last executing test programs:

6.702092566s ago: executing program 0 (id=3491):
connect$l2tp6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x14)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000180)=0xe)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)=ANY=[@ANYRES16=r4, @ANYRES8=r2, @ANYRESHEX=r2, @ANYRESDEC=r0, @ANYRESOCT=r2], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0xa0c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2000001, 0x13, 0xffffffffffffffff, 0x15d1b000)
socket$kcm(0x21, 0x2, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000006cc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000880}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1000000001000000010000004c02bdf15b48e8ab0890865af5bf6c4e1b3d3c390144aaf7b75b7885b6ae6d4e9a6a14d5caaad17a3a1e9431e525929200f191acf225cd1246e96c", @ANYRES32], 0x10, 0x4008000}}], 0x2, 0x80)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r7, 0x0, 0x42, &(0x7f0000000200)={'icmp\x00'}, &(0x7f0000000240)=0x1e)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r7, 0x0, 0x48b, &(0x7f0000000000)={0x0, 'ip6gre0\x00', 0x1}, 0x18)

5.300465408s ago: executing program 0 (id=3494):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x101080, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f00000aa000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000080)=0x1)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@x86={0x4, 0x8, 0xc, 0x0, 0x9, 0x10, 0x5, 0x2, 0xe, 0x3, 0x6, 0x11, 0x0, 0x0, 0x615, 0x3, 0x4, 0x3e, 0xa, '\x00', 0x7, 0x3})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=r0])
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x10, 0x1)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000380)={[&(0x7f0000000040)='\x00', &(0x7f00000000c0)='iso9660\x00', &(0x7f0000000180)='%+#&\x00', &(0x7f00000001c0)='@\xfb%{(/@^\x00', &(0x7f0000000200)='-[\x00', &(0x7f0000000240)='[+}-$^&@]!:+-}//.+-]-:-(\x00', &(0x7f0000000280)='*\\n-+/\x00', &(0x7f0000000300)='-&\\&:[[#!\x00']}, &(0x7f0000000500))

4.733328915s ago: executing program 0 (id=3497):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'stdrng\x00'}, 0x58)
r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x5885, 0x0, 0x4, 0x306}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000040)=0xffefffdc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x1, r2, 0x0})
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x60642, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x14)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
io_uring_enter(r3, 0x3516, 0xc2de, 0x8, 0x0, 0x0)

4.379881443s ago: executing program 0 (id=3498):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x4, 0x3)
r1 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESHEX=0x0], 0x0)
r2 = syz_usb_connect(0x0, 0x0, 0x0, 0x0)
syz_usb_control_io$uac1(r2, 0x0, 0x0)
syz_usb_disconnect(r1)
r3 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_connect$uac1(0x0, 0x0, 0x0, 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r5 = syz_open_dev$mouse(&(0x7f0000000040), 0x5, 0x403)
r6 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f0000000000)={0x0, &(0x7f00000000c0)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f0000000100)={0x0, 0x0, r7, <r8=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r6, 0xc06864ce, &(0x7f0000000440)={r8})
ioctl$DRM_IOCTL_MODE_GETFB(r5, 0xc01c64ad, &(0x7f0000000080)={r8})
write$char_usb(r4, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="120100008e88052086800095d8b601020301090800000000000000090401000015cc1c009e4c659a9cc2cf86b050edd15ca6b2ffbd2242e69bd5f4612b3bd8e7ae9bc7213583e266f5061864b1187d30ee698ef9752d0ac92c56d1fb5fc1a3680452dd38808fae4a23456a64c6f952acc36c81b780d2e3103297bd8595636cbd89ae34f1bcfd870442d1e884fbff0c038361498be7352666902f60d6fbeb84033101e5debea717dbf427ad75978fdc019d8e8b"], 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x12, r0, 0x0)
syz_clone3(&(0x7f00000006c0)={0x200, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58)

4.132704643s ago: executing program 1 (id=3501):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='fscache_cache\x00', r0, 0x0, 0x8}, 0x18)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}], [], 0x6b}})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
rseq(&(0x7f0000000400)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x0, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x40, 0x0)
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340))
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000000)={0x7fff, <r6=>0xffffffffffffffff, 0x80000})
ioctl$VIDIOC_DECODER_CMD(r6, 0xc0485660, &(0x7f00000000c0)={0x1, 0x1, @raw_data=[0x1, 0xa, 0x101, 0xa, 0x3a40, 0x0, 0x4, 0x8000, 0x401, 0x8, 0xac07, 0x8, 0x4, 0x800, 0xfff, 0x3]})
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='huge=always,mpol=interleave'])

3.990161173s ago: executing program 2 (id=3502):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
r1 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8000, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000000)={0x4, 0x2, 0x0, "72f043b00ace4f852f5edc85933ba5c228ea162fdfcd675c765fc5a06532ca9f"})
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, 0x0)
syz_io_uring_setup(0x3585, &(0x7f0000000140)={0x0, 0xd1d3, 0x0, 0x20010000, 0x1d}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_ACTIVATE(r2, 0x5606, 0x4)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f00006ed000/0x1000)=nil, 0x1000, 0xb635773f06ebbeef, 0x10010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(r4, &(0x7f0000000440)=[{{&(0x7f0000000300)=@l2tp6={0xa, 0x0, 0x0, @private2}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000100)}, {&(0x7f0000000380)=""/42, 0x2a}, {&(0x7f00000003c0)=""/60, 0x3c}], 0x3, &(0x7f00000006c0)=""/4096, 0x1000}, 0xd847}], 0x1, 0x0, 0x0)
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r6, 0x11b, 0x4, &(0x7f0000000000)={0x0, 0x27000, 0x0, 0xffff1dd2, 0x2}, 0x1c)
r7 = socket$alg(0x26, 0x5, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000280)={0x9, 0x100002}, 0xfffffffffffffff4)
bind$alg(r7, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, 0x0, 0x0)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r9 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
ioctl$LOOP_CONFIGURE(r9, 0x4c0a, &(0x7f0000001ac0)={r8, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1b59ded130e0fd838539f3d3287772fd29f35239d200", "24431a1e77a68e174f000000000000000010e200", [0xfffffffffffffffe]}})
r10 = dup(r9)
write$P9_RMKNOD(r10, &(0x7f0000000280)={0x14, 0x13, 0x2, {0x10, 0x1, 0x1}}, 0x14)

3.286690511s ago: executing program 1 (id=3504):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
fsopen(&(0x7f0000000280)='smb3\x00', 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c00000091efd1e8fd68af8f4a1c976926b8959b0ddc7ae504ab1bcd887afbc9d61ea79c3813ab700d6925977ee24057b66c981c19226f8fa1e757edcb0b4861bf37c06c5a8688a394077377ce97f0e8c39553d37fa94db81fcb3a538de9b520936bb04c2bb7e881cb6895065db1915e169c0d3147dc418fc9d4b5fa54f2ba150453252bc77c", @ANYRES16=r4, @ANYBLOB="010028bd7000fcdbdf252100000008000300", @ANYRES32=r5, @ANYBLOB="26002a00250300ab013c04000d788072060303030303030006010101010101010502a49bb09200000a00060008021100000000000600f70004fc000004008700"], 0x5c}}, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180)=@o_path={&(0x7f0000000000)='./file1\x00', 0x0, 0x4010, r7}, 0x14)
socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x1, 0xfd, 0x7fff0000}]})
close_range(r8, 0xffffffffffffffff, 0x0)

3.134731566s ago: executing program 2 (id=3505):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
fsopen(&(0x7f0000000280)='smb3\x00', 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c00000091efd1e8fd68af8f4a1c976926b8959b0ddc7ae504ab1bcd887afbc9d61ea79c3813ab700d6925977ee24057b66c981c19226f8fa1e757edcb0b4861bf37c06c5a8688a394077377ce97f0e8c39553d37fa94db81fcb3a538de9b520936bb04c2bb7e881cb6895065db1915e169c0d3147dc418fc9d4b5fa54f2ba150453252bc77c", @ANYRES16=r4, @ANYBLOB="010028bd7000fcdbdf252100000008000300", @ANYRES32=r5, @ANYBLOB="26002a00250300ab013c04000d788072060303030303030006010101010101010502a49bb09200000a00060008021100000000000600f70004fc000004008700"], 0x5c}}, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180)=@o_path={&(0x7f0000000000)='./file1\x00', 0x0, 0x4010, r7}, 0x14)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r8, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r8, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

2.776209703s ago: executing program 3 (id=3507):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x2, 0x4e24, @broadcast}, 0x10, &(0x7f0000000180)=[{&(0x7f0000001340)="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", 0x1000}, {&(0x7f0000000400)="90f3ba7bf5c5638cee46e216c3555678ac5760249929d6e6707d76af43f3860ab507409aa6204bb1578d8197e65412d6ac8a4ea9bec590033319ae6168fa47ba3f465f40dd108e96a762069b7daf968feb5e7141c147db52945159a2061b482f8e37e4e4d428e10538e2e8bedc91ed21b6d9322bbc5156a8b2057cddb4da95e8296e77e08baefbd96d0542f866cfee66f0efe84c7f351032882d9b7dffd770d444ffeb0e0069061e46f1d85cc959378709e48a8931797137d76abe6dfddb7cebc760f1fe44f85f84cb60a115801804bd5bbe56a1bd7a44c1660a6edea6f740", 0xdf}, {&(0x7f0000000500)="8e2bbf12dd6c6ab612e63970cbda24978de00c561f6d85a56ee92244a46cdac3210e72e875bc8d5655764c99952405ed7c7b47ec65f45837079caeeeabb176138dc9ce596f60b1ce87f54a5b80adc79273f06fc9509d2d1210c421eef773ade37d5e5110d3478aef6198ffd78152add4f343a3bad2d4a73b3b4c1f8d97af5bfb5313ac0f20fea8939b40a52fbcf9c8ddbff8eeba9d1eb175503ff38877ec8a81da6345832b5fc482c44107b10007b6380887db619dbb7b58b5d5c8a51721550bef", 0xc1}], 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x100}, 0x4008001)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r3, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000140)=@ccm_128={{0x304}, "68c4502393926b50", "09f700", "1ab6c0e5"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000001300)=@gcm_256={{0x304}, '\x00', "fcba913827ebcd5feeb0a2a7335db48e9b1893ffc40145ca1ba754fefac060f6", "85b68bf7", "4b8266223d070005"}, 0x38)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x202, 0x0)
getpriority(0x0, r1)
write$sequencer(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="c000000000000000000000000000000000e53ba1ec0a1aae36be69967232e7dc02c07dbd59a1fcd52854548c4b55f7c275406250b222c08ef9b3a1895a3ec42232cb2869e591525feaf6aae8fc99a0e341f93106bb42fbfadf017996b82ed00da97b19f675517d27bd641c92e20caafff1e2441a829213657ca2e91380fb26e0aa8d54e4a7e85bb6f195b9a44ff8f295e3764317ddba7f054f50c8ee66f0f7638d85ab1cfbaf3e232137c0c50341ac9d6b47c6fe54ea02fbf9f20fbce05c7aee6b"], 0x8)

2.362014482s ago: executing program 1 (id=3508):
r0 = openat2$dir(0xffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x4100, 0xe, 0x8}, 0x18)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESTART(r1, 0x1260, 0x0)
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, r2)
keyctl$chown(0x4, r3, 0xee01, 0x0)
mknod$loop(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, 0x1)
keyctl$setperm(0x5, r3, 0x30925)
keyctl$KEYCTL_MOVE(0x3, r3, 0x0, 0x0, 0x0)
openat$fuse(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
faccessat2(r0, 0x0, 0x0, 0x100)
r4 = syz_create_resource$binfmt(&(0x7f0000000140)='./file0\x00')
openat$binfmt(0xffffff9c, r4, 0x41, 0x1ff)

2.253299963s ago: executing program 1 (id=3509):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001040), 0x1d201, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xd, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001c40)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xfffffffc, 0x3}, 0x8, 0x10, &(0x7f0000000880), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x4, 0x100007]}, 0x8, 0x80800)
ppoll(&(0x7f00000000c0)=[{r2}], 0x1, 0x0, 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f00000000c0)={0x1, 0x5d58, 0x9})
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x13, r3, 0xa57f8000)
gettid()
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffff7ffffffd]}, 0x0, 0x8)
timer_create(0x4, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{}, {0x0, 0x9}}, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000001080), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
syz_usbip_server_init(0x1)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f0000000000)={0x17, {"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", 0xfffffd93}}, 0x1006)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETA(r7, 0x5406, &(0x7f0000000200)={0xffff, 0x0, 0x0, 0x800a, 0x2, "5f7300fbffffff00"})
ioctl$TIOCL_PASTESEL(r7, 0x541c, &(0x7f0000001100))

2.123491601s ago: executing program 2 (id=3510):
socket(0x400000000010, 0x3, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000001c0)={0x0, 0xf, 0x2, "7d10"}, 0xa)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
socket$kcm(0x23, 0x2, 0x0)
syz_open_dev$cec(&(0x7f0000000000), 0x0, 0xe2940)
bind$inet6(0xffffffffffffffff, &(0x7f0000d84000)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x9}, 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, 0x0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, 0x0, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
socket$kcm(0x2, 0xa, 0x2)
r2 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0xffff0000, @ipv4={'\x00', '\xff\xff', @dev}, 0x8}, 0x1c)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r5 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)={0x200000, 0x0, 0x1}, 0x18)
getdents64(r5, &(0x7f0000000300)=""/154, 0x9a)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r6, 0x0, 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x58)

1.734335383s ago: executing program 0 (id=3511):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x14, &(0x7f0000000380)=ANY=[@ANYBLOB="ef706da098ee5653429a05ed38b339591b5983540cf643759836f1df6247105fb38af0454363f8cd5b9b51d19434b5f4143e25ad0b4b1ce468a56c60c0360885c928f451d8e9986646c72601c06c304f522dc24553890edc23f81d2917d87ce80ef84df25149ab1687881602a21d91cb14b47f90367d57272562b7cac2e926bc1adc9b6611894d97ee2d58e79eaf10fbd8354de6422dd0863673668288355e2b22acf682c5e8fa8ecb04a0803826a15ce6edf8f436836397dc6e9e8765e1713cfd49f1c87cf69cc200000000000000"], 0x8)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="04300300c900"], 0x6)
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}], 0x1, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x40}, 0x20048810)
r1 = open(&(0x7f0000000280)='.\x00', 0x141080, 0xd6)
fcntl$notify(r1, 0x402, 0x8000003d)
bpf$MAP_CREATE(0x0, &(0x7f0000003c40)=ANY=[@ANYRES64=r1, @ANYRESDEC, @ANYRES8=r1, @ANYRESDEC=r1, @ANYRESHEX=r1, @ANYRES8=r1, @ANYRESOCT=0x0, @ANYRESDEC=r1], 0x48)
bind$l2tp6(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000001800)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x3, 0xd0, &(0x7f0000000580)=""/208, 0x41100, 0x2b, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)='c:::\x00', 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000300)={0x5813, 0xbffffe01, 0x63c9}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x0, 0x20000000)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
r5 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_GET_DEBUGREGS(0xffffffffffffffff, 0x8080aea1, &(0x7f0000001780))
recvmmsg(0xffffffffffffffff, &(0x7f0000003900)=[{{&(0x7f0000000480)=@vsock, 0x80, &(0x7f0000003ac0)=[{&(0x7f0000000a40)=""/29, 0x1d}, {&(0x7f0000000680)=""/239, 0xef}, {&(0x7f0000000780)=""/134, 0x86}, {&(0x7f0000000900)=""/135, 0x87}, {&(0x7f0000000500)=""/40, 0x28}, {&(0x7f0000000540)=""/38, 0x26}, {&(0x7f00000009c0)=""/42, 0x2a}, {&(0x7f0000000a00)=""/33, 0x21}, {&(0x7f00000039c0)=""/252, 0xfc}], 0x9, &(0x7f0000001800)=""/4083, 0xff3}, 0x39}, {{&(0x7f0000000a80)=@alg, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000b00)=""/39, 0x27}, {&(0x7f0000000b40)=""/5, 0x5}, {&(0x7f0000000b80)=""/83, 0x53}, {&(0x7f0000000c00)=""/164, 0xa4}, {&(0x7f0000000cc0)=""/172, 0xac}, {&(0x7f00000015c0)=""/182, 0xb6}], 0x6, &(0x7f0000000e80)=""/47, 0x2f}, 0x94a}, {{0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000ec0)=""/177, 0xb1}], 0x1, &(0x7f0000000fc0)=""/121, 0x79}, 0x200}, {{&(0x7f0000001040)=@qipcrtr, 0x80, &(0x7f0000001280)=[{&(0x7f00000010c0)=""/136, 0x88}, {&(0x7f0000001180)=""/252, 0xfc}], 0x2, &(0x7f00000012c0)=""/1, 0x1}, 0x7}, {{&(0x7f0000001300)=@l2tp={0x2, 0x0, @remote}, 0x80, &(0x7f0000001700)=[{&(0x7f0000001380)=""/212, 0xd4}, {&(0x7f0000001480)=""/83, 0x53}, {&(0x7f0000001500)=""/131, 0x83}, {&(0x7f0000002800)=""/4096, 0x1000}, {&(0x7f0000003b40)=""/241, 0xf1}, {&(0x7f0000003800)=""/226, 0xe2}, {&(0x7f00000016c0)=""/40, 0x28}], 0x7}, 0xd}], 0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

1.733820344s ago: executing program 3 (id=3512):
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaa270005d70000fea4840001080006040002a2aaaaaaaaaaac1414bbaaaaaaaaaa02ac"], 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x1000000, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14)

1.634599625s ago: executing program 3 (id=3513):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r0, 0x0)
accept4$tipc(r0, &(0x7f0000000200), &(0x7f0000000240)=0x10, 0x800)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r1, 0x6, 0x18, &(0x7f0000000080)=0x80000049, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @mss, @sack_perm, @window={0x3, 0x74a}, @timestamp, @mss, @timestamp, @sack_perm], 0x8)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0x4)
r2 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2000c0a0}, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
creat(&(0x7f0000000440)='./file0/file0\x00', 0x188)
lsetxattr$security_capability(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000100), &(0x7f0000000600)=@v3={0x3000000, [{0x4, 0x3}, {0xffff, 0xc4}]}, 0x18, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f0000000000)={0x4, 0x77fb, 0xcba, 0x9, 0x8000, 0x4, 0x1, 0x8000000000000001}, &(0x7f00000001c0)={0x40, 0x3, 0x8, 0x8, 0x30, 0x9, 0x8, 0xffff}, &(0x7f0000000200)={0x1, 0x4, 0x3, 0xfffffffffffffff9, 0x1, 0x8, 0x1}, &(0x7f0000000240)={0x77359400}, &(0x7f00000002c0)={&(0x7f0000000280)={[0xa7, 0x8]}, 0x8})
chdir(&(0x7f0000000140)='./bus\x00')
mount$nfs4(&(0x7f0000000380)='+\'\x00', &(0x7f00000003c0)='./file1\x00', &(0x7f0000000480), 0x2000010, &(0x7f00000004c0)=ANY=[@ANYBLOB="152d2cc42c2d2c6f7665726c6193002c61756469742c00"])
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)

1.567103891s ago: executing program 3 (id=3514):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount$tmpfs(0x4000, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='huge=always,mpol=interleave'])

1.310135831s ago: executing program 0 (id=3515):
syz_open_procfs$namespace(0x0, &(0x7f0000000480)='ns/time\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1200"], 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x6}}, './file0\x00'})
socket$inet6(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newtaction={0xf8, 0x30, 0x1, 0x0, 0x0, {}, [{0xe4, 0x1, [@m_skbmod={0x98, 0x1d, 0x0, 0x0, {{0xb}, {0x6c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x20, 0x2, {{0x20000000, 0x5, 0x4, 0x1, 0x5}, 0x4}}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x4, 0x2, 0x5, 0x7, 0x3}, 0x1}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x4}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x3}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x5}}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000850000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_exit\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x1e)
fsync(0xffffffffffffffff)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000800000000000000000000850000007d000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='i2c_write\x00', r3}, 0x10)
r4 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x101182)
ioctl$I2C_RDWR(r4, 0x707, &(0x7f00000004c0)={&(0x7f00000003c0)=[{0x67, 0x2010, 0x0, 0x0}, {0xf, 0x4000, 0x9a, &(0x7f0000000300)="ce164331a6163143a6b8b9825dbdf624a57b6f782dc3e6cb190816c74ad9a757ca644a10c1ca5faa462091dbda4f9094c59e4a0305406d97cbd5a0da87b7a6636e1cca16005d4e9ec9d88b94366f30e36e26a0ad31e46096ff9011ebe4255cba8c3b5570f6e0e41f539c6059fe5f91887954560742f34a0a964f6de7e0ea527033d9c515bf3448b4b9300d16d1a9865e4aad2774b86a1024f6cf"}], 0x2})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r7, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x1e, 0x200, &(0x7f0000000880)="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"})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040))

1.174624402s ago: executing program 2 (id=3516):
r0 = io_uring_setup(0x79bb, &(0x7f0000000400))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x80, 0x9, 0x4, 0x200, 0x1, 0x7f, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x5, 0x6, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl1\x00', &(0x7f00000000c0)={'ip6_vti0\x00', <r2=>0x0, 0x2f, 0x81, 0x0, 0x400, 0x3c, @remote, @empty, 0x40, 0x80, 0xc0000000, 0x8}})
r3 = socket$l2tp6(0xa, 0x2, 0x73)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000003c0)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha3-224-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = accept4$alg(r4, 0x0, 0x0, 0x80000)
read$alg(r5, &(0x7f0000001540)=""/4131, 0x1023)
r6 = socket$kcm(0x29, 0x7, 0x0)
sendmsg$kcm(r6, &(0x7f0000000380)={&(0x7f0000000180)=@pppol2tp={0x18, 0x1, {0x0, r3, {0x2, 0x4e20, @local}, 0x3, 0x4, 0x4}}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000200)="a9446770a2f47e6a38afef7109e5e2416cc18d3a257072ec2a88a124aeedf1afde192793d5faf72ff13f07e3c7b8999574a53834712bc002687cf51358e774063d53073ccd1b9d556f5171c595b89685da2de4aa9279e16f2a5ec69edb49598740a11e89cb8f82d82792b5db95001f0d08fd8a1b563496", 0x77}, {&(0x7f0000000280)="65981fb7edb3e21fc6d3a3bd2da71664f279c71d56ab65acfb8c610cdd52ccbba878b929009e44fbfcd4729539b1622bb76935612e", 0x35}, {&(0x7f00000002c0)="9c1b515f395d9689ae8955acdfa4cd39afdf145d018a528285e3b4334f6fa5b5bfc9c5d391d50f9c5f607eec9afe49fbd297268b0b9e1374f05560cf05c06b35403964260b1b19626e497d4a4955d9038e7e8406febd178dadbe9ce28cb1f83401", 0x61}, {&(0x7f0000001780)="74a2e53f759dc868900f259d4a768c5e09a8d36c48963452d883427bc10d07e0bb028a3382c45761a953e1423dcac773966bdab27760fb20d00a9557e2a1205d6f2842d762947c38a8f3d0fdf921cbe992b26e37bc111c1b37bd9d450c11597cbcf2011fe6205289503612f3539108263e2e6649109d6dddac66ba17ce9fdad58eeb34fdf77c8491001a63c834dacaad835fb520993d1ee19756c95bf6a4c0dd7d635fe8e8cbc6c7b9a06c8a33154988e93a7707fc0c1d7f0545250aa3eb704074b2e5283f57cfa62dedbee9516e3df921113f1f52fdbdc4f2a38e054e9991ed6c11e14f83047ebd91", 0xe9}, {&(0x7f0000000340)="8ebbb161ec3648c2e8648722f24956a742d507b890e348bb", 0x18}, {&(0x7f0000001880)="550567c22b81e7ea257884725de2fb4660911b10fb5f47938d57c7fcd689e5b62c00bab00f1428c72e276ec29e657774fea187c67cdaa6f64ece8ea9b81e31c14e98794ffdc884959ec8a7d832496c7a5e7a14b45e381f923ed5bd3b105c6bfe0dca16d6c4d9e20c51acad310903aed9ec1ec4dc4b27c5bcc929a6aa5b5d6984e1e4e9bac1539bba782afe3da6c38d351a17", 0x92}], 0x6}, 0x60000005)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write$P9_RGETLOCK(r7, &(0x7f0000000640)=ANY=[], 0x200002e6)
fcntl$setpipe(r7, 0x407, 0x7000000)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000600)={0x1b, 0x0, 0x0, 0x6, 0x0, r1, 0x7, '\x00', r2, r7, 0x4, 0x5, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000680)={&(0x7f0000000780)="7d52c5606276c15b309242c1f958382aaa9a53a2287e0e3a241e4cdd535333dbe7a9fd642a781d0590356889ecd96f0a2447013aa22e3c6cfd807f2817ea45568cc295f09519a4b32d1d82ac71221e73d9b642f6048c2f1395b34c040e624ea8de3f5d2127f978e4930a2eac3fc80d999d7006b65f1444c76e47488c6d7246c36459c6ba711e0b3aacb9d45908350dbd479354b2557eff9661d1c6ffcc97e48e3367c2ed1f96fd2c1c35bb15726b16cc14c7aa6c234d35a6569b5c3235341145225e2d04c0dffaa95f21b5c3f5340ff15945c5c40a80d60db62ee2bd6de087e1f4709a98f0c22283d7ad55dc20fdb33ddf7400a2e2dc36877a33f558a3a31c857d41b7f44925bdaec249742f4063c140d88535cfa17cb389beb32d4bf3a147ffed3c77329eae4c3eb57377d71a78037165281ed695974a32954417729bb063f5b8b2b07797d6100fd285658ad5fe12e5f1632b9afd8581bc59fe7cc8a590ba12133d397cc26869451184619a4d02ed1c8d2d783980ef22c330bcee2acaec9012219ba58a5bd7f63637a84e0c7cbcd8b1c604019e9477b97b8fb975d3a9937f87e68122f11884bb297fd31a3728a4eee863108724bc06d863123d875fc4c5428304c005803108d289ab60e69d6b2287295912e61a45bb94b0be5e7f05239a54616d89bb1493adf8ccce1007c11df86ccfec44ea9051256c6a7912931bbcc0bd7866ad32c687bf68d51fa03b27fdb32692b5cd72a927cb5732144ed7c8ef0c6962736276542c4d07efe4f31a1e074c0f45dab77de89529101faa81d25a7302fdd37a0f657182a2241dcaeca243d8c08864f98bfb36195c5678e80e40f1aa484e9038b7c38d10bee1b14f9cbf7620ddba65ac66e062fbd1a38d645e62b4ed80ddd5c58b92a3b19ef4b3f89845da033af7b55a23d548b99844f3b6b6d166f6c11265745cf496b7392be7981265e6f6c707583e2877267e479751dccbd72899774ccc28c132ae1e35eb6b6e40eac628d15ee0f30a76649575d041d1f3ec530fb2e6eb831fcd583851f5406992b7883a30579cf4c13c109292435a9d9410d4590186a036ae3209264f5188a035280587d28cd14010195613bc66be717bd3705b0ef949f1e2d233892274b654c912cdfcfefdc3a7392681d5035bbe1dc6b187fe8e2d03b6754f6eabb7ade8cdff5ef2572640dc477ab1484db82a9f50c04446e7f44506a5b17f445bd70a18c25c3d81546b8827156d866509c448a0647ce7b21768dda8a124987f10470f5900dc357c2df1f143fde461283bfbd089f7100be18b662faf670b9b6d1fc9a716791c41a76509a704c89ff7f21c39f584e514da0b77b1d91b9677a5398fe78da9d53d66252b8693dafaa0fab39e40f81c275d6bb4b2b8e4807b9995d23c8bab07ea1fff6910e863acf085be61cff2cc85fade66601bb9b73e1d16b354944ebbc32eb7cc397847eaeab1bdd3ef10feb264c62795edcaca55909245914a5ee646111f57183e92e238535bd7fd17ee1dd23214d4cf3567515f6b4d624dba2ecdd029cf2588ce7f6b5d1948a006a094182226fb601b1ab3149fa6897a403907b68e493f8ce741f90e87fbd3185ba70fb20a1e6699242d8dbecefc8a8cc2b3b211b42c937f9beeff27adb75f1f0c2ea82167badbd236a97f2ac46b526356e3ca60199b769953e3a113cb293b6241b4c975419025ba0decefb499dfbb8b2c07b1fdea4521a58bfbe93116868176d9a00a3374f20837f254a5095c59658c44ac5192f4f1b46d386eeea96d3ea351e24e6a807f61bebc86f62a224dd809e41b769afada649760c55c272312f566943d319c2c9f978f06e066b0c51312ace46cf124fc6a21a5b0eebdbe29aa499b08aa26bf2e2717050cab28f078cebb73282f3568e45e3cc5cb5c0965bfed542d8972e04c72286ebedff9e1d0060c93c87aaa2defe6a0c25c2465a2ed3fe6dfb7a3d054f66e75ffc412fc4350f35778dda54be4ca84685ee87866212b8b827535b10d97b70ecfd1f344069a7d2c2a642cae8db8e6550934ba39c58dd0bf060be604aba39bf5ff6a5cbbdf3bd8e71970dbbba69d8bd38e03ec623b625878dbae4d42f036ccfa9d4fc10857a363c6d9b7ab1af6eae81a8c75ce3eb41f45964c593dc6b47fa8221ceb02c04ec3d51d59d44a3ebe01171297f97d0063ec00d127157700d738b0907fc079716b3d0d013ea86d0bcecd182ad575d5f52b0ced449f0db3a7970a321d18927f1065a075a3a926e330dae6b26a3611370575bb105425be40318aff283469581b2b2c78c31dfd0a6be0de072e083556268a197229baf1be519b69bb2ca24a66eaf111306c43d0782448ee2f3a3d7f9456dd518f258846b350dabd3a029cb77d32b7aece728bf6cfd7836b3b6587379ff77c138605da467304334e22d0097c0595d55478a26f669086273db35a2a3e3ef644fdd9495fe2ed883663b64f95f2f59d118fc8212675663a0ff6a347802631ce5cf756ca117e38d7b7499f0b50d4674804e7344909029ebc93aa7fdfc1bd928556a4f0d7a04795378bf2877759a2bcb38bec53a099b1e3a1a40889359ad5a065046d556e2488c01f47acd9008d1cddacc749d015499e059af753e89d260fcd00b77e534ae3e14c78c57f456732ccf4cdbefca0de5e2c2fa35ca824fa029900b8e187549bd613639fa9117a33cda0c55c06f0ca373ccd9da2be8d8eb796c4ef17d8afd05a178c6b80ce6fae5d615485a002054108f443b9dc7f10261e60d97c488fc1138d60df23594a63b8ae8df5f67ff15ee48d126e0fedae603d0871cbd929fa7742b8884e1d33567b3421cf290351f3874dcca1d7c092d41b2d3ab8f4db6e0433bb54a39bab1748a7adb117521a75d5f67483f575aae664702ff514858fa10e92b7f45015e9a268374674df2c194d64917cd7f1112250de287e5b065d8f1fefee44cc7c48ff2591dad483d3ea96a9bda7d11b48db33da163195f48c03ea1b61e78e6761a2dbcc4e77fc0ab911118d4e7b5471a4b82c8b36c69757ff2c4af431aafc720573a32f7a9458b47ac21272241e9456d97e816f6d762aa4084275bb8813de0ed74a80443ac8bfacd02943ff7c792573043e709c5bb5221993738c8a16bd16962eb284eb667f395b87b9f5a7750785318a6a4b04385192c1e4e41b819863879f7fd0c0ab57698ce052d7b6cb3a2be485880073662286b671a16380e1a382add51354279b500e1dcaf23527931cd2a5464a72732e83840c35e9b64996895cfc4fca687add3587413872191a64f68635275ae09b10e01b9170b31e225e4b3edbdcbade9a58b39478144efbfba1afb80f6b41e2830e1c352254a904b9f3a01471e29980b2eb24b53ce5c9f44cef0396319869005e6f76ce57bec84c9668323f52f4b839efb87ebd3ef1f9bcdfd6e1844b9623e915483703caf38a1a2817df7a8db8de999ec81b4776b8c1e6ef3d04592827addce478982366e5bb9d29fa7ed0c4085551b6351ba01d55e588414b87b69b74c25d56e0938b7a3cf48872d62fc9a25b44ee0af416b2845f61a9412272629bc36c1c737e38e52122a441ee8e7a0b86fc12f38142d6d0e317c6270482e7e48ba119cc30a7ac762c7ea36e7eb654305f05266eccbd923b329a2bdf353af46de90fbdd955293e728fb2044b4315dc383ebd767714f28c143d6099b77015e5980b7cb47a716e74e1cf30092969ffd46a0cb206ecf9cbb6c9e63aa6c37a8eea159766584467175c53aa516b58955a82bb8a82ad53a3c7a7bc4236eae29afbf9ae174305da8acde0fc19444f89dbcfc42550c7de220ea7230c879dde21c4e5beb095d5941274b4fab13b03bbab01512593c08ac988a833ef942d1ff7cd2b7876d24168c081dcecfcb3f81d81307c73f68328a1e8668cd175ec3ff4ff07fa97f5c41f7cdac55d786a40578ca2d664c9365071720eec61ad47f792f14ce7416b07a07e8a3a828fddf8f9e9778b52b21a40fd7bb9549eb79627e5d1b4389916f3bdda61ea707172040e24fc177e4660cd9e7b0c68e07e84ac92ca52e189ba167e40c1bdc7bee9de36784286dfc41a981398926e1ed0dc16c17c91abc16530bc85d279b15725791b7c4fc2ffd0f0f05a04eae76462cfd3229c9e9d8c1c6b85bc8be1b7e2e463496384e2382df6540d40e539d48bd1229f333e625911673f4a2a8a87d49192aa62312bdc456030a2971465f930932f5547fe986a379704f7079b05e7562c2a8b28f81f014653f66b8d355db7c8c6faa2b0395aaa3aa5f2d961065df841194c8afeaec4d53fe0c90f271eda11827cfe15788e79bfe1f91972921369225e771e4ef365fad0addc4e8e75e2bf3bcba8d4dbf1b7ab7e154ecfffcd9e39d1db723d17aa7f4b21a122c63dab6f45bc6035a5d87a6688b792845dc0bf69d330393f798554fdbc92b4edf72378499189c6bdd0ba402cb4075c5a4c06c89c7ff8233387ea0084c238a9104f30e3e711b5327fd7c5f237adb8825d2aaf262b4e71d4f7223b24fc600f2e4f9168af9b99c32075595c783cf0982099c7adc422257d44513f4c930ea71f32891b90a94afef49487977fa42ee8f5c37f07f41d26ff7a9097ec74bd5f5aec1588025d8d621dc072d9da7d2eef9fdb447d3dd905892f0cce0cccd52d7d1a57c37ff47bb530cb834909f86f99a5d1d05cddbeebd30cdc8ba7571111892d882afbe4b4c474e438fde3e941a7f726548efecdd31bbaee58917d346955b7deb35f7632cfff7c4094bcfa7d5ba4a37cf438619621cd37426409dbdc0f6b36f3d0c90f1f273425899f23a1ab4d66e70145b424a539de65e350310851f8524a1d24adf0d4e69fb9e3dc7d73dd8726a297aca80a5d48e846d7a4eb171cf04937f645d2b599db7110f4c9ca7e3dd7a1c0d18f2a6210d94c7f2ddb5a81e733433aaeb5331e005ee145d8bbb8eb63211c62558a39cbf4ef4b4d2e1c78a6ebad119a217daaf49370f84f2110e7dff366bf9759fef87931f488191843d5a3573c23e1b2d2d8083ad24a19eac20498a02e6c096ce073692bbf3ea53fb89f14dbb45aa1c48217318d7f55ff38050d1ed7ad590f2297c0c200dcbc6079cc8f290e74699f16289be2f539615118a5215878d7198f1288ee04680c3005da38d6d647075953685133182ba548eb1253e786d9f188faafb2b2c22892b9478facfe9abffa40cbe1d2f3907234afc1241e1cdadc2ce90af59c39fbc0d4b33df2b4b8efb1f432a5edb94dcad09af4578c930521bdf56bafc0aed856135a9bdae4240209f8c32b9e7d6443185933519510b7a21751a1736fefb6118d6b07277ec4d0deeb734d22a0258d334a1a24d3335ee44ff77eb09f4848d900071e4396239d93e5de022e8bbbf7692c470a9aa323b3dc634afdb3b460d24bf372cfe7976d3f680755d8ecc27ab18b12fd84bc6889a3344c27ac5a588989b9459739829c7bffb396a40a4b6ab96a0ead49c45d691e7e3a3e68038ca3583ef26d191fce3feb8124742e254d0597aa694c6ef8e4c161d15e81e0cfb6a1ff2538ae11d6167855c89dfb3e98ea7bb682daae9677ed069e808c8fe8dc66f2672070d1c0648eee9d19b69c514332e4c7bd54126ccbbf50f4d2afae354b5598af9a251be3eb9ed236bc956fe130282b5e808abdf87d4780247a07c6ae575eaa2de33189e851389835e642c0f40fa3eb91939da7e5730ac00a5b4143bc7399f0b94ccd989193026baad84afb6be7c7e8968e1a8f99e390538aed681122b6a3ef5d4a22cb3c205719d1ff0d5d4b7d40ee6315", &(0x7f0000000480)=""/243, &(0x7f00000003c0)="6f28f7546b77f44f1705ea5606edcf0997a61cda37d4bef4790734aed80731d1be8ce7928a0acae2c4b86287", &(0x7f0000000580)="77826253de95a5276d562b16fba7eb6ae829ae86bd145c925771771ed2782d3789011971735d942a5866813c6a3b902b16b15bd5bcd2ecf1fa9e4e439cae73344d806a10b69d5c4506088fbb", 0x9, r8, 0x4}, 0x38)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000002580)={'batadv_slave_1\x00', <r9=>0x0})
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$FS_IOC_FIEMAP(r10, 0xc020660b, &(0x7f0000000f00)={0x401, 0xffffffffffffffff, 0x2, 0x7})
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x1a, 0x4a, 0xfffffffe, 0x8, 0x38, r7, 0x80000001, '\x00', r9, r10, 0x3, 0x2, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, &(0x7f0000000080)=0x4c5, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

933.373684ms ago: executing program 2 (id=3517):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @pix_mp={0x80000000, 0x9, 0x31363553, 0x0, 0xa, [{0x2, 0x5}, {0x6, 0x7f36}, {0x200, 0x70}, {0x3, 0xf}, {0xa, 0x100}, {0x6, 0x589}, {0x8, 0x7}, {0x10001, 0x8}], 0x10, 0x8, 0x2, 0x2, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = syz_open_dev$sg(&(0x7f00000007c0), 0x0, 0x8000)
ioctl$SG_BLKSECTGET(r0, 0x1267, &(0x7f0000000800))
r1 = openat$nmem0(0xffffff9c, &(0x7f0000000040), 0x101040, 0x0)
getsockopt$XDP_STATISTICS(r1, 0x11b, 0x7, &(0x7f0000000080), 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000400)=0xffff)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
eventfd(0x80001ff)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000000740)=""/132, 0x0, 0x1})
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, 0x0)
socket$packet(0x11, 0x2, 0x300)
r3 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="39000000140081ae50003c00fbff008311001f9f660fcf0e5a05acb612f691f3bd3508abca1be6eeb89c44ebb37358582bb8b7d553b4e92155", 0xc8}], 0x1}, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
openat$hpet(0xffffff9c, &(0x7f0000000100), 0x341800, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
socket$inet6_icmp(0xa, 0x2, 0x3a)
connect$unix(r4, &(0x7f0000000600)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
getpid()
r5 = memfd_create(&(0x7f0000000200)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0)
ftruncate(r5, 0x80079a0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0x2c, 0x2012, r5, 0x0)

878.18582ms ago: executing program 1 (id=3518):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r2, &(0x7f0000001200), 0x18)
connect$can_j1939(r2, &(0x7f0000000080), 0x18)
writev(r2, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0xffffffff, 0x0, {0x0, 0x0, 0x0, r3}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(r4, 0x1, 0x23, &(0x7f0000000080)=0x3, 0x4)
bind$inet(r4, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x20000f3d, &(0x7f0000000000)={0x2, 0x24e23, @empty}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x4, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x90)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
dup(r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
pipe(&(0x7f0000000100))
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x1, 0x803, 0x0)
landlock_create_ruleset(&(0x7f00000004c0)={0x0, 0x1}, 0x10, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000008000500", @ANYRES32=r9, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

584.78639ms ago: executing program 3 (id=3519):
socket$nl_crypto(0x10, 0x3, 0x15)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04f74120"], 0x7)
prctl$PR_SET_IO_FLUSHER(0x59616d61, 0xfffffffffffffffd)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendto$inet6(r1, &(0x7f00000002c0)="eb4508312d07085f7e323d062284ed86de85be4ad52dcce2ba0744790ecda784ad610a6997cb34cc4cf8ab52df209010961a67343a4ed53fe797a054054f20c092573996b26a85a3f7512b7a0c0ac65c", 0x50, 0x4000, 0x0, 0x0)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/70, 0x46}, {&(0x7f0000000080)=""/45, 0x2d}], 0x2}, 0x0)
clock_gettime(0x0, &(0x7f00000027c0)={<r2=>0x0, <r3=>0x0})
recvmmsg$unix(r1, &(0x7f0000002740)=[{{&(0x7f0000000800)=@abs, 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000880)=""/203, 0xcb}, {&(0x7f0000000980)=""/77, 0x4d}], 0x2, &(0x7f0000000a40)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x70}}, {{&(0x7f0000000ac0), 0x6e, &(0x7f0000000dc0)=[{&(0x7f0000000b40)=""/245, 0xf5}, {&(0x7f0000000c40)=""/242, 0xf2}, {&(0x7f0000000d40)=""/107, 0x6b}], 0x3, &(0x7f0000000e00)=[@cred={{0x18}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}], 0xa8}}, {{&(0x7f0000000ec0), 0x6e, &(0x7f0000002340)=[{&(0x7f0000000f40)=""/157, 0x9d}, {&(0x7f0000001000)=""/42, 0x2a}, {&(0x7f0000001040)=""/161, 0xa1}, {&(0x7f0000001100)=""/58, 0x3a}, {&(0x7f0000001140)=""/4096, 0x1000}, {&(0x7f0000002140)=""/63, 0x3f}, {&(0x7f0000002180)}, {&(0x7f00000021c0)}, {&(0x7f0000002200)=""/88, 0x58}, {&(0x7f0000002280)=""/130, 0x82}], 0xa, &(0x7f00000023c0)=[@cred={{0x18}}], 0x18}}, {{0x0, 0x0, &(0x7f00000026c0)=[{&(0x7f0000002400)=""/71, 0x47}, {&(0x7f0000002480)=""/106, 0x6a}, {&(0x7f0000002500)=""/107, 0x6b}, {&(0x7f0000002580)=""/187, 0xbb}, {&(0x7f0000002640)=""/54, 0x36}, {&(0x7f0000002680)=""/9, 0x9}], 0x6, &(0x7f0000002700)=[@cred={{0x18}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x3c}}], 0x4, 0x3, &(0x7f0000002800)={r2, r3+60000000})
sendmsg$nl_crypto(r1, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYBLOB="f00000001200040026bd7000ffdbdf2567686173682d67656e6572696300000000000000000000000000000000000000000000000000000000000000d71c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000024000000000000000000000800010002000000080001000100"/240], 0xf0}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004800)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f00000001c0)='1', 0x1)

578.247265ms ago: executing program 3 (id=3520):
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000600)=ANY=[@ANYBLOB="5000000008021100000108021100000050505050505000000000000000000000000401000006020202020202"], 0x36)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x801, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
r1 = dup(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r1, 0x2c9ab000)
sched_setaffinity(0x0, 0xffffffffffffff61, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
read$msr(r2, 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r0)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x81, 0x9)
sendmsg$TIPC_NL_MON_PEER_GET(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0d030000000000000000130000000c0009800800020000000000"], 0x20}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x66, 0x7ffc1ffb}]})
r6 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r6, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r7 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r7, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x10)

24.801495ms ago: executing program 2 (id=3521):
r0 = syz_clone(0x21000200, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000580)=ANY=[@ANYBLOB="2c4047ebdc660000002d0001000000000000000000080000004d6128307f7b5c9e6b7ce336ad87dd05fca6a8cdf0338ed7a2e8d04679d2f47331f97bd51118b19ca6dafc0779d85186d097c6f2adaefa11ea35e6865099ffd54eb599d6d5aeb9313f618fe27f1b0005f0ba65ccf8425a81f24fbf325220bf223e72664f8fe8be1e879490537ed96e405d8e9470613dd240cb6a4efd6e529fbd71aab6cf6f0cde62d65c249396d7a96d1d34fa6427f23f237e325b5d1a99134fbde47b508c9b001d0f", @ANYRES32, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0xee00, @ANYBLOB="0c0000800500010031000000"], 0x2c}], 0x1}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in6=@mcast2, 0x0, 0x2b}, 0x0, @in=@empty}}, 0xe8)
close(r3)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
write$UHID_INPUT(r2, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r2, 0x0)
lsetxattr$security_ima(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000000), &(0x7f0000000140)=ANY=[], 0x2, 0x0)
rt_tgsigqueueinfo(r0, r0, 0x8, &(0x7f0000000480)={0x2b, 0x0, 0xfffffffb})

0s ago: executing program 1 (id=3522):
rename(0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f000063b000/0x1000)=nil, 0x1000, 0x15)
getsockopt$bt_BT_VOICE(r0, 0x11, 0xb, 0x0, &(0x7f0000000100))

kernel console output (not intermixed with test programs):

-2~bpo12+1 04/01/2014
[  720.090967][T19086] Call Trace:
[  720.090971][T19086]  <TASK>
[  720.090975][T19086]  dump_stack_lvl+0x16c/0x1f0
[  720.090994][T19086]  should_fail_ex+0x50a/0x650
[  720.091007][T19086]  _copy_from_user+0x2e/0xd0
[  720.091019][T19086]  get_compat_msghdr+0xa8/0x170
[  720.091033][T19086]  ? __pfx_get_compat_msghdr+0x10/0x10
[  720.091051][T19086]  ___sys_sendmsg+0x1b0/0x1e0
[  720.091069][T19086]  ? __pfx____sys_sendmsg+0x10/0x10
[  720.091090][T19086]  ? trace_lock_acquire+0x14e/0x1f0
[  720.091111][T19086]  __sys_sendmmsg+0x2fa/0x420
[  720.091129][T19086]  ? __pfx___sys_sendmmsg+0x10/0x10
[  720.091150][T19086]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  720.091170][T19086]  ? fput+0x67/0x440
[  720.091182][T19086]  ? ksys_write+0x1ba/0x250
[  720.091196][T19086]  ? __pfx_ksys_write+0x10/0x10
[  720.091213][T19086]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  720.091228][T19086]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  720.091243][T19086]  __do_fast_syscall_32+0x73/0x120
[  720.091259][T19086]  do_fast_syscall_32+0x32/0x80
[  720.091274][T19086]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  720.091293][T19086] RIP: 0023:0xf748e579
[  720.091301][T19086] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  720.091312][T19086] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  720.091323][T19086] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080001b00
[  720.091330][T19086] RDX: 000000000000003a RSI: 0000000000000000 RDI: 0000000000000000
[  720.091336][T19086] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  720.091342][T19086] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  720.091348][T19086] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  720.091360][T19086]  </TASK>
[  721.578125][T19115] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  722.769061][   T40] kauditd_printk_skb: 655 callbacks suppressed
[  722.769092][   T40] audit: type=1326 audit(2000000141.090:19170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf748e5a7 code=0x7ffc0000
[  722.776914][   T40] audit: type=1326 audit(2000000141.100:19171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  722.783958][   T40] audit: type=1326 audit(2000000141.100:19172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf748e579 code=0x7ffc0000
[  722.789978][   T40] audit: type=1326 audit(2000000141.110:19173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf748e5a7 code=0x7ffc0000
[  722.795993][   T40] audit: type=1326 audit(2000000141.110:19174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  722.802680][   T40] audit: type=1326 audit(2000000141.110:19175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf748e579 code=0x7ffc0000
[  722.810387][   T40] audit: type=1326 audit(2000000141.120:19176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf748e5a7 code=0x7ffc0000
[  722.816465][   T40] audit: type=1326 audit(2000000141.120:19177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  722.822906][   T40] audit: type=1326 audit(2000000141.120:19178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf748e579 code=0x7ffc0000
[  722.830023][   T40] audit: type=1326 audit(2000000141.120:19179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19114 comm="syz.3.3052" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf748e5a7 code=0x7ffc0000
[  723.282424][T19141] program syz.3.3058 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  723.305250][T19141] ptrace attach of "/syz-executor exec"[16728] was attempted by ""[19141]
[  723.353059][T19141] random: crng reseeded on system resumption
[  723.365666][T19141] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  723.513370][T19147] ipt_ECN: cannot use operation on non-tcp rule
[  723.741678][T19153] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  724.574632][T19167] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3065'.
[  724.627910][T19170] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3066'.
[  726.186014][T19198] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  726.200910][T19200] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  727.474772][T19211] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  727.568422][T19216] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  727.581436][T13065] Process accounting resumed
[  727.590406][   T64] IPVS: starting estimator thread 0...
[  727.686147][T19218] IPVS: using max 36 ests per chain, 86400 per kthread
[  727.996022][   T64] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  728.270586][   T64] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  728.273538][   T64] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  728.277747][   T64] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  728.280834][   T64] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  728.283509][   T64] usb 5-1: Manufacturer: syz
[  728.286748][   T64] usb 5-1: config 0 descriptor??
[  728.336265][   T64] rc_core: IR keymap rc-hauppauge not found
[  728.338393][   T64] Registered IR keymap rc-empty
[  728.340462][   T64] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  728.344698][   T64] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input19
[  728.544948][ T1463] usb 5-1: USB disconnect, device number 36
[  728.987566][T19255] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  729.271953][T19263] program syz.3.3085 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  729.274962][T19263] ptrace attach of "/syz-executor exec"[16728] was attempted by ""[19263]
[  729.278842][T19263] random: crng reseeded on system resumption
[  729.284330][T19263] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  729.946293][   T64] usb 7-1: new high-speed USB device number 58 using dummy_hcd
[  730.104952][   T64] usb 7-1: Using ep0 maxpacket: 16
[  730.108980][   T64] usb 7-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  730.111457][   T64] usb 7-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  730.113632][   T64] usb 7-1: Product: syz
[  730.114784][   T64] usb 7-1: Manufacturer: syz
[  730.116363][   T64] usb 7-1: SerialNumber: syz
[  730.118996][   T64] usb 7-1: config 0 descriptor??
[  730.146970][T19279] FAULT_INJECTION: forcing a failure.
[  730.146970][T19279] name failslab, interval 1, probability 0, space 0, times 0
[  730.150689][T19279] CPU: 0 UID: 0 PID: 19279 Comm: syz.1.3092 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  730.150704][T19279] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  730.150712][T19279] Call Trace:
[  730.150715][T19279]  <TASK>
[  730.150720][T19279]  dump_stack_lvl+0x16c/0x1f0
[  730.150738][T19279]  should_fail_ex+0x50a/0x650
[  730.150750][T19279]  ? fs_reclaim_acquire+0xae/0x150
[  730.150765][T19279]  should_failslab+0xc2/0x120
[  730.150776][T19279]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  730.150795][T19279]  ? vfs_parse_fs_string+0xc4/0x150
[  730.150836][T19279]  kmemdup_nul+0x49/0xf0
[  730.150854][T19279]  vfs_parse_fs_string+0xc4/0x150
[  730.150874][T19279]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  730.150894][T19279]  ? shmem_next_opt+0xbc/0x120
[  730.150910][T19279]  ? __pfx_shmem_next_opt+0x10/0x10
[  730.150926][T19279]  vfs_parse_monolithic_sep+0x175/0x1f0
[  730.150942][T19279]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  730.150959][T19279]  ? shmem_init_fs_context+0x222/0x2b0
[  730.150975][T19279]  ? __pfx_shmem_init_fs_context+0x10/0x10
[  730.150992][T19279]  ? alloc_fs_context+0x59b/0x9c0
[  730.151011][T19279]  path_mount+0xa29/0x1f10
[  730.151022][T19279]  ? kmem_cache_free+0x2e2/0x4d0
[  730.151037][T19279]  ? __pfx_path_mount+0x10/0x10
[  730.151049][T19279]  ? putname+0x13c/0x180
[  730.151061][T19279]  __ia32_sys_mount+0x28d/0x310
[  730.151072][T19279]  ? __pfx___ia32_sys_mount+0x10/0x10
[  730.151085][T19279]  __do_fast_syscall_32+0x73/0x120
[  730.151102][T19279]  do_fast_syscall_32+0x32/0x80
[  730.151117][T19279]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  730.151136][T19279] RIP: 0023:0xf742e579
[  730.151144][T19279] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  730.151155][T19279] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  730.151165][T19279] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000080
[  730.151172][T19279] RDX: 0000000000000000 RSI: 0000000000080060 RDI: 0000000080000000
[  730.151178][T19279] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  730.151184][T19279] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  730.151190][T19279] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  730.151202][T19279]  </TASK>
[  730.375784][T16884] usb 7-1: USB disconnect, device number 58
[  730.545564][T19287] /dev/sr0: Can't open blockdev
[  730.919530][T19290] bond0: option fail_over_mac: unable to set because the bond device has slaves
[  730.923564][T19290] netlink: 'syz.2.3094': attribute type 10 has an invalid length.
[  730.927198][T19290] bridge0: port 2(bridge_slave_1) entered disabled state
[  730.930286][T19290] bridge0: port 1(bridge_slave_0) entered disabled state
[  730.936412][T19290] bridge0: port 2(bridge_slave_1) entered blocking state
[  730.938457][T19290] bridge0: port 2(bridge_slave_1) entered forwarding state
[  730.941957][T19290] bridge0: port 1(bridge_slave_0) entered blocking state
[  730.944933][T19290] bridge0: port 1(bridge_slave_0) entered forwarding state
[  730.951292][T19290] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  731.066043][T19292] fuse: Unknown parameter ''
[  731.149930][T19301] FAULT_INJECTION: forcing a failure.
[  731.149930][T19301] name failslab, interval 1, probability 0, space 0, times 0
[  731.153255][T19301] CPU: 2 UID: 0 PID: 19301 Comm: syz.1.3098 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  731.153272][T19301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  731.153279][T19301] Call Trace:
[  731.153283][T19301]  <TASK>
[  731.153289][T19301]  dump_stack_lvl+0x16c/0x1f0
[  731.153308][T19301]  should_fail_ex+0x50a/0x650
[  731.153319][T19301]  ? fs_reclaim_acquire+0xae/0x150
[  731.153336][T19301]  should_failslab+0xc2/0x120
[  731.153347][T19301]  __kmalloc_node_noprof+0xd1/0x510
[  731.153364][T19301]  ? fifo_init+0x394/0x710
[  731.153376][T19301]  ? qdisc_alloc+0xbb/0xc50
[  731.153392][T19301]  qdisc_alloc+0xbb/0xc50
[  731.153407][T19301]  qdisc_create_dflt+0x73/0x430
[  731.153422][T19301]  taprio_init+0x4b3/0x940
[  731.153436][T19301]  ? __pfx_taprio_init+0x10/0x10
[  731.153448][T19301]  ? qdisc_alloc+0x950/0xc50
[  731.153461][T19301]  ? __pfx_taprio_init+0x10/0x10
[  731.153473][T19301]  qdisc_create+0x4f1/0x1100
[  731.153485][T19301]  ? __pfx_qdisc_create+0x10/0x10
[  731.153499][T19301]  tc_modify_qdisc+0x4d8/0x1d30
[  731.153513][T19301]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  731.153524][T19301]  ? rtnetlink_rcv_msg+0x372/0xea0
[  731.153545][T19301]  ? trace_lock_acquire+0x14e/0x1f0
[  731.153561][T19301]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  731.153573][T19301]  rtnetlink_rcv_msg+0x3c7/0xea0
[  731.153590][T19301]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  731.153613][T19301]  netlink_rcv_skb+0x16b/0x440
[  731.153629][T19301]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  731.153646][T19301]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  731.153669][T19301]  ? netlink_deliver_tap+0x1ae/0xd30
[  731.153686][T19301]  netlink_unicast+0x53c/0x7f0
[  731.153703][T19301]  ? __pfx_netlink_unicast+0x10/0x10
[  731.153719][T19301]  ? __phys_addr_symbol+0x30/0x80
[  731.153731][T19301]  ? __check_object_size+0x488/0x710
[  731.153744][T19301]  netlink_sendmsg+0x8b8/0xd70
[  731.153762][T19301]  ? __pfx_netlink_sendmsg+0x10/0x10
[  731.153782][T19301]  ____sys_sendmsg+0xaaf/0xc90
[  731.153796][T19301]  ? __pfx_____sys_sendmsg+0x10/0x10
[  731.153808][T19301]  ? get_compat_msghdr+0x11b/0x170
[  731.153827][T19301]  ___sys_sendmsg+0x135/0x1e0
[  731.153849][T19301]  ? __pfx____sys_sendmsg+0x10/0x10
[  731.153871][T19301]  ? __pfx_lock_release+0x10/0x10
[  731.153886][T19301]  ? trace_lock_acquire+0x14e/0x1f0
[  731.153903][T19301]  ? __fget_files+0x206/0x3a0
[  731.153922][T19301]  __sys_sendmsg+0x16e/0x220
[  731.153939][T19301]  ? __pfx___sys_sendmsg+0x10/0x10
[  731.153964][T19301]  __do_fast_syscall_32+0x73/0x120
[  731.153980][T19301]  do_fast_syscall_32+0x32/0x80
[  731.153996][T19301]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  731.154013][T19301] RIP: 0023:0xf742e579
[  731.154022][T19301] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  731.154033][T19301] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  731.154044][T19301] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800007c0
[  731.154050][T19301] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  731.154056][T19301] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  731.154062][T19301] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  731.154068][T19301] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  731.154081][T19301]  </TASK>
[  731.609193][T19308] program syz.1.3099 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  731.612328][T19308] ptrace attach of "/syz-executor exec"[16463] was attempted by ""[19308]
[  731.615550][T19308] random: crng reseeded on system resumption
[  731.621005][T19308] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  732.001566][T19316] misc userio: The device must be registered before sending interrupts
[  732.038565][T19319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3104'.
[  732.041991][T19319] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3104'.
[  732.066744][T19319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3104'.
[  733.911819][T19353] netfs: Couldn't get user pages (rc=-14)
[  733.915695][T19353] FAULT_INJECTION: forcing a failure.
[  733.915695][T19353] name failslab, interval 1, probability 0, space 0, times 0
[  733.919369][T19353] CPU: 3 UID: 0 PID: 19353 Comm: syz.0.3112 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  733.919386][T19353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  733.919393][T19353] Call Trace:
[  733.919397][T19353]  <TASK>
[  733.919402][T19353]  dump_stack_lvl+0x16c/0x1f0
[  733.919422][T19353]  should_fail_ex+0x50a/0x650
[  733.919433][T19353]  ? fs_reclaim_acquire+0xae/0x150
[  733.919448][T19353]  ? p9_fcall_init+0x97/0x260
[  733.919459][T19353]  should_failslab+0xc2/0x120
[  733.919470][T19353]  __kmalloc_noprof+0xcb/0x510
[  733.919486][T19353]  ? rcu_is_watching+0x12/0xc0
[  733.919498][T19353]  ? __pfx___kmalloc_large_node_noprof+0x1/0x10
[  733.919514][T19353]  p9_fcall_init+0x97/0x260
[  733.919527][T19353]  p9_tag_alloc+0x21c/0x660
[  733.919540][T19353]  ? __pfx_p9_tag_alloc+0x10/0x10
[  733.919553][T19353]  ? __pfx_mark_lock+0x10/0x10
[  733.919575][T19353]  p9_client_prepare_req+0x19f/0x4d0
[  733.919589][T19353]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  733.919603][T19353]  ? __pfx_mark_lock+0x10/0x10
[  733.919619][T19353]  ? hlock_class+0x4e/0x130
[  733.919630][T19353]  ? mark_lock+0xb5/0xc60
[  733.919645][T19353]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[  733.919655][T19353]  p9_client_rpc+0x1c3/0xc10
[  733.919681][T19353]  ? register_lock_class+0xb1/0x1240
[  733.919697][T19353]  ? __pfx_p9_client_rpc+0x10/0x10
[  733.919709][T19353]  ? __pfx___lock_acquire+0x10/0x10
[  733.919725][T19353]  ? __pfx_register_lock_class+0x10/0x10
[  733.919740][T19353]  ? __pfx_mark_lock+0x10/0x10
[  733.919757][T19353]  ? hlock_class+0x4e/0x130
[  733.919767][T19353]  ? __lock_acquire+0x15a9/0x3c40
[  733.919785][T19353]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[  733.919795][T19353]  p9_client_read_once+0x24f/0x820
[  733.919812][T19353]  ? __pfx_p9_client_read_once+0x10/0x10
[  733.919832][T19353]  p9_client_read+0x13f/0x1b0
[  733.919849][T19353]  v9fs_issue_read+0x118/0x380
[  733.919860][T19353]  ? __pfx_v9fs_issue_read+0x10/0x10
[  733.919870][T19353]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  733.919880][T19353]  ? lock_acquire+0x2f/0xb0
[  733.919894][T19353]  ? netfs_read_to_pagecache+0x38a/0xd30
[  733.919909][T19353]  netfs_read_to_pagecache+0x59f/0xd30
[  733.919927][T19353]  netfs_read_folio+0x419/0xf40
[  733.919941][T19353]  ? __up_read+0x1fb/0x760
[  733.919958][T19353]  ? __pfx_netfs_read_folio+0x10/0x10
[  733.919969][T19353]  filemap_read_folio+0xc6/0x2a0
[  733.919983][T19353]  ? __pfx_filemap_read_folio+0x10/0x10
[  733.920001][T19353]  filemap_fault+0x206e/0x2ca0
[  733.920018][T19353]  ? __pfx_filemap_fault+0x10/0x10
[  733.920034][T19353]  ? find_held_lock+0x2d/0x110
[  733.920047][T19353]  ? do_pte_missing+0xde9/0x3e10
[  733.920063][T19353]  ? __pfx_lock_release+0x10/0x10
[  733.920080][T19353]  __do_fault+0x10a/0x490
[  733.920093][T19353]  do_pte_missing+0xecf/0x3e10
[  733.920109][T19353]  ? __pfx_lock_release+0x10/0x10
[  733.920127][T19353]  __handle_mm_fault+0x1166/0x2c60
[  733.920147][T19353]  ? __pfx___handle_mm_fault+0x10/0x10
[  733.920162][T19353]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  733.920185][T19353]  ? find_vma+0xc0/0x140
[  733.920197][T19353]  ? __pfx_find_vma+0x10/0x10
[  733.920212][T19353]  handle_mm_fault+0x3fa/0xaa0
[  733.920231][T19353]  do_user_addr_fault+0x7a3/0x13f0
[  733.920249][T19353]  exc_page_fault+0x5c/0xc0
[  733.920263][T19353]  asm_exc_page_fault+0x26/0x30
[  733.920278][T19353] RIP: 0010:_copy_from_user+0x93/0xd0
[  733.920291][T19353] Code: 3c f7 fc 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 99 87 59 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 a5 37
[  733.920302][T19353] RSP: 0018:ffffc9000d48fd80 EFLAGS: 00050246
[  733.920311][T19353] RAX: 0000000000000001 RBX: 0000000080000040 RCX: 0000000000000014
[  733.920318][T19353] RDX: fffff52001a91fc3 RSI: 0000000080000040 RDI: ffffc9000d48fe00
[  733.920325][T19353] RBP: 0000000000000014 R08: 0000000000000001 R09: fffff52001a91fc2
[  733.920331][T19353] R10: ffffc9000d48fe13 R11: 0000000000000000 R12: 0000000000000000
[  733.920337][T19353] R13: ffffc9000d48fe00 R14: ffff88804be9b500 R15: ffff88804f293c00
[  733.920351][T19353]  move_addr_to_kernel+0x68/0x160
[  733.920366][T19353]  __sys_bind+0x11c/0x260
[  733.920380][T19353]  ? __pfx___sys_bind+0x10/0x10
[  733.920393][T19353]  ? __fget_files+0x206/0x3a0
[  733.920413][T19353]  ? __pfx_ksys_write+0x10/0x10
[  733.920431][T19353]  __ia32_sys_bind+0x71/0xb0
[  733.920444][T19353]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  733.920459][T19353]  __do_fast_syscall_32+0x73/0x120
[  733.920476][T19353]  do_fast_syscall_32+0x32/0x80
[  733.920491][T19353]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  733.920508][T19353] RIP: 0023:0xf746e579
[  733.920515][T19353] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  733.920525][T19353] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000169
[  733.920535][T19353] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[  733.920541][T19353] RDX: 0000000000000014 RSI: 0000000000000000 RDI: 0000000000000000
[  733.920547][T19353] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  733.920553][T19353] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  733.920559][T19353] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  733.920576][T19353]  </TASK>
[  734.141854][T19356] FAULT_INJECTION: forcing a failure.
[  734.141854][T19356] name failslab, interval 1, probability 0, space 0, times 0
[  734.146232][T19356] CPU: 2 UID: 0 PID: 19356 Comm: syz.0.3113 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  734.146247][T19356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  734.146254][T19356] Call Trace:
[  734.146258][T19356]  <TASK>
[  734.146263][T19356]  dump_stack_lvl+0x16c/0x1f0
[  734.146282][T19356]  should_fail_ex+0x50a/0x650
[  734.146293][T19356]  ? fs_reclaim_acquire+0xae/0x150
[  734.146308][T19356]  ? tomoyo_encode2+0x100/0x3e0
[  734.146322][T19356]  should_failslab+0xc2/0x120
[  734.146334][T19356]  __kmalloc_noprof+0xcb/0x510
[  734.146350][T19356]  ? d_absolute_path+0x137/0x1b0
[  734.146362][T19356]  ? rcu_is_watching+0x12/0xc0
[  734.146376][T19356]  tomoyo_encode2+0x100/0x3e0
[  734.146393][T19356]  tomoyo_encode+0x29/0x50
[  734.146407][T19356]  tomoyo_realpath_from_path+0x19d/0x720
[  734.146426][T19356]  tomoyo_path_number_perm+0x248/0x590
[  734.146439][T19356]  ? tomoyo_path_number_perm+0x235/0x590
[  734.146453][T19356]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  734.146480][T19356]  ? chmod_common+0x161/0x460
[  734.146497][T19356]  ? lock_acquire+0x2f/0xb0
[  734.146511][T19356]  ? chmod_common+0x161/0x460
[  734.146530][T19356]  ? down_write+0x14e/0x200
[  734.146546][T19356]  ? __pfx_down_write+0x10/0x10
[  734.146567][T19356]  ? mnt_get_write_access+0x20c/0x300
[  734.146581][T19356]  security_path_chmod+0x121/0x2c0
[  734.146594][T19356]  chmod_common+0x16d/0x460
[  734.146613][T19356]  ? __pfx_chmod_common+0x10/0x10
[  734.146629][T19356]  ? __fget_files+0x206/0x3a0
[  734.146646][T19356]  ? lock_acquire+0x2f/0xb0
[  734.146667][T19356]  __ia32_sys_fchmod+0x10f/0x1a0
[  734.146678][T19356]  __do_fast_syscall_32+0x73/0x120
[  734.146694][T19356]  do_fast_syscall_32+0x32/0x80
[  734.146710][T19356]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  734.146728][T19356] RIP: 0023:0xf746e579
[  734.146737][T19356] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  734.146747][T19356] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 000000000000005e
[  734.146757][T19356] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000d59326f3
[  734.146765][T19356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  734.146786][T19356] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  734.146793][T19356] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  734.146799][T19356] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  734.146813][T19356]  </TASK>
[  734.146824][T19356] ERROR: Out of memory at tomoyo_realpath_from_path.
[  734.710018][T19376] mac80211_hwsim hwsim20 wlan0: entered promiscuous mode
[  734.715617][T19376] macsec1: entered promiscuous mode
[  734.717672][T19376] macsec1: entered allmulticast mode
[  734.719229][T19376] mac80211_hwsim hwsim20 wlan0: entered allmulticast mode
[  734.972449][ T1463] usb 8-1: new high-speed USB device number 50 using dummy_hcd
[  735.083361][T19378] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3120'.
[  735.132376][ T1463] usb 8-1: Using ep0 maxpacket: 32
[  735.135954][ T1463] usb 8-1: config 1 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 242, changing to 11
[  735.139392][ T1463] usb 8-1: config 1 interface 0 has no altsetting 0
[  735.143252][ T1463] usb 8-1: New USB device found, idVendor=146b, idProduct=0902, bcdDevice= 0.40
[  735.145749][ T1463] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  735.147950][ T1463] usb 8-1: Product: ᠌
[  735.149117][ T1463] usb 8-1: Manufacturer: 㓦櫬죲譇䖗攅ꙴ焐௵䤤ꛋ俈ᛑ깃擬㥇䟭욤ģ太욏ᨎ⟹ފ孤䵞덖䳡⻹唵붹𧻓簞囤黥쳼繱鯓鏺긐펅ų창௦ꕫ骫ﴄ遮ꑅ纁疡쿫䒲忾窏ᰃ⌮凁堉芮⨗尵熍őⳇ✷ꭉ៾덜ȷ츏慍㪵繃䗽冝ⶓ楲瑖ߚ辩ꠚẍ聻ﯔ譪
[  735.156699][ T1463] usb 8-1: SerialNumber: syz
[  735.214084][T19387] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  735.380890][ T1463] usbhid 8-1:1.0: can't add hid device: -71
[  735.383600][ T1463] usbhid 8-1:1.0: probe with driver usbhid failed with error -71
[  735.393560][ T1463] usb 8-1: USB disconnect, device number 50
[  735.415513][T19396] overlayfs: overlapping lowerdir path
[  735.476811][T19394] overlayfs: missing 'lowerdir'
[  735.787700][T16543] bridge_slave_1: left allmulticast mode
[  735.789475][T16543] bridge_slave_1: left promiscuous mode
[  735.791290][T16543] bridge0: port 2(bridge_slave_1) entered disabled state
[  735.795466][T16543] bridge_slave_0: left allmulticast mode
[  735.797591][T16543] bridge_slave_0: left promiscuous mode
[  735.801624][T16543] bridge0: port 1(bridge_slave_0) entered disabled state
[  735.916549][T16543] batman_adv: batadv0: Removing interface: gretap1
[  735.945393][T19403] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  736.015226][   T40] kauditd_printk_skb: 467 callbacks suppressed
[  736.015271][   T40] audit: type=1326 audit(2000000667.361:19647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.024113][   T40] audit: type=1326 audit(2000000667.371:19648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.030797][   T40] audit: type=1326 audit(2000000667.371:19649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.038559][   T40] audit: type=1326 audit(2000000667.371:19650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.051337][   T40] audit: type=1326 audit(2000000667.371:19651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.059428][   T40] audit: type=1326 audit(2000000667.371:19652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.066676][   T40] audit: type=1326 audit(2000000667.371:19653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.074212][   T40] audit: type=1326 audit(2000000667.371:19654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.080576][   T40] audit: type=1326 audit(2000000667.371:19655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.088595][   T40] audit: type=1326 audit(2000000667.371:19656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19400 comm="syz.1.3127" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf742e579 code=0x7ffc0000
[  736.181123][T16543] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  736.187046][T16543] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  736.191561][T16543] bond0 (unregistering): Released all slaves
[  736.310846][T16543] tipc: Disabling bearer <udp:syz2>
[  736.332356][T16543] tipc: Left network mode
[  736.497393][T19414] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3130'.
[  736.677084][T16543] hsr_slave_0: left promiscuous mode
[  736.679617][T16543] hsr_slave_1: left promiscuous mode
[  736.682483][T16543] batman_adv: batadv0: Removing interface: batadv_slave_0
[  736.685605][T16543] batman_adv: batadv0: Removing interface: batadv_slave_1
[  737.393571][T19430] /dev/sr0: Can't open blockdev
[  737.723430][T16543] team0 (unregistering): Port device team_slave_1 removed
[  737.846979][T16543] team0 (unregistering): Port device team_slave_0 removed
[  737.862759][T19438] QAT: failed to copy from user.
[  739.207651][T16543] IPVS: stop unused estimator thread 0...
[  740.042437][T19465] tipc: Enabled bearer <eth:team0>, priority 0
[  740.068329][T19463] program syz.2.3141 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  740.091650][T19463] ptrace attach of "/syz-executor exec"[16677] was attempted by ""[19463]
[  740.104545][T19463] random: crng reseeded on system resumption
[  740.162580][T19463] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  740.433871][T19470] QAT: failed to copy from user.
[  741.133812][T19480] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3146'.
[  741.930966][T19498] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  741.989735][T19499] program syz.2.3149 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  741.992735][T19499] ptrace attach of "/syz-executor exec"[16677] was attempted by ""[19499]
[  741.996933][T19499] random: crng reseeded on system resumption
[  741.999250][   T40] kauditd_printk_skb: 419 callbacks suppressed
[  741.999261][   T40] audit: type=1326 audit(2000000673.344:20076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.007231][   T40] audit: type=1326 audit(2000000673.344:20077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.013268][   T40] audit: type=1326 audit(2000000673.344:20078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.019834][   T40] audit: type=1326 audit(2000000673.344:20079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.025733][   T40] audit: type=1326 audit(2000000673.344:20080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.031985][T19499] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  742.032107][   T40] audit: type=1326 audit(2000000673.344:20081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.041100][   T40] audit: type=1326 audit(2000000673.354:20082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.047040][   T40] audit: type=1326 audit(2000000673.354:20083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.052983][   T40] audit: type=1326 audit(2000000673.354:20084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  742.059461][   T40] audit: type=1326 audit(2000000673.354:20085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19497 comm="syz.3.3151" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf748e579 code=0x7ffc0000
[  743.482566][T19521] : entered promiscuous mode
[  743.507148][T19522] QAT: failed to copy from user.
[  744.098263][T19526] QAT: failed to copy from user.
[  744.471360][T19537] netlink: 'syz.3.3162': attribute type 3 has an invalid length.
[  744.473570][T19537] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.3162'.
[  744.480418][T19537] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  745.287901][T19554] sp0: Synchronizing with TNC
[  745.289707][T19555] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  745.292027][T19554] sp0: Found TNC
[  745.337628][T19553] [U] �`
[  746.289658][T19569] QAT: failed to copy from user.
[  746.647100][T19577] netlink: 84 bytes leftover after parsing attributes in process `syz.2.3173'.
[  747.007763][   T40] kauditd_printk_skb: 750 callbacks suppressed
[  747.007775][   T40] audit: type=1326 audit(2000000678.367:20836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf746e579 code=0x7ffc0000
[  747.015691][   T40] audit: type=1326 audit(2000000678.367:20837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf746e5a7 code=0x7ffc0000
[  747.022047][   T40] audit: type=1326 audit(2000000678.367:20838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  747.028645][   T40] audit: type=1326 audit(2000000678.377:20839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf746e579 code=0x7ffc0000
[  747.034618][   T40] audit: type=1326 audit(2000000678.377:20840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf746e5a7 code=0x7ffc0000
[  747.049771][   T40] audit: type=1326 audit(2000000678.377:20841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  747.063028][   T40] audit: type=1326 audit(2000000678.387:20842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf746e579 code=0x7ffc0000
[  747.081345][   T40] audit: type=1326 audit(2000000678.387:20843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf746e5a7 code=0x7ffc0000
[  747.088838][   T40] audit: type=1326 audit(2000000678.387:20844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19552 comm="syz.0.3167" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  748.066590][   T40] audit: type=1326 audit(2000000679.427:20845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19611 comm="syz.2.3183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  748.816164][T19638] overlayfs: overlapping lowerdir path
[  750.673615][T19687] QAT: failed to copy from user.
[  751.285801][T19697] QAT: failed to copy from user.
[  751.593890][T19699] sg_write: data in/out 51353/10 bytes for SCSI command 0xff-- guessing data in;
[  751.593890][T19699]    program syz.2.3201 not setting count and/or reply_len properly
[  751.606089][T19699] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3201'.
[  751.844116][T16554] usb 7-1: new high-speed USB device number 59 using dummy_hcd
[  751.994062][T16554] usb 7-1: Using ep0 maxpacket: 16
[  751.997413][T16554] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  752.003238][T16554] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  752.006635][T16554] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  752.009776][T16554] usb 7-1: Product: syz
[  752.011322][T16554] usb 7-1: Manufacturer: syz
[  752.013176][T16554] usb 7-1: SerialNumber: syz
[  752.018760][T16554] usb 7-1: config 0 descriptor??
[  752.021264][   T40] kauditd_printk_skb: 83 callbacks suppressed
[  752.021278][   T40] audit: type=1326 audit(2000000683.369:20929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.022805][T16554] hub 7-1:0.0: bad descriptor, ignoring hub
[  752.023345][   T40] audit: type=1326 audit(2000000683.369:20930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.031044][T16554] hub 7-1:0.0: probe with driver hub failed with error -5
[  752.034853][T16554] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input21
[  752.046188][   T40] audit: type=1326 audit(2000000683.369:20931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.055795][   T40] audit: type=1326 audit(2000000683.369:20932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.061751][   T40] audit: type=1326 audit(2000000683.369:20933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.116674][T19711] syzkaller1: entered promiscuous mode
[  752.118525][T19711] syzkaller1: entered allmulticast mode
[  752.222288][   T40] audit: type=1326 audit(2000000683.569:20934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.229582][   T40] audit: type=1326 audit(2000000683.569:20935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.235742][   T40] audit: type=1326 audit(2000000683.579:20936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.287490][T19713] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3201'.
[  752.393150][   T40] audit: type=1326 audit(2000000683.739:20937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.404064][   T40] audit: type=1326 audit(2000000683.739:20938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19698 comm="syz.2.3201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  752.943816][T19720] afs: Unknown parameter '
��y'
[  753.024290][T16624] usb 7-1: USB disconnect, device number 59
[  753.077985][T19727] FAULT_INJECTION: forcing a failure.
[  753.077985][T19727] name failslab, interval 1, probability 0, space 0, times 0
[  753.081611][T19727] CPU: 3 UID: 0 PID: 19727 Comm: syz.2.3210 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  753.081627][T19727] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  753.081634][T19727] Call Trace:
[  753.081638][T19727]  <TASK>
[  753.081643][T19727]  dump_stack_lvl+0x16c/0x1f0
[  753.081662][T19727]  should_fail_ex+0x50a/0x650
[  753.081674][T19727]  ? fs_reclaim_acquire+0xae/0x150
[  753.081689][T19727]  ? tomoyo_realpath_from_path+0xb9/0x720
[  753.081704][T19727]  should_failslab+0xc2/0x120
[  753.081716][T19727]  __kmalloc_noprof+0xcb/0x510
[  753.081732][T19727]  ? trace_kmalloc+0x2d/0xd0
[  753.081743][T19727]  ? __kmalloc_noprof+0x23b/0x510
[  753.081761][T19727]  tomoyo_realpath_from_path+0xb9/0x720
[  753.081778][T19727]  ? tomoyo_fill_path_info+0x233/0x420
[  753.081791][T19727]  tomoyo_mount_acl+0x1af/0x880
[  753.081805][T19727]  ? hlock_class+0x4e/0x130
[  753.081817][T19727]  ? __lock_acquire+0x15a9/0x3c40
[  753.081834][T19727]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  753.081850][T19727]  ? __pfx___lock_acquire+0x10/0x10
[  753.081865][T19727]  ? stack_trace_save+0x95/0xd0
[  753.081878][T19727]  ? __pfx_lock_release+0x10/0x10
[  753.081899][T19727]  ? trace_lock_acquire+0x14e/0x1f0
[  753.081911][T19727]  ? tomoyo_mount_permission+0x149/0x420
[  753.081926][T19727]  ? lock_acquire+0x2f/0xb0
[  753.081940][T19727]  ? tomoyo_mount_permission+0x149/0x420
[  753.081956][T19727]  tomoyo_mount_permission+0x16e/0x420
[  753.081970][T19727]  ? tomoyo_mount_permission+0x149/0x420
[  753.081985][T19727]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  753.082004][T19727]  ? get_current_fs_domain+0x184/0x1f0
[  753.082018][T19727]  security_sb_mount+0x9b/0x260
[  753.082032][T19727]  path_mount+0x129/0x1f10
[  753.082043][T19727]  ? kmem_cache_free+0x2e2/0x4d0
[  753.082058][T19727]  ? __pfx_path_mount+0x10/0x10
[  753.082070][T19727]  ? putname+0x13c/0x180
[  753.082083][T19727]  __ia32_sys_mount+0x28d/0x310
[  753.082093][T19727]  ? __pfx___ia32_sys_mount+0x10/0x10
[  753.082108][T19727]  __do_fast_syscall_32+0x73/0x120
[  753.082125][T19727]  do_fast_syscall_32+0x32/0x80
[  753.082140][T19727]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  753.082158][T19727] RIP: 0023:0xf73be579
[  753.082167][T19727] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  753.082178][T19727] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  753.082188][T19727] RAX: ffffffffffffffda RBX: 00000000800000c0 RCX: 0000000080000040
[  753.082195][T19727] RDX: 0000000080000180 RSI: 0000000000400080 RDI: 00000000800001c0
[  753.082201][T19727] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  753.082207][T19727] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  753.082214][T19727] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  753.082226][T19727]  </TASK>
[  753.082230][T19727] ERROR: Out of memory at tomoyo_realpath_from_path.
[  753.171096][T19734] overlayfs: overlapping lowerdir path
[  753.211698][T19737] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3211'.
[  753.257647][T19743] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  753.523299][T16668] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  753.693208][T16668] usb 5-1: Using ep0 maxpacket: 8
[  753.698108][T16668] usb 5-1: config 0 has an invalid interface number: 130 but max is 1
[  753.700699][T16668] usb 5-1: config 0 has an invalid interface number: 164 but max is 1
[  753.702913][T16668] usb 5-1: config 0 has no interface number 0
[  753.704709][T16668] usb 5-1: config 0 has no interface number 1
[  753.706464][T16668] usb 5-1: config 0 interface 130 altsetting 3 endpoint 0x5 has invalid wMaxPacketSize 0
[  753.709198][T16668] usb 5-1: config 0 interface 130 altsetting 3 endpoint 0x4 has invalid maxpacket 447, setting to 64
[  753.712384][T16668] usb 5-1: config 0 interface 130 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  753.715563][T16668] usb 5-1: config 0 interface 130 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  753.718519][T16668] usb 5-1: config 0 interface 130 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  753.721395][T16668] usb 5-1: config 0 interface 130 altsetting 3 has a duplicate endpoint with address 0x4, skipping
[  753.724701][T16668] usb 5-1: config 0 interface 130 altsetting 3 endpoint 0xF has an invalid bInterval 136, changing to 11
[  753.728036][T16668] usb 5-1: config 0 interface 130 altsetting 3 endpoint 0xE has invalid maxpacket 1023, setting to 64
[  753.731238][T16668] usb 5-1: config 0 interface 130 altsetting 3 has a duplicate endpoint with address 0xF, skipping
[  753.734488][T16668] usb 5-1: config 0 interface 130 altsetting 3 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  753.737611][T16668] usb 5-1: config 0 interface 130 altsetting 3 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  753.740786][T16668] usb 5-1: config 0 interface 130 altsetting 3 has a duplicate endpoint with address 0xD, skipping
[  753.743524][T19748] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  753.744016][T16668] usb 5-1: config 0 interface 164 altsetting 4 has an invalid descriptor for endpoint zero, skipping
[  753.749942][T16668] usb 5-1: config 0 interface 164 altsetting 4 has an invalid descriptor for endpoint zero, skipping
[  753.753084][T16668] usb 5-1: config 0 interface 164 altsetting 4 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  753.756545][T16668] usb 5-1: config 0 interface 164 altsetting 4 has a duplicate endpoint with address 0x1, skipping
[  753.759818][T16668] usb 5-1: config 0 interface 164 altsetting 4 has a duplicate endpoint with address 0x7, skipping
[  753.763047][T16668] usb 5-1: config 0 interface 130 has no altsetting 0
[  753.765231][T16668] usb 5-1: config 0 interface 164 has no altsetting 0
[  753.771230][T16668] usb 5-1: New USB device found, idVendor=22b8, idProduct=2a64, bcdDevice=f6.56
[  753.774015][T16668] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  753.776276][T16668] usb 5-1: Product: 㐉
[  753.777512][T16668] usb 5-1: Manufacturer: К
[  753.778867][T16668] usb 5-1: SerialNumber: syz
[  753.789612][T16668] usb 5-1: config 0 descriptor??
[  754.020534][T16668] usb_serial_simple 5-1:0.130: moto_modem converter detected
[  754.047526][T16668] usb 5-1: moto_modem converter now attached to ttyUSB0
[  754.196029][T16668] usb_serial_simple 5-1:0.164: moto_modem converter detected
[  754.201752][T16668] usb 5-1: moto_modem converter now attached to ttyUSB1
[  754.207941][T16668] usb 5-1: USB disconnect, device number 37
[  754.223049][T16668] moto_modem ttyUSB0: moto_modem converter now disconnected from ttyUSB0
[  754.225983][T16668] usb_serial_simple 5-1:0.130: device disconnected
[  754.234327][T16668] moto_modem ttyUSB1: moto_modem converter now disconnected from ttyUSB1
[  754.237570][T16668] usb_serial_simple 5-1:0.164: device disconnected
[  754.791507][T19758] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3218'.
[  755.364346][T19781] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3225'.
[  755.418116][T19785] JFS: discard option not supported on device
[  755.424320][T19785] Mount JFS Failure: -22
[  755.426077][T19785] jfs_mount failed w/return code = -22
[  755.734005][T19795] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3226'.
[  755.970915][T19797] xt_hashlimit: invalid interval
[  756.610712][T19809] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  756.613513][T19809] FAULT_INJECTION: forcing a failure.
[  756.613513][T19809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  756.617171][T19809] CPU: 0 UID: 0 PID: 19809 Comm: syz.0.3231 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  756.617188][T19809] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  756.617195][T19809] Call Trace:
[  756.617199][T19809]  <TASK>
[  756.617203][T19809]  dump_stack_lvl+0x16c/0x1f0
[  756.617223][T19809]  should_fail_ex+0x50a/0x650
[  756.617236][T19809]  _copy_to_user+0x32/0xd0
[  756.617249][T19809]  simple_read_from_buffer+0xd0/0x160
[  756.617265][T19809]  proc_fail_nth_read+0x198/0x270
[  756.617280][T19809]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  756.617295][T19809]  ? rw_verify_area+0xcf/0x680
[  756.617308][T19809]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  756.617321][T19809]  vfs_read+0x1df/0xbf0
[  756.617337][T19809]  ? __fget_files+0x1fc/0x3a0
[  756.617353][T19809]  ? __pfx___mutex_lock+0x10/0x10
[  756.617368][T19809]  ? __pfx_vfs_read+0x10/0x10
[  756.617399][T19809]  ? __fget_files+0x206/0x3a0
[  756.617417][T19809]  ksys_read+0x12b/0x250
[  756.617432][T19809]  ? __pfx_ksys_read+0x10/0x10
[  756.617450][T19809]  __do_fast_syscall_32+0x73/0x120
[  756.617466][T19809]  do_fast_syscall_32+0x32/0x80
[  756.617481][T19809]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  756.617500][T19809] RIP: 0023:0xf746e579
[  756.617509][T19809] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  756.617519][T19809] RSP: 002b:00000000f50f6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  756.617530][T19809] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50f6620
[  756.617536][T19809] RDX: 000000000000000f RSI: 00000000f745cff4 RDI: 0000000000000000
[  756.617542][T19809] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  756.617548][T19809] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  756.617554][T19809] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  756.617566][T19809]  </TASK>
[  756.917069][T19819] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3235'.
[  757.966960][T19831] QAT: failed to copy from user.
[  758.182249][T19834] QAT: failed to copy from user.
[  758.818572][T19845] program syz.3.3241 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  758.828029][T19845] ptrace attach of "/syz-executor exec"[16728] was attempted by ""[19845]
[  758.839738][T19845] random: crng reseeded on system resumption
[  758.858808][T19845] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  758.969236][ T5985] libceph: connect (1)[c::]:6789 error -101
[  758.971357][ T5985] libceph: mon0 (1)[c::]:6789 connect error
[  758.987638][T19846] ceph: No mds server is up or the cluster is laggy
[  758.990325][T19848] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3240'.
[  759.275316][T19863] trusted_key: encrypted_key: master key parameter '' is invalid
[  759.282401][T19863] netlink: 10 bytes leftover after parsing attributes in process `syz.2.3245'.
[  759.482378][T19870] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3247'.
[  759.532052][T19874] syz.1.3248: vmalloc error: size 12288, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  759.536983][T19874] CPU: 2 UID: 0 PID: 19874 Comm: syz.1.3248 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  759.536999][T19874] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  759.537006][T19874] Call Trace:
[  759.537010][T19874]  <TASK>
[  759.537014][T19874]  dump_stack_lvl+0x16c/0x1f0
[  759.537033][T19874]  warn_alloc+0x24d/0x3a0
[  759.537052][T19874]  ? __pfx_warn_alloc+0x10/0x10
[  759.537070][T19874]  ? alloc_pages_mpol+0x25b/0x540
[  759.537081][T19874]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  759.537097][T19874]  __vmalloc_node_range_noprof+0x12bd/0x1530
[  759.537118][T19874]  ? vhost_task_create+0x1d3/0x2e0
[  759.537133][T19874]  ? __memcg_slab_post_alloc_hook+0x4fc/0x9b0
[  759.537146][T19874]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  759.537162][T19874]  ? rcu_is_watching+0x12/0xc0
[  759.537173][T19874]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  759.537186][T19874]  ? kmem_cache_alloc_node_noprof+0x272/0x3c0
[  759.537204][T19874]  ? vhost_task_create+0x1d3/0x2e0
[  759.537218][T19874]  copy_process+0x2ef2/0x8c50
[  759.537228][T19874]  ? vhost_task_create+0x1d3/0x2e0
[  759.537241][T19874]  ? kasan_save_stack+0x33/0x60
[  759.537256][T19874]  ? kasan_save_track+0x14/0x30
[  759.537271][T19874]  ? __kasan_kmalloc+0xaa/0xb0
[  759.537289][T19874]  ? vhost_task_create+0xe6/0x2e0
[  759.537302][T19874]  ? kvm_mmu_post_init_vm+0x1b7/0x370
[  759.537316][T19874]  ? kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[  759.537329][T19874]  ? kvm_vcpu_ioctl+0x5ea/0x16b0
[  759.537341][T19874]  ? kvm_vcpu_compat_ioctl+0x210/0x3d0
[  759.537353][T19874]  ? __do_compat_sys_ioctl+0x1cb/0x2c0
[  759.537365][T19874]  ? __do_fast_syscall_32+0x73/0x120
[  759.537381][T19874]  ? do_fast_syscall_32+0x32/0x80
[  759.537395][T19874]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  759.537419][T19874]  ? __pfx_copy_process+0x10/0x10
[  759.537437][T19874]  ? lockdep_init_map_type+0x16d/0x7d0
[  759.537453][T19874]  ? __raw_spin_lock_init+0x3a/0x110
[  759.537471][T19874]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  759.537488][T19874]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  759.537507][T19874]  vhost_task_create+0x1d3/0x2e0
[  759.537520][T19874]  ? __pfx_vhost_task_create+0x10/0x10
[  759.537538][T19874]  ? __pfx_vhost_task_fn+0x10/0x10
[  759.537552][T19874]  ? lock_acquire.part.0+0x11b/0x380
[  759.537567][T19874]  ? find_held_lock+0x2d/0x110
[  759.537582][T19874]  kvm_mmu_post_init_vm+0x1b7/0x370
[  759.537597][T19874]  kvm_arch_vcpu_ioctl_run+0x66/0x17f0
[  759.537610][T19874]  ? lock_acquire+0x2f/0xb0
[  759.537623][T19874]  ? kvm_vcpu_ioctl+0x14be/0x16b0
[  759.537638][T19874]  kvm_vcpu_ioctl+0x5ea/0x16b0
[  759.537652][T19874]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  759.537665][T19874]  ? tomoyo_path_number_perm+0x190/0x590
[  759.537680][T19874]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  759.537693][T19874]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  759.537711][T19874]  ? do_vfs_ioctl+0x513/0x1990
[  759.537724][T19874]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  759.537744][T19874]  ? __pfx_lock_release+0x10/0x10
[  759.537759][T19874]  ? trace_lock_acquire+0x14e/0x1f0
[  759.537772][T19874]  kvm_vcpu_compat_ioctl+0x210/0x3d0
[  759.537786][T19874]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  759.537800][T19874]  ? __fget_files+0x206/0x3a0
[  759.537819][T19874]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  759.537832][T19874]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  759.537847][T19874]  __do_fast_syscall_32+0x73/0x120
[  759.537862][T19874]  do_fast_syscall_32+0x32/0x80
[  759.537877][T19874]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  759.537894][T19874] RIP: 0023:0xf742e579
[  759.537903][T19874] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  759.537914][T19874] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  759.537925][T19874] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  759.537931][T19874] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  759.537937][T19874] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  759.537943][T19874] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  759.537949][T19874] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  759.537962][T19874]  </TASK>
[  759.537966][T19874] Mem-Info:
[  759.657748][T19874] active_anon:6515 inactive_anon:765 isolated_anon:0
[  759.657748][T19874]  active_file:12198 inactive_file:28250 isolated_file:0
[  759.657748][T19874]  unevictable:1768 dirty:847 writeback:0
[  759.657748][T19874]  slab_reclaimable:5937 slab_unreclaimable:60145
[  759.657748][T19874]  mapped:24427 shmem:4385 pagetables:793
[  759.657748][T19874]  sec_pagetables:318 bounce:0
[  759.657748][T19874]  kernel_misc_reclaimable:0
[  759.657748][T19874]  free:53810 free_pcp:6207 free_cma:0
[  759.671070][T19874] Node 0 active_anon:512kB inactive_anon:0kB active_file:548kB inactive_file:56kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:896kB dirty:100kB writeback:0kB shmem:4344kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9104kB pagetables:1068kB sec_pagetables:1160kB all_unreclaimable? yes
[  759.679654][T19874] Node 1 active_anon:25548kB inactive_anon:3060kB active_file:48244kB inactive_file:112944kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:96812kB dirty:3288kB writeback:0kB shmem:13196kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2788kB pagetables:2104kB sec_pagetables:112kB all_unreclaimable? no
[  759.689162][T19874] Node 0 DMA free:2728kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:300kB local_pcp:132kB free_cma:0kB
[  759.696797][T19874] lowmem_reserve[]: 0 294 294 294 294
[  759.698319][T19874] Node 0 DMA32 free:19348kB boost:2048kB min:15608kB low:18996kB high:22384kB reserved_highatomic:4096KB active_anon:504kB inactive_anon:0kB active_file:548kB inactive_file:56kB unevictable:3536kB writepending:100kB present:1032196kB managed:301720kB mlocked:0kB bounce:0kB free_pcp:4164kB local_pcp:432kB free_cma:0kB
[  759.706849][T19874] lowmem_reserve[]: 0 0 0 0 0
[  759.708194][T19874] Node 1 DMA32 free:195944kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:2048KB active_anon:25548kB inactive_anon:3060kB active_file:48244kB inactive_file:112944kB unevictable:3536kB writepending:3288kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:17644kB local_pcp:4752kB free_cma:0kB
[  759.716676][T19874] lowmem_reserve[]: 0 0 0 0 0
[  759.718100][T19874] Node 0 DMA: 50*4kB (UE) 24*8kB (UE) 20*16kB (UE) 15*32kB (UE) 2*64kB (UE) 1*128kB (E) 1*256kB (E) 0*512kB 1*1024kB (E) 0*2048kB 0*4096kB = 2728kB
[  759.722397][T19874] Node 0 DMA32: 560*4kB (UMEH) 301*8kB (UEH) 46*16kB (UMEH) 74*32kB (UEH) 43*64kB (UME) 29*128kB (UME) 10*256kB (UME) 1*512kB (E) 0*1024kB 1*2048kB (U) 0*4096kB = 19336kB
[  759.727150][T19874] Node 1 DMA32: 1412*4kB (UMEH) 807*8kB (UMEH) 736*16kB (UMEH) 539*32kB (UMEH) 425*64kB (UMEH) 164*128kB (UMEH) 68*256kB (UME) 50*512kB (UME) 26*1024kB (UM) 10*2048kB (UM) 4*4096kB (U) = 195816kB
[  759.732613][T19874] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  759.735390][T19874] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  759.738039][T19874] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  759.740860][T19874] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  759.743531][T19874] 45092 total pagecache pages
[  759.744938][T19874] 257 pages in swap cache
[  759.746206][T19874] Free swap  = 121148kB
[  759.747456][T19874] Total swap = 124996kB
[  759.748722][T19874] 524155 pages RAM
[  759.749875][T19874] 0 pages HighMem/MovableOnly
[  759.751293][T19874] 207822 pages reserved
[  759.752472][T19874] 0 pages cma reserved
[  760.515334][T19894] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3255'.
[  760.961265][T19913] program syz.1.3257 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  760.967216][T19913] ptrace attach of "/syz-executor exec"[16463] was attempted by ""[19913]
[  760.974698][T19913] random: crng reseeded on system resumption
[  760.983600][T19913] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  761.469623][T16795] usb 7-1: new full-speed USB device number 60 using dummy_hcd
[  761.620342][T16795] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  761.622732][T16795] usb 7-1: config 0 has no interface number 0
[  761.624459][T16795] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  761.627434][T16795] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  761.630661][T16795] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  761.633867][T16795] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64
[  761.636844][T16795] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  761.640485][T16795] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  761.643062][T16795] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  761.646408][T16795] usb 7-1: config 0 descriptor??
[  761.648654][T19917] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  761.653519][T16795] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  761.852606][T16624] usb 7-1: USB disconnect, device number 60
[  761.852915][    C0] ldusb 7-1:0.55: usb_submit_urb failed (-19)
[  761.856487][T19917] ldusb 7-1:0.55: Couldn't submit interrupt_out_urb -2
[  761.860700][T16624] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  762.203210][T19943] program syz.0.3268 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  762.206321][T19943] ptrace attach of "/syz-executor exec"[16563] was attempted by ""[19943]
[  762.209499][T19943] random: crng reseeded on system resumption
[  762.215255][T19943] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  763.166919][T19964] QAT: failed to copy from user.
[  763.600660][T19971] Context (ID=0x0) not attached to queue pair (handle=0x1:0x0)
[  763.605670][T19971] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  763.607912][T19971] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  763.610962][T19971] vhci_hcd vhci_hcd.0: Device attached
[  763.615264][T19972] vhci_hcd: connection closed
[  763.618712][   T12] vhci_hcd: stop threads
[  763.622009][   T12] vhci_hcd: release socket
[  763.623647][   T12] vhci_hcd: disconnect device
[  764.338965][T19989] program syz.3.3282 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  764.342035][T19989] ptrace attach of "/syz-executor exec"[16728] was attempted by ""[19989]
[  764.345028][T19989] random: crng reseeded on system resumption
[  764.350736][T19989] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  764.504695][T20000] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  764.683074][ T1134] Bluetooth: (null): Invalid header checksum
[  764.685482][ T1134] Bluetooth: (null): Invalid header checksum
[  764.787753][ T1134] Bluetooth: (null): Invalid header checksum
[  764.907670][   T12] Bluetooth: (null): Invalid header checksum
[  765.719340][T12358] Bluetooth: hci3: unexpected event for opcode 0x2041
[  765.778802][T20015] FAULT_INJECTION: forcing a failure.
[  765.778802][T20015] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  765.783310][T20015] CPU: 2 UID: 0 PID: 20015 Comm: syz.3.3292 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  765.783332][T20015] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  765.783343][T20015] Call Trace:
[  765.783349][T20015]  <TASK>
[  765.783356][T20015]  dump_stack_lvl+0x16c/0x1f0
[  765.783380][T20015]  should_fail_ex+0x50a/0x650
[  765.783394][T20015]  _copy_to_user+0x32/0xd0
[  765.783407][T20015]  do_ip_getsockopt+0xb4b/0x26e0
[  765.783421][T20015]  ? __pfx_do_ip_getsockopt+0x10/0x10
[  765.783434][T20015]  ? __pfx___lock_acquire+0x10/0x10
[  765.783455][T20015]  ? __pfx___lock_acquire+0x10/0x10
[  765.783479][T20015]  ? hlock_class+0x4e/0x130
[  765.783500][T20015]  ? lock_acquire.part.0+0x11b/0x380
[  765.783526][T20015]  ? __mutex_trylock_common+0xea/0x250
[  765.783549][T20015]  ? __pfx___mutex_trylock_common+0x10/0x10
[  765.783572][T20015]  ? smc_getsockopt+0xbd/0x360
[  765.783597][T20015]  ? rcu_is_watching+0x12/0xc0
[  765.783615][T20015]  ? trace_contention_end+0xee/0x140
[  765.783636][T20015]  ? __mutex_lock+0x1cc/0xb10
[  765.783660][T20015]  ip_getsockopt+0x9c/0x1e0
[  765.783675][T20015]  ? __pfx___mutex_lock+0x10/0x10
[  765.783696][T20015]  ? __pfx_ip_getsockopt+0x10/0x10
[  765.783718][T20015]  tcp_getsockopt+0x9e/0x100
[  765.783740][T20015]  smc_getsockopt+0x163/0x360
[  765.783760][T20015]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  765.783779][T20015]  ? __pfx_smc_getsockopt+0x10/0x10
[  765.783800][T20015]  ? find_held_lock+0x2d/0x110
[  765.783819][T20015]  ? __pfx_smc_getsockopt+0x10/0x10
[  765.783843][T20015]  do_sock_getsockopt+0x3fe/0x800
[  765.783862][T20015]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  765.783879][T20015]  ? lock_acquire+0x2f/0xb0
[  765.783895][T20015]  ? __fget_files+0x40/0x3a0
[  765.783913][T20015]  ? __fget_files+0x206/0x3a0
[  765.783931][T20015]  __sys_getsockopt+0x12f/0x260
[  765.783950][T20015]  __ia32_sys_getsockopt+0xbc/0x160
[  765.783965][T20015]  ? lockdep_hardirqs_on+0x7c/0x110
[  765.783979][T20015]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  765.783994][T20015]  __do_fast_syscall_32+0x73/0x120
[  765.784010][T20015]  do_fast_syscall_32+0x32/0x80
[  765.784025][T20015]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  765.784043][T20015] RIP: 0023:0xf748e579
[  765.784052][T20015] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  765.784063][T20015] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  765.784074][T20015] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  765.784080][T20015] RDX: 0000000000000034 RSI: 0000000000000000 RDI: 0000000080000780
[  765.784086][T20015] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  765.784092][T20015] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  765.784099][T20015] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  765.784111][T20015]  </TASK>
[  765.910387][T20018] Set syz1 is full, maxelem 65536 reached
[  766.208130][T20030] program syz.3.3296 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  766.211223][T20030] ptrace attach of "/syz-executor exec"[16728] was attempted by ""[20030]
[  766.214456][T20030] random: crng reseeded on system resumption
[  766.220039][T20030] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  766.346237][T20034] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3299'.
[  766.817096][T20050] Bluetooth: MGMT ver 1.23
[  766.849703][T20050] openvswitch: netlink: IP tunnel dst address not specified
[  767.076958][T20067] FAULT_INJECTION: forcing a failure.
[  767.076958][T20067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  767.081173][T20067] CPU: 3 UID: 0 PID: 20067 Comm: syz.1.3314 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  767.081189][T20067] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  767.081196][T20067] Call Trace:
[  767.081200][T20067]  <TASK>
[  767.081205][T20067]  dump_stack_lvl+0x16c/0x1f0
[  767.081224][T20067]  should_fail_ex+0x50a/0x650
[  767.081237][T20067]  _copy_from_user+0x2e/0xd0
[  767.081249][T20067]  ucma_resolve_ip+0x91/0x220
[  767.081265][T20067]  ? __pfx_ucma_resolve_ip+0x10/0x10
[  767.081284][T20067]  ? __pfx_ucma_resolve_ip+0x10/0x10
[  767.081299][T20067]  ucma_write+0x1f9/0x330
[  767.081316][T20067]  ? __pfx_ucma_write+0x10/0x10
[  767.081330][T20067]  ? bpf_lsm_file_permission+0x9/0x10
[  767.081348][T20067]  ? security_file_permission+0x71/0x210
[  767.081363][T20067]  ? rw_verify_area+0xcf/0x680
[  767.081377][T20067]  ? __pfx_ucma_write+0x10/0x10
[  767.081390][T20067]  vfs_write+0x24c/0x1150
[  767.081406][T20067]  ? __fget_files+0x1fc/0x3a0
[  767.081421][T20067]  ? __pfx_lock_release+0x10/0x10
[  767.081437][T20067]  ? __pfx_vfs_write+0x10/0x10
[  767.081452][T20067]  ? lock_acquire+0x2f/0xb0
[  767.081466][T20067]  ? __fget_files+0x40/0x3a0
[  767.081483][T20067]  ? __fget_files+0x206/0x3a0
[  767.081501][T20067]  ksys_write+0x207/0x250
[  767.081516][T20067]  ? __pfx_ksys_write+0x10/0x10
[  767.081534][T20067]  __do_fast_syscall_32+0x73/0x120
[  767.081551][T20067]  do_fast_syscall_32+0x32/0x80
[  767.081566][T20067]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  767.081584][T20067] RIP: 0023:0xf742e579
[  767.081593][T20067] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  767.081604][T20067] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  767.081614][T20067] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  767.081620][T20067] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  767.081637][T20067] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  767.081643][T20067] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  767.081649][T20067] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  767.081661][T20067]  </TASK>
[  767.266351][   T64] usb 8-1: new high-speed USB device number 51 using dummy_hcd
[  767.388305][T20077] program syz.1.3317 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  767.391350][T20077] ptrace attach of "/syz-executor exec"[16463] was attempted by ""[20077]
[  767.394198][T20077] random: crng reseeded on system resumption
[  767.402199][T20077] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  767.416393][   T64] usb 8-1: Using ep0 maxpacket: 16
[  767.420909][   T64] usb 8-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  767.423628][   T64] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  767.425948][   T64] usb 8-1: Product: syz
[  767.427309][   T64] usb 8-1: Manufacturer: syz
[  767.428756][   T64] usb 8-1: SerialNumber: syz
[  767.432371][   T64] r8152-cfgselector 8-1: Unknown version 0x0000
[  767.434272][   T64] r8152-cfgselector 8-1: config 0 descriptor??
[  767.640744][   T64] r8152-cfgselector 8-1: Unknown version 0x0000
[  767.642801][   T64] r8152-cfgselector 8-1: bad CDC descriptors
[  767.648580][   T64] r8152-cfgselector 8-1: USB disconnect, device number 51
[  768.526021][T20095] overlayfs: missing 'lowerdir'
[  769.144198][T20106] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  769.385340][   T40] kauditd_printk_skb: 823 callbacks suppressed
[  769.385353][   T40] audit: type=1326 audit(2000000700.738:21762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.393227][   T40] audit: type=1326 audit(2000000700.738:21763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.399351][   T40] audit: type=1326 audit(2000000700.748:21764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.405393][   T40] audit: type=1326 audit(2000000700.748:21765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf742e5a7 code=0x7ffc0000
[  769.412296][   T40] audit: type=1326 audit(2000000700.748:21766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.419091][   T40] audit: type=1326 audit(2000000700.748:21767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.425345][   T40] audit: type=1326 audit(2000000700.748:21768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.433198][   T40] audit: type=1326 audit(2000000700.758:21769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.441685][   T40] audit: type=1326 audit(2000000700.758:21770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.450305][   T40] audit: type=1326 audit(2000000700.758:21771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20105 comm="syz.1.3327" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf742e579 code=0x7ffc0000
[  769.798819][T20111] program syz.2.3329 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  769.803520][T20111] ptrace attach of "/syz-executor exec"[16677] was attempted by ""[20111]
[  769.808397][T20111] random: crng reseeded on system resumption
[  769.831681][T20111] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  770.187454][T20116] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3331'.
[  770.817088][T20125] QAT: failed to copy from user.
[  773.412961][T20162] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3344'.
[  773.675723][T20169] FAULT_INJECTION: forcing a failure.
[  773.675723][T20169] name failslab, interval 1, probability 0, space 0, times 0
[  773.680741][T20169] CPU: 2 UID: 0 PID: 20169 Comm: syz.3.3345 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  773.680765][T20169] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  773.680778][T20169] Call Trace:
[  773.680784][T20169]  <TASK>
[  773.680792][T20169]  dump_stack_lvl+0x16c/0x1f0
[  773.680822][T20169]  should_fail_ex+0x50a/0x650
[  773.680839][T20169]  ? fs_reclaim_acquire+0xae/0x150
[  773.680865][T20169]  ? tomoyo_encode2+0x100/0x3e0
[  773.680888][T20169]  should_failslab+0xc2/0x120
[  773.680906][T20169]  __kmalloc_noprof+0xcb/0x510
[  773.680932][T20169]  ? d_absolute_path+0x137/0x1b0
[  773.680952][T20169]  ? rcu_is_watching+0x12/0xc0
[  773.680975][T20169]  tomoyo_encode2+0x100/0x3e0
[  773.681003][T20169]  tomoyo_encode+0x29/0x50
[  773.681026][T20169]  tomoyo_realpath_from_path+0x19d/0x720
[  773.681058][T20169]  tomoyo_path_number_perm+0x248/0x590
[  773.681078][T20169]  ? tomoyo_path_number_perm+0x235/0x590
[  773.681102][T20169]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  773.681149][T20169]  ? __pfx_lock_release+0x10/0x10
[  773.681173][T20169]  ? trace_lock_acquire+0x14e/0x1f0
[  773.681196][T20169]  ? lock_acquire+0x2f/0xb0
[  773.681216][T20169]  ? __fget_files+0x40/0x3a0
[  773.681245][T20169]  ? __fget_files+0x206/0x3a0
[  773.681274][T20169]  security_file_ioctl_compat+0x9b/0x240
[  773.681298][T20169]  __do_compat_sys_ioctl+0x4e/0x2c0
[  773.681322][T20169]  __do_fast_syscall_32+0x73/0x120
[  773.681348][T20169]  do_fast_syscall_32+0x32/0x80
[  773.681371][T20169]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  773.681399][T20169] RIP: 0023:0xf748e579
[  773.681412][T20169] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  773.681428][T20169] RSP: 002b:00000000f50f555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  773.681445][T20169] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae01
[  773.681460][T20169] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  773.681470][T20169] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  773.681479][T20169] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  773.681487][T20169] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  773.681506][T20169]  </TASK>
[  773.681519][T20169] ERROR: Out of memory at tomoyo_realpath_from_path.
[  775.129052][T20193] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  775.202479][   T40] kauditd_printk_skb: 349 callbacks suppressed
[  775.202495][   T40] audit: type=1326 audit(2000000706.561:22121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.213743][   T40] audit: type=1326 audit(2000000706.561:22122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.223547][   T40] audit: type=1326 audit(2000000706.561:22123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.230358][   T40] audit: type=1326 audit(2000000706.561:22124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.236585][   T40] audit: type=1326 audit(2000000706.561:22125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.244521][   T40] audit: type=1326 audit(2000000706.561:22126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.250677][   T40] audit: type=1326 audit(2000000706.561:22127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.257191][   T40] audit: type=1326 audit(2000000706.561:22128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.263536][   T40] audit: type=1326 audit(2000000706.571:22129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf742e579 code=0x7ffc0000
[  775.270636][   T40] audit: type=1326 audit(2000000706.571:22130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20192 comm="syz.1.3353" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf742e5a7 code=0x7ffc0000
[  776.915004][T20219] FAULT_INJECTION: forcing a failure.
[  776.915004][T20219] name failslab, interval 1, probability 0, space 0, times 0
[  776.918736][T20219] CPU: 1 UID: 0 PID: 20219 Comm: syz.1.3360 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  776.918753][T20219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  776.918760][T20219] Call Trace:
[  776.918765][T20219]  <TASK>
[  776.918770][T20219]  dump_stack_lvl+0x16c/0x1f0
[  776.918791][T20219]  should_fail_ex+0x50a/0x650
[  776.918802][T20219]  ? fs_reclaim_acquire+0xae/0x150
[  776.918818][T20219]  ? tomoyo_encode2+0x100/0x3e0
[  776.918834][T20219]  should_failslab+0xc2/0x120
[  776.918845][T20219]  __kmalloc_noprof+0xcb/0x510
[  776.918862][T20219]  ? d_absolute_path+0x137/0x1b0
[  776.918874][T20219]  ? rcu_is_watching+0x12/0xc0
[  776.918888][T20219]  tomoyo_encode2+0x100/0x3e0
[  776.918905][T20219]  tomoyo_encode+0x29/0x50
[  776.918921][T20219]  tomoyo_realpath_from_path+0x19d/0x720
[  776.918941][T20219]  tomoyo_path_number_perm+0x248/0x590
[  776.918954][T20219]  ? tomoyo_path_number_perm+0x235/0x590
[  776.918969][T20219]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  776.918995][T20219]  ? __pfx_lock_release+0x10/0x10
[  776.919014][T20219]  ? trace_lock_acquire+0x14e/0x1f0
[  776.919036][T20219]  ? lock_acquire+0x2f/0xb0
[  776.919057][T20219]  ? __fget_files+0x40/0x3a0
[  776.919084][T20219]  ? __fget_files+0x206/0x3a0
[  776.919111][T20219]  security_file_ioctl_compat+0x9b/0x240
[  776.919140][T20219]  __do_compat_sys_ioctl+0x4e/0x2c0
[  776.919164][T20219]  __do_fast_syscall_32+0x73/0x120
[  776.919188][T20219]  do_fast_syscall_32+0x32/0x80
[  776.919211][T20219]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  776.919238][T20219] RIP: 0023:0xf742e579
[  776.919248][T20219] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  776.919259][T20219] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  776.919270][T20219] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000004b72
[  776.919277][T20219] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  776.919284][T20219] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  776.919290][T20219] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  776.919297][T20219] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  776.919310][T20219]  </TASK>
[  776.919320][T20219] ERROR: Out of memory at tomoyo_realpath_from_path.
[  777.115645][T20229] netlink: 'syz.0.3363': attribute type 1 has an invalid length.
[  777.117897][T20229] netlink: 'syz.0.3363': attribute type 2 has an invalid length.
[  777.120197][T20229] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3363'.
[  777.228466][T20237] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  777.681875][T20257] FAULT_INJECTION: forcing a failure.
[  777.681875][T20257] name failslab, interval 1, probability 0, space 0, times 0
[  777.687477][T20257] CPU: 1 UID: 0 PID: 20257 Comm: syz.0.3370 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  777.687494][T20257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  777.687501][T20257] Call Trace:
[  777.687507][T20257]  <TASK>
[  777.687512][T20257]  dump_stack_lvl+0x16c/0x1f0
[  777.687531][T20257]  should_fail_ex+0x50a/0x650
[  777.687542][T20257]  ? fs_reclaim_acquire+0xae/0x150
[  777.687558][T20257]  should_failslab+0xc2/0x120
[  777.687570][T20257]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  777.687587][T20257]  ? __alloc_skb+0x2b1/0x380
[  777.687605][T20257]  __alloc_skb+0x2b1/0x380
[  777.687620][T20257]  ? __pfx___alloc_skb+0x10/0x10
[  777.687636][T20257]  ? genl_rcv_msg+0x4bd/0x800
[  777.687649][T20257]  netlink_ack+0x15f/0xb80
[  777.687665][T20257]  ? __pfx___lock_acquire+0x10/0x10
[  777.687684][T20257]  netlink_rcv_skb+0x348/0x440
[  777.687699][T20257]  ? __pfx_genl_rcv_msg+0x10/0x10
[  777.687710][T20257]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  777.687731][T20257]  ? down_read+0xc9/0x330
[  777.687746][T20257]  ? __pfx_down_read+0x10/0x10
[  777.687762][T20257]  ? netlink_deliver_tap+0x1ae/0xd30
[  777.687779][T20257]  genl_rcv+0x28/0x40
[  777.687795][T20257]  netlink_unicast+0x53c/0x7f0
[  777.687812][T20257]  ? __pfx_netlink_unicast+0x10/0x10
[  777.687828][T20257]  ? __phys_addr_symbol+0x30/0x80
[  777.687839][T20257]  ? __check_object_size+0x488/0x710
[  777.687852][T20257]  netlink_sendmsg+0x8b8/0xd70
[  777.687869][T20257]  ? __pfx_netlink_sendmsg+0x10/0x10
[  777.687896][T20257]  ____sys_sendmsg+0xaaf/0xc90
[  777.687915][T20257]  ? __pfx_____sys_sendmsg+0x10/0x10
[  777.687931][T20257]  ? get_compat_msghdr+0x11b/0x170
[  777.687958][T20257]  ___sys_sendmsg+0x135/0x1e0
[  777.687981][T20257]  ? __pfx____sys_sendmsg+0x10/0x10
[  777.688009][T20257]  ? __pfx_lock_release+0x10/0x10
[  777.688029][T20257]  ? trace_lock_acquire+0x14e/0x1f0
[  777.688053][T20257]  ? __fget_files+0x206/0x3a0
[  777.688080][T20257]  __sys_sendmsg+0x16e/0x220
[  777.688104][T20257]  ? __pfx___sys_sendmsg+0x10/0x10
[  777.688140][T20257]  __do_fast_syscall_32+0x73/0x120
[  777.688164][T20257]  do_fast_syscall_32+0x32/0x80
[  777.688186][T20257]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  777.688209][T20257] RIP: 0023:0xf746e579
[  777.688220][T20257] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  777.688230][T20257] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  777.688241][T20257] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000440
[  777.688248][T20257] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  777.688254][T20257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  777.688260][T20257] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  777.688266][T20257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  777.688278][T20257]  </TASK>
[  777.988128][T12358] Bluetooth: hci3: unexpected event for opcode 0x2041
[  778.027993][T12358] Bluetooth: hci3: unexpected event for opcode 0x2041
[  778.187994][T20270] mac80211_hwsim hwsim19 wlan1: entered allmulticast mode
[  778.208728][T20270] bond0: (slave bridge0): Releasing backup interface
[  778.213453][T20270] bridge0: port 2(bridge_slave_1) entered disabled state
[  778.216321][T20270] bridge0: port 1(bridge_slave_0) entered disabled state
[  778.224236][T20270] bridge_slave_0: left allmulticast mode
[  778.226516][T20270] bridge_slave_0: left promiscuous mode
[  778.228709][T20270] bridge0: port 1(bridge_slave_0) entered disabled state
[  778.233686][T20270] bridge_slave_1: left allmulticast mode
[  778.235618][T20270] bridge_slave_1: left promiscuous mode
[  778.237565][T20270] bridge0: port 2(bridge_slave_1) entered disabled state
[  778.243667][T20270] bond0: (slave bond_slave_0): Releasing backup interface
[  778.249404][T20270] bond0: (slave bond_slave_1): Releasing backup interface
[  778.255956][T20271] netlink: 'syz.2.3376': attribute type 10 has an invalid length.
[  778.276555][T20270] team0: Port device team_slave_0 removed
[  778.286186][T20270] team0: Port device team_slave_1 removed
[  778.308324][T20271] mac80211_hwsim hwsim19 wlan1: left allmulticast mode
[  778.315096][T20271] bond0: (slave wlan1): Enslaving as an active interface with a down link
[  778.657679][T20285] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3381'.
[  778.754142][T20288] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3383'.
[  778.764954][T20285] mac80211_hwsim hwsim19 wlan1: entered promiscuous mode
[  778.767954][T20285] vlan3: entered promiscuous mode
[  778.769325][T20285] bond0: entered promiscuous mode
[  778.782179][T20285] bond0: left promiscuous mode
[  778.784283][T20285] mac80211_hwsim hwsim19 wlan1: left promiscuous mode
[  778.927319][T20292] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  778.931220][T20292] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  779.111699][T20299] program syz.2.3385 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  779.115786][T20299] ptrace attach of "/syz-executor exec"[16677] was attempted by ""[20299]
[  779.123424][T20299] random: crng reseeded on system resumption
[  779.220376][   T64] usb 8-1: new high-speed USB device number 52 using dummy_hcd
[  779.381924][   T64] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  779.385603][   T64] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  779.395060][   T64] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  779.403968][   T64] usb 8-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  779.407553][   T64] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  779.415615][   T64] usb 8-1: Product: syz
[  779.417099][   T64] usb 8-1: Manufacturer: syz
[  779.418611][   T64] usb 8-1: SerialNumber: syz
[  779.421442][   T64] usb 8-1: config 0 descriptor??
[  779.424870][   T64] adutux 8-1:0.0: interrupt endpoints not found
[  780.337999][T20310] FAULT_INJECTION: forcing a failure.
[  780.337999][T20310] name failslab, interval 1, probability 0, space 0, times 0
[  780.342426][T20310] CPU: 2 UID: 0 PID: 20310 Comm: syz.0.3390 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  780.342441][T20310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  780.342449][T20310] Call Trace:
[  780.342454][T20310]  <TASK>
[  780.342460][T20310]  dump_stack_lvl+0x16c/0x1f0
[  780.342480][T20310]  should_fail_ex+0x50a/0x650
[  780.342491][T20310]  ? fs_reclaim_acquire+0xae/0x150
[  780.342507][T20310]  should_failslab+0xc2/0x120
[  780.342519][T20310]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  780.342537][T20310]  ? __pmd_alloc+0xc3/0x870
[  780.342553][T20310]  __pmd_alloc+0xc3/0x870
[  780.342569][T20310]  __handle_mm_fault+0x9fb/0x2c60
[  780.342589][T20310]  ? __pfx___handle_mm_fault+0x10/0x10
[  780.342616][T20310]  handle_mm_fault+0x3fa/0xaa0
[  780.342635][T20310]  __get_user_pages+0x773/0x36f0
[  780.342656][T20310]  ? __pfx___get_user_pages+0x10/0x10
[  780.342671][T20310]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  780.342692][T20310]  get_user_pages_remote+0x25e/0xb30
[  780.342710][T20310]  ? __pfx_get_user_pages_remote+0x10/0x10
[  780.342731][T20310]  get_arg_page+0xf3/0x310
[  780.342747][T20310]  ? __pfx_get_arg_page+0x10/0x10
[  780.342762][T20310]  ? up_write+0x1b2/0x520
[  780.342781][T20310]  copy_string_kernel+0x197/0x250
[  780.342795][T20310]  ? count.constprop.0.isra.0+0xf4/0x170
[  780.342811][T20310]  do_execveat_common.isra.0+0x2eb/0x610
[  780.342830][T20310]  __ia32_compat_sys_execve+0x90/0xc0
[  780.342847][T20310]  __do_fast_syscall_32+0x73/0x120
[  780.342864][T20310]  do_fast_syscall_32+0x32/0x80
[  780.342879][T20310]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  780.342897][T20310] RIP: 0023:0xf746e579
[  780.342905][T20310] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  780.342916][T20310] RSP: 002b:00000000f50d555c EFLAGS: 00000296 ORIG_RAX: 000000000000000b
[  780.342926][T20310] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000000
[  780.342933][T20310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  780.342939][T20310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  780.342944][T20310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  780.342950][T20310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  780.342963][T20310]  </TASK>
[  781.444433][T20329] program syz.1.3395 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  781.449783][T20329] ptrace attach of "/syz-executor exec"[16463] was attempted by ""[20329]
[  781.452851][T20329] random: crng reseeded on system resumption
[  781.921792][T18378] usb 8-1: USB disconnect, device number 52
[  781.946656][T20339] program syz.2.3399 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  781.950845][T20339] ptrace attach of "/syz-executor exec"[16677] was attempted by ""[20339]
[  781.955575][T20339] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  782.179553][T20346] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  782.593330][   T40] kauditd_printk_skb: 335 callbacks suppressed
[  782.593407][   T40] audit: type=1326 audit(2000000713.964:22466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  782.607385][   T40] audit: type=1326 audit(2000000713.974:22467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  782.614780][   T40] audit: type=1326 audit(2000000713.974:22468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf742e579 code=0x7ffc0000
[  782.623256][   T40] audit: type=1326 audit(2000000713.974:22469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf742e5a7 code=0x7ffc0000
[  782.630673][   T40] audit: type=1326 audit(2000000713.974:22470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf742e579 code=0x7ffc0000
[  782.637737][   T40] audit: type=1326 audit(2000000713.974:22471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  782.645299][   T40] audit: type=1326 audit(2000000713.974:22472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  782.653163][   T40] audit: type=1326 audit(2000000713.974:22473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf742e579 code=0x7ffc0000
[  782.661138][   T40] audit: type=1326 audit(2000000713.985:22474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  782.669427][   T40] audit: type=1326 audit(2000000713.985:22475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20345 comm="syz.1.3402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  783.187772][T20359] xt_hashlimit: overflow, rate too high: 0
[  783.900411][T12358] Bluetooth: hci1: unexpected event for opcode 0x2041
[  783.950609][T20371] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  784.757264][T20377] program syz.0.3410 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  784.760029][T20377] ptrace attach of "/syz-executor exec"[16563] was attempted by ""[20377]
[  784.762577][T20377] random: crng reseeded on system resumption
[  784.767455][T20377] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  785.391925][T20393] FAULT_INJECTION: forcing a failure.
[  785.391925][T20393] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  785.397379][T20393] CPU: 2 UID: 0 PID: 20393 Comm: syz.3.3415 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  785.397406][T20393] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  785.397414][T20393] Call Trace:
[  785.397418][T20393]  <TASK>
[  785.397423][T20393]  dump_stack_lvl+0x16c/0x1f0
[  785.397443][T20393]  should_fail_ex+0x50a/0x650
[  785.397454][T20393]  ? __pfx___might_resched+0x10/0x10
[  785.397479][T20393]  should_fail_alloc_page+0xe7/0x130
[  785.397498][T20393]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  785.397518][T20393]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  785.397538][T20393]  ? find_held_lock+0x2d/0x110
[  785.397552][T20393]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  785.397569][T20393]  ? __pfx_lock_release+0x10/0x10
[  785.397583][T20393]  ? trace_lock_acquire+0x14e/0x1f0
[  785.397595][T20393]  ? __mutex_trylock_common+0xea/0x250
[  785.397611][T20393]  ? lock_acquire+0x2f/0xb0
[  785.397629][T20393]  ? _copy_from_iter+0x15e/0x1560
[  785.397641][T20393]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  785.397659][T20393]  ? policy_nodemask+0xea/0x4e0
[  785.397671][T20393]  alloc_pages_mpol+0x1fc/0x540
[  785.397687][T20393]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  785.397710][T20393]  alloc_pages_noprof+0x131/0x390
[  785.397724][T20393]  pipe_write+0xdc6/0x1a80
[  785.397746][T20393]  ? __pfx_pipe_write+0x10/0x10
[  785.397763][T20393]  ? apparmor_file_permission+0x251/0x400
[  785.397777][T20393]  ? bpf_lsm_file_permission+0x9/0x10
[  785.397794][T20393]  ? security_file_permission+0x71/0x210
[  785.397809][T20393]  ? rw_verify_area+0xcf/0x680
[  785.397828][T20393]  vfs_write+0x5ae/0x1150
[  785.397850][T20393]  ? __pfx_pipe_write+0x10/0x10
[  785.397873][T20393]  ? __pfx_vfs_write+0x10/0x10
[  785.397893][T20393]  ? __fget_files+0x40/0x3a0
[  785.397926][T20393]  ksys_write+0x207/0x250
[  785.397947][T20393]  ? __pfx_ksys_write+0x10/0x10
[  785.397976][T20393]  __do_fast_syscall_32+0x73/0x120
[  785.398000][T20393]  do_fast_syscall_32+0x32/0x80
[  785.398023][T20393]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  785.398050][T20393] RIP: 0023:0xf748e579
[  785.398060][T20393] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  785.398072][T20393] RSP: 002b:00000000f50f555c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  785.398083][T20393] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000640
[  785.398091][T20393] RDX: 00000000200002e6 RSI: 0000000000000000 RDI: 0000000000000000
[  785.398097][T20393] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  785.398103][T20393] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  785.398120][T20393] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  785.398134][T20393]  </TASK>
[  785.527468][T20397] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  785.583747][T20397] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  785.642105][T20397] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  785.646855][T20397] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3416'.
[  785.653328][T20402] FAULT_INJECTION: forcing a failure.
[  785.653328][T20402] name failslab, interval 1, probability 0, space 0, times 0
[  785.657472][T20402] CPU: 3 UID: 0 PID: 20402 Comm: syz.2.3417 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  785.657496][T20402] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  785.657507][T20402] Call Trace:
[  785.657513][T20402]  <TASK>
[  785.657521][T20402]  dump_stack_lvl+0x16c/0x1f0
[  785.657551][T20402]  should_fail_ex+0x50a/0x650
[  785.657568][T20402]  ? fs_reclaim_acquire+0xae/0x150
[  785.657592][T20402]  should_failslab+0xc2/0x120
[  785.657608][T20402]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  785.657634][T20402]  ? mpol_new+0x11b/0x2d0
[  785.657662][T20402]  mpol_new+0x11b/0x2d0
[  785.657687][T20402]  mpol_parse_str+0x364/0x1000
[  785.657709][T20402]  ? __pfx_mpol_parse_str+0x10/0x10
[  785.657729][T20402]  ? __pfx_fs_param_is_string+0x10/0x10
[  785.657754][T20402]  shmem_parse_one+0x683/0x1560
[  785.657781][T20402]  ? __pfx_shmem_parse_one+0x10/0x10
[  785.657805][T20402]  ? rcu_is_watching+0x12/0xc0
[  785.657823][T20402]  ? trace_kmalloc+0x2d/0xd0
[  785.657843][T20402]  ? static_key_count+0x5a/0x70
[  785.657861][T20402]  ? __pfx_shmem_parse_one+0x10/0x10
[  785.657888][T20402]  vfs_parse_fs_param+0x208/0x3c0
[  785.657917][T20402]  vfs_parse_fs_string+0xea/0x150
[  785.657942][T20402]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  785.657975][T20402]  ? shmem_next_opt+0xbc/0x120
[  785.658000][T20402]  ? __pfx_shmem_next_opt+0x10/0x10
[  785.658024][T20402]  vfs_parse_monolithic_sep+0x175/0x1f0
[  785.658051][T20402]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  785.658076][T20402]  ? shmem_init_fs_context+0x222/0x2b0
[  785.658101][T20402]  ? __pfx_shmem_init_fs_context+0x10/0x10
[  785.658134][T20402]  ? alloc_fs_context+0x59b/0x9c0
[  785.658164][T20402]  path_mount+0x149f/0x1f10
[  785.658182][T20402]  ? kmem_cache_free+0x2e2/0x4d0
[  785.658206][T20402]  ? __pfx_path_mount+0x10/0x10
[  785.658226][T20402]  ? putname+0x13c/0x180
[  785.658246][T20402]  __ia32_sys_mount+0x28d/0x310
[  785.658263][T20402]  ? __pfx___ia32_sys_mount+0x10/0x10
[  785.658288][T20402]  __do_fast_syscall_32+0x73/0x120
[  785.658341][T20402]  do_fast_syscall_32+0x32/0x80
[  785.658363][T20402]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  785.658387][T20402] RIP: 0023:0xf73be579
[  785.658400][T20402] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  785.658416][T20402] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  785.658434][T20402] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000080
[  785.658445][T20402] RDX: 0000000080000400 RSI: 0000000000000000 RDI: 0000000080000180
[  785.658456][T20402] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  785.658466][T20402] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  785.658477][T20402] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  785.658498][T20402]  </TASK>
[  785.658551][T20402] tmpfs: Bad value for 'mpol'
[  785.741277][T12358] Bluetooth: hci1: unexpected event for opcode 0x2041
[  785.769371][T20405] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3416'.
[  785.788882][T20409] sp0: Synchronizing with TNC
[  785.807444][T20408] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3419'.
[  785.818972][T20409] mkiss: ax0: crc mode is auto.
[  786.111298][T20411] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3421'.
[  787.043266][T12358] Bluetooth: hci4: unexpected event for opcode 0x2041
[  788.082736][T20441] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3430'.
[  788.238588][T20452] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  788.316548][   T40] kauditd_printk_skb: 597 callbacks suppressed
[  788.316563][   T40] audit: type=1326 audit(2000000719.697:23073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  788.337715][   T40] audit: type=1326 audit(2000000719.697:23074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  788.344895][   T40] audit: type=1326 audit(2000000719.707:23075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf73be579 code=0x7ffc0000
[  788.353503][   T40] audit: type=1326 audit(2000000719.707:23076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf73be5a7 code=0x7ffc0000
[  788.361604][   T40] audit: type=1326 audit(2000000719.707:23077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  788.369657][   T40] audit: type=1326 audit(2000000719.727:23078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf73be579 code=0x7ffc0000
[  788.378423][   T40] audit: type=1326 audit(2000000719.727:23079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf73be5a7 code=0x7ffc0000
[  788.386112][   T40] audit: type=1326 audit(2000000719.727:23080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf73be579 code=0x7ffc0000
[  788.394170][   T40] audit: type=1326 audit(2000000719.727:23081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf73be5a7 code=0x7ffc0000
[  788.402252][   T40] audit: type=1326 audit(2000000719.727:23082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20451 comm="syz.2.3433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7ffc0000
[  789.332955][T20467] netlink: 734 bytes leftover after parsing attributes in process `syz.1.3436'.
[  789.450469][T20474] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3438'.
[  789.453511][T20474] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  790.155590][T20491] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  790.351081][T20497] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3444'.
[  791.062378][T12358] Bluetooth: hci3: unexpected event for opcode 0x2041
[  791.332245][T20528] QAT: failed to copy from user.
[  791.977365][T20531] netfs: Couldn't get user pages (rc=-14)
[  792.281951][T20542] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(13)
[  792.283955][T20542] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  792.333811][T20547] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(16)
[  792.336330][T20547] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  792.343849][T20547] vhci_hcd vhci_hcd.0: Device attached
[  792.349859][T20547] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  792.363983][T20547] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(20)
[  792.365905][T20547] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  792.368055][T20547] vhci_hcd vhci_hcd.0: Device attached
[  792.373481][T20547] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(22)
[  792.375504][T20547] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  792.377877][T20547] vhci_hcd vhci_hcd.0: Device attached
[  792.380841][T20547] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  792.387006][T20547] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  792.482102][T20542] vhci_hcd vhci_hcd.0: Device attached
[  792.575884][T20559] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3456'.
[  792.654328][ T1463] usb 42-1: SetAddress Request (2) to port 0
[  792.656077][ T1463] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  792.805149][T20564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3457'.
[  792.828116][T20553] vhci_hcd: connection reset by peer
[  792.829373][T20550] vhci_hcd: connection closed
[  792.832222][T20548] vhci_hcd: connection closed
[  792.832283][   T46] vhci_hcd: stop threads
[  792.833810][T20543] vhci_hcd: connection closed
[  792.838014][   T46] vhci_hcd: release socket
[  792.842973][   T46] vhci_hcd: disconnect device
[  792.845221][   T46] vhci_hcd: stop threads
[  792.846478][   T46] vhci_hcd: release socket
[  792.847836][   T46] vhci_hcd: disconnect device
[  792.849524][   T46] vhci_hcd: stop threads
[  792.850859][   T46] vhci_hcd: release socket
[  792.852214][   T46] vhci_hcd: disconnect device
[  792.854320][   T46] vhci_hcd: stop threads
[  792.855605][   T46] vhci_hcd: release socket
[  792.857055][   T46] vhci_hcd: disconnect device
[  793.405540][T20571] FAULT_INJECTION: forcing a failure.
[  793.405540][T20571] name failslab, interval 1, probability 0, space 0, times 0
[  793.410288][T20571] CPU: 3 UID: 0 PID: 20571 Comm: syz.0.3460 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  793.410311][T20571] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  793.410321][T20571] Call Trace:
[  793.410328][T20571]  <TASK>
[  793.410336][T20571]  dump_stack_lvl+0x16c/0x1f0
[  793.410363][T20571]  should_fail_ex+0x50a/0x650
[  793.410380][T20571]  ? fs_reclaim_acquire+0xae/0x150
[  793.410403][T20571]  ? sock_kmalloc+0x111/0x170
[  793.410421][T20571]  should_failslab+0xc2/0x120
[  793.410438][T20571]  __kmalloc_noprof+0xcb/0x510
[  793.410462][T20571]  ? hash_recvmsg+0x166/0x8d0
[  793.410494][T20571]  sock_kmalloc+0x111/0x170
[  793.410514][T20571]  hash_alloc_result+0xd7/0x150
[  793.410539][T20571]  hash_recvmsg+0x198/0x8d0
[  793.410564][T20571]  ? __pfx_lock_release+0x10/0x10
[  793.410591][T20571]  ____sys_recvmsg+0x5f8/0x6b0
[  793.410616][T20571]  ? __pfx_____sys_recvmsg+0x10/0x10
[  793.410652][T20571]  ___sys_recvmsg+0x115/0x1a0
[  793.410677][T20571]  ? __pfx____sys_recvmsg+0x10/0x10
[  793.410701][T20571]  ? __fget_files+0x1fc/0x3a0
[  793.410726][T20571]  ? trace_lock_acquire+0x14e/0x1f0
[  793.410753][T20571]  ? __fget_files+0x206/0x3a0
[  793.410776][T20571]  ? __pfx___might_resched+0x10/0x10
[  793.410806][T20571]  do_recvmmsg+0x55d/0x740
[  793.410834][T20571]  ? __pfx_do_recvmmsg+0x10/0x10
[  793.410875][T20571]  ? vfs_write+0x306/0x1150
[  793.410912][T20571]  ? __fget_files+0x206/0x3a0
[  793.410939][T20571]  __sys_recvmmsg+0x21e/0x280
[  793.410964][T20571]  ? __pfx___sys_recvmmsg+0x10/0x10
[  793.410991][T20571]  ? __pfx_ksys_write+0x10/0x10
[  793.411022][T20571]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  793.411045][T20571]  ? lockdep_hardirqs_on+0x7c/0x110
[  793.411067][T20571]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  793.411090][T20571]  __do_fast_syscall_32+0x73/0x120
[  793.411114][T20571]  do_fast_syscall_32+0x32/0x80
[  793.411136][T20571]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  793.411163][T20571] RIP: 0023:0xf746e579
[  793.411178][T20571] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  793.411193][T20571] RSP: 002b:00000000f50d555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  793.411210][T20571] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080003700
[  793.411221][T20571] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[  793.411231][T20571] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  793.411241][T20571] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  793.411251][T20571] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  793.411273][T20571]  </TASK>
[  793.954726][T20578] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3463'.
[  794.083233][T20585] FAULT_INJECTION: forcing a failure.
[  794.083233][T20585] name failslab, interval 1, probability 0, space 0, times 0
[  794.087993][T20585] CPU: 3 UID: 0 PID: 20585 Comm: syz.3.3466 Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  794.088016][T20585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  794.088026][T20585] Call Trace:
[  794.088033][T20585]  <TASK>
[  794.088040][T20585]  dump_stack_lvl+0x16c/0x1f0
[  794.088066][T20585]  should_fail_ex+0x50a/0x650
[  794.088083][T20585]  ? fs_reclaim_acquire+0xae/0x150
[  794.088105][T20585]  should_failslab+0xc2/0x120
[  794.088122][T20585]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  794.088161][T20585]  ? __d_alloc+0x31/0xaa0
[  794.088179][T20585]  __d_alloc+0x31/0xaa0
[  794.088193][T20585]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  794.088215][T20585]  d_alloc_pseudo+0x1c/0xc0
[  794.088239][T20585]  alloc_file_pseudo+0xd0/0x230
[  794.088257][T20585]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  794.088278][T20585]  sock_alloc_file+0x50/0x210
[  794.088296][T20585]  do_accept+0x23e/0x530
[  794.088316][T20585]  ? do_raw_spin_lock+0x12d/0x2c0
[  794.088332][T20585]  ? __pfx_do_accept+0x10/0x10
[  794.088367][T20585]  ? __pfx_lock_release+0x10/0x10
[  794.088387][T20585]  io_accept+0x25a/0x840
[  794.088412][T20585]  ? __pfx_io_accept+0x10/0x10
[  794.088430][T20585]  ? rcu_is_watching+0x12/0xc0
[  794.088449][T20585]  io_issue_sqe+0x4f5/0x12d0
[  794.088469][T20585]  io_submit_sqes+0x96a/0x2670
[  794.088499][T20585]  __do_sys_io_uring_enter+0xd60/0x1670
[  794.088515][T20585]  ? __fget_files+0x206/0x3a0
[  794.088537][T20585]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  794.088557][T20585]  ? fput+0x67/0x440
[  794.088572][T20585]  ? ksys_write+0x1ba/0x250
[  794.088593][T20585]  ? __pfx_ksys_write+0x10/0x10
[  794.088621][T20585]  __do_fast_syscall_32+0x73/0x120
[  794.088644][T20585]  do_fast_syscall_32+0x32/0x80
[  794.088668][T20585]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  794.088696][T20585] RIP: 0023:0xf748e579
[  794.088709][T20585] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  794.088724][T20585] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  794.088740][T20585] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000003516
[  794.088750][T20585] RDX: 000000000000c2de RSI: 0000000000000008 RDI: 0000000000000000
[  794.088756][T20585] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  794.088764][T20585] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  794.088773][T20585] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  794.088795][T20585]  </TASK>
[  794.375121][T20593] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3467'.
[  794.790814][T20601] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  794.991677][T20604] QAT: failed to copy from user.
[  795.185597][T20606] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  795.398507][   T40] kauditd_printk_skb: 368 callbacks suppressed
[  795.398519][   T40] audit: type=1326 audit(2000000726.771:23451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000
[  795.433212][   T40] audit: type=1326 audit(2000000726.791:23452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf746e579 code=0x7ffc0000
[  795.472405][   T40] audit: type=1326 audit(2000000726.791:23453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf746e5a7 code=0x7ffc0000
[  795.478878][   T40] audit: type=1326 audit(2000000726.821:23454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf746e579 code=0x7ffc0000
[  795.517168][   T40] audit: type=1326 audit(2000000726.891:23455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf746e5a7 code=0x7ffc0000
[  795.518416][T20612] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3473'.
[  795.524746][   T40] audit: type=1326 audit(2000000726.891:23456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf746e579 code=0x7ffc0000
[  795.524772][   T40] audit: type=1326 audit(2000000726.891:23457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf746e5a7 code=0x7ffc0000
[  795.524790][   T40] audit: type=1326 audit(2000000726.891:23458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf746e579 code=0x7ffc0000
[  795.549997][   T40] audit: type=1326 audit(2000000726.901:23459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf746e579 code=0x7ffc0000
[  795.552017][T20612] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3473'.
[  795.557257][   T40] audit: type=1326 audit(2000000726.901:23460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20600 comm="syz.0.3471" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf746e5a7 code=0x7ffc0000
[  796.473129][T20630] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3478'.
[  796.983248][T20644] overlayfs: overlapping lowerdir path
[  797.751470][ T1463] usb 42-1: device descriptor read/8, error -110
[  797.799995][T20660] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  798.235340][ T1463] usb usb42-port1: attempt power cycle
[  798.313608][T16668] vhci_hcd: vhci_device speed not set
[  799.700538][ T1463] usb usb42-port1: unable to enumerate USB device
[  799.895101][T20694] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  799.897315][T20694] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  799.900614][T20694] vhci_hcd vhci_hcd.0: Device attached
[  800.213256][T13065] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  800.664025][T20696] vhci_hcd: connection reset by peer
[  800.666515][ T1170] vhci_hcd: stop threads
[  800.667869][ T1170] vhci_hcd: release socket
[  800.670825][ T1170] vhci_hcd: disconnect device
[  800.745063][T20714] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  800.799650][ T5298] Bluetooth: hci4: command 0x0406 tx timeout
[  801.279475][T18378] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  801.434241][T18378] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  801.437339][T18378] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  801.441639][T18378] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  801.444240][T18378] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[  801.447425][T18378] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024
[  801.452212][T18378] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  801.454959][T18378] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  801.457282][T18378] usb 5-1: Product: syz
[  801.458631][T18378] usb 5-1: Manufacturer: syz
[  801.463322][T18378] cdc_wdm 5-1:1.0: skipping garbage
[  801.465047][T18378] cdc_wdm 5-1:1.0: skipping garbage
[  801.467164][T18378] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  801.469080][T18378] cdc_wdm 5-1:1.0: Unknown control protocol
[  801.531860][T20753] loop6: detected capacity change from 0 to 524287999
[  801.537692][    C2] blk_print_req_error: 58 callbacks suppressed
[  801.537707][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.542136][    C2] buffer_io_error: 56 callbacks suppressed
[  801.542144][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.549957][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.552824][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.557633][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.560601][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.563174][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.566755][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.570393][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.573164][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.575720][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.578406][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.580918][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.583649][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.589402][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.592192][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.594576][T20753] ldm_validate_partition_table(): Disk read failed.
[  801.597624][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.601409][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  801.604276][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.606811][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  801.611342][T20753] Dev loop6: unable to read RDB block 0
[  801.614810][T20753]  loop6: unable to read partition table
[  801.617332][T20753] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[  801.668013][T18378] usb 5-1: USB disconnect, device number 38
[  802.028766][T20756] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3503'.
[  802.048083][T20756] 9pnet: Could not find request transport: fbrfdno=f7�s���!��X�\w0x0000000000000005
[  802.119801][ T1463] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  802.280530][ T1463] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  802.283633][ T1463] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  802.286740][ T1463] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  802.289756][ T1463] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[  802.293188][ T1463] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024
[  802.297767][ T1463] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  802.301315][ T1463] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  802.304264][ T1463] usb 5-1: Product: syz
[  802.305640][ T1463] usb 5-1: Manufacturer: syz
[  802.314036][ T1463] cdc_wdm 5-1:1.0: skipping garbage
[  802.315706][ T1463] cdc_wdm 5-1:1.0: skipping garbage
[  802.319313][ T1463] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  802.321631][ T1463] cdc_wdm 5-1:1.0: Unknown control protocol
[  802.875771][T20772] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  802.880521][T20772] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  803.080207][ T1463] usb 5-1: USB disconnect, device number 39
[  803.160263][T20782] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  803.162725][T20782] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  803.168714][T20782] vhci_hcd vhci_hcd.0: Device attached
[  803.781564][T20803] overlayfs: failed to resolve './file1': -2
[  803.932269][T20785] vhci_hcd: connection closed
[  803.932755][ T1170] vhci_hcd: stop threads
[  803.938702][ T1170] vhci_hcd: release socket
[  803.940174][ T1170] vhci_hcd: disconnect device
[  804.565799][T20823] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3518'.
[  804.633871][T20826] bond_slave_0: entered promiscuous mode
[  804.636730][T20826] bond_slave_1: entered promiscuous mode
[  804.639449][T20826] vlan2: entered promiscuous mode
[  804.641616][T20826] bond0: entered promiscuous mode
[  804.646240][T20826] bond0: left promiscuous mode
[  804.648825][T20826] bond_slave_0: left promiscuous mode
[  804.650990][T20826] bond_slave_1: left promiscuous mode
[  804.779461][T12358] Bluetooth: hci4: unexpected event for opcode 0x2041
[  804.821372][T20830] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  804.882998][   T40] kauditd_printk_skb: 858 callbacks suppressed
[  804.883012][   T40] audit: type=1326 audit(2000000736.266:24319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  804.893790][   T40] audit: type=1326 audit(2000000736.266:24320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  804.901125][   T40] audit: type=1326 audit(2000000736.276:24321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf748e579 code=0x7ffc0000
[  804.908028][   T40] audit: type=1326 audit(2000000736.276:24322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf748e579 code=0x7ffc0000
[  804.914132][   T40] audit: type=1326 audit(2000000736.276:24323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf748e5a7 code=0x7ffc0000
[  804.920993][   T40] audit: type=1326 audit(2000000736.276:24324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  804.927226][   T40] audit: type=1326 audit(2000000736.276:24325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  804.933597][   T40] audit: type=1326 audit(2000000736.276:24326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf748e579 code=0x7ffc0000
[  804.940167][   T40] audit: type=1326 audit(2000000736.276:24327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  804.946626][   T40] audit: type=1326 audit(2000000736.276:24328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20829 comm="syz.3.3520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  805.367306][T13065] vhci_hcd: vhci_device speed not set
[  805.393715][T16677] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000056: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  805.397680][T16677] KASAN: null-ptr-deref in range [0x00000000000002b0-0x00000000000002b7]
[  805.402741][T16677] CPU: 3 UID: 0 PID: 16677 Comm: syz-executor Not tainted 6.14.0-rc6-syzkaller-00115-ge3a854b577cb #0
[  805.408038][T16677] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  805.410933][T16677] RIP: 0010:afs_atcell_get_link+0x33e/0x480
[  805.412695][T16677] Code: 89 c3 89 c6 e8 53 8a 3c fe 85 db 75 64 e8 4a 8f 3c fe 48 8d bd b0 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 1f 01 00 00 4c 89 f6 bf 03 00 00 00 4c 8b a5 b0
[  805.419565][T16677] RSP: 0018:ffffc9002366f978 EFLAGS: 00010206
[  805.422327][T16677] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff837d616a
[  805.426155][T16677] RDX: 0000000000000056 RSI: ffffffff837d60f6 RDI: 00000000000002b0
[  805.429797][T16677] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  805.432656][T16677] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
[  805.435584][T16677] R13: ffff88802217d000 R14: 0000000000000003 R15: ffff88802ab71480
[  805.438465][T16677] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000567a2440
[  805.441677][T16677] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  805.444531][T16677] CR2: 00000000ffa7ef6c CR3: 000000005a9da000 CR4: 0000000000352ef0
[  805.448183][T16677] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  805.451196][T16677] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  805.454175][T16677] Call Trace:
[  805.455490][T16677]  <TASK>
[  805.456546][T16677]  ? die_addr+0x3b/0xa0
[  805.458107][T16677]  ? exc_general_protection+0x155/0x230
[  805.460382][T16677]  ? asm_exc_general_protection+0x26/0x30
[  805.462958][T16677]  ? afs_atcell_get_link+0x39a/0x480
[  805.465244][T16677]  ? afs_atcell_get_link+0x326/0x480
[  805.467244][T16677]  ? afs_atcell_get_link+0x33e/0x480
[  805.469225][T16677]  ? afs_atcell_get_link+0x326/0x480
[  805.471242][T16677]  ? __pfx_afs_atcell_get_link+0x10/0x10
[  805.473505][T16677]  step_into+0x1982/0x2220
[  805.475361][T16677]  ? __pfx_step_into+0x10/0x10
[  805.477464][T16677]  ? lookup_fast+0x153/0x5f0
[  805.479361][T16677]  path_openat+0x74c/0x2d80
[  805.481015][T16677]  ? __pfx_path_openat+0x10/0x10
[  805.482819][T16677]  ? __pfx___lock_acquire+0x10/0x10
[  805.484664][T16677]  ? lock_acquire.part.0+0x11b/0x380
[  805.486639][T16677]  ? find_held_lock+0x2d/0x110
[  805.488604][T16677]  do_filp_open+0x20c/0x470
[  805.490941][T16677]  ? __pfx_do_filp_open+0x10/0x10
[  805.493535][T16677]  ? find_held_lock+0x2d/0x110
[  805.495816][T16677]  ? alloc_fd+0x41f/0x760
[  805.497617][T16677]  do_sys_openat2+0x17a/0x1e0
[  805.499423][T16677]  ? __pfx_do_sys_openat2+0x10/0x10
[  805.501362][T16677]  ? find_held_lock+0x2d/0x110
[  805.503168][T16677]  ? __might_fault+0x13b/0x190
[  805.504983][T16677]  __ia32_compat_sys_openat+0x16e/0x210
[  805.506984][T16677]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  805.509236][T16677]  ? __might_fault+0xe3/0x190
[  805.510939][T16677]  ? __might_fault+0xe3/0x190
[  805.512794][T16677]  ? rcu_is_watching+0x12/0xc0
[  805.515055][T16677]  __do_fast_syscall_32+0x73/0x120
[  805.517382][T16677]  do_fast_syscall_32+0x32/0x80
[  805.519654][T16677]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  805.522267][T16677] RIP: 0023:0xf73be579
[  805.523824][T16677] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  805.530939][T16677] RSP: 002b:00000000ffa7f590 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  805.534020][T16677] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000ffa7f660
[  805.537027][T16677] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f73acff4
[  805.540420][T16677] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  805.543972][T16677] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  805.546922][T16677] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  805.549886][T16677]  </TASK>
[  805.551109][T16677] Modules linked in:
[  805.553330][T16677] ---[ end trace 0000000000000000 ]---
[  805.563726][T16677] RIP: 0010:afs_atcell_get_link+0x33e/0x480
[  805.566903][T16677] Code: 89 c3 89 c6 e8 53 8a 3c fe 85 db 75 64 e8 4a 8f 3c fe 48 8d bd b0 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 1f 01 00 00 4c 89 f6 bf 03 00 00 00 4c 8b a5 b0
[  805.573330][T16677] RSP: 0018:ffffc9002366f978 EFLAGS: 00010206
[  805.575963][T16677] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffffff837d616a
[  805.579851][T16677] RDX: 0000000000000056 RSI: ffffffff837d60f6 RDI: 00000000000002b0
[  805.582659][T16677] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  805.585155][T16677] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
[  805.587541][T16677] R13: ffff88802217d000 R14: 0000000000000003 R15: ffff88802ab71480
[  805.589949][T16677] FS:  0000000000000000(0000) GS:ffff88802b600000(0063) knlGS:00000000567a2440
[  805.592903][T16677] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  805.595457][T16677] CR2: 000000000c33ccf7 CR3: 000000005a9da000 CR4: 0000000000352ef0
[  805.597785][T16677] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  805.600037][T16677] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  805.602436][T16677] Kernel panic - not syncing: Fatal exception
[  805.604842][T16677] Kernel Offset: disabled
[  805.606393][T16677] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:41:04  Registers:
info registers vcpu 0

CPU#0
RAX=000000000177a5bc RBX=0000000000000000 RCX=ffffffff8b556469 RDX=ffffed1005686f86
RSI=ffffffff8bd359e0 RDI=ffffffff81908469 RBP=fffffbfff1bd2ee8 RSP=ffffffff8de07e20
R8 =0000000000000000 R9 =ffffed1005686f85 R10=ffff88802b437c2b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8de97740 R14=ffffffff90628610 R15=0000000000000000
RIP=ffffffff8b55784f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000560fe9873000 CR3=000000002abb2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=00000000000d20c0 RCX=ffffffff82196933 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffc9000662fa98
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000012
R12=0000000000000003 R13=0000000000030002 R14=00000000ffffffff R15=0000000000000003
RIP=ffffffff81b9eb4c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002abb2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000951204 RBX=0000000000000002 RCX=ffffffff8b556469 RDX=ffffed10056c6f86
RSI=ffffffff8bd359e0 RDI=ffffffff81908469 RBP=ffffed1003769488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056c6f85 R10=ffff88802b637c2b R11=0000000000000001
R12=0000000000000002 R13=ffff88801bb4a440 R14=ffffffff90628610 R15=0000000000000000
RIP=ffffffff8b55784f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c389f6f CR3=00000000697e6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853e9975 RDI=ffffffff9ab6fea0 RBP=ffffffff9ab6fe60 RSP=ffffc9002366f2f0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d7a7973203a5043
R12=0000000000000000 R13=0000000000000037 R14=ffffffff9ab6fe60 R15=0000000000000000
RIP=ffffffff853e999f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000ffa7ef6c CR3=000000005a9da000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000