x7b3eb000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xeb, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x251, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004d, 0x8, 0x0, 0x0}}, 0x10)
r11 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r11, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x7001, 0x1, 0x170, [], 0x0, 0x0, 0x0}, 0x1e8)

163.345239ms ago: executing program 3 (id=510):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x1b, &(0x7f0000000b40)=@raw=[@btf_id={0x18, 0x4, 0x3, 0x0, 0x4}, @cb_func={0x18, 0x2, 0x4, 0x0, 0xfffffffffffffff8}, @ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff4}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}, @printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000003c0)={'ip6_vti0\x00', &(0x7f0000000340)={'syztnl0\x00', <r1=>0x0, 0x29, 0x5, 0x3, 0x8, 0x64, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x80, 0x7, 0x9, 0x4}})
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
fsetxattr$trusted_overlay_origin(r4, 0x0, 0x0, 0x0, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
ioctl$HCIINQUIRY(r5, 0x800448f0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0xb, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000019000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b00)={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7c, 0x2}, [@nested={0x8, 0x0, 0x0, 0x1, [@typed={0x4}]}, @generic="d7"]}, 0x20}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r8 = gettid()
timer_create(0x0, &(0x7f0000000100)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r9 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r9, 0x40045542, &(0x7f0000000b00))
syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x0)
syz_usb_connect$printer(0x5, 0x36, &(0x7f0000000500)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x40, 0x3, [{{0x9, 0x4, 0x0, 0x1, 0x1, 0x7, 0x1, 0x1, 0x1, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x5, 0x9, 0xfc}}, [{{0x9, 0x5, 0x82, 0x2, 0x10, 0x3, 0x3, 0x3}}]}}}]}}]}}, &(0x7f00000007c0)={0xa, &(0x7f0000000540)={0xa, 0x6, 0x201, 0x81, 0x3, 0x7, 0x10, 0xcc}, 0xf, &(0x7f0000000580)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0xc, 0x9, 0x6, 0xfa89}]}, 0x5, [{0x67, &(0x7f00000005c0)=ANY=[@ANYBLOB="67037cbed2a0ba36f4504c9e42ff1085a48f8a0484f417807e3803bbe27d9ec07c56d840fc4336b2f4a051d378dc4005be1566e53566ed7ab57b95d92e4e2ba32c807fd5fee65cdae0c4a92f6dc2ad08ddffcc4114c5ed27f384db5c4ff1efcbd40487244b4b37"]}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x1401}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x437}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x44b}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x401}}]})
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
ptrace(0x10, r3)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd502000000090001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000001ca9000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000005140000001100010000000000000000000000000a4bf861e2367a17671aa2c99167cd712a56b48ca709c8acc867aa93e4cfae0519528bddfb67f4ae2d6f2e63304dcf1d8fc2dd8a668fdb475729223a7cd407ca82e14b70191c25bc107fbad3f293b2f66c53b724f45d45ae085274c5bbbb5c20b64195927b5431f3878b7586dc1dfd065756121a89c37897fb26533cf1a066b49972984a"], 0x64}}, 0x0)

14.447227ms ago: executing program 4 (id=511):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0x40, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x40}}, 0x0)

13.897309ms ago: executing program 2 (id=512):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r0, r2}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x66, &(0x7f00000004c0)={@multicast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "828bf7", 0x30, 0x3a, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1}}}}}}}, 0x0)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)="b240bc", 0x3}, 0x1, 0x0, 0x0, 0x408d0}, 0x80)
r4 = syz_usb_connect$cdc_ecm(0x6, 0x5a, &(0x7f00000000c0)=ANY=[@ANYRESDEC], 0x0)
syz_usb_disconnect(r4)
r5 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000040)=ANY=[@ANYRESOCT=r4, @ANYRES8=r4], 0x0)
syz_usb_control_io(r5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a40)=@newtaction={0xe8, 0x30, 0x800, 0x70bd2e, 0x0, {}, [{0xd4, 0x1, [@m_ct={0x40, 0x1c, 0x0, 0x0, {{0x7}, {0x18, 0x2, 0x0, 0x1, [@TCA_CT_LABELS_MASK={0x14, 0x8, "fb484a0000000000000004ed3dc9a3aa"}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_sample={0x90, 0x1, 0x0, 0x0, {{0xb}, {0x14, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x406}, @TCA_SAMPLE_TRUNC_SIZE={0x8}]}, {0x51, 0x6, "428dc61a6a77f88f3abe15a87d453152544a948393eb2a104546858c98652a04c8baf00de4b5068f55ada96eb97a6d53ad75fa4109f43f60c02baa35a182d864b0d311c91f77fb2206260cc176"}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x804}, 0x4000844)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r8 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r8, 0xc0cc5640, &(0x7f0000000540)={0x1, @sliced={0x0, [0x12a9, 0x400, 0xea, 0x8, 0xffff, 0x3, 0x6, 0x8, 0x83, 0x1, 0xe3c7, 0x5, 0x6, 0x8, 0x9, 0x200, 0x7, 0x9, 0x5, 0x3, 0x1ff, 0xad3f, 0x5, 0x4, 0x0, 0x3, 0x6, 0x8, 0x101, 0x515, 0x7, 0x2, 0x5, 0x9, 0x2, 0xfc00, 0x10, 0xfff, 0x9, 0x23, 0x38, 0x4, 0xfff4, 0x675, 0xa, 0x6, 0x9, 0x8], 0x3}})
syz_io_uring_setup(0x10d, &(0x7f0000000300)={0x0, 0xce5c, 0x200, 0xfffffffd, 0x89}, &(0x7f0000000000), &(0x7f0000000380))
socket$inet_udp(0x2, 0x2, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, &(0x7f0000000400))

0s ago: executing program 4 (id=513):
r0 = syz_io_uring_setup(0x4b7, &(0x7f0000010400)={0x0, 0x5ab5, 0x1, 0x8, 0x15a}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641160050000210057ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

kernel console output (not intermixed with test programs):

syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x0
[   61.141096][ T6293] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒw˜}�z
[   61.240685][ T6301] netlink: 12 bytes leftover after parsing attributes in process `syz.1.77'.
[   61.331511][ T6302] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   62.030933][   T67] Bluetooth: hci0: Malformed MSFT vendor event: 0x02
[   62.320971][   T57] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   62.628081][   T57] usb 7-1: Using ep0 maxpacket: 8
[   62.795736][ T6354] pim6reg: entered allmulticast mode
[   62.821305][ T6358] netlink: 188 bytes leftover after parsing attributes in process `syz.0.85'.
[   62.831173][   T57] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   62.834137][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   62.838713][   T57] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   62.843509][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   62.847876][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   62.854645][   T57] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   62.857621][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   62.863315][   T57] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   62.866645][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   62.869686][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   62.874537][   T57] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[   62.876682][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   62.879772][   T57] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   62.884208][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   62.888573][   T57] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   62.908595][   T57] usb 7-1: string descriptor 0 read error: -22
[   62.911104][   T57] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   62.914708][   T57] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   62.931190][   T57] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   63.206680][ T6002] usb 7-1: USB disconnect, device number 2
[   63.352971][ T6397] pim6reg: entered allmulticast mode
[   63.727635][ T6403] netlink: 188 bytes leftover after parsing attributes in process `syz.3.96'.
[   63.824829][ T5982] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   63.828712][ T5982] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   63.833997][ T5982] hid-generic 0000:0003:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   64.180909][ T5981] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   64.350950][ T5981] usb 5-1: Using ep0 maxpacket: 8
[   64.354135][ T5981] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   64.356547][ T5981] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   64.359520][ T5981] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   64.362537][ T5981] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   64.365363][ T5981] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   64.369101][ T5981] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   64.372010][ T5981] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.377004][ T5981] usbtmc 5-1:16.0: bulk endpoints not found
[   65.268541][ T6431] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   65.673501][ T6437] xt_TCPMSS: Only works on TCP SYN packets
[   66.692941][   T40] audit: type=1804 audit(1737286788.133:8): pid=6462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.112" name="/newroot/21/file0/file0" dev="ramfs" ino=10143 res=1 errno=0
[   66.707425][ T6462] =======================================================
[   66.707425][ T6462] WARNING: The mand mount option has been deprecated and
[   66.707425][ T6462]          and is ignored by this kernel. Remove the mand
[   66.707425][ T6462]          option from the mount to silence this warning.
[   66.707425][ T6462] =======================================================
[   66.841707][ T6462] /dev/sr0: Can't open blockdev
[   66.948775][ T6466] x_tables: ip6_tables: recent.0 match: invalid size 216 (kernel) != (user) 232
[   66.960192][ T1457] usb 5-1: USB disconnect, device number 2
[   67.178188][ T6486] warning: `syz.3.119' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   67.426021][ T6497] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[   67.426021][ T6497]    program syz.0.116 not setting count and/or reply_len properly
[   67.446443][ T6497] 9pnet_fd: Insufficient options for proto=fd
[   67.863234][ T6501] capability: warning: `syz.1.122' uses 32-bit capabilities (legacy support in use)
[   68.280965][ T1457] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   68.384124][ T6517] x_tables: ip6_tables: recent.0 match: invalid size 216 (kernel) != (user) 232
[   68.510877][ T1457] usb 6-1: Using ep0 maxpacket: 8
[   68.514469][ T1457] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   68.516877][ T1457] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   68.519778][ T1457] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   68.522662][ T1457] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   68.525451][ T1457] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   68.529130][ T1457] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   68.531793][ T1457] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.536366][ T1457] usbtmc 6-1:16.0: bulk endpoints not found
[   68.611819][ T6525] netlink: 56 bytes leftover after parsing attributes in process `syz.2.128'.
[   69.156011][ T6514] uprobe: syz.3.126:6514 failed to unregister, leaking uprobe
[   69.213736][   T40] audit: type=1326 audit(1737286790.653:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7fc00000
[   69.222579][   T40] audit: type=1326 audit(1737286790.653:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f47579 code=0x7fc00000
[   69.228759][   T40] audit: type=1326 audit(1737286790.653:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7fc00000
[   69.235112][   T40] audit: type=1326 audit(1737286790.653:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7fc00000
[   69.241245][   T40] audit: type=1326 audit(1737286790.653:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7fc00000
[   69.247281][   T40] audit: type=1326 audit(1737286790.653:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7fc00000
[   69.257116][   T40] audit: type=1326 audit(1737286790.653:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7fc00000
[   69.265170][   T40] audit: type=1326 audit(1737286790.653:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7fc00000
[   69.272647][   T40] audit: type=1326 audit(1737286790.653:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6514 comm="syz.3.126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7fc00000
[   70.683402][ T6566] netlink: 56 bytes leftover after parsing attributes in process `syz.0.136'.
[   70.765695][ T1411] ieee802154 phy0 wpan0: encryption failed: -22
[   70.767954][ T1411] ieee802154 phy1 wpan1: encryption failed: -22
[   71.006955][ T6569] FAULT_INJECTION: forcing a failure.
[   71.006955][ T6569] name failslab, interval 1, probability 0, space 0, times 0
[   71.010640][ T6569] CPU: 0 UID: 0 PID: 6569 Comm: syz.3.138 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   71.013706][ T6569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   71.016792][ T6569] Call Trace:
[   71.017767][ T6569]  <TASK>
[   71.018638][ T6569]  dump_stack_lvl+0x16c/0x1f0
[   71.020023][ T6569]  should_fail_ex+0x497/0x5b0
[   71.021378][ T6569]  ? fs_reclaim_acquire+0xae/0x150
[   71.022866][ T6569]  should_failslab+0xc2/0x120
[   71.024243][ T6569]  __kmalloc_noprof+0xce/0x4f0
[   71.025633][ T6569]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   71.027260][ T6569]  ? tomoyo_realpath_from_path+0xbf/0x710
[   71.028907][ T6569]  tomoyo_realpath_from_path+0xbf/0x710
[   71.030492][ T6569]  ? tomoyo_path_number_perm+0x235/0x5b0
[   71.032091][ T6569]  tomoyo_path_number_perm+0x248/0x5b0
[   71.033666][ T6569]  ? tomoyo_path_number_perm+0x235/0x5b0
[   71.035317][ T6569]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   71.037056][ T6569]  ? __pfx_lock_release+0x10/0x10
[   71.038515][ T6569]  ? trace_lock_acquire+0x14e/0x1f0
[   71.040011][ T6569]  ? lock_acquire+0x2f/0xb0
[   71.041308][ T6569]  ? __fget_files+0x40/0x3a0
[   71.042647][ T6569]  ? __fget_files+0x206/0x3a0
[   71.044061][ T6569]  security_file_ioctl_compat+0x9b/0x240
[   71.045689][ T6569]  __do_compat_sys_ioctl+0x4e/0x2c0
[   71.047208][ T6569]  __do_fast_syscall_32+0x73/0x120
[   71.048696][ T6569]  do_fast_syscall_32+0x32/0x80
[   71.050122][ T6569]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   71.052011][ T6569] RIP: 0023:0xf7f47579
[   71.053213][ T6569] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   71.058723][ T6569] RSP: 002b:00000000f507555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   71.061107][ T6569] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000008923
[   71.063418][ T6569] RDX: 0000000020002280 RSI: 0000000000000000 RDI: 0000000000000000
[   71.065702][ T6569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   71.067972][ T6569] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   71.070209][ T6569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   71.072468][ T6569]  </TASK>
[   71.074552][ T6569] ERROR: Out of memory at tomoyo_realpath_from_path.
[   71.084818][   T57] usb 6-1: USB disconnect, device number 3
[   71.905544][ T6584] wg2: entered promiscuous mode
[   71.907117][ T6584] wg2: entered allmulticast mode
[   72.008496][ T6585] netlink: 12 bytes leftover after parsing attributes in process `syz.3.141'.
[   72.246847][   T40] kauditd_printk_skb: 4 callbacks suppressed
[   72.246858][   T40] audit: type=1804 audit(1737286793.683:22): pid=6594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.144" name="/newroot/32/file0/file0" dev="ramfs" ino=9109 res=1 errno=0
[   72.362328][ T6594] /dev/sr0: Can't open blockdev
[   73.020811][   T25] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   73.097271][ T6606] FAULT_INJECTION: forcing a failure.
[   73.097271][ T6606] name failslab, interval 1, probability 0, space 0, times 0
[   73.101420][ T6606] CPU: 2 UID: 0 PID: 6606 Comm: syz.2.148 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   73.104474][ T6606] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.107460][ T6606] Call Trace:
[   73.108395][ T6606]  <TASK>
[   73.109220][ T6606]  dump_stack_lvl+0x16c/0x1f0
[   73.110583][ T6606]  should_fail_ex+0x497/0x5b0
[   73.111956][ T6606]  ? fs_reclaim_acquire+0xae/0x150
[   73.113490][ T6606]  should_failslab+0xc2/0x120
[   73.114873][ T6606]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   73.116427][ T6606]  ? ptlock_alloc+0x1f/0x70
[   73.117746][ T6606]  ptlock_alloc+0x1f/0x70
[   73.119012][ T6606]  pte_alloc_one+0x74/0x390
[   73.120297][ T6606]  __pte_alloc+0x6e/0x3b0
[   73.121499][ T6606]  ? __pfx___pte_alloc+0x10/0x10
[   73.122910][ T6606]  do_pte_missing+0x2810/0x3e00
[   73.124325][ T6606]  ? mt_find+0x82d/0xa20
[   73.125564][ T6606]  ? __pfx_lock_release+0x10/0x10
[   73.127030][ T6606]  __handle_mm_fault+0x103c/0x2a40
[   73.128514][ T6606]  ? __pfx___handle_mm_fault+0x10/0x10
[   73.130086][ T6606]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   73.131710][ T6606]  ? find_vma+0xc0/0x140
[   73.132883][ T6606]  ? __pfx_find_vma+0x10/0x10
[   73.134211][ T6606]  handle_mm_fault+0x3fa/0xaa0
[   73.135577][ T6606]  do_user_addr_fault+0x7a3/0x13f0
[   73.137042][ T6606]  exc_page_fault+0x5c/0xc0
[   73.138350][ T6606]  asm_exc_page_fault+0x26/0x30
[   73.139764][ T6606] RIP: 0010:_copy_to_user+0xb6/0xd0
[   73.141262][ T6606] Code: 89 ee 48 89 ef e8 9a 65 00 fd 4d 85 ff 75 a8 e8 20 6b 00 fd 89 de 4c 89 e7 e8 06 e4 62 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[   73.146667][ T6606] RSP: 0018:ffffc9000745fd18 EFLAGS: 00050297
[   73.148421][ T6606] RAX: 0000000000000001 RBX: 0000000000000004 RCX: 0000000000000004
[   73.150693][ T6606] RDX: fffff52000e8bfb9 RSI: ffffc9000745fdc8 RDI: 0000000020bbdffc
[   73.152991][ T6606] RBP: 0000000020bbdffc R08: 0000000000000000 R09: fffff52000e8bfb9
[   73.155278][ T6606] R10: 0000000000000003 R11: 0000000000000000 R12: ffffc9000745fdc8
[   73.157483][ T6606] R13: 0000000020bbe000 R14: 00007ffffffff000 R15: 0000000000000000
[   73.159674][ T6606]  ? _copy_to_user+0xaa/0xd0
[   73.161012][ T6606]  do_timer_create+0x99a/0x1600
[   73.162428][ T6606]  ? __pfx_do_timer_create+0x10/0x10
[   73.163974][ T6606]  ? __fget_files+0x206/0x3a0
[   73.165333][ T6606]  __ia32_compat_sys_timer_create+0x195/0x1c0
[   73.167089][ T6606]  ? __pfx___ia32_compat_sys_timer_create+0x10/0x10
[   73.168965][ T6606]  ? ksys_write+0x1ba/0x250
[   73.170236][ T6606]  ? __pfx_ksys_write+0x10/0x10
[   73.171602][ T6606]  __do_fast_syscall_32+0x73/0x120
[   73.173100][ T6606]  do_fast_syscall_32+0x32/0x80
[   73.174521][ T6606]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   73.176353][ T6606] RIP: 0023:0xf7fc1579
[   73.177537][ T6606] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   73.182978][ T6606] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000103
[   73.185316][ T6606] RAX: ffffffffffffffda RBX: 00000000e0590239 RCX: 0000000000000000
[   73.187514][ T6606] RDX: 0000000020bbdffc RSI: 0000000000000000 RDI: 0000000000000000
[   73.189715][ T6606] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   73.191914][ T6606] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   73.194156][ T6606] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   73.196419][ T6606]  </TASK>
[   73.210829][   T25] usb 8-1: Using ep0 maxpacket: 8
[   73.214080][   T25] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   73.216471][   T25] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   73.219407][   T25] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   73.222396][   T25] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   73.225200][   T25] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   73.228911][   T25] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   73.231750][   T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.239914][   T25] usbtmc 8-1:16.0: bulk endpoints not found
[   73.372462][ T6613] wg2: left promiscuous mode
[   73.377443][   T57] IPVS: starting estimator thread 0...
[   73.462010][ T6617] IPVS: using max 37 ests per chain, 88800 per kthread
[   73.565152][   T40] audit: type=1804 audit(1737286795.003:23): pid=6630 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.154" name="/newroot/42/file0/file0" dev="ramfs" ino=12445 res=1 errno=0
[   73.658811][   T67] Bluetooth: hci0: Malformed MSFT vendor event: 0x02
[   73.661322][ T6630] /dev/sr0: Can't open blockdev
[   74.133770][ T6655] FAULT_INJECTION: forcing a failure.
[   74.133770][ T6655] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.137951][ T6655] CPU: 2 UID: 0 PID: 6655 Comm: syz.2.161 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   74.141096][ T6655] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.144283][ T6655] Call Trace:
[   74.145278][ T6655]  <TASK>
[   74.146176][ T6655]  dump_stack_lvl+0x16c/0x1f0
[   74.147604][ T6655]  should_fail_ex+0x497/0x5b0
[   74.149048][ T6655]  _copy_from_user+0x2e/0xd0
[   74.150409][ T6655]  snd_pcm_oss_write2+0x1c6/0x3f0
[   74.151890][ T6655]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[   74.153519][ T6655]  ? snd_pcm_kernel_ioctl+0x267/0x2e0
[   74.155117][ T6655]  ? snd_pcm_oss_prepare+0x11e/0x220
[   74.156688][ T6655]  snd_pcm_oss_write+0x727/0xa00
[   74.158197][ T6655]  ? rw_verify_area+0xd0/0x700
[   74.159622][ T6655]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[   74.161252][ T6655]  vfs_write+0x24c/0x1150
[   74.162534][ T6655]  ? __fget_files+0x1fc/0x3a0
[   74.164002][ T6655]  ? __pfx_lock_release+0x10/0x10
[   74.165481][ T6655]  ? __pfx_vfs_write+0x10/0x10
[   74.166979][ T6655]  ? lock_acquire+0x2f/0xb0
[   74.168340][ T6655]  ? __fget_files+0x40/0x3a0
[   74.169693][ T6655]  ? __fget_files+0x206/0x3a0
[   74.171112][ T6655]  ksys_write+0x12b/0x250
[   74.172414][ T6655]  ? __pfx_ksys_write+0x10/0x10
[   74.173896][ T6655]  __do_fast_syscall_32+0x73/0x120
[   74.175484][ T6655]  do_fast_syscall_32+0x32/0x80
[   74.177068][ T6655]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   74.178964][ T6655] RIP: 0023:0xf7fc1579
[   74.180236][ T6655] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   74.186070][ T6655] RSP: 002b:00000000f50d455c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   74.188564][ T6655] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000500
[   74.190912][ T6655] RDX: 000000000000fc36 RSI: 0000000000000000 RDI: 0000000000000000
[   74.193240][ T6655] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   74.195681][ T6655] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   74.198085][ T6655] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   74.200466][ T6655]  </TASK>
[   74.650869][ T5982] usb 5-1: new low-speed USB device number 3 using dummy_hcd
[   74.802373][ T5982] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   74.805953][ T5982] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[   74.808705][ T5982] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[   74.812435][ T5982] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   74.815459][ T5982] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.822020][ T6662] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[   74.826005][ T5982] hub 5-1:1.0: bad descriptor, ignoring hub
[   74.828396][ T5982] hub 5-1:1.0: probe with driver hub failed with error -5
[   74.831838][ T5982] cdc_wdm 5-1:1.0: skipping garbage
[   74.833861][ T5982] cdc_wdm 5-1:1.0: skipping garbage
[   74.838352][ T5982] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[   74.841187][ T5982] cdc_wdm 5-1:1.0: Unknown control protocol
[   74.953029][ T6666] netlink: 4 bytes leftover after parsing attributes in process `syz.1.164'.
[   74.990378][ T6668] netlink: 8 bytes leftover after parsing attributes in process `syz.1.165'.
[   74.997418][ T6668] netlink: 100 bytes leftover after parsing attributes in process `syz.1.165'.
[   75.117002][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.119111][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.121127][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.123450][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.224400][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.226396][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.228961][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.231324][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.233315][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.235638][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.237746][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.239857][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.242677][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.245273][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.247432][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.249445][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.251454][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.253367][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.255295][    C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[   75.257174][    C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[   75.726334][ T6685] openvswitch: netlink: Missing valid actions attribute.
[   75.728847][ T6685] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   75.788162][ T5982] usb 8-1: USB disconnect, device number 2
[   75.985298][   T67] Bluetooth: hci3: Malformed MSFT vendor event: 0x02
[   76.202907][   T66] wlan1: Trigger new scan to find an IBSS to join
[   76.343646][ T6698] loop7: detected capacity change from 0 to 16384
[   77.077882][ T6719] netlink: 96 bytes leftover after parsing attributes in process `syz.2.176'.
[   77.168753][ T6710] block nbd3: shutting down sockets
[   77.381318][ T5981] usb 5-1: USB disconnect, device number 3
[   77.408308][ T6725] netlink: 12 bytes leftover after parsing attributes in process `syz.3.179'.
[   77.416175][ T6725] fuse: Unknown parameter 'rootmoÿ'
[   77.526507][ T6729] FAULT_INJECTION: forcing a failure.
[   77.526507][ T6729] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.530522][ T6729] CPU: 3 UID: 0 PID: 6729 Comm: syz.0.180 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   77.533681][ T6729] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.536796][ T6729] Call Trace:
[   77.537782][ T6729]  <TASK>
[   77.538668][ T6729]  dump_stack_lvl+0x16c/0x1f0
[   77.540052][ T6729]  should_fail_ex+0x497/0x5b0
[   77.541566][ T6729]  _copy_from_user+0x2e/0xd0
[   77.543023][ T6729]  snd_pcm_oss_write2+0x1c6/0x3f0
[   77.544546][ T6729]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[   77.546169][ T6729]  ? snd_pcm_kernel_ioctl+0x267/0x2e0
[   77.547859][ T6729]  ? snd_pcm_oss_prepare+0x11e/0x220
[   77.549486][ T6729]  snd_pcm_oss_write+0x727/0xa00
[   77.551077][ T6729]  ? rw_verify_area+0xd0/0x700
[   77.552495][ T6729]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[   77.554151][ T6729]  vfs_write+0x24c/0x1150
[   77.555459][ T6729]  ? __fget_files+0x1fc/0x3a0
[   77.556856][ T6729]  ? __pfx_lock_release+0x10/0x10
[   77.558374][ T6729]  ? __pfx_vfs_write+0x10/0x10
[   77.559803][ T6729]  ? lock_acquire+0x2f/0xb0
[   77.561145][ T6729]  ? __fget_files+0x40/0x3a0
[   77.562529][ T6729]  ? __fget_files+0x206/0x3a0
[   77.563978][ T6729]  ksys_write+0x12b/0x250
[   77.565262][ T6729]  ? __pfx_ksys_write+0x10/0x10
[   77.566688][ T6729]  __do_fast_syscall_32+0x73/0x120
[   77.568350][ T6729]  do_fast_syscall_32+0x32/0x80
[   77.569753][ T6729]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.571623][ T6729] RIP: 0023:0xf7fc0579
[   77.572844][ T6729] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.578483][ T6729] RSP: 002b:00000000f50d455c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   77.581000][ T6729] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000500
[   77.583351][ T6729] RDX: 000000000000fc36 RSI: 0000000000000000 RDI: 0000000000000000
[   77.585652][ T6729] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.588256][ T6729] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   77.590636][ T6729] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.592936][ T6729]  </TASK>
[   78.152775][   T67] Bluetooth: hci3: Malformed MSFT vendor event: 0x02
[   79.161952][   T39] wlan1: Trigger new scan to find an IBSS to join
[   79.377642][ T6754] netlink: 'syz.2.187': attribute type 3 has an invalid length.
[   79.380141][ T6754] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.187'.
[   79.599597][ T6758] netlink: 12 bytes leftover after parsing attributes in process `syz.1.188'.
[   79.965440][ T6761] FAULT_INJECTION: forcing a failure.
[   79.965440][ T6761] name failslab, interval 1, probability 0, space 0, times 0
[   79.969014][ T6761] CPU: 0 UID: 0 PID: 6761 Comm: syz.0.189 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   79.972145][ T6761] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.975139][ T6761] Call Trace:
[   79.976113][ T6761]  <TASK>
[   79.976937][ T6761]  dump_stack_lvl+0x16c/0x1f0
[   79.978250][ T6761]  should_fail_ex+0x497/0x5b0
[   79.979587][ T6761]  ? fs_reclaim_acquire+0xae/0x150
[   79.981109][ T6761]  should_failslab+0xc2/0x120
[   79.982462][ T6761]  __kmalloc_cache_noprof+0x68/0x420
[   79.983963][ T6761]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   79.985958][ T6761]  genl_start+0x1e7/0x960
[   79.987168][ T6761]  __netlink_dump_start+0x615/0x980
[   79.988596][ T6761]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[   79.990192][ T6761]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[   79.992147][ T6761]  ? genl_op_from_small+0x25/0x440
[   79.993576][ T6761]  ? __pfx_genl_get_cmd+0x10/0x10
[   79.994987][ T6761]  ? __pfx_genl_start+0x10/0x10
[   79.996351][ T6761]  ? __pfx_genl_dumpit+0x10/0x10
[   79.997689][ T6761]  ? __pfx_genl_done+0x10/0x10
[   79.999025][ T6761]  ? __radix_tree_lookup+0x21f/0x2c0
[   80.000634][ T6761]  genl_rcv_msg+0x470/0x800
[   80.002061][ T6761]  ? __pfx_genl_rcv_msg+0x10/0x10
[   80.003587][ T6761]  ? __pfx_ovs_flow_cmd_dump+0x10/0x10
[   80.005188][ T6761]  netlink_rcv_skb+0x165/0x410
[   80.006973][ T6761]  ? __pfx_genl_rcv_msg+0x10/0x10
[   80.008370][ T6761]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   80.009859][ T6761]  ? down_read+0xc9/0x330
[   80.011075][ T6761]  ? __pfx_down_read+0x10/0x10
[   80.012378][ T6761]  ? netlink_deliver_tap+0x1ae/0xca0
[   80.013830][ T6761]  genl_rcv+0x28/0x40
[   80.014959][ T6761]  netlink_unicast+0x53c/0x7f0
[   80.016242][ T6761]  ? __pfx_netlink_unicast+0x10/0x10
[   80.017715][ T6761]  ? __phys_addr_symbol+0x30/0x80
[   80.019111][ T6761]  ? __check_object_size+0x488/0x710
[   80.020573][ T6761]  netlink_sendmsg+0x8b8/0xd70
[   80.021925][ T6761]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.023404][ T6761]  ____sys_sendmsg+0x9ae/0xb40
[   80.024714][ T6761]  ? __pfx_____sys_sendmsg+0x10/0x10
[   80.026152][ T6761]  ? get_compat_msghdr+0x11b/0x170
[   80.027555][ T6761]  ___sys_sendmsg+0x135/0x1e0
[   80.028916][ T6761]  ? __pfx____sys_sendmsg+0x10/0x10
[   80.030419][ T6761]  ? __pfx_lock_release+0x10/0x10
[   80.031872][ T6761]  ? trace_lock_acquire+0x14e/0x1f0
[   80.033337][ T6761]  ? __fget_files+0x206/0x3a0
[   80.034663][ T6761]  __sys_sendmsg+0x16e/0x220
[   80.036000][ T6761]  ? __pfx___sys_sendmsg+0x10/0x10
[   80.037418][ T6761]  __do_fast_syscall_32+0x73/0x120
[   80.038845][ T6761]  do_fast_syscall_32+0x32/0x80
[   80.040232][ T6761]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.041999][ T6761] RIP: 0023:0xf7fc0579
[   80.043171][ T6761] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.048416][ T6761] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   80.050716][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[   80.052940][ T6761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   80.055193][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   80.057443][ T6761] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.059725][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.062030][ T6761]  </TASK>
[   80.213425][ T6770] ptrace attach of "/syz-executor exec"[5949] was attempted by "/syz-executor exec"[6770]
[   80.767514][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.803541][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.808383][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.831286][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.833396][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.835445][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.837512][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.839592][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.858897][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.861177][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.863366][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.865496][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.867699][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.872401][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.875315][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.877824][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.879959][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.882145][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.884293][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.887180][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.889571][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.891775][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.894273][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.897115][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.899565][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.902414][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.904910][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.907637][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.909883][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.912811][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.915188][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.918021][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.920603][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.923619][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.926007][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.928552][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.930922][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.933086][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.935336][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.939783][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.942003][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.944186][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.947096][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   80.949327][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.001511][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.003724][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.006008][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.008268][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.010679][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.013231][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.015302][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.016329][  T832] cfg80211: failed to load regulatory.db
[   81.017315][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.020340][ T6811] netlink: 'syz.0.196': attribute type 27 has an invalid length.
[   81.021283][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.026099][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.028215][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.030229][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.032513][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.034732][ T5981] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   81.076298][ T6811] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.079073][ T6811] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.084268][ T5981] hid-generic 0000:0000:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   81.109405][ T6811] wg2: left promiscuous mode
[   81.111343][ T6811] wg2: left allmulticast mode
[   81.205280][ T6811] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.221911][ T6811] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.277872][ T6811] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.280450][ T6811] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.285299][ T6811] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.287770][ T6811] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.310649][ T6815] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.313491][ T6815] 8021q: adding VLAN 0 to HW filter on device team0
[   81.318047][ T6815] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   81.502485][   T57] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[   81.631332][ T6850] wg2: entered promiscuous mode
[   81.632816][ T6850] wg2: entered allmulticast mode
[   81.864111][   T57] usb 7-1: config 1 interface 0 has no altsetting 0
[   81.873002][   T57] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   81.875710][   T57] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   81.878104][   T57] usb 7-1: Product: syz
[   81.879429][   T57] usb 7-1: Manufacturer: syz
[   81.884850][   T57] usb 7-1: SerialNumber: syz
[   82.047589][ T6859] netlink: 'syz.1.202': attribute type 10 has an invalid length.
[   82.061501][ T6859] team0: Port device netdevsim0 added
[   82.116047][ T6861] FAULT_INJECTION: forcing a failure.
[   82.116047][ T6861] name failslab, interval 1, probability 0, space 0, times 0
[   82.119664][ T6861] CPU: 3 UID: 0 PID: 6861 Comm: syz.1.203 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   82.122593][ T6861] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.125609][ T6861] Call Trace:
[   82.126526][ T6861]  <TASK>
[   82.127366][ T6861]  dump_stack_lvl+0x16c/0x1f0
[   82.128674][ T6861]  should_fail_ex+0x497/0x5b0
[   82.129984][ T6861]  ? fs_reclaim_acquire+0xae/0x150
[   82.131417][ T6861]  should_failslab+0xc2/0x120
[   82.132722][ T6861]  __kmalloc_cache_noprof+0x68/0x420
[   82.134215][ T6861]  ? snd_ctl_find_id+0x3fd/0x4e0
[   82.135622][ T6861]  ? read_word_at_a_time+0xe/0x20
[   82.137033][ T6861]  snd_mixer_oss_build_test+0x141/0x420
[   82.138561][ T6861]  ? __pfx_snd_mixer_oss_build_test+0x10/0x10
[   82.140263][ T6861]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   82.141886][ T6861]  snd_mixer_oss_build_test_all+0x2a9/0x6c0
[   82.143526][ T6861]  ? task_work_run+0x14e/0x250
[   82.144305][   T57] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[   82.144849][ T6861]  ? __pfx_snd_mixer_oss_build_test_all+0x10/0x10
[   82.149650][ T6861]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.150527][   T57] usb 7-1: USB disconnect, device number 3
[   82.151461][ T6861]  snd_mixer_oss_build_input+0x14c/0xe70
[   82.151481][ T6861]  ? __pfx_snd_mixer_oss_build_input+0x10/0x10
[   82.151497][ T6861]  ? rcu_is_watching+0x12/0xc0
[   82.151512][ T6861]  ? snd_mixer_oss_proc_write+0x3a0/0x770
[   82.159277][ T6861]  snd_mixer_oss_proc_write+0x402/0x770
[   82.160822][ T6861]  ? __pfx_snd_mixer_oss_proc_write+0x10/0x10
[   82.161266][   T57] usblp0: removed
[   82.162504][ T6861]  ? kasan_save_stack+0x42/0x60
[   82.162521][ T6861]  ? do_dup2+0x310/0x610
[   82.162532][ T6861]  ? ksys_dup3+0x1ff/0x370
[   82.162543][ T6861]  ? __ia32_sys_dup3+0x71/0xb0
[   82.162556][ T6861]  ? __do_fast_syscall_32+0x73/0x120
[   82.170313][ T6861]  ? __pfx_lock_release+0x10/0x10
[   82.171712][ T6861]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   82.173312][ T6861]  snd_info_text_entry_release+0xf8/0x260
[   82.174912][ T6861]  ? __pfx_snd_mixer_oss_proc_write+0x10/0x10
[   82.176606][ T6861]  ? __pfx_snd_info_text_entry_release+0x10/0x10
[   82.178360][ T6861]  close_pdeo.part.0+0xdc/0x2e0
[   82.179767][ T6861]  proc_reg_release+0x2f0/0x360
[   82.181117][ T6861]  ? __pfx_proc_reg_release+0x10/0x10
[   82.182610][ T6861]  ? locks_remove_file+0x393/0x5a0
[   82.184036][ T6861]  ? __pfx_locks_remove_file+0x10/0x10
[   82.185557][ T6861]  ? __pfx___might_resched+0x10/0x10
[   82.187030][ T6861]  ? task_work_run+0x126/0x250
[   82.188357][ T6861]  ? ima_iint_find+0xea/0x130
[   82.189694][ T6861]  ? __pfx_proc_reg_release+0x10/0x10
[   82.191212][ T6861]  __fput+0x3f8/0xb60
[   82.192330][ T6861]  ? _raw_spin_unlock_irq+0x23/0x50
[   82.193791][ T6861]  task_work_run+0x14e/0x250
[   82.195103][ T6861]  ? __pfx_task_work_run+0x10/0x10
[   82.196568][ T6861]  syscall_exit_to_user_mode+0x27b/0x2a0
[   82.198106][ T6861]  __do_fast_syscall_32+0x80/0x120
[   82.199518][ T6861]  do_fast_syscall_32+0x32/0x80
[   82.200864][ T6861]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.202613][ T6861] RIP: 0023:0xf7eff579
[   82.203788][ T6861] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.209053][ T6861] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 000000000000014a
[   82.211348][ T6861] RAX: 0000000000000005 RBX: 0000000000000006 RCX: 0000000000000005
[   82.213623][ T6861] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   82.215951][ T6861] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.218128][ T6861] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   82.220335][ T6861] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.222514][ T6861]  </TASK>
[   82.550957][ T6869] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[   82.553550][ T6869] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   82.557051][ T6869] vhci_hcd vhci_hcd.0: Device attached
[   82.560414][ T6870] usbip_core: unknown command
[   82.562002][ T6870] vhci_hcd: unknown pdu 0
[   82.563324][ T6870] usbip_core: unknown command
[   82.565634][ T6869] netlink: 'syz.3.205': attribute type 11 has an invalid length.
[   82.572557][ T1136] vhci_hcd: stop threads
[   82.573823][ T1136] vhci_hcd: release socket
[   82.575138][ T1136] vhci_hcd: disconnect device
[   83.676897][   T67] Bluetooth: hci0: Malformed MSFT vendor event: 0x02
[   84.174065][ T6902] wg2: left allmulticast mode
[   84.183194][ T6902] wg2: entered promiscuous mode
[   84.184726][ T6902] wg2: entered allmulticast mode
[   84.413842][ T6906] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   84.415824][ T6906] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   84.424502][ T6906] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   84.437769][ T6906] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   84.439557][ T6906] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   84.452153][ T6906] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   84.455876][ T6906] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   84.457718][ T6906] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   84.461162][ T6906] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   84.466088][ T6906] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   84.467970][ T6906] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   84.471619][ T6906] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   84.513040][ T6905] overlay: Unknown parameter 'rootcontext'
[   85.002230][ T6926] IPv6: NLM_F_CREATE should be specified when creating new route
[   85.661120][   T67] Bluetooth: hci0: Malformed MSFT vendor event: 0x02
[   86.124001][   T67] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[   86.460712][   T67] Bluetooth: hci0: command 0x0c1a tx timeout
[   86.521053][   T67] Bluetooth: hci3: command 0x0c1a tx timeout
[   86.523356][   T67] Bluetooth: hci2: command 0x0c1a tx timeout
[   86.526346][   T67] Bluetooth: hci1: command 0x0c1a tx timeout
[   87.032793][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.3.229'.
[   87.331397][ T6986] /dev/sr0: Can't open blockdev
[   88.236571][ T5948] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[   88.332226][ T7023] netlink: 4 bytes leftover after parsing attributes in process `syz.1.242'.
[   88.417051][ T7027] FAULT_INJECTION: forcing a failure.
[   88.417051][ T7027] name failslab, interval 1, probability 0, space 0, times 0
[   88.420694][ T7027] CPU: 1 UID: 0 PID: 7027 Comm: syz.0.244 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   88.424148][ T7027] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.427173][ T7027] Call Trace:
[   88.428159][ T7027]  <TASK>
[   88.428996][ T7027]  dump_stack_lvl+0x16c/0x1f0
[   88.430341][ T7027]  should_fail_ex+0x497/0x5b0
[   88.431701][ T7027]  ? fs_reclaim_acquire+0xae/0x150
[   88.433196][ T7027]  should_failslab+0xc2/0x120
[   88.434513][ T7027]  __kmalloc_noprof+0xce/0x4f0
[   88.435868][ T7027]  ? tomoyo_encode2+0x100/0x3e0
[   88.437258][ T7027]  tomoyo_encode2+0x100/0x3e0
[   88.438604][ T7027]  tomoyo_realpath_from_path+0x1a7/0x710
[   88.440207][ T7027]  ? tomoyo_path_number_perm+0x235/0x5b0
[   88.441785][ T7027]  tomoyo_path_number_perm+0x248/0x5b0
[   88.443384][ T7027]  ? tomoyo_path_number_perm+0x235/0x5b0
[   88.444989][ T7027]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   88.446694][ T7027]  ? __pfx_lock_release+0x10/0x10
[   88.448113][ T7027]  ? trace_lock_acquire+0x14e/0x1f0
[   88.449691][ T7027]  ? lock_acquire+0x2f/0xb0
[   88.451006][ T7027]  ? __fget_files+0x40/0x3a0
[   88.452363][ T7027]  ? __fget_files+0x206/0x3a0
[   88.453745][ T7027]  security_file_ioctl_compat+0x9b/0x240
[   88.455325][ T7027]  __do_compat_sys_ioctl+0x4e/0x2c0
[   88.456793][ T7027]  __do_fast_syscall_32+0x73/0x120
[   88.458262][ T7027]  do_fast_syscall_32+0x32/0x80
[   88.459662][ T7027]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   88.461447][ T7027] RIP: 0023:0xf7fc0579
[   88.462627][ T7027] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   88.468020][ T7027] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   88.470344][ T7027] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000aec7
[   88.472604][ T7027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   88.474866][ T7027] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   88.477083][ T7027] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   88.479338][ T7027] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   88.481635][ T7027]  </TASK>
[   88.511389][ T7027] ERROR: Out of memory at tomoyo_realpath_from_path.
[   88.520942][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout
[   88.610825][ T5948] Bluetooth: hci1: command 0x0c1a tx timeout
[   88.610865][   T67] Bluetooth: hci2: command 0x0c1a tx timeout
[   88.612836][ T5948] Bluetooth: hci3: command 0x0c1a tx timeout
[   88.839687][ T7050] input: syz0 as /devices/virtual/input/input8
[   88.886010][ T7051] wg2: left promiscuous mode
[   88.887465][ T7051] wg2: left allmulticast mode
[   88.902202][ T7051] wg2: entered promiscuous mode
[   88.904206][ T7051] wg2: entered allmulticast mode
[   90.216570][ T7075] orangefs_mount: mount request failed with -4
[   90.559843][ T7085] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   90.579886][ T7085] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   90.601544][ T5292] Bluetooth: hci0: command 0x0c1a tx timeout
[   90.700912][ T5292] Bluetooth: hci2: command 0x0c1a tx timeout
[   90.702760][ T5292] Bluetooth: hci1: command 0x0c1a tx timeout
[   90.704509][ T5292] Bluetooth: hci3: command 0x0c1a tx timeout
[   91.092178][ T7105] wg2: left promiscuous mode
[   91.093677][ T7105] wg2: left allmulticast mode
[   91.103128][ T7105] wg2: entered promiscuous mode
[   91.104653][ T7105] wg2: entered allmulticast mode
[   91.705341][ T7116] pim6reg: entered allmulticast mode
[   91.929639][ T7118] netlink: 12 bytes leftover after parsing attributes in process `syz.0.271'.
[   91.941900][ T7118] netlink: 16 bytes leftover after parsing attributes in process `syz.0.271'.
[   92.518310][ T7121] syz.2.272 (7121): drop_caches: 2
[   92.642683][ T7126] input: syz1 as /devices/virtual/input/input9
[   92.647626][ T7126] FAULT_INJECTION: forcing a failure.
[   92.647626][ T7126] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.651853][ T7126] CPU: 0 UID: 0 PID: 7126 Comm: syz.2.274 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   92.654872][ T7126] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.657798][ T7126] Call Trace:
[   92.658729][ T7126]  <TASK>
[   92.659569][ T7126]  dump_stack_lvl+0x16c/0x1f0
[   92.660832][ T7126]  should_fail_ex+0x497/0x5b0
[   92.662120][ T7126]  _copy_from_user+0x2e/0xd0
[   92.663435][ T7126]  input_event_from_user+0x22d/0x3b0
[   92.664866][ T7126]  ? __pfx_input_event_from_user+0x10/0x10
[   92.666464][ T7126]  ? read_tsc+0x9/0x20
[   92.667624][ T7126]  ? ktime_get+0x1ac/0x300
[   92.668856][ T7126]  ? input_event+0x2a/0xa0
[   92.670092][ T7126]  uinput_write+0xbb6/0x12b0
[   92.671431][ T7126]  ? __pfx_uinput_write+0x10/0x10
[   92.672901][ T7126]  ? bpf_lsm_file_permission+0x9/0x10
[   92.674429][ T7126]  ? security_file_permission+0x71/0x210
[   92.675996][ T7126]  ? __pfx_uinput_write+0x10/0x10
[   92.677401][ T7126]  vfs_write+0x24c/0x1150
[   92.678606][ T7126]  ? __fget_files+0x1fc/0x3a0
[   92.679925][ T7126]  ? __pfx_lock_release+0x10/0x10
[   92.681348][ T7126]  ? __pfx_vfs_write+0x10/0x10
[   92.682689][ T7126]  ? lock_acquire+0x2f/0xb0
[   92.683993][ T7126]  ? __fget_files+0x40/0x3a0
[   92.685306][ T7126]  ? __fget_files+0x206/0x3a0
[   92.686632][ T7126]  ksys_write+0x207/0x250
[   92.687840][ T7126]  ? __pfx_ksys_write+0x10/0x10
[   92.689248][ T7126]  __do_fast_syscall_32+0x73/0x120
[   92.690678][ T7126]  do_fast_syscall_32+0x32/0x80
[   92.692025][ T7126]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   92.693838][ T7126] RIP: 0023:0xf7fc1579
[   92.695031][ T7126] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   92.700367][ T7126] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   92.702767][ T7126] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000fc0
[   92.704987][ T7126] RDX: 000000000000045c RSI: 0000000000000000 RDI: 0000000000000000
[   92.707217][ T7126] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   92.709436][ T7126] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   92.711994][ T7126] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   92.714657][ T7126]  </TASK>
[   93.004116][ T7141] netlink: 'syz.2.278': attribute type 2 has an invalid length.
[   93.006411][ T7141] netlink: 'syz.2.278': attribute type 8 has an invalid length.
[   93.008566][ T7141] netlink: 132 bytes leftover after parsing attributes in process `syz.2.278'.
[   93.894868][ T7146] pim6reg: entered allmulticast mode
[   94.647798][ T7166] netlink: 28 bytes leftover after parsing attributes in process `syz.3.284'.
[   94.890284][ T7172] FAULT_INJECTION: forcing a failure.
[   94.890284][ T7172] name failslab, interval 1, probability 0, space 0, times 0
[   94.894093][ T7172] CPU: 0 UID: 0 PID: 7172 Comm: syz.0.287 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   94.897132][ T7172] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   94.900207][ T7172] Call Trace:
[   94.901273][ T7172]  <TASK>
[   94.902164][ T7172]  dump_stack_lvl+0x16c/0x1f0
[   94.903635][ T7172]  should_fail_ex+0x497/0x5b0
[   94.905049][ T7172]  ? fs_reclaim_acquire+0xae/0x150
[   94.906621][ T7172]  should_failslab+0xc2/0x120
[   94.907990][ T7172]  __kmalloc_cache_noprof+0x68/0x420
[   94.909512][ T7172]  ? do_raw_read_unlock+0x44/0xe0
[   94.911015][ T7172]  ? lockdep_init_map_type+0x16d/0x7d0
[   94.912634][ T7172]  basic_init+0x43/0x1f0
[   94.913927][ T7172]  tc_new_tfilter+0x11c0/0x23a0
[   94.915403][ T7172]  ? __pfx_tc_new_tfilter+0x10/0x10
[   94.916956][ T7172]  ? __pfx___lock_acquire+0x10/0x10
[   94.918485][ T7172]  ? kmem_cache_free+0x152/0x4c0
[   94.919989][ T7172]  ? aa_get_newest_label+0x376/0x680
[   94.921673][ T7172]  ? find_held_lock+0x2d/0x110
[   94.923307][ T7172]  ? rtnetlink_rcv_msg+0x93a/0xea0
[   94.924840][ T7172]  ? __pfx_lock_release+0x10/0x10
[   94.926358][ T7172]  ? trace_lock_acquire+0x14e/0x1f0
[   94.927937][ T7172]  ? __pfx_tc_new_tfilter+0x10/0x10
[   94.929428][ T7172]  rtnetlink_rcv_msg+0x95b/0xea0
[   94.930931][ T7172]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   94.932519][ T7172]  ? __pfx___dev_queue_xmit+0x10/0x10
[   94.934162][ T7172]  netlink_rcv_skb+0x165/0x410
[   94.935643][ T7172]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   94.937274][ T7172]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   94.938912][ T7172]  ? netlink_deliver_tap+0x1ae/0xca0
[   94.940480][ T7172]  netlink_unicast+0x53c/0x7f0
[   94.941933][ T7172]  ? __pfx_netlink_unicast+0x10/0x10
[   94.943534][ T7172]  ? __phys_addr_symbol+0x30/0x80
[   94.945016][ T7172]  ? __check_object_size+0x488/0x710
[   94.946535][ T7172]  netlink_sendmsg+0x8b8/0xd70
[   94.947951][ T7172]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.949472][ T7172]  ____sys_sendmsg+0x9ae/0xb40
[   94.950868][ T7172]  ? __pfx_____sys_sendmsg+0x10/0x10
[   94.952420][ T7172]  ? get_compat_msghdr+0x11b/0x170
[   94.953997][ T7172]  ___sys_sendmsg+0x135/0x1e0
[   94.955426][ T7172]  ? __pfx____sys_sendmsg+0x10/0x10
[   94.956995][ T7172]  ? __pfx_lock_release+0x10/0x10
[   94.958478][ T7172]  ? trace_lock_acquire+0x14e/0x1f0
[   94.960002][ T7172]  ? __fget_files+0x206/0x3a0
[   94.961369][ T7172]  __sys_sendmsg+0x16e/0x220
[   94.962767][ T7172]  ? __pfx___sys_sendmsg+0x10/0x10
[   94.964254][ T7172]  __do_fast_syscall_32+0x73/0x120
[   94.965733][ T7172]  do_fast_syscall_32+0x32/0x80
[   94.967181][ T7172]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   94.968997][ T7172] RIP: 0023:0xf7fc0579
[   94.970173][ T7172] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   94.975744][ T7172] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   94.978092][ T7172] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020006040
[   94.980326][ T7172] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   94.982617][ T7172] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   94.984876][ T7172] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   94.987233][ T7172] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   94.989508][ T7172]  </TASK>
[   95.106193][ T7179] FAULT_INJECTION: forcing a failure.
[   95.106193][ T7179] name failslab, interval 1, probability 0, space 0, times 0
[   95.110120][ T7179] CPU: 3 UID: 0 PID: 7179 Comm: syz.2.290 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   95.113286][ T7179] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.116483][ T7179] Call Trace:
[   95.117514][ T7179]  <TASK>
[   95.118479][ T7179]  dump_stack_lvl+0x16c/0x1f0
[   95.120236][ T7179]  should_fail_ex+0x497/0x5b0
[   95.122087][ T7179]  ? fs_reclaim_acquire+0xae/0x150
[   95.123780][ T7179]  should_failslab+0xc2/0x120
[   95.125171][ T7179]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   95.126981][ T7179]  ? __pfx___might_resched+0x10/0x10
[   95.128559][ T7179]  ? alloc_vmap_area+0x636/0x2a70
[   95.130025][ T7179]  alloc_vmap_area+0x636/0x2a70
[   95.131599][ T7179]  ? __pfx_alloc_vmap_area+0x10/0x10
[   95.133548][ T7179]  __get_vm_area_node+0x19e/0x2f0
[   95.135620][ T7179]  ? __do_fast_syscall_32+0x73/0x120
[   95.137706][ T7179]  __vmalloc_node_range_noprof+0x26a/0x1530
[   95.140106][ T7179]  ? bpf_patch_insn_data+0xab/0x790
[   95.142232][ T7179]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.144655][ T7179]  ? bpf_patch_insn_data+0xab/0x790
[   95.146795][ T7179]  ? check_max_stack_depth+0xc0a/0x1a50
[   95.148431][ T7179]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   95.150253][ T7179]  ? bpf_patch_insn_data+0xab/0x790
[   95.151778][ T7179]  vzalloc_noprof+0x6b/0x90
[   95.153113][ T7179]  ? bpf_patch_insn_data+0xab/0x790
[   95.154649][ T7179]  bpf_patch_insn_data+0xab/0x790
[   95.156133][ T7179]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.157946][ T7179]  ? sock_ops_convert_ctx_access+0x1f59/0x12030
[   95.159790][ T7179]  bpf_check+0x669f/0xc870
[   95.161092][ T7179]  ? __pfx_bpf_check+0x10/0x10
[   95.162480][ T7179]  ? find_held_lock+0x2d/0x110
[   95.163905][ T7179]  ? bpf_prog_load+0xd45/0x2670
[   95.165333][ T7179]  ? __pfx_lock_release+0x10/0x10
[   95.166820][ T7179]  ? trace_lock_acquire+0x14e/0x1f0
[   95.168332][ T7179]  ? bpf_prog_load+0xd45/0x2670
[   95.169743][ T7179]  ? lockdep_hardirqs_on+0x7c/0x110
[   95.171258][ T7179]  ? read_tsc+0x9/0x20
[   95.172447][ T7179]  ? ktime_get_with_offset+0x20f/0x3a0
[   95.174003][ T7179]  ? bpf_obj_name_cpy+0x156/0x1b0
[   95.175489][ T7179]  bpf_prog_load+0xe3f/0x2670
[   95.176846][ T7179]  ? __pfx_bpf_prog_load+0x10/0x10
[   95.178327][ T7179]  ? find_held_lock+0x2d/0x110
[   95.179723][ T7179]  ? __might_fault+0x13b/0x190
[   95.181115][ T7179]  ? __might_fault+0xe3/0x190
[   95.182490][ T7179]  __sys_bpf+0x5677/0x57a0
[   95.183799][ T7179]  ? __pfx_lock_release+0x10/0x10
[   95.185263][ T7179]  ? __pfx___sys_bpf+0x10/0x10
[   95.186665][ T7179]  ? vfs_write+0x306/0x1150
[   95.187999][ T7179]  ? __mutex_unlock_slowpath+0x164/0x690
[   95.189625][ T7179]  ? fput+0x67/0x440
[   95.190771][ T7179]  ? ksys_write+0x1ba/0x250
[   95.192083][ T7179]  ? __pfx_ksys_write+0x10/0x10
[   95.193526][ T7179]  __ia32_sys_bpf+0x76/0xe0
[   95.194867][ T7179]  __do_fast_syscall_32+0x73/0x120
[   95.196347][ T7179]  do_fast_syscall_32+0x32/0x80
[   95.197762][ T7179]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.199609][ T7179] RIP: 0023:0xf7fc1579
[   95.200791][ T7179] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.206327][ T7179] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   95.208749][ T7179] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000300
[   95.211005][ T7179] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[   95.213296][ T7179] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.215588][ T7179] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.217901][ T7179] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.220182][ T7179]  </TASK>
[   95.222667][ T7179] syz.2.290: vmalloc error: size 864, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   95.227026][ T7179] CPU: 3 UID: 0 PID: 7179 Comm: syz.2.290 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   95.230045][ T7179] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.233123][ T7179] Call Trace:
[   95.234092][ T7179]  <TASK>
[   95.234986][ T7179]  dump_stack_lvl+0x16c/0x1f0
[   95.236361][ T7179]  warn_alloc+0x24d/0x3a0
[   95.237618][ T7179]  ? __pfx_warn_alloc+0x10/0x10
[   95.239046][ T7179]  ? kfree+0x14f/0x4b0
[   95.240231][ T7179]  ? __get_vm_area_node+0x1dc/0x2f0
[   95.241731][ T7179]  __vmalloc_node_range_noprof+0xd27/0x1530
[   95.243465][ T7179]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.245176][ T7179]  ? bpf_patch_insn_data+0xab/0x790
[   95.246693][ T7179]  ? check_max_stack_depth+0xc0a/0x1a50
[   95.248290][ T7179]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   95.250100][ T7179]  ? bpf_patch_insn_data+0xab/0x790
[   95.252935][ T7179]  vzalloc_noprof+0x6b/0x90
[   95.254277][ T7179]  ? bpf_patch_insn_data+0xab/0x790
[   95.255832][ T7179]  bpf_patch_insn_data+0xab/0x790
[   95.257289][ T7179]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   95.259021][ T7179]  ? sock_ops_convert_ctx_access+0x1f59/0x12030
[   95.260819][ T7179]  bpf_check+0x669f/0xc870
[   95.262325][ T7179]  ? __pfx_bpf_check+0x10/0x10
[   95.263812][ T7179]  ? find_held_lock+0x2d/0x110
[   95.265220][ T7179]  ? bpf_prog_load+0xd45/0x2670
[   95.266675][ T7179]  ? __pfx_lock_release+0x10/0x10
[   95.268242][ T7179]  ? trace_lock_acquire+0x14e/0x1f0
[   95.269744][ T7179]  ? bpf_prog_load+0xd45/0x2670
[   95.271154][ T7179]  ? lockdep_hardirqs_on+0x7c/0x110
[   95.272654][ T7179]  ? read_tsc+0x9/0x20
[   95.273850][ T7179]  ? ktime_get_with_offset+0x20f/0x3a0
[   95.275434][ T7179]  ? bpf_obj_name_cpy+0x156/0x1b0
[   95.276888][ T7179]  bpf_prog_load+0xe3f/0x2670
[   95.278257][ T7179]  ? __pfx_bpf_prog_load+0x10/0x10
[   95.279741][ T7179]  ? find_held_lock+0x2d/0x110
[   95.281192][ T7179]  ? __might_fault+0x13b/0x190
[   95.282599][ T7179]  ? __might_fault+0xe3/0x190
[   95.283976][ T7179]  __sys_bpf+0x5677/0x57a0
[   95.285255][ T7179]  ? __pfx_lock_release+0x10/0x10
[   95.286700][ T7179]  ? __pfx___sys_bpf+0x10/0x10
[   95.287968][ T7179]  ? vfs_write+0x306/0x1150
[   95.289217][ T7179]  ? __mutex_unlock_slowpath+0x164/0x690
[   95.290760][ T7179]  ? fput+0x67/0x440
[   95.291898][ T7179]  ? ksys_write+0x1ba/0x250
[   95.293234][ T7179]  ? __pfx_ksys_write+0x10/0x10
[   95.294674][ T7179]  __ia32_sys_bpf+0x76/0xe0
[   95.295983][ T7179]  __do_fast_syscall_32+0x73/0x120
[   95.297458][ T7179]  do_fast_syscall_32+0x32/0x80
[   95.298874][ T7179]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.300768][ T7179] RIP: 0023:0xf7fc1579
[   95.301946][ T7179] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.307426][ T7179] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   95.309799][ T7179] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000300
[   95.312053][ T7179] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[   95.314341][ T7179] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.316612][ T7179] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.318871][ T7179] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.321114][ T7179]  </TASK>
[   95.326357][ T7179] Mem-Info:
[   95.327560][ T7179] active_anon:8541 inactive_anon:625 isolated_anon:0
[   95.327560][ T7179]  active_file:15054 inactive_file:33651 isolated_file:0
[   95.327560][ T7179]  unevictable:1768 dirty:310 writeback:0
[   95.327560][ T7179]  slab_reclaimable:5743 slab_unreclaimable:56705
[   95.327560][ T7179]  mapped:29430 shmem:5321 pagetables:707
[   95.327560][ T7179]  sec_pagetables:300 bounce:0
[   95.327560][ T7179]  kernel_misc_reclaimable:0
[   95.327560][ T7179]  free:52262 free_pcp:5467 free_cma:0
[   95.343596][ T7179] Node 0 active_anon:5788kB inactive_anon:2500kB active_file:9312kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:7276kB dirty:0kB writeback:0kB shmem:6852kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9744kB pagetables:992kB sec_pagetables:1132kB all_unreclaimable? yes
[   95.353417][ T7179] Node 1 active_anon:28376kB inactive_anon:0kB active_file:50904kB inactive_file:134604kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:110444kB dirty:1240kB writeback:0kB shmem:14432kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2308kB pagetables:1836kB sec_pagetables:68kB all_unreclaimable? no
[   95.362573][ T7179] Node 0 DMA free:2940kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:960kB inactive_anon:48kB active_file:64kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:392kB local_pcp:152kB free_cma:0kB
[   95.370044][ T7179] lowmem_reserve[]: 0 299 0 0 0
[   95.373013][ T7179] Node 0 DMA32 free:20688kB boost:2048kB min:15952kB low:19428kB high:22904kB reserved_highatomic:4096KB active_anon:4828kB inactive_anon:2452kB active_file:9248kB inactive_file:0kB unevictable:3536kB writepending:0kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:764kB local_pcp:304kB free_cma:0kB
[   95.380970][ T7179] lowmem_reserve[]: 0 0 0 0 0
[   95.382214][ T7179] Node 1 DMA32 free:185952kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:28376kB inactive_anon:0kB active_file:50904kB inactive_file:134604kB unevictable:3536kB writepending:1240kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:20092kB local_pcp:944kB free_cma:0kB
[   95.390500][ T7179] lowmem_reserve[]: 0 0 0 0 0
[   95.390522][ T7179] Node 0 DMA: 63*4kB (UME) 54*8kB (UME) 43*16kB (UE) 47*32kB (UME) 1*64kB (E) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2940kB
[   95.390610][ T7179] Node 0 DMA32: 393*4kB (UMEH) 102*8kB (UMEH) 48*16kB (UMEH) 50*32kB (UMEH) 45*64kB (UMEH) 20*128kB (UH) 9*256kB (UM) 8*512kB (UME) 2*1024kB (ME) 1*2048kB (M) 0*4096kB = 20692kB
[   95.390695][ T7179] Node 1 DMA32: 115*4kB (UME) 171*8kB (UME) 173*16kB (UE) 222*32kB (UME) 178*64kB (UME) 97*128kB (UME) 90*256kB (UME) 83*512kB (UME) 56*1024kB (UME) 11*2048kB (UM) 1*4096kB (U) = 185012kB
[   95.392406][ T7179] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   95.392415][ T7179] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   95.392423][ T7179] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   95.392430][ T7179] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   95.392439][ T7179] 54026 total pagecache pages
[   95.392442][ T7179] 0 pages in swap cache
[   95.392446][ T7179] Free swap  = 124704kB
[   95.392449][ T7179] Total swap = 124996kB
[   95.392454][ T7179] 524155 pages RAM
[   95.392457][ T7179] 0 pages HighMem/MovableOnly
[   95.392460][ T7179] 206681 pages reserved
[   95.392464][ T7179] 0 pages cma reserved
[   95.966982][ T7195] netlink: 28 bytes leftover after parsing attributes in process `syz.3.294'.
[   95.973132][ T7195] netlink: 28 bytes leftover after parsing attributes in process `syz.3.294'.
[   96.356838][ T7207] binder: 7206:7207 ioctl 400c620e 20000140 returned -22
[   96.630832][   T57] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   96.664926][ T7213] wg2: entered promiscuous mode
[   96.666527][ T7213] wg2: entered allmulticast mode
[   96.784294][   T57] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   96.787891][   T57] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 65327, setting to 1024
[   96.792441][   T57] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[   96.795874][   T57] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   96.799094][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.819222][ T7209] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   96.841364][   T57] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   98.090404][ T5943] usb 7-1: USB disconnect, device number 4
[   98.793871][ T7243] binder: 7241:7243 ioctl 400c620e 20000140 returned -22
[   98.796732][ T7243] FAULT_INJECTION: forcing a failure.
[   98.796732][ T7243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.811470][ T7243] CPU: 2 UID: 0 PID: 7243 Comm: syz.3.309 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   98.815683][ T7243] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   98.819836][ T7243] Call Trace:
[   98.821196][ T7243]  <TASK>
[   98.822378][ T7243]  dump_stack_lvl+0x16c/0x1f0
[   98.824351][ T7243]  should_fail_ex+0x497/0x5b0
[   98.826237][ T7243]  _copy_to_user+0x32/0xd0
[   98.828230][ T7243]  simple_read_from_buffer+0xd0/0x160
[   98.830439][ T7243]  proc_fail_nth_read+0x198/0x270
[   98.832427][ T7243]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.834674][ T7243]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.836824][ T7243]  vfs_read+0x1df/0xbe0
[   98.838494][ T7243]  ? __fget_files+0x1fc/0x3a0
[   98.840439][ T7243]  ? __pfx___mutex_lock+0x10/0x10
[   98.842405][ T7243]  ? __pfx_vfs_read+0x10/0x10
[   98.844254][ T7243]  ? __fget_files+0x206/0x3a0
[   98.846096][ T7243]  ksys_read+0x12b/0x250
[   98.847749][ T7243]  ? __pfx_ksys_read+0x10/0x10
[   98.849554][ T7243]  __do_fast_syscall_32+0x73/0x120
[   98.851505][ T7243]  do_fast_syscall_32+0x32/0x80
[   98.853533][ T7243]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.855866][ T7243] RIP: 0023:0xf7f47579
[   98.857499][ T7243] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   98.864872][ T7243] RSP: 002b:00000000f5096590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   98.868124][ T7243] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5096620
[   98.871215][ T7243] RDX: 000000000000000f RSI: 00000000f73d3ff4 RDI: 0000000000000000
[   98.874316][ T7243] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   98.877361][ T7243] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   98.880392][ T7243] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.883511][ T7243]  </TASK>
[   99.231550][ T7259] binder: 7258:7259 ioctl 400c620e 20000140 returned -22
[   99.341796][ T7254] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   99.416499][ T7267] overlayfs: empty lowerdir
[  100.416606][ T5948] Bluetooth: hci2: unexpected event for opcode 0x040e
[  100.421670][ T7280] netlink: 'syz.2.321': attribute type 16 has an invalid length.
[  101.275950][ T7282] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.395681][ T7282] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.472617][ T7282] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.561548][ T7282] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.631350][ T7282] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.636617][ T7282] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.642335][ T7282] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.648435][ T7282] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.252151][ T5948] Bluetooth: hci0: SCO packet too small
[  102.585188][ T7317] netlink: 56 bytes leftover after parsing attributes in process `syz.0.329'.
[  102.743068][ T7313] wg2: left promiscuous mode
[  102.744472][ T7313] wg2: left allmulticast mode
[  102.747735][ T7313] wg2: entered promiscuous mode
[  102.749304][ T7313] wg2: entered allmulticast mode
[  102.869443][ T7320] wg2: left promiscuous mode
[  102.870966][ T7320] wg2: left allmulticast mode
[  102.887238][ T7320] wg2: entered promiscuous mode
[  102.888729][ T7320] wg2: entered allmulticast mode
[  104.081185][ T5292] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  104.088817][ T5292] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  104.093796][ T5292] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  104.099389][ T5292] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  104.104012][ T5292] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  104.106560][ T5292] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  104.167467][ T7341] chnl_net:caif_netlink_parms(): no params data found
[  104.204882][ T7341] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.207073][ T7341] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.209238][ T7341] bridge_slave_0: entered allmulticast mode
[  104.211983][ T7341] bridge_slave_0: entered promiscuous mode
[  104.214699][ T7341] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.216817][ T7341] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.218935][ T7341] bridge_slave_1: entered allmulticast mode
[  104.221354][ T7341] bridge_slave_1: entered promiscuous mode
[  104.239054][ T7341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.243496][ T7341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.263158][ T7341] team0: Port device team_slave_0 added
[  104.265915][ T7341] team0: Port device team_slave_1 added
[  104.292586][ T7341] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.294855][ T7341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.302703][ T7341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.306914][ T7341] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.309076][ T7341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.317205][ T7341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.349074][ T7341] hsr_slave_0: entered promiscuous mode
[  104.351326][ T7341] hsr_slave_1: entered promiscuous mode
[  104.353323][ T7341] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  104.355534][ T7341] Cannot create hsr debugfs directory
[  104.400644][   T93] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.459241][   T93] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.480344][   T40] audit: type=1326 audit(1737286825.913:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7352 comm="syz.3.340" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x0
[  104.484762][ T7341] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  104.494807][ T7341] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  104.497923][ T7341] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  104.501310][ T7341] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  104.510555][ T7341] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.512680][ T7341] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.515646][ T7341] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.517692][ T7341] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.543087][   T93] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.558497][ T7341] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.567928][ T1134] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.573495][ T1134] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.589279][ T7341] 8021q: adding VLAN 0 to HW filter on device team0
[  104.602670][   T93] team0: Port device netdevsim0 removed
[  104.605096][   T93] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.613635][ T1134] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.616076][ T1134] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.620011][   T66] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.622099][   T66] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.712408][   T93] bridge_slave_1: left allmulticast mode
[  104.714446][   T93] bridge_slave_1: left promiscuous mode
[  104.717329][   T93] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.723601][   T93] bridge_slave_0: left allmulticast mode
[  104.725267][   T93] bridge_slave_0: left promiscuous mode
[  104.727774][   T93] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.945227][   T93] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  104.951923][   T93] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  104.955421][   T93] bond0 (unregistering): Released all slaves
[  104.974592][ T7341] 8021q: adding VLAN 0 to HW filter on device batadv0
[  105.219402][ T7341] veth0_vlan: entered promiscuous mode
[  105.231136][ T7341] veth1_vlan: entered promiscuous mode
[  105.258059][ T7341] veth0_macvtap: entered promiscuous mode
[  105.266771][   T93] hsr_slave_0: left promiscuous mode
[  105.273293][   T93] hsr_slave_1: left promiscuous mode
[  105.276261][   T93] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.278446][   T93] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.292683][   T93] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.294883][   T93] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.320136][   T93] veth1_macvtap: left promiscuous mode
[  105.325091][   T93] veth0_macvtap: left promiscuous mode
[  105.326829][   T93] veth1_vlan: left promiscuous mode
[  105.328499][   T93] veth0_vlan: left promiscuous mode
[  105.378929][   T93] pim6reg (unregistering): left allmulticast mode
[  106.067588][   T93] team0 (unregistering): Port device team_slave_1 removed
[  106.123284][ T5948] Bluetooth: hci1: command tx timeout
[  106.161436][   T93] team0 (unregistering): Port device team_slave_0 removed
[  106.676091][ T7341] veth1_macvtap: entered promiscuous mode
[  106.684483][ T7341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.687487][ T7341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.690410][ T7341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.693477][ T7341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.696801][ T7341] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.702297][ T7341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.705297][ T7341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.708031][ T7341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.711366][ T7341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.714701][ T7341] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.718926][ T7341] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.726880][ T7341] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.729401][ T7341] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.732269][ T7341] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.741773][ T7427] netlink: 20 bytes leftover after parsing attributes in process `syz.0.357'.
[  106.745556][ T7425] Bluetooth: MGMT ver 1.23
[  106.776298][ T1198] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.778900][ T1198] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.800073][ T7434] trusted_key: encrypted_key: insufficient parameters specified
[  106.812157][ T1136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.817245][ T1136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.948348][ T7443] tipc: Started in network mode
[  106.950205][ T7443] tipc: Node identity ffffffff, cluster identity 4711
[  106.952808][ T7443] tipc: Node number set to 4294967295
[  107.545959][ T7471] pim6reg: entered allmulticast mode
[  107.915271][ T7503] FAULT_INJECTION: forcing a failure.
[  107.915271][ T7503] name failslab, interval 1, probability 0, space 0, times 0
[  107.919204][ T7503] CPU: 3 UID: 0 PID: 7503 Comm: syz.2.371 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  107.923177][ T7503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.927174][ T7503] Call Trace:
[  107.928445][ T7503]  <TASK>
[  107.929561][ T7503]  dump_stack_lvl+0x16c/0x1f0
[  107.931380][ T7503]  should_fail_ex+0x497/0x5b0
[  107.933190][ T7503]  ? fs_reclaim_acquire+0xae/0x150
[  107.935135][ T7503]  should_failslab+0xc2/0x120
[  107.936916][ T7503]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  107.938958][ T7503]  ? skb_clone+0x190/0x3f0
[  107.940649][ T7503]  skb_clone+0x190/0x3f0
[  107.942246][ T7503]  netlink_trim+0x1b3/0x250
[  107.943989][ T7503]  netlink_broadcast_filtered+0xc7/0xef0
[  107.946015][ T7503]  ? find_held_lock+0x2d/0x110
[  107.947826][ T7503]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  107.950149][ T7503]  ? __pfx_lock_release+0x10/0x10
[  107.951579][ T7503]  nlmsg_notify+0x9e/0x220
[  107.952845][ T7503]  nf_tables_commit+0x2d64/0x5fe0
[  107.954330][ T7503]  ? __pfx_nf_tables_commit+0x10/0x10
[  107.955905][ T7503]  ? __pfx_nf_tables_newrule+0x10/0x10
[  107.957475][ T7503]  ? net_generic+0xea/0x2a0
[  107.958808][ T7503]  ? __pfx_lock_release+0x10/0x10
[  107.960269][ T7503]  ? __nla_parse+0x40/0x60
[  107.961668][ T7503]  nfnetlink_rcv_batch+0xa52/0x24e0
[  107.963211][ T7503]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  107.964830][ T7503]  ? __pfx_lock_release+0x10/0x10
[  107.966289][ T7503]  ? __local_bh_enable_ip+0xa4/0x120
[  107.967830][ T7503]  ? lockdep_hardirqs_on+0x7c/0x110
[  107.969340][ T7503]  ? __pfx___dev_queue_xmit+0x10/0x10
[  107.970908][ T7503]  ? __nla_parse+0x40/0x60
[  107.972202][ T7503]  nfnetlink_rcv+0x3c3/0x430
[  107.973561][ T7503]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  107.975065][ T7503]  netlink_unicast+0x53c/0x7f0
[  107.976451][ T7503]  ? __pfx_netlink_unicast+0x10/0x10
[  107.977981][ T7503]  ? __phys_addr_symbol+0x30/0x80
[  107.979452][ T7503]  ? __check_object_size+0x488/0x710
[  107.980999][ T7503]  netlink_sendmsg+0x8b8/0xd70
[  107.982402][ T7503]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.983993][ T7503]  ____sys_sendmsg+0x9ae/0xb40
[  107.985411][ T7503]  ? __pfx_____sys_sendmsg+0x10/0x10
[  107.986953][ T7503]  ? get_compat_msghdr+0x11b/0x170
[  107.988449][ T7503]  ___sys_sendmsg+0x135/0x1e0
[  107.989824][ T7503]  ? __pfx____sys_sendmsg+0x10/0x10
[  107.991349][ T7503]  ? __pfx_lock_release+0x10/0x10
[  107.992835][ T7503]  ? trace_lock_acquire+0x14e/0x1f0
[  107.994355][ T7503]  ? __fget_files+0x206/0x3a0
[  107.995758][ T7503]  __sys_sendmsg+0x16e/0x220
[  107.997111][ T7503]  ? __pfx___sys_sendmsg+0x10/0x10
[  107.998617][ T7503]  __do_fast_syscall_32+0x73/0x120
[  108.000102][ T7503]  do_fast_syscall_32+0x32/0x80
[  108.001521][ T7503]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.003379][ T7503] RIP: 0023:0xf7fc1579
[  108.004578][ T7503] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.010095][ T7503] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  108.012510][ T7503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080
[  108.014831][ T7503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  108.017106][ T7503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  108.019403][ T7503] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  108.021681][ T7503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.024007][ T7503]  </TASK>
[  108.025025][    C3] vkms_vblank_simulate: vblank timer overrun
[  108.055091][ T5948] Bluetooth: hci0: Malformed MSFT vendor event: 0x02
[  108.202343][ T5948] Bluetooth: hci1: command tx timeout
[  108.255938][ T7511] netlink: 132 bytes leftover after parsing attributes in process `syz.4.372'.
[  108.262071][ T7511] netlink: 72 bytes leftover after parsing attributes in process `syz.4.372'.
[  108.798835][ T7529] process 'syz.2.374' launched './file0' with NULL argv: empty string added
[  109.345697][ T5948] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  109.960813][ T5982] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  110.120845][ T5982] usb 7-1: Using ep0 maxpacket: 32
[  110.123700][ T5982] usb 7-1: config 0 has an invalid interface number: 16 but max is 0
[  110.126022][ T5982] usb 7-1: config 0 has no interface number 0
[  110.127801][ T5982] usb 7-1: config 0 interface 16 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  110.130655][ T5982] usb 7-1: config 0 interface 16 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  110.135095][ T5982] usb 7-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d
[  110.137719][ T5982] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.140004][ T5982] usb 7-1: Product: syz
[  110.141285][ T5982] usb 7-1: Manufacturer: syz
[  110.142657][ T5982] usb 7-1: SerialNumber: syz
[  110.144977][ T5982] usb 7-1: config 0 descriptor??
[  110.147162][ T7576] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  110.150925][ T5982] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  110.153237][ T5982] usb 7-1: invalid MIDI in EP 0
[  110.171509][ T5982] snd-usb-audio 7-1:0.16: probe with driver snd-usb-audio failed with error -22
[  110.195571][ T5938] udevd[5938]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.16/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  110.280861][ T5948] Bluetooth: hci1: command tx timeout
[  110.470860][    T9] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  110.620951][    T9] usb 5-1: Using ep0 maxpacket: 8
[  110.624972][    T9] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  110.627446][    T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  110.630286][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  110.633760][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  110.637675][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  110.641435][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  110.644193][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.850201][    T9] usb 5-1: GET_CAPABILITIES returned 0
[  110.852137][    T9] usbtmc 5-1:16.0: can't read capabilities
[  111.053366][ T7593] usbtmc 5-1:16.0: send_request_dev_dep_msg_in returned -90
[  111.056509][   T25] usb 5-1: USB disconnect, device number 4
[  111.211390][   T57] usb 7-1: USB disconnect, device number 5
[  111.990876][    T9] usb 7-1: new low-speed USB device number 6 using dummy_hcd
[  112.142230][    T9] usb 7-1: config index 0 descriptor too short (expected 1307, got 27)
[  112.142247][    T9] usb 7-1: config 0 has an invalid interface number: 0 but max is -1
[  112.142257][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0
[  112.143852][    T9] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  112.156544][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  112.156559][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  112.156571][    T9] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  112.159081][    T9] usb 7-1: string descriptor 0 read error: -22
[  112.159123][    T9] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  112.159135][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.164874][    T9] usb 7-1: config 0 descriptor??
[  112.186017][    T9] hub 7-1:0.0: bad descriptor, ignoring hub
[  112.186032][    T9] hub 7-1:0.0: probe with driver hub failed with error -5
[  112.188395][    T9] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input10
[  112.374708][ T5948] Bluetooth: hci1: command tx timeout
[  112.392087][ T2115] usb 7-1: USB disconnect, device number 6
[  112.646008][ T7639] FAULT_INJECTION: forcing a failure.
[  112.646008][ T7639] name failslab, interval 1, probability 0, space 0, times 0
[  112.650126][ T7639] CPU: 3 UID: 0 PID: 7639 Comm: syz.4.409 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  112.653340][ T7639] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.656547][ T7639] Call Trace:
[  112.657559][ T7639]  <TASK>
[  112.658479][ T7639]  dump_stack_lvl+0x16c/0x1f0
[  112.659902][ T7639]  should_fail_ex+0x497/0x5b0
[  112.661331][ T7639]  ? fs_reclaim_acquire+0xae/0x150
[  112.662962][ T7639]  should_failslab+0xc2/0x120
[  112.664437][ T7639]  __kmalloc_noprof+0xce/0x4f0
[  112.665900][ T7639]  ? __netlink_kernel_create+0x180/0x750
[  112.667658][ T7639]  ? __netlink_create+0x208/0x2c0
[  112.669207][ T7639]  __netlink_kernel_create+0x180/0x750
[  112.670819][ T7639]  ? __pfx___netlink_kernel_create+0x10/0x10
[  112.672680][ T7639]  ? find_held_lock+0x2d/0x110
[  112.674170][ T7639]  rtnetlink_net_init+0xba/0x140
[  112.675663][ T7639]  ? __pfx_rtnetlink_net_init+0x10/0x10
[  112.677334][ T7639]  ? __pfx_rtnetlink_rcv+0x10/0x10
[  112.678891][ T7639]  ? __pfx_rtnetlink_bind+0x10/0x10
[  112.680427][ T7639]  ? __pfx_netlink_tap_init_net+0x10/0x10
[  112.682136][ T7639]  ? debug_mutex_init+0x37/0x70
[  112.683654][ T7639]  ? __pfx_rtnetlink_net_init+0x10/0x10
[  112.685318][ T7639]  ops_init+0x1df/0x5f0
[  112.686582][ T7639]  setup_net+0x21f/0x860
[  112.687875][ T7639]  ? __pfx_setup_net+0x10/0x10
[  112.689339][ T7639]  ? down_read_killable+0xcc/0x380
[  112.690920][ T7639]  ? __pfx_down_read_killable+0x10/0x10
[  112.692636][ T7639]  ? debug_mutex_init+0x37/0x70
[  112.694118][ T7639]  copy_net_ns+0x2b4/0x6c0
[  112.695464][ T7639]  create_new_namespaces+0x3ea/0xad0
[  112.697047][ T7639]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  112.698743][ T7639]  ksys_unshare+0x45d/0xa40
[  112.700121][ T7639]  ? __pfx_ksys_unshare+0x10/0x10
[  112.701615][ T7639]  ? ksys_write+0x1ba/0x250
[  112.703077][ T7639]  __ia32_sys_unshare+0x30/0x40
[  112.704531][ T7639]  __do_fast_syscall_32+0x73/0x120
[  112.706080][ T7639]  do_fast_syscall_32+0x32/0x80
[  112.707575][ T7639]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.709483][ T7639] RIP: 0023:0xf7f65579
[  112.710726][ T7639] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  112.716550][ T7639] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000136
[  112.719247][ T7639] RAX: ffffffffffffffda RBX: 0000000062040200 RCX: 0000000000000000
[  112.719268][ T7639] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  112.719274][ T7639] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  112.719281][ T7639] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  112.719287][ T7639] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.719301][ T7639]  </TASK>
[  113.301511][ T7655] wg2: entered promiscuous mode
[  113.305778][ T7655] wg2: entered allmulticast mode
[  114.481522][ T7688] netlink: 20 bytes leftover after parsing attributes in process `syz.3.425'.
[  114.690868][   T63] IPVS: starting estimator thread 0...
[  114.780859][ T7700] IPVS: using max 37 ests per chain, 88800 per kthread
[  114.875796][ T7717] wg2: left promiscuous mode
[  114.882265][ T7717] wg2: left allmulticast mode
[  114.887493][ T7719] FAULT_INJECTION: forcing a failure.
[  114.887493][ T7719] name failslab, interval 1, probability 0, space 0, times 0
[  114.892685][ T7719] CPU: 3 UID: 0 PID: 7719 Comm: syz.4.434 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  114.895722][ T7719] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.898748][ T7719] Call Trace:
[  114.899709][ T7719]  <TASK>
[  114.900562][ T7719]  dump_stack_lvl+0x16c/0x1f0
[  114.901937][ T7719]  should_fail_ex+0x497/0x5b0
[  114.903310][ T7719]  ? fs_reclaim_acquire+0xae/0x150
[  114.904788][ T7719]  should_failslab+0xc2/0x120
[  114.906149][ T7719]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[  114.907789][ T7719]  ? bdi_alloc+0x44/0x170
[  114.909042][ T7719]  bdi_alloc+0x44/0x170
[  114.910254][ T7719]  super_setup_bdi_name+0xc1/0x250
[  114.911738][ T7719]  ? __pfx_super_setup_bdi_name+0x10/0x10
[  114.913387][ T7719]  ? fuse_fill_super_common+0x48c/0x1040
[  114.914996][ T7719]  ? lock_acquire+0x2f/0xb0
[  114.916305][ T7719]  ? fuse_dev_install+0xa9/0x220
[  114.917731][ T7719]  fuse_fill_super_common+0x5eb/0x1040
[  114.919302][ T7719]  ? __pfx_fuse_fill_super_common+0x10/0x10
[  114.921007][ T7719]  ? __init_swait_queue_head+0xca/0x150
[  114.922629][ T7719]  ? shrinker_register+0x1a8/0x260
[  114.924102][ T7719]  ? sget_fc+0x488/0xb90
[  114.925322][ T7719]  ? __pfx_fuse_fill_super+0x10/0x10
[  114.926844][ T7719]  fuse_fill_super+0x1f2/0x2d0
[  114.928242][ T7719]  get_tree_nodev+0xda/0x190
[  114.929571][ T7719]  fuse_get_tree+0x26d/0x600
[  114.930905][ T7719]  vfs_get_tree+0x8f/0x380
[  114.932191][ T7719]  path_mount+0x6e1/0x1f00
[  114.933532][ T7719]  ? kmem_cache_free+0x152/0x4c0
[  114.934970][ T7719]  ? __pfx_path_mount+0x10/0x10
[  114.936375][ T7719]  ? putname+0x13c/0x180
[  114.937719][ T7719]  __ia32_sys_mount+0x292/0x310
[  114.939141][ T7719]  ? __pfx___ia32_sys_mount+0x10/0x10
[  114.940686][ T7719]  __do_fast_syscall_32+0x73/0x120
[  114.942157][ T7719]  do_fast_syscall_32+0x32/0x80
[  114.943602][ T7719]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  114.945433][ T7719] RIP: 0023:0xf7f65579
[  114.946619][ T7719] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  114.952085][ T7719] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  114.954502][ T7719] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000000
[  114.956757][ T7719] RDX: 0000000020002100 RSI: 0000000000218002 RDI: 0000000020000440
[  114.959012][ T7719] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  114.961267][ T7719] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  114.963552][ T7719] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  114.965819][ T7719]  </TASK>
[  114.966991][ T7717] wg2: entered promiscuous mode
[  114.969023][ T7717] wg2: entered allmulticast mode
[  115.182304][ T7729] wg2: left promiscuous mode
[  115.183709][ T7729] wg2: left allmulticast mode
[  115.188405][ T7730] wg2: entered promiscuous mode
[  115.189838][ T7730] wg2: entered allmulticast mode
[  115.869640][ T7745] random: crng reseeded on system resumption
[  115.927183][ T7747] netlink: 2 bytes leftover after parsing attributes in process `syz.2.441'.
[  115.930339][ T7747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.936987][ T7747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.940684][ T7747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.943824][ T7747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.946702][ T7747] batadv_slave_1: entered promiscuous mode
[  115.982693][ T7749] 9pnet_fd: Insufficient options for proto=fd
[  116.437066][ T7758] 9pnet_fd: Insufficient options for proto=fd
[  116.848632][ T7765] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  116.967749][ T7765] /dev/sr0: Can't open blockdev
[  117.303242][ T7760] /dev/sr0: Can't open blockdev
[  117.416710][   T40] audit: type=1326 audit(1737286838.853:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7770 comm="syz.2.448" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x0
[  117.600982][ T2115] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  117.656951][ T7775] wg2: left promiscuous mode
[  117.658353][ T7775] wg2: left allmulticast mode
[  117.676743][ T7775] wg2: entered promiscuous mode
[  117.678251][ T7775] wg2: entered allmulticast mode
[  117.750882][ T2115] usb 5-1: Using ep0 maxpacket: 8
[  117.753955][ T2115] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  117.757077][ T2115] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  117.759735][ T2115] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.767989][ T2115] usb 5-1: config 0 descriptor??
[  117.978132][ T2115] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  118.455605][   T63] usb 5-1: USB disconnect, device number 5
[  118.760515][   T40] audit: type=1326 audit(1737286840.193:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  118.774623][   T40] audit: type=1326 audit(1737286840.193:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  118.783658][   T40] audit: type=1326 audit(1737286840.203:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  118.791074][   T40] audit: type=1326 audit(1737286840.223:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  118.798275][   T40] audit: type=1326 audit(1737286840.233:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  118.805264][   T40] audit: type=1326 audit(1737286840.233:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  118.816574][   T40] audit: type=1326 audit(1737286840.243:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=270 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  118.830839][   T40] audit: type=1326 audit(1737286840.243:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  118.843245][   T40] audit: type=1326 audit(1737286840.243:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.3.454" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  120.415418][ T7864] wg2: left promiscuous mode
[  120.417337][ T7864] wg2: left allmulticast mode
[  120.421593][ T7865] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[  120.421593][ T7865]    program syz.0.460 not setting count and/or reply_len properly
[  120.563563][ T7864] wg2: entered promiscuous mode
[  120.565216][ T7864] wg2: entered allmulticast mode
[  120.966972][ T7870] netlink: 44 bytes leftover after parsing attributes in process `syz.2.461'.
[  120.969503][ T7872] netlink: 16 bytes leftover after parsing attributes in process `syz.3.462'.
[  121.045426][ T7875] netlink: 'syz.3.462': attribute type 4 has an invalid length.
[  122.832144][ T7906] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  122.837704][ T7906] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  122.850922][ T7906] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  122.853312][ T7906] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  122.872320][ T7906] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  122.875877][ T7906] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  123.045426][ T7922] input: syz0 as /devices/virtual/input/input12
[  123.051578][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  123.051586][   T40] audit: type=1326 audit(2000000002.059:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.063608][   T40] audit: type=1326 audit(2000000002.069:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.079250][   T40] audit: type=1326 audit(2000000002.069:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.085525][   T40] audit: type=1326 audit(2000000002.069:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.092999][   T40] audit: type=1326 audit(2000000002.069:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.099879][   T40] audit: type=1326 audit(2000000002.079:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.106010][   T40] audit: type=1326 audit(2000000002.079:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.112161][   T40] audit: type=1326 audit(2000000002.079:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.118249][   T40] audit: type=1326 audit(2000000002.079:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.124340][   T40] audit: type=1326 audit(2000000002.079:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7921 comm="syz.4.473" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f65579 code=0x7ffc0000
[  123.164224][ T7923] wg2: left promiscuous mode
[  123.169404][ T7923] wg2: left allmulticast mode
[  123.230990][ T7923] wg2: entered promiscuous mode
[  123.232741][ T7923] wg2: entered allmulticast mode
[  123.320407][ T7926] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  123.328573][ T7926] netlink: 264 bytes leftover after parsing attributes in process `syz.4.474'.
[  124.611092][ T5948] Bluetooth: hci0: command 0x0c1a tx timeout
[  124.842382][ T5948] Bluetooth: hci2: command 0x0c1a tx timeout
[  124.930905][ T5948] Bluetooth: hci1: command 0x0c1a tx timeout
[  124.930912][ T5292] Bluetooth: hci3: command 0x0c1a tx timeout
[  124.937846][ T7976] wg2: left promiscuous mode
[  124.939408][ T7976] wg2: left allmulticast mode
[  125.022054][ T7976] wg2: entered promiscuous mode
[  125.030461][ T7976] wg2: entered allmulticast mode
[  125.760587][ T7992] netlink: 16 bytes leftover after parsing attributes in process `syz.0.493'.
[  125.770011][ T7992] netlink: 24 bytes leftover after parsing attributes in process `syz.0.493'.
[  125.773254][ T7992] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  125.788841][ T7992] bond1: entered allmulticast mode
[  125.790948][ T7992] 8021q: adding VLAN 0 to HW filter on device bond1
[  125.839809][ T7995] FAULT_INJECTION: forcing a failure.
[  125.839809][ T7995] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  125.863301][ T7995] CPU: 0 UID: 0 PID: 7995 Comm: syz.0.494 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  125.866543][ T7995] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.869791][ T7995] Call Trace:
[  125.870918][ T7995]  <TASK>
[  125.871768][ T7995]  dump_stack_lvl+0x16c/0x1f0
[  125.873170][ T7995]  should_fail_ex+0x497/0x5b0
[  125.874604][ T7995]  ? fs_reclaim_acquire+0xae/0x150
[  125.876401][ T7995]  should_fail_alloc_page+0xe7/0x130
[  125.878517][ T7995]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  125.881018][ T7995]  __alloc_pages_noprof+0x190/0x25b0
[  125.883185][ T7995]  ? finish_task_switch.isra.0+0x217/0xcc0
[  125.885579][ T7995]  ? lockdep_hardirqs_on+0x7c/0x110
[  125.887586][ T7995]  ? finish_task_switch.isra.0+0x217/0xcc0
[  125.889843][ T7995]  ? __switch_to+0x749/0x1190
[  125.891224][ T7995]  ? hlock_class+0x4e/0x130
[  125.892605][ T7995]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  125.894122][ T7995]  ? __pfx___lock_acquire+0x10/0x10
[  125.895624][ T7995]  ? __pfx___schedule+0x10/0x10
[  125.897028][ T7995]  ? __pfx___schedule+0x10/0x10
[  125.898514][ T7995]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  125.900269][ T7995]  ? policy_nodemask+0xea/0x4e0
[  125.901721][ T7995]  alloc_pages_mpol_noprof+0x2c8/0x620
[  125.903343][ T7995]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  125.905103][ T7995]  ? do_raw_spin_lock+0x12d/0x2c0
[  125.906599][ T7995]  ? lock_acquire+0x2f/0xb0
[  125.908266][ T7995]  ? kasan_populate_vmalloc_pte+0xfb/0x160
[  125.910615][ T7995]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  125.913098][ T7995]  get_free_pages_noprof+0xc/0x40
[  125.914585][ T7995]  kasan_populate_vmalloc_pte+0x2d/0x160
[  125.916239][ T7995]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  125.918405][ T7995]  __apply_to_page_range+0x5fd/0xd30
[  125.920436][ T7995]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  125.922284][ T7995]  ? __pfx___apply_to_page_range+0x10/0x10
[  125.924043][ T7995]  ? insert_vmap_area+0x2ef/0x4d0
[  125.925521][ T7995]  alloc_vmap_area+0x93e/0x2a70
[  125.927013][ T7995]  ? __pfx_alloc_vmap_area+0x10/0x10
[  125.928573][ T7995]  __get_vm_area_node+0x19e/0x2f0
[  125.930053][ T7995]  ? netlink_rcv_skb+0x165/0x410
[  125.931566][ T7995]  __vmalloc_node_range_noprof+0x26a/0x1530
[  125.933308][ T7995]  ? hash_netnet_create+0x845/0x1a00
[  125.934896][ T7995]  ? hash_netnet_create+0x845/0x1a00
[  125.936482][ T7995]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  125.938852][ T7995]  ? rcu_is_watching+0x12/0xc0
[  125.940782][ T7995]  ? trace_kmalloc+0x2d/0xd0
[  125.942640][ T7995]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  125.944808][ T7995]  ? hash_netnet_create+0x845/0x1a00
[  125.946825][ T7995]  __kvmalloc_node_noprof+0x14f/0x1a0
[  125.948515][ T7995]  ? hash_netnet_create+0x845/0x1a00
[  125.950067][ T7995]  hash_netnet_create+0x845/0x1a00
[  125.951641][ T7995]  ? __pfx_hash_netnet_create+0x10/0x10
[  125.953304][ T7995]  ? __pfx_hash_netnet_create+0x10/0x10
[  125.954960][ T7995]  ? ip_set_create+0x62a/0x1400
[  125.956401][ T7995]  ? ip_set_create+0x523/0x1400
[  125.958123][ T7995]  ip_set_create+0x62a/0x1400
[  125.960035][ T7995]  ? rcu_is_watching+0x12/0xc0
[  125.961961][ T7995]  ? __pfx_ip_set_create+0x10/0x10
[  125.963517][ T7995]  nfnetlink_rcv_msg+0x9c3/0x11e0
[  125.964957][ T7995]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  125.966523][ T7995]  ? __pfx_mark_lock+0x10/0x10
[  125.967907][ T7995]  ? find_held_lock+0x2d/0x110
[  125.969594][ T7995]  netlink_rcv_skb+0x165/0x410
[  125.971011][ T7995]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  125.972589][ T7995]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  125.974100][ T7995]  ? __pfx_aa_get_newest_label+0x10/0x10
[  125.975711][ T7995]  ? bpf_lsm_capable+0x9/0x10
[  125.977085][ T7995]  ? security_capable+0x7e/0x260
[  125.978617][ T7995]  ? ns_capable+0xd7/0x110
[  125.979928][ T7995]  nfnetlink_rcv+0x1b4/0x430
[  125.981364][ T7995]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  125.982771][ T7995]  ? rcu_is_watching+0x12/0xc0
[  125.984178][ T7995]  netlink_unicast+0x53c/0x7f0
[  125.985558][ T7995]  ? __pfx_netlink_unicast+0x10/0x10
[  125.987114][ T7995]  ? __phys_addr_symbol+0x30/0x80
[  125.988616][ T7995]  ? __check_object_size+0x488/0x710
[  125.990113][ T7995]  netlink_sendmsg+0x8b8/0xd70
[  125.991489][ T7995]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.993019][ T7995]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.994523][ T7995]  ? ____sys_sendmsg+0x76f/0xb40
[  125.995928][ T7995]  ____sys_sendmsg+0x9ae/0xb40
[  125.997289][ T7995]  ? __pfx_____sys_sendmsg+0x10/0x10
[  125.998960][ T7995]  ? get_compat_msghdr+0x11b/0x170
[  126.000473][ T7995]  ___sys_sendmsg+0x135/0x1e0
[  126.001933][ T7995]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.003593][ T7995]  ? __pfx_lock_release+0x10/0x10
[  126.005062][ T7995]  ? trace_lock_acquire+0x14e/0x1f0
[  126.006636][ T7995]  ? __fget_files+0x206/0x3a0
[  126.008338][ T7995]  __sys_sendmsg+0x16e/0x220
[  126.010209][ T7995]  ? __pfx___sys_sendmsg+0x10/0x10
[  126.012295][ T7995]  __do_fast_syscall_32+0x73/0x120
[  126.013891][ T7995]  do_fast_syscall_32+0x32/0x80
[  126.015362][ T7995]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  126.017257][ T7995] RIP: 0023:0xf7fc0579
[  126.018872][ T7995] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  126.026201][ T7995] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  126.029386][ T7995] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  126.032431][ T7995] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  126.034769][ T7995] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  126.037089][ T7995] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  126.039436][ T7995] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  126.041797][ T7995]  </TASK>
[  126.042837][    C0] vkms_vblank_simulate: vblank timer overrun
[  126.059027][ T7995] syz.0.494: vmalloc error: size 4194328, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  126.066027][ T7995] CPU: 0 UID: 0 PID: 7995 Comm: syz.0.494 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  126.069612][ T7995] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.072914][ T7995] Call Trace:
[  126.073918][ T7995]  <TASK>
[  126.074812][ T7995]  dump_stack_lvl+0x16c/0x1f0
[  126.076200][ T7995]  warn_alloc+0x24d/0x3a0
[  126.077689][ T7995]  ? __pfx_warn_alloc+0x10/0x10
[  126.079682][ T7995]  ? kfree+0x14f/0x4b0
[  126.081357][ T7995]  ? __get_vm_area_node+0x1dc/0x2f0
[  126.083043][ T7995]  __vmalloc_node_range_noprof+0xd27/0x1530
[  126.084735][ T7995]  ? hash_netnet_create+0x845/0x1a00
[  126.086309][ T7995]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  126.088242][ T7995]  ? rcu_is_watching+0x12/0xc0
[  126.089607][ T7995]  ? trace_kmalloc+0x2d/0xd0
[  126.090927][ T7995]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  126.092563][ T7995]  ? hash_netnet_create+0x845/0x1a00
[  126.094065][ T7995]  __kvmalloc_node_noprof+0x14f/0x1a0
[  126.095613][ T7995]  ? hash_netnet_create+0x845/0x1a00
[  126.097169][ T7995]  hash_netnet_create+0x845/0x1a00
[  126.099255][ T7995]  ? __pfx_hash_netnet_create+0x10/0x10
[  126.101466][ T7995]  ? __pfx_hash_netnet_create+0x10/0x10
[  126.103413][ T7995]  ? ip_set_create+0x62a/0x1400
[  126.104824][ T7995]  ? ip_set_create+0x523/0x1400
[  126.106226][ T7995]  ip_set_create+0x62a/0x1400
[  126.107609][ T7995]  ? rcu_is_watching+0x12/0xc0
[  126.108976][ T7995]  ? __pfx_ip_set_create+0x10/0x10
[  126.110456][ T7995]  nfnetlink_rcv_msg+0x9c3/0x11e0
[  126.111896][ T7995]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  126.113463][ T7995]  ? __pfx_mark_lock+0x10/0x10
[  126.114854][ T7995]  ? find_held_lock+0x2d/0x110
[  126.116177][ T7995]  netlink_rcv_skb+0x165/0x410
[  126.117775][ T7995]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  126.119943][ T7995]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  126.122006][ T7995]  ? __pfx_aa_get_newest_label+0x10/0x10
[  126.123643][ T7995]  ? bpf_lsm_capable+0x9/0x10
[  126.125031][ T7995]  ? security_capable+0x7e/0x260
[  126.126481][ T7995]  ? ns_capable+0xd7/0x110
[  126.127977][ T7995]  nfnetlink_rcv+0x1b4/0x430
[  126.129554][ T7995]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  126.131304][ T7995]  ? rcu_is_watching+0x12/0xc0
[  126.132735][ T7995]  netlink_unicast+0x53c/0x7f0
[  126.134173][ T7995]  ? __pfx_netlink_unicast+0x10/0x10
[  126.135709][ T7995]  ? __phys_addr_symbol+0x30/0x80
[  126.137132][ T7995]  ? __check_object_size+0x488/0x710
[  126.138667][ T7995]  netlink_sendmsg+0x8b8/0xd70
[  126.140030][ T7995]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.141471][ T7995]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.143033][ T7995]  ? ____sys_sendmsg+0x76f/0xb40
[  126.144443][ T7995]  ____sys_sendmsg+0x9ae/0xb40
[  126.145810][ T7995]  ? __pfx_____sys_sendmsg+0x10/0x10
[  126.147455][ T7995]  ? get_compat_msghdr+0x11b/0x170
[  126.149392][ T7995]  ___sys_sendmsg+0x135/0x1e0
[  126.151224][ T7995]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.153265][ T7995]  ? __pfx_lock_release+0x10/0x10
[  126.155213][ T7995]  ? trace_lock_acquire+0x14e/0x1f0
[  126.157217][ T7995]  ? __fget_files+0x206/0x3a0
[  126.158693][ T7995]  __sys_sendmsg+0x16e/0x220
[  126.160028][ T7995]  ? __pfx___sys_sendmsg+0x10/0x10
[  126.161499][ T7995]  __do_fast_syscall_32+0x73/0x120
[  126.163036][ T7995]  do_fast_syscall_32+0x32/0x80
[  126.164415][ T7995]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  126.166249][ T7995] RIP: 0023:0xf7fc0579
[  126.167599][ T7995] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  126.174560][ T7995] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  126.176923][ T7995] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  126.179223][ T7995] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  126.181351][ T7995] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  126.183561][ T7995] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  126.185712][ T7995] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  126.187938][ T7995]  </TASK>
[  126.188960][    C0] vkms_vblank_simulate: vblank timer overrun
[  126.193941][ T7995] Mem-Info:
[  126.194897][ T7995] active_anon:11603 inactive_anon:625 isolated_anon:0
[  126.194897][ T7995]  active_file:17925 inactive_file:32695 isolated_file:0
[  126.194897][ T7995]  unevictable:1768 dirty:30 writeback:0
[  126.194897][ T7995]  slab_reclaimable:5792 slab_unreclaimable:56769
[  126.194897][ T7995]  mapped:30673 shmem:8242 pagetables:861
[  126.194897][ T7995]  sec_pagetables:301 bounce:0
[  126.194897][ T7995]  kernel_misc_reclaimable:0
[  126.194897][ T7995]  free:46789 free_pcp:4229 free_cma:0
[  126.210504][ T7995] Node 0 active_anon:3936kB inactive_anon:2500kB active_file:9524kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5340kB dirty:0kB writeback:0kB shmem:4976kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9852kB pagetables:984kB sec_pagetables:1132kB all_unreclaimable? yes
[  126.221003][ T7995] Node 1 active_anon:42360kB inactive_anon:0kB active_file:62176kB inactive_file:130780kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:105812kB dirty:120kB writeback:0kB shmem:27936kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2760kB pagetables:2384kB sec_pagetables:72kB all_unreclaimable? no
[  126.232922][ T7995] Node 0 DMA free:2908kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:844kB inactive_anon:48kB active_file:260kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:536kB local_pcp:168kB free_cma:0kB
[  126.243125][ T7995] lowmem_reserve[]: 0 299 0 0 0
[  126.245821][ T7995] Node 0 DMA32 free:20388kB boost:2048kB min:15952kB low:19428kB high:22904kB reserved_highatomic:4096KB active_anon:3092kB inactive_anon:2452kB active_file:9264kB inactive_file:0kB unevictable:3536kB writepending:0kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:2176kB local_pcp:216kB free_cma:0kB
[  126.256804][ T7995] lowmem_reserve[]: 0 0 0 0 0
[  126.259266][ T7995] Node 1 DMA32 free:163352kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:35760kB inactive_anon:0kB active_file:62176kB inactive_file:130780kB unevictable:3536kB writepending:120kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:21452kB local_pcp:600kB free_cma:0kB
[  126.270432][ T7995] lowmem_reserve[]: 0 0 0 0 0
[  126.272990][ T7995] Node 0 DMA: 45*4kB (UE) 63*8kB (UE) 39*16kB (UE) 50*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2908kB
[  126.279147][ T7995] Node 0 DMA32: 174*4kB (UMEH) 111*8kB (UMH) 45*16kB (UMEH) 78*32kB (UMEH) 49*64kB (UMEH) 15*128kB (UEH) 9*256kB (UM) 8*512kB (UME) 2*1024kB (ME) 1*2048kB (M) 0*4096kB = 20352kB
[  126.286157][ T7995] Node 1 DMA32: 367*4kB (UME) 269*8kB (UME) 324*16kB (UME) 337*32kB (UME) 216*64kB (UME) 120*128kB (UME) 80*256kB (UME) 51*512kB (UM) 60*1024kB (UM) 9*2048kB (UM) 0*4096kB = 175236kB
[  126.292594][ T7995] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  126.297722][ T7995] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  126.308457][ T7995] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  126.312066][ T7995] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  126.315330][ T7995] 56000 total pagecache pages
[  126.317043][ T7995] 0 pages in swap cache
[  126.318618][ T7995] Free swap  = 124956kB
[  126.320090][ T7995] Total swap = 124996kB
[  126.322277][ T7995] 524155 pages RAM
[  126.323727][ T7995] 0 pages HighMem/MovableOnly
[  126.325488][ T7995] 206681 pages reserved
[  126.327102][ T7995] 0 pages cma reserved
[  126.716916][ T8006] fuse: Bad value for 'fd'
[  127.010841][ T5948] Bluetooth: hci1: command 0x0c1a tx timeout
[  127.112893][ T8008] nbd3: detected capacity change from 0 to 22
[  127.125305][ T8006] block nbd3: shutting down sockets
[  127.133194][    C0] blk_print_req_error: 40 callbacks suppressed
[  127.133205][    C0] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.137782][    C0] buffer_io_error: 40 callbacks suppressed
[  127.137789][    C0] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.143453][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.148149][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.150892][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.153811][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.156514][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.159477][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.162116][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.165222][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.167973][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.170847][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.173704][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.177957][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.184222][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.187700][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.190096][ T8011] ldm_validate_partition_table(): Disk read failed.
[  127.192563][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.195810][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.200358][ T8011] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.203255][ T8011] Buffer I/O error on dev nbd3, logical block 0, async page read
[  127.206366][ T8011] Dev nbd3: unable to read RDB block 0
[  127.214438][ T8011]  nbd3: unable to read partition table
[  127.216378][ T8011] nbd3: partition table beyond EOD, truncated
[  127.219130][ T5940] ldm_validate_partition_table(): Disk read failed.
[  127.221688][ T5940] Dev nbd3: unable to read RDB block 0
[  127.224276][ T5940]  nbd3: unable to read partition table
[  127.226677][ T5940] nbd3: partition table beyond EOD, truncated
[  127.240133][ T5940] ldm_validate_partition_table(): Disk read failed.
[  127.243537][ T5940] Dev nbd3: unable to read RDB block 0
[  127.245861][ T5940]  nbd3: unable to read partition table
[  127.248858][ T5940] nbd3: partition table beyond EOD, truncated
[  128.417497][ T8036] Cannot find add_set index 3 as target
[  128.620848][ T5981] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  128.900799][ T5981] usb 5-1: Using ep0 maxpacket: 16
[  128.913529][ T5981] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.917090][ T5981] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  128.923171][ T5981] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  128.926037][ T5981] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.932188][ T5981] usb 5-1: config 0 descriptor??
[  129.080839][ T5948] Bluetooth: hci1: command 0x0c1a tx timeout
[  129.149876][ T8054] netlink: 8 bytes leftover after parsing attributes in process `syz.3.510'.
[  129.233875][ T8058] ieee802154 phy0 wpan0: encryption failed: -22
[  129.268053][ T8062] FAULT_INJECTION: forcing a failure.
[  129.268053][ T8062] name failslab, interval 1, probability 0, space 0, times 0
[  129.280084][ T8062] CPU: 1 UID: 0 PID: 8062 Comm: syz.4.514 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  129.283432][ T8062] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.286486][ T8062] Call Trace:
[  129.287448][ T8062]  <TASK>
[  129.288304][ T8062]  dump_stack_lvl+0x16c/0x1f0
[  129.289661][ T8062]  should_fail_ex+0x497/0x5b0
[  129.291024][ T8062]  ? fs_reclaim_acquire+0xae/0x150
[  129.292503][ T8062]  should_failslab+0xc2/0x120
[  129.293873][ T8062]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  129.295555][ T8062]  ? __alloc_skb+0x2b3/0x380
[  129.296909][ T8062]  __alloc_skb+0x2b3/0x380
[  129.298304][ T8062]  ? __pfx___alloc_skb+0x10/0x10
[  129.299738][ T8062]  ? lock_acquire+0x2f/0xb0
[  129.301443][ T8062]  netlink_alloc_large_skb+0x69/0x130
[  129.303464][ T8062]  netlink_sendmsg+0x689/0xd70
[  129.305268][ T8062]  ? __pfx_netlink_sendmsg+0x10/0x10
[  129.307248][ T8062]  ____sys_sendmsg+0x9ae/0xb40
[  129.309057][ T8062]  ? __pfx_____sys_sendmsg+0x10/0x10
[  129.311114][ T8062]  ? get_compat_msghdr+0x11b/0x170
[  129.313087][ T8062]  ___sys_sendmsg+0x135/0x1e0
[  129.314877][ T8062]  ? __pfx____sys_sendmsg+0x10/0x10
[  129.316851][ T8062]  ? __pfx_lock_release+0x10/0x10
[  129.318753][ T8062]  ? trace_lock_acquire+0x14e/0x1f0
[  129.320716][ T8062]  ? __fget_files+0x206/0x3a0
[  129.322567][ T8062]  __sys_sendmsg+0x16e/0x220
[  129.324346][ T8062]  ? __pfx___sys_sendmsg+0x10/0x10
[  129.326291][ T8062]  __do_fast_syscall_32+0x73/0x120
[  129.328233][ T8062]  do_fast_syscall_32+0x32/0x80
[  129.330080][ T8062]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  129.330844][ T6002] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  129.332485][ T8062] RIP: 0023:0xf7f65579
[  129.332502][ T8062] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  129.332518][ T8062] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  129.332535][ T8062] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[  129.332543][ T8062] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  129.332554][ T8062] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  129.332565][ T8062] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  129.358052][ T8062] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  129.360994][ T8062]  </TASK>
[  129.366105][ T5981] usbhid 5-1:0.0: can't add hid device: -71
[  129.367975][ T5981] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  129.374198][ T5981] usb 5-1: USB disconnect, device number 6
[  129.674523][ T8066] netlink: 12 bytes leftover after parsing attributes in process `syz.4.515'.
[  129.948550][ T2115] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  130.080936][ T2115] usb 7-1: device descriptor read/64, error -71
[  130.321109][ T2115] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  130.450858][ T2115] usb 7-1: device descriptor read/64, error -71
[  130.558056][ T8071] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[  130.558056][ T8071]    program syz.4.516 not setting count and/or reply_len properly
[  130.562717][ T2115] usb usb7-port1: attempt power cycle
[  130.588711][ T8071] 9pnet_fd: Insufficient options for proto=fd
[  130.900865][ T2115] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  130.921730][ T2115] usb 7-1: device descriptor read/8, error -71
[  131.160902][ T2115] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  131.181279][ T2115] usb 7-1: device descriptor read/8, error -71
[  131.292166][ T2115] usb usb7-port1: unable to enumerate USB device
[  131.390665][ T8077] ata1.00: invalid multi_count 128 ignored
[  131.413293][   T40] kauditd_printk_skb: 39 callbacks suppressed
[  131.413303][   T40] audit: type=1326 audit(2000000010.419:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8078 comm="syz.0.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc0579 code=0x7ffc0000
[  131.425592][   T40] audit: type=1326 audit(2000000010.419:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8078 comm="syz.0.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc0579 code=0x7ffc0000
[  131.433705][   T40] audit: type=1326 audit(2000000010.419:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8078 comm="syz.0.520" exe="/syz-executor" sig=0 arch=40000003 syscall=274 compat=1 ip=0xf7fc0579 code=0x7ffc0000
[  131.441865][   T40] audit: type=1326 audit(2000000010.419:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8078 comm="syz.0.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc0579 code=0x7ffc0000
[  131.449933][   T40] audit: type=1326 audit(2000000010.419:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8078 comm="syz.0.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc0579 code=0x7ffc0000
[  131.456311][   T40] audit: type=1326 audit(2000000010.419:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8078 comm="syz.0.520" exe="/syz-executor" sig=0 arch=40000003 syscall=450 compat=1 ip=0xf7fc0579 code=0x7ffc0000
[  131.463457][   T40] audit: type=1326 audit(2000000010.429:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8078 comm="syz.0.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc0579 code=0x7ffc0000
[  131.470184][   T40] audit: type=1326 audit(2000000010.429:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8078 comm="syz.0.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc0579 code=0x7ffc0000
[  131.471051][   T25] 
[  131.476814][   T25] ======================================================
[  131.478793][   T25] WARNING: possible circular locking dependency detected
[  131.480756][   T25] 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0 Not tainted
[  131.482970][   T25] ------------------------------------------------------
[  131.485987][   T25] kworker/2:0/25 is trying to acquire lock:
[  131.487642][   T25] ffff8880248a4558 (&q->q_usage_counter(queue)#51){++++}-{0:0}, at: blk_mq_alloc_request+0x59b/0x950
[  131.490649][   T25] 
[  131.490649][   T25] but task is already holding lock:
[  131.492673][   T25] ffff8880248a4b70 (&q->limits_lock){+.+.}-{4:4}, at: sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  131.495447][   T25] 
[  131.495447][   T25] which lock already depends on the new lock.
[  131.495447][   T25] 
[  131.498273][   T25] 
[  131.498273][   T25] the existing dependency chain (in reverse order) is:
[  131.500777][   T25] 
[  131.500777][   T25] -> #5 (&q->limits_lock){+.+.}-{4:4}:
[  131.502953][   T25]        __mutex_lock+0x19b/0xa60
[  131.504375][   T25]        __nbd_set_size+0x2c0/0x730
[  131.505844][   T25]        nbd_start_device+0x8fd/0xd70
[  131.507371][   T25]        nbd_ioctl+0x21a/0xfd0
[  131.508744][   T25]        compat_blkdev_ioctl+0x2f7/0x750
[  131.510362][   T25]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  131.511983][   T25]        __do_fast_syscall_32+0x73/0x120
[  131.513564][   T25]        do_fast_syscall_32+0x32/0x80
[  131.515065][   T25]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  131.516955][   T25] 
[  131.516955][   T25] -> #4 (&q->q_usage_counter(io)#50){++++}-{0:0}:
[  131.519390][   T25]        blk_mq_submit_bio+0x1fb6/0x24c0
[  131.520936][   T25]        __submit_bio+0x384/0x540
[  131.522388][   T25]        submit_bio_noacct_nocheck+0x698/0xd70
[  131.524130][   T25]        submit_bio_noacct+0x93a/0x1e20
[  131.525700][   T25]        block_read_full_folio+0x812/0xa50
[  131.527367][   T25]        filemap_read_folio+0xc6/0x2a0
[  131.528905][   T25]        filemap_get_pages+0x155f/0x1be0
[  131.530491][   T25]        filemap_read+0x3ca/0xd70
[  131.531920][   T25]        blkdev_read_iter+0x187/0x480
[  131.533478][   T25]        vfs_read+0x87f/0xbe0
[  131.534827][   T25]        ksys_read+0x12b/0x250
[  131.536185][   T25]        do_syscall_64+0xcd/0x250
[  131.537609][   T25]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.539431][   T25] 
[  131.539431][   T25] -> #3 (mapping.invalidate_lock#2){.+.+}-{4:4}:
[  131.541804][   T25]        down_read+0x9a/0x330
[  131.543182][   T25]        filemap_fault+0x2e0/0x2820
[  131.544656][   T25]        __do_fault+0x10a/0x490
[  131.546041][   T25]        do_pte_missing+0x1a8/0x3e00
[  131.547548][   T25]        __handle_mm_fault+0x103c/0x2a40
[  131.549135][   T25]        handle_mm_fault+0x3fa/0xaa0
[  131.550807][   T25]        __get_user_pages+0x8d9/0x3b50
[  131.552388][   T25]        faultin_page_range+0x24a/0x980
[  131.553977][   T25]        do_madvise+0x504/0x770
[  131.555380][   T25]        __ia32_sys_madvise+0xa7/0x110
[  131.556937][   T25]        __do_fast_syscall_32+0x73/0x120
[  131.558545][   T25]        do_fast_syscall_32+0x32/0x80
[  131.560084][   T25]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  131.562021][   T25] 
[  131.562021][   T25] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[  131.564189][   T25]        __might_fault+0x11b/0x190
[  131.565657][   T25]        _copy_from_user+0x29/0xd0
[  131.567147][   T25]        compat_blk_trace_setup+0xc9/0x200
[  131.568814][   T25]        blk_trace_ioctl+0x24a/0x290
[  131.570340][   T25]        compat_blkdev_ioctl+0x13c/0x750
[  131.571941][   T25]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  131.573630][   T25]        __do_fast_syscall_32+0x73/0x120
[  131.575232][   T25]        do_fast_syscall_32+0x32/0x80
[  131.576769][   T25]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  131.578731][   T25] 
[  131.578731][   T25] -> #1 (&q->debugfs_mutex){+.+.}-{4:4}:
[  131.580951][   T25]        __mutex_lock+0x19b/0xa60
[  131.582424][   T25]        blk_mq_init_sched+0x42b/0x640
[  131.583963][   T25]        elevator_init_mq+0x2cd/0x420
[  131.585421][   T25]        add_disk_fwnode+0x113/0x1300
[  131.586934][   T25]        sd_probe+0xa66/0xfa0
[  131.588289][   T25]        really_probe+0x23e/0xa90
[  131.589732][   T25]        __driver_probe_device+0x1de/0x440
[  131.591400][   T25]        driver_probe_device+0x4c/0x1b0
[  131.593007][   T25]        __device_attach_driver+0x1df/0x310
[  131.594534][   T25]        bus_for_each_drv+0x157/0x1e0
[  131.596068][   T25]        __device_attach_async_helper+0x1d3/0x290
[  131.597897][   T25]        async_run_entry_fn+0x9c/0x530
[  131.599502][   T25]        process_one_work+0x958/0x1b30
[  131.601056][   T25]        worker_thread+0x6c8/0xf00
[  131.602550][   T25]        kthread+0x2c1/0x3a0
[  131.603916][   T25]        ret_from_fork+0x45/0x80
[  131.605339][   T25]        ret_from_fork_asm+0x1a/0x30
[  131.606858][   T25] 
[  131.606858][   T25] -> #0 (&q->q_usage_counter(queue)#51){++++}-{0:0}:
[  131.609365][   T25]        __lock_acquire+0x249e/0x3c40
[  131.610902][   T25]        lock_acquire.part.0+0x11b/0x380
[  131.612512][   T25]        blk_queue_enter+0x50f/0x640
[  131.614038][   T25]        blk_mq_alloc_request+0x59b/0x950
[  131.615664][   T25]        scsi_execute_cmd+0x20a/0xf30
[  131.617192][   T25]        read_capacity_16+0x21a/0xe20
[  131.618719][   T25]        sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  131.620519][   T25]        scsi_rescan_device+0x243/0x340
[  131.622088][   T25]        ata_scsi_dev_rescan+0x1cb/0x470
[  131.623715][   T25]        process_one_work+0x958/0x1b30
[  131.625262][   T25]        worker_thread+0x6c8/0xf00
[  131.626723][   T25]        kthread+0x2c1/0x3a0
[  131.628048][   T25]        ret_from_fork+0x45/0x80
[  131.629464][   T25]        ret_from_fork_asm+0x1a/0x30
[  131.630985][   T25] 
[  131.630985][   T25] other info that might help us debug this:
[  131.630985][   T25] 
[  131.633893][   T25] Chain exists of:
[  131.633893][   T25]   &q->q_usage_counter(queue)#51 --> &q->q_usage_counter(io)#50 --> &q->limits_lock
[  131.633893][   T25] 
[  131.638126][   T25]  Possible unsafe locking scenario:
[  131.638126][   T25] 
[  131.640235][   T25]        CPU0                    CPU1
[  131.641745][   T25]        ----                    ----
[  131.643290][   T25]   lock(&q->limits_lock);
[  131.644568][   T25]                                lock(&q->q_usage_counter(io)#50);
[  131.646801][   T25]                                lock(&q->limits_lock);
[  131.648756][   T25]   rlock(&q->q_usage_counter(queue)#51);
[  131.650376][   T25] 
[  131.650376][   T25]  *** DEADLOCK ***
[  131.650376][   T25] 
[  131.652623][   T25] 5 locks held by kworker/2:0/25:
[  131.654054][   T25]  #0: ffff88801ac88948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30
[  131.656931][   T25]  #1: ffffc9000052fd80 ((work_completion)(&(&ap->scsi_rescan_task)->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  131.660497][   T25]  #2: ffff888024d34358 (&ap->scsi_scan_mutex){+.+.}-{4:4}, at: ata_scsi_dev_rescan+0x3e/0x470
[  131.663422][   T25]  #3: ffff888021e78378 (&dev->mutex){....}-{4:4}, at: scsi_rescan_device+0x27/0x340
[  131.666073][   T25]  #4: ffff8880248a4b70 (&q->limits_lock){+.+.}-{4:4}, at: sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  131.669058][   T25] 
[  131.669058][   T25] stack backtrace:
[  131.670729][   T25] CPU: 2 UID: 0 PID: 25 Comm: kworker/2:0 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  131.673708][   T25] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.676732][   T25] Workqueue: events ata_scsi_dev_rescan
[  131.678313][   T25] Call Trace:
[  131.679263][   T25]  <TASK>
[  131.680218][   T25]  dump_stack_lvl+0x116/0x1f0
[  131.681587][   T25]  print_circular_bug+0x41c/0x610
[  131.683091][   T25]  check_noncircular+0x31a/0x400
[  131.684532][   T25]  ? __pfx_check_noncircular+0x10/0x10
[  131.686094][   T25]  ? __pfx_try_to_wake_up+0x10/0x10
[  131.687609][   T25]  ? lockdep_lock+0xc6/0x200
[  131.688960][   T25]  ? __pfx_lockdep_lock+0x10/0x10
[  131.690426][   T25]  __lock_acquire+0x249e/0x3c40
[  131.691827][   T25]  ? __pfx___lock_acquire+0x10/0x10
[  131.694173][   T25]  lock_acquire.part.0+0x11b/0x380
[  131.695655][   T25]  ? blk_mq_alloc_request+0x59b/0x950
[  131.697199][   T25]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  131.698808][   T25]  ? rcu_is_watching+0x12/0xc0
[  131.700182][   T25]  ? trace_lock_acquire+0x14e/0x1f0
[  131.701612][   T25]  ? blk_mq_alloc_request+0x59b/0x950
[  131.703121][   T25]  ? lock_acquire+0x2f/0xb0
[  131.704428][   T25]  ? blk_mq_alloc_request+0x59b/0x950
[  131.705968][   T25]  blk_queue_enter+0x50f/0x640
[  131.707386][   T25]  ? blk_mq_alloc_request+0x59b/0x950
[  131.708930][   T25]  ? __pfx_blk_queue_enter+0x10/0x10
[  131.710453][   T25]  ? save_trace+0x42/0xa10
[  131.711747][   T25]  ? add_lock_to_list+0x17d/0x390
[  131.713240][   T25]  ? lockdep_unlock+0x11a/0x290
[  131.714657][   T25]  blk_mq_alloc_request+0x59b/0x950
[  131.716153][   T25]  ? __pfx_blk_mq_alloc_request+0x10/0x10
[  131.717781][   T25]  scsi_execute_cmd+0x20a/0xf30
[  131.719188][   T25]  ? lock_acquire.part.0+0x155/0x380
[  131.720698][   T25]  ? __mutex_trylock_common+0xea/0x250
[  131.722263][   T25]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  131.723833][   T25]  ? sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  131.725531][   T25]  ? rcu_is_watching+0x12/0xc0
[  131.726915][   T25]  read_capacity_16+0x21a/0xe20
[  131.728309][   T25]  ? __pfx_read_capacity_16+0x10/0x10
[  131.729836][   T25]  ? __pfx___mutex_lock+0x10/0x10
[  131.731297][   T25]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  131.732851][   T25]  sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  131.734523][   T25]  ? find_held_lock+0x2d/0x110
[  131.735908][   T25]  ? mark_held_locks+0x9f/0xe0
[  131.737284][   T25]  ? __pfx_sd_revalidate_disk.isra.0+0x10/0x10
[  131.739097][   T25]  ? kasan_save_stack+0x42/0x60
[  131.740494][   T25]  ? kasan_save_stack+0x33/0x60
[  131.741900][   T25]  ? kasan_save_track+0x14/0x30
[  131.743310][   T25]  ? kasan_save_free_info+0x3b/0x60
[  131.744803][   T25]  ? __kasan_slab_free+0x51/0x70
[  131.746228][   T25]  ? kfree+0x14f/0x4b0
[  131.747401][   T25]  ? scsi_attach_vpd+0x4dc/0x580
[  131.748818][   T25]  ? scsi_rescan_device+0xf5/0x340
[  131.750257][   T25]  ? ata_scsi_dev_rescan+0x1cb/0x470
[  131.751752][   T25]  ? process_one_work+0x958/0x1b30
[  131.753185][   T25]  ? worker_thread+0x6c8/0xf00
[  131.754543][   T25]  ? hlock_class+0x4e/0x130
[  131.755818][   T25]  ? mark_lock+0xb5/0xc60
[  131.757034][   T25]  ? mark_held_locks+0x9f/0xe0
[  131.758416][   T25]  ? kasan_quarantine_put+0x10a/0x240
[  131.759945][   T25]  ? lockdep_hardirqs_on+0x7c/0x110
[  131.761428][   T25]  ? kfree+0x14f/0x4b0
[  131.762614][   T25]  ? lockdep_hardirqs_on+0x7c/0x110
[  131.764108][   T25]  ? scsi_attach_vpd+0x4dc/0x580
[  131.765530][   T25]  ? scsi_attach_vpd+0x4dc/0x580
[  131.767002][   T25]  ? __pfx_sd_rescan+0x10/0x10
[  131.768363][   T25]  scsi_rescan_device+0x243/0x340
[  131.769800][   T25]  ata_scsi_dev_rescan+0x1cb/0x470
[  131.771266][   T25]  process_one_work+0x958/0x1b30
[  131.772890][   T25]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  131.774830][   T25]  ? __pfx_process_one_work+0x10/0x10
[  131.776643][   T25]  ? rcu_is_watching+0x12/0xc0
[  131.778283][   T25]  ? assign_work+0x1a0/0x250
[  131.779853][   T25]  worker_thread+0x6c8/0xf00
[  131.781420][   T25]  ? __pfx_worker_thread+0x10/0x10
[  131.783165][   T25]  kthread+0x2c1/0x3a0
[  131.784566][   T25]  ? _raw_spin_unlock_irq+0x23/0x50
[  131.786338][   T25]  ? __pfx_kthread+0x10/0x10
[  131.787903][   T25]  ret_from_fork+0x45/0x80
[  131.789401][   T25]  ? __pfx_kthread+0x10/0x10
[  131.790978][   T25]  ret_from_fork_asm+0x1a/0x30
[  131.792611][   T25]  </TASK>
[  132.211697][ T1411] ieee802154 phy0 wpan0: encryption failed: -22
[  132.213679][ T1411] ieee802154 phy1 wpan1: encryption failed: -22

VM DIAGNOSIS:
11:40:53  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc90006617b60 RCX=0000000000000000 RDX=0000000000000000
RSI=ffffffff84c91784 RDI=ffffc90006617b60 RBP=ffffc90006617b20 RSP=ffffc90006617a80
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000000 R13=ffffc90006617b60 R14=ffffc90006617b28 R15=0000000000000000
RIP=ffffffff84c917ad RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002001c000 CR3=000000007080e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 82803a497353b22d fe98d4c539b2297d
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 eaf23f20e9f7bf7d d42c6fc71077c35b
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e009683c7115730 806085ab47f566cc
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cbba0d027978a862 04b8e31ec1cbba21
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002ec0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0050bb5f0050bb64 010000000050bb66
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 95b600809ae40080 903600800050bb6c
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01000000ae160080 0050bb6101000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2efa008001000000 0100000028c80080
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 458472eabfee247b 41d692524e881092
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e0eb05b7c9c450e ce42a45a5eb66be7
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000423e3c RBX=0000000000000001 RCX=ffffffff8b1a9889 RDX=ffffed10056a6fee
RSI=ffffffff8bb19b80 RDI=ffffffff81703079 RBP=ffffed10039dc910 RSP=ffffc9000047fe08
R8 =0000000000000000 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000000
R12=0000000000000001 R13=ffff88801cee4880 R14=ffffffff901d2c10 R15=0000000000000000
RIP=ffffffff8b1aac6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f73f4230 CR3=0000000071804000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85146355 RDI=ffffffff9a66e200 RBP=ffffffff9a66e1c0 RSP=ffffc9000052ea60
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002d R14=ffffffff851462f0 R15=0000000000000000
RIP=ffffffff8514637f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3e2979 CR3=0000000067014000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000001048e4 RBX=0000000000000003 RCX=ffffffff8b1a9889 RDX=ffffed10056e6fee
RSI=ffffffff8bb19b80 RDI=ffffffff81703079 RBP=ffffed10039df488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000
R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901d2c10 R15=0000000000000000
RIP=ffffffff8b1aac6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000ffcbbcfc CR3=00000000412f2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fefeffd0 Opmask01=0000000000004211 Opmask02=000000000000ffdf Opmask03=0000000000000000
Opmask04=00000000ffffffdf Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe99b97ad0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a2a2a2a 2a2a2a2a2a2a2a2a
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff0000ff000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff0000ff000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 656c696620732520 6465746165726300 0a73253a47000a73 253d73253a45000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40494c4305560005 4140514440574600 0a56001f47000a56 001856001f45000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 0000559aa963de80 0000000000000051 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0751217ff7861e6a 0000559ff0ce12c1 00000000000002d1 000000000000302e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559aa9644650 0000559aa96516d0 0000559aa9642b20 0000559aa963cbb0
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559aa964ca60 0000559aa9645130 0000559aa9641080 0000559aa96399d0
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3b2433273f397b27 697a787c69303b7e 69305f474f5b647c 69303b2433273f39
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000