last executing test programs:

2m48.841779199s ago: executing program 1 (id=1263):
mkdir(&(0x7f0000000000)='./file0\x00', 0x18a)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
socket$igmp(0x2, 0x3, 0x2)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x100, 0xfffffffe, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x100000, 0xffffffffffffffff}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x6}}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./bus\x00', 0x101800, 0x40)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)

2m47.918975759s ago: executing program 1 (id=1267):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xa4e01, 0x0)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2m47.813145484s ago: executing program 1 (id=1268):
munmap(&(0x7f0000901000/0x3000)=nil, 0x3000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x300, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e77, 0x20000000, 0x94a, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = gettid()
sched_setscheduler(r0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dc52)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r6 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7278, 0x0, 0x1, 0x18e}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x14, r4, 0x9c3fa077fa966179, 0x4, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)

2m46.177859168s ago: executing program 1 (id=1281):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x103091, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(0xffffffffffffffff, 0x80049367, &(0x7f0000000440))
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x2c, 0x2c, 0x400, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xfff3}, {0x0, 0xfff4}, {0x7, 0xe}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x1}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x4000800)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020, 0x0, <r5=>0x0}, 0x2020)
r6 = getuid()
stat(&(0x7f00000000c0)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000600)={0x90, 0x0, r5, {0x6, 0x0, 0x3, 0x3, 0x8, 0x7f, {0x0, 0x79f587b6, 0x5, 0x800, 0x6, 0x3, 0x7ff, 0x6, 0xffffffff, 0x1000, 0x6, r6, r7, 0xc00, 0x3}}}, 0x90)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75", @ANYRESDEC=r0, @ANYRES32])
chdir(&(0x7f0000000100)='./file0\x00')
open(&(0x7f0000000580)='./file0\x00', 0x20c082, 0x1df2a23c5997fa5f)
close_range(r0, r0, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x20201, 0x0)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, &(0x7f0000000040))
ptrace$poke(0x5, r8, &(0x7f0000000080), 0x0)

2m46.101806777s ago: executing program 1 (id=1286):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, 0x0, 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000140)={0x18, 0x0, 0x0, {0x4}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x80, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltgid}, {@debug={'debug', 0x3d, 0x3}}, {@cache_mmap}, {@access_uid}]}})

2m45.792575296s ago: executing program 1 (id=1290):
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
writev(r0, &(0x7f00000003c0), 0x100000000000022d)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$unix(0x1, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'gre0\x00'})
openat$userio(0xffffffffffffff9c, 0x0, 0x22242, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r4, 0x8914, &(0x7f0000000000))
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r5, 0x890b, &(0x7f0000000100)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6, @null, @bpq0, 0x3, [@bcast, @default, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
ioctl$sock_rose_SIOCADDRT(r5, 0x890b, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r7)
socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})

2m45.736115418s ago: executing program 32 (id=1290):
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
writev(r0, &(0x7f00000003c0), 0x100000000000022d)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$unix(0x1, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'gre0\x00'})
openat$userio(0xffffffffffffff9c, 0x0, 0x22242, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r4, 0x8914, &(0x7f0000000000))
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r5, 0x890b, &(0x7f0000000100)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6, @null, @bpq0, 0x3, [@bcast, @default, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
ioctl$sock_rose_SIOCADDRT(r5, 0x890b, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r7)
socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})

36.34064769s ago: executing program 2 (id=2553):
munmap(&(0x7f0000901000/0x3000)=nil, 0x3000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x300, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e77, 0x20000000, 0x94a, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x2c, 0x3ffa, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = gettid()
sched_setscheduler(r0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dc52)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r6 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7278, 0x0, 0x1, 0x18e}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x14, r4, 0x9c3fa077fa966179, 0x4, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)

35.341303278s ago: executing program 2 (id=2563):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES8=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000380)={r6, r3, 0x25, 0x2, @val=@tcx={@void, @value}}, 0x1c)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r7, 0xc008ae88, &(0x7f0000002400)=ANY=[@ANYBLOB="0100000000f2ffff73000040"])

35.161688598s ago: executing program 2 (id=2566):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0), 0x13f}}, 0x20)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)={0x28, r3, 0x301, 0x0, 0x20000000, {{}, {@val={0x8, 0x7}, @void, @val={0xc, 0x99, {0xfffffffe, 0x14}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x48045}, 0x20004000)
sendmsg$NL80211_CMD_PROBE_CLIENT(r1, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="ac000000", @ANYRES16=r3, @ANYBLOB="040028bd7000fcdbdf25540000000a000600ffffffffffff00000a0006000802110000010000"], 0x2c}, 0x1, 0x0, 0x0, 0x41}, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=@newtaction={0xd4, 0x30, 0x1, 0x0, 0x0, {}, [{0xc0, 0x1, [@m_mpls={0xbc, 0x14, 0x0, 0x0, {{0x9}, {0x34, 0x2, 0x0, 0x1, [@TCA_MPLS_PROTO={0x6, 0x4, 0x16}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_PROTO={0x6, 0x4, 0x2}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_PROTO={0x6, 0x4, 0x6}, @TCA_MPLS_BOS={0x5}]}, {0x60, 0x6, "58c411926e7f217f6a334af29a965cce72f444aa8a4beefc372fd4dc1824ef57457959adf0a19a78867f18c55ed0848a4c662e9524305f3e122b2f394d1e12233c08b58fdc2ed73f291fa103aa7aa4bbef19f927a4dcb2720f6488dc"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4}, 0x40882)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="24000000330001002bbd7000fedbdb2505000000080004"], 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008000}, 0x10)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x6, 'dvmrp1\x00'})
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000080)={0x1d, 0x0, 0x0, {0x0, 0x0, 0x4}, 0xfe}, 0x18)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000700)={'veth0_to_bond\x00', <r6=>0x0})
r7 = socket(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)=ANY=[@ANYBLOB="240000001800010000000000fedbdf251d01060008000900", @ANYRES32=r9, @ANYBLOB="0837710090f88e69202ee63bf323d50491d64a2ed35949b29dc0b80f78c8bc4439bbf34e0b11b82eb45d5042372922e8c3dadc49ddb0e557a714ff9beacb66d7f8b19269ff8e663d8837553579cfad97a7fdfe9b7dc50acf03a0753cdb1ea2e04ea16ebad524e98f6753685abac9017bade9c652ccc8723876047d9647899a042bc2b5eee5178215312a06f18d56fc55cee7d93c4fbc1ed56ca979df8fdb0caf2790f3ea79c1c81c23c2578ca7fa2fd9ea8e", @ANYRES32=r9, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r5, &(0x7f00000008c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x230000}, 0xc, &(0x7f0000000740)={&(0x7f0000000a00)={0xc4, 0x0, 0x8, 0x70bd2a, 0x25dfdbfd, {}, [@HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x0, 0x2, 'netpci0\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x0, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x44080}, 0x18)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x0, @dev, 0x4e24, 0x2, 'sed\x00', 0x0, 0xfffffffc}, 0x2c)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000000))
r10 = socket$nl_rdma(0x10, 0x3, 0x14)
r11 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_vs\x00')
pread64(r11, &(0x7f0000001600)=""/4098, 0x1002, 0x800000008)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073000000800000000800410073697700140033006c6f00000000000000f9ff0000000000"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
sendmsg$RDMA_NLDEV_CMD_SET(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, 0x1402, 0x1, 0x70bd2c, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000801}, 0x0)

35.081872459s ago: executing program 2 (id=2567):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x2, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004d00)=[{{0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x45)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f00000001c0)={0x9}, 0x10)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@ipv6_getaddrlabel={0x24, 0x4a, 0x1, 0x0, 0x0, {}, [@IFAL_LABEL={0x8}]}, 0x24}}, 0x0)
setsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000080)={0x402, 0x3}, 0x8)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000380)={0x0, 0x1}, 0x8)
sendto$inet(r2, &(0x7f0000000100)="ab", 0x34000, 0x40048c4, &(0x7f00000000c0)={0x2, 0x4e22, @local}, 0x10)
r4 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000340)=[{&(0x7f00000000c0)="beb66277", 0x4}, {&(0x7f0000000100)="68d7614a2391dd68cdcb4b546ca593354ea96527bcf59586edc152c0b28d59614318a6500b28e060aa62df860b65e9caa6bc4aa2e1f1dc0d2048eae320bcc522b72dbd54b43f323fec993b36ed1ef49f96d2fb39ef9a1e6228cf67f6caa68ddf1b871bab2356818a65794505ea9fc653fe279de639b007450b5f2c3915186e", 0x7f}, {&(0x7f0000000180)="73beb915659d1c26a8c994a79bea447d2e8261a9ef4f874aee739c317e88edd4a30cdfc81d5fedd19dae2b5a4c134ae9e4169ee79692cc847b", 0x39}, {&(0x7f0000000440)="ce8f9b65d489c617eabe3c3e805393ff1f92849897d88e36686ffe648983f91b8bf984ecc0ee10a6270a45c90cd6e7604ff8cbefab9f68955dfbea244e1174a81263b40a9ae9aa6f0e9fadea5f192f26", 0x50}, {&(0x7f0000000240)="6bc6c6d35d9ca0a9d7a97cc218725f45e6f43103f41cc26526f0e563696fa30f3339b837efab63f60bbb798cc5c4c5bb948bba75f49affce0d39c8543fdbe9bf991ef91027e0dc4a156c5330a4ec0b135e21c26e948d6371ee2e7087f41e4322e238672334f65f081aace2e5e886c59b2a06f9b0532e9a2365c9f749f99d6bcf04cc5ae72c5f184d90e85c4a6771ed3ecc1adfcf507ecf6a4ad8d28f55947cd24b4a6af1c0c5bba03244edaabe03ff5607dede4aa0514dd94bbf457f1131d0d019", 0xc1}], 0x5)
r5 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x40000)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r5, 0xc2604111, &(0x7f00000003c0)={0x7ff, [[0x9, 0x1, 0x5, 0x28, 0x5, 0x101, 0x80, 0xc000], [0x80, 0x10001, 0x5, 0x8, 0x7638, 0xfffffffb, 0x3, 0x3fd], [0xa, 0x3, 0x62, 0x536, 0xb, 0x5, 0x664, 0xfff]], '\x00', [{0x8, 0xff, 0x1, 0x0, 0x1, 0x1}, {0xf48, 0x5}, {0x9, 0x2, 0x1}, {0x4, 0x10001000, 0x0, 0x1}, {0x4, 0x2, 0x1, 0x1}, {0x3, 0x1}, {0x6, 0x7fffffff, 0x1}, {0xa, 0x101, 0x0, 0x1, 0x1, 0x1}, {0x7, 0xb7, 0x0, 0x1, 0x0, 0x1}, {0x8, 0x4, 0x1}, {0x7ff, 0x8000, 0x0, 0x1, 0x1, 0x1}, {0x4eee, 0x1}], '\x00', 0x1b})
ioctl$sock_netrom_SIOCADDRT(r1, 0x890b, &(0x7f0000000000)={0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bpq0, 0x10001, 'syz1\x00', @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x1, 0x0, [@null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @default]})

34.922082336s ago: executing program 2 (id=2568):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0xe, 0x11, &(0x7f0000000200)={0x11, 0x0, r1}, 0x14)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r3 = openat$mice(0xffffffffffffff9c, &(0x7f0000000240), 0x20000)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000280)={0x1, 0x1000}, 0x4)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = dup(r4)
getsockname$packet(r5, 0x0, &(0x7f00000001c0))
ioctl$USBDEVFS_FORBID_SUSPEND(r5, 0x5521)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0x8})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MPATH(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x44, r6, 0x8, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x5, 0x25}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}]}, 0x44}, 0x1, 0x0, 0x0, 0xc000018}, 0x20000000)

34.812056843s ago: executing program 2 (id=2569):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000180)=0x1)
write$binfmt_elf32(r0, 0x0, 0x4cd)
ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000040))
write$dsp(r0, &(0x7f0000000140)="755a5398d512d39077459e67ee110daaf0413bc745ef85b89f2141d513969bd8", 0xffaa) (fail_nth: 5)

19.172863742s ago: executing program 33 (id=2569):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000180)=0x1)
write$binfmt_elf32(r0, 0x0, 0x4cd)
ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000040))
write$dsp(r0, &(0x7f0000000140)="755a5398d512d39077459e67ee110daaf0413bc745ef85b89f2141d513969bd8", 0xffaa) (fail_nth: 5)

2.461458206s ago: executing program 5 (id=2877):
clock_nanosleep(0x2, 0x0, &(0x7f0000000080)={0x0, 0x989680}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000d00030001332564aa58b9a64411f6bbf44dc48f57", 0x39}], 0x1) (fail_nth: 9)

1.861465401s ago: executing program 0 (id=2882):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x70bd2b, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8, 0x11, 0x80000001}, @ETHTOOL_A_COALESCE_PKT_RATE_HIGH={0x8, 0x12, 0x6b63d15d}]}, 0x3c}}, 0x0) (fail_nth: 9)

1.741582002s ago: executing program 0 (id=2885):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000000c0), 0x1048b, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000003"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = ioctl$UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f00000004c0)={0x0, 0x7, [{0xffffffffffffffff, 0x0, 0xfffffffff0000000, 0xfffffffff0001000}, {0xffffffffffffffff, 0x0, 0x2000, 0x1000000000000}, {0xffffffffffffffff, 0x0, 0x1000000, 0xfffff000}, {0xffffffffffffffff, 0x0, 0x1000000}, {0xffffffffffffffff, 0x0, 0xfffefffff0000000, 0xfffffffff0000000}, {0xffffffffffffffff, 0x0, 0xfffffffffffff000}, {0xffffffffffffffff, 0x0, 0x8000, 0x10000}]})
ioctl$DMA_BUF_SET_NAME_A(r4, 0x40046201, &(0x7f0000000080)='/dev/nullb0\x00')
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x101800, 0x3)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=virtio,access=', @ANYRESDEC=r6])
quotactl$Q_QUOTAOFF(0xffffffff80000301, &(0x7f0000000000)=@nullb, r6, 0x0)
fdatasync(r5)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'wg0\x00', <r7=>0x0})
r8 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580), 0x4)
r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r9, 0x20, &(0x7f0000000100)={0x0, 0x0, <r10=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r10, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x2, 0x14, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8}, [@map_val={0x18, 0x8, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x800}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fffffff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}, @func={0x85, 0x0, 0x1, 0x0, 0x4}, @ldst={0x3, 0x3, 0x1, 0x4, 0x3, 0x1, 0xfffffffffffffffc}]}, &(0x7f0000000380)='GPL\x00', 0x0, 0xed, &(0x7f0000000780)=""/237, 0x41100, 0x0, '\x00', r7, @fallback=0x29, r8, 0x8, &(0x7f0000000880)={0x5, 0x3}, 0x8, 0x10, &(0x7f00000008c0)={0x3, 0xe, 0xa, 0x4}, 0x10, r10, r3, 0x4, &(0x7f0000000900)=[r0, r0, r0, r2, r0], &(0x7f0000000940)=[{0x5, 0x2, 0xa}, {0x2, 0x2, 0xe, 0x4}, {0x0, 0x1, 0x6, 0x4}, {0x2, 0x4, 0xa}], 0x10, 0x101, @void, @value}, 0x94)

1.591905471s ago: executing program 0 (id=2886):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000007, 0x2010, r0, 0x0)
r2 = userfaultfd(0x1)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x11c, 0x0, 0x0, 0x4)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x110, &(0x7f00000000c0)=0x4, 0x0, 0x4) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x110, &(0x7f00000000c0)=0x4, 0x0, 0x4)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fdinfo/4\x00')
pread64(r3, &(0x7f0000002140)=""/17, 0x11, 0x0) (async)
pread64(r3, &(0x7f0000002140)=""/17, 0x11, 0x0)

1.5862786s ago: executing program 0 (id=2887):
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40186f40, &(0x7f0000000440)=0x1f)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="b4050000000a000071126600d70e1d0c8871eb6fbfda78a130ac3900000000b79b0000000000009500000000000000e80d0ceb54e1aa093f6c3c73e68d55754906f26b089f250add7489ff3b5297097bed5eaffef771fcff7be1cc5c2e966764675ba4d6873dfd27ad80e8ed"], 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000180)={@empty, 0x800, 0x0, 0x3, 0x3}, 0x20)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000080)={0x1d, 0x0, 0x3, {0x0, 0x0, 0x4}, 0xfe}, 0x18)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000000))
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000440)='oom_score_adj\x00')
write$6lowpan_enable(r5, &(0x7f0000000340)='1', 0x1)
write$6lowpan_enable(r5, &(0x7f00000002c0)='1', 0x1)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x20, 0x0)
r7 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r7, 0x40088a01, &(0x7f0000000000)=0x8000)
r8 = socket(0x10, 0x803, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000040))
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000000c0)={[{0xefb, 0x7fd, 0x2, 0x80, 0x0, 0xa5, 0xbd, 0xc, 0xa9, 0x6, 0x0, 0x0, 0x40000000}, {0x8, 0x4005, 0x0, 0x0, 0xb3, 0x0, 0x5, 0x40, 0x99, 0xff, 0x3, 0x0, 0x200}, {0x3fe, 0x2, 0x0, 0xfd, 0x0, 0x7, 0xb3, 0x9, 0x3, 0x5, 0x80, 0x1, 0xf}], 0x5})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_expedited', 0x101a02, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1.586158518s ago: executing program 5 (id=2888):
r0 = accept4$rose(0xffffffffffffffff, &(0x7f0000000000)=@short={0xb, @dev, @rose, 0x1, @netrom}, &(0x7f0000000040)=0x1c, 0x40800)
getsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f0000000080), &(0x7f00000000c0)=0x10)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x80542, 0x0)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r2}, &(0x7f0000000080), &(0x7f0000000300)=r3}, 0x20)
r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000002400)=ANY=[@ANYBLOB="0100000000f2ffff73000040"])
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)

1.331080603s ago: executing program 5 (id=2889):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x9, 0x2040)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000040))
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_FORWARD(r3, 0xc0844123, &(0x7f0000000080)=0x5)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f00000001c0)={{&(0x7f000023e000/0x4000)=nil, 0x4000}, 0x1})
r4 = socket$kcm(0x2, 0x1000000000000002, 0x0)
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000240)={{&(0x7f0000ffc000/0x2000)=nil, 0x2000}})
sendmsg$inet(r4, &(0x7f0000000180)={&(0x7f0000000280)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[], 0xffffffffffffffa7}, 0x4002810)

1.115999552s ago: executing program 4 (id=2892):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab968588a8", 0xe, 0x11, &(0x7f0000000200)={0x11, 0x0, r1}, 0x14)

1.111599515s ago: executing program 4 (id=2893):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000002200), 0xffffffffffffffff)
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x7df1, 0x101000)
ioctl$SG_BLKSECTGET(r2, 0x1267, &(0x7f0000000180))
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000002240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fbdbdf2501000000040007800c00020004000000000000000c0004000000000001"], 0x30}, 0x1, 0x0, 0x0, 0x8000010}, 0x4)

981.37606ms ago: executing program 4 (id=2894):
clock_nanosleep(0x2, 0x0, &(0x7f0000000080)={0x0, 0x989680}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="3900050013000318680907070000000f0000ff3f04000000170a001700000000040037000d00030001332564aa58b9a64411f6bbf44dc48f57", 0x39}], 0x1)

839.220018ms ago: executing program 3 (id=2896):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000140)={0x18, 0x0, 0x0, {0x4}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0xfd, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x80, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid}]}})

838.989626ms ago: executing program 3 (id=2897):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, 0x0}, 0x20000010)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="bb64753734e50b1e3f220065b7a35d32", 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="1709"], 0x14}, 0x1, 0x620b}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffc)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = socket$kcm(0x29, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x803, 0x6)
r6 = syz_init_net_socket$ax25(0x3, 0x5, 0xcf)
accept4$ax25(r6, &(0x7f0000000240)={{}, [@remote, @netrom, @bcast, @null, @rose, @rose, @netrom, @null]}, &(0x7f00000001c0)=0x48, 0x80800)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r7, &(0x7f0000000340)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x89e0, &(0x7f0000000180)={r5, r3})
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x89e0, &(0x7f0000000340)={r5, r3})
write$binfmt_misc(r2, &(0x7f0000000000), 0xd)

739.019941ms ago: executing program 3 (id=2898):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, &(0x7f00000002c0)={'#! ', './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff8)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x106, 0x2}}, 0xfffffffffffffe0e)
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r3, &(0x7f0000000100)={0x12, 0x10, 0xfa00, {&(0x7f00000000c0), r2, r0}}, 0x18)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f00000005c0)={0x15, 0x110, 0xfa00, {r2, 0xfffffffc, 0x0, 0x30, 0x0, @ib={0x1b, 0x8, 0x5, {"000000000a000000000400"}, 0x1, 0x2, 0x4}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x80000001}}}, 0x118)
close_range(r0, r0, 0x0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

738.734122ms ago: executing program 3 (id=2899):
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0xa, 0x0, 0x0, 0x0, 0x0, {[@md5sig={0x1d, 0x12, "d285b6853bc4dc54c6910c1d66f8841a"}]}}}}}}}, 0x0)
syz_emit_ethernet(0x2b, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffffffffff00000000019078ac1414bbac1414aa0800907800000000cf"], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000000)={0xf010000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
add_key$user(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000140)="788dc6d2ed2090bbfaf3a0a0406f", 0xe, 0xfffffffffffffffe)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900010073797a31000000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d616376746170000000080001400000000514"], 0xe8}}, 0x0)

644.935123ms ago: executing program 3 (id=2900):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x1c)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r0, 0x4068aea3, &(0x7f00000000c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000140)={[{@mpol={'mpol', 0x3d, {'prefer', '', @val={0x3a, [0x30, 0x2d]}}}, 0x4e}]})

644.519302ms ago: executing program 3 (id=2901):
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000300)=""/180}, 0x20)
r1 = socket$inet6(0xa, 0x802, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000002940), 0x62, 0x4890)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000180)='sys_enter\x00', r2, 0x0, 0x1}, 0x18)
getpid()
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_STATUS(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, r4, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000010}, 0x814)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
open$dir(&(0x7f0000000000)='./file0\x00', 0x1093c1, 0x42)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r6)
sendmsg$NLBL_MGMT_C_ADDDEF(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r7, 0x1, 0x70bd26, 0x25dfdbff, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x80014)
sendmsg$NLBL_MGMT_C_ADDDEF(r5, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x34, r7, 0x10, 0x70bd26, 0x25dfdbff, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @rand_addr=0x64010102}]}, 0x34}}, 0x4000004)
futimesat(0xffffffffffffff9c, 0x0, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
close(r8)

591.633448ms ago: executing program 0 (id=2902):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x41)
r1 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_REWIND(r1, 0xc0844123, &(0x7f00000000c0)=0x812)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000001400)={{0x80}, 'port1\x00', 0xe3, 0x1b1c07})
syz_open_dev$sndmidi(&(0x7f0000000000), 0x1, 0x20000)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000480), 0x40, 0x0)

591.27467ms ago: executing program 0 (id=2903):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6d", 0x9)
r1 = accept4(r0, 0x0, 0x0, 0x80000)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=@deltclass={0x24, 0x29, 0x100, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xa, 0xfff2}, {0xfff5, 0x3}, {0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20048851}, 0x894)
syz_io_uring_setup(0x3a, &(0x7f0000000080)={0x0, 0x7244, 0x10100, 0x3}, &(0x7f0000000240), &(0x7f0000000580))
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000440)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB], 0x34}}, 0x4004010)
r7 = socket(0x2, 0x3, 0x6)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x41, &(0x7f0000000240)=0x45d8, 0x4)
mkdir(&(0x7f0000000540)='./cgroup/../file0\x00', 0x131)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x57, 0xf7fe, 0x7ff, {0x0, 0x1}, {0x61, 0x1000}, @cond=[{0x7, 0x218, 0x7, 0x0, 0x2, 0x3}, {0x8, 0x5, 0x1, 0x52, 0x9, 0xd}]})
r8 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r8, &(0x7f0000000040)="e2", 0x12d8)
recvmsg$unix(r7, &(0x7f0000000140)={&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000040)=[{&(0x7f0000000640)=""/202, 0xca}], 0x1, &(0x7f0000000380)=[@cred={{0x18}}, @cred={{0x18}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88}, 0x40)

398.936821ms ago: executing program 5 (id=2904):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x24, r2, 0x1, 0xfffff000, 0x101, {{}, {}, {0x8, 0x11, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x20008080}, 0x0)

321.551724ms ago: executing program 5 (id=2905):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000140)=0x8d)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r2, 0x18000000000002a0, 0xe00, 0x0, 0x0, 0x0, 0x9, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$inet_int(r0, 0x0, 0x22, &(0x7f00000000c0)=0xffffff18, 0x3)

220.493992ms ago: executing program 5 (id=2906):
munmap(&(0x7f0000901000/0x3000)=nil, 0x3000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x300, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e77, 0x20000000, 0x94a, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x2c, 0x3ffa, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = gettid()
sched_setscheduler(r0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dc52)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r6 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7278, 0x0, 0x1, 0x18e}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x14, r4, 0x9c3fa077fa966179, 0x4, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)

111.229054ms ago: executing program 4 (id=2907):
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$loop(&(0x7f00000001c0), 0x4047fffffffffffd, 0x480040)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
add_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="ff53aca3", @ANYRES16=r1, @ANYBLOB="01002bbd7000fbdbdf250b000000"], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x8014)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r0)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='./control\x00', 0x40000000)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r2, 0xc01064d1, &(0x7f0000000080)={0x1, 0x0, &(0x7f0000000000)=[0x0]})
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000bc0)={{{@in=@loopback, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x2, 0x0, 0x8, 0x8, 0x4}, {0x4}, 0x0, 0x0, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3f}, 0x4d1, 0x32}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x8}}, 0xe8)
r5 = syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="3400000031284811360000bb621cc3c92450968358eb3e0dddabe58c", @ANYRES16=r5, @ANYBLOB="01002cbd701004000000050000000600010005000000080009000200000008000b000000000008000c00a80a0000"], 0x34}, 0x1, 0x0, 0x0, 0x20008000}, 0x30)
socket$inet(0x2, 0x4000000000000001, 0x0)
r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000740), 0x400, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x8, 0x1010, r7, 0x10000000)
socket$igmp(0x2, 0x3, 0x2)
socket$inet6(0xa, 0x1, 0x0)

1.285607ms ago: executing program 4 (id=2908):
syz_emit_ethernet(0x7a, &(0x7f00000000c0)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x44, 0x2f, 0x0, @remote, @private0, {[@dstopts={0xc, 0x1, '\x00', [@pad1, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}, @dstopts={0x5e}, @srh={0x3c, 0x2, 0x4, 0x1, 0x5, 0x18, 0x8, [@local]}], {{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x180}}}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000180), r0)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, r2, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@FOU_ATTR_LOCAL_V6={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @broadcast}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)=ANY=[@ANYBLOB="19030000005420264aad8a9dca601f618b20bc865c7412b013fd5a9fffc4ed8772abcd372f823a14dbe88ce9aa33105660af3e149a31b6c83457ad53e4af32dbac174036fa2200", @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r3, @ANYBLOB="0800a000ea08000008009f000d000000080026006c090000"], 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

0s ago: executing program 4 (id=2909):
fsopen(0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0542, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x40801, 0x0)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='timers\x00')
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000180)={{0xffffffffffffffff, 0x2, 0x1, 0x0, 0x2}})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0x2, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0xffffffe}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x44080)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=@newqdisc={0x48, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x5, 0x3a5}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80015}, 0x4000)
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @loopback}, 0x10, 0x0}, 0x34004000)

0s ago: executing program 4 (id=2910):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x7600, 0xfeff) (fail_nth: 9)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x12, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

kernel console output (not intermixed with test programs):

che_noprof+0x57/0x3e0
[  306.936790][T14016]  should_failslab+0xc2/0x120
[  306.936804][T14016]  __kmalloc_cache_noprof+0x6a/0x3e0
[  306.936815][T14016]  ? rtnl_newlink+0x11b/0x2000
[  306.936832][T14016]  ? __pfx_rtnl_newlink+0x10/0x10
[  306.936846][T14016]  rtnl_newlink+0x11b/0x2000
[  306.936865][T14016]  ? __pfx_rtnl_newlink+0x10/0x10
[  306.936879][T14016]  ? find_held_lock+0x2b/0x80
[  306.936891][T14016]  ? avc_has_perm_noaudit+0x117/0x3b0
[  306.936906][T14016]  ? avc_has_perm_noaudit+0x149/0x3b0
[  306.936919][T14016]  ? cred_has_capability.isra.0+0x193/0x2f0
[  306.936937][T14016]  ? __lock_acquire+0x622/0x1c90
[  306.936959][T14016]  ? find_held_lock+0x2b/0x80
[  306.936969][T14016]  ? __pfx_rtnl_newlink+0x10/0x10
[  306.936983][T14016]  ? __pfx_rtnl_newlink+0x10/0x10
[  306.936997][T14016]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  306.937013][T14016]  ? __pfx_rtnl_newlink+0x10/0x10
[  306.937028][T14016]  rtnetlink_rcv_msg+0x95e/0xe90
[  306.937045][T14016]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  306.937064][T14016]  ? ref_tracker_free+0x37c/0x830
[  306.937095][T14016]  netlink_rcv_skb+0x155/0x420
[  306.937119][T14016]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  306.937135][T14016]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  306.937158][T14016]  ? netlink_deliver_tap+0x1ae/0xd30
[  306.937177][T14016]  netlink_unicast+0x53a/0x7f0
[  306.937196][T14016]  ? __pfx_netlink_unicast+0x10/0x10
[  306.937217][T14016]  netlink_sendmsg+0x8d1/0xdd0
[  306.937237][T14016]  ? __pfx_netlink_sendmsg+0x10/0x10
[  306.937260][T14016]  ____sys_sendmsg+0xa98/0xc70
[  306.937278][T14016]  ? copy_msghdr_from_user+0x10a/0x160
[  306.937292][T14016]  ? __pfx_____sys_sendmsg+0x10/0x10
[  306.937316][T14016]  ___sys_sendmsg+0x134/0x1d0
[  306.937331][T14016]  ? __pfx____sys_sendmsg+0x10/0x10
[  306.937344][T14016]  ? __lock_acquire+0x622/0x1c90
[  306.937375][T14016]  __sys_sendmsg+0x16d/0x220
[  306.937389][T14016]  ? __pfx___sys_sendmsg+0x10/0x10
[  306.937412][T14016]  do_syscall_64+0xcd/0x4c0
[  306.937429][T14016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.937441][T14016] RIP: 0033:0x7f7c8418e969
[  306.937450][T14016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  306.937461][T14016] RSP: 002b:00007f7c8501c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  306.937471][T14016] RAX: ffffffffffffffda RBX: 00007f7c843b5fa0 RCX: 00007f7c8418e969
[  306.937478][T14016] RDX: 0000000000000840 RSI: 0000200000000140 RDI: 000000000000000d
[  306.937485][T14016] RBP: 00007f7c8501c090 R08: 0000000000000000 R09: 0000000000000000
[  306.937492][T14016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  306.937498][T14016] R13: 0000000000000000 R14: 00007f7c843b5fa0 R15: 00007ffe0c5f32a8
[  306.937512][T14016]  </TASK>
[  307.094033][T14022] trusted_key: encrypted_key: insufficient parameters specified
[  307.114183][T14020] FAULT_INJECTION: forcing a failure.
[  307.114183][T14020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  307.118276][T14020] CPU: 0 UID: 0 PID: 14020 Comm: syz.3.2681 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  307.118292][T14020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  307.118300][T14020] Call Trace:
[  307.118304][T14020]  <TASK>
[  307.118309][T14020]  dump_stack_lvl+0x16c/0x1f0
[  307.118327][T14020]  should_fail_ex+0x512/0x640
[  307.118347][T14020]  __kvm_read_guest_page+0x186/0x250
[  307.118362][T14020]  kvm_fetch_guest_virt+0x128/0x1a0
[  307.118383][T14020]  __do_insn_fetch_bytes+0x41b/0x6d0
[  307.118403][T14020]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[  307.118420][T14020]  ? find_held_lock+0x2b/0x80
[  307.118431][T14020]  ? pit_ioport_write+0x16d/0xab0
[  307.118449][T14020]  x86_decode_insn+0xb90/0x5540
[  307.118463][T14020]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  307.118482][T14020]  ? vmx_segment_cache_test_set+0x14b/0x400
[  307.118500][T14020]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  307.118518][T14020]  ? __pfx_x86_decode_insn+0x10/0x10
[  307.118531][T14020]  ? vmx_cache_reg+0x333/0x5e0
[  307.118545][T14020]  ? kvm_register_read_raw+0xe9/0x240
[  307.118557][T14020]  ? init_decode_cache+0xd/0x210
[  307.118569][T14020]  ? init_emulate_ctxt+0x337/0x510
[  307.118583][T14020]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  307.118596][T14020]  ? __pfx_pit_ioport_write+0x10/0x10
[  307.118612][T14020]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  307.118632][T14020]  x86_emulate_instruction+0x9b2/0x1a90
[  307.118646][T14020]  ? skip_emulated_instruction+0x20f/0x4d0
[  307.118659][T14020]  ? __pfx_skip_emulated_instruction+0x10/0x10
[  307.118674][T14020]  handle_ud+0x103/0x280
[  307.118685][T14020]  ? __pfx_handle_ud+0x10/0x10
[  307.118697][T14020]  ? __lock_acquire+0xb8a/0x1c90
[  307.118712][T14020]  ? __vmx_complete_interrupts+0x111/0x4e0
[  307.118726][T14020]  handle_exception_nmi+0x856/0x1740
[  307.118746][T14020]  ? __pfx_handle_exception_nmi+0x10/0x10
[  307.118764][T14020]  vmx_handle_exit+0x1243/0x1bc0
[  307.118784][T14020]  vcpu_run+0x3155/0x54b0
[  307.118802][T14020]  ? __pfx_vcpu_run+0x10/0x10
[  307.118817][T14020]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  307.118834][T14020]  ? __local_bh_enable_ip+0xa4/0x120
[  307.118848][T14020]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  307.118860][T14020]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  307.118877][T14020]  kvm_vcpu_ioctl+0x5e9/0x1680
[  307.118892][T14020]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  307.118909][T14020]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  307.118928][T14020]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  307.118950][T14020]  ? hook_file_ioctl_common+0x145/0x410
[  307.118966][T14020]  ? selinux_file_ioctl+0x180/0x270
[  307.118982][T14020]  ? selinux_file_ioctl+0xb4/0x270
[  307.118999][T14020]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  307.119012][T14020]  __x64_sys_ioctl+0x18b/0x210
[  307.119032][T14020]  do_syscall_64+0xcd/0x4c0
[  307.119048][T14020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.119060][T14020] RIP: 0033:0x7f7c8418e969
[  307.119069][T14020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.119081][T14020] RSP: 002b:00007f7c8501c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  307.119095][T14020] RAX: ffffffffffffffda RBX: 00007f7c843b5fa0 RCX: 00007f7c8418e969
[  307.119102][T14020] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  307.119109][T14020] RBP: 00007f7c8501c090 R08: 0000000000000000 R09: 0000000000000000
[  307.119115][T14020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  307.119122][T14020] R13: 0000000000000000 R14: 00007f7c843b5fa0 R15: 00007ffe0c5f32a8
[  307.119136][T14020]  </TASK>
[  307.250737][ T5991] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  307.258528][T14025] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2682'.
[  307.402852][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  307.424451][ T5991] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  307.429026][ T5991] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  307.433761][ T5991] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  307.437382][ T5991] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.438148][T14035] tipc: Enabled bearer <eth:team0>, priority 0
[  307.446360][T14014] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  307.452234][ T5991] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  307.562949][ T5941] Bluetooth: hci0: command 0x0419 tx timeout
[  307.588318][T14035] netlink: 'syz.4.2686': attribute type 1 has an invalid length.
[  307.673593][T14014] block device autoloading is deprecated and will be removed.
[  307.677173][T14014] syz.0.2678: attempt to access beyond end of device
[  307.677173][T14014] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  307.730155][ T5991] usb 5-1: USB disconnect, device number 36
[  307.735654][T14040] netlink: 1624 bytes leftover after parsing attributes in process `syz.4.2687'.
[  307.768749][T14042] Bluetooth: hci0: unsupported parameter 2327
[  307.770765][T14042] Bluetooth: hci0: unsupported parameter 64
[  307.772674][T14042] Bluetooth: hci0: unsupported parameter 2327
[  307.776748][T14042] Bluetooth: hci0: unsupported parameter 64
[  307.778612][T14042] FAULT_INJECTION: forcing a failure.
[  307.778612][T14042] name failslab, interval 1, probability 0, space 0, times 0
[  307.782532][T14042] CPU: 1 UID: 0 PID: 14042 Comm: syz.4.2688 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  307.782547][T14042] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  307.782554][T14042] Call Trace:
[  307.782558][T14042]  <TASK>
[  307.782563][T14042]  dump_stack_lvl+0x16c/0x1f0
[  307.782582][T14042]  should_fail_ex+0x512/0x640
[  307.782599][T14042]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  307.782614][T14042]  should_failslab+0xc2/0x120
[  307.782628][T14042]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  307.782641][T14042]  ? __alloc_skb+0x2b2/0x380
[  307.782659][T14042]  __alloc_skb+0x2b2/0x380
[  307.782672][T14042]  ? __pfx___alloc_skb+0x10/0x10
[  307.782685][T14042]  ? __pfx_bt_warn+0x10/0x10
[  307.782703][T14042]  mgmt_cmd_complete+0x4f/0x550
[  307.782720][T14042]  set_def_system_config+0x93b/0x1520
[  307.782749][T14042]  ? __pfx_mgmt_init_hdev+0x10/0x10
[  307.782769][T14042]  hci_sock_sendmsg+0x1522/0x25f0
[  307.782788][T14042]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  307.782808][T14042]  sock_write_iter+0x4fc/0x5b0
[  307.782826][T14042]  ? __pfx_sock_write_iter+0x10/0x10
[  307.782850][T14042]  ? bpf_lsm_file_permission+0x9/0x10
[  307.782865][T14042]  ? security_file_permission+0x71/0x210
[  307.782884][T14042]  ? rw_verify_area+0xcf/0x680
[  307.782904][T14042]  vfs_write+0x6c7/0x1150
[  307.782916][T14042]  ? __pfx_sock_write_iter+0x10/0x10
[  307.782935][T14042]  ? __pfx_vfs_write+0x10/0x10
[  307.782946][T14042]  ? find_held_lock+0x2b/0x80
[  307.782967][T14042]  ksys_write+0x1f8/0x250
[  307.782978][T14042]  ? __pfx_ksys_write+0x10/0x10
[  307.782995][T14042]  do_syscall_64+0xcd/0x4c0
[  307.783011][T14042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.783023][T14042] RIP: 0033:0x7f501458e969
[  307.783033][T14042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.783044][T14042] RSP: 002b:00007f5015477038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  307.783055][T14042] RAX: ffffffffffffffda RBX: 00007f50147b5fa0 RCX: 00007f501458e969
[  307.783062][T14042] RDX: 000000000000000d RSI: 0000200000000000 RDI: 0000000000000004
[  307.783069][T14042] RBP: 00007f5015477090 R08: 0000000000000000 R09: 0000000000000000
[  307.783075][T14042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  307.783082][T14042] R13: 0000000000000000 R14: 00007f50147b5fa0 R15: 00007ffcadede028
[  307.783096][T14042]  </TASK>
[  308.132907][  T834] usb 9-1: new high-speed USB device number 18 using dummy_hcd
[  308.284377][  T834] usb 9-1: too many endpoints for config 26 interface 0 altsetting 0: 253, using maximum allowed: 30
[  308.287753][  T834] usb 9-1: config 26 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  308.291133][  T834] usb 9-1: config 26 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  308.294526][  T834] usb 9-1: config 26 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  308.300682][  T834] usb 9-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  308.303804][  T834] usb 9-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  308.306325][  T834] usb 9-1: Manufacturer: syz
[  308.368028][T14051] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  308.442844][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  308.636086][T14058] FAULT_INJECTION: forcing a failure.
[  308.636086][T14058] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  308.641396][T14058] CPU: 1 UID: 0 PID: 14058 Comm: syz.3.2695 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  308.641420][T14058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  308.641431][T14058] Call Trace:
[  308.641438][T14058]  <TASK>
[  308.641446][T14058]  dump_stack_lvl+0x16c/0x1f0
[  308.641474][T14058]  should_fail_ex+0x512/0x640
[  308.641502][T14058]  _copy_from_user+0x2e/0xd0
[  308.641532][T14058]  move_addr_to_kernel+0x65/0x170
[  308.641551][T14058]  __sys_sendto+0x1be/0x520
[  308.641572][T14058]  ? __pfx___sys_sendto+0x10/0x10
[  308.641612][T14058]  ? ksys_write+0x1ac/0x250
[  308.641634][T14058]  ? __pfx_ksys_write+0x10/0x10
[  308.641656][T14058]  __x64_sys_sendto+0xe0/0x1c0
[  308.641675][T14058]  ? do_syscall_64+0x91/0x4c0
[  308.641697][T14058]  ? lockdep_hardirqs_on+0x7c/0x110
[  308.641719][T14058]  do_syscall_64+0xcd/0x4c0
[  308.641743][T14058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.641762][T14058] RIP: 0033:0x7f7c8418e969
[  308.641777][T14058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.641793][T14058] RSP: 002b:00007f7c8501c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  308.641811][T14058] RAX: ffffffffffffffda RBX: 00007f7c843b5fa0 RCX: 00007f7c8418e969
[  308.641824][T14058] RDX: 000000000000000e RSI: 0000200000000100 RDI: 0000000000000003
[  308.641836][T14058] RBP: 00007f7c8501c090 R08: 0000200000000200 R09: 0000000000000014
[  308.641847][T14058] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000001
[  308.641858][T14058] R13: 0000000000000000 R14: 00007f7c843b5fa0 R15: 00007ffe0c5f32a8
[  308.641882][T14058]  </TASK>
[  308.721759][  T834] appleir 0003:05AC:8243.0006: unknown main item tag 0x0
[  308.725076][  T834] appleir 0003:05AC:8243.0006: No inputs registered, leaving
[  308.732989][  T834] appleir 0003:05AC:8243.0006: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  309.158383][T14066] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.2697'.
[  309.214117][   T40] audit: type=1400 audit(1748791961.264:587): avc:  denied  { map } for  pid=14067 comm="syz.0.2698" path="/36/file0/devices.list" dev="9p" ino=36047883 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  309.336561][T14069] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  309.435557][   T40] audit: type=1400 audit(1748791961.484:588): avc:  denied  { append } for  pid=14071 comm="syz.0.2699" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  309.482812][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  309.597638][T14078] Bluetooth: hci0: unsupported parameter 2327
[  309.599767][T14078] Bluetooth: hci0: unsupported parameter 64
[  309.603519][T14078] Bluetooth: hci0: unsupported parameter 2327
[  309.606296][T14078] Bluetooth: hci0: unsupported parameter 64
[  309.893229][T14088] FAULT_INJECTION: forcing a failure.
[  309.893229][T14088] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.898235][T14088] CPU: 2 UID: 0 PID: 14088 Comm: syz.0.2704 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  309.898258][T14088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  309.898268][T14088] Call Trace:
[  309.898275][T14088]  <TASK>
[  309.898281][T14088]  dump_stack_lvl+0x16c/0x1f0
[  309.898302][T14088]  should_fail_ex+0x512/0x640
[  309.898328][T14088]  ? __pfx_do_get_msr+0x10/0x10
[  309.898353][T14088]  _copy_to_user+0x32/0xd0
[  309.898385][T14088]  ? __pfx_do_get_msr+0x10/0x10
[  309.898405][T14088]  msr_io+0x21f/0x2a0
[  309.898424][T14088]  ? __pfx_msr_io+0x10/0x10
[  309.898439][T14088]  ? arch_stack_walk+0xa6/0x100
[  309.898466][T14088]  kvm_arch_vcpu_ioctl+0x7f4/0x51c0
[  309.898481][T14088]  ? kvm_arch_vcpu_ioctl+0x7cc/0x51c0
[  309.898497][T14088]  ? stack_trace_save+0x8e/0xc0
[  309.898514][T14088]  ? stack_depot_save_flags+0x28/0xa40
[  309.898539][T14088]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  309.898553][T14088]  ? __lock_acquire+0xb8a/0x1c90
[  309.898577][T14088]  ? kasan_save_stack+0x42/0x60
[  309.898591][T14088]  ? kasan_save_stack+0x33/0x60
[  309.898607][T14088]  ? kasan_save_track+0x14/0x30
[  309.898623][T14088]  ? kasan_save_free_info+0x3b/0x60
[  309.898645][T14088]  ? __kasan_slab_free+0x51/0x70
[  309.898661][T14088]  ? kfree+0x2b4/0x4d0
[  309.898671][T14088]  ? tomoyo_path_number_perm+0x470/0x580
[  309.898691][T14088]  ? security_file_ioctl+0x9b/0x240
[  309.898713][T14088]  ? __x64_sys_ioctl+0xb7/0x210
[  309.898737][T14088]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.898757][T14088]  ? __lock_acquire+0xb8a/0x1c90
[  309.898780][T14088]  ? __mutex_trylock_common+0xe9/0x250
[  309.898803][T14088]  ? __pfx___mutex_trylock_common+0x10/0x10
[  309.898826][T14088]  ? __pfx___might_resched+0x10/0x10
[  309.898844][T14088]  ? rcu_is_watching+0x12/0xc0
[  309.898859][T14088]  ? trace_contention_end+0xdd/0x130
[  309.898877][T14088]  ? __mutex_lock+0x1ca/0xb90
[  309.898901][T14088]  ? kvm_vcpu_ioctl+0x27e/0x1680
[  309.898921][T14088]  ? __pfx___mutex_lock+0x10/0x10
[  309.898951][T14088]  ? tomoyo_path_number_perm+0x18d/0x580
[  309.898973][T14088]  ? kvm_vcpu_ioctl+0x1232/0x1680
[  309.898989][T14088]  kvm_vcpu_ioctl+0x1232/0x1680
[  309.899011][T14088]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  309.899036][T14088]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  309.899063][T14088]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  309.899091][T14088]  ? hook_file_ioctl_common+0x145/0x410
[  309.899116][T14088]  ? selinux_file_ioctl+0x180/0x270
[  309.899137][T14088]  ? selinux_file_ioctl+0xb4/0x270
[  309.899160][T14088]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  309.899177][T14088]  __x64_sys_ioctl+0x18b/0x210
[  309.899204][T14088]  do_syscall_64+0xcd/0x4c0
[  309.899227][T14088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.899243][T14088] RIP: 0033:0x7fe627b8e969
[  309.899257][T14088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.899269][T14088] RSP: 002b:00007fe6289f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  309.899286][T14088] RAX: ffffffffffffffda RBX: 00007fe627db5fa0 RCX: 00007fe627b8e969
[  309.899297][T14088] RDX: 0000200000002400 RSI: 00000000c008ae88 RDI: 0000000000000005
[  309.899307][T14088] RBP: 00007fe6289f0090 R08: 0000000000000000 R09: 0000000000000000
[  309.899317][T14088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  309.899327][T14088] R13: 0000000000000000 R14: 00007fe627db5fa0 R15: 00007ffe56385f08
[  309.899350][T14088]  </TASK>
[  310.119466][T14091] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  310.237672][   T40] audit: type=1400 audit(1748791962.284:589): avc:  denied  { write } for  pid=14089 comm="syz.0.2705" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  310.243951][   T40] audit: type=1400 audit(1748791962.294:590): avc:  denied  { read } for  pid=14089 comm="syz.0.2705" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  310.522973][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  310.532972][ T5970] usb 9-1: reset high-speed USB device number 18 using dummy_hcd
[  310.971645][T14098] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2707'.
[  311.548749][   T40] audit: type=1400 audit(1748791963.594:591): avc:  denied  { read } for  pid=14101 comm="syz.0.2709" path="socket:[61722]" dev="sockfs" ino=61722 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  311.562830][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  311.613323][T14106] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2711'.
[  311.616017][T14106] netlink: 'syz.0.2711': attribute type 30 has an invalid length.
[  311.623547][T14106] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  311.626391][T14106] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  311.629008][T14106] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  311.631606][T14106] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  311.685850][   T24] usb 9-1: USB disconnect, device number 18
[  311.860309][T14115] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2714'.
[  311.861718][T14117] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2716'.
[  311.865624][T14115] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2714'.
[  311.867834][T14115] siw: device registration error -23
[  311.871763][T14117] FAULT_INJECTION: forcing a failure.
[  311.871763][T14117] name failslab, interval 1, probability 0, space 0, times 0
[  311.880948][T14117] CPU: 1 UID: 0 PID: 14117 Comm: syz.4.2716 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  311.880973][T14117] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  311.880984][T14117] Call Trace:
[  311.880991][T14117]  <TASK>
[  311.880998][T14117]  dump_stack_lvl+0x16c/0x1f0
[  311.881023][T14117]  should_fail_ex+0x512/0x640
[  311.881048][T14117]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  311.881074][T14117]  should_failslab+0xc2/0x120
[  311.881098][T14117]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  311.881118][T14117]  ? __alloc_skb+0x2b2/0x380
[  311.881138][T14117]  ? bpf_lsm_capable+0x9/0x10
[  311.881158][T14117]  __alloc_skb+0x2b2/0x380
[  311.881177][T14117]  ? __pfx___alloc_skb+0x10/0x10
[  311.881197][T14117]  ? genl_rcv_msg+0x470/0x800
[  311.881215][T14117]  ? genl_rcv_msg+0x4bb/0x800
[  311.881239][T14117]  netlink_ack+0x15d/0xb80
[  311.881273][T14117]  netlink_rcv_skb+0x332/0x420
[  311.881307][T14117]  ? __pfx_genl_rcv_msg+0x10/0x10
[  311.881326][T14117]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  311.881364][T14117]  ? netlink_deliver_tap+0x1ae/0xd30
[  311.881393][T14117]  genl_rcv+0x28/0x40
[  311.881409][T14117]  netlink_unicast+0x53a/0x7f0
[  311.881439][T14117]  ? __pfx_netlink_unicast+0x10/0x10
[  311.881472][T14117]  netlink_sendmsg+0x8d1/0xdd0
[  311.881503][T14117]  ? __pfx_netlink_sendmsg+0x10/0x10
[  311.881539][T14117]  ____sys_sendmsg+0xa98/0xc70
[  311.881567][T14117]  ? copy_msghdr_from_user+0x10a/0x160
[  311.881590][T14117]  ? __pfx_____sys_sendmsg+0x10/0x10
[  311.881629][T14117]  ___sys_sendmsg+0x134/0x1d0
[  311.881654][T14117]  ? __pfx____sys_sendmsg+0x10/0x10
[  311.881674][T14117]  ? __lock_acquire+0x622/0x1c90
[  311.881730][T14117]  __sys_sendmsg+0x16d/0x220
[  311.881754][T14117]  ? __pfx___sys_sendmsg+0x10/0x10
[  311.881812][T14117]  do_syscall_64+0xcd/0x4c0
[  311.881841][T14117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.881860][T14117] RIP: 0033:0x7f501458e969
[  311.881875][T14117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.881892][T14117] RSP: 002b:00007f5015477038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  311.881911][T14117] RAX: ffffffffffffffda RBX: 00007f50147b5fa0 RCX: 00007f501458e969
[  311.881922][T14117] RDX: 0000000000000000 RSI: 00002000000006c0 RDI: 0000000000000004
[  311.881932][T14117] RBP: 00007f5015477090 R08: 0000000000000000 R09: 0000000000000000
[  311.881943][T14117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  311.881953][T14117] R13: 0000000000000000 R14: 00007f50147b5fa0 R15: 00007ffcadede028
[  311.881979][T14117]  </TASK>
[  311.953350][T14124] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2717'.
[  311.955322][    C1] vkms_vblank_simulate: vblank timer overrun
[  312.007766][   T40] audit: type=1400 audit(1748791964.054:592): avc:  denied  { accept } for  pid=14126 comm="syz.4.2719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  312.032526][T14125] sd 0:0:0:0: PR command failed: 1026
[  312.035297][T14125] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[  312.037919][T14125] sd 0:0:0:0: Add. Sense: Invalid command operation code
[  312.047489][   T40] audit: type=1400 audit(1748791964.094:593): avc:  denied  { read } for  pid=14131 comm="syz.0.2722" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  312.054191][   T40] audit: type=1400 audit(1748791964.094:594): avc:  denied  { mounton } for  pid=14130 comm="syz.4.2721" path="/387/file0" dev="devtmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:removable_device_t tclass=blk_file permissive=1
[  312.065833][T14132] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  312.156955][   T40] audit: type=1400 audit(1748791964.204:595): avc:  denied  { unmount } for  pid=9654 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  312.326463][T14141] cgroup: fork rejected by pids controller in /syz4
[  312.353058][ T5970] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  312.502995][ T5970] usb 5-1: Using ep0 maxpacket: 8
[  312.511128][ T5970] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  312.516387][ T5970] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  312.519974][ T5970] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.529765][ T5970] usb 5-1: config 0 descriptor??
[  312.582910][   T29] usb 9-1: new high-speed USB device number 19 using dummy_hcd
[  312.602849][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  312.732867][   T29] usb 9-1: Using ep0 maxpacket: 32
[  312.737034][   T29] usb 9-1: unable to get BOS descriptor or descriptor too short
[  312.737566][ T5970] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  312.743822][   T29] usb 9-1: config index 0 descriptor too short (expected 34347, got 43)
[  312.746899][   T29] usb 9-1: config 31 has too many interfaces: 196, using maximum allowed: 32
[  312.749527][   T29] usb 9-1: config 31 has an invalid descriptor of length 0, skipping remainder of the config
[  312.752535][   T29] usb 9-1: config 31 has 1 interface, different from the descriptor's value: 196
[  312.772866][   T29] usb 9-1: config 31 has no interface number 0
[  312.775296][   T29] usb 9-1: config 31 interface 81 altsetting 3 has an endpoint descriptor with address 0x93, changing to 0x83
[  312.779886][   T29] usb 9-1: config 31 interface 81 altsetting 3 bulk endpoint 0x83 has invalid maxpacket 150
[  312.783993][   T29] usb 9-1: config 31 interface 81 has no altsetting 0
[  312.789571][   T29] usb 9-1: string descriptor 0 read error: -22
[  312.792175][   T29] usb 9-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice=24.ac
[  312.796027][   T29] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.803952][T14141] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  312.815900][   T29] input: USB Touchscreen 0dfc:0001 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:31.81/input/input153
[  312.939337][ T5970] usb 5-1: USB disconnect, device number 37
[  312.941970][    C2] iowarrior 5-1:0.0: iowarrior_callback - usb_submit_urb failed with result -19
[  313.023578][T14141] bond1: entered promiscuous mode
[  313.026096][T14141] bond1: entered allmulticast mode
[  313.028739][T14141] 8021q: adding VLAN 0 to HW filter on device bond1
[  313.096481][    C2] usbtouchscreen 9-1:31.81: usbtouch_irq - usb_submit_urb failed with result: -1
[  313.100071][ T5973] usb 9-1: USB disconnect, device number 19
[  313.517462][ T5938] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  313.531079][ T5938] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  313.535514][ T5938] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  313.543633][ T5938] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  313.547253][ T5938] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  313.573486][T14145] lo speed is unknown, defaulting to 1000
[  313.642830][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  313.654122][T14145] chnl_net:caif_netlink_parms(): no params data found
[  313.768109][T14156] xt_hashlimit: max too large, truncated to 1048576
[  313.769999][T11320] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.772539][T14156] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not '
'
[  313.792943][ T3230] usb 5-1: new full-speed USB device number 38 using dummy_hcd
[  313.821444][T14145] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.826951][T14145] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.829278][T14145] bridge_slave_0: entered allmulticast mode
[  313.831985][T14145] bridge_slave_0: entered promiscuous mode
[  313.849778][T11320] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.857864][T14145] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.860313][T14145] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.862654][T14145] bridge_slave_1: entered allmulticast mode
[  313.866323][T14145] bridge_slave_1: entered promiscuous mode
[  313.898939][T14145] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  313.904029][T14145] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  313.953650][ T3230] usb 5-1: not running at top speed; connect to a high speed hub
[  313.957247][ T3230] usb 5-1: config 1 interface 0 altsetting 250 endpoint 0x81 has invalid maxpacket 1007, setting to 64
[  313.961754][ T3230] usb 5-1: config 1 interface 0 altsetting 250 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  313.966844][ T3230] usb 5-1: config 1 interface 0 altsetting 250 endpoint 0x3 has invalid maxpacket 60244, setting to 64
[  313.971465][ T3230] usb 5-1: config 1 interface 0 has no altsetting 0
[  313.976314][ T3230] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  313.979311][ T3230] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.981906][ T3230] usb 5-1: Product: Ñ‹
[  313.983487][ T3230] usb 5-1: Manufacturer: 嶟軬Ċ଎㺑钟껨���犥產ಷ䚦�➬姼�隉줽�ᨷ峷�ണι섅緗꯼�陇ᦀ鶡뀛Ｔ�釢⃚囮ᮚ�섽즆耰樴⟟㷘쪫�쳶跆襖�옎��濆
[  313.984368][T11320] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.991643][ T3230] usb 5-1: SerialNumber: Щ
[  314.001653][T14148] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  314.004398][T14148] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  314.007115][T14148] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  314.012644][T14145] team0: Port device team_slave_0 added
[  314.022335][T14145] team0: Port device team_slave_1 added
[  314.071742][T14145] batman_adv: batadv0: Adding interface: batadv_slave_0
[  314.074753][T14145] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  314.082523][T14145] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  314.087731][T14145] batman_adv: batadv0: Adding interface: batadv_slave_1
[  314.089955][T14145] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  314.097900][T14145] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  314.115125][T11320] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.158953][ T5941] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  314.162814][ T5941] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  314.165965][ T5941] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  314.168884][ T5941] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  314.171761][ T5941] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  314.189027][T14145] hsr_slave_0: entered promiscuous mode
[  314.191324][T14145] hsr_slave_1: entered promiscuous mode
[  314.193824][T14145] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  314.196213][T14145] Cannot create hsr debugfs directory
[  314.216183][T14148] binder: 14147:14148 ioctl 3b88 200000000280 returned -22
[  314.219201][T14148] binder_alloc: 14147: binder_alloc_buf, no vma
[  314.222238][T14148] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2727'.
[  314.245807][T14167] lo speed is unknown, defaulting to 1000
[  314.255792][ T3230] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71
[  314.280719][ T3230] usb 5-1: USB disconnect, device number 38
[  314.358658][T11320] bridge_slave_1: left allmulticast mode
[  314.360445][T11320] bridge_slave_1: left promiscuous mode
[  314.362254][T11320] bridge0: port 2(bridge_slave_1) entered disabled state
[  314.368725][T11320] bridge_slave_0: left allmulticast mode
[  314.370492][T11320] bridge_slave_0: left promiscuous mode
[  314.372238][T11320] bridge0: port 1(bridge_slave_0) entered disabled state
[  314.678210][T11320] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  314.682838][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  314.683404][T11320] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  314.689444][T11320] bond0 (unregistering): Released all slaves
[  314.826616][T14167] chnl_net:caif_netlink_parms(): no params data found
[  314.988598][T14145] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  314.994495][T14145] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  315.012588][T14167] bridge0: port 1(bridge_slave_0) entered blocking state
[  315.020462][T14167] bridge0: port 1(bridge_slave_0) entered disabled state
[  315.025280][T14167] bridge_slave_0: entered allmulticast mode
[  315.027973][T14167] bridge_slave_0: entered promiscuous mode
[  315.030700][T14145] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  315.040053][T14167] bridge0: port 2(bridge_slave_1) entered blocking state
[  315.042335][T14167] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.046367][T14167] bridge_slave_1: entered allmulticast mode
[  315.048911][T14167] bridge_slave_1: entered promiscuous mode
[  315.051367][T14145] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  315.057910][T11320] hsr_slave_0: left promiscuous mode
[  315.060124][T11320] hsr_slave_1: left promiscuous mode
[  315.062132][T11320] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  315.064703][T11320] batman_adv: batadv0: Removing interface: batadv_slave_0
[  315.067464][T11320] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  315.069788][T11320] batman_adv: batadv0: Removing interface: batadv_slave_1
[  315.090460][T11320] veth1_macvtap: left promiscuous mode
[  315.092304][T11320] veth0_macvtap: left promiscuous mode
[  315.094229][T11320] veth1_vlan: left promiscuous mode
[  315.096729][T11320] veth0_vlan: left promiscuous mode
[  315.576072][ T5938] Bluetooth: hci1: command tx timeout
[  315.704725][T14200] FAULT_INJECTION: forcing a failure.
[  315.704725][T14200] name failslab, interval 1, probability 0, space 0, times 0
[  315.709860][T14200] CPU: 2 UID: 0 PID: 14200 Comm: syz.0.2738 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  315.709886][T14200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  315.709898][T14200] Call Trace:
[  315.709905][T14200]  <TASK>
[  315.709913][T14200]  dump_stack_lvl+0x16c/0x1f0
[  315.709941][T14200]  should_fail_ex+0x512/0x640
[  315.709966][T14200]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  315.709988][T14200]  should_failslab+0xc2/0x120
[  315.710010][T14200]  __kmalloc_cache_node_noprof+0x6d/0x420
[  315.710029][T14200]  ? __get_vm_area_node+0x101/0x330
[  315.710059][T14200]  __get_vm_area_node+0x101/0x330
[  315.710090][T14200]  __vmalloc_node_range_noprof+0x271/0x14b0
[  315.710117][T14200]  ? do_update_counters.constprop.0+0x52/0x9d0
[  315.710140][T14200]  ? __lock_acquire+0xb8a/0x1c90
[  315.710167][T14200]  ? do_update_counters.constprop.0+0x52/0x9d0
[  315.710193][T14200]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  315.710219][T14200]  ? find_held_lock+0x2b/0x80
[  315.710234][T14200]  ? __might_fault+0xe3/0x190
[  315.710252][T14200]  ? __might_fault+0xe3/0x190
[  315.710277][T14200]  ? do_update_counters.constprop.0+0x52/0x9d0
[  315.710295][T14200]  __vmalloc_node_noprof+0xad/0xf0
[  315.710321][T14200]  ? do_update_counters.constprop.0+0x52/0x9d0
[  315.710343][T14200]  do_update_counters.constprop.0+0x52/0x9d0
[  315.710378][T14200]  update_counters+0x114/0x180
[  315.710396][T14200]  ? __pfx_update_counters+0x10/0x10
[  315.710428][T14200]  ? bpf_lsm_capable+0x9/0x10
[  315.710443][T14200]  ? security_capable+0x7e/0x260
[  315.710468][T14200]  do_ebt_set_ctl+0x24d/0x4d0
[  315.710491][T14200]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  315.710513][T14200]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  315.710541][T14200]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  315.710572][T14200]  nf_setsockopt+0x8d/0xf0
[  315.710601][T14200]  ip_setsockopt+0xcb/0xf0
[  315.710624][T14200]  tcp_setsockopt+0xa7/0x100
[  315.710649][T14200]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  315.710676][T14200]  do_sock_setsockopt+0x224/0x470
[  315.710701][T14200]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  315.710744][T14200]  __sys_setsockopt+0x1a0/0x230
[  315.710770][T14200]  __x64_sys_setsockopt+0xbd/0x160
[  315.710789][T14200]  ? do_syscall_64+0x91/0x4c0
[  315.710811][T14200]  ? lockdep_hardirqs_on+0x7c/0x110
[  315.710833][T14200]  do_syscall_64+0xcd/0x4c0
[  315.710857][T14200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.710876][T14200] RIP: 0033:0x7fe627b8e969
[  315.710891][T14200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.710908][T14200] RSP: 002b:00007fe6289cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  315.710926][T14200] RAX: ffffffffffffffda RBX: 00007fe627db6080 RCX: 00007fe627b8e969
[  315.710939][T14200] RDX: 0000000000000081 RSI: 0000000000000000 RDI: 0000000000000003
[  315.710950][T14200] RBP: 00007fe6289cf090 R08: 0000000000000088 R09: 0000000000000000
[  315.710961][T14200] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[  315.710972][T14200] R13: 0000000000000000 R14: 00007fe627db6080 R15: 00007ffe56385f08
[  315.711000][T14200]  </TASK>
[  315.711009][T14200] syz.0.2738: vmalloc error: size 16, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[  315.732884][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  315.733834][T14200] ,cpuset=/,mems_allowed=0-1
[  315.841982][T14200] CPU: 3 UID: 0 PID: 14200 Comm: syz.0.2738 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  315.841998][T14200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  315.842005][T14200] Call Trace:
[  315.842011][T14200]  <TASK>
[  315.842016][T14200]  dump_stack_lvl+0x16c/0x1f0
[  315.842034][T14200]  warn_alloc+0x248/0x3a0
[  315.842049][T14200]  ? __pfx_warn_alloc+0x10/0x10
[  315.842062][T14200]  ? __kmalloc_cache_node_noprof+0x272/0x420
[  315.842078][T14200]  ? __kasan_kmalloc+0x8a/0xb0
[  315.842092][T14200]  ? __get_vm_area_node+0x208/0x330
[  315.842111][T14200]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  315.842131][T14200]  ? __lock_acquire+0xb8a/0x1c90
[  315.842148][T14200]  ? do_update_counters.constprop.0+0x52/0x9d0
[  315.842165][T14200]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  315.842195][T14200]  ? find_held_lock+0x2b/0x80
[  315.842206][T14200]  ? __might_fault+0xe3/0x190
[  315.842218][T14200]  ? __might_fault+0xe3/0x190
[  315.842232][T14200]  ? do_update_counters.constprop.0+0x52/0x9d0
[  315.842244][T14200]  __vmalloc_node_noprof+0xad/0xf0
[  315.842265][T14200]  ? do_update_counters.constprop.0+0x52/0x9d0
[  315.842284][T14200]  do_update_counters.constprop.0+0x52/0x9d0
[  315.842310][T14200]  update_counters+0x114/0x180
[  315.842334][T14200]  ? __pfx_update_counters+0x10/0x10
[  315.842364][T14200]  ? bpf_lsm_capable+0x9/0x10
[  315.842380][T14200]  ? security_capable+0x7e/0x260
[  315.842407][T14200]  do_ebt_set_ctl+0x24d/0x4d0
[  315.842427][T14200]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  315.842441][T14200]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  315.842458][T14200]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  315.842478][T14200]  nf_setsockopt+0x8d/0xf0
[  315.842497][T14200]  ip_setsockopt+0xcb/0xf0
[  315.842511][T14200]  tcp_setsockopt+0xa7/0x100
[  315.842527][T14200]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  315.842545][T14200]  do_sock_setsockopt+0x224/0x470
[  315.842561][T14200]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  315.842586][T14200]  __sys_setsockopt+0x1a0/0x230
[  315.842603][T14200]  __x64_sys_setsockopt+0xbd/0x160
[  315.842616][T14200]  ? do_syscall_64+0x91/0x4c0
[  315.842630][T14200]  ? lockdep_hardirqs_on+0x7c/0x110
[  315.842644][T14200]  do_syscall_64+0xcd/0x4c0
[  315.842660][T14200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.842672][T14200] RIP: 0033:0x7fe627b8e969
[  315.842682][T14200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.842693][T14200] RSP: 002b:00007fe6289cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  315.842703][T14200] RAX: ffffffffffffffda RBX: 00007fe627db6080 RCX: 00007fe627b8e969
[  315.842710][T14200] RDX: 0000000000000081 RSI: 0000000000000000 RDI: 0000000000000003
[  315.842717][T14200] RBP: 00007fe6289cf090 R08: 0000000000000088 R09: 0000000000000000
[  315.842723][T14200] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[  315.842730][T14200] R13: 0000000000000000 R14: 00007fe627db6080 R15: 00007ffe56385f08
[  315.842744][T14200]  </TASK>
[  315.943340][T14200] Mem-Info:
[  315.944396][T14200] active_anon:10470 inactive_anon:0 isolated_anon:0
[  315.944396][T14200]  active_file:3612 inactive_file:52073 isolated_file:0
[  315.944396][T14200]  unevictable:1768 dirty:195 writeback:0
[  315.944396][T14200]  slab_reclaimable:12187 slab_unreclaimable:81486
[  315.944396][T14200]  mapped:25646 shmem:2415 pagetables:1560
[  315.944396][T14200]  sec_pagetables:313 bounce:0
[  315.944396][T14200]  kernel_misc_reclaimable:0
[  315.944396][T14200]  free:441754 free_pcp:11386 free_cma:0
[  315.958214][T14200] Node 0 active_anon:40628kB inactive_anon:0kB active_file:14448kB inactive_file:208084kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:93436kB dirty:772kB writeback:0kB shmem:6124kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13840kB pagetables:5156kB sec_pagetables:1252kB all_unreclaimable? yes Balloon:0kB
[  315.968446][T14200] Node 1 active_anon:1252kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:9148kB dirty:8kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:1084kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  315.978293][T14200] Node 0 DMA free:15080kB boost:2048kB min:2388kB low:2472kB high:2556kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:216kB local_pcp:0kB free_cma:0kB
[  315.987238][T14200] lowmem_reserve[]: 0 1235 1235 1235 1235
[  315.989031][T14200] Node 0 DMA32 free:188152kB boost:59392kB min:86908kB low:93784kB high:100660kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40628kB inactive_anon:0kB active_file:14448kB inactive_file:208084kB unevictable:3536kB writepending:772kB present:2080628kB managed:1264928kB mlocked:0kB bounce:0kB free_pcp:23116kB local_pcp:3444kB free_cma:0kB
[  315.999213][T14200] lowmem_reserve[]: 0 0 0 0 0
[  316.000740][T14200] Node 1 Normal free:1563788kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1252kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:3536kB writepending:8kB present:2097152kB managed:1781948kB mlocked:0kB bounce:0kB free_pcp:22588kB local_pcp:5912kB free_cma:0kB
[  316.010241][T14200] lowmem_reserve[]: 0 0 0 0 0
[  316.011751][T14200] Node 0 DMA: 10*4kB (UM) 12*8kB (UM) 12*16kB (UM) 11*32kB (UM) 9*64kB (UM) 10*128kB (U) 5*256kB (UM) 6*512kB (UM) 4*1024kB (UM) 2*2048kB (UM) 0*4096kB = 15080kB
[  316.016944][T14200] Node 0 DMA32: 1576*4kB (UME) 1233*8kB (UME) 870*16kB (UME) 1262*32kB (UME) 485*64kB (UME) 158*128kB (UM) 94*256kB (UM) 52*512kB (UM) 9*1024kB (UM) 3*2048kB (U) 0*4096kB = 187784kB
[  316.022386][T14200] Node 1 Normal: 287*4kB (UME) 320*8kB (UME) 313*16kB (UME) 514*32kB (UME) 381*64kB (UME) 320*128kB (UME) 271*256kB (UME) 218*512kB (UE) 170*1024kB (UME) 6*2048kB (UME) 270*4096kB (M) = 1563788kB
[  316.028429][T14200] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  316.031333][T14200] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  316.034239][T14200] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  316.037145][T14200] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  316.039968][T14200] 58096 total pagecache pages
[  316.041439][T14200] 0 pages in swap cache
[  316.042798][T14200] Free swap  = 124996kB
[  316.044101][T14200] Total swap = 124996kB
[  316.045408][T14200] 1048443 pages RAM
[  316.046746][T14200] 0 pages HighMem/MovableOnly
[  316.048385][T14200] 282884 pages reserved
[  316.049758][T14200] 0 pages cma reserved
[  316.082280][T11320] team0 (unregistering): Port device team_slave_1 removed
[  316.206887][ T5938] Bluetooth: hci3: command tx timeout
[  316.658198][T14167] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  316.670786][T14167] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  316.720671][T14167] team0: Port device team_slave_0 added
[  316.727212][T14167] team0: Port device team_slave_1 added
[  316.771612][T14167] batman_adv: batadv0: Adding interface: batadv_slave_0
[  316.772824][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  316.777592][T14167] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.793091][T14167] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  316.811153][T14167] batman_adv: batadv0: Adding interface: batadv_slave_1
[  316.814369][T14167] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.823122][T14167] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  316.838393][T14210] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2740'.
[  316.842735][T14210] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2740'.
[  316.846605][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  316.856923][T14210] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2740'.
[  316.859710][   T40] audit: type=1400 audit(1748791968.904:596): avc:  denied  { bind } for  pid=14209 comm="syz.0.2740" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  316.874921][T14210] xt_hashlimit: size too large, truncated to 1048576
[  316.927320][T14167] hsr_slave_0: entered promiscuous mode
[  316.929991][T14167] hsr_slave_1: entered promiscuous mode
[  316.932654][T14167] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  316.936607][T14167] Cannot create hsr debugfs directory
[  316.961065][T14145] 8021q: adding VLAN 0 to HW filter on device bond0
[  317.015204][T14145] 8021q: adding VLAN 0 to HW filter on device team0
[  317.071456][T11314] bridge0: port 1(bridge_slave_0) entered blocking state
[  317.073747][T11314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  317.088227][T11327] bridge0: port 2(bridge_slave_1) entered blocking state
[  317.090710][T11327] bridge0: port 2(bridge_slave_1) entered forwarding state
[  317.169171][T11320] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.267766][T11320] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.335656][T11320] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.348898][T14145] 8021q: adding VLAN 0 to HW filter on device batadv0
[  317.411261][T11320] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.578623][T11320] bridge_slave_1: left allmulticast mode
[  317.580841][T11320] bridge_slave_1: left promiscuous mode
[  317.584351][T11320] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.588840][T11320] bridge_slave_0: left allmulticast mode
[  317.591059][T11320] bridge_slave_0: left promiscuous mode
[  317.594516][T11320] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.601386][T11320] tipc: Resetting bearer <ib:bond0>
[  317.647170][ T5938] Bluetooth: hci1: command tx timeout
[  317.812894][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  317.848505][T14259] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2747'.
[  317.913683][T14262] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2744'.
[  318.034758][T11320] tipc: Disabling bearer <ib:bond0>
[  318.037417][T11320] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  318.043890][T11320] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  318.048982][T11320] bond0 (unregistering): Released all slaves
[  318.146060][T11320] bond1 (unregistering): Released all slaves
[  318.175891][T14145] veth0_vlan: entered promiscuous mode
[  318.181586][T14145] veth1_vlan: entered promiscuous mode
[  318.197048][T14145] veth0_macvtap: entered promiscuous mode
[  318.202034][T14145] veth1_macvtap: entered promiscuous mode
[  318.234709][T14145] batman_adv: batadv0: Interface activated: batadv_slave_0
[  318.238712][T14266] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2748'.
[  318.241742][T11320] tipc: Disabling bearer <eth:team0>
[  318.245484][T11320] tipc: Left network mode
[  318.252435][T14145] batman_adv: batadv0: Interface activated: batadv_slave_1
[  318.264964][T14266] 9pnet: Could not find request transport: unix0x000000000000000401777777777777777777777
[  318.293251][ T5938] Bluetooth: hci3: command tx timeout
[  318.304054][T14269] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2749'.
[  318.312841][T14145] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  318.315593][T14145] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  318.318336][T14145] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  318.321187][T14145] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  318.350297][   T40] audit: type=1326 audit(1748791970.394:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14268 comm="syz.3.2749" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c8418e969 code=0x0
[  318.444020][T11335] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  318.446484][T11335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  318.461291][T11313] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  318.465975][T11313] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  318.498277][T11320] hsr_slave_0: left promiscuous mode
[  318.500442][T11320] hsr_slave_1: left promiscuous mode
[  318.502535][T11320] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  318.505078][T11320] batman_adv: batadv0: Removing interface: batadv_slave_0
[  318.508046][T11320] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  318.510346][T11320] batman_adv: batadv0: Removing interface: batadv_slave_1
[  318.528189][T11320] veth0_macvtap: left promiscuous mode
[  318.852847][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  319.033506][T11320] team0 (unregistering): Port device team_slave_1 removed
[  319.102960][T11320] team0 (unregistering): Port device team_slave_0 removed
[  319.383220][T14288] SELinux:  policydb version 0 does not match my version range 15-34
[  319.386714][T14288] SELinux: failed to load policy
[  319.696859][T14295] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2754'.
[  319.732937][ T5938] Bluetooth: hci1: command tx timeout
[  319.737444][T14167] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  319.744315][T14167] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  319.753341][T14303] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2756'.
[  319.769221][T14167] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  319.783226][T14167] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  319.853551][T14167] 8021q: adding VLAN 0 to HW filter on device bond0
[  319.865963][T14167] 8021q: adding VLAN 0 to HW filter on device team0
[  319.873548][T11315] bridge0: port 1(bridge_slave_0) entered blocking state
[  319.876585][T11315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  319.882847][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  319.888371][T11315] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.890566][T11315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  319.911499][T14167] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  319.922292][T14167] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  319.968235][T14317] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[  319.972728][T14317] binder: 14316:14317 ioctl 5308 0 returned -22
[  320.020256][T14321] netlink: 1688 bytes leftover after parsing attributes in process `syz.0.2760'.
[  320.078302][T14167] 8021q: adding VLAN 0 to HW filter on device batadv0
[  320.148515][T14337] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2757'.
[  320.270674][T14167] veth0_vlan: entered promiscuous mode
[  320.278072][T14167] veth1_vlan: entered promiscuous mode
[  320.296457][T14167] veth0_macvtap: entered promiscuous mode
[  320.304219][T14167] veth1_macvtap: entered promiscuous mode
[  320.319604][T14167] batman_adv: batadv0: Interface activated: batadv_slave_0
[  320.330945][T14167] batman_adv: batadv0: Interface activated: batadv_slave_1
[  320.336976][T14167] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  320.340263][T14167] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  320.345558][T14167] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  320.348620][T14167] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  320.362821][ T5938] Bluetooth: hci3: command tx timeout
[  320.386466][T11315] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  320.389778][T11315] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  320.407406][T11320] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  320.409886][T11320] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  320.446270][T14345] FAULT_INJECTION: forcing a failure.
[  320.446270][T14345] name failslab, interval 1, probability 0, space 0, times 0
[  320.451399][T14345] CPU: 2 UID: 0 PID: 14345 Comm: syz.4.2732 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  320.451416][T14345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  320.451423][T14345] Call Trace:
[  320.451429][T14345]  <TASK>
[  320.451434][T14345]  dump_stack_lvl+0x16c/0x1f0
[  320.451453][T14345]  should_fail_ex+0x512/0x640
[  320.451470][T14345]  ? __kmalloc_noprof+0xbf/0x510
[  320.451484][T14345]  ? ethnl_default_notify+0x164/0x940
[  320.451500][T14345]  should_failslab+0xc2/0x120
[  320.451515][T14345]  __kmalloc_noprof+0xd2/0x510
[  320.451526][T14345]  ? __pfx___ethnl_set_coalesce.isra.0+0x10/0x10
[  320.451541][T14345]  ? rpm_resume+0x80c/0x1310
[  320.451559][T14345]  ? __pfx_ethnl_default_notify+0x10/0x10
[  320.451575][T14345]  ethnl_default_notify+0x164/0x940
[  320.451593][T14345]  ? __pfx_ethnl_default_notify+0x10/0x10
[  320.451615][T14345]  ? ethnl_set_coalesce+0xb8/0x170
[  320.451628][T14345]  ? __pfx_ethnl_set_coalesce+0x10/0x10
[  320.451642][T14345]  ? __pfx_ethnl_default_notify+0x10/0x10
[  320.451658][T14345]  ethtool_notify+0xbf/0x200
[  320.451674][T14345]  ethnl_default_set_doit+0x4e5/0xb10
[  320.451691][T14345]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  320.451709][T14345]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  320.451722][T14345]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  320.451738][T14345]  genl_family_rcv_msg_doit+0x206/0x2f0
[  320.451751][T14345]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  320.451786][T14345]  ? bpf_lsm_capable+0x9/0x10
[  320.451798][T14345]  ? security_capable+0x7e/0x260
[  320.451814][T14345]  ? ns_capable+0xd7/0x110
[  320.451835][T14345]  genl_rcv_msg+0x55c/0x800
[  320.451848][T14345]  ? __pfx_genl_rcv_msg+0x10/0x10
[  320.451861][T14345]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  320.451882][T14345]  netlink_rcv_skb+0x155/0x420
[  320.451900][T14345]  ? __pfx_genl_rcv_msg+0x10/0x10
[  320.451912][T14345]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  320.451936][T14345]  ? netlink_deliver_tap+0x1ae/0xd30
[  320.451955][T14345]  genl_rcv+0x28/0x40
[  320.451965][T14345]  netlink_unicast+0x53a/0x7f0
[  320.451984][T14345]  ? __pfx_netlink_unicast+0x10/0x10
[  320.452006][T14345]  netlink_sendmsg+0x8d1/0xdd0
[  320.452026][T14345]  ? __pfx_netlink_sendmsg+0x10/0x10
[  320.452051][T14345]  ____sys_sendmsg+0xa98/0xc70
[  320.452070][T14345]  ? copy_msghdr_from_user+0x10a/0x160
[  320.452085][T14345]  ? __pfx_____sys_sendmsg+0x10/0x10
[  320.452109][T14345]  ___sys_sendmsg+0x134/0x1d0
[  320.452125][T14345]  ? __pfx____sys_sendmsg+0x10/0x10
[  320.452138][T14345]  ? __lock_acquire+0x622/0x1c90
[  320.452170][T14345]  __sys_sendmsg+0x16d/0x220
[  320.452185][T14345]  ? __pfx___sys_sendmsg+0x10/0x10
[  320.452209][T14345]  do_syscall_64+0xcd/0x4c0
[  320.452225][T14345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.452237][T14345] RIP: 0033:0x7fe66a58e969
[  320.452247][T14345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.452258][T14345] RSP: 002b:00007fe66b4bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.452269][T14345] RAX: ffffffffffffffda RBX: 00007fe66a7b5fa0 RCX: 00007fe66a58e969
[  320.452276][T14345] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000003
[  320.452282][T14345] RBP: 00007fe66b4bf090 R08: 0000000000000000 R09: 0000000000000000
[  320.452289][T14345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.452300][T14345] R13: 0000000000000000 R14: 00007fe66a7b5fa0 R15: 00007ffe49e30758
[  320.452314][T14345]  </TASK>
[  320.610110][T14347] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2763'.
[  320.613176][T14347] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2763'.
[  320.616007][T14347] FAULT_INJECTION: forcing a failure.
[  320.616007][T14347] name failslab, interval 1, probability 0, space 0, times 0
[  320.620320][T14347] CPU: 1 UID: 0 PID: 14347 Comm: syz.5.2763 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  320.620335][T14347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  320.620343][T14347] Call Trace:
[  320.620347][T14347]  <TASK>
[  320.620352][T14347]  dump_stack_lvl+0x16c/0x1f0
[  320.620371][T14347]  should_fail_ex+0x512/0x640
[  320.620390][T14347]  ? switchdev_deferred_enqueue+0x2b/0x2a0
[  320.620405][T14347]  should_failslab+0xc2/0x120
[  320.620420][T14347]  __kmalloc_noprof+0xd2/0x510
[  320.620435][T14347]  ? __pfx_switchdev_port_obj_del_deferred+0x10/0x10
[  320.620451][T14347]  switchdev_deferred_enqueue+0x2b/0x2a0
[  320.620467][T14347]  switchdev_port_obj_del+0xfb/0x180
[  320.620482][T14347]  br_switchdev_mdb_notify+0x173/0x3b0
[  320.620495][T14347]  ? __pfx_br_switchdev_mdb_notify+0x10/0x10
[  320.620511][T14347]  ? __rhashtable_lookup.isra.0+0x2a1/0x6c0
[  320.620526][T14347]  __br_mdb_notify+0x4c2/0x6d0
[  320.620546][T14347]  br_multicast_del_pg+0x227/0xc20
[  320.620563][T14347]  br_multicast_find_del_pg+0x12d/0x180
[  320.620578][T14347]  __br_multicast_disable_port_ctx+0x406/0x5f0
[  320.620594][T14347]  br_multicast_toggle_vlan_snooping+0x215/0x640
[  320.620614][T14347]  br_boolopt_toggle+0x4a/0xe0
[  320.620632][T14347]  br_boolopt_multi_toggle+0x11a/0x250
[  320.620653][T14347]  br_changelink+0x1343/0x1710
[  320.620666][T14347]  ? __pfx_br_changelink+0x10/0x10
[  320.620681][T14347]  ? ns_capable+0xd7/0x110
[  320.620700][T14347]  ? netlink_ns_capable+0xfa/0x130
[  320.620716][T14347]  ? __pfx_br_changelink+0x10/0x10
[  320.620729][T14347]  rtnl_newlink+0x129b/0x2000
[  320.620749][T14347]  ? __pfx_rtnl_newlink+0x10/0x10
[  320.620763][T14347]  ? find_held_lock+0x2b/0x80
[  320.620774][T14347]  ? avc_has_perm_noaudit+0x117/0x3b0
[  320.620789][T14347]  ? avc_has_perm_noaudit+0x149/0x3b0
[  320.620803][T14347]  ? cred_has_capability.isra.0+0x193/0x2f0
[  320.620841][T14347]  ? find_held_lock+0x2b/0x80
[  320.620851][T14347]  ? __pfx_rtnl_newlink+0x10/0x10
[  320.620866][T14347]  ? __pfx_rtnl_newlink+0x10/0x10
[  320.620880][T14347]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  320.620895][T14347]  ? __pfx_rtnl_newlink+0x10/0x10
[  320.620910][T14347]  rtnetlink_rcv_msg+0x95e/0xe90
[  320.620927][T14347]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  320.620946][T14347]  ? ref_tracker_free+0x37c/0x830
[  320.620965][T14347]  netlink_rcv_skb+0x155/0x420
[  320.620982][T14347]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  320.620998][T14347]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  320.621021][T14347]  ? netlink_deliver_tap+0x1ae/0xd30
[  320.621040][T14347]  netlink_unicast+0x53a/0x7f0
[  320.621059][T14347]  ? __pfx_netlink_unicast+0x10/0x10
[  320.621080][T14347]  netlink_sendmsg+0x8d1/0xdd0
[  320.621100][T14347]  ? __pfx_netlink_sendmsg+0x10/0x10
[  320.621122][T14347]  ____sys_sendmsg+0xa98/0xc70
[  320.621140][T14347]  ? copy_msghdr_from_user+0x10a/0x160
[  320.621154][T14347]  ? __pfx_____sys_sendmsg+0x10/0x10
[  320.621178][T14347]  ___sys_sendmsg+0x134/0x1d0
[  320.621193][T14347]  ? __pfx____sys_sendmsg+0x10/0x10
[  320.621206][T14347]  ? __lock_acquire+0x622/0x1c90
[  320.621237][T14347]  __sys_sendmsg+0x16d/0x220
[  320.621252][T14347]  ? __pfx___sys_sendmsg+0x10/0x10
[  320.621279][T14347]  do_syscall_64+0xcd/0x4c0
[  320.621295][T14347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.621306][T14347] RIP: 0033:0x7fac2b38e969
[  320.621317][T14347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.621328][T14347] RSP: 002b:00007fac2c125038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  320.621339][T14347] RAX: ffffffffffffffda RBX: 00007fac2b5b5fa0 RCX: 00007fac2b38e969
[  320.621346][T14347] RDX: 0000000000000840 RSI: 0000200000000140 RDI: 000000000000000d
[  320.621353][T14347] RBP: 00007fac2c125090 R08: 0000000000000000 R09: 0000000000000000
[  320.621359][T14347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.621366][T14347] R13: 0000000000000000 R14: 00007fac2b5b5fa0 R15: 00007ffd68876b68
[  320.621380][T14347]  </TASK>
[  320.922856][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  321.031522][T14365] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input156
[  321.087264][   T40] audit: type=1400 audit(1748791973.134:598): avc:  denied  { mounton } for  pid=14364 comm="syz.5.2769" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  321.112834][ T5970] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  321.275277][ T5970] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  321.283936][ T5970] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  321.286975][ T5970] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  321.289776][ T5970] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.314630][T14360] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  321.323565][ T5970] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  321.561210][ T5970] usb 8-1: USB disconnect, device number 29
[  321.719075][T14398] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2775'.
[  321.722474][T14398] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2775'.
[  321.726832][T14398] siw: device registration error -23
[  321.731262][T14396] md: md2 stopped.
[  321.804570][ T5938] Bluetooth: hci1: command tx timeout
[  321.963976][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  321.982396][T14405] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2778'.
[  322.158308][T14410] IPv6: syztnl0: Disabled Multicast RS
[  322.161835][T14410] FAULT_INJECTION: forcing a failure.
[  322.161835][T14410] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.169423][T14410] CPU: 2 UID: 0 PID: 14410 Comm: syz.4.2779 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  322.169448][T14410] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  322.169458][T14410] Call Trace:
[  322.169465][T14410]  <TASK>
[  322.169472][T14410]  dump_stack_lvl+0x16c/0x1f0
[  322.169501][T14410]  should_fail_ex+0x512/0x640
[  322.169532][T14410]  _copy_to_user+0x32/0xd0
[  322.169561][T14410]  simple_read_from_buffer+0xcb/0x170
[  322.169581][T14410]  proc_fail_nth_read+0x197/0x270
[  322.169603][T14410]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  322.169623][T14410]  ? rw_verify_area+0xcf/0x680
[  322.169649][T14410]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  322.169668][T14410]  vfs_read+0x1e4/0xc60
[  322.169691][T14410]  ? __pfx___mutex_lock+0x10/0x10
[  322.169713][T14410]  ? __pfx_vfs_read+0x10/0x10
[  322.169740][T14410]  ? __fget_files+0x20e/0x3c0
[  322.169764][T14410]  ksys_read+0x12a/0x250
[  322.169783][T14410]  ? __pfx_ksys_read+0x10/0x10
[  322.169801][T14410]  ? fput+0x70/0xf0
[  322.169829][T14410]  do_syscall_64+0xcd/0x4c0
[  322.169869][T14410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.169888][T14410] RIP: 0033:0x7fe66a58d37c
[  322.169900][T14410] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  322.169916][T14410] RSP: 002b:00007fe66b4bf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  322.169933][T14410] RAX: ffffffffffffffda RBX: 00007fe66a7b5fa0 RCX: 00007fe66a58d37c
[  322.169946][T14410] RDX: 000000000000000f RSI: 00007fe66b4bf0a0 RDI: 0000000000000004
[  322.169957][T14410] RBP: 00007fe66b4bf090 R08: 0000000000000000 R09: 0000000000000000
[  322.169968][T14410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  322.169979][T14410] R13: 0000000000000000 R14: 00007fe66a7b5fa0 R15: 00007ffe49e30758
[  322.170001][T14410]  </TASK>
[  322.188545][T14411] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2776'.
[  322.281342][T14419] siw: device registration error -23
[  322.295817][   T40] audit: type=1400 audit(1748791974.344:599): avc:  denied  { bind } for  pid=14416 comm="syz.0.2780" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  322.310638][T14418] lo speed is unknown, defaulting to 1000
[  322.336801][T14423] tipc: Started in network mode
[  322.338189][T14423] tipc: Node identity 2, cluster identity 4711
[  322.339885][T14423] tipc: Node number set to 2
[  322.443508][ T5938] Bluetooth: hci3: command tx timeout
[  323.002807][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  323.126125][   T40] audit: type=1400 audit(1748791975.174:600): avc:  denied  { create } for  pid=14454 comm="syz.5.2796" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  323.142917][   T40] audit: type=1400 audit(1748791975.174:601): avc:  denied  { setopt } for  pid=14454 comm="syz.5.2796" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  323.200459][   T40] audit: type=1400 audit(1748791975.244:602): avc:  denied  { read } for  pid=14459 comm="syz.5.2797" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  323.212829][   T40] audit: type=1400 audit(1748791975.244:603): avc:  denied  { open } for  pid=14459 comm="syz.5.2797" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  323.580117][T14488] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  323.822832][ T5973] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  323.882955][   T60] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[  323.982866][ T5973] usb 10-1: Using ep0 maxpacket: 8
[  323.985921][ T5973] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  323.989418][ T5973] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  323.992430][ T5973] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.997062][ T5973] usb 10-1: config 0 descriptor??
[  324.042790][   T60] usb 8-1: Using ep0 maxpacket: 32
[  324.042853][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  324.049864][   T60] usb 8-1: unable to get BOS descriptor or descriptor too short
[  324.054113][   T60] usb 8-1: config index 0 descriptor too short (expected 34347, got 43)
[  324.056783][   T60] usb 8-1: config 31 has too many interfaces: 196, using maximum allowed: 32
[  324.059587][   T60] usb 8-1: config 31 has an invalid descriptor of length 0, skipping remainder of the config
[  324.062953][   T60] usb 8-1: config 31 has 1 interface, different from the descriptor's value: 196
[  324.065810][   T60] usb 8-1: config 31 has no interface number 0
[  324.067808][   T60] usb 8-1: config 31 interface 81 altsetting 3 has an endpoint descriptor with address 0x93, changing to 0x83
[  324.071761][   T60] usb 8-1: config 31 interface 81 altsetting 3 bulk endpoint 0x83 has invalid maxpacket 150
[  324.075115][   T60] usb 8-1: config 31 interface 81 has no altsetting 0
[  324.079732][   T60] usb 8-1: string descriptor 0 read error: -22
[  324.081966][   T60] usb 8-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice=24.ac
[  324.085534][   T60] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  324.090306][T14494] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  324.096602][   T60] input: USB Touchscreen 0dfc:0001 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:31.81/input/input158
[  324.219760][ T5973] iowarrior 10-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  324.305596][   T40] audit: type=1400 audit(1748791976.354:604): avc:  denied  { name_connect } for  pid=14493 comm="syz.3.2804" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  324.314459][   T40] audit: type=1400 audit(1748791976.364:605): avc:  denied  { getopt } for  pid=14493 comm="syz.3.2804" lport=37305 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  324.418672][ T5970] usb 10-1: USB disconnect, device number 2
[  324.420711][    C2] iowarrior 10-1:0.0: iowarrior_callback - usb_submit_urb failed with result -19
[  324.445685][  T834] usb 8-1: USB disconnect, device number 30
[  324.697330][T14512] FAULT_INJECTION: forcing a failure.
[  324.697330][T14512] name failslab, interval 1, probability 0, space 0, times 0
[  324.701691][T14512] CPU: 3 UID: 0 PID: 14512 Comm: syz.4.2807 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  324.701714][T14512] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  324.701725][T14512] Call Trace:
[  324.701732][T14512]  <TASK>
[  324.701739][T14512]  dump_stack_lvl+0x16c/0x1f0
[  324.701767][T14512]  should_fail_ex+0x512/0x640
[  324.701796][T14512]  ? hash_ip4_add+0x11cf/0x2990
[  324.701815][T14512]  should_failslab+0xc2/0x120
[  324.701838][T14512]  __kmalloc_noprof+0xd2/0x510
[  324.701866][T14512]  hash_ip4_add+0x11cf/0x2990
[  324.701899][T14512]  ? __pfx_hash_ip4_add+0x10/0x10
[  324.701925][T14512]  hash_ip4_uadt+0x5d9/0x8d0
[  324.701954][T14512]  ? __pfx_hash_ip4_add+0x10/0x10
[  324.701973][T14512]  ? __pfx_hash_ip4_uadt+0x10/0x10
[  324.702002][T14512]  ? lock_acquire+0x179/0x350
[  324.702028][T14512]  ? is_bpf_text_address+0x8a/0x1a0
[  324.702045][T14512]  ? bpf_ksym_find+0x127/0x1c0
[  324.702071][T14512]  call_ad.constprop.0+0x16e/0x940
[  324.702097][T14512]  ? __pfx_call_ad.constprop.0+0x10/0x10
[  324.702116][T14512]  ? __pfx___nla_validate_parse+0x10/0x10
[  324.702144][T14512]  ? __nla_parse+0x40/0x60
[  324.702166][T14512]  ip_set_ad.constprop.0.isra.0+0x3ce/0x870
[  324.702193][T14512]  ? __pfx_ip_set_ad.constprop.0.isra.0+0x10/0x10
[  324.702212][T14512]  ? rcu_is_watching+0x12/0xc0
[  324.702235][T14512]  ? find_held_lock+0x2b/0x80
[  324.702254][T14512]  nfnetlink_rcv_msg+0x9f9/0x1200
[  324.702271][T14512]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  324.702286][T14512]  ? __lock_acquire+0x622/0x1c90
[  324.702312][T14512]  ? avc_has_perm_noaudit+0x149/0x3b0
[  324.702329][T14512]  netlink_rcv_skb+0x155/0x420
[  324.702347][T14512]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  324.702360][T14512]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  324.702384][T14512]  ? ns_capable+0xd7/0x110
[  324.702403][T14512]  nfnetlink_rcv+0x1b3/0x430
[  324.702415][T14512]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  324.702429][T14512]  ? netlink_deliver_tap+0x1ae/0xd30
[  324.702456][T14512]  netlink_unicast+0x53a/0x7f0
[  324.702487][T14512]  ? __pfx_netlink_unicast+0x10/0x10
[  324.702523][T14512]  netlink_sendmsg+0x8d1/0xdd0
[  324.702555][T14512]  ? __pfx_netlink_sendmsg+0x10/0x10
[  324.702592][T14512]  ____sys_sendmsg+0xa98/0xc70
[  324.702622][T14512]  ? copy_msghdr_from_user+0x10a/0x160
[  324.702644][T14512]  ? __pfx_____sys_sendmsg+0x10/0x10
[  324.702682][T14512]  ___sys_sendmsg+0x134/0x1d0
[  324.702705][T14512]  ? __pfx____sys_sendmsg+0x10/0x10
[  324.702766][T14512]  ? __pfx_vfs_write+0x10/0x10
[  324.702789][T14512]  ? do_sys_openat2+0x157/0x1d0
[  324.702816][T14512]  __sys_sendmsg+0x16d/0x220
[  324.702839][T14512]  ? __pfx___sys_sendmsg+0x10/0x10
[  324.702878][T14512]  do_syscall_64+0xcd/0x4c0
[  324.702904][T14512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.702922][T14512] RIP: 0033:0x7fe66a58e969
[  324.702937][T14512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.702954][T14512] RSP: 002b:00007fe66b49e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  324.702968][T14512] RAX: ffffffffffffffda RBX: 00007fe66a7b6080 RCX: 00007fe66a58e969
[  324.702976][T14512] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000009
[  324.702983][T14512] RBP: 00007fe66b49e090 R08: 0000000000000000 R09: 0000000000000000
[  324.702989][T14512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.702996][T14512] R13: 0000000000000000 R14: 00007fe66a7b6080 R15: 00007ffe49e30758
[  324.703013][T14512]  </TASK>
[  324.810143][    C3] vkms_vblank_simulate: vblank timer overrun
[  324.987709][T14517] __nla_validate_parse: 3 callbacks suppressed
[  324.987721][T14517] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2808'.
[  324.993677][T14517] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2808'.
[  324.998668][T14517] siw: device registration error -23
[  325.044678][   T40] audit: type=1400 audit(1748791977.084:606): avc:  denied  { getopt } for  pid=14518 comm="syz.3.2809" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  325.082929][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  325.087228][T14526] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  325.099981][T14526] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2811'.
[  325.156879][T14529] FAULT_INJECTION: forcing a failure.
[  325.156879][T14529] name failslab, interval 1, probability 0, space 0, times 0
[  325.161733][T14529] CPU: 2 UID: 0 PID: 14529 Comm: syz.0.2811 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  325.161753][T14529] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  325.161763][T14529] Call Trace:
[  325.161770][T14529]  <TASK>
[  325.161777][T14529]  dump_stack_lvl+0x16c/0x1f0
[  325.161804][T14529]  should_fail_ex+0x512/0x640
[  325.161831][T14529]  ? __kmalloc_noprof+0xbf/0x510
[  325.161854][T14529]  ? ethnl_default_doit+0x209/0xed0
[  325.161877][T14529]  should_failslab+0xc2/0x120
[  325.161900][T14529]  __kmalloc_noprof+0xd2/0x510
[  325.161926][T14529]  ethnl_default_doit+0x209/0xed0
[  325.161950][T14529]  ? __nla_parse+0x40/0x60
[  325.161985][T14529]  ? __pfx_ethnl_default_doit+0x10/0x10
[  325.162017][T14529]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  325.162038][T14529]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  325.162065][T14529]  genl_family_rcv_msg_doit+0x206/0x2f0
[  325.162087][T14529]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  325.162107][T14529]  ? genl_get_cmd+0x194/0x580
[  325.162132][T14529]  ? __radix_tree_lookup+0x21f/0x2c0
[  325.162158][T14529]  genl_rcv_msg+0x55c/0x800
[  325.162187][T14529]  ? __pfx_genl_rcv_msg+0x10/0x10
[  325.162208][T14529]  ? __pfx_ethnl_default_doit+0x10/0x10
[  325.162242][T14529]  netlink_rcv_skb+0x155/0x420
[  325.162269][T14529]  ? __pfx_genl_rcv_msg+0x10/0x10
[  325.162289][T14529]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  325.162326][T14529]  ? netlink_deliver_tap+0x1ae/0xd30
[  325.162356][T14529]  genl_rcv+0x28/0x40
[  325.162372][T14529]  netlink_unicast+0x53a/0x7f0
[  325.162401][T14529]  ? __pfx_netlink_unicast+0x10/0x10
[  325.162436][T14529]  netlink_sendmsg+0x8d1/0xdd0
[  325.162467][T14529]  ? __pfx_netlink_sendmsg+0x10/0x10
[  325.162503][T14529]  ____sys_sendmsg+0xa98/0xc70
[  325.162531][T14529]  ? copy_msghdr_from_user+0x10a/0x160
[  325.162553][T14529]  ? __pfx_____sys_sendmsg+0x10/0x10
[  325.162593][T14529]  ___sys_sendmsg+0x134/0x1d0
[  325.162617][T14529]  ? __pfx____sys_sendmsg+0x10/0x10
[  325.162638][T14529]  ? __lock_acquire+0x622/0x1c90
[  325.162695][T14529]  __sys_sendmsg+0x16d/0x220
[  325.162718][T14529]  ? __pfx___sys_sendmsg+0x10/0x10
[  325.162758][T14529]  do_syscall_64+0xcd/0x4c0
[  325.162783][T14529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.162803][T14529] RIP: 0033:0x7fe627b8e969
[  325.162817][T14529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.162834][T14529] RSP: 002b:00007fe6289cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  325.162852][T14529] RAX: ffffffffffffffda RBX: 00007fe627db6080 RCX: 00007fe627b8e969
[  325.162864][T14529] RDX: 0000000002000006 RSI: 0000200000000680 RDI: 0000000000000008
[  325.162876][T14529] RBP: 00007fe6289cf090 R08: 0000000000000000 R09: 0000000000000000
[  325.162887][T14529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  325.162898][T14529] R13: 0000000000000000 R14: 00007fe627db6080 R15: 00007ffe56385f08
[  325.162924][T14529]  </TASK>
[  325.301663][T14532] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2813'.
[  325.419679][T14537] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2815'.
[  325.422874][T14537] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2815'.
[  325.628542][T14544] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2817'.
[  325.638710][T14544] siw: device registration error -23
[  325.732210][T14549] netlink: 344 bytes leftover after parsing attributes in process `syz.0.2818'.
[  325.735835][T14549] netlink: 'syz.0.2818': attribute type 1 has an invalid length.
[  326.003331][T14553] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  326.009301][T14553] FAULT_INJECTION: forcing a failure.
[  326.009301][T14553] name failslab, interval 1, probability 0, space 0, times 0
[  326.016646][T14553] CPU: 2 UID: 0 PID: 14553 Comm: syz.5.2819 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  326.016673][T14553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.016685][T14553] Call Trace:
[  326.016692][T14553]  <TASK>
[  326.016700][T14553]  dump_stack_lvl+0x16c/0x1f0
[  326.016729][T14553]  should_fail_ex+0x512/0x640
[  326.016754][T14553]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  326.016778][T14553]  should_failslab+0xc2/0x120
[  326.016801][T14553]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  326.016823][T14553]  ? ovl_alloc_inode+0x25/0x190
[  326.016853][T14553]  ? __pfx_ovl_alloc_inode+0x10/0x10
[  326.016876][T14553]  ovl_alloc_inode+0x25/0x190
[  326.016899][T14553]  alloc_inode+0x61/0x240
[  326.016936][T14553]  new_inode+0x22/0x1c0
[  326.016985][T14553]  ovl_get_inode+0xab4/0x13d0
[  326.017010][T14553]  ? __pfx_ovl_get_inode+0x10/0x10
[  326.017041][T14553]  ? do_raw_spin_unlock+0x172/0x230
[  326.017069][T14553]  ? _raw_spin_unlock+0x28/0x50
[  326.017094][T14553]  ovl_lookup+0xbe5/0x2270
[  326.017122][T14553]  ? __pfx_ovl_lookup+0x10/0x10
[  326.017138][T14553]  ? __lock_acquire+0xb8a/0x1c90
[  326.017184][T14553]  ? do_raw_spin_lock+0x12c/0x2b0
[  326.017209][T14553]  ? find_held_lock+0x2b/0x80
[  326.017229][T14553]  ? do_raw_spin_unlock+0x172/0x230
[  326.017255][T14553]  ? _raw_spin_unlock+0x28/0x50
[  326.017278][T14553]  lookup_one_qstr_excl_raw.part.0+0xec/0x160
[  326.017305][T14553]  ? lookup_dcache+0x66/0x170
[  326.017333][T14553]  lookup_one_qstr_excl+0x3e/0x120
[  326.017361][T14553]  do_renameat2+0x56d/0xc90
[  326.017393][T14553]  ? __pfx_do_renameat2+0x10/0x10
[  326.017418][T14553]  ? find_held_lock+0x2b/0x80
[  326.017434][T14553]  ? __might_fault+0xe3/0x190
[  326.017453][T14553]  ? __might_fault+0x13b/0x190
[  326.017486][T14553]  ? getname_flags.part.0+0x1c5/0x550
[  326.017518][T14553]  __x64_sys_renameat2+0xe7/0x130
[  326.017545][T14553]  do_syscall_64+0xcd/0x4c0
[  326.017570][T14553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.017589][T14553] RIP: 0033:0x7fac2b38e969
[  326.017604][T14553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.017622][T14553] RSP: 002b:00007fac2c125038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  326.017640][T14553] RAX: ffffffffffffffda RBX: 00007fac2b5b5fa0 RCX: 00007fac2b38e969
[  326.017652][T14553] RDX: ffffffffffffff9c RSI: 0000200000000a00 RDI: ffffffffffffff9c
[  326.017664][T14553] RBP: 00007fac2c125090 R08: 0000000000000002 R09: 0000000000000000
[  326.017675][T14553] R10: 0000200000000600 R11: 0000000000000246 R12: 0000000000000001
[  326.017687][T14553] R13: 0000000000000000 R14: 00007fac2b5b5fa0 R15: 00007ffd68876b68
[  326.017713][T14553]  </TASK>
[  326.017991][T14553] overlayfs: failed to get inode (-12)
[  326.132826][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  326.138317][T14556] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2820'.
[  326.244458][T14558] block nbd5: shutting down sockets
[  326.389260][T14569] FAULT_INJECTION: forcing a failure.
[  326.389260][T14569] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  326.392014][   T40] audit: type=1400 audit(1748791978.434:607): avc:  denied  { ioctl } for  pid=14567 comm="syz.3.2825" path="socket:[64373]" dev="sockfs" ino=64373 ioctlcmd=0x662a scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  326.394700][T14569] CPU: 0 UID: 0 PID: 14569 Comm: syz.5.2826 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  326.394716][T14569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.394724][T14569] Call Trace:
[  326.394727][T14569]  <TASK>
[  326.394732][T14569]  dump_stack_lvl+0x16c/0x1f0
[  326.394750][T14569]  should_fail_ex+0x512/0x640
[  326.394769][T14569]  _copy_to_user+0x32/0xd0
[  326.394788][T14569]  simple_read_from_buffer+0xcb/0x170
[  326.394802][T14569]  proc_fail_nth_read+0x197/0x270
[  326.394815][T14569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  326.394828][T14569]  ? rw_verify_area+0xcf/0x680
[  326.394847][T14569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  326.394859][T14569]  vfs_read+0x1e4/0xc60
[  326.394872][T14569]  ? __pfx___mutex_lock+0x10/0x10
[  326.394887][T14569]  ? __pfx_vfs_read+0x10/0x10
[  326.394903][T14569]  ? __fget_files+0x20e/0x3c0
[  326.394920][T14569]  ksys_read+0x12a/0x250
[  326.394932][T14569]  ? __pfx_ksys_read+0x10/0x10
[  326.394952][T14569]  do_syscall_64+0xcd/0x4c0
[  326.394969][T14569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.394981][T14569] RIP: 0033:0x7fac2b38d37c
[  326.394990][T14569] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  326.395001][T14569] RSP: 002b:00007fac2c125030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  326.395012][T14569] RAX: ffffffffffffffda RBX: 00007fac2b5b5fa0 RCX: 00007fac2b38d37c
[  326.395020][T14569] RDX: 000000000000000f RSI: 00007fac2c1250a0 RDI: 0000000000000003
[  326.395026][T14569] RBP: 00007fac2c125090 R08: 0000000000000000 R09: 0000000000000000
[  326.395033][T14569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.395039][T14569] R13: 0000000000000000 R14: 00007fac2b5b5fa0 R15: 00007ffd68876b68
[  326.395054][T14569]  </TASK>
[  326.435021][T14566] RDS: rds_bind could not find a transport for ::ffff:172.30.0.5, load rds_tcp or rds_rdma?
[  326.457253][T14575] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2827'.
[  326.474434][T14575] siw: device registration error -23
[  326.557800][T14583] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  326.558983][T14582] lo speed is unknown, defaulting to 1000
[  326.590304][T14582] FAULT_INJECTION: forcing a failure.
[  326.590304][T14582] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  326.595542][T14582] CPU: 3 UID: 0 PID: 14582 Comm: syz.5.2831 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  326.595559][T14582] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.595566][T14582] Call Trace:
[  326.595570][T14582]  <TASK>
[  326.595575][T14582]  dump_stack_lvl+0x16c/0x1f0
[  326.595594][T14582]  should_fail_ex+0x512/0x640
[  326.595614][T14582]  should_fail_alloc_page+0xe7/0x130
[  326.595630][T14582]  prepare_alloc_pages+0x3c2/0x610
[  326.595650][T14582]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  326.595666][T14582]  ? find_held_lock+0x2b/0x80
[  326.595678][T14582]  ? is_bpf_text_address+0x8a/0x1a0
[  326.595690][T14582]  ? bpf_ksym_find+0x127/0x1c0
[  326.595704][T14582]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  326.595734][T14582]  ? is_bpf_text_address+0x94/0x1a0
[  326.595747][T14582]  ? __kernel_text_address+0xd/0x40
[  326.595764][T14582]  ? unwind_get_return_address+0x59/0xa0
[  326.595786][T14582]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  326.595804][T14582]  ? policy_nodemask+0xea/0x4e0
[  326.595820][T14582]  alloc_pages_mpol+0x1fb/0x550
[  326.595835][T14582]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  326.595848][T14582]  ? kasan_save_stack+0x33/0x60
[  326.595859][T14582]  ? __kasan_kmalloc+0xaa/0xb0
[  326.595870][T14582]  ? __get_vm_area_node+0x101/0x330
[  326.595890][T14582]  alloc_pages_noprof+0x131/0x390
[  326.595904][T14582]  get_free_pages_noprof+0x10/0xb0
[  326.595919][T14582]  kasan_populate_vmalloc+0x89/0x1f0
[  326.595934][T14582]  alloc_vmap_area+0x959/0x29c0
[  326.595955][T14582]  ? __pfx_alloc_vmap_area+0x10/0x10
[  326.595987][T14582]  __get_vm_area_node+0x1ca/0x330
[  326.596018][T14582]  __vmalloc_node_range_noprof+0x271/0x14b0
[  326.596036][T14582]  ? do_update_counters.constprop.0+0x52/0x9d0
[  326.596051][T14582]  ? __lock_acquire+0xb8a/0x1c90
[  326.596068][T14582]  ? do_update_counters.constprop.0+0x52/0x9d0
[  326.596083][T14582]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  326.596101][T14582]  ? find_held_lock+0x2b/0x80
[  326.596111][T14582]  ? __might_fault+0xe3/0x190
[  326.596122][T14582]  ? __might_fault+0xe3/0x190
[  326.596137][T14582]  ? do_update_counters.constprop.0+0x52/0x9d0
[  326.596149][T14582]  __vmalloc_node_noprof+0xad/0xf0
[  326.596171][T14582]  ? do_update_counters.constprop.0+0x52/0x9d0
[  326.596184][T14582]  do_update_counters.constprop.0+0x52/0x9d0
[  326.596200][T14582]  update_counters+0x114/0x180
[  326.596212][T14582]  ? __pfx_update_counters+0x10/0x10
[  326.596229][T14582]  ? bpf_lsm_capable+0x9/0x10
[  326.596239][T14582]  ? security_capable+0x7e/0x260
[  326.596255][T14582]  do_ebt_set_ctl+0x24d/0x4d0
[  326.596268][T14582]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  326.596282][T14582]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  326.596299][T14582]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  326.596319][T14582]  nf_setsockopt+0x8d/0xf0
[  326.596337][T14582]  ip_setsockopt+0xcb/0xf0
[  326.596352][T14582]  tcp_setsockopt+0xa7/0x100
[  326.596367][T14582]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  326.596385][T14582]  do_sock_setsockopt+0x224/0x470
[  326.596402][T14582]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  326.596426][T14582]  __sys_setsockopt+0x1a0/0x230
[  326.596442][T14582]  __x64_sys_setsockopt+0xbd/0x160
[  326.596455][T14582]  ? do_syscall_64+0x91/0x4c0
[  326.596469][T14582]  ? lockdep_hardirqs_on+0x7c/0x110
[  326.596483][T14582]  do_syscall_64+0xcd/0x4c0
[  326.596499][T14582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.596511][T14582] RIP: 0033:0x7fac2b38e969
[  326.596521][T14582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.596532][T14582] RSP: 002b:00007fac2c125038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  326.596543][T14582] RAX: ffffffffffffffda RBX: 00007fac2b5b5fa0 RCX: 00007fac2b38e969
[  326.596550][T14582] RDX: 0000000000000081 RSI: 0000000000000000 RDI: 0000000000000003
[  326.596556][T14582] RBP: 00007fac2c125090 R08: 0000000000000088 R09: 0000000000000000
[  326.596563][T14582] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[  326.596570][T14582] R13: 0000000000000000 R14: 00007fac2b5b5fa0 R15: 00007ffd68876b68
[  326.596583][T14582]  </TASK>
[  326.722816][    C3] vkms_vblank_simulate: vblank timer overrun
[  326.725609][T14582] syz.5.2831: vmalloc error: size 16, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  326.730974][T14582] CPU: 2 UID: 0 PID: 14582 Comm: syz.5.2831 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  326.730990][T14582] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.730997][T14582] Call Trace:
[  326.731001][T14582]  <TASK>
[  326.731006][T14582]  dump_stack_lvl+0x16c/0x1f0
[  326.731033][T14582]  warn_alloc+0x248/0x3a0
[  326.731052][T14582]  ? __pfx_warn_alloc+0x10/0x10
[  326.731070][T14582]  ? kfree+0x2b4/0x4d0
[  326.731088][T14582]  ? __get_vm_area_node+0x208/0x330
[  326.731118][T14582]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  326.731146][T14582]  ? __lock_acquire+0xb8a/0x1c90
[  326.731172][T14582]  ? do_update_counters.constprop.0+0x52/0x9d0
[  326.731199][T14582]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  326.731225][T14582]  ? find_held_lock+0x2b/0x80
[  326.731239][T14582]  ? __might_fault+0xe3/0x190
[  326.731252][T14582]  ? __might_fault+0xe3/0x190
[  326.731267][T14582]  ? do_update_counters.constprop.0+0x52/0x9d0
[  326.731279][T14582]  __vmalloc_node_noprof+0xad/0xf0
[  326.731296][T14582]  ? do_update_counters.constprop.0+0x52/0x9d0
[  326.731310][T14582]  do_update_counters.constprop.0+0x52/0x9d0
[  326.731326][T14582]  update_counters+0x114/0x180
[  326.731338][T14582]  ? __pfx_update_counters+0x10/0x10
[  326.731355][T14582]  ? bpf_lsm_capable+0x9/0x10
[  326.731364][T14582]  ? security_capable+0x7e/0x260
[  326.731380][T14582]  do_ebt_set_ctl+0x24d/0x4d0
[  326.731393][T14582]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  326.731407][T14582]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  326.731425][T14582]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  326.731445][T14582]  nf_setsockopt+0x8d/0xf0
[  326.731464][T14582]  ip_setsockopt+0xcb/0xf0
[  326.731478][T14582]  tcp_setsockopt+0xa7/0x100
[  326.731493][T14582]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  326.731511][T14582]  do_sock_setsockopt+0x224/0x470
[  326.731528][T14582]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  326.731552][T14582]  __sys_setsockopt+0x1a0/0x230
[  326.731568][T14582]  __x64_sys_setsockopt+0xbd/0x160
[  326.731581][T14582]  ? do_syscall_64+0x91/0x4c0
[  326.731596][T14582]  ? lockdep_hardirqs_on+0x7c/0x110
[  326.731611][T14582]  do_syscall_64+0xcd/0x4c0
[  326.731626][T14582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.731638][T14582] RIP: 0033:0x7fac2b38e969
[  326.731648][T14582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.731659][T14582] RSP: 002b:00007fac2c125038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  326.731670][T14582] RAX: ffffffffffffffda RBX: 00007fac2b5b5fa0 RCX: 00007fac2b38e969
[  326.731677][T14582] RDX: 0000000000000081 RSI: 0000000000000000 RDI: 0000000000000003
[  326.731683][T14582] RBP: 00007fac2c125090 R08: 0000000000000088 R09: 0000000000000000
[  326.731690][T14582] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[  326.731696][T14582] R13: 0000000000000000 R14: 00007fac2b5b5fa0 R15: 00007ffd68876b68
[  326.731710][T14582]  </TASK>
[  326.731732][T14582] Mem-Info:
[  326.761870][T14590] IPVS: set_ctl: invalid protocol: 115 172.20.20.170:20004
[  326.764033][T14582] active_anon:13864 inactive_anon:0 isolated_anon:0
[  326.764033][T14582]  active_file:4604 inactive_file:52079 isolated_file:0
[  326.764033][T14582]  unevictable:1768 dirty:321 writeback:0
[  326.764033][T14582]  slab_reclaimable:12285 slab_unreclaimable:79650
[  326.764033][T14582]  mapped:28577 shmem:5294 pagetables:1734
[  326.764033][T14582]  sec_pagetables:313 bounce:0
[  326.764033][T14582]  kernel_misc_reclaimable:0
[  326.764033][T14582]  free:424879 free_pcp:25205 free_cma:0
[  326.849160][T14582] Node 0 active_anon:54332kB inactive_anon:0kB active_file:18416kB inactive_file:208108kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:105160kB dirty:1272kB writeback:0kB shmem:17640kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:14064kB pagetables:6100kB sec_pagetables:1252kB all_unreclaimable? yes Balloon:0kB
[  326.861183][T14582] Node 1 active_anon:1248kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:9148kB dirty:12kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:1084kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  326.883815][T14582] Node 0 DMA free:14916kB boost:2048kB min:2388kB low:2472kB high:2556kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:404kB local_pcp:172kB free_cma:0kB
[  326.895845][T14582] lowmem_reserve[]: 0 1235 1235 1235 1235
[  326.900827][T14582] Node 0 DMA32 free:142748kB boost:61440kB min:88956kB low:95832kB high:102708kB reserved_highatomic:0KB free_highatomic:0KB active_anon:54332kB inactive_anon:0kB active_file:18416kB inactive_file:208108kB unevictable:3536kB writepending:1272kB present:2080628kB managed:1264928kB mlocked:0kB bounce:0kB free_pcp:47976kB local_pcp:6056kB free_cma:0kB
[  326.916466][T14582] lowmem_reserve[]: 0 0 0 0 0
[  326.922364][T14582] Node 1 Normal free:1541092kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1248kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:3536kB writepending:12kB present:2097152kB managed:1781948kB mlocked:0kB bounce:0kB free_pcp:52584kB local_pcp:13252kB free_cma:0kB
[  326.932205][T14582] lowmem_reserve[]: 0 0 0 0 0
[  326.934702][T14582] Node 0 DMA: 17*4kB (UM) 18*8kB (UM) 19*16kB (UM) 14*32kB (UM) 10*64kB (UM) 10*128kB (UM) 11*256kB (UM) 6*512kB (UM) 2*1024kB (U) 2*2048kB (U) 0*4096kB = 14916kB
[  326.941710][T14582] Node 0 DMA32: 370*4kB (UE) 224*8kB (UE) 192*16kB (UE) 497*32kB (UE) 303*64kB (UE) 89*128kB (UE) 73*256kB (UM) 58*512kB (UME) 22*1024kB (UM) 5*2048kB (M) 2*4096kB (M) = 142376kB
[  326.949190][T14582] Node 1 Normal: 314*4kB (UME) 351*8kB (UM) 348*16kB (UME) 559*32kB (UME) 418*64kB (UME) 304*128kB (UME) 234*256kB (UME) 217*512kB (UE) 173*1024kB (UME) 7*2048kB (UME) 265*4096kB (M) = 1541120kB
[  326.957889][T14582] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  326.962006][T14582] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  326.965894][T14582] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  326.969895][T14582] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  326.973919][T14582] 61973 total pagecache pages
[  326.975968][T14582] 0 pages in swap cache
[  326.977807][T14582] Free swap  = 124996kB
[  326.979651][T14582] Total swap = 124996kB
[  326.981569][T14582] 1048443 pages RAM
[  326.983365][T14582] 0 pages HighMem/MovableOnly
[  326.985469][T14582] 282884 pages reserved
[  326.987287][T14582] 0 pages cma reserved
[  327.088570][   T40] audit: type=1400 audit(1748791979.134:608): avc:  denied  { nlmsg_tty_audit } for  pid=14601 comm="syz.5.2837" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  327.169226][T14606] FAULT_INJECTION: forcing a failure.
[  327.169226][T14606] name failslab, interval 1, probability 0, space 0, times 0
[  327.173201][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  327.175507][T14606] CPU: 1 UID: 0 PID: 14606 Comm: syz.0.2839 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  327.175523][T14606] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  327.175531][T14606] Call Trace:
[  327.175535][T14606]  <TASK>
[  327.175540][T14606]  dump_stack_lvl+0x16c/0x1f0
[  327.175559][T14606]  should_fail_ex+0x512/0x640
[  327.175576][T14606]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  327.175591][T14606]  should_failslab+0xc2/0x120
[  327.175605][T14606]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  327.175617][T14606]  ? kfree_skbmem+0x1a4/0x1f0
[  327.175628][T14606]  ? sk_skb_reason_drop+0x136/0x1a0
[  327.175642][T14606]  ? __alloc_skb+0x2b2/0x380
[  327.175657][T14606]  __alloc_skb+0x2b2/0x380
[  327.175670][T14606]  ? __pfx___alloc_skb+0x10/0x10
[  327.175682][T14606]  ? __lock_acquire+0x622/0x1c90
[  327.175701][T14606]  alloc_skb_with_frags+0xe0/0x860
[  327.175744][T14606]  ? __lock_acquire+0xb8a/0x1c90
[  327.175761][T14606]  sock_alloc_send_pskb+0x7fb/0x990
[  327.175779][T14606]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  327.175793][T14606]  ? find_held_lock+0x2b/0x80
[  327.175804][T14606]  ? llc_ui_sendmsg+0x37b/0x1540
[  327.175820][T14606]  ? rcu_is_watching+0x12/0xc0
[  327.175831][T14606]  ? __local_bh_enable_ip+0xa4/0x120
[  327.175844][T14606]  llc_ui_sendmsg+0x39b/0x1540
[  327.175864][T14606]  ? __pfx_llc_ui_sendmsg+0x10/0x10
[  327.175886][T14606]  __sys_sendto+0x4a3/0x520
[  327.175899][T14606]  ? __pfx___sys_sendto+0x10/0x10
[  327.175923][T14606]  ? ksys_write+0x1ac/0x250
[  327.175936][T14606]  ? __pfx_ksys_write+0x10/0x10
[  327.175950][T14606]  __x64_sys_sendto+0xe0/0x1c0
[  327.175962][T14606]  ? do_syscall_64+0x91/0x4c0
[  327.175980][T14606]  ? lockdep_hardirqs_on+0x7c/0x110
[  327.175995][T14606]  do_syscall_64+0xcd/0x4c0
[  327.176010][T14606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.176022][T14606] RIP: 0033:0x7fe627b8e969
[  327.176032][T14606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.176043][T14606] RSP: 002b:00007fe6289f0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  327.176055][T14606] RAX: ffffffffffffffda RBX: 00007fe627db5fa0 RCX: 00007fe627b8e969
[  327.176062][T14606] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  327.176068][T14606] RBP: 00007fe6289f0090 R08: 0000200000000000 R09: 0000000000000010
[  327.176075][T14606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.176081][T14606] R13: 0000000000000000 R14: 00007fe627db5fa0 R15: 00007ffe56385f08
[  327.176095][T14606]  </TASK>
[  327.181570][T14608] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[  327.282198][T14612] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=9 sclass=netlink_xfrm_socket pid=14612 comm=syz.0.2841
[  327.309892][T14615] ubi: mtd0 is already attached to ubi31
[  327.423687][T14625] FAULT_INJECTION: forcing a failure.
[  327.423687][T14625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  327.428934][T14625] CPU: 3 UID: 0 PID: 14625 Comm: syz.5.2844 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  327.428964][T14625] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  327.428975][T14625] Call Trace:
[  327.428983][T14625]  <TASK>
[  327.428991][T14625]  dump_stack_lvl+0x16c/0x1f0
[  327.429020][T14625]  should_fail_ex+0x512/0x640
[  327.429051][T14625]  _copy_to_user+0x32/0xd0
[  327.429081][T14625]  simple_read_from_buffer+0xcb/0x170
[  327.429104][T14625]  proc_fail_nth_read+0x197/0x270
[  327.429126][T14625]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  327.429148][T14625]  ? rw_verify_area+0xcf/0x680
[  327.429175][T14625]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  327.429194][T14625]  vfs_read+0x1e4/0xc60
[  327.429217][T14625]  ? __pfx___mutex_lock+0x10/0x10
[  327.429240][T14625]  ? __pfx_vfs_read+0x10/0x10
[  327.429266][T14625]  ? __fget_files+0x20e/0x3c0
[  327.429295][T14625]  ksys_read+0x12a/0x250
[  327.429315][T14625]  ? __pfx_ksys_read+0x10/0x10
[  327.429334][T14625]  ? fput+0x70/0xf0
[  327.429361][T14625]  do_syscall_64+0xcd/0x4c0
[  327.429386][T14625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.429404][T14625] RIP: 0033:0x7fac2b38d37c
[  327.429419][T14625] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  327.429436][T14625] RSP: 002b:00007fac291e6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  327.429453][T14625] RAX: ffffffffffffffda RBX: 00007fac2b5b6080 RCX: 00007fac2b38d37c
[  327.429465][T14625] RDX: 000000000000000f RSI: 00007fac291e60a0 RDI: 000000000000000b
[  327.429475][T14625] RBP: 00007fac291e6090 R08: 0000000000000000 R09: 0000000000000000
[  327.429486][T14625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.429497][T14625] R13: 0000000000000000 R14: 00007fac2b5b6080 R15: 00007ffd68876b68
[  327.429522][T14625]  </TASK>
[  327.502054][    C3] vkms_vblank_simulate: vblank timer overrun
[  327.623190][ T6047] usb 8-1: new high-speed USB device number 31 using dummy_hcd
[  327.772898][ T6047] usb 8-1: Using ep0 maxpacket: 8
[  327.775795][ T6047] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  327.779136][ T6047] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  327.782056][ T6047] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.786470][ T6047] usb 8-1: config 0 descriptor??
[  327.998945][ T6047] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  328.200236][   T29] usb 8-1: USB disconnect, device number 31
[  328.202296][    C1] iowarrior 8-1:0.0: iowarrior_callback - usb_submit_urb failed with result -19
[  328.205267][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  328.442982][ T5941] Bluetooth: hci0: command 0x0419 tx timeout
[  328.500328][ T5938] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  328.543761][   T40] audit: type=1400 audit(1748791980.584:609): avc:  denied  { ioctl } for  pid=14657 comm="syz.4.2857" path="/dev/ptyqc" dev="devtmpfs" ino=139 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  328.561566][   T40] audit: type=1400 audit(1748791980.604:610): avc:  denied  { write } for  pid=14660 comm="syz.0.2856" name="mouse0" dev="devtmpfs" ino=946 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  328.735670][T14670] xt_hashlimit: size too large, truncated to 1048576
[  328.803316][T14676] xt_hashlimit: size too large, truncated to 1048576
[  328.850471][   T40] audit: type=1400 audit(1748791980.894:611): avc:  denied  { watch } for  pid=14677 comm="syz.3.2862" path="/106/file0" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  328.873533][T14679] XFS (nullb0): Invalid superblock magic number
[  328.879172][   T40] audit: type=1326 audit(1748791980.924:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14681 comm="syz.5.2863" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fac2b38e969 code=0x0
[  329.242833][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  329.325046][T14699] fuse: Bad value for 'fd'
[  329.477941][   T40] audit: type=1400 audit(1748791981.524:613): avc:  denied  { setopt } for  pid=14702 comm="syz.4.2867" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  329.494887][   T40] audit: type=1400 audit(1748791981.544:614): avc:  denied  { bind } for  pid=14702 comm="syz.4.2867" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  329.801785][T14716] siw: device registration error -23
[  330.106100][T14736] __nla_validate_parse: 18 callbacks suppressed
[  330.106112][T14736] netlink: 5 bytes leftover after parsing attributes in process `syz.5.2877'.
[  330.111472][T14736] 0ªX¹¦D: renamed from gretap0 (while UP)
[  330.113742][T14736] FAULT_INJECTION: forcing a failure.
[  330.113742][T14736] name failslab, interval 1, probability 0, space 0, times 0
[  330.118625][T14736] CPU: 1 UID: 0 PID: 14736 Comm: syz.5.2877 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  330.118641][T14736] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  330.118648][T14736] Call Trace:
[  330.118653][T14736]  <TASK>
[  330.118657][T14736]  dump_stack_lvl+0x16c/0x1f0
[  330.118677][T14736]  should_fail_ex+0x512/0x640
[  330.118693][T14736]  ? __kmalloc_noprof+0xbf/0x510
[  330.118707][T14736]  ? kobject_rename+0xf1/0x260
[  330.118723][T14736]  should_failslab+0xc2/0x120
[  330.118737][T14736]  __kmalloc_noprof+0xd2/0x510
[  330.118749][T14736]  ? kobject_get_path+0x8e/0x2a0
[  330.118767][T14736]  kobject_rename+0xf1/0x260
[  330.118783][T14736]  ? __pfx_kobject_rename+0x10/0x10
[  330.118800][T14736]  ? kernfs_put+0x35/0x60
[  330.118818][T14736]  device_rename+0x130/0x230
[  330.118834][T14736]  netif_change_name+0x27c/0x920
[  330.118852][T14736]  ? __pfx_netif_change_name+0x10/0x10
[  330.118865][T14736]  ? __pfx___schedule+0x10/0x10
[  330.118877][T14736]  ? __pfx_validate_linkmsg+0x10/0x10
[  330.118893][T14736]  ? __asan_memset+0x23/0x50
[  330.118906][T14736]  do_setlink.constprop.0+0x3362/0x4380
[  330.118927][T14736]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  330.118943][T14736]  ? __wake_up_klogd.part.0+0x99/0xf0
[  330.118960][T14736]  ? vprintk_emit+0x1e6/0x6d0
[  330.118972][T14736]  ? __lock_acquire+0xb8a/0x1c90
[  330.118993][T14736]  ? find_held_lock+0x2b/0x80
[  330.119006][T14736]  ? __mutex_trylock_common+0xe9/0x250
[  330.119022][T14736]  ? __pfx___mutex_trylock_common+0x10/0x10
[  330.119038][T14736]  ? __pfx___might_resched+0x10/0x10
[  330.119050][T14736]  ? rcu_is_watching+0x12/0xc0
[  330.119061][T14736]  ? trace_contention_end+0xdd/0x130
[  330.119077][T14736]  ? __mutex_lock+0x1ca/0xb90
[  330.119092][T14736]  ? rtnl_setlink+0x2b0/0x770
[  330.119108][T14736]  ? __pfx___mutex_lock+0x10/0x10
[  330.119122][T14736]  ? cap_capable+0xb3/0x250
[  330.119144][T14736]  rtnl_setlink+0x3cb/0x770
[  330.119161][T14736]  ? __pfx_rtnl_setlink+0x10/0x10
[  330.119175][T14736]  ? netlink_unicast+0x5df/0x7f0
[  330.119193][T14736]  ? do_writev+0x28c/0x340
[  330.119203][T14736]  ? do_syscall_64+0xcd/0x4c0
[  330.119217][T14736]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.119255][T14736]  ? __lock_acquire+0x622/0x1c90
[  330.119276][T14736]  ? find_held_lock+0x2b/0x80
[  330.119286][T14736]  ? __pfx_rtnl_setlink+0x10/0x10
[  330.119300][T14736]  ? __pfx_rtnl_setlink+0x10/0x10
[  330.119313][T14736]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  330.119329][T14736]  ? __pfx_rtnl_setlink+0x10/0x10
[  330.119344][T14736]  rtnetlink_rcv_msg+0x95e/0xe90
[  330.119361][T14736]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  330.119380][T14736]  ? ref_tracker_free+0x37c/0x830
[  330.119399][T14736]  netlink_rcv_skb+0x155/0x420
[  330.119416][T14736]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  330.119432][T14736]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  330.119455][T14736]  ? netlink_deliver_tap+0x1ae/0xd30
[  330.119474][T14736]  netlink_unicast+0x53a/0x7f0
[  330.119493][T14736]  ? __pfx_netlink_unicast+0x10/0x10
[  330.119515][T14736]  netlink_sendmsg+0x8d1/0xdd0
[  330.119534][T14736]  ? __pfx_netlink_sendmsg+0x10/0x10
[  330.119557][T14736]  sock_write_iter+0x4fc/0x5b0
[  330.119576][T14736]  ? __pfx_sock_write_iter+0x10/0x10
[  330.119599][T14736]  ? __pfx_file_has_perm+0x10/0x10
[  330.119616][T14736]  do_iter_readv_writev+0x556/0x820
[  330.119628][T14736]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  330.119638][T14736]  ? selinux_file_permission+0x126/0x660
[  330.119656][T14736]  ? bpf_lsm_file_permission+0x9/0x10
[  330.119672][T14736]  ? security_file_permission+0x71/0x210
[  330.119714][T14736]  ? rw_verify_area+0xcf/0x680
[  330.119737][T14736]  vfs_writev+0x35f/0xde0
[  330.119752][T14736]  ? __pfx_vfs_writev+0x10/0x10
[  330.119773][T14736]  ? __fget_files+0x20e/0x3c0
[  330.119785][T14736]  ? __fget_files+0x170/0x3c0
[  330.119801][T14736]  ? do_writev+0x28c/0x340
[  330.119811][T14736]  do_writev+0x28c/0x340
[  330.119821][T14736]  ? __pfx_do_writev+0x10/0x10
[  330.119837][T14736]  do_syscall_64+0xcd/0x4c0
[  330.119852][T14736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.119864][T14736] RIP: 0033:0x7fac2b38e969
[  330.119874][T14736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.119886][T14736] RSP: 002b:00007fac291f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  330.119897][T14736] RAX: ffffffffffffffda RBX: 00007fac2b5b6080 RCX: 00007fac2b38e969
[  330.119904][T14736] RDX: 0000000000000001 RSI: 00002000000000c0 RDI: 0000000000000003
[  330.119910][T14736] RBP: 00007fac291f6090 R08: 0000000000000000 R09: 0000000000000000
[  330.119917][T14736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.119923][T14736] R13: 0000000000000000 R14: 00007fac2b5b6080 R15: 00007ffd68876b68
[  330.119937][T14736]  </TASK>
[  330.283313][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  330.436673][T14748] Bluetooth: hci0: unsupported parameter 2327
[  330.438546][T14748] Bluetooth: hci0: unsupported parameter 64
[  330.440543][T14748] Bluetooth: hci0: unsupported parameter 2327
[  330.443230][T14748] Bluetooth: hci0: unsupported parameter 64
[  330.449137][T14748] FAULT_INJECTION: forcing a failure.
[  330.449137][T14748] name failslab, interval 1, probability 0, space 0, times 0
[  330.456643][T14748] CPU: 3 UID: 0 PID: 14748 Comm: syz.3.2879 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  330.456664][T14748] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  330.456671][T14748] Call Trace:
[  330.456676][T14748]  <TASK>
[  330.456681][T14748]  dump_stack_lvl+0x16c/0x1f0
[  330.456699][T14748]  should_fail_ex+0x512/0x640
[  330.456719][T14748]  should_failslab+0xc2/0x120
[  330.456734][T14748]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  330.456748][T14748]  ? __alloc_skb+0x2b2/0x380
[  330.456764][T14748]  __alloc_skb+0x2b2/0x380
[  330.456777][T14748]  ? __pfx___alloc_skb+0x10/0x10
[  330.456791][T14748]  ? __alloc_skb+0x200/0x380
[  330.456803][T14748]  ? __pfx___alloc_skb+0x10/0x10
[  330.456816][T14748]  ? __pfx_bt_warn+0x10/0x10
[  330.456831][T14748]  create_monitor_ctrl_event+0x3b/0x450
[  330.456848][T14748]  mgmt_cmd_complete+0x2de/0x550
[  330.456865][T14748]  set_def_system_config+0x93b/0x1520
[  330.456883][T14748]  ? __pfx_mgmt_init_hdev+0x10/0x10
[  330.456901][T14748]  hci_sock_sendmsg+0x1522/0x25f0
[  330.456919][T14748]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  330.456939][T14748]  sock_write_iter+0x4fc/0x5b0
[  330.456962][T14748]  ? __pfx_sock_write_iter+0x10/0x10
[  330.456984][T14748]  ? bpf_lsm_file_permission+0x9/0x10
[  330.457001][T14748]  ? security_file_permission+0x71/0x210
[  330.457019][T14748]  ? rw_verify_area+0xcf/0x680
[  330.457038][T14748]  vfs_write+0x6c7/0x1150
[  330.457051][T14748]  ? __pfx_sock_write_iter+0x10/0x10
[  330.457070][T14748]  ? __pfx_vfs_write+0x10/0x10
[  330.457080][T14748]  ? find_held_lock+0x2b/0x80
[  330.457101][T14748]  ksys_write+0x1f8/0x250
[  330.457113][T14748]  ? __pfx_ksys_write+0x10/0x10
[  330.457129][T14748]  do_syscall_64+0xcd/0x4c0
[  330.457145][T14748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.457158][T14748] RIP: 0033:0x7f7c8418e969
[  330.457168][T14748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.457179][T14748] RSP: 002b:00007f7c8501c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  330.457190][T14748] RAX: ffffffffffffffda RBX: 00007f7c843b5fa0 RCX: 00007f7c8418e969
[  330.457197][T14748] RDX: 000000000000000d RSI: 0000200000000000 RDI: 0000000000000004
[  330.457205][T14748] RBP: 00007f7c8501c090 R08: 0000000000000000 R09: 0000000000000000
[  330.457211][T14748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.457218][T14748] R13: 0000000000000000 R14: 00007f7c843b5fa0 R15: 00007ffe0c5f32a8
[  330.457232][T14748]  </TASK>
[  330.545709][    C3] vkms_vblank_simulate: vblank timer overrun
[  330.645514][T14754] block device autoloading is deprecated and will be removed.
[  330.649314][T14753] md: md2 stopped.
[  330.664763][T14756] FAULT_INJECTION: forcing a failure.
[  330.664763][T14756] name failslab, interval 1, probability 0, space 0, times 0
[  330.668856][T14756] CPU: 0 UID: 0 PID: 14756 Comm: syz.0.2882 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  330.668872][T14756] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  330.668880][T14756] Call Trace:
[  330.668885][T14756]  <TASK>
[  330.668890][T14756]  dump_stack_lvl+0x16c/0x1f0
[  330.668908][T14756]  should_fail_ex+0x512/0x640
[  330.668925][T14756]  ? __kmalloc_noprof+0xbf/0x510
[  330.668939][T14756]  ? ethnl_default_notify+0x1a7/0x940
[  330.668956][T14756]  should_failslab+0xc2/0x120
[  330.668975][T14756]  __kmalloc_noprof+0xd2/0x510
[  330.668991][T14756]  ? __pfx___ethnl_set_coalesce.isra.0+0x10/0x10
[  330.669012][T14756]  ? rpm_resume+0x731/0x1310
[  330.669040][T14756]  ? __pfx_ethnl_default_notify+0x10/0x10
[  330.669059][T14756]  ethnl_default_notify+0x1a7/0x940
[  330.669076][T14756]  ? __pfx_ethnl_default_notify+0x10/0x10
[  330.669098][T14756]  ? ethnl_set_coalesce+0xb8/0x170
[  330.669111][T14756]  ? __pfx_ethnl_set_coalesce+0x10/0x10
[  330.669126][T14756]  ? __pfx_ethnl_default_notify+0x10/0x10
[  330.669142][T14756]  ethtool_notify+0xbf/0x200
[  330.669157][T14756]  ethnl_default_set_doit+0x4e5/0xb10
[  330.669174][T14756]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  330.669192][T14756]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  330.669205][T14756]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  330.669226][T14756]  genl_family_rcv_msg_doit+0x206/0x2f0
[  330.669239][T14756]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  330.669256][T14756]  ? bpf_lsm_capable+0x9/0x10
[  330.669266][T14756]  ? security_capable+0x7e/0x260
[  330.669291][T14756]  ? ns_capable+0xd7/0x110
[  330.669313][T14756]  genl_rcv_msg+0x55c/0x800
[  330.669326][T14756]  ? __pfx_genl_rcv_msg+0x10/0x10
[  330.669338][T14756]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  330.669360][T14756]  netlink_rcv_skb+0x155/0x420
[  330.669377][T14756]  ? __pfx_genl_rcv_msg+0x10/0x10
[  330.669389][T14756]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  330.669413][T14756]  ? netlink_deliver_tap+0x1ae/0xd30
[  330.669432][T14756]  genl_rcv+0x28/0x40
[  330.669442][T14756]  netlink_unicast+0x53a/0x7f0
[  330.669461][T14756]  ? __pfx_netlink_unicast+0x10/0x10
[  330.669482][T14756]  netlink_sendmsg+0x8d1/0xdd0
[  330.669502][T14756]  ? __pfx_netlink_sendmsg+0x10/0x10
[  330.669526][T14756]  ____sys_sendmsg+0xa98/0xc70
[  330.669545][T14756]  ? copy_msghdr_from_user+0x10a/0x160
[  330.669559][T14756]  ? __pfx_____sys_sendmsg+0x10/0x10
[  330.669583][T14756]  ___sys_sendmsg+0x134/0x1d0
[  330.669599][T14756]  ? __pfx____sys_sendmsg+0x10/0x10
[  330.669612][T14756]  ? __lock_acquire+0x622/0x1c90
[  330.669645][T14756]  __sys_sendmsg+0x16d/0x220
[  330.669660][T14756]  ? __pfx___sys_sendmsg+0x10/0x10
[  330.669683][T14756]  do_syscall_64+0xcd/0x4c0
[  330.669700][T14756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.669712][T14756] RIP: 0033:0x7fe627b8e969
[  330.669721][T14756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.669732][T14756] RSP: 002b:00007fe6289f0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  330.669743][T14756] RAX: ffffffffffffffda RBX: 00007fe627db5fa0 RCX: 00007fe627b8e969
[  330.669750][T14756] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000003
[  330.669757][T14756] RBP: 00007fe6289f0090 R08: 0000000000000000 R09: 0000000000000000
[  330.669763][T14756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.669770][T14756] R13: 0000000000000000 R14: 00007fe627db5fa0 R15: 00007ffe56385f08
[  330.669784][T14756]  </TASK>
[  330.692091][T14760] netlink: 'syz.4.2884': attribute type 27 has an invalid length.
[  330.745457][T14761] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2884'.
[  330.799879][T14763] 9pnet_virtio: no channels available for device syz
[  330.819855][T14760] bridge0: port 2(bridge_slave_1) entered disabled state
[  330.822650][T14760] bridge0: port 1(bridge_slave_0) entered disabled state
[  330.919744][T14771] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2883'.
[  330.920225][T14770] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=53 sclass=netlink_route_socket pid=14770 comm=syz.4.2884
[  330.949261][T14760] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  330.964361][T14760] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  330.989295][T14775] ubi: mtd0 is already attached to ubi31
[  331.009502][T14760] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  331.012495][T14760] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  331.016490][T14760] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  331.019336][T14760] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  331.108211][T14764] 8021q: adding VLAN 0 to HW filter on device bond0
[  331.112258][T14764] 8021q: adding VLAN 0 to HW filter on device team0
[  331.119620][T14764] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  331.322875][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  331.872241][T14832] tmpfs: Bad value for 'mpol'
[  332.142457][T14847] tipc: Started in network mode
[  332.145237][T14847] tipc: Node identity 2, cluster identity 4711
[  332.148161][T14847] tipc: Node number set to 2
[  332.172118][T14848] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2903'.
[  332.193052][   T29] usb 8-1: new high-speed USB device number 32 using dummy_hcd
[  332.362866][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  332.495206][   T29] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  332.499834][   T29] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  332.504162][   T29] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  332.507940][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  332.514521][T14836] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  332.520316][   T29] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  332.560685][T14862] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  332.614650][T14865] FAULT_INJECTION: forcing a failure.
[  332.614650][T14865] name failslab, interval 1, probability 0, space 0, times 0
[  332.618844][T14865] CPU: 0 UID: 0 PID: 14865 Comm: syz.4.2910 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  332.618862][T14865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.618873][T14865] Call Trace:
[  332.618877][T14865]  <TASK>
[  332.618882][T14865]  dump_stack_lvl+0x16c/0x1f0
[  332.618902][T14865]  should_fail_ex+0x512/0x640
[  332.618922][T14865]  should_failslab+0xc2/0x120
[  332.618937][T14865]  __kmalloc_cache_noprof+0x6a/0x3e0
[  332.618948][T14865]  ? do_raw_spin_lock+0x12c/0x2b0
[  332.618965][T14865]  ? find_held_lock+0x2b/0x80
[  332.618975][T14865]  ? async_schedule_node_domain+0x54/0x120
[  332.618990][T14865]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  332.619005][T14865]  async_schedule_node_domain+0x54/0x120
[  332.619019][T14865]  dev_cache_fw_image+0x38e/0x490
[  332.619034][T14865]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  332.619051][T14865]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  332.619065][T14865]  dpm_for_each_dev+0x5d/0xb0
[  332.619078][T14865]  fw_pm_notify+0x81/0x150
[  332.619090][T14865]  notifier_call_chain+0xbc/0x410
[  332.619102][T14865]  ? __pfx_fw_pm_notify+0x10/0x10
[  332.619118][T14865]  blocking_notifier_call_chain_robust+0xc8/0x160
[  332.619133][T14865]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[  332.619149][T14865]  ? do_raw_spin_unlock+0x172/0x230
[  332.619168][T14865]  pm_notifier_call_chain_robust+0x27/0x60
[  332.619184][T14865]  snapshot_open+0x189/0x2b0
[  332.619197][T14865]  ? __pfx_snapshot_open+0x10/0x10
[  332.619211][T14865]  misc_open+0x35d/0x420
[  332.619225][T14865]  ? __pfx_misc_open+0x10/0x10
[  332.619238][T14865]  chrdev_open+0x231/0x6a0
[  332.619253][T14865]  ? __pfx_chrdev_open+0x10/0x10
[  332.619269][T14865]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  332.619299][T14865]  do_dentry_open+0x741/0x1c10
[  332.619313][T14865]  ? __pfx_chrdev_open+0x10/0x10
[  332.619330][T14865]  vfs_open+0x82/0x3f0
[  332.619348][T14865]  path_openat+0x1de4/0x2cb0
[  332.619367][T14865]  ? __pfx_path_openat+0x10/0x10
[  332.619381][T14865]  ? __lock_acquire+0xb8a/0x1c90
[  332.619398][T14865]  do_filp_open+0x20b/0x470
[  332.619412][T14865]  ? __pfx_do_filp_open+0x10/0x10
[  332.619436][T14865]  ? alloc_fd+0x471/0x7d0
[  332.619454][T14865]  do_sys_openat2+0x11b/0x1d0
[  332.619471][T14865]  ? __pfx_do_sys_openat2+0x10/0x10
[  332.619489][T14865]  ? bpf_trace_run2+0x2a5/0x590
[  332.619509][T14865]  __x64_sys_openat+0x174/0x210
[  332.619526][T14865]  ? __pfx___x64_sys_openat+0x10/0x10
[  332.619544][T14865]  ? syscall_trace_enter+0x1cb/0x260
[  332.619563][T14865]  ? rcu_is_watching+0x12/0xc0
[  332.619576][T14865]  do_syscall_64+0xcd/0x4c0
[  332.619592][T14865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.619604][T14865] RIP: 0033:0x7fe66a58e969
[  332.619613][T14865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  332.619624][T14865] RSP: 002b:00007fe66b4bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  332.619636][T14865] RAX: ffffffffffffffda RBX: 00007fe66a7b5fa0 RCX: 00007fe66a58e969
[  332.619643][T14865] RDX: 0000000000007600 RSI: 00002000000002c0 RDI: ffffffffffffff9c
[  332.619650][T14865] RBP: 00007fe66b4bf090 R08: 0000000000000000 R09: 0000000000000000
[  332.619656][T14865] R10: 000000000000feff R11: 0000000000000246 R12: 0000000000000001
[  332.619679][T14865] R13: 0000000000000000 R14: 00007fe66a7b5fa0 R15: 00007ffe49e30758
[  332.619694][T14865]  </TASK>
[  332.621881][T14865] 
[  332.726976][T14865] ============================================
[  332.728896][T14865] WARNING: possible recursive locking detected
[  332.730815][T14865] 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 Not tainted
[  332.733854][T14865] --------------------------------------------
[  332.737007][T14865] syz.4.2910/14865 is trying to acquire lock:
[  332.738885][T14865] ffffffff8f511b68 (fw_lock){+.+.}-{4:4}, at: assign_fw+0x4e/0x640
[  332.741378][T14865] 
[  332.741378][T14865] but task is already holding lock:
[  332.743638][T14865] ffffffff8f511b68 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150
[  332.746101][T14865] 
[  332.746101][T14865] other info that might help us debug this:
[  332.748518][T14865]  Possible unsafe locking scenario:
[  332.748518][T14865] 
[  332.750817][T14865]        CPU0
[  332.751886][T14865]        ----
[  332.752936][T14865]   lock(fw_lock);
[  332.753985][ T6047] usb 8-1: USB disconnect, device number 32
[  332.754116][T14865]   lock(fw_lock);
[  332.754125][T14865] 
[  332.754125][T14865]  *** DEADLOCK ***
[  332.754125][T14865] 
[  332.760292][T14865]  May be due to missing lock nesting notation
[  332.760292][T14865] 
[  332.762875][T14865] 5 locks held by syz.4.2910/14865:
[  332.764504][T14865]  #0: ffffffff8f2ffbc8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  332.767107][T14865]  #1: ffffffff8e4881a8 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0
[  332.770287][T14865]  #2: ffffffff8e4c8890 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160
[  332.773915][T14865]  #3: ffffffff8f511b68 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150
[  332.776577][T14865]  #4: ffffffff8f50c568 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0
[  332.779425][T14865] 
[  332.779425][T14865] stack backtrace:
[  332.781289][T14865] CPU: 0 UID: 0 PID: 14865 Comm: syz.4.2910 Not tainted 6.15.0-syzkaller-10769-g7d4e49a77d99 #0 PREEMPT(full) 
[  332.781304][T14865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.781311][T14865] Call Trace:
[  332.781317][T14865]  <TASK>
[  332.781321][T14865]  dump_stack_lvl+0x116/0x1f0
[  332.781338][T14865]  print_deadlock_bug+0x1e9/0x240
[  332.781352][T14865]  __lock_acquire+0x1106/0x1c90
[  332.781367][T14865]  ? __kasan_slab_free+0x51/0x70
[  332.781381][T14865]  lock_acquire+0x179/0x350
[  332.781395][T14865]  ? assign_fw+0x4e/0x640
[  332.781409][T14865]  ? __pfx___might_resched+0x10/0x10
[  332.781420][T14865]  ? do_sys_openat2+0x11b/0x1d0
[  332.781435][T14865]  ? __x64_sys_openat+0x174/0x210
[  332.781450][T14865]  ? do_syscall_64+0xcd/0x4c0
[  332.781465][T14865]  __mutex_lock+0x199/0xb90
[  332.781480][T14865]  ? assign_fw+0x4e/0x640
[  332.781493][T14865]  ? assign_fw+0x4e/0x640
[  332.781506][T14865]  ? __pfx___mutex_lock+0x10/0x10
[  332.781522][T14865]  ? kasan_quarantine_put+0x10a/0x240
[  332.781534][T14865]  ? lockdep_hardirqs_on+0x7c/0x110
[  332.781548][T14865]  ? assign_fw+0x4e/0x640
[  332.781561][T14865]  assign_fw+0x4e/0x640
[  332.781573][T14865]  ? _request_firmware+0x957/0x1470
[  332.781588][T14865]  _request_firmware+0x988/0x1470
[  332.781604][T14865]  ? __pfx__request_firmware+0x10/0x10
[  332.781618][T14865]  ? dump_stack_lvl+0x197/0x1f0
[  332.781631][T14865]  ? dump_stack_lvl+0x1a3/0x1f0
[  332.781646][T14865]  __async_dev_cache_fw_image+0xb1/0x340
[  332.781661][T14865]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  332.781677][T14865]  ? mark_held_locks+0x49/0x80
[  332.781690][T14865]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  332.781702][T14865]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  332.781718][T14865]  async_schedule_node_domain+0xd4/0x120
[  332.781731][T14865]  dev_cache_fw_image+0x38e/0x490
[  332.781745][T14865]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  332.781759][T14865]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  332.781773][T14865]  dpm_for_each_dev+0x5d/0xb0
[  332.781785][T14865]  fw_pm_notify+0x81/0x150
[  332.781796][T14865]  notifier_call_chain+0xbc/0x410
[  332.781809][T14865]  ? __pfx_fw_pm_notify+0x10/0x10
[  332.781822][T14865]  blocking_notifier_call_chain_robust+0xc8/0x160
[  332.781836][T14865]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[  332.781854][T14865]  ? do_raw_spin_unlock+0x172/0x230
[  332.781872][T14865]  pm_notifier_call_chain_robust+0x27/0x60
[  332.781887][T14865]  snapshot_open+0x189/0x2b0
[  332.781900][T14865]  ? __pfx_snapshot_open+0x10/0x10
[  332.781912][T14865]  misc_open+0x35d/0x420
[  332.781925][T14865]  ? __pfx_misc_open+0x10/0x10
[  332.781938][T14865]  chrdev_open+0x231/0x6a0
[  332.781952][T14865]  ? __pfx_chrdev_open+0x10/0x10
[  332.781966][T14865]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  332.781981][T14865]  do_dentry_open+0x741/0x1c10
[  332.781993][T14865]  ? __pfx_chrdev_open+0x10/0x10
[  332.782008][T14865]  vfs_open+0x82/0x3f0
[  332.782023][T14865]  path_openat+0x1de4/0x2cb0
[  332.782038][T14865]  ? __pfx_path_openat+0x10/0x10
[  332.782051][T14865]  ? __lock_acquire+0xb8a/0x1c90
[  332.782066][T14865]  do_filp_open+0x20b/0x470
[  332.782078][T14865]  ? __pfx_do_filp_open+0x10/0x10
[  332.782096][T14865]  ? alloc_fd+0x471/0x7d0
[  332.782110][T14865]  do_sys_openat2+0x11b/0x1d0
[  332.782125][T14865]  ? __pfx_do_sys_openat2+0x10/0x10
[  332.782142][T14865]  ? bpf_trace_run2+0x2a5/0x590
[  332.782159][T14865]  __x64_sys_openat+0x174/0x210
[  332.782175][T14865]  ? __pfx___x64_sys_openat+0x10/0x10
[  332.782191][T14865]  ? syscall_trace_enter+0x1cb/0x260
[  332.782209][T14865]  ? rcu_is_watching+0x12/0xc0
[  332.782220][T14865]  do_syscall_64+0xcd/0x4c0
[  332.782235][T14865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.782247][T14865] RIP: 0033:0x7fe66a58e969
[  332.782256][T14865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  332.782269][T14865] RSP: 002b:00007fe66b4bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  332.782279][T14865] RAX: ffffffffffffffda RBX: 00007fe66a7b5fa0 RCX: 00007fe66a58e969
[  332.782286][T14865] RDX: 0000000000007600 RSI: 00002000000002c0 RDI: ffffffffffffff9c
[  332.782293][T14865] RBP: 00007fe66b4bf090 R08: 0000000000000000 R09: 0000000000000000
[  332.782299][T14865] R10: 000000000000feff R11: 0000000000000246 R12: 0000000000000001
[  332.782306][T14865] R13: 0000000000000000 R14: 00007fe66a7b5fa0 R15: 00007ffe49e30758
[  332.782316][T14865]  </TASK>
[  333.402877][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  334.452847][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  335.483056][    C3] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  336.522868][    C2] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  337.563018][    C3] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  338.602941][    C2] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  339.642982][    C3] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  340.692824][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  341.723031][    C0] IPVS: ovf: UDP 224.0.0.2:0 - no destination available

VM DIAGNOSIS:
15:33:04  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8559a465 RDI=ffffffff9b0772e0 RBP=ffffffff9b0772a0 RSP=ffffc900042c6d20
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=732d302e35312e36
R12=0000000000000000 R13=000000000000006f R14=ffffffff9b0772a0 R15=ffffffff8559a400
RIP=ffffffff8559a48f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe66b4bf6c0 ffffffff 00c00000
GS =0000 ffff8880d6765000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00002000000002c0 CR3=000000003d0fb000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe56386290 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffff8880251a0000 RCX=ffffffff81c3d0df RDX=0000000000000000
RSI=ffffffff8c154420 RDI=ffffffff8189ced1 RBP=ffffc9000163f500 RSP=ffffc9000163f488
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff90a7b357 R11=0000000000000000
R12=ffff88806a53bc40 R13=ffff88805bf10000 R14=ffff88801b87d600 R15=ffff88806a53cab0
RIP=ffffffff81000280 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fac2c1256c0 ffffffff 00c00000
GS =0000 ffff8880d6865000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe627b72720 CR3=000000004bfda000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0023746e6576652f 7475706e692f7665
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627c11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627d83488 00007fe627d83480 00007fe627d83478 00007fe627d83450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe6288ed100 00007fe627d83440 00007fe627d80004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe627d83498 00007fe627d83490 00007fe627d83488 00007fe627d83480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000039507c RBX=0000000000000002 RCX=ffffffff8b7d6ca9 RDX=ffffed100d4c663e
RSI=ffffffff8c154420 RDI=ffffffff8191e9b1 RBP=ffffed1003bd2910 RSP=ffffc90000187df8
R8 =0000000000000000 R9 =ffffed100d4c663d R10=ffff88806a6331eb R11=0000000000000000
R12=0000000000000002 R13=ffff88801de94880 R14=ffffffff90a7b350 R15=0000000000000000
RIP=ffffffff8b7d580f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6965000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3f791b CR3=000000004bf88000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b583488 00007fac2b583480 00007fac2b583478 00007fac2b583450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2c0ed100 00007fac2b583440 00007fac2b583458 00007fac2b5834a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b583498 00007fac2b583490 00007fac2b583488 00007fac2b583480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000006 0000000000000000 0000000000000000 0000000000000150
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000002 RBX=ffff88804894e000 RCX=ffffffff84d1fff9 RDX=ffff888024308000
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000000 RSP=ffffc90004c7f9f8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=dffffc0000000000 R13=ffff888034410000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81bbfb4b RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fac291d56c0 ffffffff 00c00000
GS =0000 ffff8880d6a65000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000004bfda000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004090001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fac2b411c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 732064616200786c 6c36313025783000 657a697320780004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5605414447005d49 49131415005d1500 405f4c56055d404d 5751560541444700
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000006 0000000000000000 0000000000000000 0000000000000150
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000