last executing test programs:

4.324101101s ago: executing program 1 (id=775):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700)={'team0\x00', <r3=>0x0})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fc00101}]})
socket(0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000004c0)={<r5=>0x0})
ppoll(&(0x7f00000000c0)=[{r4, 0x21}], 0x1, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r4, 0xc0182101, &(0x7f0000000300)={r5})
r6 = syz_io_uring_setup(0x112, &(0x7f0000000140)={0x0, 0x4089, 0x80}, &(0x7f0000000240)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x0, 0x0})
io_uring_enter(r6, 0x47f6, 0xb277, 0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)={{0xffffffffffffffff, 0x0, 0xee01, 0x0, 0x0, 0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, r9})
socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f00000001c0)={<r10=>0x0, 0x60, "9eecb25ca16e4b79bb56da7d76fcbcf010fb0a37b2cdd2051042ba420a1f3e4844c589a750808b6b09c5c8aeb60fb392ff62911b6b97b14d3f994c80b19de3af0257caa993088734e7224118b9f8f790e935bb9ac7a6151fdd18f72003847f2d"}, &(0x7f0000000000)=0x68)
msgsnd(0x0, &(0x7f0000000480)={0x2}, 0x8, 0x0)
msgctl$IPC_RMID(0x0, 0x0)
ioperm(0x0, 0x87, 0x3ff)
write$P9_RWRITE(0xffffffffffffffff, &(0x7f0000000040)={0xb}, 0x11000)
r11 = dup(0xffffffffffffffff)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0xfffffffd})
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r11, 0x84, 0x1b, &(0x7f0000000380)={r10, 0x22, "6919c3cb12d142cea84ddc0ff7c16de4f8440e3e3109d25c1a0ab5abb4949686cddc"}, &(0x7f0000000400)=0x2a)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000006480)={0x60, r2, 0x405, 0x70bd25, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
landlock_restrict_self(0xffffffffffffffff, 0x0)

4.142108215s ago: executing program 0 (id=776):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="8000f2000a000200fa"], 0x28}}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x3, &(0x7f0000000280)=ANY=[@ANYRESOCT=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = openat$binfmt_format(0xffffff9c, &(0x7f0000000240)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0)
r4 = dup(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x2000000, 0x0)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000000000000000010000004000018007000600666f00000800080000000000060001000200000008000500000000000c0007000000000000000000080009000000000008000b"], 0x54}}, 0x0)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), r2)
sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x18, r7, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40c4}, 0x40000000)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[], 0xd)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
r9 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r9, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r9, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r10=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r9, 0xc02064b6, &(0x7f00000001c0)={r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$binfmt_aout(r8, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r8, 0x540a, 0x2)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000100))

4.015290087s ago: executing program 0 (id=777):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0xd5)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000240)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x202}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x28, 0x0, 0x0, {{0xffffffffffffffff, 0x0, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x12, r4, 0x100000)
write$P9_RREADLINK(r0, &(0x7f0000000140)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10)
fcntl$lock(r3, 0x5, &(0x7f0000000200)={0x1})

3.391606528s ago: executing program 1 (id=780):
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d0000008500000023"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x70, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffddd, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
msgsnd(0x0, &(0x7f0000001580)=ANY=[@ANYBLOB], 0x54, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x488800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)={0x3c, r2, 0x1, 0x0, 0x0, {0x53}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}]}, 0x3c}}, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$clear(0x11, 0xfffffffffffffffd)
r4 = gettid()
r5 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r5, &(0x7f0000000080), 0x10)
listen(r5, 0x0)
accept4$llc(r5, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

2.959084763s ago: executing program 2 (id=785):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
creat(&(0x7f0000000340)='./file0/file0\x00', 0x0)
chdir(&(0x7f0000000180)='./bus\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
readahead(r0, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r1, &(0x7f000000b880)=[{&(0x7f000000a6c0)=@in={0x2, 0x4e22, @remote}, 0x10, &(0x7f000000aa80)=[{&(0x7f000000a700)=',1', 0x2}], 0x1, &(0x7f000000aac0)=ANY=[@ANYBLOB="140000008400000000000000be00ff0c8bf30900"], 0x14, 0x40840}], 0x1, 0x4004851)

2.811448712s ago: executing program 2 (id=786):
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet(0x2, 0x3, 0x5)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30)
read$FUSE(r1, &(0x7f0000004180)={0x2020, 0x0, <r2=>0x0}, 0x2020)
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f00000000c0)={0x28, 0x4}, 0x28)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r3}, 0x10)
write$FUSE_OPEN(r1, &(0x7f00000002c0)={0x20, 0x0, r2}, 0x20)
r4 = socket$inet(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_msfilter(r4, 0x0, 0x29, &(0x7f0000000140)=ANY=[], 0x1c)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@bridge_delneigh={0x1c, 0x1d, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x67}}, 0x1c}}, 0x0)
write$binfmt_elf64(r0, 0x0, 0x1c)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xb9}, [@call={0x85, 0x0, 0x0, 0x20}, @printk={@llu, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x9b}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r8 = dup(r7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000e, 0x12, r8, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r6, 0x0, 0x4, 0x0, &(0x7f0000000000)="70b514ec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)

2.740284088s ago: executing program 2 (id=787):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYBLOB="0100000000000000014d564b"])
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r1)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000002c0)={'wg2\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
sendmsg$NL80211_CMD_SET_CHANNEL(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="dfdd001cae5ded00", @ANYRES64=r5, @ANYRES32=r3], 0x24}}, 0x24004014)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x1, 0x2, 0x13, 0x2}, {0x5, 0x5, 0xd, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r7 = getpid()
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'xfrm0\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000300)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r9}, [@IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x2}]}]}]}, 0x30}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r10=>0xffffffffffffffff})
connect$unix(r10, &(0x7f0000000480)=@abs, 0x6e)
recvmmsg(r10, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(r7, 0x8, &(0x7f0000000280)=0x2002)
r11 = socket(0x6, 0x4, 0x3)
bind$netlink(r11, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r11, &(0x7f0000000140)='&\x00\x00\x00\"\x00', 0x6)
connect$netlink(r11, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)

2.372086285s ago: executing program 1 (id=788):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r5, 0x84, 0x12, &(0x7f00000002c0)=0x2, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="cc120d", 0x3}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x31e}, {0x0}], 0x2}}], 0x2, 0x0)
ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000540)={'\x00', 0x7ff, 0x6, 0xc, 0x100000001, 0x59f})
ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x700)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300006773da2085000000040000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_split\x00', r7}, 0x10)

1.859482394s ago: executing program 3 (id=789):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b70500"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000080)='\x00', 0x89901)
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x8, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r2)
memfd_create(&(0x7f0000000000)='e\xf4E\x88-\x00', 0x0)
r3 = socket$netlink(0x10, 0x3, 0xa)
r4 = dup(r3)
r5 = open(&(0x7f0000000140)='./file1\x00', 0x10f0c2, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d1)

1.742363549s ago: executing program 2 (id=790):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700)={'team0\x00', <r3=>0x0})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fc00101}]})
socket(0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000004c0)={<r5=>0x0})
ppoll(&(0x7f00000000c0)=[{r4, 0x21}], 0x1, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r4, 0xc0182101, &(0x7f0000000300)={r5})
r6 = syz_io_uring_setup(0x112, &(0x7f0000000140)={0x0, 0x4089, 0x80}, &(0x7f0000000240)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x0, 0x0})
io_uring_enter(r6, 0x47f6, 0xb277, 0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)={{0xffffffffffffffff, 0x0, 0xee01, 0x0, 0x0, 0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, r9})
r10 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r10, 0x84, 0x6, &(0x7f0000000280)={0x0, @in6={{0xa, 0x4e22, 0x3, @private0, 0x1e000000}}}, &(0x7f0000000100)=0x84)
msgsnd(0x0, &(0x7f0000000480)={0x2}, 0x8, 0x0)
msgctl$IPC_RMID(0x0, 0x0)
ioperm(0x0, 0x87, 0x3ff)
write$P9_RWRITE(0xffffffffffffffff, &(0x7f0000000040)={0xb}, 0x11000)
r11 = dup(0xffffffffffffffff)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0xfffffffd})
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r11, 0x84, 0x1b, &(0x7f0000000380)={0x0, 0x22, "6919c3cb12d142cea84ddc0ff7c16de4f8440e3e3109d25c1a0ab5abb4949686cddc"}, &(0x7f0000000400)=0x2a)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000006480)={0x60, r2, 0x405, 0x70bd25, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
landlock_restrict_self(0xffffffffffffffff, 0x0)

1.561537798s ago: executing program 3 (id=791):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x40840, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
keyctl$instantiate_iov(0x14, 0x0, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0)
renameat2(r1, &(0x7f00000001c0)='./file0\x00', r1, &(0x7f0000000200)='./bus\x00', 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r2)
sendmsg$IEEE802154_SCAN_REQ(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x14, r3, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
syz_io_uring_setup(0x593b, &(0x7f0000000140)={0x0, 0xf84d, 0x0, 0x2}, &(0x7f0000000100), &(0x7f0000000080))
syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
r6 = syz_open_dev$video4linux(&(0x7f0000000040), 0x400, 0x400)
ioctl$VIDIOC_SUBDEV_S_CROP(r6, 0xc038563c, &(0x7f0000000240)={0x0, 0x0, {0xffffffff, 0x8000008, 0x0, 0x80000000}})
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mremap(&(0x7f0000aeb000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f00002a0000/0x4000)=nil)
socket$alg(0x26, 0x5, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x6, 0x90082)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r8 = dup(r7)
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(0xffffffffffffffff, 0x2ded, 0x4000, 0xa, 0x0, 0x0)
r9 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
writev(r9, &(0x7f0000000240)=[{&(0x7f0000000800)='9', 0x1}], 0x1f)
ioctl$SNAPSHOT_FREE(r9, 0x3305)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
prctl$PR_GET_KEEPCAPS(0x7)

1.490943989s ago: executing program 1 (id=792):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_open_dev$video(0x0, 0x7, 0x40580)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r5, 0x1, 0x29, &(0x7f00000004c0)=0x58e7, 0x4)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r5, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40002102, 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000380)='./file1\x00', 0x0, 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x14c, &(0x7f00000000c0)=0x401, 0x0, 0x4)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r7 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r6, &(0x7f0000000140)={@val={0x3, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x14}, @ipv4=@icmp={{0x5, 0x4, 0x0, 0x0, 0x8016, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local}, @dest_unreach={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @loopback}}}}, 0xfdef)
openat$khugepaged_scan(0xffffff9c, 0x0, 0x1, 0x0)
setsockopt$SO_TIMESTAMP(r7, 0x1, 0x1d, &(0x7f0000000180)=0xfff, 0x4)
r8 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r8, 0xc0089364, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r9 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$SIOCGIFHWADDR(r4, 0x8927, &(0x7f0000000080)={'veth1_macvtap\x00'})
sendmsg$netlink(r9, &(0x7f0000000040)={0x0, 0x6000, &(0x7f0000000000)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="140100002c00010000000000000000000401"], 0x114}], 0x1}, 0x2000000000000000)

1.212471733s ago: executing program 3 (id=793):
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
io_uring_setup(0x21e9, &(0x7f0000002400)={0x0, 0xffffffbc, 0x0, 0x2, 0x176})
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440), 0x10)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000100)={0x28, 0x0, 0x2710, @local}, 0x10)
clock_gettime(0x0, &(0x7f0000000140))
clock_gettime(0x0, &(0x7f0000000180)={<r1=>0x0, <r2=>0x0})
openat$rfkill(0xffffff9c, &(0x7f00000002c0), 0x84080, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{r1, r2+60000000}, {0x77359400}}, 0x0)
r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
r4 = mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, r3, 0x2000009, 0x100010, 0xffffffffffffffff, 0x0)
r5 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101043, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000080)='cpu.idle\x00', 0x2, 0x0)
sendfile(r7, r7, 0x0, 0x970b)
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
socket$inet_sctp(0x2, 0x5, 0x84)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000000)="1eb3bf65654102f4af4d221c8bd458d1e7cbdaf3657d0f34e790c85bdba7931791f6d15c3e681411f7a496c0dace6a3c242f5b016f64b4ef8a9cedaf6bec340dee49474360b24cb8", 0x0, 0x48)
ioctl$UFFDIO_WAKE(r5, 0x8010aa02, &(0x7f0000000080)={&(0x7f0000ffa000/0x4000)=nil, 0x4000})
listen(0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f00000001c0), 0x8, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)

977.308436ms ago: executing program 1 (id=794):
syz_open_dev$tty20(0xc, 0x4, 0x0)
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r0, 0x2)
flock(r0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000240)={'syztnl1\x00', &(0x7f00000001c0)={'syztnl1\x00', 0x0, 0x4, 0x9, 0x3, 0x2, 0x8, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @loopback}, 0x700, 0x1, 0xe, 0xfffffffb}})
r1 = syz_open_dev$vcsa(&(0x7f00000002c0), 0x401, 0x40001)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)=ANY=[@ANYRES32=r1, @ANYRES32=0x1, @ANYBLOB='\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB="05000000000000000100"/28], 0x50)
r2 = socket$inet(0x2, 0x2, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040))
setsockopt$inet_int(r2, 0x0, 0x13, &(0x7f0000000100)=0x5, 0x4)
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
epoll_create1(0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRES16=r2], 0x74}}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
getsockopt$sock_buf(r3, 0x1, 0xb, &(0x7f0000000040)=""/4096, &(0x7f0000001040)=0x1000)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x40})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(0x0, 0x8c6, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=<r6=>0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000060027"], 0x6c}}, 0x0)
r7 = dup(r4)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = syz_io_uring_setup(0x235, &(0x7f00000002c0)={0x0, 0x591b, 0x10100, 0x0, 0x1a5}, &(0x7f0000000180), &(0x7f0000000340))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYRESHEX=r8, @ANYRES8=0x0, @ANYRESOCT=r6, @ANYRESHEX], &(0x7f00000001c0)='GPL\x00', 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket$packet(0x11, 0x3, 0x300)
r10 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000002340), 0x1, 0x0)
write$binfmt_script(r10, &(0x7f0000000880)={'#! ', './file0'}, 0xb)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000001080)=ANY=[@ANYBLOB="1e00000009000000ba4bb839203d9543d8e7edf3", @ANYRES64=r9, @ANYRES8=r6, @ANYBLOB="4bee50b61b9aea", @ANYBLOB="290fcd6b2603b14a21fc85f9ee13f44698f1d2e24cfd7df504f02766c6c97cc57327e0b849e7c21744061b1535b0bf1e3b5d5c171e41396f6549fc2bd76f5e8e563f5bea9a7019675765f510aab9ae0ac33434194caa636d0e7253f7f53ea33fab425081bd0f44820752ada0a21753908548f4ab849881b9c6ea37a0bdcf175571565b374d52739e403d4d2a377f1660658a4ba6", @ANYBLOB="0400000002000000010000000a00"/28], 0x50)

852.208598ms ago: executing program 2 (id=795):
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000b80), 0x0, 0x0)
preadv(r0, &(0x7f0000002640)=[{0x0}, {&(0x7f00000013c0)=""/214, 0xd6}], 0x2, 0x9, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = memfd_create(&(0x7f0000006500)='\x103q}2\x9a\xce\xaf\x03\x86\xe7\xc0\x14\x8f^\xd5\xfd\xa9\r\xac7A\x94\xeb\xcd\t\x00\x90k\xd6\x05\r\x84\x87\x1c\b\x8c`\xea\x13A\x90m\xb6&\xd0\x9daA\xc5\xb8_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2_\xdb\xc0\x8b\x19\x17\xb7Rvd\xcb:\b\xeeC0\xa3\xa6\xcf\x00\x00\xac\xc5h&+\t\x98\'\xfd|\x11\x99\xa2*6{\xd2C>2\x0e\"\xbc\xda\xee\xb0\xd8\xbf\xaf)\xf58c\x189K\x82\xd1(\xceY*\xcb\x9b\xbdn\x8e\x98m\x10L\xec\xfdWF\x7fj\x19\xb8<\xd2\x9d\xf0\xe9Qy\xe32\xed\x16f\xfe&\x1a\xdb\xeb\xad\xaaE\b\xa9\xf8\xa9s\xc4d\xd4\x03\xf1\xb7xO\x99\x804m[Ai\x13\x02\xf0\x84c2s\xd5P\t`\x9b\x12&\x8cx\x8eg\x9d\xe6g\xb9\xfb\xeb\xba\xf9GQm\xfb\b\x9f\xc6\xf0^\x9d\xdc\x0e\xf8C\x8ao\xb5\xcb\xc3\x97p\xf0\x11\xaa\x85\x8b\x00', 0x4)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xe, 0x2012, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x1c42}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x2}, @IFLA_XFRM_LINK={0x8, 0x1, 0x4}]}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x58}}, 0x0)
mknod(&(0x7f0000000540)='./file1\x00', 0x1, 0x400)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r4 = openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x80001, 0x0)
mount$9p_fd(0x0, &(0x7f00000006c0)='./file1\x00', &(0x7f0000000000), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})

851.932305ms ago: executing program 0 (id=796):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x4, 0xe2483)
r1 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_int(r1, 0x0, 0x13, &(0x7f0000000040)=0x7, 0x4)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000380)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000180)="08001efbb07d586e", 0x8}], 0x1, 0x0, 0x0, 0x60000000}, 0x4000000)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000000c0))
ioctl$LOOP_GET_STATUS(r0, 0x4c03, 0x0)

801.968063ms ago: executing program 0 (id=797):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x120)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r1)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000300)={0x0, 0x0, r3, <r4=>0x0})
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r5, 0x40085112, &(0x7f0000000080)=@e={0xff, 0xa, 0x0, 0x0, @SEQ_CONTROLLER=0xfe})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000600)={r4, 0x0, 0x0, 0x1, 0x0, [<r6=>0x0], [0xffffffff]})
ioctl$DRM_IOCTL_GEM_CLOSE(r0, 0x40086409, &(0x7f0000000080)={r6})

799.968266ms ago: executing program 0 (id=798):
syz_emit_ethernet(0x4e, &(0x7f0000000000)={@local, @link_local={0x3}, @void, {@ipv4={0x800, @tcp={{0xb, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@rr={0x7, 0xf, 0x8, [@multicast2, @remote, @multicast2]}, @ssrr={0x89, 0x3, 0xd7}, @timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2d, 0x1, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"]}]}, 0x114}], 0x1}, 0x0)
madvise(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
ioperm(0x2, 0x6d, 0x80000000)
syz_socket_connect_nvme_tcp()
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000100)={'team0\x00', <r4=>0x0})
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtaction={0x88, 0x30, 0xb, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0xffffffff, 0x6, 0x10000000, 0x0, 0xffe0000}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0xff, 0x4, 0x6, 0x6}, 0x4, r4}}]}, {0x4, 0xa}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@dellink={0x20, 0x11, 0x101, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x1}}, 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x0)
ioctl$TUNSETNOCSUM(r1, 0x8923, 0x20000000)
r7 = signalfd4(r2, &(0x7f0000000300)={[0x80, 0x1]}, 0x8, 0x800)
ioctl$PPPIOCUNBRIDGECHAN(r7, 0x7434)
ioctl$UFFDIO_WRITEPROTECT(r1, 0xc018aa06, &(0x7f0000000080)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x1})
read$FUSE(r1, &(0x7f0000001580)={0x2020, 0x0, 0x0, 0x0, <r8=>0x0}, 0x2020)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1, {0xee01, r8}}, './file0\x00'})
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)

668.749339ms ago: executing program 3 (id=799):
r0 = syz_open_dev$sg(&(0x7f0000000380), 0x1, 0x80000)
ioctl$BLKTRACESTART(r0, 0x2275, 0xffefff1f00000000) (async)
writev(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000280)="2e7d102b7f25e62ed6bb273b8822f1e48c741b3d3d114713459d848b51915986042f60a0161f99ec599588d965f99f507b339ac59bf32b06b1a92946750815a141", 0x41}, {&(0x7f00000003c0)="e6cbfa1327dc1ebcfb18b5013a33004b4981a6dbf811ed3fdb90444a8504262cda0d2b5891ba5a7a299e81d651f392527b02454d9d302b1535696d784c5b24e78184776641dc3cd0d58c3faed6921690e37e6ddea03deaf96ce902cc3e84ab11ef81c6ac74777adc59e752a56f626561698ce2073d6b20dc4c9536a186618ebe77917c75c3adcb5f5e02afd642461d27491d3d3dee0626b6385996cdb33045421ce295e0ac392ca336adce9512c344d20d2b979bf4599a73c40b51112170beeeb0f330dd1622799f2b29b45207", 0xcd}, {&(0x7f00000004c0)="7b2b29669915f3d3fb1342566c9327392c63de5bf976e29c58befca315f64e7a8cfa77136faf5eea2d5919c185ffe10a80a48f546c0a541992dea3d0e352e62cab7285995c2828639075235da82f2ae3e4ef372cb914058cb044d83fa1c0970a7dceb005b9d730537f3f17fab62bff7689859248ee549c7743fb0a46300fe183ed42c75dcc39d6ddf350a207e8b00c5d810a2607e2019f75dd167167ff1f", 0x9e}, {&(0x7f00000006c0)="8b152ff76298d9d9b1d8713eeaba95c2eb4bd403244b3693722eeebbab446e8a24556a5078fcc22b56488a229c719551c293959955dd808c870fc121745c3973ed3799e8f38b4a0eadcf6fe3f3ce331e2b995409dbeb2ff2c3ec19a774d9d8e19b2209a42c390b079c2bff27b621c954912e8cb577b40f0cda3467645a818d3ee166a348b28e95de8925ba02e01273adaf1f4e2cedcba8ce7c6266ea0f5215d7060f63e9a715a3834d1fd24df47e665191a15c558463b085825ab0d2c36c67f42c027dca3ea0571d09cadd6e01", 0xcd}, {&(0x7f00000007c0)="9b6ab48c43f2179b117f589c4c133bdcc84ee756ee3aebf6d1f6a852dc3be9fb55de28e51e18d0417a062261f76c254c915cf8e3a7e952dcc2775a872a65d03d36980739e8042f39809f00ea7a4ae092c5f3028a97478c48d24e6b041e1d382c5514bea033d2834f49698f534e45cc854bbb399aac1062d0e43161533fd1495537c00133d6c029b837c42865727b3533506a5d10e6b6708b970eb7736d4644de6be691ce1d92dc2dec69a2a8e898a99d9e6fd3c113dc7455c542ac1f377e47b2209e444a14a7c66190b4208e84d6a9fd020907e42685624641cc38a0268f7792f9917bf73a7149575fc4c7d9c743f9fd99cbd288fbf3", 0xf6}], 0x5) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000007112"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setscheduler(0x0, 0x2, 0x0) (async)
getpid() (async)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) (async)
openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18) (async)
open$dir(&(0x7f0000000180)='./file0\x00', 0x7e, 0x0) (async)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
listen(0xffffffffffffffff, 0x100000001) (async)
accept4(r1, 0x0, 0x0, 0x0) (async)
r4 = socket$inet6(0xa, 0x1, 0x3)
r5 = dup2(r4, r4)
ioctl$sock_inet6_SIOCDELRT(r5, 0x890c, &(0x7f0000000640)={@remote, @private0, @empty, 0x40000, 0x40, 0x0, 0x0, 0x0, 0x40180043}) (async)
syz_init_net_socket$x25(0x9, 0x5, 0x0) (async)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r7=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={0xffffffffffffffff, r7}, 0x40)
syz_emit_ethernet(0xfdef, &(0x7f0000000a40)=ANY=[], 0x0) (async)
write$6lowpan_enable(r3, &(0x7f0000000300)='0', 0x1) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200))
openat$loop_ctrl(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)

663.483173ms ago: executing program 1 (id=800):
r0 = epoll_create1(0x0)
r1 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
io_setup(0x80, &(0x7f0000000440)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000280)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
ppoll(&(0x7f0000000080)=[{r0, 0xc011}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/custom0\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f00000000c0)={0x10000001})

562.446251ms ago: executing program 3 (id=801):
r0 = getpid()
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r0}}]}, 0x3c}}, 0x0)

230.732179ms ago: executing program 3 (id=802):
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$PTP_EXTTS_REQUEST2(0xffffffffffffffff, 0xc4c03d12, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(r0, 0x40384708, 0x20000000)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105842, 0x0)
r4 = epoll_create1(0x0)
r5 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r4}})

221.64069ms ago: executing program 0 (id=810):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'bond_slave_1\x00', <r1=>0x0})
r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r2, 0x2)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r4 = openat$mice(0xffffffffffffff9c, &(0x7f0000001540), 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0x5452, &(0x7f00000000c0)={{0x1, 0x1, 0x59}, '\x00'})
flock(r3, 0x2)
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r5, 0x2)
close(r2)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x3, 0x1000}, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KDFONTOP_SET(r3, 0x4b72, &(0x7f00000002c0)={0x0, 0x0, 0x1c, 0x13, 0xde, 0x0})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000040)={'syz_tun\x00', 0x0})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x22, &(0x7f0000007840)={@remote, @remote, @val={@void, {0x8100, 0x1}}, {@generic={0x18, "7b2c72551408dbe2331c1ba5e539673c"}}}, 0x0)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r8, 0x40047438, &(0x7f0000000180)=""/246)
write$binfmt_aout(r8, &(0x7f0000000100)=ANY=[], 0xfce1)
ioctl$TCFLSH(r7, 0x540b, 0x2)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3d, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r9}, 0x10)

0s ago: executing program 2 (id=803):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700)={'team0\x00', <r3=>0x0})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fc00101}]})
socket(0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000004c0)={<r5=>0x0})
ppoll(&(0x7f00000000c0)=[{r4, 0x21}], 0x1, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r4, 0xc0182101, &(0x7f0000000300)={r5})
r6 = syz_io_uring_setup(0x112, &(0x7f0000000140)={0x0, 0x4089, 0x80}, &(0x7f0000000240)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x0, 0x0})
io_uring_enter(r6, 0x47f6, 0xb277, 0x0, 0x0, 0x0)
msgget$private(0x0, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)={{0xffffffffffffffff, 0x0, 0xee01, 0x0, 0x0, 0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, r9})
r10 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r10, 0x84, 0x6, &(0x7f0000000280)={0x0, @in6={{0xa, 0x4e22, 0x3, @private0, 0x1e000000}}}, &(0x7f0000000100)=0x84)
msgsnd(0x0, &(0x7f0000000480)={0x2}, 0x8, 0x0)
msgctl$IPC_RMID(0x0, 0x0)
ioperm(0x0, 0x87, 0x3ff)
write$P9_RWRITE(0xffffffffffffffff, &(0x7f0000000040)={0xb}, 0x11000)
r11 = dup(0xffffffffffffffff)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0xfffffffd})
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r11, 0x84, 0x1b, &(0x7f0000000380)={0x0, 0x22, "6919c3cb12d142cea84ddc0ff7c16de4f8440e3e3109d25c1a0ab5abb4949686cddc"}, &(0x7f0000000400)=0x2a)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000006480)={0x60, r2, 0x405, 0x70bd25, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
landlock_restrict_self(0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

yz.0.85': attribute type 10 has an invalid length.
[   56.474104][ T6338] netlink: 55 bytes leftover after parsing attributes in process `syz.0.85'.
[   56.733146][ T6345] netlink: 60 bytes leftover after parsing attributes in process `syz.3.88'.
[   56.780744][ T6348] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   57.631779][ T6365] netlink: 'syz.3.94': attribute type 10 has an invalid length.
[   57.634165][ T6365] netlink: 55 bytes leftover after parsing attributes in process `syz.3.94'.
[   58.411866][ T6379] loop7: detected capacity change from 0 to 16384
[   58.814661][ T6382] Invalid logical block size (1)
[   59.396111][ T6410] netlink: 'syz.2.104': attribute type 10 has an invalid length.
[   59.398214][ T6410] netlink: 55 bytes leftover after parsing attributes in process `syz.2.104'.
[   59.462565][ T6414] netlink: 260 bytes leftover after parsing attributes in process `syz.0.105'.
[   59.528338][ T6414] netlink: 28 bytes leftover after parsing attributes in process `syz.0.105'.
[   59.782184][ T6426] fuse: Unknown parameter '
'
[   59.845032][ T6427] syz.2.109: attempt to access beyond end of device
[   59.845032][ T6427] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[   60.021332][ T6430] vivid-000: =================  START STATUS  =================
[   60.025676][ T6430] vivid-000: Test Pattern: 75% Colorbar
[   60.027395][ T6430] vivid-000: Fill Percentage of Frame: 100
[   60.028968][ T6430] vivid-000: Horizontal Movement: Move Left Slow
[   60.030603][ T6430] vivid-000: Vertical Movement: No Movement
[   60.032178][ T6430] vivid-000: OSD Text Mode: All
[   60.033449][ T6430] vivid-000: Show Border: false
[   60.035629][ T6430] vivid-000: Show Square: false
[   60.039732][ T6430] vivid-000: Sensor Flipped Horizontally: false
[   60.041416][ T6430] vivid-000: Sensor Flipped Vertically: false
[   60.049153][ T6430] vivid-000: Insert SAV Code in Image: false
[   60.051030][ T6430] vivid-000: Insert EAV Code in Image: false
[   60.053291][ T6430] vivid-000: Insert Video Guard Band: false
[   60.058987][ T6430] vivid-000: Reduced Framerate: false
[   60.060551][ T6430] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[   60.062663][ T6430] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[   60.064830][ T6430] vivid-000: Enable Capture Cropping: true
[   60.066420][ T6430] vivid-000: Enable Capture Composing: true
[   60.068173][ T6430] vivid-000: Enable Capture Scaler: true
[   60.069729][ T6430] vivid-000: Timestamp Source: End of Frame
[   60.071319][ T6430] vivid-000: Colorspace: SMPTE 170M
[   60.072941][ T6430] vivid-000: Transfer Function: Default
[   60.074877][ T6430] vivid-000: Y'CbCr Encoding: Default
[   60.076395][ T6430] vivid-000: HSV Encoding: Hue 0-179
[   60.077881][ T6430] vivid-000: Quantization: Default
[   60.079319][ T6430] vivid-000: Apply Alpha To Red Only: false
[   60.080935][ T6430] vivid-000: Standard Aspect Ratio: 4x3
[   60.082459][ T6430] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[   60.084959][ T6430] vivid-000: DV Timings: 640x480p59 inactive
[   60.086567][ T6430] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[   60.088865][ T6430] vivid-000: Maximum EDID Blocks: 2
[   60.090285][ T6430] vivid-000: Limited RGB Range (16-235): false
[   60.091911][ T6430] vivid-000: Rx RGB Quantization Range: Automatic
[   60.093587][ T6430] vivid-000: Power Present: 0x00000001
[   60.095375][ T6430] tpg source WxH: 720x576 (Y'CbCr)
[   60.096797][ T6430] tpg field: 4
[   60.097690][ T6430] tpg crop: 720x576@0x0
[   60.098849][ T6430] tpg compose: 720x576@0x0
[   60.100061][ T6430] tpg colorspace: 1
[   60.101167][ T6430] tpg transfer function: 0/0
[   60.102580][ T6430] tpg Y'CbCr encoding: 0/0
[   60.103809][ T6430] tpg quantization: 0/0
[   60.105636][ T6430] tpg RGB range: 0/2
[   60.106737][ T6430] vivid-000: ==================  END STATUS  ==================
[   60.780187][ T6448] netlink: 'syz.0.115': attribute type 10 has an invalid length.
[   60.782298][ T6448] netlink: 55 bytes leftover after parsing attributes in process `syz.0.115'.
[   61.215936][ T6469] netlink: 'syz.0.120': attribute type 3 has an invalid length.
[   61.217945][ T6469] netlink: 3 bytes leftover after parsing attributes in process `syz.0.120'.
[   62.123433][ T6485] netlink: 'syz.0.124': attribute type 10 has an invalid length.
[   62.125763][ T6485] netlink: 55 bytes leftover after parsing attributes in process `syz.0.124'.
[   64.486889][ T6531] Bluetooth: MGMT ver 1.23
[   65.781544][ T6565] netlink: 4 bytes leftover after parsing attributes in process `syz.1.149'.
[   65.939025][ T6572] fuse: Unknown parameter 'ïÿ'
[   67.310177][ T6606] netlink: 8 bytes leftover after parsing attributes in process `syz.0.160'.
[   67.453937][   T39] kauditd_printk_skb: 18 callbacks suppressed
[   67.453948][   T39] audit: type=1326 audit(1733649222.719:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.456193][ T6610] tmpfs: Invalid gid '0x00000000ffffffff'
[   67.462807][   T39] audit: type=1326 audit(1733649222.719:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.469397][   T39] audit: type=1326 audit(1733649222.729:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.475907][   T39] audit: type=1326 audit(1733649222.729:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.482418][   T39] audit: type=1326 audit(1733649222.729:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.488902][   T39] audit: type=1326 audit(1733649222.729:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.494442][   T39] audit: type=1326 audit(1733649222.729:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.502502][   T39] audit: type=1326 audit(1733649222.729:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.508239][   T39] audit: type=1326 audit(1733649222.729:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   67.513541][   T39] audit: type=1326 audit(1733649222.729:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.2.162" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf7f72579 code=0x7ffc0000
[   68.044027][ T6000] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   68.203938][ T6000] usb 7-1: Using ep0 maxpacket: 8
[   68.207331][ T6000] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[   68.209266][ T6000] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   68.211501][ T6000] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   68.213762][ T6000] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   68.216119][ T6000] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   68.219130][ T6000] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   68.221240][ T6000] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.249497][ T6629] netlink: 'syz.0.167': attribute type 10 has an invalid length.
[   68.252951][ T6629] syz_tun: entered promiscuous mode
[   68.257470][ T6629] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   70.543919][ T2297] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   70.646954][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[   70.648719][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[   70.694628][ T2297] usb 8-1: Using ep0 maxpacket: 16
[   70.698329][ T2297] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30
[   70.700895][ T2297] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   70.703660][ T2297] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33
[   70.707133][ T2297] usb 8-1: New USB device found, idVendor=056a, idProduct=0116, bcdDevice= 0.00
[   70.709492][ T2297] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.712445][ T2297] usb 8-1: config 0 descriptor??
[   70.772708][ T6687] netlink: 'syz.0.182': attribute type 10 has an invalid length.
[   70.774873][ T6687] netlink: 55 bytes leftover after parsing attributes in process `syz.0.182'.
[   70.821264][ T6000] usb 7-1: usb_control_msg returned -71
[   70.822997][ T6000] usbtmc 7-1:16.0: can't read capabilities
[   70.831301][ T6000] usb 7-1: USB disconnect, device number 2
[   70.926595][ T2297] usbhid 8-1:0.0: can't add hid device: -71
[   70.928376][ T2297] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[   70.938492][ T2297] usb 8-1: USB disconnect, device number 2
[   72.032947][ T6719] overlayfs: failed to resolve './file0': -2
[   72.421251][ T6731] netlink: 'syz.3.193': attribute type 10 has an invalid length.
[   72.423742][ T6731] netlink: 55 bytes leftover after parsing attributes in process `syz.3.193'.
[   73.603756][ T6744] fuse: Unknown parameter 'ûd¡'
[   73.629545][ T6752] binder: Unknown parameter 'smackfsroot'
[   73.819747][ T6752] ubi0: attaching mtd0
[   73.822217][ T6752] ubi0: scanning is finished
[   73.823413][ T6752] ubi0: empty MTD device detected
[   74.191528][ T6752] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[   74.196703][ T6752] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   74.198683][ T6752] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[   74.200419][ T6752] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[   74.202253][ T6752] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   74.213944][ T6752] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[   74.216383][ T6752] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1413288607
[   74.219124][ T6752] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   74.221229][ T6738] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   74.222883][ T6758] ubi0: background thread "ubi_bgt0d" started, PID 6758
[   74.538691][ T6782] input: syz1 as /devices/virtual/input/input6
[   74.643911][   T73] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   74.793910][   T73] usb 7-1: Using ep0 maxpacket: 16
[   74.797062][   T73] usb 7-1: config 0 has an invalid interface number: 8 but max is 0
[   74.799431][   T73] usb 7-1: config 0 has no interface number 0
[   74.801096][   T73] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 240, changing to 11
[   74.804151][   T73] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 9790, setting to 1024
[   74.808370][   T73] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[   74.810769][   T73] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[   74.813068][   T73] usb 7-1: Product: syz
[   74.814598][   T73] usb 7-1: SerialNumber: syz
[   74.816610][   T73] usb 7-1: config 0 descriptor??
[   74.819103][ T6762] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   74.822226][   T73] cm109 7-1:0.8: invalid payload size 1024, expected 4
[   74.825460][   T73] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.8/input/input7
[   75.037598][ T2297] kernel read not supported for file /vcsa (pid: 2297 comm: kworker/1:2)
[   75.063460][    C3] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[   75.066562][    C3] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[   75.068563][   T73] usb 7-1: USB disconnect, device number 3
[   75.068612][    C3] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[   75.068623][    C3] cm109 7-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[   75.082267][   T73] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[   75.134769][ T6794] netlink: 'syz.3.206': attribute type 10 has an invalid length.
[   75.136792][ T6794] netlink: 55 bytes leftover after parsing attributes in process `syz.3.206'.
[   75.778567][ T2108] cfg80211: failed to load regulatory.db
[   76.690109][ T6840] netlink: 4 bytes leftover after parsing attributes in process `syz.3.220'.
[   77.066746][ T6849] loop9: detected capacity change from 0 to 6
[   77.074967][ T6849] Dev loop9: unable to read RDB block 6
[   77.076536][ T6849]  loop9: unable to read partition table
[   77.078055][ T6849] loop9: partition table beyond EOD, truncated
[   77.079588][ T6849] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ�‡ö�e£|�) failed (rc=-5)
[   77.449408][ T6855] syz.3.224: page allocation failure: order:1, mode:0x10cc0(GFP_KERNEL|__GFP_NORETRY), nodemask=(null),cpuset=/,mems_allowed=0-1
[   77.452897][ T6855] CPU: 2 UID: 0 PID: 6855 Comm: syz.3.224 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[   77.455637][ T6855] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.458406][ T6855] Call Trace:
[   77.459261][ T6855]  <TASK>
[   77.460023][ T6855]  dump_stack_lvl+0x16c/0x1f0
[   77.461254][ T6855]  warn_alloc+0x24d/0x3a0
[   77.462375][ T6855]  ? __pfx_warn_alloc+0x10/0x10
[   77.463630][ T6855]  ? psi_memstall_leave+0x17d/0x250
[   77.464996][ T6855]  ? __alloc_pages_direct_compact+0x1b1/0x590
[   77.466601][ T6855]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[   77.468201][ T6855]  ? psi_memstall_leave+0x17d/0x250
[   77.469602][ T6855]  __alloc_pages_noprof+0x15a5/0x25b0
[   77.471010][ T6855]  ? lockdep_hardirqs_on+0x7c/0x110
[   77.472369][ T6855]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   77.473843][ T6855]  ? __pfx___schedule+0x10/0x10
[   77.475142][ T6855]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   77.476688][ T6855]  ? policy_nodemask+0xea/0x4e0
[   77.478017][ T6855]  alloc_pages_mpol_noprof+0x2c9/0x610
[   77.479485][ T6855]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   77.481103][ T6855]  ? lockdep_hardirqs_on+0x7c/0x110
[   77.482520][ T6855]  kimage_alloc_pages+0x75/0x300
[   77.483840][ T6855]  kimage_alloc_control_pages+0x148/0x8e0
[   77.485374][ T6855]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[   77.487003][ T6855]  do_kexec_load+0x38a/0x8c0
[   77.488222][ T6855]  ? __might_fault+0xe3/0x190
[   77.489475][ T6855]  ? __pfx_do_kexec_load+0x10/0x10
[   77.490816][ T6855]  ? __might_fault+0xe3/0x190
[   77.492059][ T6855]  __do_compat_sys_kexec_load+0x2cf/0x330
[   77.493555][ T6855]  ? __pfx___do_compat_sys_kexec_load+0x10/0x10
[   77.495198][ T6855]  __do_fast_syscall_32+0x73/0x120
[   77.496531][ T6855]  do_fast_syscall_32+0x32/0x80
[   77.497802][ T6855]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.499411][ T6855] RIP: 0023:0xf7fc3579
[   77.500478][ T6855] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.505372][ T6855] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 000000000000011b
[   77.507536][ T6855] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000003
[   77.509598][ T6855] RDX: 0000000020000080 RSI: 00000000003e0000 RDI: 0000000000000000
[   77.511663][ T6855] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.513740][ T6855] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[   77.515789][ T6855] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.517802][ T6855]  </TASK>
[   77.521002][ T6855] Mem-Info:
[   77.521888][ T6855] active_anon:10398 inactive_anon:336 isolated_anon:0
[   77.521888][ T6855]  active_file:3330 inactive_file:18823 isolated_file:0
[   77.521888][ T6855]  unevictable:1768 dirty:283 writeback:0
[   77.521888][ T6855]  slab_reclaimable:7681 slab_unreclaimable:54772
[   77.521888][ T6855]  mapped:26835 shmem:7397 pagetables:728
[   77.521888][ T6855]  sec_pagetables:298 bounce:0
[   77.521888][ T6855]  kernel_misc_reclaimable:0
[   77.521888][ T6855]  free:21393 free_pcp:881 free_cma:0
[   77.537298][ T6855] Node 0 active_anon:4876kB inactive_anon:1336kB active_file:892kB inactive_file:7428kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4992kB dirty:36kB writeback:0kB shmem:5452kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9696kB pagetables:708kB sec_pagetables:1152kB all_unreclaimable? yes
[   77.545679][ T6855] Node 1 active_anon:36716kB inactive_anon:8kB active_file:12428kB inactive_file:66364kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:102348kB dirty:1096kB writeback:0kB shmem:24136kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2496kB pagetables:2204kB sec_pagetables:40kB all_unreclaimable? no
[   77.553763][ T6855] Node 0 DMA free:2808kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:128kB inactive_anon:96kB active_file:200kB inactive_file:4kB unevictable:0kB writepending:12kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   77.562664][ T6855] lowmem_reserve[]: 0 273 0 0 0
[   77.564142][ T6855] Node 0 DMA32 free:13832kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:2048KB active_anon:4748kB inactive_anon:1240kB active_file:692kB inactive_file:7424kB unevictable:3536kB writepending:24kB present:1032196kB managed:306332kB mlocked:0kB bounce:0kB free_pcp:188kB local_pcp:32kB free_cma:0kB
[   77.571659][ T6855] lowmem_reserve[]: 0 0 0 0 0
[   77.572897][ T6855] Node 1 DMA32 free:72960kB boost:2048kB min:49192kB low:60976kB high:72760kB reserved_highatomic:0KB active_anon:36716kB inactive_anon:8kB active_file:12428kB inactive_file:66364kB unevictable:3536kB writepending:1096kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:2708kB local_pcp:940kB free_cma:0kB
[   77.583719][ T6855] lowmem_reserve[]: 0 0 0 0 0
[   77.585469][ T6855] Node 0 DMA: 62*4kB (UM) 4*8kB (UM) 34*16kB (UM) 30*32kB (UM) 6*64kB (UM) 3*128kB (UM) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2808kB
[   77.591054][ T6855] Node 0 DMA32: 200*4kB (UM) 19*8kB (UMH) 15*16kB (ME) 16*32kB (UME) 39*64kB (UME) 19*128kB (UE) 11*256kB (UME) 3*512kB (UE) 3*1024kB (UM) 0*2048kB 0*4096kB = 14056kB
[   77.596285][ T6855] Node 1 DMA32: 294*4kB (UME) 164*8kB (UME) 115*16kB (UME) 132*32kB (UME) 46*64kB (UME) 19*128kB (ME) 22*256kB (UM) 26*512kB (ME) 13*1024kB (UM) 1*2048kB (M) 6*4096kB (M) = 72808kB
[   77.601020][ T6855] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   77.603409][ T6855] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   77.606145][ T6855] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   77.608597][ T6855] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   77.610966][ T6855] 29174 total pagecache pages
[   77.612213][ T6855] 0 pages in swap cache
[   77.613328][ T6855] Free swap  = 124440kB
[   77.614521][ T6855] Total swap = 124996kB
[   77.615662][ T6855] 524155 pages RAM
[   77.616676][ T6855] 0 pages HighMem/MovableOnly
[   77.618065][ T6855] 206669 pages reserved
[   77.619174][ T6855] 0 pages cma reserved
[   77.779204][ T6855] kexec: Could not allocate control_code_buffer
[   78.595084][ T6876] netlink: 4 bytes leftover after parsing attributes in process `syz.0.229'.
[   79.123994][ T2108] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   79.283901][ T2108] usb 8-1: Using ep0 maxpacket: 32
[   79.287363][ T2108] usb 8-1: config 0 has an invalid interface number: 185 but max is 0
[   79.290194][ T2108] usb 8-1: config 0 has no interface number 0
[   79.292340][ T2108] usb 8-1: config 0 interface 185 altsetting 0 endpoint 0x5 has invalid maxpacket 512, setting to 64
[   79.297442][ T2108] usb 8-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=c6.c2
[   79.300890][ T2108] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.304968][ T2108] usb 8-1: config 0 descriptor??
[   79.638394][ T6000] usb 8-1: USB disconnect, device number 3
[   80.599201][ T6937] binder: Unknown parameter 'smackfsroot'
[   80.631724][ T6937] ubi: mtd0 is already attached to ubi0
[   81.511814][ T6947] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[   81.518599][ T6947] syzkaller0: entered promiscuous mode
[   81.520492][ T6947] syzkaller0: entered allmulticast mode
[   81.745508][ T6963] fuse: Unknown parameter 'ûd¡'
[   82.620461][ T6955] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   82.822454][ T6969] netlink: 'syz.1.255': attribute type 10 has an invalid length.
[   82.824598][ T6969] netlink: 55 bytes leftover after parsing attributes in process `syz.1.255'.
[   84.520393][ T6991] netlink: 4 bytes leftover after parsing attributes in process `syz.0.259'.
[   84.730465][ T7012] input: syz1 as /devices/virtual/input/input8
[   84.776107][ T7017] netlink: 260 bytes leftover after parsing attributes in process `syz.2.265'.
[   84.816308][ T7017] netlink: 28 bytes leftover after parsing attributes in process `syz.2.265'.
[   86.745784][ T7051] fuse: Unknown parameter 'ûd¡'
[   87.478768][ T7047] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   87.889902][ T7074] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   87.892256][ T7074] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[   87.895851][ T7074] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   89.999643][ T7106] netlink: 'syz.3.288': attribute type 10 has an invalid length.
[   90.001729][ T7106] netlink: 55 bytes leftover after parsing attributes in process `syz.3.288'.
[   90.317032][ T7114] netlink: 'syz.2.298': attribute type 10 has an invalid length.
[   90.319948][ T7114] netlink: 55 bytes leftover after parsing attributes in process `syz.2.298'.
[   90.555222][ T7120] netlink: 'syz.3.290': attribute type 10 has an invalid length.
[   90.557283][ T7120] netlink: 55 bytes leftover after parsing attributes in process `syz.3.290'.
[   91.058883][ T2297] libceph: connect (1)[c::]:6789 error -101
[   91.060524][ T2297] libceph: mon0 (1)[c::]:6789 connect error
[   91.314152][ T2297] libceph: connect (1)[c::]:6789 error -101
[   91.316064][ T2297] libceph: mon0 (1)[c::]:6789 connect error
[   91.631331][ T7134] ceph: No mds server is up or the cluster is laggy
[   91.694442][ T7154] netlink: 4 bytes leftover after parsing attributes in process `syz.2.300'.
[   91.729473][ T7154] ptrace attach of "/syz-executor exec"[7157] was attempted by "/syz-executor exec"[7154]
[   91.735345][ T7154] netlink: 8 bytes leftover after parsing attributes in process `syz.2.300'.
[   92.485678][ T7176] fuse: Bad value for 'fd'
[   92.962465][ T7168] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   92.965150][ T7168] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   92.977115][ T7168] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   92.981303][ T7168] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   92.982915][ T7168] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   92.986784][ T7168] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   92.990580][ T7168] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   92.992503][ T7168] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   92.995021][ T7168] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   93.151187][ T7185] netlink: 'syz.0.308': attribute type 4 has an invalid length.
[   93.153348][ T7185] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.308'.
[   93.161137][ T7186] netlink: 12 bytes leftover after parsing attributes in process `syz.3.310'.
[   93.253921][    T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   93.263219][ T7188] kernel profiling enabled (shift: 7)
[   93.425214][    T9] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   93.427885][    T9] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   93.430291][    T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   93.432407][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.435893][ T7178] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   93.440151][    T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   93.860691][ T7193] virtio-fs: tag <(null)> not found
[   93.935468][ T7197] syz.2.313 uses obsolete (PF_INET,SOCK_PACKET)
[   94.068943][ T7203] 9pnet_fd: Insufficient options for proto=fd
[   94.120483][ T7204] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[   94.244536][   T65] Bluetooth: hci1: command 0x0c1a tx timeout
[   94.630314][ T7218] warning: `syz.2.320' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   94.849755][ T7224] fuse: Unknown parameter '0x00000000000000070x0000000000000007'
[   94.914005][    T9] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   95.045354][   T65] Bluetooth: hci3: command 0x0405 tx timeout
[   95.045387][ T5952] Bluetooth: hci2: command 0x0c1a tx timeout
[   95.067652][ T7234] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[   95.069893][ T7234] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   95.076127][ T7234] vhci_hcd vhci_hcd.0: Device attached
[   95.114838][    T9] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   95.125093][    T9] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   95.133475][    T9] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   95.136977][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.152253][ T7218] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   95.169700][    T9] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   95.254151][ T1320] vhci_hcd: vhci_device speed not set
[   95.314619][ T1320] usb 37-1: new full-speed USB device number 3 using vhci_hcd
[   96.039112][ T2297] usb 6-1: USB disconnect, device number 3
[   96.334375][ T5952] Bluetooth: hci1: command 0x0c1a tx timeout
[   96.435360][ T7235] vhci_hcd: connection reset by peer
[   96.442900][  T183] vhci_hcd: stop threads
[   96.449278][  T183] vhci_hcd: release socket
[   96.450790][  T183] vhci_hcd: disconnect device
[   96.628224][ T7264] netlink: 'syz.0.332': attribute type 10 has an invalid length.
[   96.630248][ T7264] netlink: 55 bytes leftover after parsing attributes in process `syz.0.332'.
[   97.123991][ T5952] Bluetooth: hci3: command 0x0405 tx timeout
[   97.124013][   T65] Bluetooth: hci2: command 0x0c1a tx timeout
[   97.266547][ T7281] tap0: tun_chr_ioctl cmd 1074025672
[   97.268281][ T7281] tap0: ignored: set checksum enabled
[   97.783226][   T73] usb 7-1: USB disconnect, device number 4
[   97.895270][ T7294] netlink: 'syz.0.341': attribute type 10 has an invalid length.
[   97.897863][ T7294] netlink: 55 bytes leftover after parsing attributes in process `syz.0.341'.
[   97.983657][   T39] kauditd_printk_skb: 15 callbacks suppressed
[   97.983689][   T39] audit: type=1326 audit(1733649253.249:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   97.991363][   T39] audit: type=1326 audit(1733649253.259:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.006156][   T39] audit: type=1326 audit(1733649253.259:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.024001][   T39] audit: type=1326 audit(1733649253.259:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.036073][   T39] audit: type=1326 audit(1733649253.259:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.041382][   T39] audit: type=1326 audit(1733649253.259:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.046770][   T39] audit: type=1326 audit(1733649253.259:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.051926][   T39] audit: type=1326 audit(1733649253.259:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.058353][   T39] audit: type=1326 audit(1733649253.259:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.065902][   T39] audit: type=1326 audit(1733649253.259:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.337" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[   98.413933][   T65] Bluetooth: hci1: command 0x0c1a tx timeout
[   98.445947][ T7301] bond0: (slave syz_tun): Releasing backup interface
[   98.459789][ T7301] bridge_slave_0: left allmulticast mode
[   98.461809][ T7301] bridge_slave_0: left promiscuous mode
[   98.465481][ T7301] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.478196][ T7301] bridge_slave_1: left allmulticast mode
[   98.480139][ T7301] bridge_slave_1: left promiscuous mode
[   98.482133][ T7301] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.490117][ T7301] bond0: (slave bond_slave_0): Releasing backup interface
[   98.498925][ T7301] bond0: (slave bond_slave_1): Releasing backup interface
[   98.516377][ T7301] team0: Port device team_slave_0 removed
[   98.527479][ T7301] team0: Port device team_slave_1 removed
[   98.529347][ T7301] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   98.531319][ T7301] batman_adv: batadv0: Removing interface: batadv_slave_0
[   98.534718][ T7301] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   98.536681][ T7301] batman_adv: batadv0: Removing interface: batadv_slave_1
[   98.727682][ T7301] team0: Mode changed to "loadbalance"
[   99.007141][   T45] Bluetooth: (null): Too short H5 packet
[   99.010491][   T45] Bluetooth: (null): Invalid header checksum
[   99.012895][   T45] Bluetooth: (null): Invalid header checksum
[   99.125109][   T45] Bluetooth: (null): Invalid header checksum
[   99.203716][ T7332] netlink: 36 bytes leftover after parsing attributes in process `syz.3.350'.
[   99.214317][   T65] Bluetooth: hci3: command 0x0405 tx timeout
[   99.215419][ T5952] Bluetooth: hci2: command 0x0c1a tx timeout
[   99.235884][   T45] Bluetooth: (null): Invalid header checksum
[   99.355871][   T45] Bluetooth: (null): Invalid header checksum
[   99.475129][ T1174] Bluetooth: (null): Invalid header checksum
[  100.395246][ T1320] vhci_hcd: vhci_device speed not set
[  100.552043][ T7358] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  100.553813][ T7358] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  100.557808][ T7358] vhci_hcd vhci_hcd.0: Device attached
[  100.794377][ T7365] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (253)
[  100.894037][ T1320] vhci_hcd: vhci_device speed not set
[  100.896796][ T7369] netlink: 'syz.1.358': attribute type 10 has an invalid length.
[  100.898905][ T7369] netlink: 55 bytes leftover after parsing attributes in process `syz.1.358'.
[  100.955131][ T1320] usb 37-1: device descriptor read/64, error -110
[  101.133913][ T1320] vhci_hcd: vhci_device speed not set
[  101.172634][ T7382] netlink: 8 bytes leftover after parsing attributes in process `syz.2.361'.
[  101.194385][ T1320] usb 37-1: new full-speed USB device number 4 using vhci_hcd
[  101.295499][ T7359] vhci_hcd: connection reset by peer
[  101.301206][   T67] vhci_hcd: stop threads
[  101.303657][   T67] vhci_hcd: release socket
[  101.323670][   T67] vhci_hcd: disconnect device
[  102.211562][ T7419] bond0: (slave team0): Releasing backup interface
[  102.219222][ T7419] bridge_slave_0: left allmulticast mode
[  102.221256][ T7419] bridge_slave_0: left promiscuous mode
[  102.223418][ T7419] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.231371][ T7419] bridge_slave_1: left allmulticast mode
[  102.234069][ T7419] bridge_slave_1: left promiscuous mode
[  102.235701][ T7419] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.242762][ T7419] bond0: (slave bond_slave_0): Releasing backup interface
[  102.247726][ T7419] bond0: (slave bond_slave_1): Releasing backup interface
[  102.259788][ T7419] team0: Port device team_slave_0 removed
[  102.265104][ T7419] team0: Port device team_slave_1 removed
[  102.266899][ T7419] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.268856][ T7419] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.271370][ T7419] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.273413][ T7419] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.567157][ T7452] netlink: 'syz.2.371': attribute type 3 has an invalid length.
[  102.569279][ T7452] netlink: 'syz.2.371': attribute type 1 has an invalid length.
[  102.571201][ T7452] netlink: 220 bytes leftover after parsing attributes in process `syz.2.371'.
[  102.761941][ T7456] 9pnet_fd: Insufficient options for proto=fd
[  102.838053][ T7466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.372'.
[  103.327091][ T7478] FAULT_INJECTION: forcing a failure.
[  103.327091][ T7478] name failslab, interval 1, probability 0, space 0, times 1
[  103.331287][ T7478] CPU: 3 UID: 0 PID: 7478 Comm: syz.3.375 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  103.334815][ T7478] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.338410][ T7478] Call Trace:
[  103.339580][ T7478]  <TASK>
[  103.340630][ T7478]  dump_stack_lvl+0x16c/0x1f0
[  103.342305][ T7478]  should_fail_ex+0x497/0x5b0
[  103.343941][ T7478]  ? fs_reclaim_acquire+0xae/0x150
[  103.345721][ T7478]  should_failslab+0xc2/0x120
[  103.347349][ T7478]  __kmalloc_noprof+0xce/0x4f0
[  103.349058][ T7478]  ? alloc_pipe_info+0x1ec/0x590
[  103.350744][ T7478]  alloc_pipe_info+0x1ec/0x590
[  103.352349][ T7478]  splice_direct_to_actor+0x793/0xa40
[  103.354182][ T7478]  ? __pfx_direct_splice_actor+0x10/0x10
[  103.356081][ T7478]  ? __pfx_aa_file_perm+0x10/0x10
[  103.357822][ T7478]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  103.359730][ T7478]  ? __fget_files+0x1fc/0x3a0
[  103.361315][ T7478]  do_splice_direct+0x178/0x250
[  103.362974][ T7478]  ? __pfx_do_splice_direct+0x10/0x10
[  103.364824][ T7478]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  103.366915][ T7478]  ? bpf_lsm_file_permission+0x9/0x10
[  103.368773][ T7478]  ? security_file_permission+0x71/0x210
[  103.370731][ T7478]  do_sendfile+0xaed/0xe30
[  103.372316][ T7478]  ? __pfx_do_sendfile+0x10/0x10
[  103.374006][ T7478]  ? __fget_files+0x206/0x3a0
[  103.375673][ T7478]  __ia32_compat_sys_sendfile+0x1e7/0x230
[  103.377651][ T7478]  ? ksys_write+0x1ba/0x250
[  103.379248][ T7478]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  103.381399][ T7478]  __do_fast_syscall_32+0x73/0x120
[  103.383163][ T7478]  do_fast_syscall_32+0x32/0x80
[  103.384829][ T7478]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  103.386875][ T7478] RIP: 0023:0xf7fc3579
[  103.388223][ T7478] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  103.394054][ T7478] RSP: 002b:00000000f512557c EFLAGS: 00000292 ORIG_RAX: 00000000000000bb
[  103.396573][ T7478] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000008
[  103.398973][ T7478] RDX: 0000000000000000 RSI: 000000001d00c0d1 RDI: 0000000000000000
[  103.401256][ T7478] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  103.403136][ T7478] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  103.405050][ T7478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.407077][ T7478]  </TASK>
[  103.478901][ T7480] netlink: 180 bytes leftover after parsing attributes in process `syz.2.376'.
[  103.481985][ T7481] netlink: 180 bytes leftover after parsing attributes in process `syz.2.376'.
[  103.732065][ T7497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.382'.
[  103.743519][ T7497] netlink: 20 bytes leftover after parsing attributes in process `syz.2.382'.
[  103.753522][ T7497] netlink: 4 bytes leftover after parsing attributes in process `syz.2.382'.
[  104.506320][   T39] kauditd_printk_skb: 347 callbacks suppressed
[  104.506336][   T39] audit: type=1326 audit(1733649259.779:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  104.518876][   T39] audit: type=1326 audit(1733649259.789:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  104.529660][ T7517] FAULT_INJECTION: forcing a failure.
[  104.529660][ T7517] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  104.534681][ T7517] CPU: 1 UID: 0 PID: 7517 Comm: syz.3.386 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  104.538469][ T7517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.541803][ T7517] Call Trace:
[  104.542723][ T7517]  <TASK>
[  104.543516][ T7517]  dump_stack_lvl+0x16c/0x1f0
[  104.544830][ T7517]  should_fail_ex+0x497/0x5b0
[  104.546116][ T7517]  _copy_from_user+0x2e/0xd0
[  104.547361][ T7517]  bpf_prog_create_from_user+0x109/0x2d0
[  104.548846][ T7517]  ? __pfx_seccomp_check_filter+0x10/0x10
[  104.550562][ T7517]  do_seccomp+0x7b6/0x2640
[  104.551818][ T7517]  ? __fget_files+0x206/0x3a0
[  104.553176][ T7517]  ? __pfx_do_seccomp+0x10/0x10
[  104.554540][ T7517]  ? fput+0x67/0x440
[  104.555594][ T7517]  ? ksys_write+0x1ba/0x250
[  104.556845][ T7517]  ? __pfx_ksys_write+0x10/0x10
[  104.558183][ T7517]  __do_fast_syscall_32+0x73/0x120
[  104.559559][ T7517]  do_fast_syscall_32+0x32/0x80
[  104.560841][ T7517]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.562508][ T7517] RIP: 0023:0xf7fc3579
[  104.563585][ T7517] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  104.568684][ T7517] RSP: 002b:00000000f512557c EFLAGS: 00000292 ORIG_RAX: 0000000000000162
[  104.570877][ T7517] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000007
[  104.572975][ T7517] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[  104.574972][ T7517] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  104.577035][ T7517] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  104.579123][ T7517] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.581284][ T7517]  </TASK>
[  104.624243][  T183] Bluetooth: (null): Too short H5 packet
[  104.625839][  T183] Bluetooth: (null): Invalid header checksum
[  104.627484][  T183] Bluetooth: (null): Invalid header checksum
[  104.734858][ T1174] Bluetooth: (null): Invalid header checksum
[  104.844410][   T45] Bluetooth: (null): Invalid header checksum
[  104.968889][  T183] Bluetooth: (null): Invalid header checksum
[  105.074867][   T45] Bluetooth: (null): Invalid header checksum
[  105.232676][   T39] audit: type=1326 audit(1733649260.499:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  105.240526][   T39] audit: type=1326 audit(1733649260.499:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  105.247910][   T39] audit: type=1326 audit(1733649260.499:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  105.253561][   T39] audit: type=1326 audit(1733649260.499:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  105.259221][   T39] audit: type=1326 audit(1733649260.499:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  105.284162][   T39] audit: type=1326 audit(1733649260.499:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  105.289606][   T39] audit: type=1326 audit(1733649260.499:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  105.298990][   T39] audit: type=1326 audit(1733649260.499:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7509 comm="syz.1.384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  105.345298][ T7527] Cannot find add_set index 0 as target
[  106.284214][ T7551] sch_fq: defrate 0 ignored.
[  106.313922][ T1320] vhci_hcd: vhci_device speed not set
[  107.380470][ T7572] netlink: 4 bytes leftover after parsing attributes in process `syz.2.402'.
[  107.503370][ T7579] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  108.428375][ T7605] Bluetooth: hci4: Frame reassembly failed (-84)
[  108.452160][ T1174] Bluetooth: hci4: Frame reassembly failed (-84)
[  109.559298][ T7624] process 'syz.1.416' launched '/dev/fd/5' with NULL argv: empty string added
[  109.659084][ T7628] netlink: 'syz.1.417': attribute type 10 has an invalid length.
[  109.667086][ T7628] batman_adv: batadv0: Adding interface: team0
[  109.668770][ T7628] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.676062][ T7628] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  110.493969][ T5952] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  110.494107][ T5944] Bluetooth: hci3: command 0x0405 tx timeout
[  110.494153][   T65] Bluetooth: hci4: command 0x1003 tx timeout
[  110.561024][ T7642] netlink: 12 bytes leftover after parsing attributes in process `syz.0.422'.
[  111.387820][ T7664] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  111.960172][ T7670] Illegal XDP return value 4294967282 on prog  (id 150) dev N/A, expect packet loss!
[  112.006678][ T7670] overlay: ./file0 is not a directory
[  112.075385][ T7677] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  112.389171][ T7688] netlink: 'syz.3.430': attribute type 10 has an invalid length.
[  112.398406][ T7688] netlink: 55 bytes leftover after parsing attributes in process `syz.3.430'.
[  112.402206][ T7670] Process accounting resumed
[  112.514684][ T7695] team0: Unable to change to the same mode the team is in
[  113.580705][ T7735] netlink: 24 bytes leftover after parsing attributes in process `syz.0.437'.
[  113.583399][ T7735] netlink: 24 bytes leftover after parsing attributes in process `syz.0.437'.
[  113.664390][ T2297] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  113.835500][ T2297] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  113.839120][ T2297] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  113.841752][ T2297] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  113.844719][ T2297] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  113.847622][ T2297] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  113.852049][ T2297] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  113.854911][ T2297] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  113.857146][ T2297] usb 6-1: Product: syz
[  113.858331][ T2297] usb 6-1: Manufacturer: syz
[  113.865585][ T2297] cdc_wdm 6-1:1.0: skipping garbage
[  113.867198][ T2297] cdc_wdm 6-1:1.0: skipping garbage
[  113.871541][ T2297] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  113.873133][ T2297] cdc_wdm 6-1:1.0: Unknown control protocol
[  114.651802][   T39] kauditd_printk_skb: 59 callbacks suppressed
[  114.651813][   T39] audit: type=1326 audit(1733649269.919:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[  115.121647][ T7771] overlay: ./file0 is not a directory
[  115.132251][ T7771] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  115.192632][ T7775] netlink: 'syz.0.444': attribute type 10 has an invalid length.
[  115.194783][ T7775] netlink: 55 bytes leftover after parsing attributes in process `syz.0.444'.
[  115.218247][ T7771] Process accounting resumed
[  115.286076][   T39] audit: type=1326 audit(1733649270.559:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.441" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f72579 code=0x7fc00000
[  115.292709][   T39] audit: type=1326 audit(1733649270.559:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.441" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[  115.316869][ T7778] FAULT_INJECTION: forcing a failure.
[  115.316869][ T7778] name failslab, interval 1, probability 0, space 0, times 0
[  115.320847][ T7778] CPU: 3 UID: 0 PID: 7778 Comm: syz.3.446 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  115.323595][ T7778] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.326383][ T7778] Call Trace:
[  115.327275][ T7778]  <TASK>
[  115.328067][ T7778]  dump_stack_lvl+0x16c/0x1f0
[  115.329314][ T7778]  should_fail_ex+0x497/0x5b0
[  115.330553][ T7778]  ? fs_reclaim_acquire+0xae/0x150
[  115.331884][ T7778]  should_failslab+0xc2/0x120
[  115.333110][ T7778]  __kmalloc_cache_noprof+0x68/0x420
[  115.334438][ T7778]  ? _copy_from_user+0x59/0xd0
[  115.335697][ T7778]  copy_mount_options+0x55/0x190
[  115.336993][ T7778]  __ia32_sys_mount+0x1ad/0x310
[  115.338395][ T7778]  ? __pfx___ia32_sys_mount+0x10/0x10
[  115.339783][ T7778]  __do_fast_syscall_32+0x73/0x120
[  115.341104][ T7778]  do_fast_syscall_32+0x32/0x80
[  115.342371][ T7778]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.344003][ T7778] RIP: 0023:0xf7fc3579
[  115.345084][ T7778] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  115.350067][ T7778] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  115.352213][ T7778] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200006c0
[  115.354235][ T7778] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000020000200
[  115.356277][ T7778] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  115.358446][ T7778] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  115.360477][ T7778] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.362523][ T7778]  </TASK>
[  116.366510][ T2108] usb 6-1: USB disconnect, device number 4
[  116.713953][ T2297] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  116.844086][ T2297] usb 8-1: device descriptor read/64, error -71
[  117.083938][ T2297] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  117.223938][ T2297] usb 8-1: device descriptor read/64, error -71
[  117.334142][ T2297] usb usb8-port1: attempt power cycle
[  117.794012][ T2297] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  117.825062][ T2297] usb 8-1: device descriptor read/8, error -71
[  117.887560][ T7825] Bluetooth: hci4: Frame reassembly failed (-84)
[  117.891618][  T183] Bluetooth: hci4: Frame reassembly failed (-84)
[  117.894298][  T183] Bluetooth: hci4: Frame reassembly failed (-84)
[  118.098345][ T2297] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  118.115814][ T2297] usb 8-1: device descriptor read/8, error -71
[  118.234105][ T2297] usb usb8-port1: unable to enumerate USB device
[  118.724823][ T7848] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  118.728021][ T7848] netlink: 55 bytes leftover after parsing attributes in process `syz.0.464'.
[  119.006792][   T39] audit: type=1326 audit(1733649274.279:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.0.465" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  119.061139][ T7854] team0: Unable to change to the same mode the team is in
[  119.409634][ T7875] FAULT_INJECTION: forcing a failure.
[  119.409634][ T7875] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.413637][ T7875] CPU: 2 UID: 0 PID: 7875 Comm: syz.3.468 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  119.416996][ T7875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.419989][ T7875] Call Trace:
[  119.420873][ T7875]  <TASK>
[  119.421647][ T7875]  dump_stack_lvl+0x16c/0x1f0
[  119.422871][ T7875]  should_fail_ex+0x497/0x5b0
[  119.424128][ T7875]  strncpy_from_user+0x3b/0x2d0
[  119.425413][ T7875]  getname_flags.part.0+0x8f/0x550
[  119.426738][ T7875]  getname_flags+0x93/0xf0
[  119.427913][ T7875]  user_path_at+0x24/0x60
[  119.429050][ T7875]  __ia32_sys_mount+0x1fb/0x310
[  119.430327][ T7875]  ? __pfx___ia32_sys_mount+0x10/0x10
[  119.431724][ T7875]  __do_fast_syscall_32+0x73/0x120
[  119.433058][ T7875]  do_fast_syscall_32+0x32/0x80
[  119.434386][ T7875]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.436024][ T7875] RIP: 0023:0xf7fc3579
[  119.437092][ T7875] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.442002][ T7875] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  119.444169][ T7875] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200006c0
[  119.446214][ T7875] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000020000200
[  119.448265][ T7875] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.450317][ T7875] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  119.452353][ T7875] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.454508][ T7875]  </TASK>
[  119.521235][ T7877] kvm: MWAIT instruction emulated as NOP!
[  119.524104][ T7878] netlink: 20 bytes leftover after parsing attributes in process `syz.3.469'.
[  119.691797][   T39] audit: type=1326 audit(1733649274.959:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7850 comm="syz.0.465" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  119.924097][ T5952] Bluetooth: hci3: command 0x0405 tx timeout
[  119.925761][ T5952] Bluetooth: hci4: command 0x1003 tx timeout
[  119.927702][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  120.552317][ T7893] FAULT_INJECTION: forcing a failure.
[  120.552317][ T7893] name failslab, interval 1, probability 0, space 0, times 0
[  120.556157][ T7893] CPU: 3 UID: 0 PID: 7893 Comm: syz.1.474 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  120.558986][ T7893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.561721][ T7893] Call Trace:
[  120.562588][ T7893]  <TASK>
[  120.563342][ T7893]  dump_stack_lvl+0x16c/0x1f0
[  120.564546][ T7893]  should_fail_ex+0x497/0x5b0
[  120.565764][ T7893]  ? fs_reclaim_acquire+0xae/0x150
[  120.567113][ T7893]  should_failslab+0xc2/0x120
[  120.568333][ T7893]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[  120.569853][ T7893]  ? __get_vm_area_node+0x101/0x2f0
[  120.571184][ T7893]  __get_vm_area_node+0x101/0x2f0
[  120.572473][ T7893]  ? stack_trace_save+0x95/0xd0
[  120.573744][ T7893]  __vmalloc_node_range_noprof+0x26a/0x1530
[  120.575258][ T7893]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  120.576731][ T7893]  ? kasan_save_stack+0x33/0x60
[  120.577974][ T7893]  ? __kasan_kmalloc+0xaa/0xb0
[  120.579209][ T7893]  ? __do_fast_syscall_32+0x73/0x120
[  120.580573][ T7893]  ? do_fast_syscall_32+0x32/0x80
[  120.581868][ T7893]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  120.583254][ T7893]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  120.584852][ T7893]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  120.586248][ T7893]  __vmalloc_noprof+0x6d/0x90
[  120.587457][ T7893]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  120.588853][ T7893]  bpf_prog_alloc_no_stats+0x54/0x630
[  120.590243][ T7893]  bpf_prog_alloc+0x3b/0x230
[  120.591442][ T7893]  bpf_prog_create_from_user+0xb4/0x2d0
[  120.592855][ T7893]  ? __pfx_seccomp_check_filter+0x10/0x10
[  120.594317][ T7893]  do_seccomp+0x7b6/0x2640
[  120.595460][ T7893]  ? __pfx___seccomp_filter+0x10/0x10
[  120.596842][ T7893]  ? __pfx_do_seccomp+0x10/0x10
[  120.598074][ T7893]  ? fput+0x67/0x440
[  120.598967][ T7893]  ? ksys_write+0x1ba/0x250
[  120.600016][ T7893]  ? __secure_computing+0x273/0x3f0
[  120.601368][ T7893]  __do_fast_syscall_32+0x73/0x120
[  120.602686][ T7893]  do_fast_syscall_32+0x32/0x80
[  120.603942][ T7893]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.605563][ T7893] RIP: 0023:0xf7ff0579
[  120.606611][ T7893] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.611351][ T7893] RSP: 002b:00000000f517657c EFLAGS: 00000292 ORIG_RAX: 0000000000000162
[  120.613450][ T7893] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000007
[  120.615511][ T7893] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[  120.617968][ T7893] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.620480][ T7893] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.622971][ T7893] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.625511][ T7893]  </TASK>
[  120.628934][ T7893] syz.1.474: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  120.644280][ T7893] CPU: 3 UID: 0 PID: 7893 Comm: syz.1.474 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  120.647611][ T7893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.650914][ T7893] Call Trace:
[  120.651997][ T7893]  <TASK>
[  120.652945][ T7893]  dump_stack_lvl+0x16c/0x1f0
[  120.654447][ T7893]  warn_alloc+0x24d/0x3a0
[  120.656029][ T7893]  ? __pfx_warn_alloc+0x10/0x10
[  120.657642][ T7893]  ? rcu_is_watching+0x12/0xc0
[  120.659211][ T7893]  ? __kmalloc_cache_node_noprof+0x245/0x3f0
[  120.661158][ T7893]  ? __kasan_kmalloc+0x8a/0xb0
[  120.662719][ T7893]  ? __get_vm_area_node+0x1dc/0x2f0
[  120.664395][ T7893]  __vmalloc_node_range_noprof+0xd27/0x1530
[  120.666310][ T7893]  ? kasan_save_stack+0x33/0x60
[  120.667814][ T7893]  ? __kasan_kmalloc+0xaa/0xb0
[  120.669320][ T7893]  ? __do_fast_syscall_32+0x73/0x120
[  120.670976][ T7893]  ? do_fast_syscall_32+0x32/0x80
[  120.671509][ T7895] netlink: 84 bytes leftover after parsing attributes in process `syz.3.475'.
[  120.672546][ T7893]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  120.676380][ T7893]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  120.676572][ T7895] 9pnet_fd: Insufficient options for proto=fd
[  120.678022][ T7893]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  120.681029][ T7893]  __vmalloc_noprof+0x6d/0x90
[  120.682255][ T7893]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  120.683704][ T7893]  bpf_prog_alloc_no_stats+0x54/0x630
[  120.685103][ T7893]  bpf_prog_alloc+0x3b/0x230
[  120.686298][ T7893]  bpf_prog_create_from_user+0xb4/0x2d0
[  120.687739][ T7893]  ? __pfx_seccomp_check_filter+0x10/0x10
[  120.689228][ T7893]  do_seccomp+0x7b6/0x2640
[  120.690380][ T7893]  ? __pfx___seccomp_filter+0x10/0x10
[  120.691785][ T7893]  ? __pfx_do_seccomp+0x10/0x10
[  120.693055][ T7893]  ? fput+0x67/0x440
[  120.694092][ T7893]  ? ksys_write+0x1ba/0x250
[  120.695302][ T7893]  ? __secure_computing+0x273/0x3f0
[  120.696667][ T7893]  __do_fast_syscall_32+0x73/0x120
[  120.697995][ T7893]  do_fast_syscall_32+0x32/0x80
[  120.699252][ T7893]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.700881][ T7893] RIP: 0023:0xf7ff0579
[  120.701941][ T7893] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.707154][ T7893] RSP: 002b:00000000f517657c EFLAGS: 00000292 ORIG_RAX: 0000000000000162
[  120.709436][ T7893] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000007
[  120.711434][ T7893] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[  120.713488][ T7893] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.715546][ T7893] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.717591][ T7893] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.719639][ T7893]  </TASK>
[  120.721045][ T7893] Mem-Info:
[  120.722610][ T7893] active_anon:10593 inactive_anon:284 isolated_anon:0
[  120.722610][ T7893]  active_file:4920 inactive_file:27063 isolated_file:0
[  120.722610][ T7893]  unevictable:1768 dirty:664 writeback:0
[  120.722610][ T7893]  slab_reclaimable:7158 slab_unreclaimable:56946
[  120.722610][ T7893]  mapped:27245 shmem:7349 pagetables:774
[  120.722610][ T7893]  sec_pagetables:306 bounce:0
[  120.722610][ T7893]  kernel_misc_reclaimable:0
[  120.722610][ T7893]  free:58319 free_pcp:2024 free_cma:0
[  120.734864][ T7893] Node 0 active_anon:5016kB inactive_anon:1132kB active_file:756kB inactive_file:7920kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4984kB dirty:100kB writeback:0kB shmem:5264kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9728kB pagetables:688kB sec_pagetables:1156kB all_unreclaimable? yes
[  120.742963][ T7893] Node 1 active_anon:37356kB inactive_anon:4kB active_file:18924kB inactive_file:100332kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:103996kB dirty:2556kB writeback:0kB shmem:24132kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2480kB pagetables:2408kB sec_pagetables:68kB all_unreclaimable? no
[  120.751667][ T7893] Node 0 DMA free:2936kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:132kB inactive_anon:96kB active_file:0kB inactive_file:204kB unevictable:0kB writepending:60kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:468kB local_pcp:120kB free_cma:0kB
[  120.759760][ T7893] lowmem_reserve[]: 0 273 0 0 0
[  120.761814][ T7893] Node 0 DMA32 free:17504kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:4884kB inactive_anon:1036kB active_file:756kB inactive_file:7716kB unevictable:3536kB writepending:40kB present:1032196kB managed:306332kB mlocked:0kB bounce:0kB free_pcp:1476kB local_pcp:220kB free_cma:0kB
[  120.762712][ T7898] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.769621][ T7893] lowmem_reserve[]: 0 0 0 0 0
[  120.769646][ T7893] Node 1 DMA32 free:212380kB boost:2048kB min:49192kB low:60976kB high:72760kB reserved_highatomic:0KB active_anon:37356kB inactive_anon:4kB active_file:18924kB inactive_file:100332kB unevictable:3536kB writepending:2556kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:6760kB local_pcp:1488kB free_cma:0kB
[  120.769673][ T7893] lowmem_reserve[]: 0 0 0 0 0
[  120.769693][ T7893] Node 0 DMA: 26*4kB (U) 52*8kB (U) 31*16kB (UM) 28*32kB (UM) 6*64kB (UM) 3*128kB (UM) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2936kB
[  120.769768][ T7893] Node 0 DMA32: 107*4kB (UMH) 61*8kB (UMEH) 16*16kB (UME) 74*32kB (UMEH) 61*64kB (UMEH) 22*128kB (UME) 12*256kB (UME) 4*512kB (UME) 2*1024kB (UM) 0*2048kB 0*4096kB = 17428kB
[  120.794410][ T7893] Node 1 DMA32: 6*4kB (E) 123*8kB (UME) 62*16kB (UME) 219*32kB (UME) 236*64kB (UME) 55*128kB (UME) 15*256kB (UME) 8*512kB (ME) 9*1024kB (UME) 8*2048kB (UME) 36*4096kB (UME) = 212144kB
[  120.798653][ T7893] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  120.800963][ T7893] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  120.803376][ T7893] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  120.806306][ T7893] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  120.808751][ T7893] 39335 total pagecache pages
[  120.810057][ T7893] 0 pages in swap cache
[  120.811254][ T7893] Free swap  = 124440kB
[  120.812362][ T7893] Total swap = 124996kB
[  120.813480][ T7893] 524155 pages RAM
[  120.814994][ T7893] 0 pages HighMem/MovableOnly
[  120.816293][ T7893] 206669 pages reserved
[  120.817409][ T7893] 0 pages cma reserved
[  120.855670][ T7898] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.929556][ T7898] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.996273][ T7898] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.058131][ T7898] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  121.063935][ T7898] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  121.069505][ T7898] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  121.076547][ T7898] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  121.094825][ T2108] usb 6-1: new low-speed USB device number 5 using dummy_hcd
[  121.254001][ T2108] usb 6-1: Invalid ep0 maxpacket: 32
[  121.394060][ T2108] usb 6-1: new low-speed USB device number 6 using dummy_hcd
[  121.553946][ T2108] usb 6-1: Invalid ep0 maxpacket: 32
[  121.555737][ T2108] usb usb6-port1: attempt power cycle
[  121.893969][ T2108] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[  121.896123][ T7927] fuse: Unknown parameter 'subj_user'
[  121.914879][ T2108] usb 6-1: Invalid ep0 maxpacket: 32
[  122.043974][ T2108] usb 6-1: new low-speed USB device number 8 using dummy_hcd
[  122.064607][ T2108] usb 6-1: Invalid ep0 maxpacket: 32
[  122.067141][ T2108] usb usb6-port1: unable to enumerate USB device
[  122.992169][   T39] audit: type=1326 audit(1733649278.259:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.291960][ T7958] xt_hashlimit: invalid rate
[  123.607320][   T39] audit: type=1326 audit(1733649278.879:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.615476][   T39] audit: type=1326 audit(1733649278.879:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.621881][   T39] audit: type=1326 audit(1733649278.879:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.629343][   T39] audit: type=1326 audit(1733649278.879:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.634874][   T39] audit: type=1326 audit(1733649278.879:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.640336][   T39] audit: type=1326 audit(1733649278.879:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.645806][   T39] audit: type=1326 audit(1733649278.879:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.651215][   T39] audit: type=1326 audit(1733649278.879:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.3.486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  123.673324][ T7970] netlink: 1268 bytes leftover after parsing attributes in process `syz.3.491'.
[  123.676369][ T7970] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  123.787492][ T7977] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.791126][ T7977] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  123.857008][ T7977] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.860458][ T7977] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  123.939950][ T7977] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.943436][ T7977] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  124.038433][ T7977] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.041871][ T7977] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  124.145441][ T7977] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  124.148520][ T7977] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  124.158304][ T7977] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  124.161253][ T7977] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  124.167967][ T7977] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  124.170066][ T7977] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  124.175268][ T7977] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  124.178123][ T7977] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  124.337110][ T7994] netlink: 12 bytes leftover after parsing attributes in process `syz.0.498'.
[  124.365052][ T7996] FAULT_INJECTION: forcing a failure.
[  124.365052][ T7996] name failslab, interval 1, probability 0, space 0, times 0
[  124.368536][ T7996] CPU: 1 UID: 0 PID: 7996 Comm: syz.2.496 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  124.368554][ T7996] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.368561][ T7996] Call Trace:
[  124.368565][ T7996]  <TASK>
[  124.368570][ T7996]  dump_stack_lvl+0x16c/0x1f0
[  124.368587][ T7996]  should_fail_ex+0x497/0x5b0
[  124.371930][ T7992] 9pnet_fd: Insufficient options for proto=fd
[  124.374127][ T7996]  should_failslab+0xc2/0x120
[  124.374147][ T7996]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  124.374162][ T7996]  ? skb_clone+0x190/0x3f0
[  124.374182][ T7996]  skb_clone+0x190/0x3f0
[  124.374198][ T7996]  netlink_deliver_tap+0xafd/0xca0
[  124.374212][ T7996]  netlink_unicast+0x6b4/0x7f0
[  124.374226][ T7996]  ? __pfx_netlink_unicast+0x10/0x10
[  124.388617][ T7996]  nl_fib_input+0x2aa/0x350
[  124.389796][ T7996]  netlink_unicast+0x53c/0x7f0
[  124.391071][ T7996]  ? __pfx_netlink_unicast+0x10/0x10
[  124.392450][ T7996]  ? __phys_addr_symbol+0x30/0x80
[  124.393767][ T7996]  ? __check_object_size+0x488/0x710
[  124.395145][ T7996]  netlink_sendmsg+0x8b8/0xd70
[  124.396405][ T7996]  ? __pfx_netlink_sendmsg+0x10/0x10
[  124.397786][ T7996]  ? stack_trace_save+0x95/0xd0
[  124.399060][ T7996]  ? stack_depot_save_flags+0x28/0x900
[  124.400488][ T7996]  sock_sendmsg+0x369/0x410
[  124.401684][ T7996]  ? __kasan_slab_free+0x51/0x70
[  124.402998][ T7996]  ? __pfx_sock_sendmsg+0x10/0x10
[  124.404724][ T7996]  ? splice_direct_to_actor+0x2a4/0xa40
[  124.406183][ T7996]  splice_to_socket+0xaac/0x1040
[  124.407503][ T7996]  ? __pfx_splice_to_socket+0x10/0x10
[  124.408929][ T7996]  ? kasan_quarantine_put+0x10a/0x240
[  124.410358][ T7996]  ? __pfx_splice_to_socket+0x10/0x10
[  124.411760][ T7996]  direct_splice_actor+0x18f/0x6c0
[  124.413123][ T7996]  splice_direct_to_actor+0x346/0xa40
[  124.414537][ T7996]  ? __pfx_direct_splice_actor+0x10/0x10
[  124.415927][ T7996]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  124.417367][ T7996]  ? __fget_files+0x1fc/0x3a0
[  124.418524][ T7996]  do_splice_direct+0x178/0x250
[  124.419698][ T7996]  ? __pfx_do_splice_direct+0x10/0x10
[  124.421088][ T7996]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  124.422639][ T7996]  ? bpf_lsm_file_permission+0x9/0x10
[  124.424055][ T7996]  ? security_file_permission+0x71/0x210
[  124.425457][ T7996]  do_sendfile+0xaed/0xe30
[  124.426561][ T7996]  ? __pfx_do_sendfile+0x10/0x10
[  124.427821][ T7996]  ? __fget_files+0x206/0x3a0
[  124.429030][ T7996]  __ia32_compat_sys_sendfile+0x1e7/0x230
[  124.430490][ T7996]  ? ksys_write+0x1ba/0x250
[  124.431660][ T7996]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  124.433260][ T7996]  __do_fast_syscall_32+0x73/0x120
[  124.434596][ T7996]  do_fast_syscall_32+0x32/0x80
[  124.435822][ T7996]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  124.437354][ T7996] RIP: 0023:0xf7f72579
[  124.438387][ T7996] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  124.443128][ T7996] RSP: 002b:00000000f50d557c EFLAGS: 00000292 ORIG_RAX: 00000000000000bb
[  124.445155][ T7996] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000008
[  124.447032][ T7996] RDX: 0000000000000000 RSI: 000000001d00c0d1 RDI: 0000000000000000
[  124.448995][ T7996] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  124.450996][ T7996] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  124.452942][ T7996] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  124.454871][ T7996]  </TASK>
[  124.473817][ T7994] netlink: 4 bytes leftover after parsing attributes in process `syz.0.498'.
[  124.712135][   T39] kauditd_printk_skb: 13 callbacks suppressed
[  124.712147][   T39] audit: type=1326 audit(1733649279.979:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  125.414120][   T39] audit: type=1326 audit(1733649280.679:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  126.280407][ T8060] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  126.282155][ T8060] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  126.286838][ T8060] vhci_hcd vhci_hcd.0: Device attached
[  126.464017][   T30] vhci_hcd: vhci_device speed not set
[  126.523972][   T30] usb 37-1: new full-speed USB device number 5 using vhci_hcd
[  127.138930][ T8077] netlink: 28 bytes leftover after parsing attributes in process `syz.3.512'.
[  127.154086][ T8060] fuse: Unknown parameter ''
[  127.192603][ T8081] FAULT_INJECTION: forcing a failure.
[  127.192603][ T8081] name failslab, interval 1, probability 0, space 0, times 0
[  127.198840][ T8081] CPU: 0 UID: 0 PID: 8081 Comm: syz.1.513 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  127.201546][ T8081] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.204255][ T8081] Call Trace:
[  127.205114][ T8081]  <TASK>
[  127.206120][ T8081]  dump_stack_lvl+0x16c/0x1f0
[  127.208004][ T8081]  should_fail_ex+0x497/0x5b0
[  127.209657][ T8081]  ? fs_reclaim_acquire+0xae/0x150
[  127.211922][ T8081]  should_failslab+0xc2/0x120
[  127.213693][ T8081]  __kmalloc_cache_noprof+0x68/0x420
[  127.215580][ T8081]  v9fs_mount+0xa7/0xa30
[  127.217123][ T8081]  ? __pfx_v9fs_mount+0x10/0x10
[  127.218908][ T8081]  ? __pfx_v9fs_mount+0x10/0x10
[  127.220681][ T8081]  legacy_get_tree+0x109/0x220
[  127.221924][ T8081]  vfs_get_tree+0x8f/0x380
[  127.223066][ T8081]  path_mount+0x6e1/0x1f10
[  127.224265][ T8081]  ? kmem_cache_free+0x152/0x4c0
[  127.225557][ T8081]  ? __pfx_path_mount+0x10/0x10
[  127.226816][ T8081]  ? putname+0x13c/0x180
[  127.227930][ T8081]  __ia32_sys_mount+0x292/0x310
[  127.229181][ T8081]  ? __pfx___ia32_sys_mount+0x10/0x10
[  127.230522][ T8081]  __do_fast_syscall_32+0x73/0x120
[  127.231843][ T8081]  do_fast_syscall_32+0x32/0x80
[  127.233108][ T8081]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.234748][ T8081] RIP: 0023:0xf7ff0579
[  127.235801][ T8081] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  127.240596][ T8081] RSP: 002b:00000000f517657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  127.242729][ T8081] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200006c0
[  127.244716][ T8081] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000020000200
[  127.246730][ T8081] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.248755][ T8081] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  127.250827][ T8081] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.252947][ T8081]  </TASK>
[  127.356152][ T8085] netlink: 'syz.1.514': attribute type 10 has an invalid length.
[  127.358974][ T8085] netlink: 55 bytes leftover after parsing attributes in process `syz.1.514'.
[  127.664687][ T8062] vhci_hcd: connection reset by peer
[  127.678457][ T1138] vhci_hcd: stop threads
[  127.679687][ T1138] vhci_hcd: release socket
[  127.686050][ T1138] vhci_hcd: disconnect device
[  127.955869][   T39] audit: type=1326 audit(1733649283.229:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.3.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7ffc0000
[  127.961852][   T39] audit: type=1326 audit(1733649283.229:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.3.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7ffc0000
[  127.968146][   T39] audit: type=1326 audit(1733649283.229:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.3.520" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7fc3579 code=0x7ffc0000
[  127.974418][   T39] audit: type=1326 audit(1733649283.229:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.3.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7ffc0000
[  127.983550][   T39] audit: type=1326 audit(1733649283.229:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.3.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7ffc0000
[  127.989268][   T39] audit: type=1326 audit(1733649283.239:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.3.520" exe="/syz-executor" sig=0 arch=40000003 syscall=300 compat=1 ip=0xf7fc3579 code=0x7ffc0000
[  127.995644][   T39] audit: type=1326 audit(1733649283.239:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.3.520" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc3579 code=0x7ffc0000
[  128.001313][   T39] audit: type=1326 audit(1733649283.239:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.3.520" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fc3579 code=0x7ffc0000
[  128.176391][    T9] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  128.322040][ T8109] FAULT_INJECTION: forcing a failure.
[  128.322040][ T8109] name failslab, interval 1, probability 0, space 0, times 0
[  128.326065][ T8109] CPU: 2 UID: 0 PID: 8109 Comm: syz.3.522 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  128.328966][ T8109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.331832][ T8109] Call Trace:
[  128.332727][ T8109]  <TASK>
[  128.333549][ T8109]  dump_stack_lvl+0x16c/0x1f0
[  128.334801][ T8109]  should_fail_ex+0x497/0x5b0
[  128.336073][ T8109]  ? fs_reclaim_acquire+0xae/0x150
[  128.337541][ T8109]  should_failslab+0xc2/0x120
[  128.338787][ T8109]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  128.340442][ T8109]  ? kasan_save_track+0x14/0x30
[  128.341712][ T8109]  ? __kasan_kmalloc+0xaa/0xb0
[  128.342969][ T8109]  ? v9fs_mount+0xa7/0xa30
[  128.344150][ T8109]  ? v9fs_session_init+0xb4/0x1a80
[  128.345525][ T8109]  ? __ia32_sys_mount+0x292/0x310
[  128.346409][    T9] usb 5-1: config 0 has an invalid interface number: 133 but max is 0
[  128.346869][ T8109]  kstrdup+0x42/0xb0
[  128.346884][ T8109]  v9fs_session_init+0xb4/0x1a80
[  128.349223][    T9] usb 5-1: config 0 has no interface number 0
[  128.350035][ T8109]  ? __pfx_v9fs_session_init+0x10/0x10
[  128.350060][ T8109]  ? kasan_save_track+0x14/0x30
[  128.350074][ T8109]  v9fs_mount+0xc6/0xa30
[  128.351488][    T9] usb 5-1: config 0 interface 133 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  128.352905][ T8109]  ? __pfx_v9fs_mount+0x10/0x10
[  128.352922][ T8109]  ? __pfx_v9fs_mount+0x10/0x10
[  128.352933][ T8109]  legacy_get_tree+0x109/0x220
[  128.360158][    T9] usb 5-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[  128.360488][ T8109]  vfs_get_tree+0x8f/0x380
[  128.360504][ T8109]  path_mount+0x6e1/0x1f10
[  128.360518][ T8109]  ? kmem_cache_free+0x152/0x4c0
[  128.361848][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.363032][ T8109]  ? __pfx_path_mount+0x10/0x10
[  128.363051][ T8109]  ? putname+0x13c/0x180
[  128.363067][ T8109]  __ia32_sys_mount+0x292/0x310
[  128.363080][ T8109]  ? __pfx___ia32_sys_mount+0x10/0x10
[  128.363097][ T8109]  __do_fast_syscall_32+0x73/0x120
[  128.363112][ T8109]  do_fast_syscall_32+0x32/0x80
[  128.363125][ T8109]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  128.367276][    T9] usb 5-1: Product: syz
[  128.367801][ T8109] RIP: 0023:0xf7fc3579
[  128.367813][ T8109] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  128.367824][ T8109] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  128.367835][ T8109] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200006c0
[  128.367842][ T8109] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000020000200
[  128.367848][ T8109] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  128.367855][ T8109] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  128.367861][ T8109] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  128.367873][ T8109]  </TASK>
[  128.400785][    T9] usb 5-1: Manufacturer: syz
[  128.402108][    T9] usb 5-1: SerialNumber: syz
[  128.406058][    T9] usb 5-1: config 0 descriptor??
[  128.615998][ T8101] netlink: 'syz.0.519': attribute type 39 has an invalid length.
[  128.678580][ T8121] openvswitch: netlink: Key type 35 is out of range max 32
[  128.785746][    T9] keyspan 5-1:0.133: Keyspan 1 port adapter converter detected
[  128.787774][    T9] keyspan 5-1:0.133: unsupported endpoint type 0
[  128.800441][    T9] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 81
[  128.805321][    T9] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 1
[  128.807580][    T9] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 2
[  128.816960][    T9] usb 5-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  128.832263][    T9] usb 5-1: USB disconnect, device number 2
[  128.837252][    T9] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  128.846522][    T9] keyspan 5-1:0.133: device disconnected
[  129.340837][ T8142] 9pnet_fd: Insufficient options for proto=fd
[  131.471467][ T8199] sctp: [Deprecated]: syz.1.544 (pid 8199) Use of int in max_burst socket option.
[  131.471467][ T8199] Use struct sctp_assoc_value instead
[  131.690463][   T30] vhci_hcd: vhci_device speed not set
[  131.877251][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  131.877262][   T39] audit: type=1804 audit(1733649287.149:527): pid=8220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.550" name="/newroot/126/bus/bus" dev="overlay" ino=726 res=1 errno=0
[  131.879014][ T8220] Invalid ELF header magic: != ELF
[  132.088235][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  132.089930][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  132.101009][ T8238] 9pnet_fd: Insufficient options for proto=fd
[  132.761674][ T8253] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  132.763980][ T8253] IPv6: NLM_F_CREATE should be set when creating new route
[  132.765868][ T8253] IPv6: NLM_F_CREATE should be set when creating new route
[  132.784685][ T5944] Bluetooth: hci1: unexpected event for opcode 0x043d
[  135.108914][ T8299] sctp: [Deprecated]: syz.0.574 (pid 8299) Use of int in max_burst socket option.
[  135.108914][ T8299] Use struct sctp_assoc_value instead
[  135.567891][ T8309] 9pnet_fd: Insufficient options for proto=fd
[  135.980644][ T8315] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  136.453980][ T6000] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  136.477230][ T8320] delete_channel: no stack
[  136.532776][ T8330] FAULT_INJECTION: forcing a failure.
[  136.532776][ T8330] name failslab, interval 1, probability 0, space 0, times 0
[  136.536117][ T8330] CPU: 3 UID: 0 PID: 8330 Comm: syz.1.584 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  136.538870][ T8330] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.541654][ T8330] Call Trace:
[  136.542540][ T8330]  <TASK>
[  136.543320][ T8330]  dump_stack_lvl+0x16c/0x1f0
[  136.544600][ T8330]  should_fail_ex+0x497/0x5b0
[  136.545819][ T8330]  ? fs_reclaim_acquire+0xae/0x150
[  136.547144][ T8330]  should_failslab+0xc2/0x120
[  136.548312][ T8330]  __kmalloc_cache_noprof+0x68/0x420
[  136.548477][   T39] audit: type=1326 audit(1733649291.819:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.0.585" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  136.549631][ T8330]  ? __pfx___debug_object_init+0x10/0x10
[  136.557412][ T8330]  ? __pfx_lock_release+0x10/0x10
[  136.558732][ T8330]  vcs_poll_data_get.part.0+0x43/0x270
[  136.559824][   T39] audit: type=1326 audit(1733649291.819:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.0.585" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  136.560139][ T8330]  vcs_poll+0x11d/0x150
[  136.560153][ T8330]  ? __pfx_vcs_poll+0x10/0x10
[  136.569287][ T8330]  p9_fd_poll+0x10e/0x2c0
[  136.570444][ T8330]  p9_conn_create+0x3cd/0x550
[  136.571683][ T8330]  p9_fd_create+0x323/0x490
[  136.572903][ T8330]  ? __pfx_p9_fd_create+0x10/0x10
[  136.574260][ T8330]  ? p9_client_create+0x776/0x11a0
[  136.575607][ T8330]  p9_client_create+0x7dd/0x11a0
[  136.577374][ T8330]  ? __pfx_p9_client_create+0x10/0x10
[  136.578848][ T8330]  ? rcu_is_watching+0x12/0xc0
[  136.580108][ T8330]  ? __raw_spin_lock_init+0x3a/0x110
[  136.581518][ T8330]  v9fs_session_init+0x1f8/0x1a80
[  136.582877][ T8330]  ? __pfx_v9fs_session_init+0x10/0x10
[  136.583374][   T39] audit: type=1326 audit(1733649291.819:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.0.585" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  136.584300][ T8330]  ? kasan_save_track+0x14/0x30
[  136.584318][ T8330]  v9fs_mount+0xc6/0xa30
[  136.584328][ T8330]  ? __pfx_v9fs_mount+0x10/0x10
[  136.584341][ T8330]  ? __pfx_v9fs_mount+0x10/0x10
[  136.584352][ T8330]  legacy_get_tree+0x109/0x220
[  136.589831][   T39] audit: type=1326 audit(1733649291.819:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.0.585" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  136.590904][ T8330]  vfs_get_tree+0x8f/0x380
[  136.590921][ T8330]  path_mount+0x6e1/0x1f10
[  136.590934][ T8330]  ? kmem_cache_free+0x152/0x4c0
[  136.590948][ T8330]  ? __pfx_path_mount+0x10/0x10
[  136.590962][ T8330]  ? putname+0x13c/0x180
[  136.590977][ T8330]  __ia32_sys_mount+0x292/0x310
[  136.590991][ T8330]  ? __pfx___ia32_sys_mount+0x10/0x10
[  136.592218][   T39] audit: type=1326 audit(1733649291.819:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.0.585" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  136.593377][ T8330]  __do_fast_syscall_32+0x73/0x120
[  136.593396][ T8330]  do_fast_syscall_32+0x32/0x80
[  136.593410][ T8330]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  136.593426][ T8330] RIP: 0023:0xf7ff0579
[  136.593437][ T8330] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  136.594936][   T39] audit: type=1326 audit(1733649291.819:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.0.585" exe="/syz-executor" sig=0 arch=40000003 syscall=183 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  136.595988][ T8330] RSP: 002b:00000000f517657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  136.596002][ T8330] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200006c0
[  136.596009][ T8330] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000020000200
[  136.596016][ T8330] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  136.601591][   T39] audit: type=1326 audit(1733649291.819:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.0.585" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  136.602605][ T8330] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  136.602618][ T8330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  136.602641][ T8330]  </TASK>
[  136.617356][ T6000] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  136.618152][   T39] audit: type=1326 audit(1733649291.819:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8331 comm="syz.0.585" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  136.618964][ T6000] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.683039][ T6000] usb 7-1: Product: syz
[  136.683360][    T9] IPVS: starting estimator thread 0...
[  136.684258][ T6000] usb 7-1: Manufacturer: syz
[  136.686970][ T6000] usb 7-1: SerialNumber: syz
[  136.690780][ T6000] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  136.717406][ T2108] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  136.753668][ T8340] tipc: Started in network mode
[  136.755264][ T8340] tipc: Node identity ac1414aa, cluster identity 4711
[  136.758665][ T8340] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  136.761266][ T8340] tipc: Enabled bearer <udp:s>, priority 10
[  136.774083][ T8339] IPVS: using max 37 ests per chain, 88800 per kthread
[  136.895138][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  136.922413][    T9] usb 7-1: USB disconnect, device number 5
[  136.992818][   T39] audit: type=1326 audit(1733649292.259:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.027126][ T8344] team0: Unable to change to the same mode the team is in
[  137.034001][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  137.173983][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  137.313973][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  137.325348][ T8354] fuse: Bad value for 'user_id'
[  137.326650][ T8354] fuse: Bad value for 'user_id'
[  137.453901][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  137.568042][ T8367] fuse: Bad value for 'fd'
[  137.593934][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  137.654993][   T39] audit: type=1326 audit(1733649292.919:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.660758][   T39] audit: type=1326 audit(1733649292.919:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.668191][   T39] audit: type=1326 audit(1733649292.919:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.674119][   T39] audit: type=1326 audit(1733649292.919:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.679757][   T39] audit: type=1326 audit(1733649292.919:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.685644][   T39] audit: type=1326 audit(1733649292.919:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.691269][   T39] audit: type=1326 audit(1733649292.919:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.697651][   T39] audit: type=1326 audit(1733649292.919:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.703183][   T39] audit: type=1326 audit(1733649292.919:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8342 comm="syz.0.588" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  137.733976][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  137.765340][ T2108] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  137.767539][ T2108] ath9k_htc: Failed to initialize the device
[  137.770772][    T9] usb 7-1: ath9k_htc: USB layer deinitialized
[  137.876823][   T73] tipc: Node number set to 2886997162
[  137.987813][ T8378] team0: Unable to change to the same mode the team is in
[  138.013973][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  138.283970][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  138.649265][ T8394] =======================================================
[  138.649265][ T8394] WARNING: The mand mount option has been deprecated and
[  138.649265][ T8394]          and is ignored by this kernel. Remove the mand
[  138.649265][ T8394]          option from the mount to silence this warning.
[  138.649265][ T8394] =======================================================
[  138.742072][ T8403] IPv6: syztnl0: Disabled Multicast RS
[  138.760585][ T8405] random: crng reseeded on system resumption
[  138.777607][ T8405] syzkaller1: entered promiscuous mode
[  138.779525][ T8405] syzkaller1: entered allmulticast mode
[  138.987389][ T8413] 9pnet_fd: Insufficient options for proto=fd
[  139.028189][ T8415] vivid-007: disconnect
[  139.173389][ T8417] 9pnet_virtio: no channels available for device syz
[  139.905025][ T8410] vivid-007: reconnect
[  140.904603][    T9] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  141.034144][    T9] usb 8-1: device descriptor read/64, error -71
[  141.294156][    T9] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  141.423992][    T9] usb 8-1: device descriptor read/64, error -71
[  141.487575][ T8394] syz.0.596 (8394) used greatest stack depth: 20320 bytes left
[  141.535422][    T9] usb usb8-port1: attempt power cycle
[  141.933933][    C3] net_ratelimit: 3 callbacks suppressed
[  141.933950][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  142.286078][    T9] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  142.305859][    T9] usb 8-1: device descriptor read/8, error -71
[  142.574990][ T8458] input: syz0 as /devices/virtual/input/input11
[  142.644485][    T9] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  142.683704][    T9] usb 8-1: device descriptor read/8, error -71
[  142.797108][    T9] usb usb8-port1: unable to enumerate USB device
[  142.963938][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  143.626257][ T8477] netlink: 48 bytes leftover after parsing attributes in process `syz.3.619'.
[  143.906081][ T8489] 9pnet_fd: Insufficient options for proto=fd
[  144.003950][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  144.058803][ T8500] mkiss: ax0: crc mode is auto.
[  144.063270][ T8500] netlink: 'syz.0.624': attribute type 7 has an invalid length.
[  144.128455][ T8502] batman_adv: batadv0: Removing interface: team0
[  144.131858][ T8502] bridge_slave_0: left allmulticast mode
[  144.133358][ T8502] bridge_slave_0: left promiscuous mode
[  144.135848][ T8502] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.140029][ T8502] bridge_slave_1: left allmulticast mode
[  144.142005][ T8502] bridge_slave_1: left promiscuous mode
[  144.144890][ T8502] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.150346][ T8502] bond0: (slave bond_slave_0): Releasing backup interface
[  144.158300][ T8502] bond0: (slave bond_slave_1): Releasing backup interface
[  144.181546][ T8502] team0: Port device team_slave_0 removed
[  144.194807][ T8502] team0: Port device team_slave_1 removed
[  144.196549][ T8502] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  144.198701][ T8502] batman_adv: batadv0: Removing interface: batadv_slave_0
[  144.213714][ T8502] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  144.220866][ T8502] batman_adv: batadv0: Removing interface: batadv_slave_1
[  144.266175][   T73] ip6_tnl_xmit_ctl: 5 callbacks suppressed
[  144.266187][   T73] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  144.368261][   T39] kauditd_printk_skb: 152 callbacks suppressed
[  144.368273][   T39] audit: type=1326 audit(1733649299.639:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.1.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  144.464320][ T5944] block nbd2: Receive control failed (result -104)
[  144.468641][ T8480] block nbd2: shutting down sockets
[  144.517252][ T8502] team0: Mode changed to "loadbalance"
[  144.596031][ T8537] overlay: ./file1 is not a directory
[  144.643041][ T8538] 9pnet_fd: Insufficient options for proto=fd
[  144.904067][   T73] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  144.967319][   T39] audit: type=1326 audit(1733649300.239:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.1.625" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  144.972928][   T39] audit: type=1326 audit(1733649300.239:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.1.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  144.978634][   T39] audit: type=1326 audit(1733649300.239:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.1.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  144.985772][   T39] audit: type=1326 audit(1733649300.239:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.1.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  145.002141][   T39] audit: type=1326 audit(1733649300.239:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8501 comm="syz.1.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  145.043983][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  145.117326][   T39] audit: type=1326 audit(1733649300.389:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8542 comm="syz.1.634" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ff00000
[  145.122984][   T39] audit: type=1326 audit(1733649300.389:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8542 comm="syz.1.634" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ff00000
[  145.129458][   T39] audit: type=1326 audit(1733649300.389:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8542 comm="syz.1.634" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ff00000
[  145.136864][   T39] audit: type=1326 audit(1733649300.389:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8542 comm="syz.1.634" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ff00000
[  145.177751][    T9] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  145.283326][ T8551] (syz.0.635,8551,3):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  145.287110][ T8551] (syz.0.635,8551,3):ocfs2_fill_super:1178 ERROR: status = -22
[  145.334165][    T9] usb 8-1: device descriptor read/64, error -71
[  145.412087][ T8561] sctp: [Deprecated]: syz.0.638 (pid 8561) Use of struct sctp_assoc_value in delayed_ack socket option.
[  145.412087][ T8561] Use struct sctp_sack_info instead
[  145.476462][ T8563] 8021q: adding VLAN 0 to HW filter on device bond1
[  145.573995][    T9] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  145.713963][    T9] usb 8-1: device descriptor read/64, error -71
[  145.770215][ T8577] team0: Unable to change to the same mode the team is in
[  145.834110][    T9] usb usb8-port1: attempt power cycle
[  146.085159][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  146.193935][    T9] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  146.224797][    T9] usb 8-1: device descriptor read/8, error -71
[  146.473942][    T9] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  146.495911][    T9] usb 8-1: device descriptor read/8, error -71
[  146.946518][    T9] usb usb8-port1: unable to enumerate USB device
[  147.123906][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  147.498417][ T8624] uprobe: syz.0.649:8624 failed to unregister, leaking uprobe
[  148.164009][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  148.522735][ T8657] team0: Unable to change to the same mode the team is in
[  148.583992][   T73] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  148.724031][   T73] usb 6-1: device descriptor read/64, error -71
[  148.886069][ T8671] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  148.932502][ T8676] sg_write: data in/out 92/70 bytes for SCSI command 0x0-- guessing data in;
[  148.932502][ T8676]    program syz.3.658 not setting count and/or reply_len properly
[  148.973973][   T73] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  149.103955][   T73] usb 6-1: device descriptor read/64, error -71
[  149.139524][    C1] vxcan0: j1939_tp_rxtimer: 0xffff88806c3f0c00: rx timeout, send abort
[  149.143256][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff88806c3f0c00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  149.203998][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  149.216382][   T73] usb usb6-port1: attempt power cycle
[  149.434053][ T6004] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  149.554023][   T73] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  149.574951][   T73] usb 6-1: device descriptor read/8, error -71
[  149.593980][ T6004] usb 7-1: Using ep0 maxpacket: 16
[  149.598202][ T6004] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  149.604148][ T6004] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  149.607284][ T6004] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.609688][ T6004] usb 7-1: Product: syz
[  149.610768][ T6004] usb 7-1: Manufacturer: syz
[  149.611958][ T6004] usb 7-1: SerialNumber: syz
[  149.614242][ T6004] usb 7-1: config 0 descriptor??
[  149.617494][ T6004] hub 7-1:0.0: bad descriptor, ignoring hub
[  149.619094][ T6004] hub 7-1:0.0: probe with driver hub failed with error -5
[  149.622503][ T6004] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input12
[  149.835515][   T73] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  149.859768][   T73] usb 6-1: device descriptor read/8, error -71
[  149.968001][   T73] usb usb6-port1: unable to enumerate USB device
[  149.970234][   T39] kauditd_printk_skb: 19087 callbacks suppressed
[  149.970245][   T39] audit: type=1326 audit(1733649305.239:19795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8681 comm="syz.3.660" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc3579 code=0x7fc00000
[  150.222888][ T8713] netlink: 12 bytes leftover after parsing attributes in process `syz.2.661'.
[  150.243897][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  150.421038][ T8715] IPVS: Error connecting to the multicast addr
[  150.683509][ T8725] netlink: 'syz.3.668': attribute type 1 has an invalid length.
[  150.686019][ T8725] netlink: 244 bytes leftover after parsing attributes in process `syz.3.668'.
[  150.693395][ T8725] overlayfs: missing 'lowerdir'
[  151.283919][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  151.340953][ T8743] block device autoloading is deprecated and will be removed.
[  151.373090][ T8745] netlink: 'syz.1.673': attribute type 2 has an invalid length.
[  151.375350][ T8745] netlink: 'syz.1.673': attribute type 9 has an invalid length.
[  151.377405][ T8745] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.673'.
[  151.420391][ T8745] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2758444543 (5516889086 ns) > initial count (4205064 ns). Using initial count to start timer.
[  151.733986][   T73] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  151.743889][ T8754] netlink: 28 bytes leftover after parsing attributes in process `syz.1.676'.
[  151.893966][   T73] usb 5-1: Using ep0 maxpacket: 8
[  151.896779][   T73] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  151.899130][   T73] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  151.902101][   T73] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  151.905142][   T73] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  151.908134][   T73] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  151.911645][   T73] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  151.914189][   T73] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.057205][ T8762] netlink: 36 bytes leftover after parsing attributes in process `syz.1.679'.
[  152.060147][ T8762] dccp_v4_rcv: dropped packet with invalid checksum
[  152.121200][   T73] usb 5-1: usb_control_msg returned -32
[  152.122724][   T73] usbtmc 5-1:16.0: can't read capabilities
[  152.149772][ T8748] syzkaller0: entered promiscuous mode
[  152.151832][ T8748] syzkaller0: entered allmulticast mode
[  152.214831][ T8685] rtc_cmos 00:05: Alarms can be up to one day in the future
[  152.230119][    C1] vxcan0: j1939_tp_rxtimer: 0xffff88806788d400: rx timeout, send abort
[  152.232393][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff88806788d400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  152.324037][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  152.326932][   T73] usb 7-1: USB disconnect, device number 6
[  152.347516][ T2108] rtc_cmos 00:05: Alarms can be up to one day in the future
[  152.351242][ T2108] rtc_cmos 00:05: Alarms can be up to one day in the future
[  152.361555][ T2108] rtc_cmos 00:05: Alarms can be up to one day in the future
[  152.382001][ T2108] rtc_cmos 00:05: Alarms can be up to one day in the future
[  152.391914][ T2108] rtc rtc0: __rtc_set_alarm: err=-22
[  152.415945][ T8778] ata1.00: invalid command format 189
[  152.486823][ T8770] netlink: 8 bytes leftover after parsing attributes in process `syz.1.681'.
[  152.930111][ T8782] fuse: Bad value for 'group_id'
[  152.931481][ T8782] fuse: Bad value for 'group_id'
[  153.363952][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  154.000160][ T8803] netlink: 4 bytes leftover after parsing attributes in process `syz.1.689'.
[  154.062360][   T73] usb 5-1: USB disconnect, device number 3
[  154.107440][ T8807] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  154.185815][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.187993][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  154.201654][    T9] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  154.227010][ T8819] fuse: Unknown parameter 'fo'
[  154.403956][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  154.554217][ T6004] libceph: connect (1)[c::]:6789 error -101
[  154.556403][ T6004] libceph: mon0 (1)[c::]:6789 connect error
[  154.755152][ T8824] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  154.760632][ T8826] ceph: No mds server is up or the cluster is laggy
[  155.034376][ T8835] netlink: 'syz.2.696': attribute type 2 has an invalid length.
[  155.036521][ T8835] netlink: 'syz.2.696': attribute type 9 has an invalid length.
[  155.038797][ T8835] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.696'.
[  155.112256][ T8835] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2758444543 (5516889086 ns) > initial count (4205064 ns). Using initial count to start timer.
[  155.114611][ T8840] netlink: 12 bytes leftover after parsing attributes in process `syz.1.698'.
[  155.194443][   T39] audit: type=1326 audit(1733649310.469:19796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8843 comm="syz.0.700" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff7579 code=0x0
[  155.250155][ T8847] 
@ÿ: renamed from veth0_vlan (while UP)
[  155.272066][ T8852] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  155.281224][ T8856] netlink: 32 bytes leftover after parsing attributes in process `syz.0.702'.
[  155.349679][ T8860] capability: warning: `syz.2.703' uses 32-bit capabilities (legacy support in use)
[  155.373700][ T5944] Bluetooth: hci1: Received unexpected HCI Event 0x00
[  155.443925][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  155.543285][ T8875] syzkaller0 speed is unknown, defaulting to 1000
[  155.547209][ T8875] syzkaller0 speed is unknown, defaulting to 1000
[  155.562795][ T8875] syzkaller0 speed is unknown, defaulting to 1000
[  155.592565][ T8875] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  155.642719][ T8875] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  155.656379][   T39] audit: type=1326 audit(1733649310.919:19797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8876 comm="syz.1.707" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  155.754208][ T8875] syzkaller0 speed is unknown, defaulting to 1000
[  155.758126][ T8875] syzkaller0 speed is unknown, defaulting to 1000
[  155.761112][ T8875] syzkaller0 speed is unknown, defaulting to 1000
[  155.774351][ T8875] syzkaller0 speed is unknown, defaulting to 1000
[  156.322181][   T39] audit: type=1800 audit(1733649311.589:19798): pid=8903 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.714" name="bus" dev="9p" ino=36701714 res=0 errno=0
[  156.392449][ T8906] netlink: 8 bytes leftover after parsing attributes in process `syz.2.715'.
[  156.413224][ T8906] mac80211_hwsim hwsim5 syzkaller0: entered promiscuous mode
[  156.415296][ T8906] mac80211_hwsim hwsim5 syzkaller0: entered allmulticast mode
[  156.493933][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  156.969255][ T8926] input: syz0 as /devices/virtual/input/input13
[  156.998967][ T8930] syzkaller0 speed is unknown, defaulting to 1000
[  157.150416][ T8930] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  157.248439][ T8930] syz.2.722 (8930) used greatest stack depth: 19872 bytes left
[  157.506779][ T8950] syz.2.726 (8950): drop_caches: 2
[  157.523906][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  157.600194][ T8960] netlink: 'syz.2.728': attribute type 10 has an invalid length.
[  157.603271][ T8960] bond0: (slave wlan1): Opening slave failed
[  157.772566][ T8968] vivid-007: disconnect
[  158.186861][ T8973] netlink: 4 bytes leftover after parsing attributes in process `syz.0.732'.
[  158.190108][ T8973] netlink: 12 bytes leftover after parsing attributes in process `syz.0.732'.
[  158.197365][ T8973] program syz.0.732 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  158.363974][ T8975] blktrace: Concurrent blktraces are not allowed on nbd0
[  158.379430][   T30] libceph: connect (1)[c::]:6789 error -13
[  158.381373][   T30] libceph: mon0 (1)[c::]:6789 connect error
[  158.563968][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  158.568859][ T8981] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  158.603371][ T8976] ceph: No mds server is up or the cluster is laggy
[  158.606752][ T8967] vivid-007: reconnect
[  158.777384][ T8987] block nbd3: NBD_DISCONNECT
[  158.816450][ T8987] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  158.845163][ T8989] block nbd3: Disconnected due to user request.
[  158.847809][ T8989] block nbd3: shutting down sockets
[  159.068355][ T9001] bridge_slave_0: default FDB implementation only supports local addresses
[  159.074213][ T8997] netlink: 'syz.3.737': attribute type 8 has an invalid length.
[  159.076361][ T8997] netlink: 8 bytes leftover after parsing attributes in process `syz.3.737'.
[  159.268129][   T39] audit: type=1326 audit(1733649314.539:19799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.0.739" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  159.314411][ T9009] team0: Unable to change to the same mode the team is in
[  159.603979][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  159.663927][ T6120] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  159.814026][ T6120] usb 7-1: Using ep0 maxpacket: 8
[  159.819557][ T6120] usb 7-1: config index 0 descriptor too short (expected 5924, got 36)
[  159.821632][ T6120] usb 7-1: config 250 has an invalid interface number: 228 but max is -1
[  159.823793][ T6120] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0
[  159.826420][ T6120] usb 7-1: config 250 has no interface number 0
[  159.829059][ T6120] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  159.831998][ T6120] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  159.834728][ T6120] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  159.837363][ T6120] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  159.840111][ T6120] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  159.843654][ T6120] usb 7-1: config 250 interface 228 has no altsetting 0
[  159.847807][ T6120] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  159.850323][ T6120] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  159.852502][ T6120] usb 7-1: Product: syz
[  159.853656][ T6120] usb 7-1: SerialNumber: syz
[  159.858240][ T6120] hub 7-1:250.228: bad descriptor, ignoring hub
[  159.861347][ T6120] hub 7-1:250.228: probe with driver hub failed with error -5
[  159.931493][   T39] audit: type=1326 audit(1733649315.199:19800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.0.739" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  159.936866][   T39] audit: type=1326 audit(1733649315.199:19801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.0.739" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  159.942064][   T39] audit: type=1326 audit(1733649315.199:19802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.0.739" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  159.947443][   T39] audit: type=1326 audit(1733649315.199:19803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.0.739" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  159.952804][   T39] audit: type=1326 audit(1733649315.199:19804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.0.739" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  159.958360][   T39] audit: type=1326 audit(1733649315.199:19805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.0.739" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7fc00000
[  160.067967][ T6120] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 7 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  160.392764][ T9047] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  160.397996][ T9047] netdevsim netdevsim3 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  160.489695][ T9047] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  160.493157][ T9047] netdevsim netdevsim3 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  160.577090][ T9047] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  160.579717][ T9047] netdevsim netdevsim3 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  160.632264][ T9047] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  160.634985][ T9047] netdevsim netdevsim3 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  160.654105][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  160.705808][ T9052] syz.1.749 (9052): drop_caches: 2
[  160.713960][ T9047] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  160.716331][ T9047] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  160.721069][ T9047] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  160.723299][ T9047] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  160.730327][ T9047] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  160.732584][ T9047] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  160.739958][ T9047] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  160.740959][ T9057] 9pnet_fd: Insufficient options for proto=fd
[  160.742197][ T9047] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  160.767541][ T9024] usb 7-1: reset high-speed USB device number 7 using dummy_hcd
[  160.783128][ T9024] usb 7-1: device reset changed ep0 maxpacket size!
[  160.906803][ T9067] /dev/sr0: Can't open blockdev
[  160.922590][ T6175] usb 7-1: USB disconnect, device number 7
[  160.965184][ T6175] usblp0: removed
[  161.289653][ T6175] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  161.563986][ T6175] usb 7-1: Using ep0 maxpacket: 16
[  161.569937][ T6175] usb 7-1: config 0 has no interfaces?
[  161.574968][ T6175] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  161.577559][ T6175] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.579670][ T6175] usb 7-1: Product: syz
[  161.580780][ T6175] usb 7-1: Manufacturer: syz
[  161.582261][ T6175] usb 7-1: SerialNumber: syz
[  161.585182][ T6175] usb 7-1: config 0 descriptor??
[  161.632926][ T9068] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  161.634940][ T9068] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  161.639612][ T9068] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  161.641185][ T9068] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  161.643544][ T9068] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  161.646193][ T9068] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  161.683901][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  161.813977][ T1481] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  161.963905][ T1481] usb 6-1: Using ep0 maxpacket: 16
[  161.966558][ T1481] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  161.970806][ T1481] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  161.973150][ T1481] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.975302][ T1481] usb 6-1: Product: syz
[  161.976479][ T1481] usb 6-1: Manufacturer: syz
[  161.977721][ T1481] usb 6-1: SerialNumber: syz
[  161.979728][ T1481] usb 6-1: config 0 descriptor??
[  161.981915][ T1481] hub 6-1:0.0: bad descriptor, ignoring hub
[  161.983477][ T1481] hub 6-1:0.0: probe with driver hub failed with error -5
[  161.986654][ T1481] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input14
[  162.186753][ T9075] rtc_cmos 00:05: Alarms can be up to one day in the future
[  162.472776][ T9087] netlink: 12 bytes leftover after parsing attributes in process `syz.1.754'.
[  162.723896][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  162.757063][ T9091] siw: device registration error -23
[  162.796408][ T1481] usb 7-1: USB disconnect, device number 8
[  163.599523][ T9115] fuse: Unknown parameter 'grou00000000000000000000'
[  163.763937][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  164.383591][ T9127] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[  164.385636][ T9127] PKCS7: Only support pkcs7_signedData type
[  164.624743][ T9086] rtc_cmos 00:05: Alarms can be up to one day in the future
[  164.698267][ T2108] rtc_cmos 00:05: Alarms can be up to one day in the future
[  164.701478][ T2108] rtc_cmos 00:05: Alarms can be up to one day in the future
[  164.705017][ T2108] rtc_cmos 00:05: Alarms can be up to one day in the future
[  164.707543][ T2108] rtc_cmos 00:05: Alarms can be up to one day in the future
[  164.709483][ T2108] rtc rtc0: __rtc_set_alarm: err=-22
[  164.724663][ T9139] team0: Port device gtp0 added
[  164.742225][ T1481] usb 6-1: USB disconnect, device number 13
[  164.803924][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  164.894654][ T9142] /dev/sr0: Can't open blockdev
[  165.022474][ T9148] team0: Port device gtp0 removed
[  165.045331][ T1320] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  165.142870][   T39] kauditd_printk_skb: 45 callbacks suppressed
[  165.142881][   T39] audit: type=1326 audit(1733649320.409:19851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.1.775" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  165.171133][ T9150] team0: Unable to change to the same mode the team is in
[  165.652750][ T9175] netlink: 'syz.3.779': attribute type 1 has an invalid length.
[  165.655530][ T9175] netlink: 224 bytes leftover after parsing attributes in process `syz.3.779'.
[  165.674289][ T1320] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  165.797011][   T39] audit: type=1326 audit(1733649321.069:19852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9147 comm="syz.1.775" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff0579 code=0x7fc00000
[  165.843992][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  166.382601][   T39] audit: type=1804 audit(1733649321.649:19853): pid=9196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.785" name="/newroot/189/bus/file0" dev="overlay" ino=1074 res=1 errno=0
[  166.446747][ T9198] fuse: Unknown parameter 'grou00000000000000000000'
[  166.883943][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  167.726228][ T9219] random: crng reseeded on system resumption
[  167.735613][ T9219] Restarting kernel threads ... done.
[  167.741083][   T39] audit: type=1326 audit(1733649323.009:19854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9212 comm="syz.2.790" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[  167.862499][ T9227] syzkaller1: entered promiscuous mode
[  167.864105][ T9227] syzkaller1: entered allmulticast mode
[  167.925493][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  167.937492][ T9229] netlink: 256 bytes leftover after parsing attributes in process `syz.1.792'.
[  168.330759][   T39] audit: type=1326 audit(1733649323.599:19855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9212 comm="syz.2.790" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f72579 code=0x7fc00000
[  168.338540][   T39] audit: type=1326 audit(1733649323.599:19856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9212 comm="syz.2.790" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[  168.469423][ T9249] netlink: 'syz.0.798': attribute type 1 has an invalid length.
[  168.472029][ T9249] netlink: 224 bytes leftover after parsing attributes in process `syz.0.798'.
[  168.677250][ T9261] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  168.679806][ T9261] netdevsim netdevsim3 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  168.747705][ T9261] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  168.750334][ T9261] netdevsim netdevsim3 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  168.835809][ T9261] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  168.838518][ T9261] netdevsim netdevsim3 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  168.906326][ T9261] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  168.908977][ T9261] netdevsim netdevsim3 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  168.953415][ T9261] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  168.955680][ T9261] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  168.959974][ T9261] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  168.962068][ T9261] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  168.964190][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  168.968183][ T9261] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  168.970329][ T9261] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  168.974460][ T9261] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  168.976596][ T9261] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  169.377921][   T39] audit: type=1326 audit(1733649324.649:19857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.2.803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[  169.430981][   T39] audit: type=1326 audit(1733649324.699:19858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.2.803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[  169.462106][   T39] audit: type=1326 audit(1733649324.729:19859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.2.803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[  169.467856][   T39] audit: type=1326 audit(1733649324.729:19860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9272 comm="syz.2.803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[  169.490740][ T9276] 
[  169.491454][ T9276] =============================
[  169.492733][ T9276] [ BUG: Invalid wait context ]
[  169.493996][ T9276] 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0 Not tainted
[  169.496036][ T9276] -----------------------------
[  169.498235][ T9276] syz.2.803/9276 is trying to lock:
[  169.499869][ T9276] ffff88801f943798 (&sighand->siglock){-.-.}-{3:3}, at: __lock_task_sighand+0xc2/0x340
[  169.502374][ T9276] other info that might help us debug this:
[  169.503809][ T9276] context-{5:5}
[  169.504712][ T9276] 4 locks held by syz.2.803/9276:
[  169.505980][ T9276]  #0: ffff8880696a60a8 (&ctx->uring_lock){+.+.}-{4:4}, at: io_handle_tw_list+0x27c/0x540
[  169.508707][ T9276]  #1: ffff888025f6d8c0 (&acct->lock){+.+.}-{2:2}, at: io_wq_enqueue+0x20a/0xb30
[  169.510980][ T9276]  #2: ffffffff8ddba940 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1c2/0x590
[  169.513400][ T9276]  #3: ffffffff8ddba940 (rcu_read_lock){....}-{1:3}, at: __lock_task_sighand+0x3f/0x340
[  169.515855][ T9276] stack backtrace:
[  169.516817][ T9276] CPU: 0 UID: 0 PID: 9276 Comm: syz.2.803 Not tainted 6.13.0-rc1-syzkaller-00337-g7503345ac5f5 #0
[  169.519385][ T9276] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.522084][ T9276] Call Trace:
[  169.522897][ T9276]  <TASK>
[  169.523668][ T9276]  dump_stack_lvl+0x116/0x1f0
[  169.524930][ T9276]  __lock_acquire+0x878/0x3c40
[  169.526194][ T9276]  ? __pfx___lock_acquire+0x10/0x10
[  169.527564][ T9276]  ? __pfx___lock_acquire+0x10/0x10
[  169.528990][ T9276]  lock_acquire.part.0+0x11b/0x380
[  169.530290][ T9276]  ? __lock_task_sighand+0xc2/0x340
[  169.531713][ T9276]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  169.533242][ T9276]  ? rcu_is_watching+0x12/0xc0
[  169.534672][ T9276]  ? trace_lock_acquire+0x14e/0x1f0
[  169.536022][ T9276]  ? trace_lock_acquire+0x14e/0x1f0
[  169.537405][ T9276]  ? __lock_task_sighand+0xc2/0x340
[  169.539069][ T9276]  ? lock_acquire+0x2f/0xb0
[  169.540244][ T9276]  ? __lock_task_sighand+0xc2/0x340
[  169.541670][ T9276]  _raw_spin_lock_irqsave+0x3a/0x60
[  169.543019][ T9276]  ? __lock_task_sighand+0xc2/0x340
[  169.544473][ T9276]  __lock_task_sighand+0xc2/0x340
[  169.545847][ T9276]  group_send_sig_info+0x290/0x300
[  169.547214][ T9276]  ? __pfx_group_send_sig_info+0x10/0x10
[  169.548651][ T9276]  ? __pfx___lock_acquire+0x10/0x10
[  169.550019][ T9276]  ? prepare_signal+0x146/0xe10
[  169.551320][ T9276]  bpf_send_signal_common+0x415/0x520
[  169.552778][ T9276]  ? __pfx_bpf_send_signal_common+0x10/0x10
[  169.554342][ T9276]  ? trace_lock_acquire+0x14e/0x1f0
[  169.555738][ T9276]  ? bpf_trace_run2+0x1c2/0x590
[  169.556999][ T9276]  bpf_send_signal+0x1d/0x30
[  169.558180][ T9276]  bpf_prog_631417f49dd64198+0x25/0x48
[  169.559609][ T9276]  bpf_trace_run2+0x231/0x590
[  169.560874][ T9276]  ? __pfx_bpf_trace_run2+0x10/0x10
[  169.562258][ T9276]  ? hlock_class+0x4e/0x130
[  169.563447][ T9276]  trace_contention_end.constprop.0+0xf0/0x170
[  169.565289][ T9276]  __pv_queued_spin_lock_slowpath+0x27e/0xc90
[  169.566895][ T9276]  ? trace_lock_acquire+0x90/0x1f0
[  169.568244][ T9276]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  169.569952][ T9276]  ? lock_acquire.part.0+0x11b/0x380
[  169.571674][ T9276]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  169.573140][ T9276]  do_raw_spin_lock+0x210/0x2c0
[  169.574428][ T9276]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  169.575869][ T9276]  ? lock_acquire+0x2f/0xb0
[  169.577067][ T9276]  ? io_wq_enqueue+0x20a/0xb30
[  169.578320][ T9276]  io_wq_enqueue+0x20a/0xb30
[  169.579524][ T9276]  ? __pfx_io_wq_enqueue+0x10/0x10
[  169.580864][ T9276]  ? find_held_lock+0x2d/0x110
[  169.582106][ T9276]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  169.583648][ T9276]  ? io_prep_async_work+0x3c3/0x770
[  169.585201][ T9276]  io_queue_iowq+0x232/0x4a0
[  169.586368][ T9276]  io_req_task_submit+0x142/0x1f0
[  169.587659][ T9276]  ? __pfx_io_req_task_submit+0x10/0x10
[  169.589095][ T9276]  io_handle_tw_list+0x4c3/0x540
[  169.590399][ T9276]  ? __pfx_io_handle_tw_list+0x10/0x10
[  169.591772][ T9276]  ? lock_acquire.part.0+0x11b/0x380
[  169.593174][ T9276]  ? find_held_lock+0x2d/0x110
[  169.594401][ T9276]  tctx_task_work_run+0xac/0x390
[  169.595694][ T9276]  tctx_task_work+0x7b/0xd0
[  169.596903][ T9276]  ? __pfx_tctx_task_work+0x10/0x10
[  169.598217][ T9276]  ? _raw_spin_unlock_irq+0x23/0x50
[  169.599526][ T9276]  ? lockdep_hardirqs_on+0x7c/0x110
[  169.600857][ T9276]  task_work_run+0x14e/0x250
[  169.602082][ T9276]  ? __pfx_task_work_run+0x10/0x10
[  169.603364][ T9276]  ? futex_wait+0x121/0x380
[  169.605293][ T9276]  get_signal+0x1d3/0x2610
[  169.606688][ T9276]  ? __pfx_get_signal+0x10/0x10
[  169.607924][ T9276]  ? do_futex+0x123/0x350
[  169.609054][ T9276]  ? __pfx_do_futex+0x10/0x10
[  169.610248][ T9276]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  169.611758][ T9276]  arch_do_signal_or_restart+0x90/0x7e0
[  169.613197][ T9276]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  169.615065][ T9276]  ? rcu_is_watching+0x12/0xc0
[  169.616749][ T9276]  syscall_exit_to_user_mode+0x150/0x2a0
[  169.618691][ T9276]  do_int80_emulation+0x111/0x200
[  169.620431][ T9276]  asm_int80_emulation+0x1a/0x20
[  169.621916][ T9276] RIP: 0023:0xf7f72579
[  169.623013][ T9276] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.628025][ T9276] RSP: 002b:00000000f50d560c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  169.630100][ T9276] RAX: fffffffffffffe00 RBX: 00000000f7435018 RCX: 0000000000000080
[  169.632057][ T9276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f743501c
[  169.634139][ T9276] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[  169.636128][ T9276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  169.638538][ T9276] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.640605][ T9276]  </TASK>
[  170.003970][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  171.044033][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  172.083934][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  173.123956][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  174.163962][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  175.203891][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  176.244064][    C2] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  177.283934][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  178.324046][    C1] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  179.373904][    C3] IPVS: rr: UDP 224.0.0.2:0 - no destination available

VM DIAGNOSIS:
09:15:24  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000039 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85153995 RDI=ffffffff9a6682c0 RBP=ffffffff9a668280 RSP=ffffc9002563ee10
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000039 R14=ffffffff85153930 R15=0000000000000000
RIP=ffffffff851539bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002ec1dff8 CR3=000000006cffe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000a10654 RBX=0000000000000001 RCX=ffffffff8b1ae889 RDX=ffffed10056a6fee
RSI=ffffffff8bb13780 RDI=ffffffff81701ef9 RBP=ffffed10039dc910 RSP=ffffc9000047fe08
R8 =0000000000000000 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000001
R12=0000000000000001 R13=ffff88801cee4880 R14=ffffffff901cbd10 R15=0000000000000000
RIP=ffffffff8b1afc6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f743506c CR3=000000004c55a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000042f2cc RBX=0000000000000002 RCX=ffffffff8b1ae889 RDX=ffffed10056c6fee
RSI=ffffffff8bb13780 RDI=ffffffff81701ef9 RBP=ffffed10039df000 RSP=ffffc9000048fe08
R8 =0000000000000000 R9 =ffffed10056c6fed R10=ffff88802b637f6b R11=0000000000000001
R12=0000000000000002 R13=ffff88801cef8000 R14=ffffffff901cbd10 R15=0000000000000000
RIP=ffffffff8b1afc6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f72856f0 CR3=000000006cffe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000038d16c RBX=0000000000000003 RCX=ffffffff8b1ae889 RDX=ffffed10056e6fee
RSI=ffffffff8bb13780 RDI=ffffffff81701ef9 RBP=ffffed10039df488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000001
R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901cbd10 R15=0000000000000000
RIP=ffffffff8b1afc6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000582f94c0 CR3=000000004b58a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 005858585858582e 7a7973d0000000e4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ff0f0e0d0c0b0a09
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000