last executing test programs:

7.816587348s ago: executing program 3 (id=1645):
syz_open_dev$evdev(&(0x7f0000000a00), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$EVIOCGRAB(r0, 0x400445a0, &(0x7f0000000440))
creat(0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0xc8}}, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x45c, 0x0, &(0x7f0000000140)="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"})
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x0, 0x0})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
r2 = getpid()
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x8000)
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
syz_open_dev$MSR(0x0, 0x1, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000880)={0x3c, r6, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x28, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}]}, 0x3c}}, 0x0)
r8 = syz_open_dev$usbmon(&(0x7f0000000140), 0x0, 0x2)
ioctl$MON_IOCX_MFETCH(r8, 0xc00c9207, &(0x7f00000001c0)={0x0, 0x0, 0xff42})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="1b0b000000000000000015ffffff20000180140002006261746164765f736c6176655f31000008000100", @ANYRES32=r5], 0x34}}, 0x0)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r9, 0xc0a85322, &(0x7f0000000100)={{0x0, 0x80}, {0xf1}, 0x6, 0x0, 0x2})
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r0, 0x110, 0x4, &(0x7f00000006c0)=0x1, 0x4)
tkill(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

7.536022534s ago: executing program 1 (id=1647):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4={0x3, 0x2, 0x0, "09007a15"}, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCSKEYCODE_V2(r1, 0x40284504, &(0x7f0000000100)={0x1, 0x18, 0x6, 0x7, "56cfe30c486e5a643e11194e35a0156eaa7e2a5dc66f32f33ef0701953be82e2"})

7.094859158s ago: executing program 3 (id=1648):
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$ptp0(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
io_setup(0x40, &(0x7f0000000980))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
io_setup(0xb, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x61, &(0x7f0000000380)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0xffffffeb, 0x800000000000, 0x0, 0x1}])
connect$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, 0x6e)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r3, 0x107, 0x18, &(0x7f0000000800)={r2, 0x1, 0x6, @local}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r4}, 0x10)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000001580), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000480)={'syz_tun\x00', <r5=>0x0})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r6, r5, 0x25, 0x0, @void}, 0x10)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000900)={'bridge0\x00', @broadcast})
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000440)="1400000016000b63d25a80648c2566e506bce1e8", 0x14}], 0x1}, 0x0)

7.002205867s ago: executing program 2 (id=1651):
openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r0, &(0x7f0000000380)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "a05c7b5d00008023e9c5bcf5fb7700"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB, @ANYRESHEX=r3])

6.843531825s ago: executing program 3 (id=1653):
socket$packet(0x11, 0x2, 0x300)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x810, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x16f142}, 0x18)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@flushpolicy={0x38, 0x12, 0xcdf625c385892729, 0x0, 0x0, "", [@address_filter={0x28, 0x1a, {@in=@multicast1, @in=@dev={0xac, 0x14, 0x14, 0xb3}, 0x2}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008011}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000800000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r2)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r2)
sendmsg$NL802154_CMD_NEW_INTERFACE(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000eeff120000000a0004007778616e3300000008001500", @ANYRES32=0x0, @ANYBLOB="080001"], 0x30}}, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$kcm(0x10, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xts-twofish-avx,camellia-asm,cbcmac(aes))\x00'}, 0x58)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r6 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="e00000001300", @ANYRES64=r5], 0xe0}}, 0x0)

6.29436184s ago: executing program 0 (id=1655):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuset.memory_pressure\x00', 0x275a, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)

6.223866767s ago: executing program 2 (id=1656):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$vimc2(0xffffff9c, 0x0, 0x2, 0x0)
syz_io_uring_setup(0xdaa, 0x0, &(0x7f0000000100), &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d0000006700000005"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
socket$inet(0x2, 0x6, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x318, 0x144, 0x2b8, 0x182, 0x144, 0x0, 0x250, 0x3a8, 0x3a8, 0x250, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'batadv_slave_1\x00', 'veth1_vlan\x00'}, 0x0, 0xdc, 0x144, 0x0, {0x0, 0x1800}, [@common=@unspec=@connbytes={{0x38}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0xa4, 0x10c}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x374)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(r4, &(0x7f0000000200)="7f00000018002507b9409b14ffff0b7a0204be04050714056406040c5c0005003f0006182a0000000d0085a102000000000000003610648d49935ade", 0x3c, 0x44, 0x0, 0x0)
r5 = openat$vcsa(0xffffff9c, &(0x7f00000000c0), 0x900, 0x0)
copy_file_range(r2, &(0x7f0000000040)=0x4, r1, &(0x7f0000000080)=0x1ec, 0x4, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="3000000002030101001c545617c70142380000000800010401b3efd77f0b150e4bf1ee6e213e03000000080004400000"], 0x30}, 0x1, 0x0, 0x0, 0x44055}, 0x1000c000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000095cc000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4d}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='contention_begin\x00', r5}, 0x10)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000004080000000000000003000000000000000000000002000000000000000000000000000002000000000000000000000004"], 0x0, 0x56}, 0x20)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)={0x6, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, r6, 0x0, 0x1}, 0x48)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000840)=@raw={'raw\x00', 0x4001, 0x3, 0x320, 0x1f8, 0x0, 0x148, 0x0, 0x148, 0x28c, 0x240, 0x240, 0x28c, 0x240, 0x7fffffe, 0x0, {[{{@ip={@empty, @rand_addr, 0x0, 0x0, 'ipvlan0\x00', 'wlan1\x00'}, 0x0, 0x190, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf4}, {0x0, 0x0, 0x2, 0x0, 'syz1\x00'}}, @common=@addrtype={{0x2c}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x70, 0x94}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0xfffffffffffffffc}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x37c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002000000b7080000000000007b8af8ff00000000b7080000000200007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="00000000a50000009500"/32], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000280)=[0x1], &(0x7f0000000340)=[{0x4, 0x2, 0x6, 0x8}, {0x0, 0x1, 0xb, 0x8}, {0x0, 0x2, 0x9, 0x5}, {0x1, 0x2, 0xf, 0x7}, {0x3, 0x5, 0xe, 0xa}, {0x5, 0x2, 0xf, 0x2}, {0x5, 0x5, 0x3, 0x9}], 0x10, 0xfffffffb}, 0x90)
r7 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
creat(&(0x7f0000000300)='./bus\x00', 0x0)
listxattr(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f00000004c0)='\x00', 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='rpcgss_svc_unwrap_failed\x00', r7}, 0x10)

5.804018674s ago: executing program 1 (id=1657):
syz_open_dev$evdev(&(0x7f0000000a00), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$EVIOCGRAB(r0, 0x400445a0, &(0x7f0000000440))
creat(0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0xc8}}, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x45c, 0x0, &(0x7f0000000140)="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"})
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x0, 0x0})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
r2 = getpid()
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x8000)
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
syz_open_dev$MSR(0x0, 0x1, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000880)={0x3c, r6, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x28, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}]}, 0x3c}}, 0x0)
r8 = syz_open_dev$usbmon(&(0x7f0000000140), 0x0, 0x2)
ioctl$MON_IOCX_MFETCH(r8, 0xc00c9207, &(0x7f00000001c0)={0x0, 0x0, 0xff42})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="1b0b000000000000000015ffffff20000180140002006261746164765f736c6176655f31000008000100", @ANYRES32=r5], 0x34}}, 0x0)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r9, 0xc0a85322, &(0x7f0000000100)={{0x0, 0x80}, {0xf1}, 0x6, 0x0, 0x2})
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r0, 0x110, 0x4, &(0x7f00000006c0)=0x1, 0x4)
tkill(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

5.126333207s ago: executing program 2 (id=1658):
socket$packet(0x11, 0x2, 0x300)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x810, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x16f142}, 0x18)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xts-twofish-avx,camellia-asm,cbcmac(aes))\x00'}, 0x58)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="e00000001300", @ANYRES64=r1], 0xe0}}, 0x0) (fail_nth: 3)

4.852337852s ago: executing program 3 (id=1659):
r0 = openat2$dir(0xffffff9c, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040)={0x107480, 0x1}, 0x18)
mkdirat(r0, &(0x7f0000000080)='./file1\x00', 0xa7)
mount$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='uid'])
getrandom(&(0x7f0000000180)=""/184, 0xb8, 0x1)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
syz_emit_vhci(&(0x7f0000000440)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_remote_feat_complete={{}, {0x0, 0xc9, "ce125278967781b3"}}}}, 0xf)
r1 = openat$cgroup_type(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000140), 0x9)

4.774029849s ago: executing program 0 (id=1660):
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$BINDER_FREEZE(0xffffffffffffffff, 0x400c620e, &(0x7f0000000080)={r0, 0x0, 0xc})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={0x0, r1}, 0x10)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
lseek(r2, 0x851, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r4, 0x29, 0xc8, 0x0, 0xc000000)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0xffff, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0x0, {[0x200000, 0x0, 0x0, 0x1000, 0x400]}}, 0x5c)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0xa, 0x0, 0x0, @mcast2, 0xfffffffd}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x3]}}, 0x5c)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @private1}, {0xa, 0x0, 0x0, @mcast1}, 0x0, {[0x1, 0x0, 0x0, 0x0, 0xfffffffd]}}, 0x5c)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000340)=[{0x6}]}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000004140)=ANY=[@ANYRESDEC], 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x1b2)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0)
syz_open_procfs(0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
r6 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r6, 0x80105013, 0x0)
socket(0xa, 0x806, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x4e25, @private=0xa010101}, 0x10)

4.773630342s ago: executing program 1 (id=1661):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

4.643476874s ago: executing program 3 (id=1662):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000300)={0x1, 0xfd85, {<r2=>0x0}, {}, 0x4, 0xfffffffffffffffd})
prlimit64(r2, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
r4 = fsopen(&(0x7f00000001c0)='ocfs2_dlmfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = socket$caif_stream(0x25, 0x1, 0x0)
ppoll(&(0x7f0000000800)=[{r5}], 0x1, &(0x7f0000000880)={0x0, 0x989680}, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
socket$inet(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0xfca804a0, 0x0, 0x300, 0x0, 0x0, 0x5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x5}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r6}, &(0x7f0000000000), &(0x7f0000000040)=r7}, 0x20)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r7}, 0x57)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000200)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x24, r8, 0xb97534d5fe9704cf, 0x0, 0x0, {{0x12}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x14f}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000100)={'pimreg\x00', 0x200})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYRESOCT=r0, @ANYRES32=0x0, @ANYRES16=r8], 0x44}}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000240)='pagemap\x00')
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

4.436466821s ago: executing program 1 (id=1663):
r0 = socket(0x28, 0x5, 0x8000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@private0, @in, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x100000, 0x0, 0x1}, {{@in=@multicast1, 0x0, 0x2b}, 0x0, @in6=@remote, 0x0, 0x3}}, 0xe8)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[@ANYRESDEC=r0, @ANYRESHEX=r1, @ANYRES32=0x0, @ANYBLOB="2406cd676fe90de6368d45b6096fc7830ef034ff1e3035f42baedccc7f734b6f569dd19c6375a4babf21a35d7b78d8a6d460187c50b4db65dfcaa2e247197ab87e07d7d1fa7d6110029537e2fadfef8b042ac5f7ad47f83d02b9493be0bb95d59cf9d624f71c0484f80d449eb3233a8fe165df464514203221db60f64c0262a127ce857c40a1c6cbf1e19c39b899b224b576a08e520aa71f87b3aac169f6d2078e4f6d46e25fc3fab0860d297c087d2a159e3917b2c7f908e37e5f3ddf709dda255bfe3974463496e190394c7f1dc007ffbedcd6a1da02d2e82c398705", @ANYRES64=r1], 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[], 0x10}}, 0x0)
r2 = socket(0xf, 0x80000, 0x4)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r2, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x80, &(0x7f0000006680))
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000080)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4, 0x5}, 0x48)
mmap(&(0x7f0000298000/0x3000)=nil, 0x3000, 0xf, 0x1010, r3, 0x2000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x200401, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
openat$snapshot(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x0, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000300), 0xffffffffffffffff)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000400)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x2, 0x1, 0x4, 0x2, {0xa, 0x4e22, 0x7fff, @mcast2, 0x4a9}}}, 0x32)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000003c0)={'ip6gre0\x00', &(0x7f0000000340)={'ip6_vti0\x00', <r7=>0x0, 0x4, 0xd, 0x5, 0x0, 0x48, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, 0x20, 0x7, 0x6}})
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f0000000640)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000540)={0x8c, r6, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x80}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x5}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xfe}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x9}, @MPTCP_PM_ADDR_ATTR_PORT={0xfffffffffffffffd, 0x5, 0x4e60}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x14}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r7}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_LOC_ID={0x1, 0x5, 0x3}]}, 0x8c}, 0x1, 0x0, 0x0, 0x44}, 0x20000000)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="01000000000000000000010000001c00018006000100020000000800050000000000080006007369"], 0x30}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[], 0x0}, 0x90)

3.638754703s ago: executing program 2 (id=1664):
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={0x0, r1}, 0x10)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
lseek(r2, 0x851, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r4, 0x29, 0xc8, 0x0, 0xc000000) (fail_nth: 3)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0xffff, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0x0, {[0x200000, 0x0, 0x0, 0x1000, 0x400]}}, 0x5c)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0xa, 0x0, 0x0, @mcast2, 0xfffffffd}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x3]}}, 0x5c)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @private1}, {0xa, 0x0, 0x0, @mcast1}, 0x0, {[0x1, 0x0, 0x0, 0x0, 0xfffffffd]}}, 0x5c)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000340)=[{0x6}]}, 0x10)
syz_emit_ethernet(0xfdef, &(0x7f0000004140)=ANY=[@ANYRESDEC], 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x1b2)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0)
syz_open_procfs(0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
r6 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r6, 0x80105013, 0x0)
socket(0xa, 0x806, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x4e25, @loopback}, 0x10)

3.200645662s ago: executing program 2 (id=1665):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000080)={0x18, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x45, &(0x7f0000000400)="b9425b44651dd23236963505000000010000004a16941ff5f4b4f1f080d7fcf2b8770804000000000000ffdf4cb8f5d3969890522c77157d881e0000003a5bd5531d459dff")
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f0000001ff0)={0x1d, r2}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r1}, './file0\x00'})
sendmsg$can_bcm(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="01000000180800"/16, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x80}}, 0x0)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xd, 0x100010, r1, 0x92d09000)

3.102332078s ago: executing program 0 (id=1666):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@host})
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x82243, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x125f, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f00000000c0)={@any, 0x1})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000}, 0x1c)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r3=>r2, {0x4}}, './file0\x00'})
ioctl$CDROM_DEBUG(r3, 0x5330, 0x1)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001440), 0x2202, 0x0)
io_setup(0x104, &(0x7f0000000180)=<r5=>0x0)
io_submit(r5, 0x3, &(0x7f0000000340)=[&(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1, 0x0, r4, &(0x7f0000000000)="de", 0xfdef}])
setsockopt$packet_int(r2, 0x107, 0x7, &(0x7f0000000180)=0x8, 0x4)
syz_emit_ethernet(0xfdef, &(0x7f0000001b80)=ANY=[@ANYBLOB="bbbbbbbbbbbbaa000000000090"], 0x0)
syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="6d7004ecf1c37265ed97723d7374617469633a4e09"])
syz_usb_connect(0x4, 0x2d, &(0x7f0000000080)=ANY=[@ANYRESDEC=r3], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r6 = getpid()
ioctl$SNDRV_PCM_IOCTL_USER_PVERSION(0xffffffffffffffff, 0x40044104, &(0x7f0000000140))
r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r7, 0x4048aec9, &(0x7f00000009c0)={0x1, 0x0, @ioapic={0x10000, 0x81, 0x800, 0x9, 0x0, [{0xf8, 0x74, 0x7f, '\x00', 0x1}, {0x4, 0x8, 0xa, '\x00', 0x6e}, {0x4, 0xd, 0x5, '\x00', 0x16}, {0x0, 0x9, 0xd, '\x00', 0x6}, {0x7, 0x19, 0x4, '\x00', 0x5}, {0x9, 0x5, 0x9, '\x00', 0xa0}, {0x5, 0xb, 0x6, '\x00', 0xe}, {0xa, 0x68, 0x0, '\x00', 0x8}, {0xf1, 0x0, 0x6, '\x00', 0x5}, {0x5, 0x7, 0xf1, '\x00', 0x6}, {0x6, 0x40, 0x40}, {0x8, 0x31, 0x7, '\x00', 0x80}, {0x8, 0x2, 0x40, '\x00', 0x8}, {0x5, 0x0, 0xe, '\x00', 0x4}, {0xd, 0x9, 0x7, '\x00', 0x6}, {0x2, 0x1, 0xbb, '\x00', 0x4}, {0x4, 0x90, 0x6, '\x00', 0x1}, {0x5, 0xad, 0x9}, {0x3, 0x1e, 0x2, '\x00', 0x6}, {0x6, 0x6, 0x9, '\x00', 0x2}, {0x9, 0x40, 0x4, '\x00', 0x10}, {0x6, 0x6, 0x38, '\x00', 0x5}, {0x40, 0xb, 0x1, '\x00', 0xa3}, {0x6, 0x0, 0x7, '\x00', 0x6}]}})
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512-generic\x00'}, 0x58)
accept4(r8, 0x0, 0x0, 0x0)

1.954625574s ago: executing program 3 (id=1667):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x65)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xb}, 0x20) (async)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xb}, 0x20)
getsockname$inet6(r0, 0x0, &(0x7f0000000200))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
gettid()
epoll_create1(0x0) (async)
epoll_create1(0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000280), 0xa041)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
epoll_create1(0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000180)) (async)
ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000180))
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$RTC_PIE_ON(r2, 0x7005)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
syz_open_procfs(0x0, 0x0) (async)
r3 = syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002700)=""/102392, 0x18ff8) (async)
read$msr(r4, &(0x7f0000002700)=""/102392, 0x18ff8)
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x4) (async)
r5 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x4)
fcntl$addseals(r5, 0x409, 0x7)
ioctl$FS_IOC_RESVSP(r5, 0x402c5828, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x6})
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0) (async)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0)

1.447715878s ago: executing program 1 (id=1668):
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000a50000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000d00)={r2, 0xf, 0x0, 0x0, 0x0, 0x0, 0xc00d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

783.614292ms ago: executing program 0 (id=1669):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuset.memory_pressure\x00', 0x275a, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)

624.183261ms ago: executing program 0 (id=1670):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = io_uring_setup(0x1155, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSACTIVE(r4, 0x40047459, 0x0)
io_uring_register$IORING_REGISTER_RING_FDS(r2, 0x14, 0x0, 0x0)
read(r4, 0x0, 0x2)
pwrite64(r4, &(0x7f0000000340)="5da1", 0x4, 0x0)
readv(r4, &(0x7f00000002c0)=[{&(0x7f0000000000)=""/22, 0x16}, {&(0x7f00000001c0)=""/219, 0xdb}], 0x2)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000a00)=@newsa={0x170, 0x10, 0x633, 0x0, 0x0, {{@in=@broadcast, @in=@multicast2}, {@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x32}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @encap={0x1c, 0x20, {0x0, 0x0, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}}, @encap={0x1c, 0x4, {0x0, 0x0, 0x0, @in6=@remote}}]}, 0x170}}, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x4, 0x200000005c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r2, 0x2, 0x0, 0x0)
ioctl$int_out(r2, 0x5460, &(0x7f0000000040))
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x8000, 0x0)
mkdirat(r5, &(0x7f0000000180)='./bus\x00', 0x0)
renameat2(r5, 0x0, r5, &(0x7f0000000200)='./bus/file0\x00', 0x0)
unlinkat(r5, &(0x7f00000002c0)='./bus\x00', 0x200)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r5, 0x84, 0x1c, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
sendmmsg$inet(r1, 0x0, 0x0, 0x8041)
shutdown(r0, 0x1)
recvmmsg(r0, &(0x7f0000003e40)=[{{0x0, 0x0, &(0x7f0000003780)=[{0x0}], 0x1}}], 0x1, 0x40000121, 0x0)

392.558627ms ago: executing program 1 (id=1671):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x45, &(0x7f0000000400)="b9425b44651dd23236963505000000010000004a16941ff5f4b4f1f080d7fcf2b8770804000000000000ffdf4cb8f5d3969890522c77157d881e0000003a5bd5531d459dff")

137.203807ms ago: executing program 2 (id=1672):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), r1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x10}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000240)='tlb_flush\x00', r3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r5 = fsopen(&(0x7f0000000100)='proc\x00', 0x0)
fsmount(r5, 0x0, 0x0)
socket(0x1e, 0x4, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'pimreg\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_FLOWS={0x8, 0x2, 0x83a2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f00007e3000/0x2000)=nil, 0x2000, 0x3)
mlockall(0x0)
r9 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv2(r9, &(0x7f0000001540)=[{0x0}, {&(0x7f0000001380)=""/129, 0x7ffff000}], 0x2, 0x0, 0x0, 0x0)
ioctl$VIDIOC_G_PARM(r9, 0xc0cc5615, &(0x7f0000000040)={0x0, @capture={0x1000, 0x0, {0x3ff, 0x10}, 0x7, 0x2}})
bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x24c}}, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000000280))

0s ago: executing program 0 (id=1673):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
syz_emit_vhci(0x0, 0x21)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
shutdown(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000080)={0x3, 0x9, 0x8003, 0x7ff, 0xdcf, 0x9, 0x5e, 0x7, <r1=>0x0}, &(0x7f0000000140)=0x20)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000100)={<r2=>r1, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @remote, 0xfffffffe}]}, &(0x7f0000000000)=0xc)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>r2}, &(0x7f0000000040)=0x20)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000a40)={r3, 0x0, 0x30}, &(0x7f0000000a80)=0x18)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000000c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_usb_connect(0x0, 0x52, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
add_key$user(0x0, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0x5460, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000000c0), 0x12)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_ro(r7, &(0x7f0000000140)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
sendfile(0xffffffffffffffff, r8, 0x0, 0x7ffff000)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)

kernel console output (not intermixed with test programs):

uire+0x10/0x10
[  394.198580][T10318]  ___sys_sendmsg+0x1b0/0x1e0
[  394.200552][T10318]  ? __pfx____sys_sendmsg+0x10/0x10
[  394.202708][T10318]  ? ksys_write+0x21c/0x260
[  394.204631][T10318]  ? __fget_light+0x173/0x210
[  394.206588][T10318]  __sys_sendmsg+0x117/0x1f0
[  394.208449][T10318]  ? __pfx___sys_sendmsg+0x10/0x10
[  394.210616][T10318]  __do_fast_syscall_32+0x73/0x120
[  394.212698][T10318]  do_fast_syscall_32+0x32/0x80
[  394.214785][T10318]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  394.217691][T10318] RIP: 0023:0xf741e579
[  394.219431][T10318] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  394.226426][T10318] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  394.229392][T10318] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000200008c0
[  394.232432][T10318] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  394.235573][T10318] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  394.238896][T10318] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  394.242140][T10318] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  394.245446][T10318]  </TASK>
[  394.305011][T10320] syz.2.1371: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  394.305087][T10320] CPU: 3 UID: 0 PID: 10320 Comm: syz.2.1371 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  394.305110][T10320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  394.305123][T10320] Call Trace:
[  394.305132][T10320]  <TASK>
[  394.305141][T10320]  dump_stack_lvl+0x16c/0x1f0
[  394.305167][T10320]  warn_alloc+0x24d/0x3a0
[  394.305195][T10320]  ? __pfx_warn_alloc+0x10/0x10
[  394.305218][T10320]  ? stack_depot_save_flags+0x28/0x900
[  394.305249][T10320]  ? kasan_save_stack+0x42/0x60
[  394.305269][T10320]  ? kasan_save_stack+0x33/0x60
[  394.305288][T10320]  ? kasan_save_track+0x14/0x30
[  394.305305][T10320]  ? __kasan_kmalloc+0xaa/0xb0
[  394.305322][T10320]  ? xskq_create+0x52/0x1d0
[  394.305338][T10320]  ? xsk_setsockopt+0x8b0/0xac0
[  394.305366][T10320]  ? __sys_setsockopt+0x1a4/0x270
[  394.305390][T10320]  ? __ia32_sys_setsockopt+0xbc/0x160
[  394.305415][T10320]  ? __do_fast_syscall_32+0x73/0x120
[  394.305449][T10320]  __vmalloc_node_range_noprof+0x10a3/0x14e0
[  394.305485][T10320]  ? xskq_create+0xfb/0x1d0
[  394.361588][T10320]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  394.361631][T10320]  ? xskq_create+0xfb/0x1d0
[  394.361651][T10320]  vmalloc_user_noprof+0x6b/0x90
[  394.361678][T10320]  ? xskq_create+0xfb/0x1d0
[  394.361696][T10320]  xskq_create+0xfb/0x1d0
[  394.361717][T10320]  xsk_setsockopt+0x8b0/0xac0
[  394.361764][T10320]  ? __pfx_xsk_setsockopt+0x10/0x10
[  394.361787][T10320]  ? __pfx_aa_sk_perm+0x10/0x10
[  394.361817][T10320]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  394.361835][T10320]  ? __pfx_xsk_setsockopt+0x10/0x10
[  394.361858][T10320]  do_sock_setsockopt+0x222/0x480
[  394.361878][T10320]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  394.361907][T10320]  ? __fget_light+0x173/0x210
[  394.361932][T10320]  __sys_setsockopt+0x1a4/0x270
[  394.361958][T10320]  ? __pfx___sys_setsockopt+0x10/0x10
[  394.361984][T10320]  ? xfd_validate_state+0x5d/0x180
[  394.362016][T10320]  __ia32_sys_setsockopt+0xbc/0x160
[  394.362039][T10320]  ? lockdep_hardirqs_on+0x7c/0x110
[  394.362069][T10320]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  394.362092][T10320]  __do_fast_syscall_32+0x73/0x120
[  394.362118][T10320]  do_fast_syscall_32+0x32/0x80
[  394.362142][T10320]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  394.362163][T10320] RIP: 0023:0xf7eff579
[  394.362179][T10320] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  394.362197][T10320] RSP: 002b:00000000f567556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  394.362216][T10320] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 000000000000011b
[  394.362229][T10320] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000020
[  394.362241][T10320] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  394.362254][T10320] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  394.362266][T10320] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  394.362292][T10320]  </TASK>
[  394.399060][T10320] Mem-Info:
[  394.551145][T10320] active_anon:8211 inactive_anon:7 isolated_anon:0
[  394.551145][T10320]  active_file:12560 inactive_file:33504 isolated_file:0
[  394.551145][T10320]  unevictable:768 dirty:289 writeback:0
[  394.551145][T10320]  slab_reclaimable:5800 slab_unreclaimable:54026
[  394.551145][T10320]  mapped:21589 shmem:2342 pagetables:658
[  394.551145][T10320]  sec_pagetables:323 bounce:0
[  394.551145][T10320]  kernel_misc_reclaimable:0
[  394.551145][T10320]  free:63859 free_pcp:8785 free_cma:0
[  394.572009][T10320] Node 0 active_anon:0kB inactive_anon:16kB active_file:0kB inactive_file:36kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9060kB pagetables:944kB sec_pagetables:1188kB all_unreclaimable? no
[  394.589302][T10320] Node 1 active_anon:33644kB inactive_anon:12kB active_file:50240kB inactive_file:133980kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:86340kB dirty:1148kB writeback:0kB shmem:7832kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1748kB pagetables:1688kB sec_pagetables:104kB all_unreclaimable? no
[  394.612379][T10320] Node 0 DMA free:928kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:144kB local_pcp:8kB free_cma:0kB
[  394.624554][T10320] lowmem_reserve[]: 0 275 0 0 0
[  394.626958][T10320] Node 0 DMA32 free:21504kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:16kB active_file:0kB inactive_file:36kB unevictable:1536kB writepending:8kB present:1032192kB managed:308888kB mlocked:0kB bounce:0kB free_pcp:2292kB local_pcp:316kB free_cma:0kB
[  394.640105][T10320] lowmem_reserve[]: 0 0 0 0 0
[  394.642289][T10320] Node 1 DMA32 free:233004kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:34744kB inactive_anon:12kB active_file:50240kB inactive_file:133980kB unevictable:1536kB writepending:1148kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:30832kB local_pcp:1544kB free_cma:0kB
[  394.657942][T10320] lowmem_reserve[]: 0 0 0 0 0
[  394.660272][T10320] Node 0 DMA: 14*4kB (U) 12*8kB (U) 14*16kB (U) 19*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 984kB
[  394.667230][T10320] Node 0 DMA32: 374*4kB (UMH) 43*8kB (UMEH) 31*16kB (UMEH) 73*32kB (UMEH) 25*64kB (UMEH) 5*128kB (ME) 7*256kB (ME) 11*512kB (UM) 3*1024kB (UM) 2*2048kB (M) 0*4096kB = 21504kB
[  394.675607][T10320] Node 1 DMA32: 1*4kB (E) 1*8kB (M) 1*16kB (U) 170*32kB (UM) 137*64kB (UME) 54*128kB (UME) 35*256kB (UM) 18*512kB (UME) 21*1024kB (UME) 16*2048kB (UME) 34*4096kB (UM) = 232860kB
[  394.683450][T10320] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  394.688463][T10320] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  394.692519][T10320] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  394.697439][T10320] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  394.701268][T10320] 48819 total pagecache pages
[  394.703719][T10320] 425 pages in swap cache
[  394.721939][T10320] Free swap  = 118164kB
[  394.724032][T10320] Total swap = 124996kB
[  394.726263][T10320] 524155 pages RAM
[  394.728519][T10320] 0 pages HighMem/MovableOnly
[  394.730465][T10320] 206541 pages reserved
[  394.733154][T10320] 0 pages cma reserved
[  394.989654][T10327] [U] 
[  394.991314][T10327] [U] 
[  394.992545][T10327] [U] 
[  394.993811][T10327] [U] 
[  394.995841][T10327] [U] 
[  394.997246][T10327] [U] 
[  394.998551][T10327] [U] 
[  394.999879][T10327] [U] 
[  395.007350][T10327] [U] 
[  395.008657][T10327] [U] 
[  395.009963][T10327] [U] 
[  395.011218][T10327] [U] 
[  395.018024][T10327] [U] 
[  395.019539][T10327] [U] 
[  395.020830][T10327] [U] 
[  395.022274][T10327] [U] 
[  395.024522][T10327] [U] 
[  395.025892][T10327] [U] 
[  395.027167][T10327] [U] 
[  395.028466][T10327] [U] 
[  395.031512][T10327] [U] 
[  395.033122][T10327] [U] 
[  395.034250][T10327] [U] 
[  395.035493][T10327] [U] 
[  395.036813][T10327] [U] 
[  395.038201][T10327] [U] 
[  395.039358][T10327] [U] 
[  395.040522][T10327] [U] 
[  395.048380][    C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  395.055712][T10327] [U] 
[  395.056957][T10327] [U] 
[  395.058207][T10327] [U] 
[  395.059464][T10327] [U] 
[  395.060937][T10327] [U] 
[  395.061909][T10327] [U] 
[  395.062793][T10327] [U] 
[  395.063764][T10327] [U] 
[  395.064988][T10327] [U] 
[  395.066107][T10327] [U] 
[  395.067090][T10327] [U] 
[  395.068041][T10327] [U] 
[  395.069122][T10327] [U] 
[  395.070255][T10327] [U] 
[  395.071378][T10327] [U] 
[  395.072535][T10327] [U] 
[  395.077862][T10327] [U] 
[  395.079180][T10327] [U] 
[  395.080427][T10327] [U] 
[  395.081661][T10327] [U] 
[  395.092651][T10327] [U] 
[  395.094282][T10327] [U] 
[  395.095732][T10327] [U] 
[  395.096928][T10327] [U] 
[  395.098492][T10327] [U] 
[  395.099749][T10327] [U] 
[  395.100934][T10327] [U] 
[  395.102152][T10327] [U] 
[  395.104817][T10327] [U] 
[  395.106096][T10327] [U] 
[  395.107060][T10327] [U] 
[  395.108004][T10327] [U] 
[  395.110427][T10327] [U] 
[  395.111543][T10327] [U] 
[  395.112696][T10327] [U] 
[  395.113898][T10327] [U] 
[  395.115403][T10327] [U] 
[  395.116688][T10327] [U] 
[  395.117813][T10327] [U] 
[  395.118769][T10327] [U] 
[  395.120144][T10327] [U] 
[  395.121180][T10327] [U] 
[  395.122348][T10327] [U] 
[  395.123592][T10327] [U] 
[  395.125222][T10327] [U] 
[  395.126515][T10327] [U] 
[  395.127727][T10327] [U] 
[  395.128899][T10327] [U] 
[  395.130511][T10327] [U] 
[  395.131708][T10327] [U] 
[  395.132739][T10327] [U] 
[  395.133927][T10327] [U] 
[  395.135643][T10327] [U] 
[  395.136619][T10327] [U] 
[  395.137671][T10327] [U] 
[  395.138904][T10327] [U] 
[  395.140208][T10327] [U] 
[  395.141372][T10327] [U] 
[  395.142494][T10327] [U] 
[  395.143738][T10327] [U] 
[  395.145241][T10327] [U] 
[  395.146445][T10327] [U] 
[  395.147650][T10327] [U] 
[  395.148877][T10327] [U] 
[  395.151089][T10327] [U] 
[  395.152126][T10327] [U] 
[  395.153112][T10327] [U] 
[  395.154097][T10327] [U] 
[  395.156564][T10327] [U] 
[  395.157787][T10327] [U] 
[  395.158853][T10327] [U] 
[  395.160017][T10327] [U] 
[  395.162109][T10327] [U] 
[  395.163391][T10327] [U] 
[  395.164632][T10327] [U] 
[  395.165905][T10327] [U] 
[  395.167596][T10327] [U] 
[  395.168831][T10327] [U] 
[  395.170045][T10327] [U] 
[  395.171325][T10327] [U] 
[  395.172888][T10327] [U] 
[  395.174177][T10327] [U] 
[  395.175425][T10327] [U] 
[  395.176659][T10327] [U] 
[  395.178422][T10327] [U] 
[  395.179813][T10327] [U] 
[  395.181229][T10327] [U] 
[  395.182551][T10327] [U] 
[  395.184244][T10327] [U] 
[  395.185754][T10327] [U] 
[  395.187099][T10327] [U] 
[  395.188948][T10327] [U] 
[  395.190411][T10327] [U] 
[  395.191769][T10327] [U] 
[  395.192971][T10327] [U] 
[  395.194190][T10327] [U] 
[  395.195628][T10327] [U] 
[  395.196869][T10327] [U] 
[  395.198077][T10327] [U] 
[  395.213209][T10326] [U] 
[  395.549125][T10342] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  395.796058][T10347] netlink: 'syz.0.1381': attribute type 4 has an invalid length.
[  396.799307][T10351] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  397.038463][T10357] xt_CT: You must specify a L4 protocol and not use inversions on it
[  397.059255][  T104] Bluetooth: (null): Invalid header checksum
[  397.063795][  T104] Bluetooth: (null): Invalid header checksum
[  397.070309][T10357] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1384'.
[  397.084019][T10357] xt_CT: You must specify a L4 protocol and not use inversions on it
[  397.167206][   T64] Bluetooth: (null): Invalid header checksum
[  397.286376][   T64] Bluetooth: (null): Invalid header checksum
[  397.399117][   T64] Bluetooth: (null): Invalid header checksum
[  397.519519][   T64] Bluetooth: (null): Invalid header checksum
[  397.630373][   T13] Bluetooth: (null): Invalid header checksum
[  398.490583][T10381] netlink: 'syz.0.1392': attribute type 4 has an invalid length.
[  398.531458][T10367] FAULT_INJECTION: forcing a failure.
[  398.531458][T10367] name failslab, interval 1, probability 0, space 0, times 0
[  398.536775][T10367] CPU: 3 UID: 0 PID: 10367 Comm: syz.3.1389 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  398.541561][T10367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  398.548423][T10367] Call Trace:
[  398.550014][T10367]  <TASK>
[  398.551067][T10367]  dump_stack_lvl+0x16c/0x1f0
[  398.552841][T10367]  should_fail_ex+0x497/0x5b0
[  398.555283][T10367]  ? fs_reclaim_acquire+0xae/0x160
[  398.557399][T10367]  should_failslab+0xc2/0x120
[  398.559851][T10367]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  398.562588][T10367]  ? getname_flags.part.0+0x4c/0x550
[  398.565080][T10367]  getname_flags.part.0+0x4c/0x550
[  398.567372][T10367]  getname_flags+0x93/0xf0
[  398.569232][T10367]  __ia32_sys_renameat2+0xd4/0x130
[  398.571374][T10367]  __do_fast_syscall_32+0x73/0x120
[  398.573604][T10367]  do_fast_syscall_32+0x32/0x80
[  398.575770][T10367]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  398.578344][T10367] RIP: 0023:0xf741e579
[  398.580090][T10367] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  398.588624][T10367] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000161
[  398.592598][T10367] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 0000000000000000
[  398.596290][T10367] RDX: 00000000ffffffff RSI: 0000000000000000 RDI: 0000000000000004
[  398.599408][T10367] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  398.602772][T10367] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  398.606607][T10367] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  398.610249][T10367]  </TASK>
[  398.902890][T10387] xt_CT: You must specify a L4 protocol and not use inversions on it
[  398.940756][T10387] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1394'.
[  398.963978][T10387] xt_CT: You must specify a L4 protocol and not use inversions on it
[  399.049089][   T39] kauditd_printk_skb: 27 callbacks suppressed
[  399.049106][   T39] audit: type=1326 audit(2000000132.723:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.082889][   T39] audit: type=1326 audit(2000000132.723:2577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.119067][   T39] audit: type=1326 audit(2000000132.743:2578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.129916][   T39] audit: type=1326 audit(2000000132.743:2579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.139885][   T39] audit: type=1326 audit(2000000132.743:2580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.149227][   T39] audit: type=1326 audit(2000000132.743:2581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.160083][   T39] audit: type=1326 audit(2000000132.743:2582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.170904][   T39] audit: type=1326 audit(2000000132.753:2583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.181250][   T39] audit: type=1326 audit(2000000132.753:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.191189][   T39] audit: type=1326 audit(2000000132.753:2585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.3.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  399.288300][T10389] netlink: 'syz.1.1393': attribute type 1 has an invalid length.
[  399.300397][T10389] netlink: 'syz.1.1393': attribute type 4 has an invalid length.
[  399.338072][T10389] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.1393'.
[  400.381886][ T5353] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  400.622749][ T5353] usb 8-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  400.627668][ T5353] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.638900][ T5353] usb 8-1: Product: syz
[  400.641507][ T5353] usb 8-1: Manufacturer: syz
[  400.644393][ T5353] usb 8-1: SerialNumber: syz
[  400.665647][ T5353] usb 8-1: config 0 descriptor??
[  400.887432][T10399] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1397'.
[  400.902111][T10399] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1397'.
[  400.911529][ T1996] usb 8-1: USB disconnect, device number 11
[  401.656799][T10422] xt_CT: You must specify a L4 protocol and not use inversions on it
[  401.664630][T10422] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1402'.
[  401.705324][T10422] xt_CT: You must specify a L4 protocol and not use inversions on it
[  401.939277][T10428] xt_CT: You must specify a L4 protocol and not use inversions on it
[  401.975668][T10428] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1403'.
[  402.000615][T10428] xt_CT: You must specify a L4 protocol and not use inversions on it
[  402.664033][T10436] xt_CT: You must specify a L4 protocol and not use inversions on it
[  402.703214][T10436] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1406'.
[  402.723373][T10436] xt_CT: You must specify a L4 protocol and not use inversions on it
[  403.181013][T10440] netlink: 'syz.0.1409': attribute type 1 has an invalid length.
[  403.184421][T10440] netlink: 'syz.0.1409': attribute type 4 has an invalid length.
[  403.187911][T10440] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.1409'.
[  403.450267][T10443] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  403.636067][T10450] overlayfs: failed to resolve './file0': -2
[  404.382068][T10469] xt_CT: You must specify a L4 protocol and not use inversions on it
[  404.399434][T10469] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1417'.
[  404.423184][T10469] xt_CT: You must specify a L4 protocol and not use inversions on it
[  404.470510][   T39] kauditd_printk_skb: 43 callbacks suppressed
[  404.470524][   T39] audit: type=1326 audit(2000000138.163:2629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.497749][   T39] audit: type=1326 audit(2000000138.173:2630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.517739][   T39] audit: type=1326 audit(2000000138.173:2631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.552221][   T39] audit: type=1326 audit(2000000138.183:2632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.569082][   T39] audit: type=1326 audit(2000000138.183:2633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.589293][   T39] audit: type=1326 audit(2000000138.183:2634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.632538][   T39] audit: type=1326 audit(2000000138.183:2635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.678949][   T39] audit: type=1326 audit(2000000138.183:2636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.729137][   T39] audit: type=1326 audit(2000000138.193:2637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.738572][   T39] audit: type=1326 audit(2000000138.193:2638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.3.1417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  404.909388][T10472] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  405.979939][T10488] syzkaller1: entered promiscuous mode
[  405.985100][T10488] syzkaller1: entered allmulticast mode
[  406.010844][T10488] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1423'.
[  407.201962][T10503] FAULT_INJECTION: forcing a failure.
[  407.201962][T10503] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  407.218989][T10503] CPU: 0 UID: 0 PID: 10503 Comm: syz.2.1433 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  407.223847][T10503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  407.228537][T10503] Call Trace:
[  407.230006][T10503]  <TASK>
[  407.231304][T10503]  dump_stack_lvl+0x16c/0x1f0
[  407.233385][T10503]  should_fail_ex+0x497/0x5b0
[  407.235544][T10503]  _copy_from_user+0x30/0xf0
[  407.237545][T10503]  compat_wext_handle_ioctl+0xc2/0x310
[  407.239897][T10503]  ? __pfx_inet6_compat_ioctl+0x10/0x10
[  407.242283][T10503]  ? __pfx_compat_wext_handle_ioctl+0x10/0x10
[  407.244904][T10503]  compat_sock_ioctl+0x33d/0x7f0
[  407.249558][T10503]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  407.252457][T10503]  ? __fget_files+0x256/0x400
[  407.254568][T10503]  ? bpf_lsm_file_ioctl_compat+0x9/0x10
[  407.257027][T10503]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  407.259575][T10503]  __do_compat_sys_ioctl+0x2c3/0x330
[  407.261787][T10503]  __do_fast_syscall_32+0x73/0x120
[  407.263916][T10503]  do_fast_syscall_32+0x32/0x80
[  407.265987][T10503]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  407.268708][T10503] RIP: 0023:0xf7eff579
[  407.272465][T10503] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  407.283945][T10503] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  407.291115][T10503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008b1a
[  407.294905][T10503] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  407.299042][T10503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  407.303810][T10503] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  407.308237][T10503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  407.313621][T10503]  </TASK>
[  407.368980][T10510] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  407.371839][T10510] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  407.408002][T10510] vhci_hcd vhci_hcd.0: Device attached
[  407.464144][T10511] vhci_hcd: connection closed
[  407.465767][ T1194] vhci_hcd: stop threads
[  407.478906][ T1194] vhci_hcd: release socket
[  407.480843][ T1194] vhci_hcd: disconnect device
[  407.778125][   T30] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  407.955569][T10525] FAULT_INJECTION: forcing a failure.
[  407.955569][T10525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  407.963028][T10525] CPU: 0 UID: 0 PID: 10525 Comm: syz.3.1438 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  407.969457][T10525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  407.973917][T10525] Call Trace:
[  407.975557][T10525]  <TASK>
[  407.976898][T10525]  dump_stack_lvl+0x16c/0x1f0
[  407.979254][T10525]  should_fail_ex+0x497/0x5b0
[  407.981227][T10525]  _copy_from_user+0x30/0xf0
[  407.983077][T10525]  ? __pfx_drm_mode_getplane_res+0x10/0x10
[  407.985368][T10525]  drm_ioctl+0x502/0xbb0
[  407.987871][T10525]  ? __pfx_drm_ioctl+0x10/0x10
[  407.990693][T10525]  drm_compat_ioctl+0x32d/0x470
[  407.992944][T10525]  ? bpf_lsm_file_ioctl_compat+0x9/0x10
[  407.995206][T10525]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  407.997822][T10525]  __do_compat_sys_ioctl+0x2c3/0x330
[  408.000197][T10525]  __do_fast_syscall_32+0x73/0x120
[  408.002652][T10525]  do_fast_syscall_32+0x32/0x80
[  408.004776][T10525]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  408.007503][T10525] RIP: 0023:0xf741e579
[  408.009481][T10525] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  408.022764][T10525] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  408.026766][T10525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c01064b5
[  408.031361][T10525] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[  408.035393][T10525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  408.040117][T10525] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  408.044679][T10525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  408.048200][T10525]  </TASK>
[  408.049695][   T30] usb 7-1: Using ep0 maxpacket: 32
[  408.054662][   T30] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  408.058222][   T30] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  408.063493][   T30] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  408.069928][   T30] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  408.074744][   T30] usb 7-1: config 0 interface 0 has no altsetting 0
[  408.079224][T10527] overlayfs: failed to resolve './file0': -2
[  408.080568][   T30] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  408.085983][   T30] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  408.097366][   T30] usb 7-1: Product: syz
[  408.099083][   T30] usb 7-1: Manufacturer: syz
[  408.101130][   T30] usb 7-1: SerialNumber: syz
[  408.119594][   T30] usb 7-1: config 0 descriptor??
[  408.125491][   T30] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  408.133947][T10529] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1441'.
[  408.140053][   T30] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  408.336899][   T30] usb 7-1: USB disconnect, device number 13
[  408.341708][   T30] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[  408.509048][ T1996] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  408.689237][ T1996] usb 5-1: Using ep0 maxpacket: 32
[  408.729150][ T1996] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  408.738071][ T1996] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  408.763097][ T1996] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  408.774977][ T1996] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  408.784081][ T1996] usb 5-1: config 0 interface 0 has no altsetting 0
[  408.791377][ T1996] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  408.821391][ T1996] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  408.829489][ T1996] usb 5-1: Product: syz
[  408.844670][ T1996] usb 5-1: Manufacturer: syz
[  408.846925][ T1996] usb 5-1: SerialNumber: syz
[  408.854538][ T1996] usb 5-1: config 0 descriptor??
[  408.866345][ T1996] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  408.872242][ T1996] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  409.049878][T10548] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1445'.
[  409.069847][ T6635] usb 5-1: USB disconnect, device number 10
[  409.075402][ T6635] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  409.258979][ T1996] usb 7-1: new full-speed USB device number 14 using dummy_hcd
[  409.475712][ T1996] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  409.479670][ T1996] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  409.489029][ T1996] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  409.493734][ T1996] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  409.508008][ T1996] usb 7-1: config 0 interface 0 has no altsetting 0
[  409.514209][ T1996] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  409.518685][ T1996] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  409.529753][ T1996] usb 7-1: Product: syz
[  409.531648][ T1996] usb 7-1: Manufacturer: syz
[  409.533736][ T1996] usb 7-1: SerialNumber: syz
[  409.559838][ T1996] usb 7-1: config 0 descriptor??
[  409.566612][ T1996] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  409.602550][ T1996] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  409.798706][ T1996] usb 7-1: USB disconnect, device number 14
[  409.798777][    C3] ldusb 7-1:0.0: usb_submit_urb failed (-19)
[  409.879889][ T1996] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[  410.042995][ T6635] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[  410.115203][T10517] ldusb: No device or device unplugged -19
[  410.291305][ T6635] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  410.296927][ T6635] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  410.306236][ T6635] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  410.315028][ T6635] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  410.321106][ T6635] usb 5-1: config 0 interface 0 has no altsetting 0
[  410.327046][ T6635] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  410.332226][ T6635] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  410.338641][ T6635] usb 5-1: Product: syz
[  410.346203][ T6635] usb 5-1: Manufacturer: syz
[  410.348538][ T6635] usb 5-1: SerialNumber: syz
[  410.353460][ T6635] usb 5-1: config 0 descriptor??
[  410.358366][ T6635] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  410.365818][ T6635] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  410.379960][T10556] FAULT_INJECTION: forcing a failure.
[  410.379960][T10556] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.387520][T10556] CPU: 1 UID: 0 PID: 10556 Comm: syz.3.1448 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  410.392553][T10556] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  410.398261][T10556] Call Trace:
[  410.399796][T10556]  <TASK>
[  410.401125][T10556]  dump_stack_lvl+0x16c/0x1f0
[  410.403467][T10556]  should_fail_ex+0x497/0x5b0
[  410.405670][T10556]  _copy_from_user+0x30/0xf0
[  410.407748][T10556]  __ia32_sys_epoll_ctl+0x131/0x1e0
[  410.410083][T10556]  ? __pfx___ia32_sys_epoll_ctl+0x10/0x10
[  410.412613][T10556]  __do_fast_syscall_32+0x73/0x120
[  410.415054][T10556]  do_fast_syscall_32+0x32/0x80
[  410.417336][T10556]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  410.420284][T10556] RIP: 0023:0xf741e579
[  410.422420][T10556] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  410.431228][T10556] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 00000000000000ff
[  410.435959][T10556] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000000001
[  410.439477][T10556] RDX: 0000000000000007 RSI: 0000000020000180 RDI: 0000000000000000
[  410.443605][T10556] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  410.447210][T10556] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  410.450819][T10556] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  410.454344][T10556]  </TASK>
[  410.568697][ T6635] usb 5-1: USB disconnect, device number 11
[  410.571530][    C0] ldusb 5-1:0.0: usb_submit_urb failed (-19)
[  410.580634][ T6635] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  410.790655][T10566] xt_CT: You must specify a L4 protocol and not use inversions on it
[  410.815049][    C0] vkms_vblank_simulate: vblank timer overrun
[  410.870392][T10566] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1450'.
[  410.886170][T10566] xt_CT: You must specify a L4 protocol and not use inversions on it
[  410.921053][T10568] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1451'.
[  410.922519][   T39] kauditd_printk_skb: 1 callbacks suppressed
[  410.922531][   T39] audit: type=1326 audit(2000000144.603:2640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  410.924921][T10568] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1451'.
[  410.927407][   T39] audit: type=1326 audit(2000000144.613:2641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  410.961715][    C0] vkms_vblank_simulate: vblank timer overrun
[  410.999177][   T39] audit: type=1326 audit(2000000144.643:2642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  411.011865][   T39] audit: type=1326 audit(2000000144.643:2643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  411.021682][   T39] audit: type=1326 audit(2000000144.643:2644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  411.036696][   T39] audit: type=1326 audit(2000000144.663:2645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  411.050455][   T39] audit: type=1326 audit(2000000144.663:2646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  411.060266][   T39] audit: type=1326 audit(2000000144.663:2647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  411.069528][   T39] audit: type=1326 audit(2000000144.673:2648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  411.079266][   T39] audit: type=1326 audit(2000000144.673:2649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10563 comm="syz.2.1450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  411.796872][T10577] netlink: 'syz.0.1454': attribute type 1 has an invalid length.
[  411.815869][T10577] netlink: 'syz.0.1454': attribute type 4 has an invalid length.
[  411.845755][T10577] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.1454'.
[  411.993838][T10578] xt_CT: You must specify a L4 protocol and not use inversions on it
[  412.026394][T10578] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1455'.
[  412.089476][T10578] xt_CT: You must specify a L4 protocol and not use inversions on it
[  412.349581][ T5362] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  412.355869][ T5362] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  412.362631][ T5362] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  412.369890][ T5362] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  412.399562][ T5362] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  412.406319][ T5362] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  412.768044][T10583] ip6gretap0 speed is unknown, defaulting to 1000
[  413.050590][T10588] syz.2.1457: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  413.050654][T10588] CPU: 0 UID: 0 PID: 10588 Comm: syz.2.1457 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  413.050677][T10588] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  413.050688][T10588] Call Trace:
[  413.050696][T10588]  <TASK>
[  413.050704][T10588]  dump_stack_lvl+0x16c/0x1f0
[  413.050730][T10588]  warn_alloc+0x24d/0x3a0
[  413.050756][T10588]  ? __pfx_warn_alloc+0x10/0x10
[  413.050779][T10588]  ? stack_depot_save_flags+0x28/0x900
[  413.050808][T10588]  ? kasan_save_stack+0x42/0x60
[  413.050824][T10588]  ? kasan_save_stack+0x33/0x60
[  413.050841][T10588]  ? kasan_save_track+0x14/0x30
[  413.050857][T10588]  ? __kasan_kmalloc+0xaa/0xb0
[  413.050874][T10588]  ? xskq_create+0x52/0x1d0
[  413.050888][T10588]  ? xsk_setsockopt+0x8b0/0xac0
[  413.050943][T10588]  ? __sys_setsockopt+0x1a4/0x270
[  413.050966][T10588]  ? __ia32_sys_setsockopt+0xbc/0x160
[  413.050987][T10588]  ? __do_fast_syscall_32+0x73/0x120
[  413.051022][T10588]  __vmalloc_node_range_noprof+0x10a3/0x14e0
[  413.051053][T10588]  ? xskq_create+0xfb/0x1d0
[  413.051077][T10588]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  413.051106][T10588]  ? xskq_create+0xfb/0x1d0
[  413.051129][T10588]  vmalloc_user_noprof+0x6b/0x90
[  413.051151][T10588]  ? xskq_create+0xfb/0x1d0
[  413.051167][T10588]  xskq_create+0xfb/0x1d0
[  413.051185][T10588]  xsk_setsockopt+0x8b0/0xac0
[  413.051213][T10588]  ? __pfx_xsk_setsockopt+0x10/0x10
[  413.051239][T10588]  ? __pfx_aa_sk_perm+0x10/0x10
[  413.051274][T10588]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  413.051293][T10588]  ? __pfx_xsk_setsockopt+0x10/0x10
[  413.051305][  T104] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.051320][T10588]  do_sock_setsockopt+0x222/0x480
[  413.051340][T10588]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  413.051366][T10588]  ? __fget_light+0x173/0x210
[  413.051392][T10588]  __sys_setsockopt+0x1a4/0x270
[  413.051418][T10588]  ? __pfx___sys_setsockopt+0x10/0x10
[  413.051442][T10588]  ? xfd_validate_state+0x5d/0x180
[  413.051477][T10588]  __ia32_sys_setsockopt+0xbc/0x160
[  413.051499][T10588]  ? lockdep_hardirqs_on+0x7c/0x110
[  413.051523][T10588]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  413.051548][T10588]  __do_fast_syscall_32+0x73/0x120
[  413.051574][T10588]  do_fast_syscall_32+0x32/0x80
[  413.051599][T10588]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  413.051620][T10588] RIP: 0023:0xf7eff579
[  413.051635][T10588] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  413.051653][T10588] RSP: 002b:00000000f567556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  413.051671][T10588] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 000000000000011b
[  413.051684][T10588] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000020
[  413.051696][T10588] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  413.051708][T10588] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  413.051721][T10588] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  413.051746][T10588]  </TASK>
[  413.051754][T10588] Mem-Info:
[  413.051762][T10588] active_anon:7257 inactive_anon:3 isolated_anon:0
[  413.051762][T10588]  active_file:12654 inactive_file:33511 isolated_file:0
[  413.051762][T10588]  unevictable:768 dirty:528 writeback:0
[  413.051762][T10588]  slab_reclaimable:5099 slab_unreclaimable:55185
[  413.051762][T10588]  mapped:21879 shmem:2356 pagetables:628
[  413.051762][T10588]  sec_pagetables:324 bounce:0
[  413.051762][T10588]  kernel_misc_reclaimable:0
[  413.051762][T10588]  free:66990 free_pcp:5533 free_cma:0
[  413.051809][T10588] Node 0 active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:12kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9040kB pagetables:932kB sec_pagetables:1192kB all_unreclaimable? no
[  413.051855][T10588] Node 1 active_anon:29028kB inactive_anon:12kB active_file:50608kB inactive_file:134032kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:87500kB dirty:2104kB writeback:0kB shmem:7888kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1828kB pagetables:1580kB sec_pagetables:104kB all_unreclaimable? no
[  413.051908][T10588] Node 0 DMA free:892kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:288kB local_pcp:104kB free_cma:0kB
[  413.051955][T10588] lowmem_reserve[]: 0 275 0 0 0
[  413.051993][T10588] Node 0 DMA32 free:20956kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:1536kB writepending:8kB present:1032192kB managed:308888kB mlocked:0kB bounce:0kB free_pcp:2224kB local_pcp:608kB free_cma:0kB
[  413.052041][T10588] lowmem_reserve[]: 0 0 0 0 0
[  413.052076][T10588] Node 1 DMA32 free:246112kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:29028kB inactive_anon:12kB active_file:50608kB inactive_file:134032kB unevictable:1536kB writepending:2104kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:19620kB local_pcp:5364kB free_cma:0kB
[  413.052126][T10588] lowmem_reserve[]: 0 0 0 0 0
[  413.052158][T10588] Node 0 DMA: 1*4kB (U) 3*8kB (U) 14*16kB (U) 20*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 892kB
[  413.052272][T10588] Node 0 DMA32: 259*4kB (UMEH) 54*8kB (UEH) 28*16kB (UMEH) 82*32kB (UMEH) 26*64kB (UEH) 5*128kB (UME) 10*256kB (UME) 9*512kB (M) 3*1024kB (UM) 2*2048kB (M) 0*4096kB = 21180kB
[  413.052456][T10588] Node 1 DMA32: 948*4kB (UME) 736*8kB (UME) 331*16kB (UME) 349*32kB (UME) 234*64kB (UME) 67*128kB (UME) 25*256kB (UME) 23*512kB (UME) 14*1024kB (UME) 12*2048kB (UM) 34*4096kB (UM) = 246048kB
[  413.052670][T10588] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  413.052684][T10588] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  413.052700][T10588] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  413.052714][T10588] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  413.052727][T10588] 48940 total pagecache pages
[  413.052733][T10588] 433 pages in swap cache
[  413.052740][T10588] Free swap  = 117536kB
[  413.052747][T10588] Total swap = 124996kB
[  413.052753][T10588] 524155 pages RAM
[  413.052760][T10588] 0 pages HighMem/MovableOnly
[  413.052767][T10588] 206541 pages reserved
[  413.052774][T10588] 0 pages cma reserved
[  413.214321][  T104] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.346233][  T104] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.454123][T10583] chnl_net:caif_netlink_parms(): no params data found
[  413.771331][  T104] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  414.516358][T10583] bridge0: port 1(bridge_slave_0) entered blocking state
[  414.522136][T10583] bridge0: port 1(bridge_slave_0) entered disabled state
[  414.526173][T10583] bridge_slave_0: entered allmulticast mode
[  414.550204][T10583] bridge_slave_0: entered promiscuous mode
[  414.554167][T10583] bridge0: port 2(bridge_slave_1) entered blocking state
[  414.557408][T10583] bridge0: port 2(bridge_slave_1) entered disabled state
[  414.559068][ T5354] Bluetooth: hci5: command tx timeout
[  414.563380][T10583] bridge_slave_1: entered allmulticast mode
[  414.610591][T10583] bridge_slave_1: entered promiscuous mode
[  415.162992][  T104] bridge_slave_1: left allmulticast mode
[  415.165903][  T104] bridge_slave_1: left promiscuous mode
[  415.172440][  T104] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.210849][  T104] bridge_slave_0: left allmulticast mode
[  415.213544][  T104] bridge_slave_0: left promiscuous mode
[  415.239780][  T104] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.300651][  T104] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  416.323138][  T104] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  416.388109][  T104] bond0 (unregistering): Released all slaves
[  416.451578][T10583] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  416.457793][T10583] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  416.628997][ T5354] Bluetooth: hci5: command tx timeout
[  416.862098][T10583] team0: Port device team_slave_0 added
[  416.872708][T10583] team0: Port device team_slave_1 added
[  416.941932][T10618] 9pnet_fd: Insufficient options for proto=fd
[  417.665370][T10583] batman_adv: batadv0: Adding interface: batadv_slave_0
[  417.671359][T10583] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  417.730146][T10625] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  417.740821][T10583] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  417.759475][T10583] batman_adv: batadv0: Adding interface: batadv_slave_1
[  417.774472][T10583] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  417.800183][T10583] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  417.974524][  T104] hsr_slave_0: left promiscuous mode
[  417.991294][  T104] hsr_slave_1: left promiscuous mode
[  417.996654][  T104] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  418.002531][  T104] batman_adv: batadv0: Removing interface: batadv_slave_0
[  418.010817][  T104] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  418.014175][  T104] batman_adv: batadv0: Removing interface: batadv_slave_1
[  418.075704][  T104] veth1_macvtap: left promiscuous mode
[  418.078774][  T104] veth0_macvtap: left promiscuous mode
[  418.083315][  T104] veth1_vlan: left promiscuous mode
[  418.086001][  T104] veth0_vlan: left promiscuous mode
[  418.708973][ T5354] Bluetooth: hci5: command tx timeout
[  420.639304][  T104] team0 (unregistering): Port device team_slave_1 removed
[  420.762449][  T104] team0 (unregistering): Port device team_slave_0 removed
[  420.799045][ T5354] Bluetooth: hci5: command tx timeout
[  422.499846][T10639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1469'.
[  422.531036][T10635] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1468'.
[  422.558818][T10636] bridge_slave_1: left allmulticast mode
[  422.564838][T10636] bridge_slave_1: left promiscuous mode
[  422.567205][T10636] bridge0: port 2(bridge_slave_1) entered disabled state
[  422.896953][T10583] hsr_slave_0: entered promiscuous mode
[  422.905459][T10583] hsr_slave_1: entered promiscuous mode
[  422.912214][T10583] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  422.919705][T10583] Cannot create hsr debugfs directory
[  422.930636][T10661] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1473'.
[  422.934501][T10661] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1473'.
[  423.187297][T10673] overlayfs: failed to resolve './file0': -2
[  423.351157][T10677] FAULT_INJECTION: forcing a failure.
[  423.351157][T10677] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  423.369278][T10677] CPU: 1 UID: 0 PID: 10677 Comm: syz.0.1477 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  423.374143][T10677] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  423.379597][T10677] Call Trace:
[  423.381275][T10677]  <TASK>
[  423.382375][T10677]  dump_stack_lvl+0x16c/0x1f0
[  423.385057][T10677]  should_fail_ex+0x497/0x5b0
[  423.388200][T10677]  _copy_from_user+0x30/0xf0
[  423.391425][T10677]  get_compat_msghdr+0xa8/0x170
[  423.393842][T10677]  ? __pfx_get_compat_msghdr+0x10/0x10
[  423.396536][T10677]  ? __pfx___lock_acquire+0x10/0x10
[  423.399478][T10677]  ___sys_sendmsg+0x1b0/0x1e0
[  423.401594][T10677]  ? __pfx____sys_sendmsg+0x10/0x10
[  423.404575][T10677]  ? ksys_write+0x21c/0x260
[  423.407229][T10677]  ? __fget_light+0x173/0x210
[  423.409854][T10677]  __sys_sendmsg+0x117/0x1f0
[  423.411982][T10677]  ? __pfx___sys_sendmsg+0x10/0x10
[  423.413959][T10677]  __do_fast_syscall_32+0x73/0x120
[  423.416109][T10677]  do_fast_syscall_32+0x32/0x80
[  423.418079][T10677]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  423.421161][T10677] RIP: 0023:0xf741e579
[  423.422981][T10677] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  423.429394][T10677] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  423.432038][T10677] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000780
[  423.435707][T10677] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  423.438819][T10677] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  423.442220][T10677] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  423.446070][T10677] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  423.449588][T10677]  </TASK>
[  424.656271][T10583] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  424.667660][T10583] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  424.692708][T10583] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  424.707808][T10583] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  424.886692][T10583] 8021q: adding VLAN 0 to HW filter on device bond0
[  424.926669][T10583] 8021q: adding VLAN 0 to HW filter on device team0
[  424.956102][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  424.959700][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  425.016902][  T104] bridge0: port 2(bridge_slave_1) entered blocking state
[  425.020770][  T104] bridge0: port 2(bridge_slave_1) entered forwarding state
[  425.376733][T10583] 8021q: adding VLAN 0 to HW filter on device batadv0
[  425.486056][T10583] veth0_vlan: entered promiscuous mode
[  425.511497][T10583] veth1_vlan: entered promiscuous mode
[  425.566994][T10583] veth0_macvtap: entered promiscuous mode
[  425.591142][T10729] xt_CT: You must specify a L4 protocol and not use inversions on it
[  425.593685][T10583] veth1_macvtap: entered promiscuous mode
[  425.640329][T10583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.645253][T10583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.655176][T10583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.664361][T10729] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1485'.
[  425.676172][T10583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.682295][T10583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.687784][T10583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.713126][T10583] batman_adv: batadv0: Interface activated: batadv_slave_0
[  425.737210][T10583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.741525][T10729] xt_CT: You must specify a L4 protocol and not use inversions on it
[  425.748442][T10583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.753643][T10583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.758341][T10583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.762681][T10583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.767103][T10583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.771324][T10583] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  425.775726][T10583] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.785838][T10583] batman_adv: batadv0: Interface activated: batadv_slave_1
[  425.817458][T10583] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  425.818708][   T39] kauditd_printk_skb: 6 callbacks suppressed
[  425.818721][   T39] audit: type=1326 audit(2000000159.503:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  425.822765][T10583] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  425.843683][   T39] audit: type=1326 audit(2000000159.533:2657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf741e579 code=0x7ffc0000
[  425.844070][T10583] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  425.857620][T10583] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  425.869469][   T39] audit: type=1326 audit(2000000159.533:2658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  425.898971][   T39] audit: type=1326 audit(2000000159.533:2659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  425.994865][   T39] audit: type=1326 audit(2000000159.613:2660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf741e579 code=0x7ffc0000
[  426.021249][   T39] audit: type=1326 audit(2000000159.613:2661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  426.032868][   T39] audit: type=1326 audit(2000000159.683:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf741e579 code=0x7ffc0000
[  426.079224][T10741] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  426.083523][   T39] audit: type=1326 audit(2000000159.683:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  426.129038][   T39] audit: type=1326 audit(2000000159.683:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10724 comm="syz.0.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  426.134919][   T91] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  426.163592][   T91] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  426.224047][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  426.229755][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  427.570509][T10755] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  427.898429][T10763] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  428.440432][T10769] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  429.133406][   T64] Bluetooth: (null): Invalid header checksum
[  429.136218][   T64] Bluetooth: (null): Invalid header checksum
[  429.250148][ T1109] Bluetooth: (null): Invalid header checksum
[  430.661807][T10811] xt_CT: You must specify a L4 protocol and not use inversions on it
[  430.699024][T10811] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1502'.
[  430.785680][T10811] xt_CT: You must specify a L4 protocol and not use inversions on it
[  430.851079][   T39] audit: type=1326 audit(2000000164.503:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  430.874810][   T39] audit: type=1326 audit(2000000164.513:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  430.889846][   T39] audit: type=1326 audit(2000000164.513:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  430.898516][   T39] audit: type=1326 audit(2000000164.513:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  430.917853][   T39] audit: type=1326 audit(2000000164.553:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  430.928017][   T39] audit: type=1326 audit(2000000164.553:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  430.937843][   T39] audit: type=1326 audit(2000000164.553:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  430.957883][   T39] audit: type=1326 audit(2000000164.563:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  430.985207][   T39] audit: type=1326 audit(2000000164.563:2673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  431.007836][   T39] audit: type=1326 audit(2000000164.563:2674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10805 comm="syz.2.1502" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  431.707409][T10827] random: crng reseeded on system resumption
[  431.736656][T10827] MTD: Couldn't look up '+net_cls +cpuacct -hugetlb +freezer -pids +hugetlb -cpu ': -2
[  431.911762][T10834] syz.0.1510: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  431.928470][T10834] CPU: 1 UID: 0 PID: 10834 Comm: syz.0.1510 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  431.932793][T10834] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  431.937160][T10834] Call Trace:
[  431.938651][T10834]  <TASK>
[  431.939892][T10834]  dump_stack_lvl+0x16c/0x1f0
[  431.941881][T10834]  warn_alloc+0x24d/0x3a0
[  431.943659][T10834]  ? __pfx_warn_alloc+0x10/0x10
[  431.945683][T10834]  ? hlock_class+0x4e/0x130
[  431.947551][T10834]  ? stack_depot_save_flags+0x28/0x900
[  431.949772][T10834]  ? kasan_save_stack+0x42/0x60
[  431.951824][T10834]  ? kasan_save_stack+0x33/0x60
[  431.953893][T10834]  ? kasan_save_track+0x14/0x30
[  431.955977][T10834]  ? __kasan_kmalloc+0xaa/0xb0
[  431.958017][T10834]  ? xskq_create+0x52/0x1d0
[  431.959982][T10834]  ? xsk_setsockopt+0x8b0/0xac0
[  431.962063][T10834]  ? __sys_setsockopt+0x1a4/0x270
[  431.963908][T10834]  ? __ia32_sys_setsockopt+0xbc/0x160
[  431.966169][T10834]  ? __do_fast_syscall_32+0x73/0x120
[  431.968260][T10834]  __vmalloc_node_range_noprof+0x10a3/0x14e0
[  431.970609][T10834]  ? xskq_create+0xfb/0x1d0
[  431.972408][T10834]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  431.975177][T10834]  ? xskq_create+0xfb/0x1d0
[  431.977171][T10834]  vmalloc_user_noprof+0x6b/0x90
[  431.979367][T10834]  ? xskq_create+0xfb/0x1d0
[  431.981358][T10834]  xskq_create+0xfb/0x1d0
[  431.983291][T10834]  xsk_setsockopt+0x8b0/0xac0
[  431.985196][T10834]  ? __pfx_xsk_setsockopt+0x10/0x10
[  431.987404][T10834]  ? __pfx_aa_sk_perm+0x10/0x10
[  431.989469][T10834]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  431.991567][T10834]  ? __pfx_xsk_setsockopt+0x10/0x10
[  431.994590][T10834]  do_sock_setsockopt+0x222/0x480
[  431.996753][T10834]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  431.999019][T10834]  ? __fget_light+0x173/0x210
[  432.001079][T10834]  __sys_setsockopt+0x1a4/0x270
[  432.003172][T10834]  ? __pfx___sys_setsockopt+0x10/0x10
[  432.005426][T10834]  ? xfd_validate_state+0x5d/0x180
[  432.007597][T10834]  __ia32_sys_setsockopt+0xbc/0x160
[  432.009815][T10834]  ? lockdep_hardirqs_on+0x7c/0x110
[  432.012011][T10834]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  432.014773][T10834]  __do_fast_syscall_32+0x73/0x120
[  432.016951][T10834]  do_fast_syscall_32+0x32/0x80
[  432.019112][T10834]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  432.021899][T10834] RIP: 0023:0xf741e579
[  432.023603][T10834] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  432.031603][T10834] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  432.035088][T10834] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 000000000000011b
[  432.038401][T10834] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000020
[  432.041279][T10834] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  432.044792][T10834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.048268][T10834] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  432.052122][T10834]  </TASK>
[  432.101443][T10834] Mem-Info:
[  432.102902][T10834] active_anon:9944 inactive_anon:14 isolated_anon:0
[  432.102902][T10834]  active_file:12673 inactive_file:33524 isolated_file:0
[  432.102902][T10834]  unevictable:768 dirty:664 writeback:0
[  432.102902][T10834]  slab_reclaimable:5084 slab_unreclaimable:55119
[  432.102902][T10834]  mapped:23496 shmem:3612 pagetables:702
[  432.102902][T10834]  sec_pagetables:324 bounce:0
[  432.102902][T10834]  kernel_misc_reclaimable:0
[  432.102902][T10834]  free:66677 free_pcp:2874 free_cma:0
[  432.149141][T10834] Node 0 active_anon:0kB inactive_anon:48kB active_file:0kB inactive_file:12kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9072kB pagetables:992kB sec_pagetables:1192kB all_unreclaimable? no
[  432.168977][T10834] Node 1 active_anon:42344kB inactive_anon:8kB active_file:50692kB inactive_file:134084kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:94468kB dirty:2648kB writeback:0kB shmem:15112kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1964kB pagetables:1816kB sec_pagetables:104kB all_unreclaimable? no
[  432.204136][T10834] Node 0 DMA free:904kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:288kB local_pcp:104kB free_cma:0kB
[  432.222399][T10834] lowmem_reserve[]: 0 275 0 0 0
[  432.229269][T10834] Node 0 DMA32 free:21304kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:12kB unevictable:1536kB writepending:8kB present:1032192kB managed:308888kB mlocked:0kB bounce:0kB free_pcp:660kB local_pcp:108kB free_cma:0kB
[  432.242534][T10834] lowmem_reserve[]: 0 0 0 0 0
[  432.244642][T10834] Node 1 DMA32 free:235184kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:45400kB inactive_anon:8kB active_file:50692kB inactive_file:134084kB unevictable:1536kB writepending:2656kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:14300kB local_pcp:5572kB free_cma:0kB
[  432.274558][T10834] lowmem_reserve[]: 0 0 0 0 0
[  432.276631][T10834] Node 0 DMA: 2*4kB (U) 4*8kB (U) 14*16kB (U) 20*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 904kB
[  432.292598][T10834] Node 0 DMA32: 185*4kB (UMEH) 61*8kB (UMEH) 24*16kB (UMEH) 63*32kB (MEH) 29*64kB (UMEH) 12*128kB (UME) 9*256kB (UME) 10*512kB (M) 3*1024kB (UM) 2*2048kB (M) 0*4096kB = 21612kB
[  432.319645][T10834] Node 1 DMA32: 87*4kB (UM) 29*8kB (E) 45*16kB (UE) 191*32kB (UME) 240*64kB (UME) 116*128kB (UME) 29*256kB (UME) 22*512kB (UME) 16*1024kB (UME) 12*2048kB (UM) 34*4096kB (UM) = 236532kB
[  432.327309][T10834] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  432.338947][T10834] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  432.343916][T10834] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  432.347829][T10834] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  432.369352][T10834] 49082 total pagecache pages
[  432.371839][T10834] 431 pages in swap cache
[  432.373767][T10834] Free swap  = 117676kB
[  432.375643][T10834] Total swap = 124996kB
[  432.377649][T10834] 524155 pages RAM
[  432.382767][T10834] 0 pages HighMem/MovableOnly
[  432.384949][T10834] 206541 pages reserved
[  432.386822][T10834] 0 pages cma reserved
[  432.534670][T10845] xt_connbytes: Forcing CT accounting to be enabled
[  432.538242][T10845] xt_CT: You must specify a L4 protocol and not use inversions on it
[  432.554764][T10845] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1512'.
[  432.568189][T10845] xt_CT: You must specify a L4 protocol and not use inversions on it
[  433.243058][T10850] xt_CT: You must specify a L4 protocol and not use inversions on it
[  433.272789][T10850] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1514'.
[  433.351158][T10850] xt_CT: You must specify a L4 protocol and not use inversions on it
[  433.687609][T10853] xt_CT: You must specify a L4 protocol and not use inversions on it
[  433.711301][T10855] overlayfs: failed to resolve './file0': -2
[  433.743986][T10853] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1515'.
[  433.802339][T10853] xt_CT: You must specify a L4 protocol and not use inversions on it
[  434.186067][T10863] xt_CT: You must specify a L4 protocol and not use inversions on it
[  434.199676][T10863] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1518'.
[  434.222317][T10863] xt_CT: You must specify a L4 protocol and not use inversions on it
[  435.257785][T10884] 9pnet_fd: Insufficient options for proto=fd
[  435.693159][T10889] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  436.532682][T10891] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1525'.
[  437.094307][T10901] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  437.151517][T10903] netlink: 'syz.1.1527': attribute type 4 has an invalid length.
[  437.856175][T10906] overlayfs: failed to resolve './file0': -2
[  438.197238][T10913] bridge0: entered promiscuous mode
[  438.221508][T10913] bridge0: entered allmulticast mode
[  438.708820][T10925] vivid-001: =================  START STATUS  =================
[  438.713293][T10925] vivid-001: Radio HW Seek Mode: Bounded
[  438.716481][T10925] vivid-001: Radio Programmable HW Seek: false
[  438.723605][T10925] vivid-001: RDS Rx I/O Mode: Block I/O
[  438.726134][T10925] vivid-001: Generate RBDS Instead of RDS: false
[  438.729344][T10925] vivid-001: RDS Reception: true
[  438.731875][T10925] vivid-001: RDS Program Type: 0 inactive
[  438.764028][T10925] vivid-001: RDS PS Name:  inactive
[  438.766318][T10925] vivid-001: RDS Radio Text:  inactive
[  438.768672][T10925] vivid-001: RDS Traffic Announcement: false inactive
[  438.796988][T10925] vivid-001: RDS Traffic Program: false inactive
[  438.810885][T10925] vivid-001: RDS Music: false inactive
[  438.813405][T10927] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  438.866702][T10925] vivid-001: ==================  END STATUS  ==================
[  439.526206][T10936] netlink: 'syz.2.1533': attribute type 4 has an invalid length.
[  440.143502][T10941] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  440.609284][T10941] sctp: [Deprecated]: syz.1.1534 (pid 10941) Use of struct sctp_assoc_value in delayed_ack socket option.
[  440.609284][T10941] Use struct sctp_sack_info instead
[  440.824448][T10949] 9pnet_fd: Insufficient options for proto=fd
[  441.424870][T10952] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  441.479898][T10954] xt_CT: You must specify a L4 protocol and not use inversions on it
[  441.509990][T10954] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1539'.
[  441.589907][T10954] xt_CT: You must specify a L4 protocol and not use inversions on it
[  441.604953][   T39] kauditd_printk_skb: 52 callbacks suppressed
[  441.604967][   T39] audit: type=1326 audit(2000000175.293:2727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.668087][   T39] audit: type=1326 audit(2000000175.323:2728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.678961][   T39] audit: type=1326 audit(2000000175.353:2729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.697369][   T39] audit: type=1326 audit(2000000175.353:2730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.730457][   T39] audit: type=1326 audit(2000000175.423:2731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.743475][   T39] audit: type=1326 audit(2000000175.423:2732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.775715][   T39] audit: type=1326 audit(2000000175.423:2733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.819034][   T39] audit: type=1326 audit(2000000175.433:2734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.844716][   T39] audit: type=1326 audit(2000000175.433:2735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  441.858823][   T39] audit: type=1326 audit(2000000175.433:2736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.2.1539" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  442.180153][T10963] xt_CT: You must specify a L4 protocol and not use inversions on it
[  442.209517][T10963] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1543'.
[  442.229604][T10965] FAULT_INJECTION: forcing a failure.
[  442.229604][T10965] name failslab, interval 1, probability 0, space 0, times 0
[  442.229897][T10963] xt_CT: You must specify a L4 protocol and not use inversions on it
[  442.248961][T10965] CPU: 3 UID: 0 PID: 10965 Comm: syz.0.1544 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  442.253727][T10965] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  442.258916][T10965] Call Trace:
[  442.260204][T10965]  <TASK>
[  442.261358][T10965]  dump_stack_lvl+0x16c/0x1f0
[  442.263483][T10965]  should_fail_ex+0x497/0x5b0
[  442.265667][T10965]  ? fs_reclaim_acquire+0xae/0x160
[  442.267896][T10965]  should_failslab+0xc2/0x120
[  442.268001][T10966] netlink: 'syz.1.1542': attribute type 4 has an invalid length.
[  442.269864][T10965]  __kmalloc_node_noprof+0xd1/0x440
[  442.269889][T10965]  ? alloc_slab_obj_exts+0x41/0xa0
[  442.269909][T10965]  alloc_slab_obj_exts+0x41/0xa0
[  442.269927][T10965]  __memcg_slab_post_alloc_hook+0x2bc/0x9c0
[  442.269948][T10965]  ? kasan_save_track+0x14/0x30
[  442.269968][T10965]  kmem_cache_alloc_node_noprof+0x2e7/0x310
[  442.269986][T10965]  ? __alloc_skb+0x2b3/0x380
[  442.270012][T10965]  __alloc_skb+0x2b3/0x380
[  442.291288][T10965]  ? __pfx___alloc_skb+0x10/0x10
[  442.293180][T10965]  ? __lock_acquire+0x1620/0x3cb0
[  442.295108][T10965]  alloc_skb_with_frags+0xe4/0x710
[  442.297023][T10965]  ? __pfx_mark_lock+0x10/0x10
[  442.298848][T10965]  ? hlock_class+0x4e/0x130
[  442.300624][T10965]  sock_alloc_send_pskb+0x7f1/0x980
[  442.302841][T10965]  ? lock_acquire+0x1b1/0x560
[  442.304916][T10965]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  442.307323][T10965]  ? __pfx_lock_release+0x10/0x10
[  442.309519][T10965]  ? do_raw_spin_lock+0x12d/0x2c0
[  442.311709][T10965]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  442.314041][T10965]  unix_dgram_sendmsg+0x46c/0x1940
[  442.316252][T10965]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  442.318499][T10965]  ? __import_iovec+0x1fd/0x6e0
[  442.320568][T10965]  unix_seqpacket_sendmsg+0x12a/0x1c0
[  442.322759][T10965]  ____sys_sendmsg+0x9b4/0xb50
[  442.324791][T10965]  ? __pfx_____sys_sendmsg+0x10/0x10
[  442.327022][T10965]  ? get_compat_msghdr+0x11b/0x170
[  442.329185][T10965]  ? __pfx___lock_acquire+0x10/0x10
[  442.331405][T10965]  ___sys_sendmsg+0x135/0x1e0
[  442.333443][T10965]  ? __pfx____sys_sendmsg+0x10/0x10
[  442.335729][T10965]  ? ksys_write+0x21c/0x260
[  442.337902][T10965]  ? __fget_light+0x173/0x210
[  442.339878][T10965]  __sys_sendmsg+0x117/0x1f0
[  442.341899][T10965]  ? __pfx___sys_sendmsg+0x10/0x10
[  442.344068][T10965]  __do_fast_syscall_32+0x73/0x120
[  442.346170][T10965]  do_fast_syscall_32+0x32/0x80
[  442.348205][T10965]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  442.350807][T10965] RIP: 0023:0xf741e579
[  442.352850][T10965] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  442.360826][T10965] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  442.363866][T10965] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000740
[  442.366977][T10965] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  442.370314][T10965] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  442.373728][T10965] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  442.376982][T10965] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  442.379993][T10965]  </TASK>
[  442.440313][T10968] FAULT_INJECTION: forcing a failure.
[  442.440313][T10968] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.446928][T10968] CPU: 0 UID: 0 PID: 10968 Comm: syz.2.1545 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  442.452138][T10968] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  442.456862][T10968] Call Trace:
[  442.458032][T10968]  <TASK>
[  442.459396][T10968]  dump_stack_lvl+0x16c/0x1f0
[  442.461457][T10968]  should_fail_ex+0x497/0x5b0
[  442.463125][T10968]  _copy_from_user+0x30/0xf0
[  442.464760][T10968]  copy_mount_options+0x76/0x190
[  442.467268][T10968]  __ia32_sys_mount+0x1ad/0x310
[  442.469700][T10968]  ? __pfx___ia32_sys_mount+0x10/0x10
[  442.472133][T10968]  __do_fast_syscall_32+0x73/0x120
[  442.474680][T10968]  do_fast_syscall_32+0x32/0x80
[  442.476936][T10968]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  442.480354][T10968] RIP: 0023:0xf7eff579
[  442.482568][T10968] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  442.491822][T10968] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  442.495792][T10968] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000040
[  442.499455][T10968] RDX: 0000000000000000 RSI: 0000000002204c3b RDI: 0000000020000180
[  442.503354][T10968] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  442.507247][T10968] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  442.510873][T10968] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  442.514793][T10968]  </TASK>
[  443.142410][T10984] xt_CT: You must specify a L4 protocol and not use inversions on it
[  443.158636][T10984] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1549'.
[  443.177936][T10984] xt_CT: You must specify a L4 protocol and not use inversions on it
[  443.598967][   T57] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  443.672941][T10994] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1552'.
[  443.826200][   T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  443.848582][   T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  443.880959][   T57] usb 6-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  443.889849][   T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.901591][   T57] usb 6-1: config 0 descriptor??
[  444.425689][   T57] hid-led 0003:0FC5:B080.0007: item fetching failed at offset 0/3
[  444.439699][   T57] hid-led 0003:0FC5:B080.0007: probe with driver hid-led failed with error -22
[  446.354833][ T6635] usb 6-1: USB disconnect, device number 12
[  447.001829][T11018] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  448.210210][T11027] overlayfs: failed to resolve './file0': -2
[  448.217546][T11025] netlink: 'syz.0.1561': attribute type 1 has an invalid length.
[  448.222376][T11025] netlink: 216 bytes leftover after parsing attributes in process `syz.0.1561'.
[  448.682318][T11039] xt_CT: You must specify a L4 protocol and not use inversions on it
[  448.712496][T11039] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1566'.
[  448.773552][T11039] xt_CT: You must specify a L4 protocol and not use inversions on it
[  448.785111][   T39] kauditd_printk_skb: 30 callbacks suppressed
[  448.785124][   T39] audit: type=1326 audit(2000000182.472:2767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.810739][   T39] audit: type=1326 audit(2000000182.482:2768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.819973][   T39] audit: type=1326 audit(2000000182.502:2769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.830405][   T39] audit: type=1326 audit(2000000182.502:2770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.839721][   T39] audit: type=1326 audit(2000000182.502:2771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.860948][   T39] audit: type=1326 audit(2000000182.522:2772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.891092][   T39] audit: type=1326 audit(2000000182.522:2773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.948089][   T39] audit: type=1326 audit(2000000182.522:2774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.979779][   T39] audit: type=1326 audit(2000000182.532:2775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  448.995247][T11044] FAULT_INJECTION: forcing a failure.
[  448.995247][T11044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  449.002618][   T39] audit: type=1326 audit(2000000182.532:2776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11038 comm="syz.2.1566" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  449.020434][T11044] CPU: 3 UID: 0 PID: 11044 Comm: syz.2.1568 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  449.025181][T11044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  449.029549][T11044] Call Trace:
[  449.031045][T11044]  <TASK>
[  449.032374][T11044]  dump_stack_lvl+0x16c/0x1f0
[  449.034576][T11044]  should_fail_ex+0x497/0x5b0
[  449.036700][T11044]  _copy_from_user+0x30/0xf0
[  449.038781][T11044]  do_tcp_getsockopt+0x180c/0x3a90
[  449.041098][T11044]  ? __pfx_do_tcp_getsockopt+0x10/0x10
[  449.043341][T11044]  ? hlock_class+0x4e/0x130
[  449.045159][T11044]  ? mark_lock+0xb5/0xc60
[  449.047161][T11044]  ? hlock_class+0x4e/0x130
[  449.049337][T11044]  ? __pfx_mark_lock+0x10/0x10
[  449.051436][T11044]  ? __pfx_mark_lock+0x10/0x10
[  449.053527][T11044]  ? aa_label_sk_perm+0x165/0x560
[  449.055524][T11044]  ? __lock_acquire+0xbdd/0x3cb0
[  449.057529][T11044]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  449.059850][T11044]  ? __might_fault+0x13b/0x190
[  449.061927][T11044]  ? __pfx___lock_acquire+0x10/0x10
[  449.063955][T11044]  ? hlock_class+0x4e/0x130
[  449.065707][T11044]  ? __pfx___might_resched+0x10/0x10
[  449.067548][T11044]  ? __pfx___lock_acquire+0x10/0x10
[  449.069556][T11044]  ? __pfx_lock_release+0x10/0x10
[  449.071802][T11044]  ? __pfx_aa_sk_perm+0x10/0x10
[  449.073998][T11044]  ? find_held_lock+0x2d/0x110
[  449.076151][T11044]  tcp_getsockopt+0xdf/0x100
[  449.078226][T11044]  ? bpf_lsm_socket_getsockopt+0x9/0x10
[  449.080669][T11044]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  449.082953][T11044]  do_sock_getsockopt+0x2e5/0x7c0
[  449.084780][T11044]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  449.087239][T11044]  ? __fget_files+0x256/0x400
[  449.089335][T11044]  ? __fget_light+0x173/0x210
[  449.091211][T11044]  __sys_getsockopt+0x1a1/0x270
[  449.093360][T11044]  ? __pfx___sys_getsockopt+0x10/0x10
[  449.095760][T11044]  ? fput+0x32/0x390
[  449.097576][T11044]  ? ksys_write+0x1ab/0x260
[  449.099601][T11044]  ? __pfx_ksys_write+0x10/0x10
[  449.101725][T11044]  __ia32_sys_getsockopt+0xbc/0x160
[  449.103836][T11044]  ? lockdep_hardirqs_on+0x7c/0x110
[  449.106050][T11044]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  449.108956][T11044]  __do_fast_syscall_32+0x73/0x120
[  449.111275][T11044]  do_fast_syscall_32+0x32/0x80
[  449.113453][T11044]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  449.116259][T11044] RIP: 0023:0xf7eff579
[  449.117987][T11044] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  449.126246][T11044] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  449.129948][T11044] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000006
[  449.133032][T11044] RDX: 0000000000000023 RSI: 0000000020000280 RDI: 0000000020000000
[  449.136418][T11044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  449.139881][T11044] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  449.143304][T11044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  449.146648][T11044]  </TASK>
[  449.254971][T11049] netlink: 'syz.1.1567': attribute type 4 has an invalid length.
[  449.560717][T11055] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1571'.
[  449.604372][T11055] xt_CT: You must specify a L4 protocol and not use inversions on it
[  451.130146][T11074] ip6gretap0 speed is unknown, defaulting to 1000
[  452.403568][T11088] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  452.487053][T11090] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  452.799123][T11099] syz.2.1583: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  452.799187][T11099] CPU: 1 UID: 0 PID: 11099 Comm: syz.2.1583 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  452.799211][T11099] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  452.799223][T11099] Call Trace:
[  452.799230][T11099]  <TASK>
[  452.799238][T11099]  dump_stack_lvl+0x16c/0x1f0
[  452.799262][T11099]  warn_alloc+0x24d/0x3a0
[  452.799286][T11099]  ? __pfx_warn_alloc+0x10/0x10
[  452.799305][T11099]  ? hlock_class+0x4e/0x130
[  452.799337][T11099]  ? stack_depot_save_flags+0x28/0x900
[  452.799368][T11099]  ? kasan_save_stack+0x42/0x60
[  452.799388][T11099]  ? kasan_save_stack+0x33/0x60
[  452.799408][T11099]  ? kasan_save_track+0x14/0x30
[  452.799426][T11099]  ? __kasan_kmalloc+0xaa/0xb0
[  452.799443][T11099]  ? xskq_create+0x52/0x1d0
[  452.799459][T11099]  ? xsk_setsockopt+0x8b0/0xac0
[  452.799487][T11099]  ? __sys_setsockopt+0x1a4/0x270
[  452.799512][T11099]  ? __ia32_sys_setsockopt+0xbc/0x160
[  452.799537][T11099]  ? __do_fast_syscall_32+0x73/0x120
[  452.799571][T11099]  __vmalloc_node_range_noprof+0x10a3/0x14e0
[  452.799606][T11099]  ? xskq_create+0xfb/0x1d0
[  452.799631][T11099]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  452.799665][T11099]  ? xskq_create+0xfb/0x1d0
[  452.799689][T11099]  vmalloc_user_noprof+0x6b/0x90
[  452.799714][T11099]  ? xskq_create+0xfb/0x1d0
[  452.799733][T11099]  xskq_create+0xfb/0x1d0
[  452.799754][T11099]  xsk_setsockopt+0x8b0/0xac0
[  452.799786][T11099]  ? __pfx_xsk_setsockopt+0x10/0x10
[  452.799814][T11099]  ? __pfx_aa_sk_perm+0x10/0x10
[  452.799851][T11099]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  452.799872][T11099]  ? __pfx_xsk_setsockopt+0x10/0x10
[  452.799901][T11099]  do_sock_setsockopt+0x222/0x480
[  452.799920][T11099]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  452.799951][T11099]  ? __fget_light+0x173/0x210
[  452.799980][T11099]  __sys_setsockopt+0x1a4/0x270
[  452.800008][T11099]  ? __pfx___sys_setsockopt+0x10/0x10
[  452.800035][T11099]  ? xfd_validate_state+0x5d/0x180
[  452.800073][T11099]  __ia32_sys_setsockopt+0xbc/0x160
[  452.800099][T11099]  ? lockdep_hardirqs_on+0x7c/0x110
[  452.800124][T11099]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  452.800151][T11099]  __do_fast_syscall_32+0x73/0x120
[  452.800180][T11099]  do_fast_syscall_32+0x32/0x80
[  452.800208][T11099]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  452.800231][T11099] RIP: 0023:0xf7eff579
[  452.800247][T11099] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  452.800266][T11099] RSP: 002b:00000000f567556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  452.800286][T11099] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 000000000000011b
[  452.800299][T11099] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000020
[  452.800313][T11099] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  452.800326][T11099] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  452.800338][T11099] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  452.800362][T11099]  </TASK>
[  452.800415][T11099] Mem-Info:
[  452.800424][T11099] active_anon:11639 inactive_anon:20 isolated_anon:0
[  452.800424][T11099]  active_file:12673 inactive_file:33546 isolated_file:0
[  452.800424][T11099]  unevictable:768 dirty:513 writeback:0
[  452.800424][T11099]  slab_reclaimable:5076 slab_unreclaimable:55080
[  452.800424][T11099]  mapped:21903 shmem:2331 pagetables:695
[  452.800424][T11099]  sec_pagetables:324 bounce:0
[  452.800424][T11099]  kernel_misc_reclaimable:0
[  452.800424][T11099]  free:61639 free_pcp:7360 free_cma:0
[  452.800468][T11099] Node 0 active_anon:0kB inactive_anon:72kB active_file:0kB inactive_file:12kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:8kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9084kB pagetables:932kB sec_pagetables:1192kB all_unreclaimable? no
[  452.800512][T11099] Node 1 active_anon:46620kB inactive_anon:8kB active_file:50692kB inactive_file:134172kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:87596kB dirty:2044kB writeback:0kB shmem:7784kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1804kB pagetables:1848kB sec_pagetables:104kB all_unreclaimable? no
[  452.800555][T11099] Node 0 DMA free:944kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:168kB local_pcp:124kB free_cma:0kB
[  452.800603][T11099] lowmem_reserve[]: 0 275 0 0 0
[  452.800638][T11099] Node 0 DMA32 free:21252kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:100kB active_file:0kB inactive_file:12kB unevictable:1536kB writepending:8kB present:1032192kB managed:308888kB mlocked:0kB bounce:0kB free_pcp:1420kB local_pcp:540kB free_cma:0kB
[  452.800685][T11099] lowmem_reserve[]: 0 0 0 0 0
[  452.800718][T11099] Node 1 DMA32 free:224360kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:46620kB inactive_anon:8kB active_file:50692kB inactive_file:134172kB unevictable:1536kB writepending:2044kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:27852kB local_pcp:1224kB free_cma:0kB
[  452.800769][T11099] lowmem_reserve[]: 0 0 0 0 0
[  452.800802][T11099] Node 0 DMA: 28*4kB (U) 16*8kB (U) 16*16kB (U) 14*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 944kB
[  452.800925][T11099] Node 0 DMA32: 258*4kB (UMEH) 38*8kB (UEH) 17*16kB (UMEH) 80*32kB (UMEH) 24*64kB (UEH) 10*128kB (UME) 9*256kB (UME) 10*512kB (M) 3*1024kB (UM) 2*2048kB (M) 0*4096kB = 21576kB
[  452.801088][T11099] Node 1 DMA32: 167*4kB (U) 247*8kB (UME) 248*16kB (UME) 177*32kB (UME) 127*64kB (UME) 75*128kB (UME) 13*256kB (UME) 19*512kB (UME) 15*1024kB (UME) 13*2048kB (UM) 34*4096kB (UM) = 224308kB
[  452.801282][T11099] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  452.801299][T11099] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  452.801315][T11099] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  452.801332][T11099] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  452.801348][T11099] 48976 total pagecache pages
[  452.801357][T11099] 440 pages in swap cache
[  452.801365][T11099] Free swap  = 118324kB
[  452.801372][T11099] Total swap = 124996kB
[  452.801380][T11099] 524155 pages RAM
[  452.801388][T11099] 0 pages HighMem/MovableOnly
[  452.801395][T11099] 206541 pages reserved
[  452.801402][T11099] 0 pages cma reserved
[  453.456689][T11111] overlayfs: failed to resolve './file0': -2
[  453.570472][T11116] 9pnet_fd: Insufficient options for proto=fd
[  453.889983][T11119] zonefs (nbd0) ERROR: Not a zoned block device
[  453.921828][T11119] =======================================================
[  453.921828][T11119] WARNING: The mand mount option has been deprecated and
[  453.921828][T11119]          and is ignored by this kernel. Remove the mand
[  453.921828][T11119]          option from the mount to silence this warning.
[  453.921828][T11119] =======================================================
[  454.179051][   T30] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  454.356951][T11134] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  454.361069][   T30] usb 8-1: Using ep0 maxpacket: 32
[  454.393001][   T30] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[  454.396383][   T30] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  454.401917][   T30] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[  454.406010][   T30] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  454.424175][   T30] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  454.428191][   T30] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  454.433762][   T30] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  454.439523][   T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  454.445039][   T30] usb 8-1: config 0 descriptor??
[  454.663902][   T30] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 12 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  454.680864][   T30] usb 8-1: USB disconnect, device number 12
[  454.690875][   T30] usblp0: removed
[  455.126871][T11143] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  455.853167][    C1] vkms_vblank_simulate: vblank timer overrun
[  456.362847][T11162] 9pnet_fd: Insufficient options for proto=fd
[  456.442238][T11164] FAULT_INJECTION: forcing a failure.
[  456.442238][T11164] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  456.448006][T11164] CPU: 2 UID: 0 PID: 11164 Comm: syz.1.1603 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  456.452603][T11164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  456.457364][T11164] Call Trace:
[  456.458868][T11164]  <TASK>
[  456.460196][T11164]  dump_stack_lvl+0x16c/0x1f0
[  456.462299][T11164]  should_fail_ex+0x497/0x5b0
[  456.464328][T11164]  strncpy_from_user+0x38/0x320
[  456.466470][T11164]  strncpy_from_user_nofault+0x7f/0x180
[  456.468929][T11164]  bpf_probe_read_compat_str+0x131/0x170
[  456.471394][T11164]  bpf_prog_15fefb20d90ba6ff+0x40/0x63
[  456.473751][T11164]  bpf_trace_run2+0x231/0x590
[  456.475877][T11164]  ? __pfx_bpf_trace_run2+0x10/0x10
[  456.478205][T11164]  ? fput+0x32/0x390
[  456.479966][T11164]  syscall_trace_enter+0x1b2/0x240
[  456.482263][T11164]  __do_fast_syscall_32+0xc2/0x120
[  456.484653][T11164]  do_fast_syscall_32+0x32/0x80
[  456.487209][T11164]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  456.490830][T11164] RIP: 0023:0xf73be579
[  456.492640][T11164] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  456.501028][T11164] RSP: 002b:00000000f56b65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  456.504839][T11164] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f56b6620
[  456.508270][T11164] RDX: 000000000000000f RSI: 00000000f73afff4 RDI: 0000000000000000
[  456.511740][T11164] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  456.515246][T11164] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  456.518738][T11164] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  456.522351][T11164]  </TASK>
[  456.797194][T11172] FAULT_INJECTION: forcing a failure.
[  456.797194][T11172] name failslab, interval 1, probability 0, space 0, times 0
[  456.816631][T11172] CPU: 0 UID: 0 PID: 11172 Comm: syz.0.1606 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  456.821483][T11172] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  456.826154][T11172] Call Trace:
[  456.827574][T11172]  <TASK>
[  456.828555][T11172]  dump_stack_lvl+0x16c/0x1f0
[  456.830441][T11172]  should_fail_ex+0x497/0x5b0
[  456.832489][T11172]  ? fs_reclaim_acquire+0xae/0x160
[  456.834762][T11172]  should_failslab+0xc2/0x120
[  456.836506][T11172]  kmem_cache_alloc_node_noprof+0x71/0x310
[  456.838526][T11172]  ? alloc_vmap_area+0x636/0x2a70
[  456.840239][T11172]  alloc_vmap_area+0x636/0x2a70
[  456.842058][T11172]  ? __pfx_alloc_vmap_area+0x10/0x10
[  456.844265][T11172]  __get_vm_area_node+0x17e/0x2d0
[  456.846079][T11172]  ? mark_lock+0xb5/0xc60
[  456.847629][T11172]  __vmalloc_node_range_noprof+0x270/0x14e0
[  456.849704][T11172]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  456.851995][T11172]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  456.854379][T11172]  ? hlock_class+0x4e/0x130
[  456.856319][T11172]  ? aa_get_newest_label+0x376/0x680
[  456.858534][T11172]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  456.861225][T11172]  ? __pfx_aa_get_newest_label+0x10/0x10
[  456.863610][T11172]  ? mark_lock+0xb5/0xc60
[  456.865376][T11172]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  456.867774][T11172]  __vmalloc_noprof+0x6d/0x90
[  456.869649][T11172]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  456.871685][T11172]  bpf_prog_alloc_no_stats+0x54/0x5e0
[  456.873860][T11172]  bpf_prog_alloc+0x3b/0x240
[  456.875649][T11172]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  456.877980][T11172]  bpf_prog_load+0x1b4e/0x2670
[  456.879953][T11172]  ? hlock_class+0x4e/0x130
[  456.881774][T11172]  ? __pfx_bpf_prog_load+0x10/0x10
[  456.884115][T11172]  ? find_held_lock+0x2d/0x110
[  456.886007][T11172]  ? security_bpf+0x8c/0xc0
[  456.887918][T11172]  __sys_bpf+0x9e0/0x55e0
[  456.889838][T11172]  ? __pfx___sys_bpf+0x10/0x10
[  456.891956][T11172]  ? ksys_write+0x12f/0x260
[  456.893860][T11172]  ? find_held_lock+0x2d/0x110
[  456.895912][T11172]  ? ksys_write+0x21c/0x260
[  456.897792][T11172]  ? __pfx_lock_release+0x10/0x10
[  456.899751][T11172]  ? vfs_write+0x14d/0x1140
[  456.901483][T11172]  ? __mutex_unlock_slowpath+0x164/0x650
[  456.903609][T11172]  ? fput+0x32/0x390
[  456.905089][T11172]  ? ksys_write+0x1ab/0x260
[  456.906722][T11172]  ? __pfx_ksys_write+0x10/0x10
[  456.908591][T11172]  __ia32_sys_bpf+0x76/0xe0
[  456.910368][T11172]  __do_fast_syscall_32+0x73/0x120
[  456.912268][T11172]  do_fast_syscall_32+0x32/0x80
[  456.914516][T11172]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  456.917324][T11172] RIP: 0023:0xf741e579
[  456.919001][T11172] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  456.927003][T11172] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  456.930713][T11172] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200004c0
[  456.934106][T11172] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  456.937415][T11172] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  456.940847][T11172] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  456.944099][T11172] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  456.947173][T11172]  </TASK>
[  457.082032][T11177] FAULT_INJECTION: forcing a failure.
[  457.082032][T11177] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  457.087993][T11177] CPU: 1 UID: 0 PID: 11177 Comm: syz.1.1607 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  457.092431][T11177] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  457.117616][T11177] Call Trace:
[  457.119084][T11177]  <TASK>
[  457.120339][T11177]  dump_stack_lvl+0x16c/0x1f0
[  457.122444][T11177]  should_fail_ex+0x497/0x5b0
[  457.124598][T11177]  _copy_to_user+0x30/0xc0
[  457.126793][T11177]  simple_read_from_buffer+0xd0/0x160
[  457.129094][T11177]  proc_fail_nth_read+0x19e/0x280
[  457.131380][T11177]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  457.134618][T11177]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  457.137019][T11177]  vfs_read+0x1d4/0xbd0
[  457.138746][T11177]  ? __fdget_pos+0xeb/0x180
[  457.140678][T11177]  ? __pfx_vfs_read+0x10/0x10
[  457.142725][T11177]  ? __pfx___mutex_lock+0x10/0x10
[  457.144899][T11177]  ? __fget_files+0x256/0x400
[  457.146929][T11177]  ksys_read+0x12f/0x260
[  457.148783][T11177]  ? __pfx_ksys_read+0x10/0x10
[  457.150877][T11177]  __do_fast_syscall_32+0x73/0x120
[  457.153022][T11177]  do_fast_syscall_32+0x32/0x80
[  457.155268][T11177]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  457.157912][T11177] RIP: 0023:0xf73be579
[  457.159600][T11177] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  457.167753][T11177] RSP: 002b:00000000f56b65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  457.171478][T11177] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56b6620
[  457.174929][T11177] RDX: 000000000000000f RSI: 00000000f73afff4 RDI: 0000000000000000
[  457.178295][T11177] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  457.181513][T11177] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  457.184695][T11177] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  457.188076][T11177]  </TASK>
[  457.189521][    C1] vkms_vblank_simulate: vblank timer overrun
[  457.354723][T11182] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1608'.
[  457.367028][T11182] xt_CT: You must specify a L4 protocol and not use inversions on it
[  457.394692][   T39] kauditd_printk_skb: 17 callbacks suppressed
[  457.394706][   T39] audit: type=1326 audit(2000000191.080:2794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.416616][   T39] audit: type=1326 audit(2000000191.100:2795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.448663][   T39] audit: type=1326 audit(2000000191.130:2796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.464884][   T39] audit: type=1326 audit(2000000191.130:2797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.482659][   T39] audit: type=1326 audit(2000000191.130:2798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.496559][   T39] audit: type=1326 audit(2000000191.150:2799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.515559][   T39] audit: type=1326 audit(2000000191.150:2800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.531374][   T39] audit: type=1326 audit(2000000191.150:2801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.549089][   T39] audit: type=1326 audit(2000000191.160:2802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.569016][   T39] audit: type=1326 audit(2000000191.160:2803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11178 comm="syz.0.1608" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  457.705710][    C1] vkms_vblank_simulate: vblank timer overrun
[  458.038918][T11195] FAULT_INJECTION: forcing a failure.
[  458.038918][T11195] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  458.044766][T11195] CPU: 1 UID: 0 PID: 11195 Comm: syz.1.1613 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  458.051362][T11195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  458.059595][T11195] Call Trace:
[  458.061434][T11195]  <TASK>
[  458.062766][T11195]  dump_stack_lvl+0x16c/0x1f0
[  458.065095][T11195]  should_fail_ex+0x497/0x5b0
[  458.067236][T11195]  _copy_to_user+0x30/0xc0
[  458.069151][T11195]  simple_read_from_buffer+0xd0/0x160
[  458.071615][T11195]  proc_fail_nth_read+0x19e/0x280
[  458.074359][T11195]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  458.078323][T11195]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  458.080594][T11195]  vfs_read+0x1d4/0xbd0
[  458.082361][T11195]  ? __fdget_pos+0xeb/0x180
[  458.084173][T11195]  ? __pfx_vfs_read+0x10/0x10
[  458.086029][T11195]  ? __pfx___mutex_lock+0x10/0x10
[  458.088104][T11195]  ? __fget_files+0x256/0x400
[  458.090176][T11195]  ksys_read+0x12f/0x260
[  458.092215][T11195]  ? __pfx_ksys_read+0x10/0x10
[  458.094319][T11195]  __do_fast_syscall_32+0x73/0x120
[  458.096730][T11195]  do_fast_syscall_32+0x32/0x80
[  458.098951][T11195]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  458.101754][T11195] RIP: 0023:0xf73be579
[  458.103486][T11195] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  458.112184][T11195] RSP: 002b:00000000f56b65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  458.115993][T11195] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56b6620
[  458.119729][T11195] RDX: 000000000000000f RSI: 00000000f73afff4 RDI: 0000000000000000
[  458.123354][T11195] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  458.127068][T11195] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  458.130529][T11195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  458.133852][T11195]  </TASK>
[  458.215005][T11197] overlayfs: failed to resolve './file0': -2
[  458.423617][T11207] FAULT_INJECTION: forcing a failure.
[  458.423617][T11207] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  458.429186][T11208] FAULT_INJECTION: forcing a failure.
[  458.429186][T11208] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  458.432321][T11207] CPU: 3 UID: 0 PID: 11207 Comm: syz.2.1617 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  458.444100][T11207] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  458.449945][T11207] Call Trace:
[  458.451446][T11207]  <TASK>
[  458.452714][T11207]  dump_stack_lvl+0x16c/0x1f0
[  458.454781][T11207]  should_fail_ex+0x497/0x5b0
[  458.456787][T11207]  _copy_from_user+0x30/0xf0
[  458.458779][T11207]  tty_ioctl+0xd00/0x1650
[  458.460629][T11207]  ? __pfx_tty_ioctl+0x10/0x10
[  458.462918][T11207]  ? __pfx_do_sys_openat2+0x10/0x10
[  458.465614][T11207]  ? __fget_light+0x173/0x210
[  458.467921][T11207]  tty_compat_ioctl+0x25c/0x4f0
[  458.469996][T11207]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  458.472353][T11207]  __do_compat_sys_ioctl+0x2c3/0x330
[  458.474758][T11207]  __do_fast_syscall_32+0x73/0x120
[  458.476955][T11207]  do_fast_syscall_32+0x32/0x80
[  458.479057][T11207]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  458.481812][T11207] RIP: 0023:0xf7eff579
[  458.483644][T11207] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  458.492158][T11207] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  458.495943][T11207] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000005414
[  458.499454][T11207] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  458.502706][T11209] 9pnet_fd: Insufficient options for proto=fd
[  458.502981][T11207] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  458.502996][T11207] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  458.503008][T11207] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  458.503034][T11207]  </TASK>
[  458.519213][T11208] CPU: 2 UID: 0 PID: 11208 Comm: syz.0.1616 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  458.522793][T11208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  458.527314][T11208] Call Trace:
[  458.528734][T11208]  <TASK>
[  458.530074][T11208]  dump_stack_lvl+0x16c/0x1f0
[  458.532166][T11208]  should_fail_ex+0x497/0x5b0
[  458.534176][T11208]  _copy_to_user+0x30/0xc0
[  458.536063][T11208]  simple_read_from_buffer+0xd0/0x160
[  458.538317][T11208]  proc_fail_nth_read+0x19e/0x280
[  458.540384][T11208]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  458.542654][T11208]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  458.545001][T11208]  vfs_read+0x1d4/0xbd0
[  458.546805][T11208]  ? __fdget_pos+0xeb/0x180
[  458.548692][T11208]  ? __pfx_vfs_read+0x10/0x10
[  458.550555][T11208]  ? __pfx___mutex_lock+0x10/0x10
[  458.552535][T11208]  ? __fget_files+0x256/0x400
[  458.554667][T11208]  ksys_read+0x12f/0x260
[  458.556582][T11208]  ? __pfx_ksys_read+0x10/0x10
[  458.558690][T11208]  __do_fast_syscall_32+0x73/0x120
[  458.560804][T11208]  do_fast_syscall_32+0x32/0x80
[  458.562839][T11208]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  458.565549][T11208] RIP: 0023:0xf741e579
[  458.567121][T11208] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  458.574092][T11208] RSP: 002b:00000000f56f55a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  458.577354][T11208] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56f5620
[  458.580649][T11208] RDX: 000000000000000f RSI: 00000000f740fff4 RDI: 0000000000000000
[  458.583641][T11208] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  458.586783][T11208] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  458.590082][T11208] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  458.593165][T11208]  </TASK>
[  458.771272][T11212] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1619'.
[  458.810260][T11212] xt_CT: You must specify a L4 protocol and not use inversions on it
[  459.696356][T11223] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[  460.341908][T11253] overlayfs: failed to resolve './file0': -2
[  461.624135][T11283] 9pnet_fd: Insufficient options for proto=fd
[  461.630482][T11281] sp0: Synchronizing with TNC
[  461.829822][T11285] netlink: 'syz.3.1641': attribute type 4 has an invalid length.
[  462.442248][T11292] ALSA: seq fatal error: cannot create timer (-22)
[  462.493659][   T39] kauditd_printk_skb: 17 callbacks suppressed
[  462.493674][   T39] audit: type=1326 audit(2000000196.180:2821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11290 comm="syz.0.1643" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  462.520254][   T39] audit: type=1326 audit(2000000196.180:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11290 comm="syz.0.1643" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  462.549493][   T39] audit: type=1326 audit(2000000196.190:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11290 comm="syz.0.1643" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf741e579 code=0x7ffc0000
[  462.569154][   T39] audit: type=1326 audit(2000000196.190:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11290 comm="syz.0.1643" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  462.580528][   T39] audit: type=1326 audit(2000000196.190:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11290 comm="syz.0.1643" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  463.341648][ T1996] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  463.529105][ T1996] usb 6-1: Using ep0 maxpacket: 16
[  463.544288][ T1996] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  463.551722][ T1996] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  463.551736][ T1996] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  463.551758][ T1996] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  463.551769][ T1996] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  463.553349][ T1996] usb 6-1: config 0 descriptor??
[  463.557396][T11310] FAULT_INJECTION: forcing a failure.
[  463.557396][T11310] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  463.557411][T11310] CPU: 3 UID: 0 PID: 11310 Comm: syz.2.1650 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  463.557434][T11310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  463.557441][T11310] Call Trace:
[  463.557445][T11310]  <TASK>
[  463.557450][T11310]  dump_stack_lvl+0x16c/0x1f0
[  463.557465][T11310]  should_fail_ex+0x497/0x5b0
[  463.557478][T11310]  _copy_from_user+0x30/0xf0
[  463.557490][T11310]  get_user_ifreq+0x190/0x250
[  463.557502][T11310]  compat_sock_ioctl+0x418/0x7f0
[  463.557515][T11310]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  463.557531][T11310]  ? bpf_lsm_file_ioctl_compat+0x9/0x10
[  463.557543][T11310]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  463.557555][T11310]  __do_compat_sys_ioctl+0x2c3/0x330
[  463.557567][T11310]  __do_fast_syscall_32+0x73/0x120
[  463.557583][T11310]  do_fast_syscall_32+0x32/0x80
[  463.557596][T11310]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  463.557609][T11310] RIP: 0023:0xf7eff579
[  463.557617][T11310] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  463.557627][T11310] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  463.557637][T11310] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008946
[  463.557644][T11310] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[  463.557650][T11310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  463.557656][T11310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  463.557661][T11310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  463.557673][T11310]  </TASK>
[  463.782971][T11318] 9pnet_fd: Insufficient options for proto=fd
[  463.984584][ T1996] HID 045e:07da: Invalid code 65791 type 1
[  464.010048][ T1996] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:045E:07DA.0008/input/input11
[  464.043018][ T1996] microsoft 0003:045E:07DA.0008: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  464.188921][   T10] usb 6-1: USB disconnect, device number 13
[  464.209051][   T30] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  464.398957][   T30] usb 8-1: Using ep0 maxpacket: 8
[  464.407833][   T30] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  464.480300][   T30] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  464.509990][   T30] usb 8-1: New USB device found, idVendor=0810, idProduct=0001, bcdDevice= 0.00
[  464.514856][T11330] xt_CT: You must specify a L4 protocol and not use inversions on it
[  464.539610][   T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  464.559748][   T30] usb 8-1: config 0 descriptor??
[  464.620464][T11330] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1656'.
[  464.643119][T11330] xt_CT: You must specify a L4 protocol and not use inversions on it
[  464.666148][   T39] audit: type=1326 audit(2000000198.340:2826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.2.1656" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  464.690825][   T39] audit: type=1326 audit(2000000198.340:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.2.1656" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  464.839033][   T39] audit: type=1326 audit(2000000198.350:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.2.1656" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  464.847960][   T39] audit: type=1326 audit(2000000198.350:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.2.1656" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  464.857443][   T39] audit: type=1326 audit(2000000198.350:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.2.1656" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7eff579 code=0x7ffc0000
[  464.872252][T11323] netlink: 'syz.3.1653': attribute type 4 has an invalid length.
[  465.077651][   T30] usbhid 8-1:0.0: can't add hid device: -71
[  465.082814][   T30] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  465.110002][   T30] usb 8-1: USB disconnect, device number 13
[  465.750378][   T30] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  465.931315][   T30] usb 7-1: Using ep0 maxpacket: 8
[  465.935539][   T30] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  465.940246][   T30] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  465.949342][   T30] usb 7-1: New USB device found, idVendor=0810, idProduct=0001, bcdDevice= 0.00
[  465.953368][   T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  465.973376][   T30] usb 7-1: config 0 descriptor??
[  466.281157][T11355] 9pnet_virtio: no channels available for device syz
[  466.285115][T11351] Driver unsupported XDP return value 0 on prog  (id 388) dev N/A, expect packet loss!
[  466.420602][   T30] usbhid 7-1:0.0: can't add hid device: -71
[  466.423880][   T30] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  466.453428][   T30] usb 7-1: USB disconnect, device number 15
[  467.161900][T11368] FAULT_INJECTION: forcing a failure.
[  467.161900][T11368] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  467.167352][T11368] CPU: 1 UID: 0 PID: 11368 Comm: syz.2.1664 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  467.175828][T11368] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  467.180767][T11368] Call Trace:
[  467.182266][T11368]  <TASK>
[  467.183594][T11368]  dump_stack_lvl+0x16c/0x1f0
[  467.185910][T11368]  should_fail_ex+0x497/0x5b0
[  467.188063][T11368]  _copy_to_user+0x30/0xc0
[  467.190022][T11368]  simple_read_from_buffer+0xd0/0x160
[  467.192391][T11368]  proc_fail_nth_read+0x19e/0x280
[  467.194625][T11368]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  467.197076][T11368]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  467.199526][T11368]  vfs_read+0x1d4/0xbd0
[  467.201303][T11368]  ? __fdget_pos+0xeb/0x180
[  467.203262][T11368]  ? __pfx_vfs_read+0x10/0x10
[  467.205327][T11368]  ? __pfx___mutex_lock+0x10/0x10
[  467.207596][T11368]  ? __fget_files+0x256/0x400
[  467.209693][T11368]  ksys_read+0x12f/0x260
[  467.211550][T11368]  ? __pfx_ksys_read+0x10/0x10
[  467.213693][T11368]  __do_fast_syscall_32+0x73/0x120
[  467.215990][T11368]  do_fast_syscall_32+0x32/0x80
[  467.218157][T11368]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  467.220895][T11368] RIP: 0023:0xf7eff579
[  467.222709][T11368] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  467.231067][T11368] RSP: 002b:00000000f56755a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  467.234751][T11368] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5675620
[  467.238207][T11368] RDX: 000000000000000f RSI: 00000000f738fff4 RDI: 0000000000000000
[  467.241756][T11368] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  467.245145][T11368] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  467.248558][T11368] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  467.252038][T11368]  </TASK>
[  467.669411][ T1288] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  467.874036][ T1288] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  467.888962][ T1288] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  467.892935][ T1288] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.906484][ T1288] usb 7-1: config 0 descriptor??
[  468.029618][T11372] tmpfs: Unknown parameter 'mpìñÃreí—r'
[  470.150153][T11385] netlink: 'syz.0.1670': attribute type 32 has an invalid length.
[  470.163620][T11385] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1670'.
[  470.179543][T11385] netlink: 'syz.0.1670': attribute type 32 has an invalid length.
[  470.403997][ T1288] usbhid 7-1:0.0: can't add hid device: -71
[  470.406796][ T1288] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  470.444366][ T1288] usb 7-1: USB disconnect, device number 16
[  470.521350][   T30] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  470.757334][   T30] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  470.773366][   T30] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  470.777422][   T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  470.782696][   T30] usb 6-1: config 0 descriptor??
[  471.295616][   T30] keytouch 0003:0926:3333.0009: fixing up Keytouch IEC report descriptor
[  471.332542][   T30] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0926:3333.0009/input/input12
[  471.491053][   T30] keytouch 0003:0926:3333.0009: input,hidraw1: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  471.505450][ T1884] 
[  471.505461][ T1884] ======================================================
[  471.505467][ T1884] WARNING: possible circular locking dependency detected
[  471.505474][ T1884] 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0 Not tainted
[  471.505485][ T1884] ------------------------------------------------------
[  471.505490][ T1884] kworker/1:2/1884 is trying to acquire lock:
[  471.505499][ T1884] ffff88801acb10b8 (&buf->lock){+.+.}-{3:3}, at: tty_buffer_flush+0x72/0x310
[  471.505552][ T1884] 
[  471.505552][ T1884] but task is already holding lock:
[  471.505557][ T1884] ffffffff8dda7160 (console_lock){+.+.}-{0:0}, at: vc_SAK+0x13/0x310
[  471.505592][ T1884] 
[  471.505592][ T1884] which lock already depends on the new lock.
[  471.505592][ T1884] 
[  471.505597][ T1884] 
[  471.505597][ T1884] the existing dependency chain (in reverse order) is:
[  471.505602][ T1884] 
[  471.505602][ T1884] -> #2 (console_lock){+.+.}-{0:0}:
[  471.505624][ T1884]        console_lock+0x7a/0xa0
[  471.505647][ T1884]        con_flush_chars+0x5e/0x80
[  471.505668][ T1884]        n_tty_write+0xe27/0x1150
[  471.505686][ T1884]        file_tty_write.constprop.0+0x518/0x9b0
[  471.505701][ T1884]        vfs_write+0x6b6/0x1140
[  471.505717][ T1884]        ksys_write+0x12f/0x260
[  471.505734][ T1884]        __do_fast_syscall_32+0x73/0x120
[  471.505754][ T1884]        do_fast_syscall_32+0x32/0x80
[  471.505774][ T1884]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  471.505793][ T1884] 
[  471.505793][ T1884] -> #1 (&tty->termios_rwsem){++++}-{3:3}:
[  471.505815][ T1884]        down_write+0x93/0x200
[  471.505835][ T1884]        tty_unthrottle+0x1f/0x110
[  471.505852][ T1884]        hci_uart_tty_receive+0x394/0x780
[  471.505870][ T1884]        tty_ldisc_receive_buf+0x153/0x190
[  471.505891][ T1884]        tty_port_default_receive_buf+0x70/0xb0
[  471.505906][ T1884]        flush_to_ldisc+0x264/0x780
[  471.505927][ T1884]        process_one_work+0x958/0x1ad0
[  471.505946][ T1884]        worker_thread+0x6c8/0xed0
[  471.505966][ T1884]        kthread+0x2c1/0x3a0
[  471.505982][ T1884]        ret_from_fork+0x45/0x80
[  471.506004][ T1884]        ret_from_fork_asm+0x1a/0x30
[  471.506025][ T1884] 
[  471.506025][ T1884] -> #0 (&buf->lock){+.+.}-{3:3}:
[  471.506044][ T1884]        __lock_acquire+0x24ed/0x3cb0
[  471.506062][ T1884]        lock_acquire+0x1b1/0x560
[  471.506081][ T1884]        __mutex_lock+0x175/0x9c0
[  471.506102][ T1884]        tty_buffer_flush+0x72/0x310
[  471.506114][ T1884]        tty_ldisc_flush+0x64/0xe0
[  471.506133][ T1884]        __do_SAK+0x6a1/0x800
[  471.506146][ T1884]        vc_SAK+0x7f/0x310
[  471.506161][ T1884]        process_one_work+0x958/0x1ad0
[  471.506181][ T1884]        worker_thread+0x6c8/0xed0
[  471.506201][ T1884]        kthread+0x2c1/0x3a0
[  471.506214][ T1884]        ret_from_fork+0x45/0x80
[  471.506233][ T1884]        ret_from_fork_asm+0x1a/0x30
[  471.506252][ T1884] 
[  471.506252][ T1884] other info that might help us debug this:
[  471.506252][ T1884] 
[  471.506256][ T1884] Chain exists of:
[  471.506256][ T1884]   &buf->lock --> &tty->termios_rwsem --> console_lock
[  471.506256][ T1884] 
[  471.506280][ T1884]  Possible unsafe locking scenario:
[  471.506280][ T1884] 
[  471.506285][ T1884]        CPU0                    CPU1
[  471.506289][ T1884]        ----                    ----
[  471.506294][ T1884]   lock(console_lock);
[  471.506304][ T1884]                                lock(&tty->termios_rwsem);
[  471.506316][ T1884]                                lock(console_lock);
[  471.506327][ T1884]   lock(&buf->lock);
[  471.506335][ T1884] 
[  471.506335][ T1884]  *** DEADLOCK ***
[  471.506335][ T1884] 
[  471.506339][ T1884] 4 locks held by kworker/1:2/1884:
[  471.506349][ T1884]  #0: ffff88801ac88948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x11f0/0x1ad0
[  471.506391][ T1884]  #1: ffffc9000ca8fd80 ((work_completion)(&vc_cons[currcons].SAK_work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1ad0
[  471.506431][ T1884]  #2: ffffffff8dda7160 (console_lock){+.+.}-{0:0}, at: vc_SAK+0x13/0x310
[  471.506476][ T1884]  #3: ffff88801281e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_flush+0x1c/0xe0
[  471.506514][ T1884] 
[  471.506514][ T1884] stack backtrace:
[  471.506520][ T1884] CPU: 1 UID: 0 PID: 1884 Comm: kworker/1:2 Not tainted 6.11.0-rc6-syzkaller-00048-gc7fb1692dc01 #0
[  471.506532][ T1884] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  471.506538][ T1884] Workqueue: events vc_SAK
[  471.506549][ T1884] Call Trace:
[  471.506553][ T1884]  <TASK>
[  471.506558][ T1884]  dump_stack_lvl+0x116/0x1f0
[  471.506569][ T1884]  check_noncircular+0x31a/0x400
[  471.506584][ T1884]  ? __pfx_check_noncircular+0x10/0x10
[  471.506604][ T1884]  ? lockdep_lock+0xc6/0x200
[  471.506621][ T1884]  ? __pfx_lockdep_lock+0x10/0x10
[  471.506638][ T1884]  __lock_acquire+0x24ed/0x3cb0
[  471.506665][ T1884]  ? __pfx___lock_acquire+0x10/0x10
[  471.506686][ T1884]  ? find_held_lock+0x2d/0x110
[  471.506704][ T1884]  ? hlock_class+0x4e/0x130
[  471.506721][ T1884]  lock_acquire+0x1b1/0x560
[  471.506744][ T1884]  ? tty_buffer_flush+0x72/0x310
[  471.506761][ T1884]  ? __pfx_lock_acquire+0x10/0x10
[  471.506785][ T1884]  ? __pfx_mark_lock+0x10/0x10
[  471.506806][ T1884]  ? __pfx___might_resched+0x10/0x10
[  471.506833][ T1884]  __mutex_lock+0x175/0x9c0
[  471.506857][ T1884]  ? tty_buffer_flush+0x72/0x310
[  471.506873][ T1884]  ? __pfx_lock_acquire+0x10/0x10
[  471.506895][ T1884]  ? tty_buffer_flush+0x72/0x310
[  471.506911][ T1884]  ? __pfx___mutex_lock+0x10/0x10
[  471.506940][ T1884]  ? tty_buffer_flush+0x72/0x310
[  471.506956][ T1884]  tty_buffer_flush+0x72/0x310
[  471.506975][ T1884]  tty_ldisc_flush+0x64/0xe0
[  471.506999][ T1884]  __do_SAK+0x6a1/0x800
[  471.507021][ T1884]  vc_SAK+0x7f/0x310
[  471.507042][ T1884]  process_one_work+0x958/0x1ad0
[  471.507070][ T1884]  ? __pfx_console_callback+0x10/0x10
[  471.507088][ T1884]  ? __pfx_process_one_work+0x10/0x10
[  471.507115][ T1884]  ? assign_work+0x1a0/0x250
[  471.507139][ T1884]  worker_thread+0x6c8/0xed0
[  471.507166][ T1884]  ? __kthread_parkme+0x148/0x220
[  471.507185][ T1884]  ? __pfx_worker_thread+0x10/0x10
[  471.507209][ T1884]  kthread+0x2c1/0x3a0
[  471.507225][ T1884]  ? _raw_spin_unlock_irq+0x23/0x50
[  471.507245][ T1884]  ? __pfx_kthread+0x10/0x10
[  471.507263][ T1884]  ret_from_fork+0x45/0x80
[  471.507288][ T1884]  ? __pfx_kthread+0x10/0x10
[  471.507305][ T1884]  ret_from_fork_asm+0x1a/0x30
[  471.507335][ T1884]  </TASK>
[  471.509033][ T1884] tty tty1: SAK: killed process 11375 (syz.3.1667): by fd#10
[  471.709652][ T1288] usb 6-1: USB disconnect, device number 14
[  472.076951][T11405] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted

VM DIAGNOSIS:
04:36:43  Registers:
info registers vcpu 0

CPU#0
RAX=0000000040000000 RBX=0000000000000001 RCX=ffffffff813be4ae RDX=ffffffff8da957c0
RSI=ffffffff813be4cb RDI=0000000000000000 RBP=ffff88802b63fc94 RSP=ffffffff8da07940
R8 =0000000000000000 R9 =0000000000000001 R10=0000000000000001 R11=ffff88801bea7400
R12=0000000000000001 R13=0000000000000001 R14=ffff88802b63fc80 R15=0000000000040000
RIP=ffffffff813be4cc RFL=00000012 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000ffb67e00 CR3=000000006386c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000067 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fc1565 RDI=ffffffff9a514600 RBP=ffffffff9a5145c0 RSP=ffffc9000ca8f9d0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e31312e36
R12=0000000000000000 R13=0000000000000067 R14=ffffffff84fc1500 R15=0000000000000000
RIP=ffffffff84fc158f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002001e000 CR3=0000000065938000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000003800000000 0000000100000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001b000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080000001 RBX=0000000000000001 RCX=0000000000000000 RDX=0000000000000001
RSI=ffffffff8b4b6dc0 RDI=0000000000000001 RBP=ffffffff8accedf6 RSP=ffffc900007efaf8
R8 =0000000000000000 R9 =fffffbfff2023bc3 R10=ffffffff9011de1f R11=ffffffff8b4f4900
R12=ffffffff8accf1a0 R13=ffff888069efcb40 R14=0000000000000000 R15=ffff88806b1931c0
RIP=ffffffff815b3d9b RFL=00000097 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f520877a CR3=0000000049c24000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865
ZMM17=fa9f200f5f4c88b6 e228d3a0ff1c32d5 fa9f200f5f4c88b6 e228d3a0ff1c32d5 fa9f200f5f4c88b6 e228d3a0ff1c32d5 fa9f200f5f4c88b6 e228d3a0ff1c32d5
ZMM18=4052adbff51763dd 158ab7cdac907f09 4052adbff51763dd 158ab7cdac907f09 4052adbff51763dd 158ab7cdac907f09 4052adbff51763dd 158ab7cdac907f09
ZMM19=d30f000000000000 0000000000000005 d30f000000000000 0000000000000004 d30f000000000000 0000000000000003 d30f000000000000 0000000000000002
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=e228d3a0e228d3a0 e228d3a0e228d3a0 e228d3a0e228d3a0 e228d3a0e228d3a0 e228d3a0e228d3a0 e228d3a0e228d3a0 e228d3a0e228d3a0 e228d3a0e228d3a0
ZMM22=5f4c88b65f4c88b6 5f4c88b65f4c88b6 5f4c88b65f4c88b6 5f4c88b65f4c88b6 5f4c88b65f4c88b6 5f4c88b65f4c88b6 5f4c88b65f4c88b6 5f4c88b65f4c88b6
ZMM23=fa9f200ffa9f200f fa9f200ffa9f200f fa9f200ffa9f200f fa9f200ffa9f200f fa9f200ffa9f200f fa9f200ffa9f200f fa9f200ffa9f200f fa9f200ffa9f200f
ZMM24=ac907f09ac907f09 ac907f09ac907f09 ac907f09ac907f09 ac907f09ac907f09 ac907f09ac907f09 ac907f09ac907f09 ac907f09ac907f09 ac907f09ac907f09
ZMM25=158ab7cd158ab7cd 158ab7cd158ab7cd 158ab7cd158ab7cd 158ab7cd158ab7cd 158ab7cd158ab7cd 158ab7cd158ab7cd 158ab7cd158ab7cd 158ab7cd158ab7cd
ZMM26=f51763ddf51763dd f51763ddf51763dd f51763ddf51763dd f51763ddf51763dd f51763ddf51763dd f51763ddf51763dd f51763ddf51763dd f51763ddf51763dd
ZMM27=4052adbf4052adbf 4052adbf4052adbf 4052adbf4052adbf 4052adbf4052adbf 4052adbf4052adbf 4052adbf4052adbf 4052adbf4052adbf 4052adbf4052adbf
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=d10f0000d10f0000 d10f0000d10f0000 d10f0000d10f0000 d10f0000d10f0000 d10f0000d10f0000 d10f0000d10f0000 d10f0000d10f0000 d10f0000d10f0000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffffc9000fbefa60 RCX=ffffffff813c8c26 RDX=ffff888025bbc880
RSI=ffffffff813c8c89 RDI=0000000000000005 RBP=ffffc9000fbefe70 RSP=ffffc9000fbef998
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffc9000fbefa68 R13=ffffc9000fbefa70 R14=0000000000000001 R15=ffffc9000fbf0000
RIP=ffffffff813c8c89 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f5a96d18280 ffffffff 00c00000
GS =0000 ffff88802b900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffffa165fb8 CR3=000000006b54e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000020000 Opmask01=0000000000000000 Opmask02=00000000fffffeff Opmask03=0400000000000000
Opmask04=00000000fffff7ff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=00000000d0000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005556d2b2d9d0 00005556d2b21280
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00abc0929a1cb507 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff0f0e0d0c0b0a09 0807060504030201
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f8f0e069ac302cf2 73732620f4afb1eb
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737142 73737373435d0773
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3632393030303030 7630303030673330 3030623a64696800 5341494c41444f4d
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3632393030303030 7630303030673330 3030623a6469683d 5341494c41444f4d
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0b0f040d0d0d0d0d 4b0d0d0d0d5a0e0d 0d0d5f0759545500 5341494c41444f4d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3333333a36323930 3a333030302f302e 303a312d362f312d 362f366273752f31
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8b83931adf435f81 0000555387dcb8dc 00000000000001e1 0000393030302e33
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffffa16b718 6373797300313d65 abc0929a1cb50700 0000000000000038
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005556d2b10980 00005556d2b10900 00005556d2b2d070 00005556d2b2cff0
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3e676b78263a4c26 3849263b49263a49 264c48264f48264e 4826494826484826
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4954444900494d 4449004743454857 5355504e494e4449 0049004448414442
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 004954444900494d 44000000432f482f 5355504e494e4449 0049004400412f42
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000