last executing test programs:

5.70207938s ago: executing program 0 (id=1298):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
add_key$user(0x0, &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)
keyctl$read(0xb, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
r3 = socket(0x26, 0x4, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = dup(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000020000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x4000, 0x80600})
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
mmap(&(0x7f00008ab000/0x3000)=nil, 0x3000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x815d3000)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x58}, 0x1, 0x0, 0x0, 0x24040014}, 0xc800)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={<r8=>0xffffffffffffffff}, 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r6, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r8}}, 0x30)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB="041c"], 0x8)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r6, &(0x7f0000000900)={0x16, 0x98, 0xfa00, {0x0, 0x4, r8, 0x10, 0x1, @in={0x2, 0x4e23, @loopback}}}, 0xa0)
socket(0x10, 0x2, 0x0)

4.797894584s ago: executing program 0 (id=1305):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r3, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000100)='batadv0\x00', 0x10)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
r4 = syz_io_uring_setup(0x17b3, &(0x7f0000000500)={0x0, 0x1567, 0x1000, 0x2, 0x1e1}, &(0x7f0000000440), &(0x7f0000000340))
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000780)=ANY=[@ANYBLOB="44010000100001000000000800000000fc01000000000000000000000000000100000000000000000000000000000000000000002000"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x144}}, 0x20000000)
add_key(&(0x7f0000000380)='encrypted\x00', &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000200)="7826e042f095e0ad719bea81554eb2716b4f296fba5637d7f9fbc14d3c8889df54caaf631e418259efcd5679d328656246e12a5c9d982a0c5b678280ed17b44efd27b96d67", 0x45, 0xfffffffffffffffa)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="02000000050000000838d91f3ab12e3ff95173d0e3e24ba860061da676"], 0x48)
ioctl$RTC_ALM_READ(r2, 0x80247008, &(0x7f00000000c0))
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a5"], 0x0, 0x2}, 0x94)
r8 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r8, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r8, &(0x7f00000012c0)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}], 0x1, 0x0)
close(0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='workqueue_activate_work\x00'}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="020000000400000007000000080000001c000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000800000000000000000"], 0x50)
bind$bt_l2cap(r6, &(0x7f0000000040)={0x1f, 0x3, @none, 0x0, 0x2}, 0xe)
getsockopt$bt_BT_RCVMTU(r6, 0x112, 0xd, &(0x7f0000000080)=0x4, 0x0)
io_uring_enter(r4, 0x1, 0x2, 0x1, 0x0, 0x0)

4.386917656s ago: executing program 0 (id=1306):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=@newtfilter={0x60, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0xb00, r3, {0x9, 0x7}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x30, 0x2, [@TCA_CGROUP_EMATCHES={0x2c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xb}}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x874f, 0x8, 0x2}, {0x0, 0x3, 0x5}}}, @TCF_EM_IPT={0xc, 0x2, 0x0, 0x0, {{0x1000, 0x9, 0x3}}}]}]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x90}, 0x40010)

4.31104943s ago: executing program 0 (id=1307):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=@newtfilter={0x60, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0xb00, r2, {0x9, 0x7}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x30, 0x2, [@TCA_CGROUP_EMATCHES={0x2c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xb}}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x874f, 0x8, 0x2}, {0x0, 0x3, 0x5}}}, @TCF_EM_IPT={0xc, 0x2, 0x0, 0x0, {{0x1000, 0x9, 0x3}}}]}]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x90}, 0x40010)

4.214315313s ago: executing program 0 (id=1309):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0xe0000000, 0x5e490420, 0x2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20, 0x0, 0x3731, {0x0, 0x7f69ff17f1e1ab77}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xc5001, 0x104)
write$FUSE_CREATE_OPEN(r2, 0x0, 0x0)

3.097169567s ago: executing program 3 (id=1316):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
add_key$user(0x0, &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)
keyctl$read(0xb, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
r3 = socket(0x26, 0x4, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = dup(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000020000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x4000, 0x80600})
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
mmap(&(0x7f00008ab000/0x3000)=nil, 0x3000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x815d3000)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[], 0x58}, 0x1, 0x0, 0x0, 0x24040014}, 0xc800)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={<r8=>0xffffffffffffffff}, 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r6, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r8}}, 0x30)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB="041c"], 0x8)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r6, &(0x7f0000000900)={0x16, 0x98, 0xfa00, {0x0, 0x4, r8, 0x10, 0x1, @in={0x2, 0x4e23, @loopback}}}, 0xa0)
socket(0x10, 0x2, 0x0)

3.049614244s ago: executing program 1 (id=1324):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000002280)={'pim6reg0\x00', 0x2102})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000080)={'nicvf0\x00', 0x400})
ioctl$TUNSETTXFILTER(r0, 0x401054d5, &(0x7f0000000380)=ANY=[])
openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=@newtfilter={0x60, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0xb00, r4, {0x9, 0x7}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x30, 0x2, [@TCA_CGROUP_EMATCHES={0x2c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xb}}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x874f, 0x8, 0x2}, {0x0, 0x3, 0x5}}}, @TCF_EM_IPT={0xc, 0x2, 0x0, 0x0, {{0x1000, 0x9, 0x3}}}]}]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x90}, 0x40010)

2.271073058s ago: executing program 2 (id=1317):
r0 = socket$kcm(0x10, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f00000002c0)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x6}, @hci_rp_read_voice_setting={{0x6a}, {0xf9, 0x4}}}}, 0x9)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
mq_unlink(&(0x7f0000000300)='-$\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r7 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r7, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x200, 0x7c2, 0x41414770, 0x58595556, 0x425, 0x10001, 0x6, 0x2, 0x1, 0x3, 0x0, 0x6}})
add_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="000001020200", 0x6, 0xfffffffffffffffb)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x12, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)

2.268955348s ago: executing program 1 (id=1326):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000100)="140000001a004f7fb3e45f2024d2f1c9fb470000", 0x14)
recvmmsg(r1, &(0x7f0000005c80), 0x1b, 0x10122, 0x0)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000500)=@xdp={0x2c, 0xdd86, r3}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2f00}}], 0x1, 0x20000084)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xb8}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80)

2.221499489s ago: executing program 1 (id=1318):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0xd0, &(0x7f0000000280))
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r3, &(0x7f0000000500)={0xa, 0xffff, 0x0, @mcast1, 0x9}, 0x1c)
r4 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000200), 0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000dc0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x7fffffff, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x3}, 0x50)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000e40)=ANY=[@ANYBLOB="03000080407f0000", @ANYRES32=0x1, @ANYBLOB="ff0100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0100000000000000050000000700"/28], 0x50)
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000ec0)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2, 0x4}, 0x50)
r9 = openat$nvme_fabrics(0xffffff9c, &(0x7f0000000f40), 0x88000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001000)={0x20, 0x19, &(0x7f0000000380)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5f, 0x0, 0x0, 0x0, 0x9}, {}, {}, [@tail_call, @ldst={0x3, 0x2, 0x2, 0x4, 0x0, 0x100, 0x1}, @alu={0x7, 0x1, 0xc, 0xb, 0x4, 0xfffffffffffffff8, 0x10}, @map_idx_val={0x18, 0x5, 0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7ff}, @exit], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000180)='syzkaller\x00', 0x35c3208e, 0x0, &(0x7f0000000480), 0x40f00, 0x1, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x5, 0xa, 0x7fffffff, 0x121}, 0x10, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000f80)=[0xffffffffffffffff, 0xffffffffffffffff, r6, r7, r8, r9], &(0x7f0000000fc0)=[{0x4, 0x5, 0xa, 0x3}, {0x4, 0x4, 0xc, 0xa}], 0x10, 0xd}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[], 0x98}, 0x1, 0x0, 0x0, 0x20040800}, 0x0)
r10 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000840), r0)
r11 = syz_open_dev$video(&(0x7f0000000040), 0x8000000a7, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r11, 0xc0185647, &(0x7f0000000080)={0xf0003e7, 0x1, 0x6, 0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x980912, 0xe43, '\x00', @value=0x5}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg2\x00', <r12=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000880)=ANY=[@ANYBLOB="2c020000", @ANYRES16=r10, @ANYBLOB="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", @ANYRES32=r12], 0x22c}}, 0x0)

2.159871081s ago: executing program 3 (id=1319):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x503}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x80}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0xd4e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x3})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r7, {0x0, 0x7}, {}, {0xc, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x4}, @TCA_FLOWER_KEY_CT_ZONE={0x6, 0x5d, 0x5}, @TCA_FLOWER_KEY_ARP_THA={0xa, 0x41, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, @TCA_FLOWER_KEY_TCP_SRC={0x6}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x80}, 0x800)
getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000002c80), &(0x7f0000000500)=0x4)
openat(0xffffffffffffff9c, &(0x7f0000000300)='./bus\x00', 0xe0042, 0x5c)
r8 = socket(0x2c, 0x3, 0xfffffffa)
ioctl$sock_SIOCOUTQ(r8, 0x5411, &(0x7f0000000280))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x17, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ba000000950000000000000047a139aca68ea506c87cb4340c17aafb7b310ba0edf340672023d17cc4b75745b93ea6a516875593321d6e16984187fc8a0cae9eb7843cec5b9e6907c0b1558b1c3c9dd8c9f6aab2b8461f8540a1dc29f8286b549c707b92e17c1467a6caef24d81a371c947a766f24fb00f1ce5994533967badcf7511a9e3a043f7262cbe48d381dc702950b364f57812441f2ce8e2c3835d00f3832528a84b0ed0eb3c64f51507af9bb43b27164e24540d59e2fa2986cc01930505c5c65942e36698d8ae9e5"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.295703173s ago: executing program 1 (id=1320):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="2f0000e21f303c0000000000", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
r1 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r1, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xd, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18)
shutdown(r1, 0x0)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040)={0x1, 0xffffffff}, 0x8)
sendto$inet6(r1, &(0x7f0000000100)="bc", 0x1, 0x4, &(0x7f00000000c0)={0xa, 0x4e20, 0x8, @loopback, 0x1}, 0x1c)
close(r1)

1.217498621s ago: executing program 1 (id=1321):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xfffffffc, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x503}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x80}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0xd4e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x3})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r6, {0x0, 0x7}, {}, {0xc, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x4}, @TCA_FLOWER_KEY_CT_ZONE={0x6, 0x5d, 0x5}, @TCA_FLOWER_KEY_ARP_THA={0xa, 0x41, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, @TCA_FLOWER_KEY_TCP_SRC={0x6}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x80}, 0x800)
getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000002c80), &(0x7f0000000500)=0x4)
openat(0xffffffffffffff9c, &(0x7f0000000300)='./bus\x00', 0xe0042, 0x5c)
r7 = socket(0x2c, 0x3, 0xfffffffa)
ioctl$sock_SIOCOUTQ(r7, 0x5411, &(0x7f0000000280))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x17, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ba000000950000000000000047a139aca68ea506c87cb4340c17aafb7b310ba0edf340672023d17cc4b75745b93ea6a516875593321d6e16984187fc8a0cae9eb7843cec5b9e6907c0b1558b1c3c9dd8c9f6aab2b8461f8540a1dc29f8286b549c707b92e17c1467a6caef24d81a371c947a766f24fb00f1ce5994533967badcf7511a9e3a043f7262cbe48d381dc702950b364f57812441f2ce8e2c3835d00f3832528a84b0ed0eb3c64f51507af9bb43b27164e24540d59e2fa2986cc01930505c5c65942e36698d8ae9e5"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.16141356s ago: executing program 2 (id=1322):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)

1.05053223s ago: executing program 0 (id=1323):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_DEV_CREATE(r1, 0x5501)
r2 = socket$inet6(0xa, 0x805, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x15)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, 0x0)
getsockopt$bt_hci(r2, 0x84, 0x85, &(0x7f0000000080)=""/4060, &(0x7f00000010c0)=0xfdc)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20181, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r9, 0xae44, 0x2)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
socket$kcm(0x2, 0xa, 0x2)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000d00)=[{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000002080)="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", 0xedc}], 0x1, 0x0, 0x0, 0x80}], 0x1, 0x40841)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1.050338802s ago: executing program 2 (id=1325):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r0=>0x0})
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x50, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r0}, @void}}, [@NL80211_ATTR_CQM={0x34, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x1000000}, @NL80211_ATTR_CQM_RSSI_THOLD={0x28, 0x1, [0x60000000, 0x13, 0x8, 0x4, 0x4a84a26e, 0x7, 0xf, 0x7f, 0x2ccc]}]}]}, 0x50}}, 0x0)

1.050219822s ago: executing program 3 (id=1327):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="2f0000e21f303c0000000000", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
r1 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r1, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xd, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18)
shutdown(r1, 0x0)
sendto$inet6(r1, &(0x7f0000000100)="bc", 0x1, 0x4, &(0x7f00000000c0)={0xa, 0x4e20, 0x8, @loopback, 0x1}, 0x1c)
close(r1)

996.580258ms ago: executing program 2 (id=1328):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0)

987.48261ms ago: executing program 3 (id=1329):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
add_key$user(0x0, &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)
keyctl$read(0xb, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
r3 = socket(0x26, 0x4, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = dup(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000020000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x4000, 0x80600})
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
mmap(&(0x7f00008ab000/0x3000)=nil, 0x3000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x815d3000)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x58}, 0x1, 0x0, 0x0, 0x24040014}, 0xc800)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={<r8=>0xffffffffffffffff}, 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r6, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r8}}, 0x30)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB="041c"], 0x8)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r6, &(0x7f0000000900)={0x16, 0x98, 0xfa00, {0x0, 0x4, r8, 0x10, 0x1, @in={0x2, 0x4e23, @loopback}}}, 0xa0)
socket(0x10, 0x2, 0x0)

979.544992ms ago: executing program 2 (id=1330):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
add_key$user(0x0, &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)
keyctl$read(0xb, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
r3 = socket(0x26, 0x4, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = dup(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000020000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x4000, 0x80600})
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
mmap(&(0x7f00008ab000/0x3000)=nil, 0x3000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x815d3000)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x58}, 0x1, 0x0, 0x0, 0x24040014}, 0xc800)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={<r8=>0xffffffffffffffff}, 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r6, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r8}}, 0x30)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB="041c"], 0x8)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r6, &(0x7f0000000900)={0x16, 0x98, 0xfa00, {0x0, 0x4, r8, 0x10, 0x1, @in={0x2, 0x4e23, @loopback}}}, 0xa0)
socket(0x10, 0x2, 0x0)

86.676356ms ago: executing program 3 (id=1331):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000100)="140000001a004f7fb3e45f2024d2f1c9fb470000", 0x14)
recvmmsg(r1, &(0x7f0000005c80), 0x1b, 0x10122, 0x0)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000500)=@xdp={0x2c, 0xdd86, r3}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2f00}}], 0x1, 0x20000084)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xb8}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80)

83.98825ms ago: executing program 1 (id=1339):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000002280)={'pim6reg0\x00', 0x2102})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000080)={'nicvf0\x00', 0x400})
ioctl$TUNSETTXFILTER(r0, 0x401054d5, &(0x7f0000000380)=ANY=[])
openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=@newtfilter={0x60, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0xb00, 0x0, {0x9, 0x7}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x30, 0x2, [@TCA_CGROUP_EMATCHES={0x2c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xb}}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x874f, 0x8, 0x2}, {0x0, 0x3, 0x5}}}, @TCF_EM_IPT={0xc, 0x2, 0x0, 0x0, {{0x1000, 0x9, 0x3}}}]}]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x90}, 0x40010)

32.362292ms ago: executing program 3 (id=1332):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e712a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd13f4cec49669e443dcb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ef8dba2f23b01a9ae44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af40000000000000005f58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef07000000000000006da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405a07feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09c0e5a3bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea10d3cfb41b92ecbb422a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f74562adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b4412331d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd100fcffff007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711c6529ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a22c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29008000000000000005ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc030ea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efd936b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800001f00000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351b9332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a138d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fce43d8c53a8031e64026e0d36b6401064c49a729f11ab377f7132c5232bb80195dd5d43d29646a9378eea0761b7ed9d2172e33ed87c7413c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828b07f1dc7df9c8e5da22dfb9dacbf5529e4e994128d835f85465173ea7bbcc519a0c9798ce8b1b07567e3e07169c8c3e4da8bf725c050000000000000000000000000000000000000000004775abdf0c62728eb55a9e2849a1ce05bed60dfe4cc9fa43f9684297c02382c0a35829be7a86305792a9d2e80ca9e8fc50f31f6e0fa810303da03d8b74b42c1ebaf16bb343256405a3a07229a54de09a97b269cd29e8b2f0b0d46c51a6a93eec37f4bc6e29a8e19120ae050ab682662e9b2cc3263a4aba62b63ca9123a53c0f4bf3c4463b8144c89bf058a0af0ae9fc2b7cdfc4817703e267cddc193637d7fd97646090da37093657643daae3840c7f5c10f93524f7ae4791ec6e9d9722e5f670ccb358e051a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="2f0000e21f303c0000000000", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
r1 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r1, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xd, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18)
shutdown(r1, 0x0)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040)={0x1, 0xffffffff}, 0x8)
sendto$inet6(r1, &(0x7f0000000100)="bc", 0x1, 0x4, &(0x7f00000000c0)={0xa, 0x4e20, 0x8, @loopback, 0x1}, 0x1c)
close(r1)

0s ago: executing program 2 (id=1333):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x5}, 0x8}, 0x94)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x1000000000000f, &(0x7f0000000080)=0x7fffffff, 0x4)
setsockopt$inet_buf(r1, 0x0, 0x2c, 0x0, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_DEL_MFC(r2, 0x0, 0xcd, &(0x7f0000001500)={@remote, @broadcast, 0xffffffffffffffff, "e02ea38910ffca1c4905c325d8e88d5cf67c0a2b2f026a511d115583dcc67485", 0x0, 0x5, 0x8d5, 0x3}, 0x3c)
setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f0000000040)=r0, 0x4)
r3 = syz_open_dev$video4linux(&(0x7f0000000280), 0x6f9, 0x8000)
r4 = socket$inet6(0xa, 0x3, 0x9)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000080)=0xa, 0x4)
read$FUSE(0xffffffffffffffff, &(0x7f0000001540)={0x2020}, 0x2020)
getuid()
fstat(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYRESOCT=r3, @ANYRES8=r5], 0x2c}, 0x1, 0x0, 0x0, 0x48011}, 0x20000000)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x4000000)
r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000040)={0x5, 0x6576, 0x9})
capset(0x0, &(0x7f0000000140))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)

kernel console output (not intermixed with test programs):

x81 has an invalid bInterval 52, changing to 9
[  251.478036][ T1137] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  251.486740][ T1137] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  251.491835][ T1137] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  251.495480][ T1137] usb 6-1: Product: syz
[  251.497052][ T1137] usb 6-1: Manufacturer: syz
[  251.502976][ T1137] cdc_wdm 6-1:1.0: skipping garbage
[  251.506101][ T1137] cdc_wdm 6-1:1.0: skipping garbage
[  251.512490][ T1137] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  251.516971][ T1137] cdc_wdm 6-1:1.0: Unknown control protocol
[  251.584954][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  251.592105][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  251.599540][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  251.624980][ T9588] vhci_hcd: connection reset by peer
[  251.627237][ T1146] vhci_hcd: stop threads
[  251.628583][ T1146] vhci_hcd: release socket
[  251.630619][ T1146] vhci_hcd: disconnect device
[  251.675242][ T6022] vhci_hcd: vhci_device speed not set
[  251.745547][ T9600] 9pnet_virtio: no channels available for device 127.0.0.1
[  251.904760][ T5955] usb 6-1: USB disconnect, device number 3
[  251.911683][ T9592] FAULT_INJECTION: forcing a failure.
[  251.911683][ T9592] name failslab, interval 1, probability 0, space 0, times 0
[  251.919595][ T9592] CPU: 2 UID: 0 PID: 9592 Comm: syz.1.870 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  251.919623][ T9592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  251.919630][ T9592] Call Trace:
[  251.919634][ T9592]  <TASK>
[  251.919638][ T9592]  dump_stack_lvl+0x16c/0x1f0
[  251.919658][ T9592]  should_fail_ex+0x512/0x640
[  251.919674][ T9592]  ? __kmalloc_noprof+0xbf/0x510
[  251.919691][ T9592]  ? kobject_get_path+0xd2/0x2a0
[  251.919708][ T9592]  should_failslab+0xc2/0x120
[  251.919718][ T9592]  __kmalloc_noprof+0xd2/0x510
[  251.919737][ T9592]  kobject_get_path+0xd2/0x2a0
[  251.919754][ T9592]  ? __pfx_gadget_unbind_driver+0x10/0x10
[  251.919769][ T9592]  kobject_uevent_env+0x289/0x1870
[  251.919781][ T9592]  ? __pfx_dev_uevent_name+0x10/0x10
[  251.919798][ T9592]  ? gadget_unbind_driver+0x370/0x4e0
[  251.919810][ T9592]  ? __pfx_dummy_udc_async_callbacks+0x10/0x10
[  251.919828][ T9592]  ? __pfx_gadget_unbind_driver+0x10/0x10
[  251.919841][ T9592]  device_remove+0xcb/0x170
[  251.919857][ T9592]  device_release_driver_internal+0x44b/0x620
[  251.919878][ T9592]  driver_detach+0xd8/0x1b0
[  251.919888][ T9592]  ? __pfx_raw_release+0x10/0x10
[  251.919900][ T9592]  bus_remove_driver+0x13b/0x2c0
[  251.919916][ T9592]  driver_unregister+0x76/0xb0
[  251.919926][ T9592]  usb_gadget_unregister_driver+0x49/0x70
[  251.919939][ T9592]  raw_release+0x1ae/0x2b0
[  251.919951][ T9592]  __fput+0x402/0xb70
[  251.919966][ T9592]  fput_close_sync+0x118/0x260
[  251.919978][ T9592]  ? __pfx_fput_close_sync+0x10/0x10
[  251.919989][ T9592]  ? dnotify_flush+0x79/0x4c0
[  251.920008][ T9592]  __ia32_sys_close+0x8b/0x120
[  251.920022][ T9592]  __do_fast_syscall_32+0x7c/0x3a0
[  251.920040][ T9592]  do_fast_syscall_32+0x32/0x80
[  251.920056][ T9592]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  251.920070][ T9592] RIP: 0023:0xf7fc6579
[  251.920079][ T9592] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  251.920090][ T9592] RSP: 002b:00000000f50e6520 EFLAGS: 00000293 ORIG_RAX: 0000000000000006
[  251.920101][ T9592] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50e6b40
[  251.920107][ T9592] RDX: 0000000000000000 RSI: 00000000f7453ff4 RDI: 0000000000000000
[  251.920113][ T9592] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  251.920119][ T9592] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  251.920125][ T9592] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  251.920139][ T9592]  </TASK>
[  252.654921][ T9610] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  252.676248][ T9611] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  252.684523][ T9609] netlink: 16 bytes leftover after parsing attributes in process `syz.2.874'.
[  253.043554][ T9620] FAULT_INJECTION: forcing a failure.
[  253.043554][ T9620] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  253.080572][ T9620] CPU: 1 UID: 0 PID: 9620 Comm: syz.1.876 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  253.080612][ T9620] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  253.080620][ T9620] Call Trace:
[  253.080625][ T9620]  <TASK>
[  253.080630][ T9620]  dump_stack_lvl+0x16c/0x1f0
[  253.080651][ T9620]  should_fail_ex+0x512/0x640
[  253.080670][ T9620]  _copy_from_iter+0x29f/0x16f0
[  253.080692][ T9620]  ? __alloc_skb+0x200/0x380
[  253.080709][ T9620]  ? __pfx__copy_from_iter+0x10/0x10
[  253.080727][ T9620]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  253.080743][ T9620]  netlink_sendmsg+0x829/0xdd0
[  253.080756][ T9620]  ? __pfx_netlink_sendmsg+0x10/0x10
[  253.080768][ T9620]  ? __import_iovec+0x1dd/0x650
[  253.080782][ T9620]  ____sys_sendmsg+0xa98/0xc70
[  253.080796][ T9620]  ? __pfx_____sys_sendmsg+0x10/0x10
[  253.080807][ T9620]  ? get_compat_msghdr+0x11a/0x170
[  253.080830][ T9620]  ___sys_sendmsg+0x134/0x1d0
[  253.080847][ T9620]  ? __pfx____sys_sendmsg+0x10/0x10
[  253.080869][ T9620]  ? find_held_lock+0x2b/0x80
[  253.080890][ T9620]  __sys_sendmsg+0x16d/0x220
[  253.080906][ T9620]  ? __pfx___sys_sendmsg+0x10/0x10
[  253.080928][ T9620]  ? rcu_is_watching+0x12/0xc0
[  253.080942][ T9620]  __do_fast_syscall_32+0x7c/0x3a0
[  253.080960][ T9620]  do_fast_syscall_32+0x32/0x80
[  253.080977][ T9620]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  253.080990][ T9620] RIP: 0023:0xf7fc6579
[  253.081000][ T9620] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  253.081010][ T9620] RSP: 002b:00000000f4f2355c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  253.081021][ T9620] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000500
[  253.081028][ T9620] RDX: 00000000000008d0 RSI: 0000000000000000 RDI: 0000000000000000
[  253.081034][ T9620] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  253.081040][ T9620] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  253.081046][ T9620] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  253.081059][ T9620]  </TASK>
[  253.431463][ T9624] FAULT_INJECTION: forcing a failure.
[  253.431463][ T9624] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  253.435755][ T9624] CPU: 1 UID: 0 PID: 9624 Comm: syz.3.878 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  253.435781][ T9624] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  253.435789][ T9624] Call Trace:
[  253.435793][ T9624]  <TASK>
[  253.435797][ T9624]  dump_stack_lvl+0x16c/0x1f0
[  253.435817][ T9624]  should_fail_ex+0x512/0x640
[  253.435835][ T9624]  _copy_from_iter+0x29f/0x16f0
[  253.435854][ T9624]  ? __alloc_skb+0x200/0x380
[  253.435870][ T9624]  ? __pfx__copy_from_iter+0x10/0x10
[  253.435887][ T9624]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  253.435903][ T9624]  netlink_sendmsg+0x829/0xdd0
[  253.435917][ T9624]  ? __pfx_netlink_sendmsg+0x10/0x10
[  253.435928][ T9624]  ? __import_iovec+0x1dd/0x650
[  253.435941][ T9624]  ____sys_sendmsg+0xa98/0xc70
[  253.435952][ T9624]  ? gfs2_xattr_get+0x110/0x550
[  253.435965][ T9624]  ? __pfx_____sys_sendmsg+0x10/0x10
[  253.435976][ T9624]  ? get_compat_msghdr+0x11a/0x170
[  253.435998][ T9624]  ___sys_sendmsg+0x134/0x1d0
[  253.436015][ T9624]  ? __pfx____sys_sendmsg+0x10/0x10
[  253.436037][ T9624]  ? find_held_lock+0x2b/0x80
[  253.436058][ T9624]  __sys_sendmsg+0x16d/0x220
[  253.436074][ T9624]  ? __pfx___sys_sendmsg+0x10/0x10
[  253.436096][ T9624]  ? rcu_is_watching+0x12/0xc0
[  253.436109][ T9624]  __do_fast_syscall_32+0x7c/0x3a0
[  253.436127][ T9624]  do_fast_syscall_32+0x32/0x80
[  253.436144][ T9624]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  253.436157][ T9624] RIP: 0023:0xf7f96579
[  253.436166][ T9624] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  253.436176][ T9624] RSP: 002b:00000000f507455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  253.436187][ T9624] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000800007c0
[  253.436194][ T9624] RDX: 0000000004000000 RSI: 0000000000000000 RDI: 0000000000000000
[  253.436200][ T9624] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  253.436206][ T9624] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  253.436212][ T9624] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  253.436225][ T9624]  </TASK>
[  253.768701][ T9631] netlink: 'syz.3.879': attribute type 4 has an invalid length.
[  253.895337][ T9635] netlink: 'syz.0.881': attribute type 1 has an invalid length.
[  253.994007][  T837] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  254.145302][  T837] usb 6-1: config 0 has an invalid interface number: 50 but max is 0
[  254.148499][  T837] usb 6-1: config 0 has no interface number 0
[  254.150653][  T837] usb 6-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  254.157340][  T837] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  254.160139][  T837] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  254.162606][  T837] usb 6-1: Product: syz
[  254.164237][  T837] usb 6-1: Manufacturer: syz
[  254.165746][  T837] usb 6-1: SerialNumber: syz
[  254.170434][  T837] usb 6-1: config 0 descriptor??
[  254.178442][  T837] yurex 6-1:0.50: USB YUREX device now attached to Yurex #0
[  254.186499][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  254.191353][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  254.381085][  T837] usb 6-1: USB disconnect, device number 4
[  254.385726][  T837] yurex 6-1:0.50: USB YUREX #0 now disconnected
[  254.915771][ T9643] : entered promiscuous mode
[  255.115882][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  255.124239][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  255.237181][ T9646] bridge29: entered promiscuous mode
[  255.894156][ T5955] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  255.925662][ T9658] netlink: 'syz.2.889': attribute type 1 has an invalid length.
[  255.950483][ T9658] 8021q: adding VLAN 0 to HW filter on device bond0
[  255.961615][ T9658] netlink: 8 bytes leftover after parsing attributes in process `syz.2.889'.
[  256.000976][ T9661] netlink: 8 bytes leftover after parsing attributes in process `syz.2.890'.
[  256.067197][ T5955] usb 8-1: config 0 has an invalid interface number: 50 but max is 0
[  256.069867][ T5955] usb 8-1: config 0 has no interface number 0
[  256.071732][ T5955] usb 8-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  256.085037][ T5955] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  256.087728][ T5955] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  256.090274][ T5955] usb 8-1: Product: syz
[  256.091729][ T5955] usb 8-1: Manufacturer: syz
[  256.094126][ T5955] usb 8-1: SerialNumber: syz
[  256.098237][ T5955] usb 8-1: config 0 descriptor??
[  256.107873][ T5955] yurex 8-1:0.50: USB YUREX device now attached to Yurex #0
[  256.171445][ T5960] EXT4-fs error: 1 callbacks suppressed
[  256.171455][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  256.180587][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  256.191260][ T9667] rdma_rxe: rxe_newlink: failed to add syz_tun
[  256.195763][ T9667] netlink: 'syz.2.891': attribute type 1 has an invalid length.
[  256.205038][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  256.366474][ T9673] netlink: 8 bytes leftover after parsing attributes in process `syz.0.895'.
[  256.391846][ T6413] vhci_hcd: vhci_device speed not set
[  256.420547][ T9678] vlan2: entered promiscuous mode
[  256.422325][ T9678] vlan2: entered allmulticast mode
[  256.424361][ T9678] hsr_slave_1: entered allmulticast mode
[  256.429208][ T9678] FAULT_INJECTION: forcing a failure.
[  256.429208][ T9678] name failslab, interval 1, probability 0, space 0, times 0
[  256.434085][ T9678] CPU: 3 UID: 0 PID: 9678 Comm: syz.1.897 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  256.434101][ T9678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  256.434108][ T9678] Call Trace:
[  256.434113][ T9678]  <TASK>
[  256.434117][ T9678]  dump_stack_lvl+0x16c/0x1f0
[  256.434137][ T9678]  should_fail_ex+0x512/0x640
[  256.434154][ T9678]  ? __kvmalloc_node_noprof+0x124/0x620
[  256.434172][ T9678]  should_failslab+0xc2/0x120
[  256.434183][ T9678]  __kvmalloc_node_noprof+0x137/0x620
[  256.434198][ T9678]  ? lockdep_init_map_type+0x5c/0x280
[  256.434214][ T9678]  ? alloc_netdev_mqs+0xb5b/0x1570
[  256.434234][ T9678]  ? alloc_netdev_mqs+0xb5b/0x1570
[  256.434250][ T9678]  alloc_netdev_mqs+0xb5b/0x1570
[  256.434269][ T9678]  rtnl_create_link+0xc08/0xf90
[  256.434289][ T9678]  rtnl_newlink+0xb69/0x2000
[  256.434309][ T9678]  ? __pfx_rtnl_newlink+0x10/0x10
[  256.434325][ T9678]  ? kasan_quarantine_put+0x10a/0x240
[  256.434342][ T9678]  ? lockdep_hardirqs_on+0x7c/0x110
[  256.434361][ T9678]  ? kfree_skbmem+0x1a4/0x1f0
[  256.434380][ T9678]  ? rcu_is_watching+0x12/0xc0
[  256.434391][ T9678]  ? trace_cap_capable+0x18d/0x200
[  256.434406][ T9678]  ? find_held_lock+0x2b/0x80
[  256.434417][ T9678]  ? __pfx_rtnl_newlink+0x10/0x10
[  256.434434][ T9678]  ? __pfx_rtnl_newlink+0x10/0x10
[  256.434449][ T9678]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  256.434466][ T9678]  ? __pfx_rtnl_newlink+0x10/0x10
[  256.434483][ T9678]  rtnetlink_rcv_msg+0x95b/0xe90
[  256.434505][ T9678]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  256.434535][ T9678]  ? ref_tracker_free+0x37c/0x830
[  256.434564][ T9678]  netlink_rcv_skb+0x158/0x420
[  256.434582][ T9678]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  256.434617][ T9678]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  256.434640][ T9678]  ? netlink_deliver_tap+0x1ae/0xd30
[  256.434661][ T9678]  netlink_unicast+0x53a/0x7f0
[  256.434673][ T9678]  ? __pfx_netlink_unicast+0x10/0x10
[  256.434688][ T9678]  netlink_sendmsg+0x8d1/0xdd0
[  256.434701][ T9678]  ? __pfx_netlink_sendmsg+0x10/0x10
[  256.434713][ T9678]  ? __import_iovec+0x1dd/0x650
[  256.434726][ T9678]  ____sys_sendmsg+0xa98/0xc70
[  256.434740][ T9678]  ? __pfx_____sys_sendmsg+0x10/0x10
[  256.434753][ T9678]  ? get_compat_msghdr+0x11a/0x170
[  256.434789][ T9678]  ___sys_sendmsg+0x134/0x1d0
[  256.434817][ T9678]  ? __pfx____sys_sendmsg+0x10/0x10
[  256.434855][ T9678]  ? find_held_lock+0x2b/0x80
[  256.434887][ T9678]  __sys_sendmsg+0x16d/0x220
[  256.434903][ T9678]  ? __pfx___sys_sendmsg+0x10/0x10
[  256.434924][ T9678]  ? rcu_is_watching+0x12/0xc0
[  256.434938][ T9678]  __do_fast_syscall_32+0x7c/0x3a0
[  256.434956][ T9678]  do_fast_syscall_32+0x32/0x80
[  256.434972][ T9678]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  256.434986][ T9678] RIP: 0023:0xf7fc6579
[  256.434995][ T9678] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  256.435006][ T9678] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  256.435016][ T9678] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000280
[  256.435024][ T9678] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  256.435030][ T9678] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  256.435036][ T9678] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  256.435042][ T9678] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  256.435055][ T9678]  </TASK>
[  257.054050][   T53] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  257.234008][   T53] usb 6-1: Using ep0 maxpacket: 16
[  257.238863][   T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  257.243547][   T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  257.247819][   T53] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  257.254152][   T53] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  257.257646][   T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.263687][   T53] usb 6-1: config 0 descriptor??
[  257.277480][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  257.281008][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  257.284489][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  257.491071][   T53] usbhid 6-1:0.0: can't add hid device: -71
[  257.493047][   T53] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  257.508588][   T53] usb 6-1: USB disconnect, device number 5
[  257.834066][ T9701] bridge30: entered promiscuous mode
[  257.904151][ T6024] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  257.910640][ T9703] netlink: 24 bytes leftover after parsing attributes in process `syz.2.903'.
[  258.034140][ T6024] usb 5-1: device descriptor read/64, error -71
[  258.126090][ T9707] netlink: 20 bytes leftover after parsing attributes in process `syz.2.904'.
[  258.131536][ T9707] netlink: 'syz.2.904': attribute type 1 has an invalid length.
[  258.284146][ T6024] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  258.395020][    C2] usb 8-1: yurex_control_callback - control failed: -2
[  258.398966][   T53] usb 8-1: USB disconnect, device number 2
[  258.403876][   T53] yurex 8-1:0.50: USB YUREX #0 now disconnected
[  258.414234][ T6024] usb 5-1: device descriptor read/64, error -71
[  258.536368][ T6024] usb usb5-port1: attempt power cycle
[  258.874317][ T6024] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  258.914601][ T6024] usb 5-1: device descriptor read/8, error -71
[  258.986732][ T9719] vlan2: entered promiscuous mode
[  258.989037][ T9719] vlan2: entered allmulticast mode
[  258.991197][ T9719] hsr_slave_1: entered allmulticast mode
[  259.272665][ T9726] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  259.273356][ T9728] netlink: 8 bytes leftover after parsing attributes in process `syz.2.909'.
[  259.283392][ T9723] netlink: 4 bytes leftover after parsing attributes in process `syz.2.909'.
[  259.304116][ T6024] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  259.310103][ T9724] rdma_rxe: rxe_newlink: failed to add syz_tun
[  259.325126][ T6024] usb 5-1: device descriptor read/8, error -71
[  259.335210][ T9724] netlink: 'syz.3.907': attribute type 1 has an invalid length.
[  259.436109][ T6024] usb usb5-port1: unable to enumerate USB device
[  260.073243][ T9739] bridge31: entered promiscuous mode
[  260.148003][ T9741] bridge_slave_0: left allmulticast mode
[  260.149888][ T9741] bridge_slave_0: left promiscuous mode
[  260.151782][ T9741] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.163530][ T9741] bridge_slave_1: left allmulticast mode
[  260.166623][ T9741] bridge_slave_1: left promiscuous mode
[  260.168744][ T9741] bridge0: port 2(bridge_slave_1) entered disabled state
[  260.175499][ T9741] : (slave bond_slave_0): Releasing backup interface
[  260.180137][ T9741] : (slave bond_slave_1): Releasing backup interface
[  260.191436][ T9741] team0: Port device team_slave_0 removed
[  260.197931][ T9741] team0: Port device team_slave_1 removed
[  260.200437][ T9741] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  260.202849][ T9741] batman_adv: batadv0: Removing interface: batadv_slave_0
[  260.207584][ T9741] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  260.210494][ T9741] batman_adv: batadv0: Removing interface: batadv_slave_1
[  260.349692][ T9744] netlink: 24 bytes leftover after parsing attributes in process `syz.2.915'.
[  260.517734][ T9750] warning: `syz.2.918' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  260.612106][ T9752] netlink: 20 bytes leftover after parsing attributes in process `syz.3.916'.
[  260.618489][ T9752] netlink: 'syz.3.916': attribute type 1 has an invalid length.
[  261.400146][ T9765] 8021q: adding VLAN 0 to HW filter on device 
[  261.407222][ T9765] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  261.418663][ T9765] usb 1-1: USB disconnect, device number 2
[  261.470546][ T9766] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  261.555549][ T9769] netlink: 8 bytes leftover after parsing attributes in process `syz.2.922'.
[  261.558561][ T9769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.922'.
[  261.562412][ T9769] netlink: 'syz.2.922': attribute type 1 has an invalid length.
[  261.565625][ T9769] netlink: 10 bytes leftover after parsing attributes in process `syz.2.922'.
[  261.644083][ T9772] FAULT_INJECTION: forcing a failure.
[  261.644083][ T9772] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  261.648625][ T9772] CPU: 2 UID: 0 PID: 9772 Comm: syz.3.923 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  261.648641][ T9772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  261.648648][ T9772] Call Trace:
[  261.648652][ T9772]  <TASK>
[  261.648656][ T9772]  dump_stack_lvl+0x16c/0x1f0
[  261.648676][ T9772]  should_fail_ex+0x512/0x640
[  261.648695][ T9772]  _copy_from_user+0x2e/0xd0
[  261.648713][ T9772]  get_compat_msghdr+0xa7/0x170
[  261.648731][ T9772]  ? __pfx_get_compat_msghdr+0x10/0x10
[  261.648752][ T9772]  ___sys_sendmsg+0x1ae/0x1d0
[  261.648769][ T9772]  ? __pfx____sys_sendmsg+0x10/0x10
[  261.648792][ T9772]  ? find_held_lock+0x2b/0x80
[  261.648812][ T9772]  __sys_sendmsg+0x16d/0x220
[  261.648828][ T9772]  ? __pfx___sys_sendmsg+0x10/0x10
[  261.648850][ T9772]  ? rcu_is_watching+0x12/0xc0
[  261.648865][ T9772]  __do_fast_syscall_32+0x7c/0x3a0
[  261.648883][ T9772]  do_fast_syscall_32+0x32/0x80
[  261.648899][ T9772]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  261.648913][ T9772] RIP: 0023:0xf7f96579
[  261.648922][ T9772] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  261.648932][ T9772] RSP: 002b:00000000f509555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  261.648943][ T9772] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  261.648949][ T9772] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  261.648955][ T9772] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  261.648961][ T9772] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  261.648967][ T9772] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  261.648980][ T9772]  </TASK>
[  261.789396][ T9769] nbd: socks must be embedded in a SOCK_ITEM attr
[  261.791755][ T9769] block nbd0: shutting down sockets
[  262.321017][ T9777] netlink: 88 bytes leftover after parsing attributes in process `syz.2.925'.
[  262.902712][ T9789] netlink: 16 bytes leftover after parsing attributes in process `syz.3.928'.
[  262.908867][ T9789] netlink: 'syz.3.928': attribute type 1 has an invalid length.
[  263.595900][ T9802] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  263.597999][ T9802] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  263.600738][ T9802] vhci_hcd vhci_hcd.0: Device attached
[  263.630229][ T9802] netlink: 'syz.2.930': attribute type 4 has an invalid length.
[  263.637013][ T9802] netlink: 152 bytes leftover after parsing attributes in process `syz.2.930'.
[  263.652762][ T9808] netlink: 20 bytes leftover after parsing attributes in process `syz.0.931'.
[  263.657011][ T9808] netlink: 'syz.0.931': attribute type 1 has an invalid length.
[  263.753521][ T9812] binder: 9806:9812 ioctl c0306201 80000240 returned -14
[  263.790515][ T9816] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  263.841339][ T9817] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  263.844880][ T6022] usb 41-1: new high-speed USB device number 9 using vhci_hcd
[  264.159560][ T9823] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  264.182534][ T9824] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  264.192373][   T40] audit: type=1800 audit(1752055919.083:58): pid=9822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.936" name="/" dev="sockfs" ino=26658 res=0 errno=0
[  264.467465][ T9803] vhci_hcd: connection reset by peer
[  264.469862][   T46] vhci_hcd: stop threads
[  264.471255][   T46] vhci_hcd: release socket
[  264.472711][   T46] vhci_hcd: disconnect device
[  264.528271][ T9832] bridge32: entered promiscuous mode
[  264.541344][ T9833] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  264.560575][ T9834] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  264.567812][ T9831] netlink: 16 bytes leftover after parsing attributes in process `syz.0.939'.
[  264.716759][ T9837] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  264.737162][ T9839] netlink: 24 bytes leftover after parsing attributes in process `syz.0.940'.
[  264.743156][ T9838] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  264.993566][ T9843] rdma_rxe: rxe_newlink: failed to add syz_tun
[  265.459720][ T9848] rdma_rxe: rxe_newlink: failed to add syz_tun
[  265.632774][ T9853] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  265.655662][ T9854] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  265.816466][ T9859] FAULT_INJECTION: forcing a failure.
[  265.816466][ T9859] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  265.820513][ T9859] CPU: 1 UID: 0 PID: 9859 Comm: syz.1.946 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  265.820528][ T9859] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  265.820535][ T9859] Call Trace:
[  265.820539][ T9859]  <TASK>
[  265.820544][ T9859]  dump_stack_lvl+0x16c/0x1f0
[  265.820563][ T9859]  should_fail_ex+0x512/0x640
[  265.820582][ T9859]  _copy_to_user+0x32/0xd0
[  265.820600][ T9859]  simple_read_from_buffer+0xcb/0x170
[  265.820616][ T9859]  proc_fail_nth_read+0x197/0x270
[  265.820630][ T9859]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  265.820643][ T9859]  ? rw_verify_area+0xcf/0x680
[  265.820657][ T9859]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  265.820669][ T9859]  vfs_read+0x1e1/0xc60
[  265.820685][ T9859]  ? fdget_pos+0x2a2/0x370
[  265.820702][ T9859]  ? __pfx_vfs_read+0x10/0x10
[  265.820716][ T9859]  ? find_held_lock+0x2b/0x80
[  265.820731][ T9859]  ? __fget_files+0x20e/0x3c0
[  265.820749][ T9859]  ksys_read+0x12a/0x250
[  265.820764][ T9859]  ? __pfx_ksys_read+0x10/0x10
[  265.820780][ T9859]  ? rcu_is_watching+0x12/0xc0
[  265.820794][ T9859]  __do_fast_syscall_32+0x7c/0x3a0
[  265.820812][ T9859]  do_fast_syscall_32+0x32/0x80
[  265.820828][ T9859]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  265.820842][ T9859] RIP: 0023:0xf7fc6579
[  265.820851][ T9859] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  265.820862][ T9859] RSP: 002b:00000000f50e6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  265.820872][ T9859] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50e6620
[  265.820878][ T9859] RDX: 000000000000000f RSI: 00000000f7453ff4 RDI: 0000000000000000
[  265.820885][ T9859] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  265.820890][ T9859] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  265.820896][ T9859] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  265.820909][ T9859]  </TASK>
[  265.983894][ T9865] netlink: 'syz.0.947': attribute type 1 has an invalid length.
[  266.019934][ T9863] netlink: 16 bytes leftover after parsing attributes in process `syz.1.948'.
[  266.633348][ T9886] FAULT_INJECTION: forcing a failure.
[  266.633348][ T9886] name failslab, interval 1, probability 0, space 0, times 0
[  266.637353][ T9886] CPU: 1 UID: 0 PID: 9886 Comm: syz.2.952 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  266.637379][ T9886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  266.637387][ T9886] Call Trace:
[  266.637391][ T9886]  <TASK>
[  266.637395][ T9886]  dump_stack_lvl+0x16c/0x1f0
[  266.637414][ T9886]  should_fail_ex+0x512/0x640
[  266.637430][ T9886]  ? __kmalloc_noprof+0xbf/0x510
[  266.637447][ T9886]  ? sk_prot_alloc+0x1a8/0x2a0
[  266.637470][ T9886]  should_failslab+0xc2/0x120
[  266.637481][ T9886]  __kmalloc_noprof+0xd2/0x510
[  266.637496][ T9886]  ? trace_cap_capable+0x18d/0x200
[  266.637510][ T9886]  sk_prot_alloc+0x1a8/0x2a0
[  266.637521][ T9886]  sk_alloc+0x36/0xc20
[  266.637540][ T9886]  packet_create+0x127/0x8e0
[  266.637555][ T9886]  __sock_create+0x335/0x8d0
[  266.637570][ T9886]  __sys_socket+0x14d/0x260
[  266.637581][ T9886]  ? fput+0x70/0xf0
[  266.637592][ T9886]  ? __pfx___sys_socket+0x10/0x10
[  266.637603][ T9886]  ? ksys_write+0x1ac/0x250
[  266.637622][ T9886]  __ia32_sys_socket+0x72/0xb0
[  266.637634][ T9886]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  266.637651][ T9886]  __do_fast_syscall_32+0x7c/0x3a0
[  266.637668][ T9886]  do_fast_syscall_32+0x32/0x80
[  266.637684][ T9886]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  266.637699][ T9886] RIP: 0023:0xf703e579
[  266.637708][ T9886] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  266.637719][ T9886] RSP: 002b:00000000f4fec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[  266.637730][ T9886] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000000000003
[  266.637736][ T9886] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  266.637742][ T9886] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  266.637748][ T9886] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  266.637754][ T9886] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  266.637767][ T9886]  </TASK>
[  266.787524][ T9885] syz1: rxe_newlink: already configured on syz_tun
[  267.434086][ T5963] Bluetooth: hci3: command 0x0406 tx timeout
[  267.499986][ T9905] __nla_validate_parse: 1 callbacks suppressed
[  267.499998][ T9905] netlink: 16 bytes leftover after parsing attributes in process `syz.1.957'.
[  267.901997][ T9917] netlink: 76 bytes leftover after parsing attributes in process `syz.0.961'.
[  268.137113][ T9937] syz1: rxe_newlink: already configured on syz_tun
[  268.169753][ T9937] netlink: 'syz.1.965': attribute type 1 has an invalid length.
[  268.217503][ T9940] netlink: 16 bytes leftover after parsing attributes in process `syz.0.967'.
[  268.457284][ T9951] 9pnet_virtio: no channels available for device syz
[  268.520709][   T40] audit: type=1326 audit(1752055923.418:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.0.970" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x0
[  268.565873][   T40] audit: type=1326 audit(1752055923.468:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9950 comm="syz.3.971" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x0
[  269.089089][ T6022] vhci_hcd: vhci_device speed not set
[  269.167631][ T9976] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  269.169645][ T9976] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  269.172110][ T9976] vhci_hcd vhci_hcd.0: Device attached
[  269.184056][ T9976] netlink: 'syz.1.975': attribute type 4 has an invalid length.
[  269.186460][ T9976] netlink: 152 bytes leftover after parsing attributes in process `syz.1.975'.
[  269.357218][ T9979] wireguard0: entered promiscuous mode
[  269.362261][ T9979] wireguard0: entered allmulticast mode
[  269.423694][ T9989] EXT4-fs error: 11 callbacks suppressed
[  269.423706][ T9989] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  269.434044][ T2290] usb 39-1: new high-speed USB device number 12 using vhci_hcd
[  269.450518][ T9990] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  269.467471][ T9982] netlink: 16 bytes leftover after parsing attributes in process `syz.3.978'.
[  269.764060][   T53] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  269.926264][   T53] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  269.929881][   T53] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  269.944327][   T53] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  269.948203][   T53] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10
[  269.952670][   T53] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 18286, setting to 1024
[  269.971813][   T53] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  269.979473][   T53] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  269.982761][   T53] usb 5-1: Product: syz
[  269.985100][   T53] usb 5-1: Manufacturer: syz
[  269.999121][ T9987] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  270.002907][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  270.004898][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  270.008097][   T53] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  270.009981][   T53] cdc_wdm 5-1:1.0: Unknown control protocol
[  270.024258][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  270.028711][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  270.033301][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  270.112671][ T9977] vhci_hcd: connection reset by peer
[  270.117402][   T46] vhci_hcd: stop threads
[  270.119112][   T46] vhci_hcd: release socket
[  270.121126][   T46] vhci_hcd: disconnect device
[  270.221051][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.223747][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.226263][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.228285][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.230739][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.232772][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.234832][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.236952][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.239005][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.241639][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.245029][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.247709][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.250525][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.252719][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.254803][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.256799][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.258763][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.260793][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.262834][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  270.264808][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  270.266903][ T9994] rdma_rxe: rxe_newlink: failed to add syz_tun
[  270.277988][ T6020] usb 5-1: USB disconnect, device number 6
[  270.278051][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  270.284375][ T9994] netlink: 'syz.3.980': attribute type 1 has an invalid length.
[  271.006288][T10010] FAULT_INJECTION: forcing a failure.
[  271.006288][T10010] name failslab, interval 1, probability 0, space 0, times 0
[  271.010143][T10010] CPU: 1 UID: 0 PID: 10010 Comm: syz.0.985 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  271.010158][T10010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  271.010165][T10010] Call Trace:
[  271.010169][T10010]  <TASK>
[  271.010173][T10010]  dump_stack_lvl+0x16c/0x1f0
[  271.010193][T10010]  should_fail_ex+0x512/0x640
[  271.010209][T10010]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  271.010228][T10010]  should_failslab+0xc2/0x120
[  271.010238][T10010]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  271.010254][T10010]  ? posix_lock_inode+0x1b7/0x2290
[  271.010268][T10010]  posix_lock_inode+0x1b7/0x2290
[  271.010280][T10010]  ? __pfx_mapping_try_invalidate+0x10/0x10
[  271.010297][T10010]  ? __pfx_posix_lock_inode+0x10/0x10
[  271.010308][T10010]  ? __pfx___might_resched+0x10/0x10
[  271.010324][T10010]  locks_lock_inode_wait+0x2fe/0x490
[  271.010336][T10010]  ? __pfx_locks_lock_inode_wait+0x10/0x10
[  271.010349][T10010]  ? kasan_save_stack+0x42/0x60
[  271.010364][T10010]  ? kasan_save_stack+0x33/0x60
[  271.010378][T10010]  ? kasan_save_track+0x14/0x30
[  271.010398][T10010]  v9fs_file_do_lock+0x171/0x820
[  271.010416][T10010]  ? __pfx_v9fs_file_do_lock+0x10/0x10
[  271.010434][T10010]  ? filemap_check_errors+0xa9/0x160
[  271.010449][T10010]  v9fs_file_lock_dotl+0x298/0x6a0
[  271.010466][T10010]  ? __pfx_v9fs_file_lock_dotl+0x10/0x10
[  271.010487][T10010]  ? __pfx_v9fs_file_lock_dotl+0x10/0x10
[  271.010501][T10010]  vfs_lock_file+0xb6/0x150
[  271.010517][T10010]  fcntl_setlk+0x3ff/0xe20
[  271.010531][T10010]  ? __pfx_fcntl_setlk+0x10/0x10
[  271.010544][T10010]  ? __might_fault+0xe3/0x190
[  271.010559][T10010]  ? __might_fault+0xe3/0x190
[  271.010574][T10010]  ? __might_fault+0x13b/0x190
[  271.010594][T10010]  do_compat_fcntl64+0x209/0x710
[  271.010606][T10010]  ? __pfx_do_compat_fcntl64+0x10/0x10
[  271.010618][T10010]  ? fput+0x70/0xf0
[  271.010628][T10010]  ? ksys_write+0x1ac/0x250
[  271.010645][T10010]  ? rcu_is_watching+0x12/0xc0
[  271.010660][T10010]  __do_fast_syscall_32+0x7c/0x3a0
[  271.010678][T10010]  do_fast_syscall_32+0x32/0x80
[  271.010694][T10010]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  271.010708][T10010] RIP: 0023:0xf7f62579
[  271.010716][T10010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  271.010727][T10010] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000037
[  271.010737][T10010] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000026
[  271.010744][T10010] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  271.010750][T10010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  271.010756][T10010] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  271.010762][T10010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  271.010774][T10010]  </TASK>
[  271.158741][   T40] audit: type=1326 audit(1752055926.058:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.0.985" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x0
[  271.609411][T10020] netlink: 16 bytes leftover after parsing attributes in process `syz.2.988'.
[  271.744610][T10027] netlink: 'syz.3.991': attribute type 11 has an invalid length.
[  271.747522][T10027] netlink: 'syz.3.991': attribute type 1 has an invalid length.
[  271.749926][T10027] netlink: 15 bytes leftover after parsing attributes in process `syz.3.991'.
[  272.036779][T10033] rdma_rxe: rxe_newlink: failed to add syz_tun
[  272.040307][T10033] netlink: 'syz.3.992': attribute type 1 has an invalid length.
[  272.271856][T10040] netlink: 'syz.1.993': attribute type 1 has an invalid length.
[  272.773081][T10048] netlink: 'syz.3.997': attribute type 1 has an invalid length.
[  272.787777][T10048] 8021q: adding VLAN 0 to HW filter on device bond0
[  272.803765][T10048] 9pnet_fd: Insufficient options for proto=fd
[  272.807866][T10048] netlink: 'syz.3.997': attribute type 15 has an invalid length.
[  272.810731][T10048] netlink: 24 bytes leftover after parsing attributes in process `syz.3.997'.
[  272.821109][T10048] bond0: (slave gretap1): making interface the new active one
[  272.826150][T10048] bond0: (slave gretap1): Enslaving as an active interface with an up link
[  273.034819][T10058] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  273.056430][T10059] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  273.063995][T10056] netlink: 24 bytes leftover after parsing attributes in process `syz.1.999'.
[  273.399237][T10066] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  273.426711][T10067] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1002'.
[  273.436772][T10068] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  273.438859][T10068] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  273.442226][T10068] vhci_hcd vhci_hcd.0: Device attached
[  273.459589][T10068] netlink: 'syz.3.1001': attribute type 4 has an invalid length.
[  273.462142][T10068] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1001'.
[  273.684125][ T6022] usb 43-1: new high-speed USB device number 10 using vhci_hcd
[  273.694146][  T837] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  273.844538][  T837] usb 6-1: Using ep0 maxpacket: 8
[  273.847881][  T837] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  273.850566][  T837] usb 6-1: config 0 has no interface number 0
[  273.853446][  T837] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  273.861240][  T837] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  273.869862][  T837] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  273.971485][  T837] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  273.977547][  T837] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  273.982089][  T837] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.988652][  T837] usb 6-1: config 0 descriptor??
[  273.992842][  T837] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  273.993798][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  274.002044][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  274.128255][T10083] bridge32: entered promiscuous mode
[  274.134626][ T6042] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  274.227585][  T837] usb 6-1: USB disconnect, device number 6
[  274.236258][  T837] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  274.351741][T10069] vhci_hcd: connection reset by peer
[  274.358288][   T46] vhci_hcd: stop threads
[  274.359747][   T46] vhci_hcd: release socket
[  274.363456][   T46] vhci_hcd: disconnect device
[  274.537461][T10088] tipc: Cannot configure node identity twice
[  274.564249][ T2290] vhci_hcd: vhci_device speed not set
[  274.966029][T10092] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1009'.
[  275.741805][T10107] Bluetooth: hci0: service_discovery: expected 4 bytes, got 7 bytes
[  276.414301][T10115] bridge33: entered promiscuous mode
[  276.735105][T10119] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1018'.
[  276.743505][T10122] EXT4-fs error: 1 callbacks suppressed
[  276.743518][T10122] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  276.767669][T10123] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  276.832908][T10125] gretap1: entered promiscuous mode
[  276.838040][T10125] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffb,4)
[  276.840535][T10125] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  276.842609][T10125] comedi comedi3: 8255: I/O port conflict (0x7,4)
[  276.844839][T10125] comedi comedi3: 8255: I/O port conflict (0x8f,4)
[  276.846884][T10125] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[  276.849932][T10125] comedi comedi3: 8255: I/O port conflict (0x100010,4)
[  276.852117][T10125] comedi comedi3: 8255: I/O port conflict (0x1000002,4)
[  276.854726][T10125] comedi comedi3: 8255: I/O port conflict (0xffffffffffffffbf,4)
[  276.857295][T10125] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  276.859318][T10125] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  276.861349][T10125] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  276.864887][T10125] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  276.866934][T10125] comedi comedi3: 8255: I/O port conflict (0x7,4)
[  276.869407][T10125] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  276.871435][T10125] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  276.873464][T10125] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  276.875826][T10125] comedi comedi3: 8255: I/O port conflict (0x100,4)
[  276.877893][T10125] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  276.878236][T10124] bridge33: entered promiscuous mode
[  276.879893][T10125] comedi comedi3: 8255: I/O port conflict (0x80,4)
[  276.883823][T10125] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  276.886316][T10125] comedi comedi3: 8255: I/O port conflict (0xb,4)
[  276.888344][T10125] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  276.890609][T10125] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  276.892631][T10125] comedi comedi3: 8255: I/O port conflict (0x7,4)
[  276.897973][T10128] tipc: Started in network mode
[  276.899727][T10128] tipc: Node identity 4e273d85894c, cluster identity 4711
[  276.902927][T10128] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  276.930051][T10128] syzkaller0: entered promiscuous mode
[  276.931753][T10128] syzkaller0: entered allmulticast mode
[  276.933851][T10128] tipc: Resetting bearer <eth:syzkaller0>
[  276.940975][T10128] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1020'.
[  276.951606][T10126] tipc: Resetting bearer <eth:syzkaller0>
[  277.378552][T10138] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  277.403453][T10139] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  277.791686][T10126] tipc: Disabling bearer <eth:syzkaller0>
[  277.996903][T10149] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  278.022213][T10151] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  278.052526][T10153] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  278.083718][T10156] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  278.098727][T10152] netlink: 'syz.2.1024': attribute type 1 has an invalid length.
[  278.204020][ T6020] libceph: connect (1)[c::]:6789 error -101
[  278.206116][ T6020] libceph: mon0 (1)[c::]:6789 connect error
[  278.218840][T10163] syz1: rxe_newlink: already configured on syz_tun
[  278.475076][ T1137] libceph: connect (1)[c::]:6789 error -101
[  278.477221][ T1137] libceph: mon0 (1)[c::]:6789 connect error
[  278.800424][T10169] bridge45: entered promiscuous mode
[  278.864121][ T6022] vhci_hcd: vhci_device speed not set
[  278.931973][T10160] ceph: No mds server is up or the cluster is laggy
[  279.034467][T10177] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1031'.
[  279.158774][T10180] FAULT_INJECTION: forcing a failure.
[  279.158774][T10180] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.163785][T10180] CPU: 0 UID: 0 PID: 10180 Comm: syz.0.1032 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  279.163808][T10180] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.163818][T10180] Call Trace:
[  279.163824][T10180]  <TASK>
[  279.163831][T10180]  dump_stack_lvl+0x16c/0x1f0
[  279.163862][T10180]  should_fail_ex+0x512/0x640
[  279.163886][T10180]  _copy_to_user+0x32/0xd0
[  279.163905][T10180]  simple_read_from_buffer+0xcb/0x170
[  279.163921][T10180]  proc_fail_nth_read+0x197/0x270
[  279.163956][T10180]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  279.163976][T10180]  ? rw_verify_area+0xcf/0x680
[  279.164012][T10180]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  279.164031][T10180]  vfs_read+0x1e1/0xc60
[  279.164056][T10180]  ? fdget_pos+0x2a2/0x370
[  279.164082][T10180]  ? __pfx_vfs_read+0x10/0x10
[  279.164102][T10180]  ? find_held_lock+0x2b/0x80
[  279.164125][T10180]  ? __fget_files+0x20e/0x3c0
[  279.164155][T10180]  ksys_read+0x12a/0x250
[  279.164175][T10180]  ? __pfx_ksys_read+0x10/0x10
[  279.164192][T10180]  ? rcu_is_watching+0x12/0xc0
[  279.164207][T10180]  __do_fast_syscall_32+0x7c/0x3a0
[  279.164226][T10180]  do_fast_syscall_32+0x32/0x80
[  279.164242][T10180]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  279.164256][T10180] RIP: 0023:0xf7f62579
[  279.164265][T10180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  279.164276][T10180] RSP: 002b:00000000f5086590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  279.164287][T10180] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5086620
[  279.164294][T10180] RDX: 000000000000000f RSI: 00000000f73f3ff4 RDI: 0000000000000000
[  279.164300][T10180] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  279.164306][T10180] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  279.164312][T10180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  279.164325][T10180]  </TASK>
[  279.268506][T10182] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  279.270763][T10182] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  279.273446][T10182] vhci_hcd vhci_hcd.0: Device attached
[  279.283618][T10182] netlink: 'syz.2.1029': attribute type 4 has an invalid length.
[  279.286109][T10182] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1029'.
[  279.544086][   T29] usb 41-1: new high-speed USB device number 10 using vhci_hcd
[  279.811058][T10183] vhci_hcd: connection reset by peer
[  279.813125][   T46] vhci_hcd: stop threads
[  279.814939][   T46] vhci_hcd: release socket
[  279.816811][   T46] vhci_hcd: disconnect device
[  279.965141][T10200] rdma_rxe: rxe_newlink: failed to add syz_tun
[  279.981477][T10198] netlink: 'syz.1.1036': attribute type 1 has an invalid length.
[  280.314575][ T5963] Bluetooth: hci3: command 0x0406 tx timeout
[  280.888317][T10215] macsec0: entered promiscuous mode
[  280.890426][T10215] macsec0: entered allmulticast mode
[  280.892111][T10215] veth1_macvtap: entered allmulticast mode
[  281.364365][T10220] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1043'.
[  281.692347][T10230] FAULT_INJECTION: forcing a failure.
[  281.692347][T10230] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  281.697097][T10230] CPU: 3 UID: 0 PID: 10230 Comm: syz.1.1046 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  281.697124][T10230] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.697134][T10230] Call Trace:
[  281.697139][T10230]  <TASK>
[  281.697146][T10230]  dump_stack_lvl+0x16c/0x1f0
[  281.697170][T10230]  should_fail_ex+0x512/0x640
[  281.697188][T10230]  _copy_from_user+0x2e/0xd0
[  281.697206][T10230]  drm_mode_dirtyfb_ioctl+0x3ad/0x460
[  281.697223][T10230]  drm_ioctl_kernel+0x1f1/0x3e0
[  281.697239][T10230]  ? __pfx_drm_mode_dirtyfb_ioctl+0x10/0x10
[  281.697253][T10230]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  281.697274][T10230]  drm_ioctl+0x5c9/0xc30
[  281.697292][T10230]  ? __pfx_drm_mode_dirtyfb_ioctl+0x10/0x10
[  281.697306][T10230]  ? __pfx_drm_ioctl+0x10/0x10
[  281.697332][T10230]  drm_compat_ioctl+0x327/0x460
[  281.697345][T10230]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  281.697358][T10230]  __ia32_compat_sys_ioctl+0x242/0x370
[  281.697380][T10230]  __do_fast_syscall_32+0x7c/0x3a0
[  281.697398][T10230]  do_fast_syscall_32+0x32/0x80
[  281.697415][T10230]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  281.697429][T10230] RIP: 0023:0xf7fc6579
[  281.697437][T10230] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  281.697448][T10230] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  281.697459][T10230] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c01864b1
[  281.697466][T10230] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  281.697472][T10230] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  281.697478][T10230] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  281.697484][T10230] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  281.697496][T10230]  </TASK>
[  281.849820][T10236] netlink: 'syz.2.1047': attribute type 1 has an invalid length.
[  281.885284][T10237] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1045'.
[  282.170400][ T5965] Bluetooth: hci1: unexpected event for opcode 0x1001
[  282.563017][T10251] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1052'.
[  282.582242][T10252] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.588947][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.593704][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.598713][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.602548][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.606527][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.610465][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.617200][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.620944][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.624796][T10253] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  282.826085][T10261] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1053'.
[  283.276390][T10285] bridge38: entered promiscuous mode
[  283.344925][T10295] netlink: 'syz.1.1060': attribute type 1 has an invalid length.
[  283.583875][T10306] netem: change failed
[  283.596388][ T5965] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  283.686767][T10314] netlink: 'syz.2.1062': attribute type 1 has an invalid length.
[  283.906088][T10317] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1065'.
[  284.023175][T10337] syz1: rxe_newlink: already configured on syz_tun
[  284.173009][T10341] rdma_rxe: rxe_newlink: failed to add syz_tun
[  284.250774][T10343] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  284.694054][   T29] vhci_hcd: vhci_device speed not set
[  285.112981][T10379] nftables ruleset with unbound set
[  285.416163][T10389] rdma_rxe: rxe_newlink: failed to add syz_tun
[  286.291120][T10404] 9pnet_virtio: no channels available for device syz
[  286.318789][T10406] netlink: 'syz.1.1089': attribute type 10 has an invalid length.
[  286.352048][T10406] 8021q: adding VLAN 0 to HW filter on device team0
[  286.372855][T10406] : (slave team0): Enslaving as an active interface with an up link
[  287.236377][T10418] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1092'.
[  287.455354][T10422] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1094'.
[  287.850315][T10431] macsec0: entered promiscuous mode
[  287.853635][T10431] macsec0: entered allmulticast mode
[  287.855799][T10431] veth1_macvtap: entered allmulticast mode
[  287.865373][T10431] FAULT_INJECTION: forcing a failure.
[  287.865373][T10431] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.870159][T10431] CPU: 1 UID: 0 PID: 10431 Comm: syz.2.1096 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  287.870186][T10431] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  287.870193][T10431] Call Trace:
[  287.870198][T10431]  <TASK>
[  287.870202][T10431]  dump_stack_lvl+0x16c/0x1f0
[  287.870223][T10431]  should_fail_ex+0x512/0x640
[  287.870242][T10431]  strncpy_from_user+0x3b/0x2e0
[  287.870258][T10431]  getname_flags.part.0+0x8f/0x550
[  287.870274][T10431]  getname_flags+0x93/0xf0
[  287.870289][T10431]  user_path_at+0x24/0x60
[  287.870309][T10431]  do_utimes+0x102/0x2a0
[  287.870325][T10431]  ? __pfx_do_utimes+0x10/0x10
[  287.870343][T10431]  ? __fget_files+0x20e/0x3c0
[  287.870356][T10431]  ? handle_mm_fault+0x280/0xd10
[  287.870372][T10431]  do_compat_futimesat+0x217/0x280
[  287.870390][T10431]  ? __pfx_do_compat_futimesat+0x10/0x10
[  287.870410][T10431]  ? rcu_is_watching+0x12/0xc0
[  287.870422][T10431]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  287.870440][T10431]  __do_fast_syscall_32+0x7c/0x3a0
[  287.870458][T10431]  do_fast_syscall_32+0x32/0x80
[  287.870474][T10431]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  287.870488][T10431] RIP: 0023:0xf703e579
[  287.870497][T10431] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  287.870507][T10431] RSP: 002b:00000000f4fec55c EFLAGS: 00000296 ORIG_RAX: 000000000000010f
[  287.870518][T10431] RAX: ffffffffffffffda RBX: 0000000080000240 RCX: 0000000000000000
[  287.870524][T10431] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  287.870530][T10431] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  287.870536][T10431] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  287.870542][T10431] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  287.870555][T10431]  </TASK>
[  288.369762][T10444] EXT4-fs error: 291 callbacks suppressed
[  288.369774][T10444] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  288.405002][T10445] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  288.410273][T10446] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1101'.
[  288.650820][T10452] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1104'.
[  288.914976][T10457] rdma_rxe: rxe_newlink: failed to add syz_tun
[  289.381728][T10463] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1107'.
[  289.384596][T10463] netlink: 'syz.0.1107': attribute type 5 has an invalid length.
[  289.386999][T10463] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1107'.
[  289.392760][T10463] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  289.395552][T10463] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  289.398055][T10463] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  289.400366][T10463] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  289.403033][T10463] geneve2: entered promiscuous mode
[  289.410148][T10463] geneve2: entered allmulticast mode
[  289.671052][T10471] bridge35: entered promiscuous mode
[  289.759913][T10473] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1112'.
[  289.874940][T10480] FAULT_INJECTION: forcing a failure.
[  289.874940][T10480] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  289.879024][T10480] CPU: 2 UID: 0 PID: 10480 Comm: syz.3.1114 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  289.879040][T10480] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.879046][T10480] Call Trace:
[  289.879050][T10480]  <TASK>
[  289.879055][T10480]  dump_stack_lvl+0x16c/0x1f0
[  289.879078][T10480]  should_fail_ex+0x512/0x640
[  289.879096][T10480]  _copy_from_iter+0x29f/0x16f0
[  289.879116][T10480]  ? __pfx__copy_from_iter+0x10/0x10
[  289.879136][T10480]  ? find_held_lock+0x2b/0x80
[  289.879151][T10480]  tun_get_user+0x240/0x3b80
[  289.879168][T10480]  ? __pfx_tun_get_user+0x10/0x10
[  289.879178][T10480]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  289.879198][T10480]  ? find_held_lock+0x2b/0x80
[  289.879210][T10480]  ? tun_get+0x191/0x370
[  289.879228][T10480]  tun_chr_write_iter+0xdc/0x210
[  289.879240][T10480]  vfs_write+0x6c4/0x1150
[  289.879256][T10480]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  289.879268][T10480]  ? __pfx_vfs_write+0x10/0x10
[  289.879286][T10480]  ? find_held_lock+0x2b/0x80
[  289.879305][T10480]  ksys_write+0x12a/0x250
[  289.879321][T10480]  ? __pfx_ksys_write+0x10/0x10
[  289.879337][T10480]  ? rcu_is_watching+0x12/0xc0
[  289.879350][T10480]  __do_fast_syscall_32+0x7c/0x3a0
[  289.879368][T10480]  do_fast_syscall_32+0x32/0x80
[  289.879384][T10480]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.879398][T10480] RIP: 0023:0xf7f96579
[  289.879407][T10480] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.879422][T10480] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  289.879432][T10480] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[  289.879439][T10480] RDX: 0000000000000fd1 RSI: 0000000000000000 RDI: 0000000000000000
[  289.879445][T10480] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  289.879451][T10480] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  289.879457][T10480] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.879469][T10480]  </TASK>
[  290.011976][T10483] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1115'.
[  290.015895][T10483] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1115'.
[  290.567804][T10499] rdma_rxe: rxe_newlink: failed to add syz_tun
[  290.628241][T10499] netlink: 'syz.0.1120': attribute type 1 has an invalid length.
[  290.631551][T10502] bond0: option arp_interval: mode dependency failed, not supported in mode balance-alb(6)
[  290.971487][T10510] bridge39: entered promiscuous mode
[  291.352706][T10528] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1129'.
[  291.638338][T10534] program syz.1.1131 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  291.738058][T10542] netlink: 'syz.3.1134': attribute type 1 has an invalid length.
[  291.757477][T10542] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  291.764333][   T12] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  291.775527][T10542] 8021q: adding VLAN 0 to HW filter on device bond1
[  291.825834][T10544] rdma_rxe: rxe_newlink: failed to add syz_tun
[  291.846771][T10542] veth15: entered promiscuous mode
[  291.875663][   T61] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  292.015120][T10550] rdma_rxe: rxe_newlink: failed to add syz_tun
[  292.784078][ T1137] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  292.934133][ T1137] usb 6-1: Using ep0 maxpacket: 32
[  292.937981][ T1137] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[  292.942170][ T1137] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  292.946832][ T1137] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[  292.950932][ T1137] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  292.956518][ T1137] usb 6-1: config 0 interface 0 has no altsetting 0
[  292.961503][ T1137] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  292.965679][ T1137] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  292.969184][ T1137] usb 6-1: Product: syz
[  292.971000][ T1137] usb 6-1: Manufacturer: syz
[  292.973162][ T1137] usb 6-1: SerialNumber: syz
[  292.977613][ T1137] usb 6-1: config 0 descriptor??
[  292.983897][ T1137] ldusb 6-1:0.0: Interrupt in endpoint not found
[  292.996710][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  293.001568][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  293.006701][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  293.254201][T10568] netlink: 244 bytes leftover after parsing attributes in process `syz.1.1139'.
[  293.520065][T10573] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.537826][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.541796][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.546357][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.551297][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.556574][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.561608][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.566769][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.571904][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.577323][T10577] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  293.712590][T10580] bridge46: entered promiscuous mode
[  293.993182][ T6039] usb 6-1: USB disconnect, device number 7
[  294.121910][T10585] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1144'.
[  295.343764][T10614] rdma_rxe: rxe_newlink: failed to add syz_tun
[  295.625803][T10621] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  295.628557][T10621] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  295.632156][T10621] vhci_hcd vhci_hcd.0: Device attached
[  295.641795][T10621] netlink: 'syz.0.1150': attribute type 4 has an invalid length.
[  295.644222][T10625] FAULT_INJECTION: forcing a failure.
[  295.644222][T10625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  295.645800][T10621] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1150'.
[  295.649226][T10625] CPU: 3 UID: 0 PID: 10625 Comm: syz.1.1152 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  295.649244][T10625] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.649251][T10625] Call Trace:
[  295.649255][T10625]  <TASK>
[  295.649260][T10625]  dump_stack_lvl+0x16c/0x1f0
[  295.649279][T10625]  should_fail_ex+0x512/0x640
[  295.649298][T10625]  strncpy_from_user+0x3b/0x2e0
[  295.649314][T10625]  getname_flags.part.0+0x8f/0x550
[  295.649329][T10625]  getname_flags+0x93/0xf0
[  295.649344][T10625]  user_path_at+0x24/0x60
[  295.649359][T10625]  __ia32_sys_mount+0x1fb/0x310
[  295.649377][T10625]  ? __pfx___ia32_sys_mount+0x10/0x10
[  295.649395][T10625]  ? rcu_is_watching+0x12/0xc0
[  295.649409][T10625]  __do_fast_syscall_32+0x7c/0x3a0
[  295.649427][T10625]  do_fast_syscall_32+0x32/0x80
[  295.649444][T10625]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  295.649457][T10625] RIP: 0023:0xf7fc6579
[  295.649466][T10625] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  295.649477][T10625] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  295.649487][T10625] RAX: ffffffffffffffda RBX: 0000000080000080 RCX: 0000000080000040
[  295.649493][T10625] RDX: 00000000800000c0 RSI: 0000000000a08410 RDI: 0000000000000000
[  295.649500][T10625] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  295.649506][T10625] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  295.649512][T10625] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  295.649525][T10625]  </TASK>
[  295.724057][ T6020] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  295.875880][ T6020] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  295.878621][ T6020] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  295.881858][ T6020] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  295.885430][ T6020] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10
[  295.888906][ T6020] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 18286, setting to 1024
[  295.893674][ T6020] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  295.894099][   T29] usb 37-1: new high-speed USB device number 9 using vhci_hcd
[  295.896892][ T6020] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  295.901596][ T6020] usb 7-1: Product: syz
[  295.902962][ T6020] usb 7-1: Manufacturer: syz
[  295.908575][T10620] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  295.912021][ T6020] cdc_wdm 7-1:1.0: skipping garbage
[  295.913776][ T6020] cdc_wdm 7-1:1.0: skipping garbage
[  295.917345][ T6020] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  295.919253][ T6020] cdc_wdm 7-1:1.0: Unknown control protocol
[  296.115360][    C3] wdm_int_callback: 56 callbacks suppressed
[  296.115374][    C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  296.119417][    C3] wdm_int_callback: 56 callbacks suppressed
[  296.119426][    C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  296.123339][    C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  296.125454][    C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  296.127496][    C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  296.129622][    C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  296.131694][    C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  296.133803][    C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  296.135915][    C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  296.137996][    C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  296.139915][    C3] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1
[  296.143404][ T5955] usb 7-1: USB disconnect, device number 2
[  296.244440][T10641] rdma_rxe: rxe_newlink: failed to add syz_tun
[  296.251536][T10641] netlink: 'syz.3.1157': attribute type 1 has an invalid length.
[  296.407205][T10622] vhci_hcd: connection reset by peer
[  296.409256][ T1142] vhci_hcd: stop threads
[  296.410658][ T1142] vhci_hcd: release socket
[  296.412424][ T1142] vhci_hcd: disconnect device
[  296.592625][T10645] syz1: rxe_newlink: already configured on syz_tun
[  297.090523][T10650] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1159'.
[  297.421336][T10657] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1162'.
[  297.424399][T10657] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1162'.
[  297.442654][ T1137] hid-generic 0000:7FFFFFFF:0000.0002: unknown main item tag 0x4
[  297.446672][ T1137] hid-generic 0000:7FFFFFFF:0000.0002: unknown main item tag 0x0
[  297.449489][ T1137] hid-generic 0000:7FFFFFFF:0000.0002: unknown main item tag 0x1
[  297.455191][ T1137] hid-generic 0000:7FFFFFFF:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  297.636723][T10666] C: renamed from team_slave_0 (while UP)
[  297.641591][T10666] netlink: 'syz.1.1165': attribute type 3 has an invalid length.
[  297.644239][T10666] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1165'.
[  297.648151][T10666] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  297.676180][T10666] ptrace attach of "/syz-executor exec"[5967] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  õ"[10666]
[  297.705215][T10667] rdma_rxe: rxe_newlink: failed to add syz_tun
[  298.027970][T10677] rdma_rxe: rxe_newlink: failed to add syz_tun
[  298.054675][T10677] netlink: 'syz.3.1168': attribute type 1 has an invalid length.
[  298.672256][T10684] bridge47: entered promiscuous mode
[  299.454170][T10698] FAULT_INJECTION: forcing a failure.
[  299.454170][T10698] name failslab, interval 1, probability 0, space 0, times 0
[  299.458146][T10698] CPU: 3 UID: 0 PID: 10698 Comm: syz.0.1176 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  299.458162][T10698] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  299.458169][T10698] Call Trace:
[  299.458173][T10698]  <TASK>
[  299.458177][T10698]  dump_stack_lvl+0x16c/0x1f0
[  299.458197][T10698]  should_fail_ex+0x512/0x640
[  299.458218][T10698]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  299.458241][T10698]  should_failslab+0xc2/0x120
[  299.458251][T10698]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  299.458273][T10698]  ? __kthread_create_on_node+0x186/0x3f0
[  299.458290][T10698]  kvasprintf+0xbc/0x160
[  299.458300][T10698]  ? __pfx_kvasprintf+0x10/0x10
[  299.458316][T10698]  ? __pfx_napi_threaded_poll+0x10/0x10
[  299.458332][T10698]  __kthread_create_on_node+0x186/0x3f0
[  299.458347][T10698]  ? __pfx___kthread_create_on_node+0x10/0x10
[  299.458369][T10698]  ? __pfx_napi_threaded_poll+0x10/0x10
[  299.458384][T10698]  kthread_create_on_node+0xc7/0x100
[  299.458399][T10698]  ? __pfx_kthread_create_on_node+0x10/0x10
[  299.458416][T10698]  ? kmem_cache_free+0x2d1/0x4d0
[  299.458431][T10698]  ? kfree_skbmem+0x1a4/0x1f0
[  299.458447][T10698]  napi_kthread_create+0x8f/0x170
[  299.458458][T10698]  netif_napi_add_weight_locked+0x915/0xc40
[  299.458480][T10698]  wg_peer_create+0x5c2/0x9e0
[  299.458494][T10698]  set_peer+0x8c0/0x1460
[  299.458513][T10698]  ? __pfx_set_peer+0x10/0x10
[  299.458530][T10698]  ? __pfx___nla_validate_parse+0x10/0x10
[  299.458547][T10698]  ? __nla_parse+0x40/0x60
[  299.458560][T10698]  wg_set_device+0xa72/0x1360
[  299.458578][T10698]  ? __pfx___nla_validate_parse+0x10/0x10
[  299.458589][T10698]  ? __pfx_wg_set_device+0x10/0x10
[  299.458610][T10698]  ? __nla_parse+0x40/0x60
[  299.458623][T10698]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  299.458637][T10698]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  299.458654][T10698]  genl_family_rcv_msg_doit+0x209/0x2f0
[  299.458668][T10698]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  299.458681][T10698]  ? trace_cap_capable+0x18d/0x200
[  299.458697][T10698]  ? bpf_lsm_capable+0x9/0x10
[  299.458710][T10698]  ? security_capable+0x7e/0x260
[  299.458721][T10698]  ? ns_capable+0xd7/0x110
[  299.458734][T10698]  genl_rcv_msg+0x55c/0x800
[  299.458748][T10698]  ? __pfx_genl_rcv_msg+0x10/0x10
[  299.458761][T10698]  ? __pfx_wg_set_device+0x10/0x10
[  299.458780][T10698]  ? __lock_acquire+0x622/0x1c90
[  299.458797][T10698]  netlink_rcv_skb+0x158/0x420
[  299.458808][T10698]  ? __pfx_genl_rcv_msg+0x10/0x10
[  299.458822][T10698]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  299.458839][T10698]  ? netlink_deliver_tap+0x1ae/0xd30
[  299.458856][T10698]  ? is_vmalloc_addr+0x86/0xa0
[  299.458873][T10698]  genl_rcv+0x28/0x40
[  299.458884][T10698]  netlink_unicast+0x53a/0x7f0
[  299.458897][T10698]  ? __pfx_netlink_unicast+0x10/0x10
[  299.458912][T10698]  netlink_sendmsg+0x8d1/0xdd0
[  299.458925][T10698]  ? __pfx_netlink_sendmsg+0x10/0x10
[  299.458937][T10698]  ? __import_iovec+0x1dd/0x650
[  299.458950][T10698]  ____sys_sendmsg+0xa98/0xc70
[  299.458964][T10698]  ? __pfx_____sys_sendmsg+0x10/0x10
[  299.458976][T10698]  ? get_compat_msghdr+0x11a/0x170
[  299.458999][T10698]  ___sys_sendmsg+0x134/0x1d0
[  299.459016][T10698]  ? __pfx____sys_sendmsg+0x10/0x10
[  299.459038][T10698]  ? find_held_lock+0x2b/0x80
[  299.459058][T10698]  __sys_sendmsg+0x16d/0x220
[  299.459074][T10698]  ? __pfx___sys_sendmsg+0x10/0x10
[  299.459097][T10698]  ? rcu_is_watching+0x12/0xc0
[  299.459111][T10698]  __do_fast_syscall_32+0x7c/0x3a0
[  299.459129][T10698]  do_fast_syscall_32+0x32/0x80
[  299.459145][T10698]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  299.459160][T10698] RIP: 0023:0xf7f62579
[  299.459169][T10698] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  299.459195][T10698] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  299.459205][T10698] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000d40
[  299.459212][T10698] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  299.459221][T10698] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  299.459227][T10698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  299.459233][T10698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  299.459247][T10698]  </TASK>
[  299.459308][T10698] kthread_run failed with err -12
[  299.495525][ T5955] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  299.735386][ T5955] usb 8-1: device descriptor read/64, error -71
[  299.931566][T10708] rdma_rxe: rxe_newlink: failed to add syz_tun
[  299.935764][T10708] netlink: 'syz.2.1178': attribute type 1 has an invalid length.
[  299.984182][ T5955] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  300.124097][ T5955] usb 8-1: device descriptor read/64, error -71
[  300.246341][ T5955] usb usb8-port1: attempt power cycle
[  300.414443][ T6039] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  300.586935][ T6039] usb 5-1: device descriptor read/64, error -71
[  300.594947][ T5955] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  300.616287][ T5955] usb 8-1: device descriptor read/8, error -71
[  300.874172][ T5955] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  300.895423][ T5955] usb 8-1: device descriptor read/8, error -71
[  301.007056][ T5955] usb usb8-port1: unable to enumerate USB device
[  301.034162][ T6039] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  301.044251][   T29] vhci_hcd: vhci_device speed not set
[  301.256432][T10726] bridge34: entered promiscuous mode
[  301.260320][ T6039] usb 5-1: device descriptor read/64, error -71
[  301.454406][ T6039] usb usb5-port1: attempt power cycle
[  301.615675][T10729] FAULT_INJECTION: forcing a failure.
[  301.615675][T10729] name failslab, interval 1, probability 0, space 0, times 0
[  301.620752][T10729] CPU: 2 UID: 0 PID: 10729 Comm: syz.1.1184 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  301.620774][T10729] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  301.620784][T10729] Call Trace:
[  301.620790][T10729]  <TASK>
[  301.620794][T10729]  dump_stack_lvl+0x16c/0x1f0
[  301.620821][T10729]  should_fail_ex+0x512/0x640
[  301.620844][T10729]  ? fs_reclaim_acquire+0xae/0x150
[  301.620866][T10729]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  301.620888][T10729]  should_failslab+0xc2/0x120
[  301.620900][T10729]  __kmalloc_noprof+0xd2/0x510
[  301.620930][T10729]  tomoyo_realpath_from_path+0xc2/0x6e0
[  301.620955][T10729]  ? tomoyo_profile+0x47/0x60
[  301.620983][T10729]  tomoyo_path_number_perm+0x245/0x580
[  301.620999][T10729]  ? tomoyo_path_number_perm+0x237/0x580
[  301.621018][T10729]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  301.621062][T10729]  ? find_held_lock+0x2b/0x80
[  301.621079][T10729]  ? hook_file_ioctl_common+0x145/0x410
[  301.621102][T10729]  ? __fget_files+0x20e/0x3c0
[  301.621119][T10729]  ? __fput_deferred+0x470/0x480
[  301.621141][T10729]  security_file_ioctl_compat+0x9b/0x240
[  301.621162][T10729]  __ia32_compat_sys_ioctl+0xc3/0x370
[  301.621190][T10729]  __do_fast_syscall_32+0x7c/0x3a0
[  301.621216][T10729]  do_fast_syscall_32+0x32/0x80
[  301.621236][T10729]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  301.621256][T10729] RIP: 0023:0xf7fc6579
[  301.621269][T10729] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  301.621284][T10729] RSP: 002b:00000000f50c555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  301.621300][T10729] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000ae80
[  301.621309][T10729] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  301.621315][T10729] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  301.621324][T10729] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  301.621334][T10729] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  301.621356][T10729]  </TASK>
[  301.621363][T10729] ERROR: Out of memory at tomoyo_realpath_from_path.
[  301.854760][ T6039] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  302.095442][ T6039] usb 5-1: device descriptor read/8, error -71
[  302.211881][T10738] netlink: 'syz.2.1186': attribute type 1 has an invalid length.
[  302.973679][T10744] EXT4-fs error: 107 callbacks suppressed
[  302.973691][T10744] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  303.001460][T10747] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  303.014059][ T6039] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  303.044595][ T6039] usb 5-1: device descriptor read/8, error -71
[  303.073637][T10751] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  303.093644][T10743] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  303.114841][T10755] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  303.135950][T10759] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  303.142674][T10743] could not allocate digest TFM handle rmd256
[  303.156199][ T6039] usb usb5-port1: unable to enumerate USB device
[  303.266706][T10761] rdma_rxe: rxe_newlink: failed to add syz_tun
[  303.272562][T10761] netlink: 'syz.2.1191': attribute type 1 has an invalid length.
[  303.385408][T10767] syz1: rxe_newlink: already configured on syz_tun
[  303.391236][T10767] netlink: 'syz.1.1193': attribute type 1 has an invalid length.
[  303.738992][T10777] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  303.741348][T10777] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  303.744348][T10777] vhci_hcd vhci_hcd.0: Device attached
[  303.767751][T10777] netlink: 'syz.0.1194': attribute type 4 has an invalid length.
[  303.786515][T10777] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1194'.
[  304.231255][T10785] FAULT_INJECTION: forcing a failure.
[  304.231255][T10785] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  304.236138][T10785] CPU: 2 UID: 0 PID: 10785 Comm: syz.2.1197 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  304.236164][T10785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  304.236171][T10785] Call Trace:
[  304.236175][T10785]  <TASK>
[  304.236180][T10785]  dump_stack_lvl+0x16c/0x1f0
[  304.236199][T10785]  should_fail_ex+0x512/0x640
[  304.236223][T10785]  should_fail_alloc_page+0xe7/0x130
[  304.236240][T10785]  prepare_alloc_pages+0x3c2/0x610
[  304.236265][T10785]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  304.236294][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.236314][T10785]  ? trace_mm_page_alloc+0x11f/0x1a0
[  304.236332][T10785]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  304.236356][T10785]  ? sched_clock_cpu+0x6c/0x530
[  304.236391][T10785]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  304.236408][T10785]  ? __pfx_sched_clock_cpu+0x10/0x10
[  304.236421][T10785]  ? pick_eevdf+0x175/0x5b0
[  304.236438][T10785]  ? find_held_lock+0x2b/0x80
[  304.236460][T10785]  ? trace_sched_exit_tp+0xde/0x130
[  304.236481][T10785]  ? __schedule+0x1181/0x5de0
[  304.236507][T10785]  alloc_pages_bulk_noprof+0x71c/0x1410
[  304.236530][T10785]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  304.236557][T10785]  ? policy_nodemask+0xea/0x4e0
[  304.236573][T10785]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  304.236603][T10785]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  304.236625][T10785]  kasan_populate_vmalloc+0xf1/0x1f0
[  304.236653][T10785]  alloc_vmap_area+0x959/0x29c0
[  304.236710][T10785]  ? __pfx_alloc_vmap_area+0x10/0x10
[  304.236732][T10785]  __get_vm_area_node+0x1ca/0x330
[  304.236760][T10785]  __vmalloc_node_range_noprof+0x271/0x14b0
[  304.236783][T10785]  ? bpf_check+0x1e4/0xb4f0
[  304.236807][T10785]  ? rcu_read_unlock+0x17/0x60
[  304.236827][T10785]  ? bpf_check+0x1e4/0xb4f0
[  304.236854][T10785]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  304.236877][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.236897][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.236917][T10785]  ? bpf_check+0x1e4/0xb4f0
[  304.236943][T10785]  __vmalloc_node_noprof+0xad/0xf0
[  304.236965][T10785]  ? bpf_check+0x1e4/0xb4f0
[  304.236988][T10785]  bpf_check+0x1e4/0xb4f0
[  304.237009][T10785]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  304.237029][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.237048][T10785]  ? trace_sched_exit_tp+0xde/0x130
[  304.237069][T10785]  ? __schedule+0x1181/0x5de0
[  304.237102][T10785]  ? __pfx_bpf_check+0x10/0x10
[  304.237125][T10785]  ? __pfx___schedule+0x10/0x10
[  304.237153][T10785]  ? __lock_acquire+0xb8a/0x1c90
[  304.237180][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.237197][T10785]  ? irqentry_exit+0x3b/0x90
[  304.237221][T10785]  ? lockdep_hardirqs_on+0x7c/0x110
[  304.237252][T10785]  ? ktime_get_with_offset+0x280/0x3b0
[  304.237275][T10785]  ? ktime_get_with_offset+0x28f/0x3b0
[  304.237298][T10785]  ? __asan_memset+0x23/0x50
[  304.237320][T10785]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  304.237349][T10785]  bpf_prog_load+0xe41/0x2490
[  304.237380][T10785]  ? __pfx_bpf_prog_load+0x10/0x10
[  304.237405][T10785]  ? __lock_acquire+0xb8a/0x1c90
[  304.237446][T10785]  __sys_bpf+0x433c/0x4d80
[  304.237460][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.237480][T10785]  ? __pfx___sys_bpf+0x10/0x10
[  304.237493][T10785]  ? __schedule+0x1181/0x5de0
[  304.237515][T10785]  ? ksys_write+0x190/0x250
[  304.237558][T10785]  ? fput+0x70/0xf0
[  304.237575][T10785]  ? ksys_write+0x1ac/0x250
[  304.237603][T10785]  __ia32_sys_bpf+0x76/0xe0
[  304.237622][T10785]  __do_fast_syscall_32+0x7c/0x3a0
[  304.237651][T10785]  do_fast_syscall_32+0x32/0x80
[  304.237677][T10785]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  304.237699][T10785] RIP: 0023:0xf703e579
[  304.237713][T10785] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  304.237730][T10785] RSP: 002b:00000000f4fec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  304.237748][T10785] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800003c0
[  304.237759][T10785] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  304.237769][T10785] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  304.237779][T10785] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  304.237789][T10785] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  304.237812][T10785]  </TASK>
[  304.238548][T10785] syz.2.1197: vmalloc error: size 240, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  304.333175][T10784] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  304.333734][T10785] ,cpuset=/,mems_allowed=0-1
[  304.412444][T10785] CPU: 2 UID: 0 PID: 10785 Comm: syz.2.1197 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  304.412471][T10785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  304.412478][T10785] Call Trace:
[  304.412482][T10785]  <TASK>
[  304.412487][T10785]  dump_stack_lvl+0x16c/0x1f0
[  304.412507][T10785]  warn_alloc+0x248/0x3a0
[  304.412524][T10785]  ? __pfx_warn_alloc+0x10/0x10
[  304.412541][T10785]  ? kfree+0x2b4/0x4d0
[  304.412558][T10785]  ? __get_vm_area_node+0x208/0x330
[  304.412574][T10785]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  304.412590][T10785]  ? rcu_read_unlock+0x17/0x60
[  304.412603][T10785]  ? bpf_check+0x1e4/0xb4f0
[  304.412620][T10785]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  304.412634][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.412647][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.412660][T10785]  ? bpf_check+0x1e4/0xb4f0
[  304.412690][T10785]  __vmalloc_node_noprof+0xad/0xf0
[  304.412704][T10785]  ? bpf_check+0x1e4/0xb4f0
[  304.412718][T10785]  bpf_check+0x1e4/0xb4f0
[  304.412730][T10785]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  304.412744][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.412755][T10785]  ? trace_sched_exit_tp+0xde/0x130
[  304.412768][T10785]  ? __schedule+0x1181/0x5de0
[  304.412788][T10785]  ? __pfx_bpf_check+0x10/0x10
[  304.412802][T10785]  ? __pfx___schedule+0x10/0x10
[  304.412819][T10785]  ? __lock_acquire+0xb8a/0x1c90
[  304.412836][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.412847][T10785]  ? irqentry_exit+0x3b/0x90
[  304.412862][T10785]  ? lockdep_hardirqs_on+0x7c/0x110
[  304.412881][T10785]  ? ktime_get_with_offset+0x280/0x3b0
[  304.412898][T10785]  ? ktime_get_with_offset+0x28f/0x3b0
[  304.412913][T10785]  ? __asan_memset+0x23/0x50
[  304.412927][T10785]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  304.412945][T10785]  bpf_prog_load+0xe41/0x2490
[  304.412964][T10785]  ? __pfx_bpf_prog_load+0x10/0x10
[  304.412981][T10785]  ? __lock_acquire+0xb8a/0x1c90
[  304.413007][T10785]  __sys_bpf+0x433c/0x4d80
[  304.413016][T10785]  ? rcu_is_watching+0x12/0xc0
[  304.413028][T10785]  ? __pfx___sys_bpf+0x10/0x10
[  304.413036][T10785]  ? __schedule+0x1181/0x5de0
[  304.413050][T10785]  ? ksys_write+0x190/0x250
[  304.413076][T10785]  ? fput+0x70/0xf0
[  304.413086][T10785]  ? ksys_write+0x1ac/0x250
[  304.413104][T10785]  __ia32_sys_bpf+0x76/0xe0
[  304.413115][T10785]  __do_fast_syscall_32+0x7c/0x3a0
[  304.413132][T10785]  do_fast_syscall_32+0x32/0x80
[  304.413149][T10785]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  304.413162][T10785] RIP: 0023:0xf703e579
[  304.413172][T10785] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  304.413182][T10785] RSP: 002b:00000000f4fec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  304.413192][T10785] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800003c0
[  304.413199][T10785] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  304.413205][T10785] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  304.413211][T10785] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  304.413217][T10785] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  304.413230][T10785]  </TASK>
[  304.423793][T10778] vhci_hcd: connection closed
[  304.425246][T10785] Mem-Info:
[  304.516629][ T6413] usb 37-1: new high-speed USB device number 10 using vhci_hcd
[  304.518315][   T12] vhci_hcd: stop threads
[  304.518329][   T12] vhci_hcd: release socket
[  304.518352][   T12] vhci_hcd: disconnect device
[  304.519286][T10785] active_anon:14201 inactive_anon:18 isolated_anon:0
[  304.519286][T10785]  active_file:13463 inactive_file:35502 isolated_file:0
[  304.519286][T10785]  unevictable:1768 dirty:676 writeback:0
[  304.519286][T10785]  slab_reclaimable:9255 slab_unreclaimable:64176
[  304.519286][T10785]  mapped:33119 shmem:10893 pagetables:1080
[  304.519286][T10785]  sec_pagetables:319 bounce:0
[  304.519286][T10785]  kernel_misc_reclaimable:0
[  304.519286][T10785]  free:25744 free_pcp:17094 free_cma:0
[  304.521617][ T6413] usb 37-1: enqueue for inactive port 0
[  304.523519][T10785] Node 0 active_anon:968kB inactive_anon:36kB active_file:2016kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:1324kB dirty:180kB writeback:0kB shmem:4220kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8584kB pagetables:1252kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  304.565464][T10785] Node 1 active_anon:55836kB inactive_anon:36kB active_file:51836kB inactive_file:142008kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:131152kB dirty:2524kB writeback:0kB shmem:39352kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4636kB pagetables:3068kB sec_pagetables:120kB all_unreclaimable? no Balloon:0kB
[  304.580183][T10785] Node 0 DMA free:1992kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:584kB local_pcp:132kB free_cma:0kB
[  304.594250][T10785] lowmem_reserve[]: 0 288 288 288 288
[  304.597637][T10785] Node 0 DMA32 free:18728kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:4096KB free_highatomic:2408KB active_anon:968kB inactive_anon:36kB active_file:2016kB inactive_file:0kB unevictable:3536kB writepending:180kB present:1032196kB managed:295900kB mlocked:0kB bounce:0kB free_pcp:13780kB local_pcp:3592kB free_cma:0kB
[  304.604199][ T6413] vhci_hcd: vhci_device speed not set
[  304.611916][T10785] lowmem_reserve[]: 0 0 0 0 0
[  304.618359][T10785] Node 1 DMA32 free:82256kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:55836kB inactive_anon:36kB active_file:51836kB inactive_file:142008kB unevictable:3536kB writepending:2524kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:54276kB local_pcp:11676kB free_cma:0kB
[  304.632491][T10785] lowmem_reserve[]: 0 0 0 0 0
[  304.637802][T10785] Node 0 DMA: 24*4kB (UM) 15*8kB (UM) 3*16kB (U) 2*32kB (UM) 4*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 1992kB
[  304.651702][T10785] Node 0 DMA32: 266*4kB (UMEH) 40*8kB (UMEH) 72*16kB (UMEH) 134*32kB (UMEH) 42*64kB (UMEH) 14*128kB (UMEH) 9*256kB (UMEH) 6*512kB (UM) 2*1024kB (MH) 0*2048kB 0*4096kB = 18728kB
[  304.663866][T10785] Node 1 DMA32: 487*4kB (UM) 421*8kB (UM) 118*16kB (UME) 253*32kB (UME) 125*64kB (UME) 55*128kB (UE) 42*256kB (UME) 18*512kB (UM) 13*1024kB (UM) 5*2048kB (UM) 2*4096kB (M) = 82052kB
[  304.676910][T10785] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  304.681652][T10785] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  304.686285][T10785] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  304.689985][T10785] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  304.693854][T10785] 60191 total pagecache pages
[  304.696173][T10785] 337 pages in swap cache
[  304.698297][T10785] Free swap  = 120604kB
[  304.701022][T10785] Total swap = 124996kB
[  304.704709][T10785] 524155 pages RAM
[  304.706844][T10785] 0 pages HighMem/MovableOnly
[  304.709614][T10785] 209269 pages reserved
[  304.712540][T10785] 0 pages cma reserved
[  305.558049][T10822] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  305.575860][T10828] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  305.580339][T10828] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  305.581478][T10789] cgroup: fork rejected by pids controller in 
[  305.586727][T10828] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  305.593867][T10825] process 'syz.3.1200' launched './file0' with NULL argv: empty string added
[  305.609989][T10789] /syz1
[  306.930179][T10897] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.116209][T10897] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.202241][   T40] audit: type=1326 audit(1752055962.092:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10904 comm="syz.0.1206" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x0
[  307.253451][T10897] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.318249][T10897] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.455171][T10897] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  307.467646][T10897] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  307.477653][T10897] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  307.490980][T10897] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  307.547860][T10911] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1208'.
[  307.556740][T10911] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1208'.
[  308.028355][T10923] syz1: rxe_newlink: already configured on syz_tun
[  308.292754][T10927] rdma_rxe: rxe_newlink: failed to add syz_tun
[  308.867680][ T5965] Bluetooth: hci3: unexpected event for opcode 0x0c25
[  309.338646][T10941] netlink: 'syz.1.1213': attribute type 10 has an invalid length.
[  309.595382][T10941] wlan1: mtu less than device minimum
[  310.007097][T10945] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  310.009571][T10945] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  310.012678][T10945] vhci_hcd vhci_hcd.0: Device attached
[  310.033289][T10945] netlink: 'syz.0.1215': attribute type 4 has an invalid length.
[  310.035731][T10945] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1215'.
[  310.182511][T10946] vhci_hcd: connection closed
[  310.182706][   T61] vhci_hcd: stop threads
[  310.185758][   T61] vhci_hcd: release socket
[  310.187293][   T61] vhci_hcd: disconnect device
[  310.321306][T10949] FAULT_INJECTION: forcing a failure.
[  310.321306][T10949] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  310.327521][T10949] CPU: 3 UID: 0 PID: 10949 Comm: syz.3.1217 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  310.327546][T10949] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  310.327558][T10949] Call Trace:
[  310.327564][T10949]  <TASK>
[  310.327570][T10949]  dump_stack_lvl+0x16c/0x1f0
[  310.327600][T10949]  should_fail_ex+0x512/0x640
[  310.327630][T10949]  should_fail_alloc_page+0xe7/0x130
[  310.327650][T10949]  prepare_alloc_pages+0x3c2/0x610
[  310.327675][T10949]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  310.327706][T10949]  ? find_held_lock+0x2b/0x80
[  310.327729][T10949]  ? is_bpf_text_address+0x8a/0x1a0
[  310.327753][T10949]  ? bpf_ksym_find+0x124/0x1c0
[  310.327772][T10949]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  310.327794][T10949]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  310.327821][T10949]  ? kernel_text_address+0x8d/0x100
[  310.327848][T10949]  ? __kernel_text_address+0xd/0x40
[  310.327863][T10949]  ? unwind_get_return_address+0x59/0xa0
[  310.327897][T10949]  ? arch_stack_walk+0xa6/0x100
[  310.327922][T10949]  ? __lock_acquire+0x622/0x1c90
[  310.327946][T10949]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  310.327972][T10949]  ? policy_nodemask+0xea/0x4e0
[  310.327992][T10949]  alloc_pages_mpol+0x1fb/0x550
[  310.328010][T10949]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  310.328034][T10949]  folio_alloc_mpol_noprof+0x36/0x2f0
[  310.328055][T10949]  vma_alloc_folio_noprof+0xed/0x1e0
[  310.328074][T10949]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  310.328093][T10949]  ? find_held_lock+0x2b/0x80
[  310.328110][T10949]  ? __handle_mm_fault+0x1092/0x5490
[  310.328137][T10949]  __handle_mm_fault+0x2f21/0x5490
[  310.328165][T10949]  ? __pfx___handle_mm_fault+0x10/0x10
[  310.328185][T10949]  ? __pfx_mt_find+0x10/0x10
[  310.328215][T10949]  ? find_vma+0xbf/0x140
[  310.328233][T10949]  ? __pfx_find_vma+0x10/0x10
[  310.328252][T10949]  handle_mm_fault+0x589/0xd10
[  310.328276][T10949]  ? __pkru_allows_pkey+0x51/0xb0
[  310.328301][T10949]  do_user_addr_fault+0x7a6/0x1370
[  310.328327][T10949]  ? rcu_is_watching+0x12/0xc0
[  310.328347][T10949]  exc_page_fault+0x5c/0xb0
[  310.328371][T10949]  asm_exc_page_fault+0x26/0x30
[  310.328389][T10949] RIP: 0010:_copy_to_iter+0x4e6/0x16f0
[  310.328416][T10949] Code: 45 e8 ae 04 e4 fc 48 8b 4c 24 18 48 8b 44 24 28 89 ee 4c 8d 34 01 4c 89 f7 e8 56 ef 49 fd 0f 01 cb 48 89 e9 4c 89 ff 4c 89 f6 <f3> a4 0f 1f 00 0f 01 ca 48 89 e8 48 29 eb 48 29 c8 48 01 44 24 28
[  310.328432][T10949] RSP: 0018:ffffc90006a0f9a0 EFLAGS: 00050246
[  310.328447][T10949] RAX: 0000000000000001 RBX: 0000000000000079 RCX: 0000000000000079
[  310.328459][T10949] RDX: ffffed100b7fc810 RSI: ffff88805bfe4007 RDI: 00000000800000c0
[  310.328469][T10949] RBP: 0000000000000079 R08: 0000000000000000 R09: ffffed100b7fc80f
[  310.328480][T10949] R10: ffff88805bfe407f R11: 0000000000000001 R12: 0000000000000000
[  310.328490][T10949] R13: ffffc90006a0fbb0 R14: ffff88805bfe4007 R15: 00000000800000c0
[  310.328522][T10949]  ? __pfx__copy_to_iter+0x10/0x10
[  310.328551][T10949]  ? traverse.part.0.constprop.0+0x2c5/0x640
[  310.328582][T10949]  seq_read_iter+0x719/0x12c0
[  310.328605][T10949]  ? aa_file_perm+0x4d6/0xfb0
[  310.328656][T10949]  seq_read+0x39e/0x4e0
[  310.328677][T10949]  ? __pfx_seq_read+0x10/0x10
[  310.328703][T10949]  ? get_pid_task+0xfc/0x250
[  310.328735][T10949]  ? __pfx_seq_read+0x10/0x10
[  310.328755][T10949]  proc_reg_read+0x23d/0x330
[  310.328779][T10949]  ? __pfx_proc_reg_read+0x10/0x10
[  310.328805][T10949]  vfs_read+0x1e1/0xc60
[  310.328834][T10949]  ? __pfx_vfs_read+0x10/0x10
[  310.328856][T10949]  ? find_held_lock+0x2b/0x80
[  310.328878][T10949]  ? __fget_files+0x204/0x3c0
[  310.328905][T10949]  ? __fget_files+0x20e/0x3c0
[  310.328925][T10949]  ? __fget_files+0x1a0/0x3c0
[  310.328954][T10949]  ksys_pread64+0x161/0x1a0
[  310.328977][T10949]  ? __pfx_ksys_pread64+0x10/0x10
[  310.329004][T10949]  ? rcu_is_watching+0x12/0xc0
[  310.329026][T10949]  __do_fast_syscall_32+0x7c/0x3a0
[  310.329054][T10949]  do_fast_syscall_32+0x32/0x80
[  310.329079][T10949]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  310.329098][T10949] RIP: 0023:0xf7f96579
[  310.329112][T10949] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  310.329127][T10949] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 00000000000000b4
[  310.329142][T10949] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  310.329152][T10949] RDX: 0000000000000ff2 RSI: 0000000000000007 RDI: 0000000000000000
[  310.329162][T10949] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  310.329170][T10949] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  310.329182][T10949] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  310.329203][T10949]  </TASK>
[  310.768000][T10956] rdma_rxe: rxe_newlink: failed to add syz_tun
[  310.777819][T10959] rdma_rxe: rxe_newlink: failed to add syz_tun
[  310.782780][T10959] netlink: 'syz.3.1218': attribute type 1 has an invalid length.
[  311.660617][T10967] rdma_rxe: rxe_newlink: failed to add syz_tun
[  311.665701][T10967] netlink: 'syz.3.1220': attribute type 1 has an invalid length.
[  311.761563][T10969] rdma_rxe: rxe_newlink: failed to add syz_tun
[  312.488557][T10978] rdma_rxe: rxe_newlink: failed to add syz_tun
[  312.539529][T10979] syz1: rxe_newlink: already configured on syz_tun
[  312.563733][T10980] C: renamed from team_slave_0 (while UP)
[  312.568580][T10980] netlink: 'syz.3.1223': attribute type 3 has an invalid length.
[  312.571719][T10980] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1223'.
[  312.576405][T10980] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  312.660705][T10980] ptrace attach of "/syz-executor exec"[5954] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 ðõ"[10980]
[  312.690611][    C1] vkms_vblank_simulate: vblank timer overrun
[  313.144093][ T6042] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  313.344201][ T6042] usb 7-1: Using ep0 maxpacket: 32
[  313.347164][ T6042] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  313.349737][ T6042] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  313.353063][ T6042] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[  313.358532][ T6042] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  313.362363][ T6042] usb 7-1: config 0 interface 0 has no altsetting 0
[  313.368348][ T6042] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  313.371059][ T6042] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  313.373554][ T6042] usb 7-1: Product: syz
[  313.376059][ T6042] usb 7-1: Manufacturer: syz
[  313.377489][ T6042] usb 7-1: SerialNumber: syz
[  313.380005][ T6042] usb 7-1: config 0 descriptor??
[  313.385274][ T6042] ldusb 7-1:0.0: Interrupt in endpoint not found
[  313.391913][ T5960] EXT4-fs error: 50 callbacks suppressed
[  313.391922][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  313.398524][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  313.404313][ T5960] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  313.505091][T10995] rdma_rxe: rxe_newlink: failed to add syz_tun
[  313.512831][T10995] netlink: 'syz.0.1226': attribute type 1 has an invalid length.
[  313.734405][T10997] netlink: 244 bytes leftover after parsing attributes in process `syz.2.1225'.
[  313.899444][T11000] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  313.913119][T11001] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  313.918481][T11001] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  313.925675][T11001] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  313.931360][T11001] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  313.946374][T11001] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  313.954652][T11001] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  314.166254][T10994] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1228'.
[  314.169007][T10994] netlink: 'syz.3.1228': attribute type 5 has an invalid length.
[  314.171439][T10994] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1228'.
[  314.187247][T10994] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 256 - 0
[  314.189768][T10994] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 256 - 0
[  314.192182][T10994] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 256 - 0
[  314.204246][T10994] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 256 - 0
[  314.242050][T10994] geneve2: entered promiscuous mode
[  314.267297][T10994] geneve2: entered allmulticast mode
[  314.325729][T11005] bridge37: entered promiscuous mode
[  314.555399][  T837] usb 7-1: USB disconnect, device number 3
[  314.843883][T11027] siw: device registration error -23
[  315.012700][T11030] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  315.014839][T11030] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  315.017548][T11030] vhci_hcd vhci_hcd.0: Device attached
[  315.026108][T11030] netlink: 'syz.0.1231': attribute type 4 has an invalid length.
[  315.029178][T11030] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1231'.
[  315.444272][   T29] usb 37-1: new high-speed USB device number 11 using vhci_hcd
[  315.558253][T11032] vhci_hcd: connection reset by peer
[  315.560244][ T1136] vhci_hcd: stop threads
[  315.562198][ T1136] vhci_hcd: release socket
[  315.563797][ T1136] vhci_hcd: disconnect device
[  315.566842][T11039] rdma_rxe: rxe_newlink: failed to add syz_tun
[  316.529510][T11050] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1236'.
[  316.556194][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  316.558336][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  317.408439][T11062] syz1: rxe_newlink: already configured on syz_tun
[  317.440892][T11061] rdma_rxe: rxe_newlink: failed to add syz_tun
[  318.645646][ T6042] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  318.943374][T11094] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  318.945546][T11094] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  318.948263][T11094] vhci_hcd vhci_hcd.0: Device attached
[  318.956365][T11094] netlink: 'syz.0.1249': attribute type 4 has an invalid length.
[  318.958838][T11094] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1249'.
[  319.222051][T11098] bridge38: entered promiscuous mode
[  319.382299][T11095] vhci_hcd: connection closed
[  319.437885][   T61] vhci_hcd: stop threads
[  319.441486][   T61] vhci_hcd: release socket
[  319.489864][T11104] rdma_rxe: rxe_newlink: failed to add syz_tun
[  319.494461][   T61] vhci_hcd: disconnect device
[  320.553286][T11112] rdma_rxe: rxe_newlink: failed to add syz_tun
[  320.559672][   T29] vhci_hcd: vhci_device speed not set
[  320.599844][T11116] EXT4-fs error: 112 callbacks suppressed
[  320.599857][T11116] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  320.718374][T11119] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  320.871645][T11121] bridge39: entered promiscuous mode
[  321.778994][T11131] netlink: 'syz.2.1264': attribute type 1 has an invalid length.
[  321.802087][T11132] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1255'.
[  321.931259][T11130] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.025558][T11130] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.065496][T11137] rdma_rxe: rxe_newlink: failed to add syz_tun
[  322.106785][T11130] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.164215][T11130] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.268975][T11130] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  322.277856][T11130] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  322.285102][T11130] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  322.291573][T11130] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  322.600236][T11147] syz1: rxe_newlink: already configured on syz_tun
[  322.695184][T11148] binder: 11143:11148 ioctl c0306201 80000240 returned -14
[  322.699512][T11150] rdma_rxe: rxe_newlink: failed to add syz_tun
[  322.703157][T11150] netlink: 'syz.3.1270': attribute type 1 has an invalid length.
[  323.247609][T11157] bridge48: entered promiscuous mode
[  323.346563][T11161] netlink: 'syz.2.1274': attribute type 10 has an invalid length.
[  323.359827][T11161] 8021q: adding VLAN 0 to HW filter on device team0
[  323.366539][T11161] : (slave team0): Enslaving as an active interface with an up link
[  323.750491][T11169] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1276'.
[  323.762475][T11169] netlink: 'syz.2.1276': attribute type 1 has an invalid length.
[  325.008112][T11172] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  325.010210][T11172] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  325.013257][T11172] vhci_hcd vhci_hcd.0: Device attached
[  325.018358][T11172] netlink: 'syz.3.1266': attribute type 4 has an invalid length.
[  325.020891][T11172] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1266'.
[  325.730134][T11181] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.747063][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.751122][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.765007][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.782249][T11185] netlink: 'syz.1.1269': attribute type 4 has an invalid length.
[  325.784464][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.788774][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.793327][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.801993][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.808846][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.813516][T11184] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  325.814050][ T6413] usb 43-1: new high-speed USB device number 11 using vhci_hcd
[  325.821891][T11173] vhci_hcd: connection closed
[  325.827965][ T1136] vhci_hcd: stop threads
[  325.838943][ T1136] vhci_hcd: release socket
[  325.842069][ T1136] vhci_hcd: disconnect device
[  325.961188][T11191] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  325.963287][T11191] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  325.974039][T11191] vhci_hcd vhci_hcd.0: Device attached
[  325.995080][T11191] netlink: 'syz.0.1267': attribute type 4 has an invalid length.
[  325.997692][T11191] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1267'.
[  326.204101][   T29] usb 37-1: new high-speed USB device number 12 using vhci_hcd
[  326.446574][T11192] vhci_hcd: connection reset by peer
[  326.448820][ T1142] vhci_hcd: stop threads
[  326.450750][ T1142] vhci_hcd: release socket
[  326.452807][ T1142] vhci_hcd: disconnect device
[  326.706272][T11202] syz1: rxe_newlink: already configured on syz_tun
[  328.064049][ T6039] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  328.226433][ T6039] usb 7-1: config 0 has an invalid interface number: 50 but max is 0
[  328.229111][ T6039] usb 7-1: config 0 has no interface number 0
[  328.231039][ T6039] usb 7-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  328.240523][ T6039] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  328.243171][ T6039] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.261256][ T6039] usb 7-1: Product: syz
[  328.262610][ T6039] usb 7-1: Manufacturer: syz
[  328.267216][ T6039] usb 7-1: SerialNumber: syz
[  328.277584][ T6039] usb 7-1: config 0 descriptor??
[  328.292744][ T6039] yurex 7-1:0.50: USB YUREX device now attached to Yurex #0
[  328.566024][ T6039] usb 7-1: USB disconnect, device number 4
[  328.568931][ T6039] yurex 7-1:0.50: USB YUREX #0 now disconnected
[  328.733237][T11231] bridge40: entered promiscuous mode
[  328.786817][T11232] binder: 11229:11232 ioctl c0306201 80000240 returned -14
[  329.666247][T11245] 9pnet_virtio: no channels available for device 127.0.0.1
[  329.994096][ T6039] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  330.065501][T11257] siw: device registration error -23
[  330.164027][ T6039] usb 8-1: Using ep0 maxpacket: 32
[  330.167435][ T6039] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  330.172930][ T6039] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  330.183622][ T6039] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[  330.194082][ T6039] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  330.194970][T11258] bridge49: entered promiscuous mode
[  330.223925][ T6039] usb 8-1: config 0 interface 0 has no altsetting 0
[  330.249320][ T6039] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  330.252940][ T6039] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  330.255720][ T6039] usb 8-1: Product: syz
[  330.257099][ T6039] usb 8-1: Manufacturer: syz
[  330.258885][ T6039] usb 8-1: SerialNumber: syz
[  330.261997][ T6039] usb 8-1: config 0 descriptor??
[  330.267431][ T6039] ldusb 8-1:0.0: Interrupt in endpoint not found
[  330.550190][T11261] netlink: 244 bytes leftover after parsing attributes in process `syz.3.1286'.
[  330.817869][T11265] EXT4-fs error: 54 callbacks suppressed
[  330.817881][T11265] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.833479][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.843109][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.847753][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.852277][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.858880][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.863379][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.867287][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.871010][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.875252][T11266] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm dhcpcd-run-hook: iget: checksum invalid
[  330.954045][ T6413] vhci_hcd: vhci_device speed not set
[  331.208018][ T6039] usb 8-1: USB disconnect, device number 7
[  331.404137][   T29] vhci_hcd: vhci_device speed not set
[  331.523528][T11288] openvswitch: : Dropping previously announced user features
[  331.543707][T11288] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1290'.
[  331.715198][T11289] netlink: 'syz.1.1291': attribute type 1 has an invalid length.
[  332.227106][T11294] netlink: 'syz.3.1292': attribute type 1 has an invalid length.
[  333.026379][T11309] rdma_rxe: rxe_newlink: failed to add syz_tun
[  333.051115][T11309] netlink: 'syz.0.1298': attribute type 1 has an invalid length.
[  333.066444][T11313] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1300'.
[  333.296752][T11322] rdma_rxe: rxe_newlink: failed to add syz_tun
[  333.303838][T11322] netlink: 'syz.2.1302': attribute type 1 has an invalid length.
[  333.365883][T11327] bridge40: entered promiscuous mode
[  333.454838][T11331] netlink: 'syz.3.1304': attribute type 1 has an invalid length.
[  333.871684][T11335] trusted_key: encrypted_key: insufficient parameters specified
[  333.876083][T11335] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1305'.
[  334.604895][T11357] netlink: 'syz.1.1312': attribute type 3 has an invalid length.
[  334.607496][T11357] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1312'.
[  334.610681][T11357] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  334.707245][T11358] rdma_rxe: rxe_newlink: failed to add syz_tun
[  335.575168][T11371] rdma_rxe: rxe_newlink: failed to add syz_tun
[  335.607811][T11369] rdma_rxe: rxe_newlink: failed to add syz_tun
[  335.654860][T11369] netlink: 'syz.2.1314': attribute type 1 has an invalid length.
[  336.386360][ T5965] Bluetooth: hci2: unexpected event for opcode 0x0c25
[  336.460352][T11382] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1318'.
[  336.466311][T11382] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1318'.
[  336.661522][T11386] netlink: 'syz.2.1317': attribute type 10 has an invalid length.
[  336.702667][T11386] wlan1: mtu less than device minimum
[  336.709128][T11388] bridge41: entered promiscuous mode
[  337.682142][T11413] bridge41: entered promiscuous mode
[  337.707311][T11415] rdma_rxe: rxe_newlink: failed to add syz_tun
[  337.728993][T11414] rdma_rxe: rxe_newlink: failed to add syz_tun
[  337.762615][T11416] EXT4-fs error: 116 callbacks suppressed
[  337.762627][T11416] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  337.768751][T11414] netlink: 'syz.2.1330': attribute type 1 has an invalid length.
[  337.821477][T11417] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  338.635281][    T1] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm init: iget: checksum invalid
[  338.649422][    T1] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm init: iget: checksum invalid
[  338.688193][    T1] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm init: iget: checksum invalid
[  338.708637][    T1] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm init: iget: checksum invalid
[  338.713130][    T1] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm init: iget: checksum invalid
[  338.731071][    T1] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm init: iget: checksum invalid
[  338.740205][    T1] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm init: iget: checksum invalid
[  338.744892][    T1] EXT4-fs error (device sda1): ext4_lookup:1787: inode #2011: comm init: iget: checksum invalid
[  338.862051][   T73] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  338.931383][   T61] smc: removing ib device syz1
[  338.943754][ T6039] syz1: Port: 1 Link DOWN
[  338.947104][   T73] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  339.160516][   T73] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  339.262885][   T73] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  339.341722][   T61] ------------[ cut here ]------------
[  339.343669][   T61] GID entry ref leak for dev syz1 index 2 ref=42
[  339.346394][   T61] WARNING: CPU: 2 PID: 61 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x387/0x4b0
[  339.349725][   T61] Modules linked in:
[  339.351194][   T61] CPU: 2 UID: 0 PID: 61 Comm: kworker/u32:3 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  339.356938][   T61] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.360438][   T61] Workqueue: ib-unreg-wq ib_unregister_work
[  339.362325][   T61] RIP: 0010:gid_table_release_one+0x387/0x4b0
[  339.364575][   T61] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 b1 ad 32 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 e0 86 b9 8c e8 9a f9 f1 f8 90 <0f> 0b 90 90 e9 6e fe ff ff e8 8b ad 32 f9 48 8d bd 48 07 00 00 48
[  339.370889][   T61] RSP: 0018:ffffc900007cfb50 EFLAGS: 00010286
[  339.372843][   T61] RAX: 0000000000000000 RBX: ffff88805d0f9a00 RCX: ffffffff817ab108
[  339.375735][   T61] RDX: ffff88802073a440 RSI: ffffffff817ab115 RDI: 0000000000000001
[  339.378307][   T61] RBP: ffff88806c7d4000 R08: 0000000000000001 R09: 0000000000000000
[  339.380912][   T61] R10: 0000000000000000 R11: 0000000000000001 R12: ffffed100ba1f35b
[  339.383445][   T61] R13: 0000000000000002 R14: 000000000000002a R15: dffffc0000000000
[  339.385959][   T61] FS:  0000000000000000(0000) GS:ffff888097721000(0000) knlGS:0000000000000000
[  339.388618][   T61] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  339.390729][   T61] CR2: 00007f394ffd6200 CR3: 000000000e382000 CR4: 0000000000352ef0
[  339.393206][   T61] Call Trace:
[  339.394386][   T61]  <TASK>
[  339.395364][   T61]  ib_device_release+0xef/0x1e0
[  339.396967][   T61]  ? __pfx_ib_device_release+0x10/0x10
[  339.398661][   T61]  device_release+0xa4/0x240
[  339.400146][   T61]  kobject_put+0x1e7/0x5a0
[  339.401600][   T61]  put_device+0x1f/0x30
[  339.402930][   T61]  process_one_work+0x9cf/0x1b70
[  339.404623][   T61]  ? __pfx_process_one_work+0x10/0x10
[  339.406370][   T61]  ? assign_work+0x1a0/0x250
[  339.407852][   T61]  worker_thread+0x6c8/0xf10
[  339.409361][   T61]  ? __kthread_parkme+0x19e/0x250
[  339.410964][   T61]  ? __pfx_worker_thread+0x10/0x10
[  339.412683][   T61]  kthread+0x3c2/0x780
[  339.414107][   T61]  ? __pfx_kthread+0x10/0x10
[  339.415580][   T61]  ? rcu_is_watching+0x12/0xc0
[  339.417087][   T61]  ? __pfx_kthread+0x10/0x10
[  339.418543][   T61]  ret_from_fork+0x5d7/0x6f0
[  339.420007][   T61]  ? __pfx_kthread+0x10/0x10
[  339.421413][   T61]  ret_from_fork_asm+0x1a/0x30
[  339.422828][   T61]  </TASK>
[  339.423806][   T61] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  339.425988][   T61] CPU: 2 UID: 0 PID: 61 Comm: kworker/u32:3 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) 
[  339.429422][   T61] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.432470][   T61] Workqueue: ib-unreg-wq ib_unregister_work
[  339.434253][   T61] Call Trace:
[  339.435304][   T61]  <TASK>
[  339.436199][   T61]  dump_stack_lvl+0x3d/0x1f0
[  339.437587][   T61]  panic+0x71c/0x800
[  339.438769][   T61]  ? __pfx_panic+0x10/0x10
[  339.440093][   T61]  ? show_trace_log_lvl+0x29b/0x3e0
[  339.441643][   T61]  ? check_panic_on_warn+0x1f/0xb0
[  339.443155][   T61]  ? gid_table_release_one+0x387/0x4b0
[  339.444834][   T61]  check_panic_on_warn+0xab/0xb0
[  339.446342][   T61]  __warn+0xf6/0x3c0
[  339.447540][   T61]  ? __pfx_vprintk_emit+0x10/0x10
[  339.449074][   T61]  ? gid_table_release_one+0x387/0x4b0
[  339.450713][   T61]  report_bug+0x3c3/0x580
[  339.452001][   T61]  ? gid_table_release_one+0x387/0x4b0
[  339.453687][   T61]  handle_bug+0x184/0x210
[  339.455470][   T61]  exc_invalid_op+0x17/0x50
[  339.457316][   T61]  asm_exc_invalid_op+0x1a/0x20
[  339.459240][   T61] RIP: 0010:gid_table_release_one+0x387/0x4b0
[  339.461653][   T61] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 b1 ad 32 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 e0 86 b9 8c e8 9a f9 f1 f8 90 <0f> 0b 90 90 e9 6e fe ff ff e8 8b ad 32 f9 48 8d bd 48 07 00 00 48
[  339.469317][   T61] RSP: 0018:ffffc900007cfb50 EFLAGS: 00010286
[  339.471650][   T61] RAX: 0000000000000000 RBX: ffff88805d0f9a00 RCX: ffffffff817ab108
[  339.474945][   T61] RDX: ffff88802073a440 RSI: ffffffff817ab115 RDI: 0000000000000001
[  339.478114][   T61] RBP: ffff88806c7d4000 R08: 0000000000000001 R09: 0000000000000000
[  339.481226][   T61] R10: 0000000000000000 R11: 0000000000000001 R12: ffffed100ba1f35b
[  339.484395][   T61] R13: 0000000000000002 R14: 000000000000002a R15: dffffc0000000000
[  339.487655][   T61]  ? __warn_printk+0x198/0x350
[  339.489566][   T61]  ? __warn_printk+0x1a5/0x350
[  339.491527][   T61]  ib_device_release+0xef/0x1e0
[  339.493463][   T61]  ? __pfx_ib_device_release+0x10/0x10
[  339.495738][   T61]  device_release+0xa4/0x240
[  339.497716][   T61]  kobject_put+0x1e7/0x5a0
[  339.499623][   T61]  put_device+0x1f/0x30
[  339.501409][   T61]  process_one_work+0x9cf/0x1b70
[  339.503400][   T61]  ? __pfx_process_one_work+0x10/0x10
[  339.505570][   T61]  ? assign_work+0x1a0/0x250
[  339.507425][   T61]  worker_thread+0x6c8/0xf10
[  339.509462][   T61]  ? __kthread_parkme+0x19e/0x250
[  339.511606][   T61]  ? __pfx_worker_thread+0x10/0x10
[  339.513803][   T61]  kthread+0x3c2/0x780
[  339.515590][   T61]  ? __pfx_kthread+0x10/0x10
[  339.517580][   T61]  ? rcu_is_watching+0x12/0xc0
[  339.519627][   T61]  ? __pfx_kthread+0x10/0x10
[  339.521629][   T61]  ret_from_fork+0x5d7/0x6f0
[  339.523604][   T61]  ? __pfx_kthread+0x10/0x10
[  339.525724][   T61]  ret_from_fork_asm+0x1a/0x30
[  339.527756][   T61]  </TASK>
[  339.529739][   T61] Kernel Offset: disabled
[  339.531458][   T61] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:13:14  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffffc9000041f908 RCX=ffffc90000420001 RDX=ffffc9000041f910
RSI=ffffc9000041f8f8 RDI=ffffc9000041f878 RBP=0000000000000001 RSP=ffffc9000041f788
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=00000000000061a9
R12=ffffc9000041f8b8 R13=ffffc9000041f868 R14=ffffc9000041f908 R15=ffffc9000041f89c
RIP=ffffffff8b8454c0 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097521000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f394ff0c470 CR3=00000000241e6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000301 Opmask01=0000000000000001 Opmask02=0000000060000000 Opmask03=0000000000000000
Opmask04=00000000dfffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9911339b 00007ffc9911339b
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc991138a0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc991138a0 0000003000000018
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 54202020205b5d30 33313331372e3833 3320205b3e320000 64696c61766e6900
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5420202020515730 3331333137243233 3320205134320000 6463666176646300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c315b207465736e 75203a29676e6972 657473696765726e 7528203168746520
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e6b636568632065 7361656c70202c6e 6f69746172756769 666e6f6320746e65
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 747369736e6f636e 69206e6120687469 77207466656c206e 6565622065766168
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2079616d20432065 6361667265746e49 202e79646165726c 612064657474696d
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6d6f63207365676e 61686320656d6f73 2068746977206465 6c69616620747365
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000001578c63 RBX=0000000000000001 RCX=ffffffff8b844c49 RDX=0000000000000000
RSI=ffffffff8de2be6b RDI=ffffffff8c1578e0 RBP=ffffed1003bdc488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed1005666645 R10=ffff88802b33322b R11=0000000000000001
R12=0000000000000001 R13=ffff88801dee2440 R14=ffffffff90a99a50 R15=0000000000000000
RIP=ffffffff8b8437af RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097621000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f56e40 CR3=000000004a6ec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000104080 Opmask01=0000000000000080 Opmask02=00000000ffff7fdf Opmask03=0000000001041000
Opmask04=00000000ffffdfff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 44455a494c414954 494e495f43455355
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005558742b4de0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005558742b4d80
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 0000ff0000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73730c654eec6fa3 7373262b0758abf3
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737372b2 1f5c7300161f0601
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 317a79732f646e61 62696e69666e692f 6c6175747269762f 736563697665642f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 b9a4457f72807497 0000555d21ac47b0 0000000000000031 000000000000302e
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001c1 6c2f0073656c7572 0000003331703000 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f415f4400000054 53495300302f3032 0000000000010044 0000503255004f54
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85583cd5 RDI=ffffffff9b0ab980 RBP=ffffffff9b0ab940 RSP=ffffc900007cf4c0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=000000000000003a R14=ffffffff9b0ab940 R15=ffffffff85583c70
RIP=ffffffff85583cff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097721000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f394ffd6200 CR3=000000000e382000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080000010 Opmask01=0000000000001fff Opmask02=00000000ffff1fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000007000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000a60ce07b 00000000cec3662e
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 444b30a55a87b5c9
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 34304e3f6523727f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39500de5f0 00007f39500f0f8c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3900000010 000000003de00ec6
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc944a5f58 00007ffc944a5f90
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000649 00007f39500f138d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f39500de5f0 00007ffc944a5f90
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e6e6e6e6e6e6e6e 645f0f0a1d41180b
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a41531a01011c4e 5e3d171a1a530b02
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f72726520636269 6c67206c61746146 000000706d74752f 6e75722f7261762f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 640065676175676e 616c5f626400656c 7075745f62640062 6f6c625f62640065
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4800494b4d594b42 4d405f4e48004940 5c59585f4e48004e 43404e5f4e480049
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 68637461772e6575 6575716b726f7720 35353d6873657268 745f676f64686374
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e2e65726f632e74 656e2e6c74637379 73203034313d6873 657268745f676f64
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e617020343d7372 6f6e696d5f796361 67656c5f6d756e5f 6964656d6f632e69
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 64656d6f63203233 3d78616d5f736462 6e2032333d706f6f 6c5f78616d203233
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2bdf3228df3822 282b2e2fdf37342d 280b0412bfc92435 283232282c31242f
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 24bf242d282b232c 22ee222e312feebf 222e312feebf2435 283232282c31242f
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffff88802b227c98 RBX=0000000000000001 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000000 RDI=ffff88802b527c98 RBP=ffff88801c320000 RSP=ffffc900005e8dd8
R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000000 R11=0000000000000001
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8197f2d7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097821000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000561a50280e08 CR3=00000000241e6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000000001 Opmask02=0000000060000000 Opmask03=0000000000000000
Opmask04=00000000dfffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9911339b 00007ffc9911339b
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc991138a0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc991138a0 0000003000000018
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2065636976656428 20726f7272652073 662d34545845205d 3154202020205b00
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2065636376656422 2072657272652073 6627345452452057 3154202020205100
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2066657220797274 6e6520444947205d 3136542020205b5d 3936363334332e39
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e6b636568632065 7361656c70202c6e 6f69746172756769 666e6f6320746e65
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 747369736e6f636e 69206e6120687469 77207466656c206e 6565622065766168
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2079616d20432065 6361667265746e49 202e79646165726c 612064657474696d
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6d6f63207365676e 61686320656d6f73 2068746977206465 6c69616620747365
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000