last executing test programs:

10m53.230110837s ago: executing program 2 (id=732):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000003340)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000600)='4', 0x1}], 0x1, &(0x7f0000000040)=[@rights={{0x14, 0x1, 0x1, [r0, r0]}}], 0x14, 0x40}, 0xe7070000}], 0x1, 0x0)

10m53.160049408s ago: executing program 2 (id=733):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socketpair$unix(0x1, 0xaefcbf4cebd621e1, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x8)
r3 = socket$inet(0xa, 0x801, 0x84)
listen(r3, 0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000000)={0x2, 0x0, 0x6, 0xffffffff}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x0, 0x79}, 0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000300)=@newqdisc={0x24, 0x24, 0xf0b, 0x18000020, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {0x8, 0xffff}, {0xe, 0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x4048005}, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000340)=[{0x20, 0xd, 0xf, 0xfffff038}, {0x6, 0x0, 0x0, 0x2}]}, 0x8)
sendmmsg(r1, &(0x7f0000001c00), 0x400000000000159, 0x40840)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
fsopen(&(0x7f0000000340)='zonefs\x00', 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$vim2m(&(0x7f0000000240), 0x41d3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_DQBUF(r6, 0xc044560f, &(0x7f0000000380)=@mmap={0x0, 0x1, 0x4, 0x0, 0x7, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00', r4, 0x0, 0xffff}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={r4, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe23, 0x46, 0x8, 0xfffffed4, 0x0}}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000800)=@can_newroute={0x44, 0x18, 0x1, 0x70bd29, 0x25dfdbfd, {0x1d, 0x1, 0x6}, [@CGW_MOD_XOR={0x15, 0x3, {{{0x0, 0x1}, 0x7, 0x0, 0x0, 0x0, "63c36d06f388c8fb"}, 0x2}}, @CGW_MOD_SET={0x15, 0x4, {{{0x3, 0x1, 0x0, 0x1}, 0x0, 0x6, 0x0, 0x0, '\t\x00'}, 0x1}}]}, 0x44}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

10m52.719744327s ago: executing program 2 (id=737):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x10004, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004200)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
mknod$loop(&(0x7f0000000480)='./file0/../file0/file0\x00', 0x6000, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r1, {0x7, 0x28, 0x2, 0x400c8460, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffc}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000a280)="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", 0x2000, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x0, 0x0, 0x400, 0xfffffffffffffffc, 0x200, 0x0, {0x5, 0xfffffffffffffffd, 0x4, 0x1000007, 0x3, 0x0, 0xfffffffe, 0x8000000, 0x0, 0xa000, 0x10000, 0x0, r2, 0x734}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000006680)="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", 0x2000, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x90, 0x0, 0x7, {0x4, 0x4, 0x16, 0x3, 0x12754f40, 0x0, {0x2, 0x1, 0xc, 0x6, 0x3, 0x1, 0xf2, 0x10000, 0xff1, 0x1000, 0x7effffff, 0x0, r2, 0x0, 0x49}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

10m52.630847992s ago: executing program 2 (id=739):
io_uring_setup(0x5, &(0x7f0000000040)={0x0, 0xe615, 0xc080, 0x3, 0x2d7})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x180)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x400000000000000, 0x0, 0x413, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x3ff, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, r1, {0x7, 0x29}}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$FIBMAP(r2, 0x401870c8, &(0x7f0000000040)=0x3)

10m52.630603554s ago: executing program 2 (id=740):
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x801)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, &(0x7f0000000000)={@empty, @empty, 0x0, "daf86eed51d59c3b227a93fc7264db425e9d015e14f17c0900497e00b3bb00", 0x7, 0x6, 0xffffff9d, 0xffffe6df}, 0x3c)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=@ipv6_newnexthop={0x18, 0x68, 0x309, 0xfffffffe, 0x4, {0xa, 0x0, 0x2}}, 0x18}, 0x1, 0x0, 0x0, 0x4000054}, 0x0)
clock_gettime(0x0, &(0x7f0000000140)={<r1=>0x0, <r2=>0x0})
futex(0x0, 0xa, 0x0, &(0x7f0000000180)={r1, r2+60000000}, &(0x7f00000001c0), 0x1)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB="50000000100003040000000000000000f2000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100766c616e000000001800028006000100010000000c000200540a00001800000008000500", @ANYRES32=r5], 0x50}, 0x1, 0xba01}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480dfd00005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x404c080)

10m52.547271688s ago: executing program 2 (id=741):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x81)
close(r0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = socket$caif_stream(0x25, 0x1, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c0043bf93b9be08cea89e79a8d93b821ecc98069bdbd6b5230ec1c6b450b7b30b97f36dee09c6"]) (async)
syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100, 0x10000, 0x2000000}, &(0x7f0000002000)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) (async)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0) (async)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0) (async)
r6 = memfd_create(&(0x7f0000000180)='/dev/nullb0\x00', 0x0)
ioctl$UDMABUF_CREATE(r5, 0x40187542, &(0x7f0000000100)={r6, 0x1, 0x10000, 0xdb274cea1f11e314})
r7 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) (async)
mount(&(0x7f00000002c0)=@nullb, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) (async)
r8 = creat(&(0x7f0000000380)='./bus\x00', 0x0) (async)
io_setup(0x202, &(0x7f0000000480)=<r9=>0x0)
io_submit(r9, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x14, 0x1, 0x0, r8, &(0x7f0000000000), 0x100000, 0x3f}]) (async)
r10 = dup(r4)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) (async)
pipe(&(0x7f0000000000)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff}) (async)
r13 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x4) (async)
openat$cgroup_pressure(r7, &(0x7f00000003c0)='memory.pressure\x00', 0x2, 0x0) (async)
pipe(&(0x7f0000000080)={<r14=>0xffffffffffffffff, <r15=>0xffffffffffffffff})
splice(r14, 0x0, r13, 0x0, 0x1000, 0x0)
splice(r11, 0x0, r15, 0x0, 0x80, 0x0) (async)
write$binfmt_aout(r12, &(0x7f00000004c0)=ANY=[], 0x120) (async)
ioctl$BLKROSET(r4, 0x125d, &(0x7f0000000000)=0x1000000010) (async)
ioctl$BLKRRPART(r10, 0x125f, 0x0) (async)
ioctl$BTRFS_IOC_DEFRAG(r10, 0x50009402, 0x0) (async)
writev(r4, &(0x7f0000000280)=[{&(0x7f00000001c0)="05b02d21cab0a9378e6ce3e7d4ed709e56e7e0c0c2", 0x15}, {&(0x7f0000000200)="faba7e2899e3363ac17b403ada8b17006eecc147e286860b51decd3d2e3562dc7badd340388b57e1402624284de27ff63843ac1a7bc0d5645dcaccfd7c4701cb57cf1c9f70a130c8bf400c616045f275198f54a4c3243fa43639af951aaa68d3585b2217d4ae4d7b09eb", 0x6a}, {&(0x7f0000000300)="53b127a424a9bc12176c404ff263ce6d877703d20072ced19a7c61942b7509c590216c76eb8c2d317bf1145e056288957812414a7bca9fce0d4d6b26e71aea5630a2821c86862cedbcd75c3676d6de6d19d481b5be26", 0x56}], 0x3)
socket$nl_generic(0x10, 0x3, 0x10)

10m37.360722048s ago: executing program 32 (id=741):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x81)
close(r0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = socket$caif_stream(0x25, 0x1, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c0043bf93b9be08cea89e79a8d93b821ecc98069bdbd6b5230ec1c6b450b7b30b97f36dee09c6"]) (async)
syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100, 0x10000, 0x2000000}, &(0x7f0000002000)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) (async)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0) (async)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0) (async)
r6 = memfd_create(&(0x7f0000000180)='/dev/nullb0\x00', 0x0)
ioctl$UDMABUF_CREATE(r5, 0x40187542, &(0x7f0000000100)={r6, 0x1, 0x10000, 0xdb274cea1f11e314})
r7 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) (async)
mount(&(0x7f00000002c0)=@nullb, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) (async)
r8 = creat(&(0x7f0000000380)='./bus\x00', 0x0) (async)
io_setup(0x202, &(0x7f0000000480)=<r9=>0x0)
io_submit(r9, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x14, 0x1, 0x0, r8, &(0x7f0000000000), 0x100000, 0x3f}]) (async)
r10 = dup(r4)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) (async)
pipe(&(0x7f0000000000)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff}) (async)
r13 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x4) (async)
openat$cgroup_pressure(r7, &(0x7f00000003c0)='memory.pressure\x00', 0x2, 0x0) (async)
pipe(&(0x7f0000000080)={<r14=>0xffffffffffffffff, <r15=>0xffffffffffffffff})
splice(r14, 0x0, r13, 0x0, 0x1000, 0x0)
splice(r11, 0x0, r15, 0x0, 0x80, 0x0) (async)
write$binfmt_aout(r12, &(0x7f00000004c0)=ANY=[], 0x120) (async)
ioctl$BLKROSET(r4, 0x125d, &(0x7f0000000000)=0x1000000010) (async)
ioctl$BLKRRPART(r10, 0x125f, 0x0) (async)
ioctl$BTRFS_IOC_DEFRAG(r10, 0x50009402, 0x0) (async)
writev(r4, &(0x7f0000000280)=[{&(0x7f00000001c0)="05b02d21cab0a9378e6ce3e7d4ed709e56e7e0c0c2", 0x15}, {&(0x7f0000000200)="faba7e2899e3363ac17b403ada8b17006eecc147e286860b51decd3d2e3562dc7badd340388b57e1402624284de27ff63843ac1a7bc0d5645dcaccfd7c4701cb57cf1c9f70a130c8bf400c616045f275198f54a4c3243fa43639af951aaa68d3585b2217d4ae4d7b09eb", 0x6a}, {&(0x7f0000000300)="53b127a424a9bc12176c404ff263ce6d877703d20072ced19a7c61942b7509c590216c76eb8c2d317bf1145e056288957812414a7bca9fce0d4d6b26e71aea5630a2821c86862cedbcd75c3676d6de6d19d481b5be26", 0x56}], 0x3)
socket$nl_generic(0x10, 0x3, 0x10)

8.261655523s ago: executing program 3 (id=6651):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x803, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x9)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000006c0)={0x1, &(0x7f0000000500)=[{0x6, 0x43, 0x0, 0x7fff0000}]})
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r4, 0x2)
socket$inet(0x2, 0x5, 0x800)
r5 = socket$unix(0x1, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)="90", 0x1}], 0x1, &(0x7f0000000580)=[@rights={{0x10, 0x1, 0x1, [r6]}}], 0x10, 0x8801}}], 0x1, 0x20004031)
close_range(r3, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000080)={0x4, 0x1, 0x0, "6cfef8b4b9fdcfc8bf98040c2599e8a8e9f887975c3cc41e122a623eb7c37334", 0x34343459})
socket$inet6_mptcp(0xa, 0x1, 0x106)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newlink={0x20, 0x10, 0x403, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x74, 0x0, 0x1810, 0x55007}}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x0)

5.291381687s ago: executing program 3 (id=6660):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x10)
r1 = gettid()
tkill(r1, 0x32)

5.129840764s ago: executing program 3 (id=6662):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000008700)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000003c0)="8c6458d899505b03e28d215710bb9945c10b892c7254461c263a88095b8a1e0e268426a49bc9a73ac3d8a95391be8d6a3252b1b7d7c38a9ebbd6830f1c896b354092749963f69388ff25a803edf51db6dfcc6ca9f977aa5a3e35298267fd8f508961688ee854d88d5dc8735a3a373ac49e9db5dbc11d20", 0x77}, {&(0x7f0000000500)="42764831cef55dc811b770a57a08aa22ccf6a36564a18eb0cf8ea57ea2f4145fba05428370c3ab63de83211ada1374b4bd9545f76574f16b8c2572207ba498f9a07d2950c849e54b09ac002b46", 0x4d}, {&(0x7f0000000580)="c9fd0c7fb4d4ea9c0ee54d8c0aadfa05a3feb55ae584b01d248a3edd60bf2a3bd3a887460c65a2c072f03340fbc79c390188ecf9be5beb10ccaff6e867ddd2df4796c8f3e80ef9d3", 0x48}], 0x3, &(0x7f0000004980)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r1, r4, r5]}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @cred={{0x18}}, @rights={{0x2c, 0x1, 0x1, [r1, r4, r5, r0, r1, 0xffffffffffffffff, r2, 0xffffffffffffffff]}}, @cred={{0x18, 0x1, 0x2, {r3, 0xffffffffffffffff}}}], 0xa8, 0x8000}}, {{&(0x7f00000083c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000008480)=[{&(0x7f0000006340)="2a22b89e0b9912345f8e73e3c790270a68ecac3db40fabc3cc44fb151cee3c4e0de7438494f1b0e619677b7e3bc8f2", 0x2f}, {&(0x7f0000008440)="36178e4890ac59e45091c6b0a67b23356792081d9c372f1ef646237715b814bafff4d6f50170cff0b32122fb945001f8fb778c7dbbd9e2d2e0b2676aa19f77", 0x3f}], 0x2, &(0x7f0000008640)=[@cred={{0x18}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}], 0x90, 0x20008814}}], 0x2, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x0, 0x10002, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r6 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})
socket$netlink(0x10, 0x3, 0x15)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r3, 0x0, 0x5004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r8, 0x0, 0x0)
close(r8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000440)='mm_compaction_kcompactd_sleep\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
shmget$private(0x0, 0x3000, 0x1, &(0x7f0000905000/0x3000)=nil)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="24000000200001000000000000000000020000000000000000000000050019003c00000077a472d6eb9640fa66737f5409da150a0df305c48592b96f84af5b659de500d3f277cd7a22a1023895ac7842b20abcb8c4292b15d2a8f03463"], 0x24}}, 0x48850)

4.668413862s ago: executing program 3 (id=6667):
r0 = socket(0x11, 0x800000003, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280))
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f0000000080), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r3=>0x0})
sendmsg$can_bcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x1d, r3}, 0x10, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRES32=r2], 0x48}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600))
socket$netlink(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x18, 0x0, 0x500)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r6, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x9, 0x6, 0x0, 0x7}, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r7, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb72b4b996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(r7, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x5bbf91a1e7f99074, &(0x7f0000000000))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffd000/0x2000)=nil, 0x2000, &(0x7f00000000c0)='\x00')
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r4, &(0x7f0000000200), 0xfffffd9d)

3.772906238s ago: executing program 0 (id=6672):
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4) (async)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000100)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x2}, 0x94)
mq_open(0x0, 0x80, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) (async, rerun: 64)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (rerun: 64)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) (async)
r1 = socket(0x10, 0x80003, 0x0)
write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85)
close_range(r1, 0xffffffffffffffff, 0x0) (async, rerun: 32)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0x90000) (rerun: 32)
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, &(0x7f0000002680)={0x0, 0x1, 0x0, 0x5}) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r2 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) (async, rerun: 32)
process_mrelease(r0, 0x0) (async, rerun: 32)
r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r3, 0x7a7, &(0x7f0000000080)=0xb0000) (async)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, &(0x7f0000000100)={@host})
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, 0x0) (async)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000300)={'rose0\x00', 0x4000}) (async)
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r3, 0x7b1, &(0x7f00000001c0)={0x0, 0x6, 0x0, 0x1}) (async, rerun: 64)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, &(0x7f0000000580)) (async, rerun: 64)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) (async)
syz_io_uring_setup(0x2a32, &(0x7f00000000c0)={0x0, 0xeaf0, 0x1000, 0x1, 0x114}, &(0x7f0000000140), &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(0x0, r5, &(0x7f0000000240)=@IORING_OP_NOP={0x0, 0x12})

3.214389879s ago: executing program 0 (id=6675):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r0=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000008c0)=@newtfilter={0x640, 0x2c, 0x20, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r0, {0xc, 0xfff2}, {0x2, 0x6}, {0x8, 0xfff6}}, [@TCA_CHAIN={0x8, 0xb, 0x1eb}, @filter_kind_options=@f_u32={{0x8}, {0x5fc, 0x2, [@TCA_U32_ACT={0x6c, 0x7, [@m_sample={0x68, 0xf, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x8}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x5}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0xb2f, 0xfff, 0x7, 0x1000, 0xb39f}}]}, {0x11, 0x6, "ef61cbcdaa5124f5ff451e5938"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}, @TCA_U32_HASH={0x8, 0x2, 0x6}, @TCA_U32_SEL={0x584, 0x5, {0x2, 0xcc, 0x7, 0x2, 0x6bb6, 0xf, 0x0, 0x400, [{0xfffffffb, 0xb, 0x8}, {0xd43, 0x5, 0xf28d, 0x2b}, {0x1, 0x80, 0x10000, 0x6}, {0xfffffffe, 0xca95c474, 0xd90, 0x3}, {0x80000000, 0x101, 0x800, 0xfbd8}, {0x7, 0x5, 0x5, 0xffffffff}, {0x7ff, 0xd5, 0x10000, 0xc}, {0x3, 0x5, 0x4, 0x7f}, {0x6, 0x10000, 0x2, 0x1a}, {0x6, 0x6, 0x8, 0x4d6}, {0x3, 0x3, 0xfffffffe, 0x7ff}, {0x4, 0x9, 0x7fffffff, 0x7}, {0x9, 0x1, 0x4, 0x8}, {0x6, 0x60, 0xfffffffb, 0xffff}, {0x1, 0x800000, 0x7f, 0xb}, {0xe, 0x2, 0x1, 0x6}, {0x9, 0xfffffff9, 0x200, 0x6}, {0xff, 0x4, 0x80000000, 0xffffffff}, {0x5, 0x2, 0x0, 0x1}, {0x8, 0x5cb, 0x11bc, 0xfffffff9}, {0x3, 0xffff, 0x800, 0x7}, {0xff, 0x9, 0xfffffffa, 0x3}, {0x7, 0x7, 0x8, 0xddbb}, {0x7a35346e, 0x5, 0x9, 0x80000001}, {0x5, 0x3, 0x0, 0x3}, {0x2, 0x7, 0x5e92, 0x40}, {0x5, 0x5, 0x7, 0x10}, {0x7ff, 0x2, 0x9}, {0x75d03b93, 0x2, 0x8, 0x8}, {0x7, 0x8, 0x9add, 0xa}, {0xfff, 0x3, 0x1be66, 0x3}, {0x5, 0x71c, 0x2}, {0x9, 0x3c, 0xd62, 0x2}, {0xd, 0xc000000, 0x0, 0x1}, {0x40, 0x7f, 0x7, 0x400}, {0x1, 0x6, 0xfffffffa, 0x2}, {0x40000000, 0x5, 0x5, 0xfffffff8}, {0x6, 0x2, 0x7, 0x6}, {0xbc, 0x7f, 0x3c, 0x3}, {0x4, 0x6, 0x8, 0x9}, {0x0, 0x6, 0x2, 0x4}, {0x3, 0x3, 0xffff0000, 0xa636}, {0x7b81, 0x0, 0x7, 0xa55}, {0x8, 0xe, 0x1, 0x7}, {0x9, 0x31, 0x4, 0x9}, {0x6, 0x9de, 0x1, 0x3}, {0x2000, 0x8, 0x325}, {0xfffff7c8, 0x2, 0x4f6454ae, 0xfffffff7}, {0x3, 0x2, 0x9}, {0x7, 0xf, 0x9, 0x8}, {0x3, 0x1, 0x7, 0x37}, {0x8000, 0x4, 0x539, 0x3}, {0x2, 0x6, 0xfffffff9, 0x2}, {0x0, 0x6, 0x40, 0x6}, {0x10, 0x1ff, 0xad, 0xffffffff}, {0xffffff67, 0xffff8000, 0x8, 0x7}, {0xfffffffa, 0x96ae, 0xe, 0x6}, {0x2, 0x7, 0x8, 0xa}, {0x0, 0x7, 0x81, 0x80000000}, {0x7ff, 0x0, 0x9, 0x9}, {0xa, 0xfffffffb, 0x40, 0xc0000000}, {0x5, 0xfffffc00, 0x9, 0x4000}, {0x5, 0x4, 0x2, 0x40}, {0x3, 0x2, 0x7fff, 0x8}, {0x7fff, 0x2, 0xfffffff8, 0x6}, {0xffffffff, 0xfffffffc, 0x7f, 0x24a80}, {0x2, 0x4, 0xffff, 0x1}, {0x1b06, 0xff, 0x7, 0x1d04bbc0}, {0x3, 0x40, 0x200, 0x2}, {0x214005c2, 0x8, 0xb, 0x40}, {0x8000, 0x5647, 0x5, 0x1608}, {0x0, 0xa4b, 0x2, 0x8}, {0xffffff80, 0x387, 0x81, 0x34d}, {0x8, 0xfffffff9, 0xff, 0xb73}, {0x7, 0x2, 0x5, 0x401}, {0xffffff00, 0x3ff, 0x7fff, 0xdf}, {0x4, 0x7, 0x8, 0x1}, {0xf, 0x7, 0x315, 0x1000}, {0xb, 0xc1, 0x9, 0x2}, {0x8, 0x1, 0x9, 0x7}, {0x10001, 0xfffffff9, 0x7, 0x800}, {0x401, 0x7, 0x9c, 0xd}, {0x40, 0x6, 0x6}, {0xc3, 0x5, 0x232, 0x8}, {0x6, 0xed93, 0x5}, {0x3ff, 0xffc0000, 0x9, 0x4}, {0x60, 0x6, 0x5, 0x774}]}}]}}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_CHAIN={0x8, 0xb, 0x8}]}, 0x640}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
openat$ubi_ctrl(0xffffff9c, &(0x7f0000000340), 0x2201, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8b37, &(0x7f0000000000)={'wlan1\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
r7 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r8 = memfd_create(&(0x7f0000000080)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea\x7f\x8cZ7`_4t\xcda\x9b\x11\x11\x0e\xa1\xcf\x00'/51, 0x2)
ftruncate(r8, 0x1000006)
ioctl$UDMABUF_CREATE(r7, 0x40187542, &(0x7f0000000000)={r8, 0x0, 0x0, 0x1000000})

2.514644286s ago: executing program 4 (id=6678):
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
ioctl$SIOCAX25GETINFOOLD(0xffffffffffffffff, 0x89e9, &(0x7f0000000180))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r0}, 0x18)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000001200)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000020000000000000000000004000000000000000000000001003900000000af0188d2db67065aa40bafbefd3cfc914020"], 0x0, 0x32, 0x0, 0x1}, 0x20)
r3 = syz_io_uring_setup(0x20d0, &(0x7f0000001280)={0x0, 0x5bd0, 0x80, 0xffffffff, 0x40001c8}, &(0x7f0000001300), &(0x7f0000001180))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f0000002300)=[{&(0x7f0000000140)=""/4096, 0x1000}], 0x3100)
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket$unix(0x1, 0x5, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB="240000000104010200000180000000000000000008000540000000000500010001"], 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x800, 0x70bd2c, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0x2, 0x6}, {0x5, 0xb}, {0xc, 0xe}}, ["", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0xc62a3bb8eedd2314}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=@newtfilter={0x24, 0x2c, 0x400, 0x70bd24, 0x25dfdb7c, {0x0, 0x0, 0x0, r7, {0xfff3, 0xffe0}, {0x2}, {0xfff1, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x48848}, 0x4000010)

2.267312354s ago: executing program 0 (id=6680):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x201, &(0x7f0000000000)={0x0})
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x24003b84, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
clock_nanosleep(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0)
ioctl$USBDEVFS_REAPURB(r2, 0x4008550c, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@ipv4_newroute={0x24, 0x18, 0x1, 0x70bd2d, 0x0, {0x2, 0x20, 0x0, 0x0, 0xfd, 0x0, 0xfd, 0x9}, [@RTA_PREFSRC={0x8, 0x7, @empty}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x68, 0x0, &(0x7f00000003c0)=[@register_looper, @free_buffer, @dead_binder_done, @reply_sg={0x40486312, {0x2, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000440)={@flat=@weak_binder={0x77622a85, 0x300}, @fda={0x66646185, 0x9, 0x2, 0xa}, @fd={0x66642a85, 0x0, r1}}, &(0x7f0000000140)={0x0, 0x18, 0x34}}}], 0x0, 0x0, 0x0})
setrlimit(0xd, &(0x7f0000000240)={0x8, 0x50})
mmap$binder(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000100), 0xfffffd9d)
sendfile(r5, r6, 0x0, 0x8000002b)

1.617218698s ago: executing program 3 (id=6681):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @empty}], 0x10)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x5}, 0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000140)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f00000001c0)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x4000891)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000000c0)={0x0, 0xb, 0x1, [0x2]}, 0xa) (fail_nth: 1)

1.41908005s ago: executing program 4 (id=6682):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x2, 0x7fffffff}]})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24000805}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
syz_open_procfs(0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xe)
fcntl$addseals(r1, 0x409, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001900)=@newtaction={0xeb8, 0x30, 0xb, 0x0, 0x0, {0x0, 0x0, 0xe4}, [{0xea4, 0x1, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0xb}}]}, {0x4}, {0xc}, {0xc}}}, @m_pedit={0xe58, 0x2, 0x0, 0x0, {{0xa}, {0xe2c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x1}, [{}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x9, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x400}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x1000000}, {}, {}, {0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x400000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x1}, {0x0, 0x3}, {0x0, 0x0, 0x3}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}]}}, @TCA_PEDIT_KEYS_EX={0x8, 0x5, 0x0, 0x1, [{0x4}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xeb8}}, 0x4000)
r4 = socket$tipc(0x1e, 0x2, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40046602, &(0x7f0000000000)=0x1000)

1.182028289s ago: executing program 0 (id=6683):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2ca9ad20794e88303030303030303030303030303030303034303030302c757365725f69643d00ae0322c59bc052c2d8"])
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
sendmsg$can_bcm(r1, &(0x7f0000000480)={&(0x7f0000000340)={0x1d, r2}, 0x10, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d6fe682c6100000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000004"], 0x20000600}}, 0x0) (async)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) (async)
sendmsg$can_bcm(r1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x2404c000)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f0000000680)) (async)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x42094) (async)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f00000000c0)={[0x10000, 0xfffffffffffffffe, 0x3, 0x20000e691, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffe, 0x0, 0xd1, 0xfffffffffffffffd, 0xfffffffffffff6f9, 0x1, 0x0, 0x100000000000000], 0x0, 0x108342}) (async)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWSET={0x20, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x48}}, 0x0) (async)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000002100010026bd09000000df2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) (async)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000380)={0x0, 0x2}, 0xc) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
timer_create(0x0, 0x0, 0x0)

1.084249925s ago: executing program 0 (id=6684):
setfsgid(0xee00)
r0 = syz_clone(0xb0abfa00, 0x0, 0x1c, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(r0, &(0x7f00000004c0)='net/nfsfs\x00')
munmap(&(0x7f0000901000/0x3000)=nil, 0x3000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x800, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1b, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e77, 0x20000000, 0x94a, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x10}}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x854}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_netfilter(r1, &(0x7f0000001d40)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001d00)={&(0x7f0000001d80)=ANY=[@ANYRES64=r1, @ANYRES32=0x0, @ANYBLOB='\b\x00t\x00', @ANYRES32=0x0, @ANYRES32, @ANYRES16=r4, @ANYBLOB="d89a0976d63c7073bf6dce4d91aa8b83c8500c82852c9ae7a5cd8997351acd81b5df1f3caa42389e96db4ecfec0ab6b087dcd2b7d845b06bf15bc963d2fd709f651265ddfc4701a3c57dc88ba3ae3c9e45e327e84203ff111ea3146dfdeeced437f8fd0160d7883d212b42936b81680ccccf7f9c514df55007d86d9a76fca5e6d892c124bc9f035105ec19492d45735a84ba3e72581d2f8b19feb3771896268b1aa9b0d596ca9165ef6a27d407519586533fdb0d1cc600a76e01cd2781f21026ddb983383721428f0078846e9ed04bbda59891d725a3ec3c4e9bef20a606cf30ce0eb0054d382f1f903da5f86092d3917f2aa0a22a933de3d293a6864cfd925eb0fc20c70991c59737a3d304982cab842979769829f7409afd6968c8dfdacf11c2203a564c7b487570c069bf9723e8e1fbeb80bb870c5b2ee305ed805ab655f4228fa318b0e74e272d3cbb7cdf1f111cf5063a3475aa4d642bf1ded2e381f09fcf9decfd5185b7059a5c7122a2322cddc0ee3bc5724b7e909f046785da8683f5d7550084e351770434db985efb3ee21c2a4caa8653bdebfd24862a22e7cdb39080cd522eb615b6d7d233adf907e9f392e5690aca6620ad55999e5a4b95338b1efd7a53ab3c480067e724e338cde3d09ce1bf94d20c4bf8392ed98ab972b94d82e2e97f0dc470902875919ec9815e1f57f2024fb0ed5c7c382dc458c083b0d0ec0ed3bc4715f5d0c337bcdfa89b4ce1ae7d7954c5e1a6c19d795ec583284d0fc27956f5393b4f7412969733772cb74eccb83da5bdfc64d43c6275b9ba60c09e7e5c5199d09898f01dea9ca653d0b0c04331681052e63adc90a18ae56ea11abfeab6fe7d1170e61d0cd1f93e6f7c6e04b9efdc20722aec6c5cd224f3a73d6fb4e2bde02ae507aaea156cedd4538f91370ad1a90cd9c993bc695ffd3e6a5b6cdd472e8f29a7cd5560b17bec12cdd1246cf974a7b59432b527d47ae7a1abe7d5be2a8ae26b6aa2ee5dce81dc31c6ccfd4058ed7d17a5f83299074055bf593572c9a82fa2e35172109cfd254823b8fee513d23c215cd82bf3fcaa262808b75fa7e93901a2d8e67a7ec26ca355985f111937242ceae1d90d169c3fc404e4619aac72be6700b18ce62435c216fecc6454740bb45b0b2e1adc288bc3ae86b8da7efbe81cdb6842f3f62b836579086d194c34521ea8fcf4c464d67bc2b19122f251630e7140512f19e4acd11434748e7e9a4c9fe8632c96a708b1801b7539c21d494b80c7da2a326ded7261dd1d3be38bca2651b0cd3d9cb1f262d9cd1a596e2f0ae5855a9a74c1bcc118baeaa61b791e8a6d88d34e69c49e511ab98ba259bff64ec1c33c9661a50719e9bac231ec0a43de13b37f18c5a8ddb6217ffcd3e9610b4d4ff317adee01faf67036cde2d8b3bb97178ef4f5da29370e5d0dc184506a0a85b276949f8f4f12eee1cbcfddd4210fa1523acfa30b6d3f0627d45c0afea02e939d37349e80951d220d7e8464a73db2446b49537dfcd3bed7de5d649ba1b73f1da1f6ed9edb18f28b6c5000544c4f39389d53da1f2b192f507364b12ad2c8f1ca1d2160f2654309b9349ab27f9039be3e32118cea951611c0a54a4b72f9f8b7cbaa0f183f5866d2f67cc317b2a9b1efd5981838047fe82ed1c2aec452d6f5434b69a4ae01670e3449e27fc36ac0ad3fdfcb29b6c2aac7a8f79ea85c748b891b3949583ed2cb7a35856f268b85e0c93b65527ab318b6d3cff386468ce6259447b392f5705f43abaf88a036ebeaa73cf09d845ac4c1bac7cb8db3da96cb21430f28755fbd841e81f78c6e0e89ae971d3b2ef1abea3c552382c715b645b67e7f08e55f7dc5b10e760f2d64f655383bc46d2cd3f524b2b5258d4fbb14bed9230172240e1478f6604e45cf74dc83adbf59b6243074330ffbb344e6881777295d04aee122d6547df81194ae13df0706c332da0a01414d4bd33f512056745eb764f2d46bb0f0788c9c21fc35f667614a3f5e4c2bd75f6a246d7342fb8240719d6b842febbdb4f4a14773de5a552828ccbfef42789d874dabf62b720ac5a530548db3fea2ee3c6907f2c4ab54c9b2ddd103092467d832bb6b697382e6068a9cc547fe1287e61954dd4a23c141556363c8c9b05e6e0542c2aefbf49e12616e504558d647d622def438827788e4489d80b14540cd7db049ad2648bdd31246fab0e26d8d6bfdf12d414be15d3d6b82d8e732c1c25d1c99de968b5aec2c30ad61c93e994712bd1feaa312b3af1cfe8689f7978ddf998ab30209531f985ca2dc3560d317c9df689ac413c25e0da225b157f44b4a6da5011cf1795fea3718bc826fe906a7f2c5774136dfcee0f1615e9edad806f416363fb4036d75605bf9db935b0303027e7bee21c4fd463d60ffaf4b8394beeda5bdcd3e98d41fbb77c352bf0652fb95b1ba5f99fe7ab3ef00e5a7a47724c18e4cf130b37a27fe1e0384509f1425d6c9bad5ce77f17214d13b6affa91d3d467637d4aaa01f1ed4c578f583f019b53abd0dfcc812b34429bd303e809224d911f397b613ffd9a19e002b6e268ca4120b3b607917d5ef1b79a17d424239d17f91aba9f3bd77a545f81eb051c4b20ebe0dc60875f0120a3ed9370974cd66984b717b8ae49617e3ab5dd97f3dcfd81c5419da9d070fea718627d41625cbb066e3f8f153f8d113850169e6e0d5b8dcf70e73ca5353047ee2a388d5fa647cb2d7a725ca141e986c65e895f36e411d735cb4fc08673b44532df9cec3a52a6db71708c35cb8a3ab6354d3f8fa814687c6c3acf2c29b86e0a39215cc314f26d631c70d162d6fbbbca0e7494df240203b1b032f88b362b7a2202c07c4201b397bb8005f653416e6ac2ee215e0881436ec3f1bbba8caa622915f94c06547a4d34aab19e6752a008599505f5e3a552f3b0325c37966c5f13aa44f69e19462ab8037d9697516155fc7514a905b84ed236348cdd596c790be30d9d7cc82901be0f2a62716d688bd25777a33d5b93aced51cd53bb7dea447c36006750b1c2ed56263856d58ce9959a81ab8589898cee5a8296bc5614850865c50eafe55d0e2c6244c5790c329cf352870ece3156dfd74022b12de7c16416cddd13e8310789c440f6dc7a66bf342dba1f2ee475c801967204707a318eb208c3c203e70761732069ca7f7debb0ef75f679da3d21df20003490ba8461bcdb408f3e6fcf280b52a3e549fbf16f40a249eeaa26ca68ea1672019f6ccd6bc0361e3b00507712b28534087c48270d4d9a84d8773602934b47cdd0bf69251fe147b26e45f1f98ca134e3b3ad7e07b4a8408b3b621ed1e7768ff97e7fc1f4cfe403fd1eb2e3e42bca52cbf57230d660a1c0dfe6468d1f8f5a148081063e3c0dd509495b9ed892e77ff766a0d56aefa14c9d13cfdd660e017aa1c594389f02a806409fad3c0efa77312394b27ea623d45f2f4f9791ac88f444def9317e8ff664fd0efd8aa1882f622eea407e9cf92ab29ed92cb5073e9222f6d521b81df45e4fa85cedfe2b0dc60cd8455308cecf86d8610dc73840d34c371e0fd13dc5483efed2ed94bb26c1b8576a6c7fb68c6be80ee4098c9268c5362db15a8998071131ccbf0128cd92ff699a05d650c4a87aee4de806019875c685c452422d4870f8b461dc69c43d46817f33f00e5cb03e228595e1441eae2a00006e218058e5b75f2e3abd2386b6b58421a253c881ad162b520ab637556b7975c20589c2e41f644632821b2e6b420f5c865b95be8ecdc5b0ffca6537a941b533de98db254a6a6117c72737b8ec376a126c9c1ab0dc8d97b625aa0967a69c2240a8002f7ff5caf70b738d40c83b22a53f19511d469cf85be10153dd78e144f254b57b05cbd7a24be0a4a89ce35552c57e9f53e5d43b57f074d9db394de77f99a0874f89c69fd59f7b259b6d79739c46e0c899354a6215f34e44718bc6301bc9e5030f2731bc9267aa53a962fac759b650f63db775ab80647187f100dcbb37ec876521ab9c48653522ac7d0fe0c9d3ac5ccdf73772bbe7c7fee4654152604e1773a35e53f042fd7ac284327131d34d1de9381bb0c575a2e1b8ce6edcf71230dd7fed0bc8c5ca2119e3972230d47255bbf098849abddb60579b53802c9006e28811ffc193539f3e36fac0e1022795ef43aeb07fcdbed8f7d868dc6f67b2e45e463c09d31c043f5c4f9c8619bdf6865970167c6262fb75780bcd7c254e10ae71bfb4be7365add7a33697eed65d16d4702d953c35626c7cad0d3b81f135b0a322c8c37009f5bb7863e6f32cd02bc8eb137e9427b8731e791e8bb34f74caad110548cfd51d782e7be095f9a331708940e1a3e95721f977b0498b925cf2729fbfde884873ed12e93dc984b2c1304dfedae645b2944d770e950724cc0b0d8ac7291aa6f893ebf718a0813ff6edb752e61d871fcfcb0dbac3b6df6952c1783bfdc44c124416e9664a5d7cc423757d7ff5c4b5303719e2e2198a729c08218f28427cf81c41b4ead6b8064c591bfd2ff9e0dd4d63f745efdfe013cd50bc90b23520d5bfff541cd1f026a4904706a38992fe6999e277de5d9badb1457791973c410361ffdf321bf635470ae9be3e4f8743b962bdde46105421e47bad543652540e066889b3fc3e076abcc6ddb4c452c9aa21e80d45256f9abad239102a0c9d2647c2550d6426a4573868e9702a0f40904d05dfb6445220f2640526d7c1974d70ba61de433659645cfdc11a0c2a303af9d5c7f2854d279c59c14e312e3e5e9dfa7e356e7496cd021e0416e434825a676886fe63600b7f91c936692ea3cf7468698d92f1d77c12def24f67662e79bcfc347303477a9d0871de6f01dac1ee4c14764a2b3da14ca568c58f2a8ecf954875217fe2161944ea48fc5d82afce3b4d814e825a3ee4b1074599e012ed8e8fe4ef01e4087de3a9276fcda765d9864915757080a53f4719df73a72365dedb291eb3d800c3692de067c6b6b400a7628501be7c275a9beacfde07a3b7c122a2982517647ba3f5bc38646bfbb643a49f468123ca8c9e703e494ef88b9eea2e88aca0164b2cce1bd513d0890742add0e53d96348ea0eb779f7b02d586a03ba85d6fb07daa978ed1fbd8728ed6b96a7e2737bc3160ba88fabb58cd21921549b218116b3eb9b36958ed08ce85753c8d257ff7d1cf22159803ac3fe08d09f7a249c49d72b5e8f2ce84a5b0c334d87a0fa0f1b0d6af7ec422d1dfc300f594b79ccb6f74af7c626525117363d0e2dfc42431a39ba0560ff8990ccd11d8d630050e03dfc51904d4349fd14eb48c05005da6e246d1515d2affb8448027c010d61804d29db9ce82e576456a6f7e23c265b0bdd87ad35a9ddc1a7dbb856fa5429d6eca5d007e8231a86d04980fe205bdd793cb8e835f28d74c954153e50045466c226ad3fb95ea1ac6b8e62852a627ac9439502fa61a43ec675e8ebdeb173fd6ce4e5d979f138d1d883813a955d58b57077b1be90c83b2047bb0f01885e80679f983804832eb8a75eb8292964fd0c857dc645e59dc24be91768c1876bd13ad15bdde15fd4f8f38620c27f55e480e50e2e10f1e7a1b5beaf3704ac111caff252032a9940bdb21ebd08546b6b81ef75f6ac6d2e8bb09be12a9fa97d399b84065eef6f6a868b40df308dd0e6bf9083ca3a20c9933b1d3542d82827736674d51938e5467b3c56c03dd85c02e3722d198a99e7fd7f2c6c0d9ce34dd00b3f6a714e6e941803f8d7db3588c0dce3097006fa891a0101e98984dffc0b3f29bf95907379fadfa814a1e684", @ANYRES8], 0x13c4}, 0x1, 0x0, 0x0, 0x20040000}, 0x4008801)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0})
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r5, 0x800452d2, &(0x7f0000000100))
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000180)=ANY=[], 0x2a)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="796104000000000000007e000000c94b2348dfcb03df17fc8e5c228cb3f25de83aff0ab1ebe501c8934a5c4261efc8762bb5d29ad0a1c0b52bff2eb47850b87291aa56752f12681ca03357"], 0x14}}, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x8004, 0x0)
openat$rfkill(0xffffff9c, &(0x7f0000000280), 0x50000, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000580)=[0x0], 0x0, 0x0, 0x0, 0x1})
r6 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi2\x00', 0xa400, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="021801070a0000002dae7000fddbdf2502000100000004d4070985040100002006001800006c2200c0a8fc35796071548ae52dec2ba9ad3e06ee1baa3a81460b527dcca095ccb965e3004ba8b05708000000000000"], 0x50}}, 0x61)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/diskstats\x00', 0x0, 0x0)

660.698087ms ago: executing program 3 (id=6687):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xfffffc01)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x810, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
r4 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$CDROMMULTISESSION(r4, 0x5310, &(0x7f00000000c0)={@msf={0x8, 0x40, 0x3}, 0x1, 0x2})
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$vcsn(&(0x7f00000001c0), 0x1, 0x800)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000001140)=ANY=[@ANYBLOB="5c00000002060500000000000000000000000000140007800800064000000000080008400000001105000100060000a7afb4e4c705000005000000000005000400000000000900"/97], 0x5c}}, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01090000000000000f478e"])
r6 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000140)={{0x5, 0x7, 0x1d, 0xffff}, 'syz0\x00', 0xd})
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f00000002c0)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x10000, 0x8000000002, 0x4002004c4, 0xffe, 0x0, 0x0, 0xfffffffffffffffd, 0x900f, 0x0, 0xd57b, 0x0, 0x7], 0x100000, 0x2113c0})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x275c, &(0x7f0000001280)={0x0, 0x5bce, 0x80, 0xffffffff, 0x22a, 0x0, r2}, &(0x7f0000002840), &(0x7f0000002880))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000002300)=[{&(0x7f0000001300)=""/4087, 0xff8}], 0x1)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r9)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
write$cgroup_devices(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000300008c71ef28ff4b"], 0xffdd)

540.052972ms ago: executing program 1 (id=6688):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004ec0)=ANY=[@ANYBLOB="28000000400007012bbd700000080000017a03000400c2800c0001800800108004000780040002"], 0x28}, 0x1, 0x0, 0x50, 0x4048011}, 0xc000)

474.196879ms ago: executing program 1 (id=6689):
r0 = socket(0x10, 0x80002, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x1, 'nr0\x00', {}, 0x7})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}}, 0x8000)

446.113033ms ago: executing program 1 (id=6690):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}, @call={0x85, 0x0, 0x0, 0x2a}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0xe, 0x0, &(0x7f0000000280)="63ec33c9e9b98600000000010000", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

443.632555ms ago: executing program 1 (id=6691):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x8})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
fanotify_init(0x8, 0x400)

399.708159ms ago: executing program 4 (id=6692):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2}, [@FRA_GENERIC_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e21, 0x4e22}}]}, 0x24}}, 0x44004)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x4e210000, {0x0, 0x0, 0x0, 0x0, 0x9801}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @multicast1}]}}}]}, 0x3c}}, 0x0)

309.020268ms ago: executing program 4 (id=6693):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write(r2, &(0x7f00000000c0)="2cd889f035a53e14", 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x54, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

222.078711ms ago: executing program 1 (id=6694):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r2, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118023})
r3 = syz_open_dev$usbfs(&(0x7f0000000240), 0x75, 0x539201)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r3, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$USBDEVFS_SUBMITURB(r3, 0x802c550a, &(0x7f00000001c0)=@urb_type_control={0x2, {0xf}, 0xe, 0x80, &(0x7f0000000080)={0x0, 0x14, 0x8000, 0x7ff, 0x1}, 0x8, 0x200, 0x40, 0x0, 0x5, 0x3, &(0x7f0000000140)="2bb9450ab149e763245e0ebdae758813a2d119b0e577ffb7bc6136ae4e26ec925fbd6fb128aea60980c48b98c41caf13a5b4423dc76489e27d57529bbe565e6121451a7a43d58ddf4193bd58532db89d8038db3aaeb6500494842507fb77b427039e30f80cdffe1a50a8b8b3ba885499efede767b48b"})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x15, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1802000004000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007100000018110000", @ANYRES8=r3, @ANYRES16=r2], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe89, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r5}, 0x10)
munlockall()
connect$llc(r4, 0x0, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x9, 0x2, 0x7fff7ffc}]})
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
openat$ppp(0xffffff9c, &(0x7f0000000200), 0xad4791c0a3f247d1, 0x0)
close_range(r6, 0xffffffffffffffff, 0x200000000000000)

195.096125ms ago: executing program 4 (id=6695):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000900)="d8000000180081054e81f782db4cb9040220080406037c09e8fe55a10a0015400200142603600e122f00167c06000600a8000600200005400700027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1, 0x0, 0x0, 0x4a0f0000}, 0x0)

154.659912ms ago: executing program 0 (id=6696):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0xa00}}, 0x1c)
io_uring_setup(0x5b42, &(0x7f0000000640)={0x0, 0xfffffffe, 0x800, 0x103fc, 0x159})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000580)={0xffffffffffffffff, 0x0, 0x25, 0x18, @void}, 0x10)

61.141649ms ago: executing program 4 (id=6697):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
fchdir(r0)
syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x78, 0xffff, 0x0, 0x81, 0xffffffff})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x1a5)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000004c0)={0x1, 0x0, [{0x6a0, 0x0, 0x6}]})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r5 = syz_io_uring_setup(0x200a0, &(0x7f0000000240)={0x0, 0x89b8, 0x8, 0x0, 0x133}, &(0x7f0000000040)=<r6=>0x0, &(0x7f00000000c0)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r4, 0xc000000, &(0x7f0000000000), 0x0, 0x12})
io_uring_enter(r5, 0x847ba, 0x0, 0xe, 0x0, 0x0)
r8 = socket$l2tp(0x2, 0x2, 0x73)
r9 = io_uring_setup(0x549d, &(0x7f0000000000)={0x0, 0x70e6, 0x2, 0x2, 0xf2})
r10 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xc989, 0x0, 0x1, 0x274, 0x0, r9}, &(0x7f0000000000)=<r11=>0x0, &(0x7f0000000280)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0)
syz_io_uring_submit(r11, r12, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}, 0x0, {0x0, r13}})
syz_io_uring_submit(r6, r7, &(0x7f0000000140)=@IORING_OP_SEND={0x1a, 0x42, 0x0, r8, 0x0, &(0x7f00000002c0)="69a0ecf836c8d044ca8ae293f9ae48482de729d07850b5166e8b1e00740fc5a90a53f413fcbd55a77ce5a29b0fc352c35f834158702e9021c36654b8a1043ad2ff3e1a5d9a5ebf4e4621de08e8167580c0ef328c309813e762b18530f46099b6677323c7c18001a9371cee3c935bda11b3f24d3c1db55d1beb01cb35bb1aedd4523fc9a7ad2b71587650a066cb066f7cba59cf03def9a44d4273313d8050704ac0b7739723c7419ade82a6535ce678c92bf16c7e1f170ab022e33f6df0c34a37eddc3093e23d208aa6ac8bce28cc780b63fae5b67650c2a6280c4f87", 0xdc, 0x4008020, 0x1, {0x0, r13}})

0s ago: executing program 1 (id=6698):
setfsgid(0xee00)
r0 = syz_clone(0xb0abfa00, 0x0, 0x1c, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(r0, &(0x7f00000004c0)='net/nfsfs\x00')
munmap(&(0x7f0000901000/0x3000)=nil, 0x3000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x800, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1b, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e77, 0x20000000, 0x94a, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x10}}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x854}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_netfilter(r1, &(0x7f0000001d40)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001d00)={&(0x7f0000001d80)=ANY=[@ANYRES64=r1, @ANYRES32=0x0, @ANYBLOB='\b\x00t\x00', @ANYRES32=0x0, @ANYRES32, @ANYRES16=r4, @ANYBLOB="d89a0976d63c7073bf6dce4d91aa8b83c8500c82852c9ae7a5cd8997351acd81b5df1f3caa42389e96db4ecfec0ab6b087dcd2b7d845b06bf15bc963d2fd709f651265ddfc4701a3c57dc88ba3ae3c9e45e327e84203ff111ea3146dfdeeced437f8fd0160d7883d212b42936b81680ccccf7f9c514df55007d86d9a76fca5e6d892c124bc9f035105ec19492d45735a84ba3e72581d2f8b19feb3771896268b1aa9b0d596ca9165ef6a27d407519586533fdb0d1cc600a76e01cd2781f21026ddb983383721428f0078846e9ed04bbda59891d725a3ec3c4e9bef20a606cf30ce0eb0054d382f1f903da5f86092d3917f2aa0a22a933de3d293a6864cfd925eb0fc20c70991c59737a3d304982cab842979769829f7409afd6968c8dfdacf11c2203a564c7b487570c069bf9723e8e1fbeb80bb870c5b2ee305ed805ab655f4228fa318b0e74e272d3cbb7cdf1f111cf5063a3475aa4d642bf1ded2e381f09fcf9decfd5185b7059a5c7122a2322cddc0ee3bc5724b7e909f046785da8683f5d7550084e351770434db985efb3ee21c2a4caa8653bdebfd24862a22e7cdb39080cd522eb615b6d7d233adf907e9f392e5690aca6620ad55999e5a4b95338b1efd7a53ab3c480067e724e338cde3d09ce1bf94d20c4bf8392ed98ab972b94d82e2e97f0dc470902875919ec9815e1f57f2024fb0ed5c7c382dc458c083b0d0ec0ed3bc4715f5d0c337bcdfa89b4ce1ae7d7954c5e1a6c19d795ec583284d0fc27956f5393b4f7412969733772cb74eccb83da5bdfc64d43c6275b9ba60c09e7e5c5199d09898f01dea9ca653d0b0c04331681052e63adc90a18ae56ea11abfeab6fe7d1170e61d0cd1f93e6f7c6e04b9efdc20722aec6c5cd224f3a73d6fb4e2bde02ae507aaea156cedd4538f91370ad1a90cd9c993bc695ffd3e6a5b6cdd472e8f29a7cd5560b17bec12cdd1246cf974a7b59432b527d47ae7a1abe7d5be2a8ae26b6aa2ee5dce81dc31c6ccfd4058ed7d17a5f83299074055bf593572c9a82fa2e35172109cfd254823b8fee513d23c215cd82bf3fcaa262808b75fa7e93901a2d8e67a7ec26ca355985f111937242ceae1d90d169c3fc404e4619aac72be6700b18ce62435c216fecc6454740bb45b0b2e1adc288bc3ae86b8da7efbe81cdb6842f3f62b836579086d194c34521ea8fcf4c464d67bc2b19122f251630e7140512f19e4acd11434748e7e9a4c9fe8632c96a708b1801b7539c21d494b80c7da2a326ded7261dd1d3be38bca2651b0cd3d9cb1f262d9cd1a596e2f0ae5855a9a74c1bcc118baeaa61b791e8a6d88d34e69c49e511ab98ba259bff64ec1c33c9661a50719e9bac231ec0a43de13b37f18c5a8ddb6217ffcd3e9610b4d4ff317adee01faf67036cde2d8b3bb97178ef4f5da29370e5d0dc184506a0a85b276949f8f4f12eee1cbcfddd4210fa1523acfa30b6d3f0627d45c0afea02e939d37349e80951d220d7e8464a73db2446b49537dfcd3bed7de5d649ba1b73f1da1f6ed9edb18f28b6c5000544c4f39389d53da1f2b192f507364b12ad2c8f1ca1d2160f2654309b9349ab27f9039be3e32118cea951611c0a54a4b72f9f8b7cbaa0f183f5866d2f67cc317b2a9b1efd5981838047fe82ed1c2aec452d6f5434b69a4ae01670e3449e27fc36ac0ad3fdfcb29b6c2aac7a8f79ea85c748b891b3949583ed2cb7a35856f268b85e0c93b65527ab318b6d3cff386468ce6259447b392f5705f43abaf88a036ebeaa73cf09d845ac4c1bac7cb8db3da96cb21430f28755fbd841e81f78c6e0e89ae971d3b2ef1abea3c552382c715b645b67e7f08e55f7dc5b10e760f2d64f655383bc46d2cd3f524b2b5258d4fbb14bed9230172240e1478f6604e45cf74dc83adbf59b6243074330ffbb344e6881777295d04aee122d6547df81194ae13df0706c332da0a01414d4bd33f512056745eb764f2d46bb0f0788c9c21fc35f667614a3f5e4c2bd75f6a246d7342fb8240719d6b842febbdb4f4a14773de5a552828ccbfef42789d874dabf62b720ac5a530548db3fea2ee3c6907f2c4ab54c9b2ddd103092467d832bb6b697382e6068a9cc547fe1287e61954dd4a23c141556363c8c9b05e6e0542c2aefbf49e12616e504558d647d622def438827788e4489d80b14540cd7db049ad2648bdd31246fab0e26d8d6bfdf12d414be15d3d6b82d8e732c1c25d1c99de968b5aec2c30ad61c93e994712bd1feaa312b3af1cfe8689f7978ddf998ab30209531f985ca2dc3560d317c9df689ac413c25e0da225b157f44b4a6da5011cf1795fea3718bc826fe906a7f2c5774136dfcee0f1615e9edad806f416363fb4036d75605bf9db935b0303027e7bee21c4fd463d60ffaf4b8394beeda5bdcd3e98d41fbb77c352bf0652fb95b1ba5f99fe7ab3ef00e5a7a47724c18e4cf130b37a27fe1e0384509f1425d6c9bad5ce77f17214d13b6affa91d3d467637d4aaa01f1ed4c578f583f019b53abd0dfcc812b34429bd303e809224d911f397b613ffd9a19e002b6e268ca4120b3b607917d5ef1b79a17d424239d17f91aba9f3bd77a545f81eb051c4b20ebe0dc60875f0120a3ed9370974cd66984b717b8ae49617e3ab5dd97f3dcfd81c5419da9d070fea718627d41625cbb066e3f8f153f8d113850169e6e0d5b8dcf70e73ca5353047ee2a388d5fa647cb2d7a725ca141e986c65e895f36e411d735cb4fc08673b44532df9cec3a52a6db71708c35cb8a3ab6354d3f8fa814687c6c3acf2c29b86e0a39215cc314f26d631c70d162d6fbbbca0e7494df240203b1b032f88b362b7a2202c07c4201b397bb8005f653416e6ac2ee215e0881436ec3f1bbba8caa622915f94c06547a4d34aab19e6752a008599505f5e3a552f3b0325c37966c5f13aa44f69e19462ab8037d9697516155fc7514a905b84ed236348cdd596c790be30d9d7cc82901be0f2a62716d688bd25777a33d5b93aced51cd53bb7dea447c36006750b1c2ed56263856d58ce9959a81ab8589898cee5a8296bc5614850865c50eafe55d0e2c6244c5790c329cf352870ece3156dfd74022b12de7c16416cddd13e8310789c440f6dc7a66bf342dba1f2ee475c801967204707a318eb208c3c203e70761732069ca7f7debb0ef75f679da3d21df20003490ba8461bcdb408f3e6fcf280b52a3e549fbf16f40a249eeaa26ca68ea1672019f6ccd6bc0361e3b00507712b28534087c48270d4d9a84d8773602934b47cdd0bf69251fe147b26e45f1f98ca134e3b3ad7e07b4a8408b3b621ed1e7768ff97e7fc1f4cfe403fd1eb2e3e42bca52cbf57230d660a1c0dfe6468d1f8f5a148081063e3c0dd509495b9ed892e77ff766a0d56aefa14c9d13cfdd660e017aa1c594389f02a806409fad3c0efa77312394b27ea623d45f2f4f9791ac88f444def9317e8ff664fd0efd8aa1882f622eea407e9cf92ab29ed92cb5073e9222f6d521b81df45e4fa85cedfe2b0dc60cd8455308cecf86d8610dc73840d34c371e0fd13dc5483efed2ed94bb26c1b8576a6c7fb68c6be80ee4098c9268c5362db15a8998071131ccbf0128cd92ff699a05d650c4a87aee4de806019875c685c452422d4870f8b461dc69c43d46817f33f00e5cb03e228595e1441eae2a00006e218058e5b75f2e3abd2386b6b58421a253c881ad162b520ab637556b7975c20589c2e41f644632821b2e6b420f5c865b95be8ecdc5b0ffca6537a941b533de98db254a6a6117c72737b8ec376a126c9c1ab0dc8d97b625aa0967a69c2240a8002f7ff5caf70b738d40c83b22a53f19511d469cf85be10153dd78e144f254b57b05cbd7a24be0a4a89ce35552c57e9f53e5d43b57f074d9db394de77f99a0874f89c69fd59f7b259b6d79739c46e0c899354a6215f34e44718bc6301bc9e5030f2731bc9267aa53a962fac759b650f63db775ab80647187f100dcbb37ec876521ab9c48653522ac7d0fe0c9d3ac5ccdf73772bbe7c7fee4654152604e1773a35e53f042fd7ac284327131d34d1de9381bb0c575a2e1b8ce6edcf71230dd7fed0bc8c5ca2119e3972230d47255bbf098849abddb60579b53802c9006e28811ffc193539f3e36fac0e1022795ef43aeb07fcdbed8f7d868dc6f67b2e45e463c09d31c043f5c4f9c8619bdf6865970167c6262fb75780bcd7c254e10ae71bfb4be7365add7a33697eed65d16d4702d953c35626c7cad0d3b81f135b0a322c8c37009f5bb7863e6f32cd02bc8eb137e9427b8731e791e8bb34f74caad110548cfd51d782e7be095f9a331708940e1a3e95721f977b0498b925cf2729fbfde884873ed12e93dc984b2c1304dfedae645b2944d770e950724cc0b0d8ac7291aa6f893ebf718a0813ff6edb752e61d871fcfcb0dbac3b6df6952c1783bfdc44c124416e9664a5d7cc423757d7ff5c4b5303719e2e2198a729c08218f28427cf81c41b4ead6b8064c591bfd2ff9e0dd4d63f745efdfe013cd50bc90b23520d5bfff541cd1f026a4904706a38992fe6999e277de5d9badb1457791973c410361ffdf321bf635470ae9be3e4f8743b962bdde46105421e47bad543652540e066889b3fc3e076abcc6ddb4c452c9aa21e80d45256f9abad239102a0c9d2647c2550d6426a4573868e9702a0f40904d05dfb6445220f2640526d7c1974d70ba61de433659645cfdc11a0c2a303af9d5c7f2854d279c59c14e312e3e5e9dfa7e356e7496cd021e0416e434825a676886fe63600b7f91c936692ea3cf7468698d92f1d77c12def24f67662e79bcfc347303477a9d0871de6f01dac1ee4c14764a2b3da14ca568c58f2a8ecf954875217fe2161944ea48fc5d82afce3b4d814e825a3ee4b1074599e012ed8e8fe4ef01e4087de3a9276fcda765d9864915757080a53f4719df73a72365dedb291eb3d800c3692de067c6b6b400a7628501be7c275a9beacfde07a3b7c122a2982517647ba3f5bc38646bfbb643a49f468123ca8c9e703e494ef88b9eea2e88aca0164b2cce1bd513d0890742add0e53d96348ea0eb779f7b02d586a03ba85d6fb07daa978ed1fbd8728ed6b96a7e2737bc3160ba88fabb58cd21921549b218116b3eb9b36958ed08ce85753c8d257ff7d1cf22159803ac3fe08d09f7a249c49d72b5e8f2ce84a5b0c334d87a0fa0f1b0d6af7ec422d1dfc300f594b79ccb6f74af7c626525117363d0e2dfc42431a39ba0560ff8990ccd11d8d630050e03dfc51904d4349fd14eb48c05005da6e246d1515d2affb8448027c010d61804d29db9ce82e576456a6f7e23c265b0bdd87ad35a9ddc1a7dbb856fa5429d6eca5d007e8231a86d04980fe205bdd793cb8e835f28d74c954153e50045466c226ad3fb95ea1ac6b8e62852a627ac9439502fa61a43ec675e8ebdeb173fd6ce4e5d979f138d1d883813a955d58b57077b1be90c83b2047bb0f01885e80679f983804832eb8a75eb8292964fd0c857dc645e59dc24be91768c1876bd13ad15bdde15fd4f8f38620c27f55e480e50e2e10f1e7a1b5beaf3704ac111caff252032a9940bdb21ebd08546b6b81ef75f6ac6d2e8bb09be12a9fa97d399b84065eef6f6a868b40df308dd0e6bf9083ca3a20c9933b1d3542d82827736674d51938e5467b3c56c03dd85c02e3722d198a99e7fd7f2c6c0d9ce34dd00b3f6a714e6e941803f8d7db3588c0dce3097006fa891a0101e98984dffc0b3f29bf95907379fadfa814a1e684", @ANYRES8], 0x13c4}, 0x1, 0x0, 0x0, 0x20040000}, 0x4008801)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0})
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r5, 0x800452d2, &(0x7f0000000100))
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000180)=ANY=[], 0x2a)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="796104000000000000007e000000c94b2348dfcb03df17fc8e5c228cb3f25de83aff0ab1ebe501c8934a5c4261efc8762bb5d29ad0a1c0b52bff2eb47850b87291aa56752f12681ca03357"], 0x14}}, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x8004, 0x0)
openat$rfkill(0xffffff9c, &(0x7f0000000280), 0x50000, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000580)=[0x0], 0x0, 0x0, 0x0, 0x1})
r6 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi2\x00', 0xa400, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, &(0x7f0000000140)={'c6xdigio\x00', [0x805, 0x3, 0x2f03, 0xc8, 0x88d7, 0x1, 0x1007, 0x4, 0x1005, 0x6, 0xffffffff, 0x7, 0x10000008, 0x4, 0x40, 0x1, 0x8, 0xdc2, 0x9, 0x8a, 0x108, 0x3, 0x6, 0xa, 0x5, 0x1, 0x8001, 0xe, 0x4, 0x400002, 0x2]})
sendmsg$key(0xffffffffffffffff, 0x0, 0x61)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

ily 0 port 6081 - 0
[  698.740364][T11727] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  698.760255][T11727] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  698.768946][T11727] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  698.772496][T23647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  698.827608][T23647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  698.832248][T23647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  698.847384][T23649] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  698.903836][T23649] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  698.908654][T23649] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  699.136514][T23661] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  699.192395][T23661] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  699.199219][T23661] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  699.606908][T23670] ALSA: mixer_oss: invalid OSS volume ''
[  699.609943][T23670] random: crng reseeded on system resumption
[  699.862715][T23678] bridge4: entered allmulticast mode
[  699.870951][T23678] ªªªªª»: renamed from hsr0 (while UP)
[  700.347883][T23690] batman_adv: batadv0: adding TT local entry 06:e1:05:00:07:00 to non-existent VLAN 768
[  700.428477][T23692] syzkaller0: entered promiscuous mode
[  700.431556][T23692] syzkaller0: entered allmulticast mode
[  700.593423][T23700] ALSA: mixer_oss: invalid OSS volume ''
[  700.596658][T23700] random: crng reseeded on system resumption
[  700.805895][T23707] syz_tun: entered allmulticast mode
[  700.813575][T23707] pimreg: entered allmulticast mode
[  700.872126][T23706] syz_tun: left allmulticast mode
[  700.874400][T23706] pimreg: left allmulticast mode
[  701.070703][T23720] usb usb8: usbfs: process 23720 (syz.4.6021) did not claim interface 0 before use
[  701.407229][T23723] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  701.456030][T23722] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6023'.
[  701.486027][T23723] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  701.545223][T23723] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  701.615147][T23723] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  701.690535][T12421] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  701.706257][T12421] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  701.748956][T12421] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  701.761331][T12421] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  702.790671][T23759] netlink: 'syz.0.6035': attribute type 10 has an invalid length.
[  703.242934][T23769] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.284818][T23767] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6038'.
[  703.318492][T23769] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.375823][T23769] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.447577][T23769] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.522436][T12431] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  703.530788][T12431] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  703.547190][T12431] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  703.555250][T12431] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  703.844992][T23792] overlayfs: missing 'lowerdir'
[  703.851927][T23780] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.898982][T23773] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6039'.
[  703.923264][T23780] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.986776][T23780] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.065167][T23780] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.135752][T12427] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  704.149164][T12427] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  704.160957][T12435] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  704.173451][T12431] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  704.182019][T23804] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.220717][T23808] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6050'.
[  704.231289][T23804] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.327411][T23804] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.390938][T23804] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.465650][T12435] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  704.512079][T11727] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  704.525832][T12435] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  704.538459][T11727] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  704.689720][T23823] overlayfs: missing 'lowerdir'
[  704.974371][T23833] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6060'.
[  705.256155][T23845] FAULT_INJECTION: forcing a failure.
[  705.256155][T23845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  705.265200][T23845] CPU: 3 UID: 0 PID: 23845 Comm: syz.4.6066 Not tainted syzkaller #0 PREEMPT(full) 
[  705.265224][T23845] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  705.265235][T23845] Call Trace:
[  705.265242][T23845]  <TASK>
[  705.265249][T23845]  dump_stack_lvl+0x16c/0x1f0
[  705.265276][T23845]  should_fail_ex+0x512/0x640
[  705.265317][T23845]  _copy_from_user+0x2e/0xd0
[  705.265345][T23845]  do_handle_open+0xee/0xc90
[  705.265362][T23845]  ? __fget_files+0x20e/0x3c0
[  705.265380][T23845]  ? __pfx_do_handle_open+0x10/0x10
[  705.265427][T23845]  ? ksys_write+0x1ac/0x250
[  705.265448][T23845]  ? __pfx_ksys_write+0x10/0x10
[  705.265469][T23845]  ? __do_fast_syscall_32+0x7c/0x300
[  705.265487][T23845]  __do_fast_syscall_32+0x7c/0x300
[  705.265507][T23845]  do_fast_syscall_32+0x32/0x80
[  705.265527][T23845]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  705.265547][T23845] RIP: 0023:0xf702d579
[  705.265560][T23845] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  705.265576][T23845] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000156
[  705.265591][T23845] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[  705.265603][T23845] RDX: 0000000000830200 RSI: 0000000000000000 RDI: 0000000000000000
[  705.265620][T23845] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  705.265632][T23845] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  705.265642][T23845] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  705.265667][T23845]  </TASK>
[  705.586813][T23855] overlayfs: missing 'lowerdir'
[  706.756205][T23902] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6083'.
[  707.412201][T23913] rdma_rxe: rxe_newlink: failed to add syz_tun
[  707.659493][T23913] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  707.707524][T23916] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6088'.
[  707.759984][T23913] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  707.861812][T23913] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.191060][T23913] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.266209][T12430] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  708.274760][T12430] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  708.285564][T12430] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  708.296188][T12430] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  708.399231][T23940] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6096'.
[  708.403947][T23940] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6096'.
[  708.416443][   T40] audit: type=1804 audit(1761290777.227:6617): pid=23940 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.6096" name="/newroot/413/file0/file0" dev="9p" ino=71827801 res=1 errno=0
[  708.562011][ T8300] usb 9-1: new high-speed USB device number 19 using dummy_hcd
[  708.728461][ T8300] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  708.737028][ T8300] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  708.743366][ T8300] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  708.747611][ T8300] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  708.754503][ T8300] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  708.763192][ T8300] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  708.769139][ T8300] usb 9-1: config 0 descriptor??
[  708.904732][T23946] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6097'.
[  709.207199][T23938] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  709.212551][T23938] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  709.220320][T23938] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  709.223988][T23938] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  709.228244][T23938] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6095'.
[  709.231844][T23938] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6095'.
[  709.442555][ T8300] usbhid 9-1:0.0: can't add hid device: -71
[  709.444568][ T8300] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  709.453907][ T8300] usb 9-1: USB disconnect, device number 19
[  709.789048][T23964] syzkaller0: entered promiscuous mode
[  709.792531][T23964] syzkaller0: entered allmulticast mode
[  710.048757][T23969] netlink: 14 bytes leftover after parsing attributes in process `syz.4.6107'.
[  710.272384][T23969] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  710.281037][T23969] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  710.288646][T23969] bond0 (unregistering): Released all slaves
[  710.429966][T23980] netlink: 'syz.1.6109': attribute type 11 has an invalid length.
[  710.432808][T23980] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6109'.
[  710.675143][T23995] syzkaller0: entered promiscuous mode
[  710.677527][T23995] syzkaller0: entered allmulticast mode
[  710.730162][T23998] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  710.786389][T23998] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  710.793405][T23998] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  710.822604][   T40] audit: type=1804 audit(1761290779.627:6618): pid=24001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.6117" name="/newroot/421/file0" dev="tmpfs" ino=2194 res=1 errno=0
[  710.829959][T24001] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -14123, delta: 1
[  710.833545][T24001] ref_ctr increment failed for inode: 0x892 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888023d3ab00
[  710.838281][T24001] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -14123, delta: -1
[  710.841862][T24001] ref_ctr decrement failed for inode: 0x892 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888023d3ab00
[  710.845406][T24001] uprobe: syz.0.6117:24001 failed to unregister, leaking uprobe
[  711.988720][T24023] syzkaller0: entered promiscuous mode
[  711.990620][T24023] syzkaller0: entered allmulticast mode
[  712.093476][T24031] ALSA: mixer_oss: invalid OSS volume ''
[  712.096621][T24031] random: crng reseeded on system resumption
[  712.734047][T24048] netlink: 56 bytes leftover after parsing attributes in process `syz.3.6132'.
[  712.831934][T24054] Invalid logical block size (48858)
[  713.275329][T24071] Bluetooth: MGMT ver 1.23
[  713.431495][T24077] fuse: Bad value for 'user_id'
[  713.433852][T24077] fuse: Bad value for 'user_id'
[  713.483443][T24078] misc userio: The device must be registered before sending interrupts
[  713.897193][T23091] Bluetooth: hci2: ACL packet for unknown connection handle 457
[  714.639197][T24117] FAULT_INJECTION: forcing a failure.
[  714.639197][T24117] name failslab, interval 1, probability 0, space 0, times 0
[  714.647391][T24117] CPU: 2 UID: 0 PID: 24117 Comm: syz.0.6155 Not tainted syzkaller #0 PREEMPT(full) 
[  714.647416][T24117] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  714.647427][T24117] Call Trace:
[  714.647434][T24117]  <TASK>
[  714.647442][T24117]  dump_stack_lvl+0x16c/0x1f0
[  714.647466][T24117]  should_fail_ex+0x512/0x640
[  714.647491][T24117]  ? __kmalloc_cache_noprof+0x5f/0x780
[  714.647522][T24117]  should_failslab+0xc2/0x120
[  714.647545][T24117]  __kmalloc_cache_noprof+0x72/0x780
[  714.647574][T24117]  ? copy_mount_options+0x55/0x190
[  714.647601][T24117]  ? copy_mount_options+0x55/0x190
[  714.647621][T24117]  ? memdup_user+0x82/0xe0
[  714.647638][T24117]  copy_mount_options+0x55/0x190
[  714.647665][T24117]  __ia32_sys_mount+0x1ab/0x310
[  714.647686][T24117]  ? __pfx___ia32_sys_mount+0x10/0x10
[  714.647709][T24117]  ? rcu_is_watching+0x12/0xc0
[  714.647731][T24117]  __do_fast_syscall_32+0x7c/0x300
[  714.647753][T24117]  do_fast_syscall_32+0x32/0x80
[  714.647774][T24117]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  714.647795][T24117] RIP: 0023:0xf7fe4579
[  714.647808][T24117] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  714.647824][T24117] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  714.647841][T24117] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  714.647851][T24117] RDX: 00000000800002c0 RSI: 0000000000000004 RDI: 0000000080000300
[  714.647862][T24117] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  714.647873][T24117] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  714.647883][T24117] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  714.647908][T24117]  </TASK>
[  715.024140][T24128] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  715.027238][T24128] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  715.030653][T24128] vhci_hcd vhci_hcd.0: Device attached
[  715.351362][T13717] usb 39-1: new low-speed USB device number 13 using vhci_hcd
[  715.742476][T24129] vhci_hcd: connection reset by peer
[  715.745598][T12430] vhci_hcd: stop threads
[  715.747070][T12430] vhci_hcd: release socket
[  715.751684][T12430] vhci_hcd: disconnect device
[  715.851899][   T40] audit: type=1804 audit(1761290784.667:6619): pid=24157 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.6169" name="/newroot/63/file0" dev="tmpfs" ino=359 res=1 errno=0
[  717.163327][T24176] ubi: mtd0 is already attached to ubi31
[  717.212493][ T5303] Bluetooth: hci2: unexpected event for opcode 0x0c14
[  718.101271][T23680] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[  718.121959][ T5303] Bluetooth: hci4: command 0x0406 tx timeout
[  718.562103][T24208] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  718.581386][T24212] Dead loop on virtual device ip6_vti0, fix it urgently!
[  718.606882][T24205] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6182'.
[  718.627467][T24208] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  718.745544][T24208] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  718.809686][T24208] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  718.881597][T12435] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  718.890627][T12435] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  718.897578][T12435] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  718.905617][T12435] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  719.062139][T24218] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  719.275798][T24223] kvm: emulating exchange as write
[  719.406079][T24234] loop5: detected capacity change from 0 to 7
[  719.410861][T24234] Dev loop5: unable to read RDB block 7
[  719.413201][T24234]  loop5: AHDI p3 p4
[  719.415097][T24234] loop5: partition table partially beyond EOD, truncated
[  719.418069][T24234] loop5: p3 start 1886353253 is beyond EOD, truncated
[  719.597859][T24247] ALSA: mixer_oss: invalid OSS volume ''
[  719.600906][T24247] random: crng reseeded on system resumption
[  719.871377][ T8300] usb 5-1: new full-speed USB device number 28 using dummy_hcd
[  720.023453][ T8300] usb 5-1: config index 0 descriptor too short (expected 51370, got 72)
[  720.027053][ T8300] usb 5-1: config 135 has too many interfaces: 156, using maximum allowed: 32
[  720.030967][ T8300] usb 5-1: config 135 has an invalid descriptor of length 101, skipping remainder of the config
[  720.036459][ T8300] usb 5-1: config 135 has 0 interfaces, different from the descriptor's value: 156
[  720.044034][ T8300] usb 5-1: config index 1 descriptor too short (expected 51370, got 72)
[  720.047128][ T8300] usb 5-1: config 135 has too many interfaces: 156, using maximum allowed: 32
[  720.050913][ T8300] usb 5-1: config 135 has an invalid descriptor of length 101, skipping remainder of the config
[  720.055108][ T8300] usb 5-1: config 135 has 0 interfaces, different from the descriptor's value: 156
[  720.060510][ T8300] usb 5-1: config index 2 descriptor too short (expected 51370, got 72)
[  720.064723][ T8300] usb 5-1: config 135 has too many interfaces: 156, using maximum allowed: 32
[  720.068515][ T8300] usb 5-1: config 135 has an invalid descriptor of length 101, skipping remainder of the config
[  720.073065][ T8300] usb 5-1: config 135 has 0 interfaces, different from the descriptor's value: 156
[  720.078393][ T8300] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  720.082130][ T8300] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  720.085768][ T8300] usb 5-1: SerialNumber: syz
[  720.300303][ T8300] usb 5-1: USB disconnect, device number 28
[  720.551875][T13717] vhci_hcd: vhci_device speed not set
[  720.891051][T24281] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6208'.
[  720.895487][T24282] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6208'.
[  721.064010][T24291] netlink: 'syz.0.6211': attribute type 4 has an invalid length.
[  721.100416][T24291] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6211'.
[  721.171430][T24296] syzkaller0: entered promiscuous mode
[  721.173751][T24296] syzkaller0: entered allmulticast mode
[  721.190806][T24297] ALSA: mixer_oss: invalid OSS volume ''
[  721.193861][T24297] random: crng reseeded on system resumption
[  721.398090][T24299] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  721.447864][T24302] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6214'.
[  721.529699][T24299] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  721.686133][T24299] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  721.735690][T24299] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  721.832375][T12427] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  721.844972][T12427] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  721.860470][T12427] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  721.875096][T12427] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  721.903529][T24313] input: syz1 as /devices/virtual/input/input18
[  722.044150][T24321] overlayfs: missing 'workdir'
[  722.091974][T24324] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6221'.
[  722.384705][T24329] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  722.387780][T24329] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  722.391664][T24329] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  722.394901][T24329] comedi comedi3: 8255: I/O port conflict (0xfff,4)
[  722.398109][T24329] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  722.403453][T24329] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  722.406407][T24329] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  722.409867][T24329] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  722.412768][T24329] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  722.415522][T24329] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  722.418089][T24329] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  722.420568][T24329] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  722.422965][T24329] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  722.425213][T24329] comedi comedi3: 8255: I/O port conflict (0xffffffff80000089,4)
[  722.428038][T24329] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[  723.039190][T24340] rdma_rxe: rxe_newlink: failed to add syz_tun
[  723.271900][T24340] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  723.317570][T24344] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6226'.
[  723.344449][T24340] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  723.433058][T24356] ALSA: mixer_oss: invalid OSS volume ''
[  723.435312][T24356] random: crng reseeded on system resumption
[  723.442246][T24340] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  723.559069][T24340] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  723.685891][T12421] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  723.703145][T12430] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  723.712929][T12430] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  723.719599][T12430] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  724.047068][T24367] fuse: Unknown parameter 'œxKR�Œ�#Å€-娔æ:z]fþIg÷�º{1]Heº?»ì~*ñöw'
[  724.054756][T24367] tipc: Started in network mode
[  724.056972][T24367] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  724.060036][T24367] tipc: Enabled bearer <eth:team0>, priority 0
[  724.794887][T24389] FAULT_INJECTION: forcing a failure.
[  724.794887][T24389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  724.796750][T24390] syz1: rxe_newlink: already configured on syz_tun
[  724.800352][T24389] CPU: 1 UID: 0 PID: 24389 Comm: syz.1.6240 Not tainted syzkaller #0 PREEMPT(full) 
[  724.800375][T24389] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  724.800385][T24389] Call Trace:
[  724.800391][T24389]  <TASK>
[  724.800399][T24389]  dump_stack_lvl+0x16c/0x1f0
[  724.800421][T24389]  should_fail_ex+0x512/0x640
[  724.800450][T24389]  _copy_from_user+0x2e/0xd0
[  724.800482][T24389]  get_compat_msghdr+0xa7/0x170
[  724.800507][T24389]  ? __pfx_get_compat_msghdr+0x10/0x10
[  724.800541][T24389]  ___sys_sendmsg+0x1ae/0x1d0
[  724.800559][T24389]  ? __pfx____sys_sendmsg+0x10/0x10
[  724.800585][T24389]  ? find_held_lock+0x2b/0x80
[  724.800617][T24389]  __sys_sendmsg+0x16d/0x220
[  724.800633][T24389]  ? __pfx___sys_sendmsg+0x10/0x10
[  724.800659][T24389]  ? rcu_is_watching+0x12/0xc0
[  724.800679][T24389]  __do_fast_syscall_32+0x7c/0x300
[  724.800700][T24389]  do_fast_syscall_32+0x32/0x80
[  724.800720][T24389]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  724.800739][T24389] RIP: 0023:0xf7fa1579
[  724.800753][T24389] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  724.800769][T24389] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  724.800785][T24389] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  724.800796][T24389] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  724.800806][T24389] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  724.800816][T24389] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  724.800825][T24389] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  724.800847][T24389]  </TASK>
[  724.863648][   T40] audit: type=1326 audit(1761290793.667:6620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.873584][   T40] audit: type=1326 audit(1761290793.667:6621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.882274][   T40] audit: type=1326 audit(1761290793.677:6622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.891120][   T40] audit: type=1326 audit(1761290793.677:6623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.901906][   T40] audit: type=1326 audit(1761290793.677:6624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.910536][   T40] audit: type=1326 audit(1761290793.677:6625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.919288][   T40] audit: type=1326 audit(1761290793.677:6626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.927034][   T40] audit: type=1326 audit(1761290793.677:6627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.936165][   T40] audit: type=1326 audit(1761290793.677:6628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=445 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  724.945666][   T40] audit: type=1326 audit(1761290793.677:6629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24394 comm="syz.1.6242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  725.084578][T24390] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  725.098394][T24393] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6239'.
[  725.108167][T24402] ALSA: mixer_oss: invalid OSS volume ''
[  725.110426][T24402] random: crng reseeded on system resumption
[  725.152591][T24390] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  725.196735][T13841] tipc: Node number set to 11578026
[  725.229432][T24390] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  725.329566][T24390] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  725.465079][T12435] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  725.487887][T12435] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  725.504358][T12435] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  725.521078][T12435] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  725.847765][T24411] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  726.032340][T24425] CUSE: info not properly terminated
[  727.027031][T24435] netlink: 'syz.1.6254': attribute type 16 has an invalid length.
[  727.030243][T24435] netlink: 64138 bytes leftover after parsing attributes in process `syz.1.6254'.
[  727.248039][T24449] FAULT_INJECTION: forcing a failure.
[  727.248039][T24449] name failslab, interval 1, probability 0, space 0, times 0
[  727.254183][T24449] CPU: 3 UID: 0 PID: 24449 Comm: syz.0.6259 Not tainted syzkaller #0 PREEMPT(full) 
[  727.254199][T24449] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  727.254206][T24449] Call Trace:
[  727.254210][T24449]  <TASK>
[  727.254215][T24449]  dump_stack_lvl+0x16c/0x1f0
[  727.254233][T24449]  should_fail_ex+0x512/0x640
[  727.254252][T24449]  should_failslab+0xc2/0x120
[  727.254268][T24449]  __kmalloc_cache_noprof+0x72/0x780
[  727.254288][T24449]  ? sctp_add_bind_addr+0xae/0x3f0
[  727.254301][T24449]  ? sctp_add_bind_addr+0xae/0x3f0
[  727.254311][T24449]  sctp_add_bind_addr+0xae/0x3f0
[  727.254323][T24449]  sctp_copy_local_addr_list+0x349/0x550
[  727.254339][T24449]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  727.254354][T24449]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  727.254368][T24449]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  727.254389][T24449]  sctp_bind_addr_copy+0xe0/0x530
[  727.254408][T24449]  sctp_connect_new_asoc+0x1c9/0x770
[  727.254426][T24449]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  727.254442][T24449]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  727.254458][T24449]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  727.254478][T24449]  sctp_sendmsg+0x1557/0x1e00
[  727.254498][T24449]  ? __pfx_sctp_sendmsg+0x10/0x10
[  727.254513][T24449]  ? __pfx___might_resched+0x10/0x10
[  727.254528][T24449]  ? aa_sk_perm+0x2f4/0xb10
[  727.254541][T24449]  ? __pfx_aa_sk_perm+0x10/0x10
[  727.254550][T24449]  ? __might_fault+0xe3/0x190
[  727.254565][T24449]  ? __pfx_sctp_sendmsg+0x10/0x10
[  727.254582][T24449]  inet_sendmsg+0x11c/0x140
[  727.254599][T24449]  __sys_sendto+0x43c/0x520
[  727.254617][T24449]  ? __pfx___sys_sendto+0x10/0x10
[  727.254645][T24449]  ? ksys_write+0x1ac/0x250
[  727.254657][T24449]  ? __pfx_ksys_write+0x10/0x10
[  727.254671][T24449]  __ia32_sys_sendto+0xdd/0x1b0
[  727.254687][T24449]  ? lockdep_hardirqs_on+0x7c/0x110
[  727.254700][T24449]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  727.254714][T24449]  __do_fast_syscall_32+0x7c/0x300
[  727.254729][T24449]  do_fast_syscall_32+0x32/0x80
[  727.254742][T24449]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  727.254756][T24449] RIP: 0023:0xf7fe4579
[  727.254765][T24449] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  727.254776][T24449] RSP: 002b:00000000f54b555c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  727.254788][T24449] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  727.254795][T24449] RDX: 0000000000000001 RSI: 00000000a154b0c0 RDI: 0000000080000000
[  727.254801][T24449] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  727.254808][T24449] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  727.254814][T24449] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  727.254828][T24449]  </TASK>
[  727.381680][T24448] 9pnet: Could not find request transport: fd#rfdno=0x000000000000000b
[  727.430224][T24457] ALSA: mixer_oss: invalid OSS volume ''
[  727.432690][T24457] random: crng reseeded on system resumption
[  728.230368][T24476] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6268'.
[  728.240425][T24476] : entered promiscuous mode
[  728.478643][T24478] syzkaller0: entered promiscuous mode
[  728.480967][T24478] syzkaller0: entered allmulticast mode
[  729.891958][T24504] syz1: rxe_newlink: already configured on syz_tun
[  730.025147][T24508] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3303861288 (422894244864 ns) > initial count (241705619456 ns). Using initial count to start timer.
[  730.031791][T24508] kvm: apic: phys broadcast and lowest prio
[  730.227873][T24509] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6273'.
[  730.898357][T24515] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  730.939361][   T40] kauditd_printk_skb: 36 callbacks suppressed
[  730.939373][   T40] audit: type=1804 audit(1761290799.747:6666): pid=24517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.6276" name="/newroot/467/file0" dev="tmpfs" ino=2428 res=1 errno=0
[  731.017297][T24519] syzkaller0: entered promiscuous mode
[  731.019501][T24519] syzkaller0: entered allmulticast mode
[  731.024661][T24515] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  731.094258][T24515] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  731.230116][T24515] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  731.307554][T11727] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  731.314916][T11727] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  731.323568][T11727] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  731.330188][T11727] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  734.718416][T24607] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6306'.
[  735.002294][T24607] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  735.005049][T24607] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  735.010151][T24607] vhci_hcd vhci_hcd.0: Device attached
[  735.059784][T24618] vhci_hcd: connection closed
[  735.061589][T12427] vhci_hcd: stop threads
[  735.065272][T12427] vhci_hcd: release socket
[  735.067061][T12427] vhci_hcd: disconnect device
[  735.110274][T24621] FAULT_INJECTION: forcing a failure.
[  735.110274][T24621] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  735.116393][T24621] CPU: 1 UID: 0 PID: 24621 Comm: syz.4.6309 Not tainted syzkaller #0 PREEMPT(full) 
[  735.116419][T24621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  735.116430][T24621] Call Trace:
[  735.116438][T24621]  <TASK>
[  735.116444][T24621]  dump_stack_lvl+0x16c/0x1f0
[  735.116470][T24621]  should_fail_ex+0x512/0x640
[  735.116500][T24621]  _copy_from_user+0x2e/0xd0
[  735.116527][T24621]  io_submit_one+0xbb/0x1df0
[  735.116551][T24621]  ? __lock_acquire+0xb8a/0x1c90
[  735.116579][T24621]  ? __pfx_io_submit_one+0x10/0x10
[  735.116606][T24621]  ? __might_fault+0xe3/0x190
[  735.116623][T24621]  ? __might_fault+0x13b/0x190
[  735.116645][T24621]  ? __ia32_compat_sys_io_submit+0x1ad/0x3a0
[  735.116666][T24621]  __ia32_compat_sys_io_submit+0x1ad/0x3a0
[  735.116691][T24621]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  735.116711][T24621]  ? fput+0x9b/0xd0
[  735.116740][T24621]  ? rcu_is_watching+0x12/0xc0
[  735.116758][T24621]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  735.116782][T24621]  __do_fast_syscall_32+0x7c/0x300
[  735.116806][T24621]  do_fast_syscall_32+0x32/0x80
[  735.116826][T24621]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  735.116849][T24621] RIP: 0023:0xf702d579
[  735.116863][T24621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  735.116879][T24621] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  735.116896][T24621] RAX: ffffffffffffffda RBX: 00000000f7f30000 RCX: 0000000000000001
[  735.116906][T24621] RDX: 0000000080001300 RSI: 0000000000000000 RDI: 0000000000000000
[  735.116916][T24621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  735.116925][T24621] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  735.116936][T24621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  735.116960][T24621]  </TASK>
[  735.598920][T24635] syzkaller0: entered promiscuous mode
[  735.602098][T24635] syzkaller0: entered allmulticast mode
[  735.913995][T24641] 9pnet_virtio: no channels available for device syz
[  737.520854][   T40] audit: type=1326 audit(1761290806.327:6667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.530315][   T40] audit: type=1326 audit(1761290806.327:6668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.540060][   T40] audit: type=1326 audit(1761290806.337:6669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=323 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.558041][   T40] audit: type=1326 audit(1761290806.347:6670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.571251][   T40] audit: type=1326 audit(1761290806.347:6671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.591894][   T40] audit: type=1326 audit(1761290806.367:6672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.598772][   T40] audit: type=1326 audit(1761290806.397:6673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.599497][T24675] syzkaller0: entered promiscuous mode
[  737.606969][   T40] audit: type=1326 audit(1761290806.397:6674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.607686][T24675] syzkaller0: entered allmulticast mode
[  737.624237][   T40] audit: type=1326 audit(1761290806.397:6675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.632909][   T40] audit: type=1326 audit(1761290806.397:6676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24669 comm="syz.4.6323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000
[  737.644208][T24679] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6326'.
[  737.952264][T24686] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  738.003277][T24690] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6328'.
[  738.067745][T24686] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  738.125765][T24686] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  738.196414][T24686] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  738.264441][T12434] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  738.276257][T11727] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  738.288535][T11727] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  738.300428][T12434] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  738.467720][T24694] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6331'.
[  738.681427][ T5303] Bluetooth: hci5: command 0x0406 tx timeout
[  738.833493][T24711] syzkaller0: entered promiscuous mode
[  738.835765][T24711] syzkaller0: entered allmulticast mode
[  738.972773][T24716] netlink: 80 bytes leftover after parsing attributes in process `syz.0.6332'.
[  738.975739][T24716] netlink: 80 bytes leftover after parsing attributes in process `syz.0.6332'.
[  739.051261][T24723] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  739.053954][T24723] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  739.056492][T24723] vhci_hcd vhci_hcd.0: Device attached
[  739.521431][T13841] usb 40-1: SetAddress Request (3) to port 0
[  739.523394][T13841] usb 40-1: new SuperSpeed USB device number 3 using vhci_hcd
[  739.816417][T24732] netlink: 830 bytes leftover after parsing attributes in process `syz.4.6341'.
[  740.391358][T24725] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  740.393632][T24497] vhci_hcd: stop threads
[  740.395040][T24497] vhci_hcd: release socket
[  740.541590][T24497] vhci_hcd: disconnect device
[  740.791011][T24747] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  740.860347][T24750] syzkaller0: entered promiscuous mode
[  740.862339][T24750] syzkaller0: entered allmulticast mode
[  740.867679][T24747] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  740.872141][T24747] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  741.363128][T24758] rdma_rxe: rxe_newlink: failed to add syz_tun
[  741.674895][T24758] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  741.712790][T24759] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6348'.
[  741.768694][T24758] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  741.937228][T24772] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6353'.
[  742.013668][T24758] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  742.148519][T24758] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  742.325801][T12430] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  742.348594][T12430] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  742.370651][T11727] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  742.393911][T12430] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  742.782022][T24788] rdma_rxe: rxe_newlink: failed to add syz_tun
[  742.992091][T24788] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  743.041434][T24788] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  743.044212][T24789] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6357'.
[  743.098871][T24788] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  743.170790][T24788] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  743.236211][T12430] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  743.244121][T12430] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  743.250700][T12430] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  743.258509][T12430] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  743.396057][T24795] openvswitch: netlink: Message has 8 unknown bytes.
[  743.451356][T24799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  743.490611][T24801] use of bytesused == 0 is deprecated and will be removed in the future,
[  743.496256][T24801] use the actual size instead.
[  743.507571][T24799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  743.513801][T24799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  743.792710][   T40] kauditd_printk_skb: 12 callbacks suppressed
[  743.792722][   T40] audit: type=1800 audit(1761290812.607:6689): pid=24818 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.6367" name="bus" dev="overlay" ino=2531 res=0 errno=0
[  744.144210][T24826] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  744.241931][T24826] /dev/sr0: Can't open blockdev
[  744.291062][T24833] fuse: Bad value for 'fd'
[  744.405785][T24838] binder: 24837:24838 ioctl c0306201 0 returned -14
[  744.524628][T24843] pim6reg: entered allmulticast mode
[  744.595887][T24846] netlink: 'syz.0.6377': attribute type 5 has an invalid length.
[  745.136775][T24869] binder: 24868:24869 ioctl c0306201 0 returned -14
[  745.137194][T24867] ALSA: mixer_oss: invalid OSS volume ''
[  745.145379][T24867] random: crng reseeded on system resumption
[  745.403098][T24842] delete_channel: no stack
[  745.421066][T24878] rdma_rxe: rxe_newlink: failed to add syz_tun
[  745.650846][T24878] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.699540][T24879] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6386'.
[  745.712559][T13841] usb 40-1: device descriptor read/8, error -110
[  745.735455][T24878] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.796809][T24878] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.855704][T24878] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.991368][ T6029] usb 9-1: new high-speed USB device number 20 using dummy_hcd
[  746.102158][T13841] usb usb40-port1: attempt power cycle
[  746.124423][T24889] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6389'.
[  746.132003][T24889] bond0: entered promiscuous mode
[  746.133967][T24889] bond_slave_0: entered promiscuous mode
[  746.135987][T24889] bond_slave_1: entered promiscuous mode
[  746.138501][T24889] batadv0: entered promiscuous mode
[  746.140609][T24889] debugfs: 'hsr1' already exists in 'hsr'
[  746.142947][T24889] Cannot create hsr debugfs directory
[  746.145098][T24889] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  746.148371][T24889] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  746.152761][T24889] hsr1: entered allmulticast mode
[  746.155026][ T6029] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  746.155065][T24889] bond0: entered allmulticast mode
[  746.159863][ T6029] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  746.164693][T24889] bond_slave_0: entered allmulticast mode
[  746.165597][ T6029] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  746.168204][T24889] bond_slave_1: entered allmulticast mode
[  746.172027][ T6029] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  746.180462][T24889] batadv0: entered allmulticast mode
[  746.180931][ T6029] usb 9-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  746.183339][T24889] 8021q: adding VLAN 0 to HW filter on device hsr1
[  746.185523][ T6029] usb 9-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  746.191721][ T6029] usb 9-1: Manufacturer: syz
[  746.195737][ T6029] usb 9-1: config 0 descriptor??
[  746.604841][ T6029] appleir 0003:05AC:8243.000E: unknown main item tag 0x0
[  746.609066][ T6029] appleir 0003:05AC:8243.000E: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  746.662488][T13841] usb usb40-port1: unable to enumerate USB device
[  746.907007][ T6029] usb 9-1: USB disconnect, device number 20
[  748.278883][T11727] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  748.294047][T12431] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  748.311139][T12431] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  748.341272][T12431] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  748.408029][T24922] syz1: rxe_newlink: already configured on syz_tun
[  748.655042][T24935] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  748.709706][T24936] netlink: 'syz.1.6401': attribute type 1 has an invalid length.
[  748.713156][T24936] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6401'.
[  748.738272][T24922] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  748.742151][   T40] audit: type=1800 audit(1761290817.537:6690): pid=24936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6401" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  748.751535][T24930] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6399'.
[  748.838378][T24922] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  749.046622][T24922] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  749.106855][T24922] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  749.216128][T12431] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  749.224159][T12431] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  749.232870][T12431] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  749.244493][T12431] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  749.478459][T24944] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  749.480685][T24944] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  749.483452][T24944] vhci_hcd vhci_hcd.0: Device attached
[  749.497585][T24944] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  749.520238][T24944] hpfs: Bad magic ... probably not HPFS
[  749.801706][ T6488] usb 37-1: new low-speed USB device number 8 using vhci_hcd
[  749.881079][   T40] audit: type=1804 audit(1761290818.687:6691): pid=24967 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.6412" name="/newroot/123/file0" dev="tmpfs" ino=684 res=1 errno=0
[  749.920166][T24968] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  749.979305][T24968] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  749.992304][T24968] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  750.264914][T24945] vhci_hcd: connection reset by peer
[  750.267075][T11727] vhci_hcd: stop threads
[  750.268758][T11727] vhci_hcd: release socket
[  750.270604][T11727] vhci_hcd: disconnect device
[  750.513087][T24971] netlink: 52 bytes leftover after parsing attributes in process `syz.4.6413'.
[  750.617491][T24976] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  750.619583][T24976] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  750.622177][T24976] vhci_hcd vhci_hcd.0: Device attached
[  750.658775][T24979] netlink: 'syz.1.6415': attribute type 2 has an invalid length.
[  750.871255][T13840] usb 45-1: new low-speed USB device number 6 using vhci_hcd
[  751.431086][T24977] vhci_hcd: connection reset by peer
[  751.586586][T24497] vhci_hcd: stop threads
[  751.588455][T24497] vhci_hcd: release socket
[  751.590375][T24497] vhci_hcd: disconnect device
[  751.821684][T24998] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6421'.
[  751.824675][T24998] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6421'.
[  751.827565][T24998] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6421'.
[  751.868671][   T40] audit: type=1804 audit(1761290820.677:6692): pid=25000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.6422" name="/newroot/506/file0" dev="tmpfs" ino=2658 res=1 errno=0
[  751.883433][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  751.887223][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  752.335384][T25015] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  752.349246][T25016] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  752.351956][T25016] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  752.355210][T25016] vhci_hcd vhci_hcd.0: Device attached
[  752.360308][T25016] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(18)
[  752.363124][T25016] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  752.366660][T25016] vhci_hcd vhci_hcd.0: Device attached
[  752.372298][T25016] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(20)
[  752.375080][T25016] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  752.378289][T25016] vhci_hcd vhci_hcd.0: Device attached
[  752.382665][T25016] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  752.388736][T25016] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(24)
[  752.390885][T25015] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  752.391478][T25016] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  752.391852][T25016] vhci_hcd vhci_hcd.0: Device attached
[  752.397044][T25015] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  752.404788][T25016] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(26)
[  752.407559][T25016] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  752.410773][T25016] vhci_hcd vhci_hcd.0: Device attached
[  752.415094][T25016] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  752.421793][T25016] vhci_hcd vhci_hcd.0: pdev(3) rhport(6) sockfd(30)
[  752.423906][T25016] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  752.426471][T25016] vhci_hcd vhci_hcd.0: Device attached
[  752.430325][T25016] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  752.562263][T25032] random: crng reseeded on system resumption
[  752.621251][ T1021] usb 43-1: new low-speed USB device number 17 using vhci_hcd
[  753.110419][T25025] vhci_hcd: connection closed
[  753.110641][T25023] vhci_hcd: connection closed
[  753.111133][T25021] vhci_hcd: connection closed
[  753.113203][T24497] vhci_hcd: stop threads
[  753.114454][T25019] vhci_hcd: connection closed
[  753.116135][T24497] vhci_hcd: release socket
[  753.117877][T25017] vhci_hcd: connection reset by peer
[  753.119418][T24497] vhci_hcd: disconnect device
[  753.124904][T24497] vhci_hcd: stop threads
[  753.126306][T24497] vhci_hcd: release socket
[  753.127847][T24497] vhci_hcd: disconnect device
[  753.130105][T24497] vhci_hcd: stop threads
[  753.132240][T24497] vhci_hcd: release socket
[  753.133841][T24497] vhci_hcd: disconnect device
[  753.135560][T24497] vhci_hcd: stop threads
[  753.136908][T24497] vhci_hcd: release socket
[  753.138407][T24497] vhci_hcd: disconnect device
[  753.140222][T24497] vhci_hcd: stop threads
[  753.142346][T24497] vhci_hcd: release socket
[  753.143811][T24497] vhci_hcd: disconnect device
[  753.204300][T25034] FAULT_INJECTION: forcing a failure.
[  753.204300][T25034] name failslab, interval 1, probability 0, space 0, times 0
[  753.209384][T25034] CPU: 3 UID: 0 PID: 25034 Comm: syz.4.6431 Not tainted syzkaller #0 PREEMPT(full) 
[  753.209410][T25034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  753.209422][T25034] Call Trace:
[  753.209430][T25034]  <TASK>
[  753.209437][T25034]  dump_stack_lvl+0x16c/0x1f0
[  753.209462][T25034]  should_fail_ex+0x512/0x640
[  753.209487][T25034]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  753.209510][T25034]  should_failslab+0xc2/0x120
[  753.209534][T25034]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  753.209553][T25034]  ? __d_lookup+0x25c/0x4a0
[  753.209577][T25034]  ? __d_alloc+0x32/0xae0
[  753.209601][T25034]  ? __d_alloc+0x32/0xae0
[  753.209618][T25034]  __d_alloc+0x32/0xae0
[  753.209641][T25034]  d_alloc+0x4a/0x1e0
[  753.209663][T25034]  lookup_one_qstr_excl+0x175/0x250
[  753.209688][T25034]  ? mnt_want_write+0x161/0x450
[  753.209715][T25034]  do_rmdir+0x245/0x3c0
[  753.209736][T25034]  ? __pfx_do_rmdir+0x10/0x10
[  753.209763][T25034]  ? getname_flags.part.0+0x1c5/0x550
[  753.209791][T25034]  __ia32_sys_rmdir+0xc4/0x110
[  753.209811][T25034]  __do_fast_syscall_32+0x7c/0x300
[  753.209835][T25034]  do_fast_syscall_32+0x32/0x80
[  753.209856][T25034]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  753.209877][T25034] RIP: 0023:0xf702d579
[  753.209892][T25034] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  753.209909][T25034] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000028
[  753.209932][T25034] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000000
[  753.209944][T25034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  753.209967][T25034] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  753.209980][T25034] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  753.209994][T25034] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  753.210020][T25034]  </TASK>
[  753.762298][T25027] vhci_hcd: connection closed
[  753.762857][T24497] vhci_hcd: stop threads
[  753.766219][T24497] vhci_hcd: release socket
[  753.781448][T24497] vhci_hcd: disconnect device
[  753.994898][T25047] ALSA: mixer_oss: invalid OSS volume ''
[  753.997314][T25047] random: crng reseeded on system resumption
[  754.344458][T25060] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  754.412147][T25060] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  754.417180][T25060] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  754.822569][T25064] rdma_rxe: rxe_newlink: failed to add syz_tun
[  754.911303][ T6488] vhci_hcd: vhci_device speed not set
[  754.982317][T25072] netlink: 'syz.3.6444': attribute type 9 has an invalid length.
[  754.989773][T25072] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6444'.
[  754.999066][T25064] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  755.032984][   T40] audit: type=1804 audit(1761290823.847:6693): pid=25075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.6445" name="/newroot/506/file0" dev="tmpfs" ino=2642 res=1 errno=0
[  755.047969][T25067] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6441'.
[  755.077548][T25064] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  755.194118][T25064] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  755.235373][T25064] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  755.305065][T12430] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  755.312716][T12430] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  755.323601][T11727] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  755.335878][T11727] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  755.470220][T25083] fuse: Bad value for 'fd'
[  755.951248][T13840] vhci_hcd: vhci_device speed not set
[  756.186324][T25100] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  756.242625][T25100] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  756.247371][T25100] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  756.552338][T25103] tipc: Started in network mode
[  756.554878][T25103] tipc: Node identity 2ef72578ede6, cluster identity 4711
[  756.558521][T25103] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  756.564567][T25103] syzkaller0: entered promiscuous mode
[  756.568180][T25103] syzkaller0: entered allmulticast mode
[  756.595541][T25103] tipc: Resetting bearer <eth:syzkaller0>
[  756.601446][T25102] tipc: Resetting bearer <eth:syzkaller0>
[  756.624486][T25102] tipc: Disabling bearer <eth:syzkaller0>
[  756.756223][T11727] Bluetooth: hci1: Frame reassembly failed (-84)
[  756.760439][T25112] netlink: 84 bytes leftover after parsing attributes in process `syz.3.6458'.
[  756.890899][   T40] audit: type=1804 audit(1761290825.697:6694): pid=25117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.6459" name="/newroot/512/file0" dev="tmpfs" ino=2691 res=1 errno=0
[  757.711286][ T1021] vhci_hcd: vhci_device speed not set
[  757.853709][T25144] FAULT_INJECTION: forcing a failure.
[  757.853709][T25144] name failslab, interval 1, probability 0, space 0, times 0
[  757.857754][T25144] CPU: 0 UID: 0 PID: 25144 Comm: syz.0.6468 Not tainted syzkaller #0 PREEMPT(full) 
[  757.857769][T25144] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  757.857776][T25144] Call Trace:
[  757.857781][T25144]  <TASK>
[  757.857785][T25144]  dump_stack_lvl+0x16c/0x1f0
[  757.857802][T25144]  should_fail_ex+0x512/0x640
[  757.857820][T25144]  ? fs_reclaim_acquire+0xae/0x150
[  757.857841][T25144]  should_failslab+0xc2/0x120
[  757.857856][T25144]  __kmalloc_noprof+0xdd/0x880
[  757.857875][T25144]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  757.857892][T25144]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  757.857904][T25144]  tomoyo_realpath_from_path+0xc2/0x6e0
[  757.857918][T25144]  ? tomoyo_profile+0x47/0x60
[  757.857934][T25144]  tomoyo_path_number_perm+0x245/0x580
[  757.857951][T25144]  ? tomoyo_path_number_perm+0x237/0x580
[  757.857970][T25144]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  757.858002][T25144]  ? find_held_lock+0x2b/0x80
[  757.858014][T25144]  ? hook_file_ioctl_common+0x145/0x410
[  757.858028][T25144]  ? __fget_files+0x20e/0x3c0
[  757.858042][T25144]  security_file_ioctl_compat+0x9b/0x240
[  757.858055][T25144]  __ia32_compat_sys_ioctl+0xc3/0x370
[  757.858073][T25144]  __do_fast_syscall_32+0x7c/0x300
[  757.858090][T25144]  do_fast_syscall_32+0x32/0x80
[  757.858104][T25144]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  757.858118][T25144] RIP: 0023:0xf7fe4579
[  757.858127][T25144] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  757.858138][T25144] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  757.858149][T25144] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004020aea5
[  757.858156][T25144] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[  757.858163][T25144] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  757.858169][T25144] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  757.858175][T25144] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  757.858189][T25144]  </TASK>
[  757.858194][T25144] ERROR: Out of memory at tomoyo_realpath_from_path.
[  758.095843][T25148] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  758.151316][T25148] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  758.156718][T25148] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  758.771402][ T5303] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  758.771416][T23091] Bluetooth: hci1: command 0x1003 tx timeout
[  759.011709][ T8300] usb usb44-port1: attempt power cycle
[  759.197703][T25176] FAULT_INJECTION: forcing a failure.
[  759.197703][T25176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  759.207790][T25176] CPU: 1 UID: 0 PID: 25176 Comm: syz.1.6479 Not tainted syzkaller #0 PREEMPT(full) 
[  759.207819][T25176] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  759.207830][T25176] Call Trace:
[  759.207837][T25176]  <TASK>
[  759.207845][T25176]  dump_stack_lvl+0x16c/0x1f0
[  759.207871][T25176]  should_fail_ex+0x512/0x640
[  759.207907][T25176]  _copy_to_user+0x32/0xd0
[  759.207937][T25176]  simple_read_from_buffer+0xcb/0x170
[  759.207967][T25176]  proc_fail_nth_read+0x197/0x240
[  759.207989][T25176]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  759.208010][T25176]  ? rw_verify_area+0xcf/0x6c0
[  759.208027][T25176]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  759.208047][T25176]  vfs_read+0x1e4/0xcf0
[  759.208072][T25176]  ? __pfx_vfs_read+0x10/0x10
[  759.208088][T25176]  ? find_held_lock+0x2b/0x80
[  759.208116][T25176]  ? __fget_files+0x20e/0x3c0
[  759.208141][T25176]  ksys_read+0x12a/0x250
[  759.208160][T25176]  ? __pfx_ksys_read+0x10/0x10
[  759.208181][T25176]  ? rcu_is_watching+0x12/0xc0
[  759.208205][T25176]  __do_fast_syscall_32+0x7c/0x300
[  759.208228][T25176]  do_fast_syscall_32+0x32/0x80
[  759.208249][T25176]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  759.208271][T25176] RIP: 0023:0xf7fa1579
[  759.208285][T25176] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  759.208302][T25176] RSP: 002b:00000000f5475590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  759.208320][T25176] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5475620
[  759.208331][T25176] RDX: 000000000000000f RSI: 00000000f7435ff4 RDI: 0000000000000000
[  759.208342][T25176] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  759.208353][T25176] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  759.208364][T25176] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  759.208391][T25176]  </TASK>
[  759.400967][T25184] FAULT_INJECTION: forcing a failure.
[  759.400967][T25184] name failslab, interval 1, probability 0, space 0, times 0
[  759.418471][T25184] CPU: 1 UID: 0 PID: 25184 Comm: syz.4.6482 Not tainted syzkaller #0 PREEMPT(full) 
[  759.418497][T25184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  759.418509][T25184] Call Trace:
[  759.418516][T25184]  <TASK>
[  759.418524][T25184]  dump_stack_lvl+0x16c/0x1f0
[  759.418549][T25184]  should_fail_ex+0x512/0x640
[  759.418575][T25184]  ? fs_reclaim_acquire+0xae/0x150
[  759.418601][T25184]  should_failslab+0xc2/0x120
[  759.418625][T25184]  __kmalloc_noprof+0xdd/0x880
[  759.418653][T25184]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  759.418680][T25184]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  759.418699][T25184]  tomoyo_realpath_from_path+0xc2/0x6e0
[  759.418721][T25184]  ? tomoyo_profile+0x47/0x60
[  759.418747][T25184]  tomoyo_path_number_perm+0x245/0x580
[  759.418774][T25184]  ? tomoyo_path_number_perm+0x237/0x580
[  759.418804][T25184]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  759.418867][T25184]  ? find_held_lock+0x2b/0x80
[  759.418886][T25184]  ? hook_file_ioctl_common+0x145/0x410
[  759.418911][T25184]  ? __fget_files+0x20e/0x3c0
[  759.418940][T25184]  security_file_ioctl_compat+0x9b/0x240
[  759.418961][T25184]  __ia32_compat_sys_ioctl+0xc3/0x370
[  759.418991][T25184]  __do_fast_syscall_32+0x7c/0x300
[  759.419014][T25184]  do_fast_syscall_32+0x32/0x80
[  759.419035][T25184]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  759.419057][T25184] RIP: 0023:0xf702d579
[  759.419072][T25184] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  759.419090][T25184] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  759.419107][T25184] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c008ae88
[  759.419118][T25184] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  759.419129][T25184] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  759.419140][T25184] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  759.419150][T25184] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  759.419176][T25184]  </TASK>
[  759.419776][T25184] ERROR: Out of memory at tomoyo_realpath_from_path.
[  759.486727][T25182] FAULT_INJECTION: forcing a failure.
[  759.486727][T25182] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  759.505352][T25182] CPU: 3 UID: 0 PID: 25182 Comm: syz.1.6481 Not tainted syzkaller #0 PREEMPT(full) 
[  759.505377][T25182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  759.505388][T25182] Call Trace:
[  759.505395][T25182]  <TASK>
[  759.505402][T25182]  dump_stack_lvl+0x16c/0x1f0
[  759.505427][T25182]  should_fail_ex+0x512/0x640
[  759.505457][T25182]  should_fail_alloc_page+0xe7/0x130
[  759.505482][T25182]  prepare_alloc_pages+0x3c2/0x610
[  759.505620][T25182]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  759.505646][T25182]  ? __lock_acquire+0x622/0x1c90
[  759.505687][T25182]  ? __pfx_stack_trace_save+0x10/0x10
[  759.505708][T25182]  ? look_up_lock_class+0x6b/0x150
[  759.505725][T25182]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  759.505746][T25182]  ? __lock_acquire+0x622/0x1c90
[  759.505772][T25182]  ? __update_page_owner_handle+0x395/0x550
[  759.505797][T25182]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  759.505833][T25182]  ? policy_nodemask+0xea/0x4e0
[  759.505858][T25182]  alloc_pages_mpol+0x1fb/0x550
[  759.505882][T25182]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  759.505904][T25182]  ? __pfx___page_table_check_zero+0x10/0x10
[  759.505930][T25182]  folio_alloc_mpol_noprof+0x36/0x2f0
[  759.505958][T25182]  shmem_alloc_folio+0x135/0x160
[  759.505982][T25182]  shmem_alloc_and_add_folio+0x499/0xc20
[  759.506016][T25182]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  759.506045][T25182]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  759.506069][T25182]  shmem_get_folio_gfp+0x67f/0x1610
[  759.506093][T25182]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  759.506110][T25182]  ? is_bpf_text_address+0x8a/0x1a0
[  759.506141][T25182]  shmem_fault+0x1fe/0xa30
[  759.506160][T25182]  ? __pfx_shmem_fault+0x10/0x10
[  759.506192][T25182]  ? __pfx_filemap_map_pages+0x10/0x10
[  759.506208][T25182]  __do_fault+0x10d/0x490
[  759.506229][T25182]  ? __pfx_filemap_map_pages+0x10/0x10
[  759.506245][T25182]  do_pte_missing+0x1a6/0x3ba0
[  759.506272][T25182]  ? find_held_lock+0x2b/0x80
[  759.506290][T25182]  ? __handle_mm_fault+0x1529/0x2aa0
[  759.506321][T25182]  __handle_mm_fault+0x1556/0x2aa0
[  759.506350][T25182]  ? mt_find+0x3e2/0xa20
[  759.506372][T25182]  ? __pfx___handle_mm_fault+0x10/0x10
[  759.506395][T25182]  ? __pfx_mt_find+0x10/0x10
[  759.506428][T25182]  ? find_vma+0xbf/0x140
[  759.506449][T25182]  ? __pfx_find_vma+0x10/0x10
[  759.506472][T25182]  handle_mm_fault+0x589/0xd10
[  759.506499][T25182]  ? __pkru_allows_pkey+0x11/0xb0
[  759.506527][T25182]  do_user_addr_fault+0x7a6/0x1370
[  759.506546][T25182]  ? rcu_is_watching+0x12/0xc0
[  759.506566][T25182]  exc_page_fault+0x64/0xc0
[  759.506584][T25182]  asm_exc_page_fault+0x26/0x30
[  759.506599][T25182] RIP: 0010:__put_user_2+0xd/0x20
[  759.506617][T25182] Code: 88 01 31 c9 0f 01 ca e9 11 81 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <66> 89 01 31 c9 0f 01 ca c3 cc cc cc cc 66 0f 1f 44 00 00 90 90 90
[  759.506633][T25182] RSP: 0018:ffffc90006cefea8 EFLAGS: 00050202
[  759.506649][T25182] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000080000140
[  759.506660][T25182] RDX: ffff88802867a480 RSI: ffffffff81b0aeef RDI: ffffffff8bf071c0
[  759.506671][T25182] RBP: ffff88801fdd5b14 R08: d097b7b68f08c411 R09: 0000000000000000
[  759.506681][T25182] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801fdd5b00
[  759.506690][T25182] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000080000140
[  759.506707][T25182]  ? __ia32_sys_getresgid16+0x30f/0x5d0
[  759.506733][T25182]  __ia32_sys_getresgid16+0x319/0x5d0
[  759.506759][T25182]  __do_fast_syscall_32+0x7c/0x300
[  759.506781][T25182]  do_fast_syscall_32+0x32/0x80
[  759.506801][T25182]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  759.506827][T25182] RIP: 0023:0xf7fa1579
[  759.506841][T25182] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  759.506856][T25182] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 00000000000000ab
[  759.506870][T25182] RAX: ffffffffffffffda RBX: 0000000080000140 RCX: 0000000080000180
[  759.506879][T25182] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  759.506997][T25182] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  759.507008][T25182] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  759.507020][T25182] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  759.507046][T25182]  </TASK>
[  759.675800][T25195] FAULT_INJECTION: forcing a failure.
[  759.675800][T25195] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  759.676298][ T8300] usb usb44-port1: unable to enumerate USB device
[  759.679836][T25195] CPU: 3 UID: 0 PID: 25195 Comm: syz.0.6487 Not tainted syzkaller #0 PREEMPT(full) 
[  759.679852][T25195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  759.679859][T25195] Call Trace:
[  759.679864][T25195]  <TASK>
[  759.679868][T25195]  dump_stack_lvl+0x16c/0x1f0
[  759.679897][T25195]  should_fail_ex+0x512/0x640
[  759.679918][T25195]  _copy_from_user+0x2e/0xd0
[  759.679936][T25195]  do_sys_poll+0x1d5/0xdf0
[  759.679948][T25195]  ? __lock_acquire+0x622/0x1c90
[  759.679969][T25195]  ? __kernel_text_address+0xd/0x40
[  759.679984][T25195]  ? __pfx_do_sys_poll+0x10/0x10
[  759.680035][T25195]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  759.680051][T25195]  ? set_compat_user_sigmask+0x213/0x2a0
[  759.680063][T25195]  ? __pfx_set_compat_user_sigmask+0x10/0x10
[  759.680076][T25195]  ? __fget_files+0x20e/0x3c0
[  759.680088][T25195]  ? handle_mm_fault+0x240/0xd10
[  759.680108][T25195]  __ia32_compat_sys_ppoll_time32+0x248/0x2c0
[  759.680122][T25195]  ? __pfx___ia32_compat_sys_ppoll_time32+0x10/0x10
[  759.680134][T25195]  ? ksys_write+0x1ac/0x250
[  759.680146][T25195]  ? __pfx_ksys_write+0x10/0x10
[  759.680159][T25195]  ? rcu_is_watching+0x12/0xc0
[  759.680173][T25195]  __do_fast_syscall_32+0x7c/0x300
[  759.680188][T25195]  do_fast_syscall_32+0x32/0x80
[  759.680201][T25195]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  759.680216][T25195] RIP: 0023:0xf7fe4579
[  759.680225][T25195] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  759.680236][T25195] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000135
[  759.680246][T25195] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000000001
[  759.680253][T25195] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  759.680262][T25195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  759.680268][T25195] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  759.680274][T25195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  759.680289][T25195]  </TASK>
[  760.021250][T25217] syzkaller0: entered promiscuous mode
[  760.023003][T25217] syzkaller0: entered allmulticast mode
[  760.068344][T25218] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  760.125904][T25218] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  760.130082][T25218] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  760.224327][   T40] audit: type=1804 audit(1761290829.037:6695): pid=25220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.6494" name="/newroot/153/file0" dev="tmpfs" ino=846 res=1 errno=0
[  761.033771][T25234] FAULT_INJECTION: forcing a failure.
[  761.033771][T25234] name failslab, interval 1, probability 0, space 0, times 0
[  761.039013][T25234] CPU: 0 UID: 0 PID: 25234 Comm: syz.4.6499 Not tainted syzkaller #0 PREEMPT(full) 
[  761.039037][T25234] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  761.039048][T25234] Call Trace:
[  761.039057][T25234]  <TASK>
[  761.039065][T25234]  dump_stack_lvl+0x16c/0x1f0
[  761.039095][T25234]  should_fail_ex+0x512/0x640
[  761.039120][T25234]  ? fs_reclaim_acquire+0xae/0x150
[  761.039146][T25234]  should_failslab+0xc2/0x120
[  761.039169][T25234]  __kmalloc_noprof+0xdd/0x880
[  761.039197][T25234]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  761.039224][T25234]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  761.039243][T25234]  tomoyo_realpath_from_path+0xc2/0x6e0
[  761.039266][T25234]  ? tomoyo_profile+0x47/0x60
[  761.039292][T25234]  tomoyo_path_number_perm+0x245/0x580
[  761.039318][T25234]  ? tomoyo_path_number_perm+0x237/0x580
[  761.039347][T25234]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  761.039401][T25234]  ? find_held_lock+0x2b/0x80
[  761.039421][T25234]  ? hook_file_ioctl_common+0x145/0x410
[  761.039446][T25234]  ? __fget_files+0x20e/0x3c0
[  761.039469][T25234]  security_file_ioctl_compat+0x9b/0x240
[  761.039490][T25234]  __ia32_compat_sys_ioctl+0xc3/0x370
[  761.039520][T25234]  __do_fast_syscall_32+0x7c/0x300
[  761.039544][T25234]  do_fast_syscall_32+0x32/0x80
[  761.039565][T25234]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  761.039587][T25234] RIP: 0023:0xf702d579
[  761.039601][T25234] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  761.039618][T25234] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  761.039636][T25234] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae90
[  761.039648][T25234] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  761.039658][T25234] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  761.039669][T25234] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  761.039679][T25234] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  761.039705][T25234]  </TASK>
[  761.039713][T25234] ERROR: Out of memory at tomoyo_realpath_from_path.
[  761.290413][T25243] syzkaller0: entered promiscuous mode
[  761.292279][T25243] syzkaller0: entered allmulticast mode
[  761.472283][   T40] audit: type=1804 audit(1761290830.287:6696): pid=25252 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.6506" name="/newroot/522/file0" dev="tmpfs" ino=2743 res=1 errno=0
[  762.148275][T25262] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6509'.
[  762.349622][T25267] binder: BINDER_SET_CONTEXT_MGR already set
[  762.353323][T25267] binder: 25264:25267 ioctl 4018620d 80000100 returned -16
[  762.356506][T25266] 9pnet_fd: Insufficient options for proto=fd
[  762.452384][T25271] bridge0: port 2(bridge_slave_1) entered disabled state
[  762.455848][T25271] bridge0: port 1(bridge_slave_0) entered disabled state
[  762.526824][T25279] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  762.530098][T25271] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  762.539002][T25271] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  762.582193][T25279] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  762.588913][T25279] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  762.618642][T25271] bridge4: left allmulticast mode
[  762.623703][T12431] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  762.632967][T25274] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  762.640215][T12431] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  762.643970][T12431] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  762.679632][T25286] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  763.078908][   T40] audit: type=1326 audit(1761290831.887:6697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe4579 code=0x0
[  763.179206][   T40] audit: type=1326 audit(1761290831.987:6698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  763.191333][   T40] audit: type=1326 audit(1761290831.987:6699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  763.215935][   T40] audit: type=1326 audit(1761290831.987:6700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  763.225157][   T40] audit: type=1326 audit(1761290831.987:6701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  763.232322][   T40] audit: type=1326 audit(1761290831.987:6702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  763.239147][   T40] audit: type=1326 audit(1761290831.987:6703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  763.246161][   T40] audit: type=1326 audit(1761290831.987:6704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  764.122266][T23091] Bluetooth: hci3: command 0x0405 tx timeout
[  765.263479][   T40] kauditd_printk_skb: 3826 callbacks suppressed
[  765.263490][   T40] audit: type=1326 audit(1761290834.037:10531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  765.292543][   T40] audit: type=1326 audit(1761290834.097:10532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  765.299376][   T40] audit: type=1326 audit(1761290834.107:10533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  765.306616][   T40] audit: type=1326 audit(1761290834.107:10534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  765.313851][   T40] audit: type=1326 audit(1761290834.107:10535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  765.320664][   T40] audit: type=1326 audit(1761290834.107:10536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  765.327670][   T40] audit: type=1326 audit(1761290834.107:10537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  765.334636][   T40] audit: type=1326 audit(1761290834.107:10538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  765.341396][   T40] audit: type=1326 audit(1761290834.107:10539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  765.348024][   T40] audit: type=1326 audit(1761290834.107:10540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25294 comm="syz.0.6519" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fe4598 code=0x7ffc0000
[  766.155513][T25342] ALSA: mixer_oss: invalid OSS volume ''
[  766.159158][T25342] random: crng reseeded on system resumption
[  766.192251][T25345] FAULT_INJECTION: forcing a failure.
[  766.192251][T25345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  766.194689][T25346] FAULT_INJECTION: forcing a failure.
[  766.194689][T25346] name failslab, interval 1, probability 0, space 0, times 0
[  766.197590][T25345] CPU: 1 UID: 0 PID: 25345 Comm: syz.0.6536 Not tainted syzkaller #0 PREEMPT(full) 
[  766.197614][T25345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  766.197625][T25345] Call Trace:
[  766.197645][T25345]  <TASK>
[  766.197652][T25345]  dump_stack_lvl+0x16c/0x1f0
[  766.197692][T25345]  should_fail_ex+0x512/0x640
[  766.197730][T25345]  _copy_from_iter+0x29f/0x1720
[  766.197765][T25345]  ? __lock_acquire+0x622/0x1c90
[  766.197792][T25345]  ? __pfx__copy_from_iter+0x10/0x10
[  766.197830][T25345]  copy_page_from_iter+0xde/0x180
[  766.197861][T25345]  tun_build_skb.constprop.0+0x2e8/0x1510
[  766.197890][T25345]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  766.197915][T25345]  ? __lock_acquire+0x622/0x1c90
[  766.197955][T25345]  tun_get_user+0x149c/0x3cc0
[  766.197986][T25345]  ? __pfx_tun_get_user+0x10/0x10
[  766.198009][T25345]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  766.198047][T25345]  ? find_held_lock+0x2b/0x80
[  766.198066][T25345]  ? tun_get+0x191/0x370
[  766.198100][T25345]  tun_chr_write_iter+0xdc/0x210
[  766.198121][T25345]  vfs_write+0x7d3/0x11d0
[  766.198142][T25345]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  766.198164][T25345]  ? __pfx_vfs_write+0x10/0x10
[  766.198181][T25345]  ? find_held_lock+0x2b/0x80
[  766.198216][T25345]  ksys_write+0x12a/0x250
[  766.198235][T25345]  ? __pfx_ksys_write+0x10/0x10
[  766.198257][T25345]  ? rcu_is_watching+0x12/0xc0
[  766.198279][T25345]  __do_fast_syscall_32+0x7c/0x300
[  766.198304][T25345]  do_fast_syscall_32+0x32/0x80
[  766.198325][T25345]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  766.198347][T25345] RIP: 0023:0xf7fe4579
[  766.198361][T25345] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  766.198378][T25345] RSP: 002b:00000000f54d6520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  766.198396][T25345] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000180
[  766.198408][T25345] RDX: 000000000000007a RSI: 00000000f7475ff4 RDI: 0000000000000000
[  766.198417][T25345] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  766.198426][T25345] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  766.198436][T25345] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  766.198461][T25345]  </TASK>
[  766.296818][T25346] CPU: 0 UID: 0 PID: 25346 Comm: syz.1.6537 Not tainted syzkaller #0 PREEMPT(full) 
[  766.296860][T25346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  766.296870][T25346] Call Trace:
[  766.296877][T25346]  <TASK>
[  766.296884][T25346]  dump_stack_lvl+0x16c/0x1f0
[  766.296912][T25346]  should_fail_ex+0x512/0x640
[  766.296950][T25346]  ? __kmalloc_cache_noprof+0x5f/0x780
[  766.296981][T25346]  should_failslab+0xc2/0x120
[  766.297005][T25346]  __kmalloc_cache_noprof+0x72/0x780
[  766.297031][T25346]  ? alloc_pipe_info+0x10e/0x590
[  766.297058][T25346]  ? alloc_pipe_info+0x10e/0x590
[  766.297082][T25346]  alloc_pipe_info+0x10e/0x590
[  766.297107][T25346]  splice_direct_to_actor+0x77d/0xa30
[  766.297125][T25346]  ? __pfx_direct_splice_actor+0x10/0x10
[  766.297145][T25346]  ? __pfx_aa_file_perm+0x10/0x10
[  766.297166][T25346]  ? find_held_lock+0x2b/0x80
[  766.297185][T25346]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  766.297202][T25346]  ? get_pid_task+0xfc/0x250
[  766.297230][T25346]  do_splice_direct+0x174/0x240
[  766.297250][T25346]  ? __pfx_do_splice_direct+0x10/0x10
[  766.297268][T25346]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  766.297300][T25346]  ? rw_verify_area+0xcf/0x6c0
[  766.297320][T25346]  do_sendfile+0xb06/0xe50
[  766.297341][T25346]  ? __pfx_do_sendfile+0x10/0x10
[  766.297361][T25346]  ? __fget_files+0x20e/0x3c0
[  766.297383][T25346]  __ia32_compat_sys_sendfile+0x1e5/0x220
[  766.297408][T25346]  ? ksys_write+0x1ac/0x250
[  766.297426][T25346]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  766.297452][T25346]  ? rcu_is_watching+0x12/0xc0
[  766.297475][T25346]  __do_fast_syscall_32+0x7c/0x300
[  766.297497][T25346]  do_fast_syscall_32+0x32/0x80
[  766.297520][T25346]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  766.297544][T25346] RIP: 0023:0xf7fa1579
[  766.297559][T25346] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  766.297575][T25346] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  766.297593][T25346] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000003
[  766.297606][T25346] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000
[  766.297616][T25346] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  766.297626][T25346] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  766.297635][T25346] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  766.297659][T25346]  </TASK>
[  767.050147][T25367] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  767.422093][T25366] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  767.424899][T25366] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  767.428375][T25366] vhci_hcd vhci_hcd.0: Device attached
[  767.681924][ T8300] usb 45-1: new low-speed USB device number 7 using vhci_hcd
[  767.814802][T25368] vhci_hcd: connection reset by peer
[  767.819239][T11727] vhci_hcd: stop threads
[  767.820678][T11727] vhci_hcd: release socket
[  767.826888][T11727] vhci_hcd: disconnect device
[  768.117920][T25385] binder: 25380:25385 ioctl 0 80000040 returned -22
[  768.146451][T12427] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  768.150851][T12427] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  769.012450][T25404] input: syz1 as /devices/virtual/input/input19
[  770.030681][T25429] syzkaller0: entered promiscuous mode
[  770.032679][T25429] syzkaller0: entered allmulticast mode
[  770.173624][T25433] fuse: Bad value for 'group_id'
[  770.175966][T25433] fuse: Bad value for 'group_id'
[  770.250330][T25435] syzkaller0: entered promiscuous mode
[  770.253324][T25435] syzkaller0: entered allmulticast mode
[  770.386309][T25440] FAULT_INJECTION: forcing a failure.
[  770.386309][T25440] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  770.393325][T25440] CPU: 1 UID: 0 PID: 25440 Comm: syz.0.6568 Not tainted syzkaller #0 PREEMPT(full) 
[  770.393342][T25440] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  770.393349][T25440] Call Trace:
[  770.393353][T25440]  <TASK>
[  770.393358][T25440]  dump_stack_lvl+0x16c/0x1f0
[  770.393378][T25440]  should_fail_ex+0x512/0x640
[  770.393398][T25440]  _copy_from_user+0x2e/0xd0
[  770.393422][T25440]  get_old_timespec32+0x82/0x130
[  770.393443][T25440]  ? __pfx_get_old_timespec32+0x10/0x10
[  770.393467][T25440]  ? __fget_files+0x20e/0x3c0
[  770.393484][T25440]  ? handle_mm_fault+0x240/0xd10
[  770.393513][T25440]  __sys_recvmmsg+0xdc/0x280
[  770.393532][T25440]  ? __pfx___sys_recvmmsg+0x10/0x10
[  770.393552][T25440]  ? __pfx_ksys_write+0x10/0x10
[  770.393574][T25440]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  770.393588][T25440]  ? lockdep_hardirqs_on+0x7c/0x110
[  770.393600][T25440]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  770.393614][T25440]  __do_fast_syscall_32+0x7c/0x300
[  770.393629][T25440]  do_fast_syscall_32+0x32/0x80
[  770.393642][T25440]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  770.393657][T25440] RIP: 0023:0xf7fe4579
[  770.393666][T25440] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  770.393677][T25440] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  770.393689][T25440] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080002ec0
[  770.393696][T25440] RDX: 0000000000000ec0 RSI: 0000000000000002 RDI: 00000000800001c0
[  770.393702][T25440] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  770.393708][T25440] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  770.393715][T25440] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  770.393729][T25440]  </TASK>
[  770.587093][T25451] FAULT_INJECTION: forcing a failure.
[  770.587093][T25451] name failslab, interval 1, probability 0, space 0, times 0
[  770.592818][T25451] CPU: 3 UID: 0 PID: 25451 Comm: syz.0.6572 Not tainted syzkaller #0 PREEMPT(full) 
[  770.592835][T25451] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  770.592842][T25451] Call Trace:
[  770.592846][T25451]  <TASK>
[  770.592851][T25451]  dump_stack_lvl+0x16c/0x1f0
[  770.592867][T25451]  should_fail_ex+0x512/0x640
[  770.592886][T25451]  ? fs_reclaim_acquire+0xae/0x150
[  770.592903][T25451]  should_failslab+0xc2/0x120
[  770.592918][T25451]  __kmalloc_noprof+0xdd/0x880
[  770.592936][T25451]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  770.592953][T25451]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  770.592969][T25451]  tomoyo_realpath_from_path+0xc2/0x6e0
[  770.592983][T25451]  ? tomoyo_profile+0x47/0x60
[  770.592999][T25451]  tomoyo_path_number_perm+0x245/0x580
[  770.593016][T25451]  ? tomoyo_path_number_perm+0x237/0x580
[  770.593035][T25451]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  770.593067][T25451]  ? find_held_lock+0x2b/0x80
[  770.593079][T25451]  ? hook_file_ioctl_common+0x145/0x410
[  770.593093][T25451]  ? __fget_files+0x20e/0x3c0
[  770.593107][T25451]  security_file_ioctl_compat+0x9b/0x240
[  770.593120][T25451]  __ia32_compat_sys_ioctl+0xc3/0x370
[  770.593139][T25451]  __do_fast_syscall_32+0x7c/0x300
[  770.593155][T25451]  do_fast_syscall_32+0x32/0x80
[  770.593168][T25451]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  770.593182][T25451] RIP: 0023:0xf7fe4579
[  770.593191][T25451] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  770.593203][T25451] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  770.593213][T25451] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  770.593220][T25451] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  770.593226][T25451] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  770.593233][T25451] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  770.593239][T25451] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  770.593253][T25451]  </TASK>
[  770.593258][T25451] ERROR: Out of memory at tomoyo_realpath_from_path.
[  770.668877][T25454] syzkaller0: entered promiscuous mode
[  770.671545][T25454] syzkaller0: entered allmulticast mode
[  770.815397][T25456] fuse: Bad value for 'group_id'
[  770.817263][T25456] fuse: Bad value for 'group_id'
[  771.609527][T25470] trusted_key: encrypted_key: key trusted:syz not found
[  771.951523][T25488] ALSA: mixer_oss: invalid OSS volume ''
[  771.953694][T25488] random: crng reseeded on system resumption
[  772.045100][T25493] fuse: Unknown parameter 'group_i00000000000000000000'
[  772.101301][  T840] usb 6-1: new high-speed USB device number 51 using dummy_hcd
[  772.262376][  T840] usb 6-1: Using ep0 maxpacket: 32
[  772.266081][  T840] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  772.269801][  T840] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  772.280611][  T840] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  772.294333][  T840] usb 6-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  772.302031][  T840] usb 6-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  772.309460][  T840] usb 6-1: Product: syz
[  772.313439][  T840] usb 6-1: Manufacturer: syz
[  772.545039][  T840] usb 6-1: SerialNumber: syz
[  772.548549][T25483] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  772.555181][  T840] input: appletouch as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/input/input20
[  772.820448][T25504] sp0: Synchronizing with TNC
[  772.826287][T25504] sp0: Found TNC
[  772.841486][ T8300] vhci_hcd: vhci_device speed not set
[  772.935669][T25482] [U] è`
[  772.974088][  T840] usb 6-1: USB disconnect, device number 51
[  773.045729][  T840] appletouch 6-1:1.0: input: appletouch disconnected
[  774.691854][   T40] kauditd_printk_skb: 784 callbacks suppressed
[  774.691865][   T40] audit: type=1326 audit(1761290843.507:11325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.706686][   T40] audit: type=1326 audit(1761290843.517:11326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.718688][   T40] audit: type=1326 audit(1761290843.527:11327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.725499][   T40] audit: type=1326 audit(1761290843.527:11328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.732645][   T40] audit: type=1326 audit(1761290843.527:11329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.739322][   T40] audit: type=1326 audit(1761290843.527:11330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.746105][   T40] audit: type=1326 audit(1761290843.527:11331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.752827][   T40] audit: type=1326 audit(1761290843.527:11332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.759802][   T40] audit: type=1326 audit(1761290843.527:11333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.766682][   T40] audit: type=1326 audit(1761290843.527:11334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25536 comm="syz.4.6597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7fc00000
[  774.773613][T25540] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6596'.
[  774.792973][T25540] wireguard0: entered promiscuous mode
[  774.794928][T25540] wireguard0: entered allmulticast mode
[  774.850762][T25543] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6598'.
[  775.003069][T25550] FAULT_INJECTION: forcing a failure.
[  775.003069][T25550] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  775.007983][T25550] CPU: 3 UID: 0 PID: 25550 Comm: syz.0.6600 Not tainted syzkaller #0 PREEMPT(full) 
[  775.007999][T25550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  775.008006][T25550] Call Trace:
[  775.008010][T25550]  <TASK>
[  775.008015][T25550]  dump_stack_lvl+0x16c/0x1f0
[  775.008032][T25550]  should_fail_ex+0x512/0x640
[  775.008052][T25550]  _copy_to_user+0x32/0xd0
[  775.008071][T25550]  simple_read_from_buffer+0xcb/0x170
[  775.008090][T25550]  proc_fail_nth_read+0x197/0x240
[  775.008103][T25550]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  775.008116][T25550]  ? rw_verify_area+0xcf/0x6c0
[  775.008127][T25550]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  775.008138][T25550]  vfs_read+0x1e4/0xcf0
[  775.008153][T25550]  ? __pfx_vfs_read+0x10/0x10
[  775.008164][T25550]  ? find_held_lock+0x2b/0x80
[  775.008179][T25550]  ? __fget_files+0x20e/0x3c0
[  775.008194][T25550]  ksys_read+0x12a/0x250
[  775.008206][T25550]  ? __pfx_ksys_read+0x10/0x10
[  775.008219][T25550]  ? rcu_is_watching+0x12/0xc0
[  775.008233][T25550]  __do_fast_syscall_32+0x7c/0x300
[  775.008248][T25550]  do_fast_syscall_32+0x32/0x80
[  775.008261][T25550]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  775.008275][T25550] RIP: 0023:0xf7fe4579
[  775.008285][T25550] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  775.008295][T25550] RSP: 002b:00000000f54d6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  775.008306][T25550] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54d6620
[  775.008313][T25550] RDX: 000000000000000f RSI: 00000000f7475ff4 RDI: 0000000000000000
[  775.008319][T25550] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  775.008328][T25550] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  775.008338][T25550] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  775.008361][T25550]  </TASK>
[  775.076785][T25554] syzkaller0: entered promiscuous mode
[  775.088601][T25554] syzkaller0: entered allmulticast mode
[  775.260161][T25563] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  775.594114][T25577] FAULT_INJECTION: forcing a failure.
[  775.594114][T25577] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  775.598865][T25577] CPU: 1 UID: 0 PID: 25577 Comm: syz.1.6611 Not tainted syzkaller #0 PREEMPT(full) 
[  775.598890][T25577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  775.598899][T25577] Call Trace:
[  775.598904][T25577]  <TASK>
[  775.598909][T25577]  dump_stack_lvl+0x16c/0x1f0
[  775.598926][T25577]  should_fail_ex+0x512/0x640
[  775.598946][T25577]  should_fail_alloc_page+0xe7/0x130
[  775.598963][T25577]  prepare_alloc_pages+0x3c2/0x610
[  775.598980][T25577]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  775.598992][T25577]  ? __lock_acquire+0x622/0x1c90
[  775.599012][T25577]  ? __lock_acquire+0x622/0x1c90
[  775.599030][T25577]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  775.599041][T25577]  ? __lock_acquire+0x622/0x1c90
[  775.599065][T25577]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  775.599085][T25577]  ? policy_nodemask+0xea/0x4e0
[  775.599102][T25577]  alloc_pages_mpol+0x1fb/0x550
[  775.599118][T25577]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  775.599133][T25577]  ? is_bpf_text_address+0x94/0x1a0
[  775.599154][T25577]  folio_alloc_mpol_noprof+0x36/0x2f0
[  775.599172][T25577]  shmem_alloc_folio+0x135/0x160
[  775.599190][T25577]  shmem_alloc_and_add_folio+0x499/0xc20
[  775.599223][T25577]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  775.599245][T25577]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  775.599260][T25577]  shmem_get_folio_gfp+0x67f/0x1610
[  775.599275][T25577]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  775.599290][T25577]  shmem_fault+0x1fe/0xa30
[  775.599301][T25577]  ? __pfx___might_resched+0x10/0x10
[  775.599313][T25577]  ? __pfx_shmem_fault+0x10/0x10
[  775.599332][T25577]  ? __pfx_filemap_map_pages+0x10/0x10
[  775.599343][T25577]  __do_fault+0x10d/0x490
[  775.599356][T25577]  ? __pfx_filemap_map_pages+0x10/0x10
[  775.599366][T25577]  do_pte_missing+0x1a6/0x3ba0
[  775.599383][T25577]  ? find_held_lock+0x2b/0x80
[  775.599395][T25577]  ? __handle_mm_fault+0x1529/0x2aa0
[  775.599427][T25577]  __handle_mm_fault+0x1556/0x2aa0
[  775.599446][T25577]  ? mt_find+0x3e2/0xa20
[  775.599461][T25577]  ? __pfx___handle_mm_fault+0x10/0x10
[  775.599488][T25577]  ? __pfx_mt_find+0x10/0x10
[  775.599510][T25577]  ? find_vma+0xbf/0x140
[  775.599523][T25577]  ? __pfx_find_vma+0x10/0x10
[  775.599538][T25577]  handle_mm_fault+0x589/0xd10
[  775.599556][T25577]  ? __pkru_allows_pkey+0x11/0xb0
[  775.599575][T25577]  do_user_addr_fault+0x7a6/0x1370
[  775.599587][T25577]  ? rcu_is_watching+0x12/0xc0
[  775.599601][T25577]  exc_page_fault+0x64/0xc0
[  775.599614][T25577]  asm_exc_page_fault+0x26/0x30
[  775.599625][T25577] RIP: 0010:filldir64+0x1d3/0x600
[  775.599643][T25577] Code: 23 75 80 ff 48 89 ee 4c 89 ff e8 c8 6f 80 ff 48 83 7c 24 28 00 0f 85 3f 02 00 00 e8 07 75 80 ff 0f 01 cb 0f ae e8 48 8b 04 24 <49> 89 47 08 e8 f4 74 80 ff 4c 8b 7c 24 30 48 8b 44 24 08 49 89 07
[  775.599654][T25577] RSP: 0018:ffffc9000e8bfb70 EFLAGS: 00050293
[  775.599673][T25577] RAX: 0000000000000000 RBX: ffffc9000e8bfe58 RCX: ffffffff823bf4e8
[  775.599681][T25577] RDX: ffff8880494b4900 RSI: ffffffff823bf4f9 RDI: 0000000000000006
[  775.599688][T25577] RBP: 0000000080002f58 R08: 0000000000000006 R09: 0000000080002f40
[  775.599698][T25577] R10: 0000000080002f58 R11: 0000000000000001 R12: 0000000000000018
[  775.599704][T25577] R13: ffffffff8ba2b960 R14: ffffc9000e8bfe7c R15: 0000000080002f40
[  775.599716][T25577]  ? filldir64+0x1b8/0x600
[  775.599732][T25577]  ? filldir64+0x1c9/0x600
[  775.599754][T25577]  ? __pfx_filldir64+0x10/0x10
[  775.599770][T25577]  proc_map_files_readdir+0x60e/0xb20
[  775.599790][T25577]  ? __pfx_proc_map_files_readdir+0x10/0x10
[  775.599813][T25577]  ? down_read_killable+0x220/0x4b0
[  775.599827][T25577]  ? find_held_lock+0x2b/0x80
[  775.599838][T25577]  ? __pfx_down_read_killable+0x10/0x10
[  775.599854][T25577]  ? common_file_perm+0x1a9/0x340
[  775.599867][T25577]  iterate_dir+0x296/0xaf0
[  775.599887][T25577]  __ia32_sys_getdents64+0x13b/0x2c0
[  775.599906][T25577]  ? __pfx___ia32_sys_getdents64+0x10/0x10
[  775.599924][T25577]  ? __pfx_filldir64+0x10/0x10
[  775.599941][T25577]  ? __do_compat_sys_rt_sigreturn+0x1ba/0x270
[  775.599960][T25577]  ? rcu_is_watching+0x12/0xc0
[  775.599974][T25577]  __do_fast_syscall_32+0x7c/0x300
[  775.599989][T25577]  do_fast_syscall_32+0x32/0x80
[  775.600002][T25577]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  775.600015][T25577] RIP: 0023:0xf7fa1579
[  775.600024][T25577] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  775.600034][T25577] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 00000000000000dc
[  775.600044][T25577] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080002f40
[  775.600050][T25577] RDX: 0000000000001002 RSI: 0000000000000000 RDI: 0000000000000000
[  775.600057][T25577] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  775.600063][T25577] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  775.600069][T25577] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  775.600084][T25577]  </TASK>
[  775.843087][T25587] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  776.119445][T25596] syzkaller0: entered promiscuous mode
[  776.124390][T25596] syzkaller0: entered allmulticast mode
[  776.143257][T25596] FAULT_INJECTION: forcing a failure.
[  776.143257][T25596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  776.148614][T25596] CPU: 1 UID: 0 PID: 25596 Comm: syz.3.6617 Not tainted syzkaller #0 PREEMPT(full) 
[  776.148652][T25596] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  776.148663][T25596] Call Trace:
[  776.148669][T25596]  <TASK>
[  776.148676][T25596]  dump_stack_lvl+0x16c/0x1f0
[  776.148702][T25596]  should_fail_ex+0x512/0x640
[  776.148758][T25596]  _copy_from_user+0x2e/0xd0
[  776.148788][T25596]  move_addr_to_kernel+0x65/0x170
[  776.148813][T25596]  __sys_sendto+0x1be/0x520
[  776.148838][T25596]  ? __pfx___sys_sendto+0x10/0x10
[  776.148889][T25596]  ? ksys_write+0x1ac/0x250
[  776.148909][T25596]  ? __pfx_ksys_write+0x10/0x10
[  776.148932][T25596]  __ia32_sys_sendto+0xdd/0x1b0
[  776.148958][T25596]  ? lockdep_hardirqs_on+0x7c/0x110
[  776.148978][T25596]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  776.149000][T25596]  __do_fast_syscall_32+0x7c/0x300
[  776.149023][T25596]  do_fast_syscall_32+0x32/0x80
[  776.149046][T25596]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  776.149069][T25596] RIP: 0023:0xf70bd579
[  776.149082][T25596] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  776.149098][T25596] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  776.149113][T25596] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800005c0
[  776.149124][T25596] RDX: 000000000000000e RSI: 0000000000000040 RDI: 00000000800001c0
[  776.149134][T25596] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000
[  776.149143][T25596] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  776.149150][T25596] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  776.149164][T25596]  </TASK>
[  777.086071][T25606] syzkaller0: entered promiscuous mode
[  777.087826][T25606] syzkaller0: entered allmulticast mode
[  777.099547][T25603] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6620'.
[  777.279759][T25607] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(13)
[  777.281844][T25607] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  777.284590][T25607] vhci_hcd vhci_hcd.0: Device attached
[  777.394923][T25614] FAULT_INJECTION: forcing a failure.
[  777.394923][T25614] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  777.400387][T25614] CPU: 1 UID: 0 PID: 25614 Comm: syz.4.6622 Not tainted syzkaller #0 PREEMPT(full) 
[  777.400413][T25614] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  777.400422][T25614] Call Trace:
[  777.400429][T25614]  <TASK>
[  777.400437][T25614]  dump_stack_lvl+0x16c/0x1f0
[  777.400459][T25614]  should_fail_ex+0x512/0x640
[  777.400487][T25614]  _copy_from_user+0x2e/0xd0
[  777.400511][T25614]  get_compat_msghdr+0xa7/0x170
[  777.400535][T25614]  ? __pfx_get_compat_msghdr+0x10/0x10
[  777.400565][T25614]  ___sys_sendmsg+0x1ae/0x1d0
[  777.400582][T25614]  ? __pfx____sys_sendmsg+0x10/0x10
[  777.400610][T25614]  ? find_held_lock+0x2b/0x80
[  777.400643][T25614]  __sys_sendmsg+0x16d/0x220
[  777.400661][T25614]  ? __pfx___sys_sendmsg+0x10/0x10
[  777.400688][T25614]  ? rcu_is_watching+0x12/0xc0
[  777.400711][T25614]  __do_fast_syscall_32+0x7c/0x300
[  777.400755][T25614]  do_fast_syscall_32+0x32/0x80
[  777.400774][T25614]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  777.400794][T25614] RIP: 0023:0xf702d579
[  777.400808][T25614] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  777.400824][T25614] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  777.400841][T25614] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  777.400851][T25614] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  777.400860][T25614] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  777.400876][T25614] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  777.400887][T25614] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  777.400911][T25614]  </TASK>
[  777.488853][T25616] netlink: get zone limit has 4 unknown bytes
[  777.646396][  T840] usb 37-1: new low-speed USB device number 9 using vhci_hcd
[  777.682017][T25623] FAULT_INJECTION: forcing a failure.
[  777.682017][T25623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  777.686354][T25623] CPU: 0 UID: 0 PID: 25623 Comm: syz.4.6625 Not tainted syzkaller #0 PREEMPT(full) 
[  777.686370][T25623] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  777.686377][T25623] Call Trace:
[  777.686382][T25623]  <TASK>
[  777.686386][T25623]  dump_stack_lvl+0x16c/0x1f0
[  777.686402][T25623]  should_fail_ex+0x512/0x640
[  777.686422][T25623]  save_fsave_header+0x14c/0x2f0
[  777.686450][T25623]  ? __pfx_save_fsave_header+0x10/0x10
[  777.686471][T25623]  ? copy_fpstate_to_sigframe+0x2c3/0xaf0
[  777.686485][T25623]  ? rcu_is_watching+0x12/0xc0
[  777.686497][T25623]  ? __local_bh_enable_ip+0xa4/0x120
[  777.686513][T25623]  copy_fpstate_to_sigframe+0x77c/0xaf0
[  777.686530][T25623]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  777.686545][T25623]  ? posixtimer_deliver_signal+0x105/0x6b0
[  777.686565][T25623]  ? posixtimer_deliver_signal+0x1c7/0x6b0
[  777.686582][T25623]  ? x86_task_fpu+0x5f/0x90
[  777.686595][T25623]  get_sigframe+0x4a8/0x9c0
[  777.686611][T25623]  ? __pfx_get_sigframe+0x10/0x10
[  777.686625][T25623]  ? _raw_spin_unlock_irq+0x23/0x50
[  777.686636][T25623]  ? siginfo_layout+0x177/0x290
[  777.686649][T25623]  ia32_setup_rt_frame+0xe3/0xb30
[  777.686670][T25623]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  777.686691][T25623]  arch_do_signal_or_restart+0x471/0x790
[  777.686708][T25623]  ? __fget_files+0x20e/0x3c0
[  777.686720][T25623]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  777.686737][T25623]  ? ksys_write+0x1ac/0x250
[  777.686749][T25623]  ? __pfx_ksys_write+0x10/0x10
[  777.686760][T25623]  ? __do_compat_sys_rt_sigreturn+0x1ba/0x270
[  777.686780][T25623]  exit_to_user_mode_loop+0x85/0x130
[  777.686798][T25623]  __do_fast_syscall_32+0x240/0x300
[  777.686813][T25623]  do_fast_syscall_32+0x32/0x80
[  777.686826][T25623]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  777.686841][T25623] RIP: 0023:0xf702d579
[  777.686850][T25623] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  777.686861][T25623] RSP: 002b:00000000f541d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  777.686872][T25623] RAX: 0000000000000001 RBX: 0000000000000006 RCX: 00000000f541d610
[  777.686879][T25623] RDX: 0000000000000001 RSI: 00000000f73c5ff4 RDI: 0000000000000000
[  777.686885][T25623] RBP: 00000000f73f4f80 R08: 0000000000000000 R09: 0000000000000000
[  777.686891][T25623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  777.686898][T25623] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  777.686911][T25623]  </TASK>
[  777.957930][T25610] vhci_hcd: connection reset by peer
[  777.966164][T12434] vhci_hcd: stop threads
[  777.968217][T12434] vhci_hcd: release socket
[  777.970516][T12434] vhci_hcd: disconnect device
[  778.111861][ T6169] e1000 0000:00:06.0 eth0: Reset adapter
[  778.894067][T25648] FAULT_INJECTION: forcing a failure.
[  778.894067][T25648] name failslab, interval 1, probability 0, space 0, times 0
[  778.898146][T25648] CPU: 3 UID: 0 PID: 25648 Comm: syz.4.6632 Not tainted syzkaller #0 PREEMPT(full) 
[  778.898162][T25648] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  778.898169][T25648] Call Trace:
[  778.898173][T25648]  <TASK>
[  778.898177][T25648]  dump_stack_lvl+0x16c/0x1f0
[  778.898193][T25648]  should_fail_ex+0x512/0x640
[  778.898211][T25648]  ? fs_reclaim_acquire+0xae/0x150
[  778.898228][T25648]  should_failslab+0xc2/0x120
[  778.898244][T25648]  __kmalloc_noprof+0xdd/0x880
[  778.898262][T25648]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  778.898278][T25648]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  778.898290][T25648]  tomoyo_realpath_from_path+0xc2/0x6e0
[  778.898304][T25648]  ? tomoyo_profile+0x47/0x60
[  778.898320][T25648]  tomoyo_path_number_perm+0x245/0x580
[  778.898337][T25648]  ? tomoyo_path_number_perm+0x237/0x580
[  778.898356][T25648]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  778.898392][T25648]  ? find_held_lock+0x2b/0x80
[  778.898409][T25648]  ? hook_file_ioctl_common+0x145/0x410
[  778.898433][T25648]  ? __fget_files+0x20e/0x3c0
[  778.898454][T25648]  security_file_ioctl_compat+0x9b/0x240
[  778.898472][T25648]  __ia32_compat_sys_ioctl+0xc3/0x370
[  778.898500][T25648]  __do_fast_syscall_32+0x7c/0x300
[  778.898515][T25648]  do_fast_syscall_32+0x32/0x80
[  778.898528][T25648]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  778.898542][T25648] RIP: 0023:0xf702d579
[  778.898551][T25648] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  778.898562][T25648] RSP: 002b:00000000f541d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  778.898573][T25648] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80
[  778.898579][T25648] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  778.898586][T25648] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  778.898592][T25648] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  778.898598][T25648] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  778.898612][T25648]  </TASK>
[  778.898617][T25648] ERROR: Out of memory at tomoyo_realpath_from_path.
[  779.061315][T25658] ALSA: mixer_oss: invalid OSS volume ''
[  779.064582][T25658] random: crng reseeded on system resumption
[  779.080047][T25662] syzkaller0: entered promiscuous mode
[  779.082533][T25662] syzkaller0: entered allmulticast mode
[  780.842920][ T6029] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  782.751358][  T840] vhci_hcd: vhci_device speed not set
[  793.254272][T25693] 9pnet_fd: Insufficient options for proto=fd
[  793.360660][T25700] rdma_rxe: rxe_newlink: failed to add syz_tun
[  793.432558][T25688] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  793.464488][T25694] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6638'.
[  793.515728][T25688] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  793.560460][T25702] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  793.660899][T25688] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  793.917383][T25702] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  793.955031][T25688] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.023243][T25702] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.094739][T11727] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  794.099182][T25700] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6640'.
[  794.107108][T11727] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  794.120682][T11727] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  794.128494][T11727] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  794.139665][T25702] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.269892][T11727] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  794.296292][T11727] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  794.298978][T11727] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  794.303943][T11727] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  794.527235][T25737] ALSA: mixer_oss: invalid OSS volume ''
[  794.529194][T25737] random: crng reseeded on system resumption
[  794.736255][T25735] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6644'.
[  795.435918][   T40] kauditd_printk_skb: 60 callbacks suppressed
[  795.435929][   T40] audit: type=1804 audit(1761290864.247:11395): pid=25751 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.6650" name="/newroot/194/file0" dev="tmpfs" ino=1062 res=1 errno=0
[  796.413019][T25761] netlink: 5 bytes leftover after parsing attributes in process `syz.4.6652'.
[  796.574882][T25768] FAULT_INJECTION: forcing a failure.
[  796.574882][T25768] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  796.579699][T25768] CPU: 2 UID: 0 PID: 25768 Comm: syz.0.6655 Not tainted syzkaller #0 PREEMPT(full) 
[  796.579725][T25768] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  796.579747][T25768] Call Trace:
[  796.579767][T25768]  <TASK>
[  796.579773][T25768]  dump_stack_lvl+0x16c/0x1f0
[  796.579808][T25768]  should_fail_ex+0x512/0x640
[  796.579840][T25768]  _copy_from_user+0x2e/0xd0
[  796.579863][T25768]  __sys_bpf+0x248/0x4980
[  796.579883][T25768]  ? __pfx___sys_bpf+0x10/0x10
[  796.579897][T25768]  ? find_held_lock+0x2b/0x80
[  796.579916][T25768]  ? find_held_lock+0x2b/0x80
[  796.579936][T25768]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  796.579965][T25768]  ? fput+0x9b/0xd0
[  796.579985][T25768]  ? ksys_write+0x1ac/0x250
[  796.579999][T25768]  ? __pfx_ksys_write+0x10/0x10
[  796.580019][T25768]  __ia32_sys_bpf+0x76/0xe0
[  796.580035][T25768]  __do_fast_syscall_32+0x7c/0x300
[  796.580053][T25768]  do_fast_syscall_32+0x32/0x80
[  796.580070][T25768]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  796.580088][T25768] RIP: 0023:0xf7fe4579
[  796.580099][T25768] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  796.580112][T25768] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  796.580126][T25768] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000500
[  796.580136][T25768] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  796.580144][T25768] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  796.580152][T25768] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  796.580160][T25768] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  796.580180][T25768]  </TASK>
[  796.600078][T25766] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  796.685906][T25766] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  797.890963][T25771] netlink: 'syz.0.6656': attribute type 1 has an invalid length.
[  798.004188][T25771] bond1: (slave vxcan1): The slave device specified does not support setting the MAC address
[  798.007949][T25771] bond1: (slave vxcan1): Error -95 calling set_mac_address
[  798.101684][T25786] ALSA: mixer_oss: invalid OSS volume ''
[  798.115095][T25786] random: crng reseeded on system resumption
[  799.034978][T25794] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  799.052543][T25794] CIFS mount error: No usable UNC path provided in device string!
[  799.052543][T25794] 
[  799.056494][T25794] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  799.741692][T25816] fuse: Unknown parameter 'user_i00000000000000000000'
[  799.818388][T25818] fuse: Bad value for 'fd'
[  799.962217][T25822] ALSA: mixer_oss: invalid OSS volume ''
[  799.965473][T25822] random: crng reseeded on system resumption
[  800.041345][ T5303] Bluetooth: hci3: command 0x0405 tx timeout
[  800.742261][T25834] syzkaller0: entered promiscuous mode
[  800.744235][T25834] syzkaller0: entered allmulticast mode
[  801.573338][T25847] fuse: Unknown parameter 'user_i00000000000000000000'
[  803.165240][T25874] lo: entered allmulticast mode
[  803.186150][T25874] lo: left allmulticast mode
[  803.779051][T25884] syzkaller0: entered promiscuous mode
[  803.781851][T25884] syzkaller0: entered allmulticast mode
[  804.019493][T25904] netlink: 'syz.4.6695': attribute type 21 has an invalid length.
[  804.022867][T25904] netlink: 128 bytes leftover after parsing attributes in process `syz.4.6695'.
[  804.085499][   T40] audit: type=1326 audit(1761290872.897:11396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25905 comm="syz.4.6697" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702d579 code=0x0
[  804.469569][T25912] comedi comedi2: c6xdigio: I/O port conflict (0x805,3)
[  804.474117][T25912] ==================================================================
[  804.477498][T25912] BUG: KASAN: slab-use-after-free in sysfs_remove_file_ns+0x63/0x70
[  804.480846][T25912] Read of size 8 at addr ffff88804ead3630 by task syz.1.6698/25912
[  804.486055][T25912] 
[  804.487155][T25912] CPU: 1 UID: 0 PID: 25912 Comm: syz.1.6698 Not tainted syzkaller #0 PREEMPT(full) 
[  804.487184][T25912] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  804.487198][T25912] Call Trace:
[  804.487207][T25912]  <TASK>
[  804.487216][T25912]  dump_stack_lvl+0x116/0x1f0
[  804.487242][T25912]  print_report+0xcd/0x630
[  804.487268][T25912]  ? __virt_addr_valid+0x81/0x610
[  804.487297][T25912]  ? __phys_addr+0xe8/0x180
[  804.487323][T25912]  ? sysfs_remove_file_ns+0x63/0x70
[  804.487343][T25912]  kasan_report+0xe0/0x110
[  804.487368][T25912]  ? sysfs_remove_file_ns+0x63/0x70
[  804.487393][T25912]  sysfs_remove_file_ns+0x63/0x70
[  804.487418][T25912]  driver_remove_file+0x4a/0x60
[  804.487448][T25912]  bus_remove_driver+0x224/0x2c0
[  804.487475][T25912]  driver_unregister+0x76/0xb0
[  804.487506][T25912]  comedi_device_detach_locked+0x12f/0xa50
[  804.487541][T25912]  comedi_device_detach+0x67/0xb0
[  804.487569][T25912]  comedi_device_attach+0x43d/0x900
[  804.487602][T25912]  do_devconfig_ioctl+0x1b1/0x710
[  804.487624][T25912]  ? __mutex_lock+0x1c5/0x1060
[  804.487648][T25912]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  804.487687][T25912]  comedi_unlocked_ioctl+0x165d/0x2f00
[  804.487728][T25912]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  804.487764][T25912]  ? kasan_quarantine_put+0x10a/0x240
[  804.487787][T25912]  ? lockdep_hardirqs_on+0x7c/0x110
[  804.487810][T25912]  ? find_held_lock+0x2b/0x80
[  804.487830][T25912]  ? tomoyo_path_number_perm+0x295/0x580
[  804.487864][T25912]  ? tomoyo_path_number_perm+0x18d/0x580
[  804.487895][T25912]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  804.487926][T25912]  comedi_compat_ioctl+0x1d0/0x990
[  804.487950][T25912]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  804.487976][T25912]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  804.488007][T25912]  ? do_vfs_ioctl+0x128/0x14f0
[  804.488037][T25912]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  804.488066][T25912]  ? find_held_lock+0x2b/0x80
[  804.488085][T25912]  ? hook_file_ioctl_common+0x145/0x410
[  804.488109][T25912]  ? __fget_files+0x20e/0x3c0
[  804.488128][T25912]  ? __ia32_compat_sys_openat+0xa0/0x210
[  804.488159][T25912]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  804.488185][T25912]  __ia32_compat_sys_ioctl+0x242/0x370
[  804.488216][T25912]  __do_fast_syscall_32+0x7c/0x300
[  804.488242][T25912]  do_fast_syscall_32+0x32/0x80
[  804.488268][T25912]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  804.488294][T25912] RIP: 0023:0xf7fa1579
[  804.488310][T25912] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  804.488330][T25912] RSP: 002b:00000000f545455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  804.488349][T25912] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000040946400
[  804.488365][T25912] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  804.488379][T25912] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  804.488389][T25912] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  804.488402][T25912] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  804.488420][T25912]  </TASK>
[  804.488429][T25912] 
[  804.607907][T25912] Allocated by task 25429:
[  804.609293][T25912]  kasan_save_stack+0x33/0x60
[  804.610768][T25912]  kasan_save_track+0x14/0x30
[  804.612567][T25912]  __kasan_kmalloc+0xaa/0xb0
[  804.614033][T25912]  __kmalloc_noprof+0x32f/0x880
[  804.615758][T25912]  __register_sysctl_table+0xea2/0x1900
[  804.617683][T25912]  __devinet_sysctl_register+0x1b9/0x360
[  804.619435][T25912]  devinet_sysctl_register+0x17b/0x200
[  804.621147][T25912]  inetdev_init+0x2b8/0x5a0
[  804.622564][T25912]  inetdev_event+0xc5f/0x18a0
[  804.624043][T25912]  notifier_call_chain+0xbc/0x410
[  804.625676][T25912]  call_netdevice_notifiers_info+0xbe/0x140
[  804.627529][T25912]  register_netdevice+0x182e/0x2270
[  804.629162][T25912]  __tun_chr_ioctl+0x1eb6/0x4880
[  804.630711][T25912]  __ia32_compat_sys_ioctl+0x242/0x370
[  804.632404][T25912]  __do_fast_syscall_32+0x7c/0x300
[  804.634015][T25912]  do_fast_syscall_32+0x32/0x80
[  804.635694][T25912]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  804.638300][T25912] 
[  804.639266][T25912] Freed by task 110:
[  804.640513][T25912]  kasan_save_stack+0x33/0x60
[  804.641996][T25912]  kasan_save_track+0x14/0x30
[  804.643467][T25912]  __kasan_save_free_info+0x3b/0x60
[  804.645129][T25912]  __kasan_slab_free+0x5f/0x80
[  804.646622][T25912]  kfree+0x2b8/0x6d0
[  804.647794][T25912]  kvfree_rcu_list+0x95/0x120
[  804.649278][T25912]  kfree_rcu_monitor+0x21c/0x2f0
[  804.650832][T25912]  kfree_rcu_shrink_scan+0xdd/0x180
[  804.652455][T25912]  do_shrink_slab+0x42e/0x1180
[  804.653965][T25912]  shrink_slab+0x32a/0x12b0
[  804.655434][T25912]  shrink_one+0x47a/0x7a0
[  804.656954][T25912]  shrink_node+0x26cb/0x3d80
[  804.658597][T25912]  balance_pgdat+0xbb8/0x1a50
[  804.660085][T25912]  kswapd+0x590/0xb90
[  804.661352][T25912]  kthread+0x3c5/0x780
[  804.662669][T25912]  ret_from_fork+0x675/0x7d0
[  804.664123][T25912]  ret_from_fork_asm+0x1a/0x30
[  804.665710][T25912] 
[  804.666471][T25912] Last potentially related work creation:
[  804.668237][T25912]  kasan_save_stack+0x33/0x60
[  804.669673][T25912]  kasan_record_aux_stack+0xa7/0xc0
[  804.671280][T25912]  kvfree_call_rcu+0x86/0x520
[  804.672768][T25912]  drop_sysctl_table+0x355/0x5f0
[  804.674315][T25912]  unregister_sysctl_table+0x41/0x60
[  804.675932][T25912]  inetdev_event+0xeac/0x18a0
[  804.677406][T25912]  notifier_call_chain+0xbc/0x410
[  804.678995][T25912]  call_netdevice_notifiers_info+0xbe/0x140
[  804.680843][T25912]  unregister_netdevice_many_notify+0xf5c/0x25c0
[  804.682805][T25912]  unregister_netdevice_queue+0x305/0x3f0
[  804.684592][T25912]  __tun_detach+0x119c/0x1490
[  804.686174][T25912]  tun_chr_close+0xc2/0x230
[  804.687646][T25912]  __fput+0x402/0xb70
[  804.688916][T25912]  task_work_run+0x150/0x240
[  804.690403][T25912]  exit_to_user_mode_loop+0xec/0x130
[  804.692059][T25912]  __do_fast_syscall_32+0x240/0x300
[  804.693707][T25912]  do_fast_syscall_32+0x32/0x80
[  804.695312][T25912]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  804.697327][T25912] 
[  804.698152][T25912] The buggy address belongs to the object at ffff88804ead3600
[  804.698152][T25912]  which belongs to the cache kmalloc-256 of size 256
[  804.702455][T25912] The buggy address is located 48 bytes inside of
[  804.702455][T25912]  freed 256-byte region [ffff88804ead3600, ffff88804ead3700)
[  804.706742][T25912] 
[  804.707501][T25912] The buggy address belongs to the physical page:
[  804.709530][T25912] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88804ead3600 pfn:0x4ead2
[  804.712625][T25912] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  804.715278][T25912] flags: 0x4fff00000000240(workingset|head|node=1|zone=1|lastcpupid=0x7ff)
[  804.717998][T25912] page_type: f5(slab)
[  804.719266][T25912] raw: 04fff00000000240 ffff88801b442b40 ffffea0001c85e10 ffffea00013e8410
[  804.721945][T25912] raw: ffff88804ead3600 000000000010000b 00000000f5000000 0000000000000000
[  804.724596][T25912] head: 04fff00000000240 ffff88801b442b40 ffffea0001c85e10 ffffea00013e8410
[  804.727341][T25912] head: ffff88804ead3600 000000000010000b 00000000f5000000 0000000000000000
[  804.730750][T25912] head: 04fff00000000001 ffffea00013ab481 00000000ffffffff 00000000ffffffff
[  804.734351][T25912] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  804.737941][T25912] page dumped because: kasan: bad access detected
[  804.740308][T25912] page_owner tracks the page as allocated
[  804.742650][T25912] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5939, tgid 5939 (syz-executor), ts 56012789743, free_ts 54406547014
[  804.751172][T25912]  post_alloc_hook+0x1c0/0x230
[  804.753187][T25912]  get_page_from_freelist+0x10a3/0x3a30
[  804.755218][T25912]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  804.757108][T25912]  alloc_pages_mpol+0x1fb/0x550
[  804.758684][T25912]  new_slab+0x24a/0x360
[  804.760016][T25912]  ___slab_alloc+0xdc4/0x1ae0
[  804.761543][T25912]  __slab_alloc.constprop.0+0x63/0x110
[  804.763245][T25912]  __kmalloc_noprof+0x501/0x880
[  804.764796][T25912]  fib_create_info+0x53f/0x46b0
[  804.766202][T25912]  fib_table_insert+0x177/0x1c40
[  804.767746][T25912]  fib_magic+0x4d4/0x5c0
[  804.769121][T25912]  fib_add_ifaddr+0x4d2/0x580
[  804.770779][T25912]  fib_netdev_event+0x38a/0x710
[  804.772868][T25912]  notifier_call_chain+0xbc/0x410
[  804.774982][T25912]  call_netdevice_notifiers_info+0xbe/0x140
[  804.777414][T25912]  __dev_notify_flags+0x12c/0x2e0
[  804.779524][T25912] page last free pid 5939 tgid 5939 stack trace:
[  804.782156][T25912]  __free_frozen_pages+0x7df/0x1160
[  804.784326][T25912]  qlist_free_all+0x4d/0x120
[  804.786258][T25912]  kasan_quarantine_reduce+0x195/0x1e0
[  804.788615][T25912]  __kasan_slab_alloc+0x69/0x90
[  804.790680][T25912]  __kmalloc_cache_noprof+0x274/0x780
[  804.792944][T25912]  kobject_uevent_env+0x265/0x1870
[  804.795081][T25912]  __kobject_del+0x168/0x1f0
[  804.796718][T25912]  kobject_put+0x327/0x5a0
[  804.798134][T25912]  netdev_queue_update_kobjects+0x4e5/0x720
[  804.800016][T25912]  netif_set_real_num_tx_queues+0x151/0x870
[  804.801877][T25912]  veth_init_queues+0xe1/0x190
[  804.803381][T25912]  veth_newlink+0x4a3/0xa00
[  804.804824][T25912]  rtnl_newlink+0xc45/0x2000
[  804.806718][T25912]  rtnetlink_rcv_msg+0x95e/0xe90
[  804.808808][T25912]  netlink_rcv_skb+0x158/0x420
[  804.810810][T25912]  netlink_unicast+0x5aa/0x870
[  804.812816][T25912] 
[  804.813839][T25912] Memory state around the buggy address:
[  804.816160][T25912]  ffff88804ead3500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  804.819462][T25912]  ffff88804ead3580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  804.822754][T25912] >ffff88804ead3600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  804.826053][T25912]                                      ^
[  804.828259][T25912]  ffff88804ead3680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  804.831168][T25912]  ffff88804ead3700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  804.834472][T25912] ==================================================================
[  804.838147][T25912] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  804.841131][T25912] CPU: 1 UID: 0 PID: 25912 Comm: syz.1.6698 Not tainted syzkaller #0 PREEMPT(full) 
[  804.844978][T25912] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  804.849424][T25912] Call Trace:
[  804.850838][T25912]  <TASK>
[  804.852083][T25912]  dump_stack_lvl+0x3d/0x1f0
[  804.854046][T25912]  vpanic+0x640/0x6f0
[  804.855731][T25912]  panic+0xca/0xd0
[  804.857335][T25912]  ? __pfx_panic+0x10/0x10
[  804.859234][T25912]  ? sysfs_remove_file_ns+0x63/0x70
[  804.861402][T25912]  ? preempt_schedule_common+0x44/0xc0
[  804.863662][T25912]  ? preempt_schedule_thunk+0x16/0x30
[  804.865908][T25912]  ? check_panic_on_warn+0x1f/0xb0
[  804.868070][T25912]  check_panic_on_warn+0xab/0xb0
[  804.869887][T25912]  end_report+0x107/0x170
[  804.871290][T25912]  kasan_report+0xee/0x110
[  804.872767][T25912]  ? sysfs_remove_file_ns+0x63/0x70
[  804.874472][T25912]  sysfs_remove_file_ns+0x63/0x70
[  804.876244][T25912]  driver_remove_file+0x4a/0x60
[  804.878065][T25912]  bus_remove_driver+0x224/0x2c0
[  804.879961][T25912]  driver_unregister+0x76/0xb0
[  804.881714][T25912]  comedi_device_detach_locked+0x12f/0xa50
[  804.883875][T25912]  comedi_device_detach+0x67/0xb0
[  804.886013][T25912]  comedi_device_attach+0x43d/0x900
[  804.888200][T25912]  do_devconfig_ioctl+0x1b1/0x710
[  804.890322][T25912]  ? __mutex_lock+0x1c5/0x1060
[  804.892339][T25912]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  804.894674][T25912]  comedi_unlocked_ioctl+0x165d/0x2f00
[  804.896979][T25912]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  804.899446][T25912]  ? kasan_quarantine_put+0x10a/0x240
[  804.901708][T25912]  ? lockdep_hardirqs_on+0x7c/0x110
[  804.903876][T25912]  ? find_held_lock+0x2b/0x80
[  804.905891][T25912]  ? tomoyo_path_number_perm+0x295/0x580
[  804.908247][T25912]  ? tomoyo_path_number_perm+0x18d/0x580
[  804.910604][T25912]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  804.913008][T25912]  comedi_compat_ioctl+0x1d0/0x990
[  804.915035][T25912]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  804.917250][T25912]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  804.919616][T25912]  ? do_vfs_ioctl+0x128/0x14f0
[  804.921533][T25912]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  804.923536][T25912]  ? find_held_lock+0x2b/0x80
[  804.925411][T25912]  ? hook_file_ioctl_common+0x145/0x410
[  804.927585][T25912]  ? __fget_files+0x20e/0x3c0
[  804.929454][T25912]  ? __ia32_compat_sys_openat+0xa0/0x210
[  804.931654][T25912]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  804.933866][T25912]  __ia32_compat_sys_ioctl+0x242/0x370
[  804.936002][T25912]  __do_fast_syscall_32+0x7c/0x300
[  804.938055][T25912]  do_fast_syscall_32+0x32/0x80
[  804.939971][T25912]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  804.942458][T25912] RIP: 0023:0xf7fa1579
[  804.944077][T25912] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  804.951493][T25912] RSP: 002b:00000000f545455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  804.954274][T25912] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000040946400
[  804.956761][T25912] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  804.959272][T25912] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  804.961755][T25912] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  804.964218][T25912] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  804.966721][T25912]  </TASK>
[  804.968503][T25912] Kernel Offset: disabled
[  804.970197][T25912] Rebooting in 86400 seconds..

VM DIAGNOSIS:
07:27:25  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=1ffff9200072af64 RCX=ffffffff89241368 RDX=ffff888022e1a480
RSI=ffffffff8924d0c6 RDI=ffffffff8dcccee0 RBP=ffffc90003957c68 RSP=ffffc90003957b08
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=000000000007fffc
R12=0000000000000000 R13=0000000080000002 R14=ffffc90003957d48 R15=00000000800afba0
RIP=ffffffff81bc6a10 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097812000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080fac000 CR3=000000006b85e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff852669a5 RDI=ffffffff9adc0d60 RBP=ffffffff9adc0d20 RSP=ffffc90003507168
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000008afc
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9adc0d20 R15=ffffffff85266940
RIP=ffffffff852669cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097912000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f735fbb4 CR3=000000006b85e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=fffffbfff35f8050 RBX=fffffbfff35f8051 RCX=ffffffff8b56584e RDX=fffffbfff35f8051
RSI=0000000000000004 RDI=ffffffff9afc0280 RBP=fffffbfff35f8050 RSP=ffffc90003f8ed48
R8 =0000000000000001 R9 =fffffbfff35f8050 R10=ffffffff9afc0283 R11=0000000000000001
R12=000000002ec20000 R13=ffffc90003f8eea8 R14=000000002ea81000 R15=0000000000000002
RIP=ffffffff8223fa5c RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097a12000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002fbfcff8 CR3=000000007900e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff8b5b5bf9 RDX=ffff8880229dc900
RSI=0000000000000000 RDI=0000000000000001 RBP=ffffc900039ef690 RSP=ffffc900039ef670
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=1ffff9200073dece R13=ffff88807ffd6400 R14=ffffc900039ef7b8 R15=00000000000c0001
RIP=ffffffff8b5b5b1b RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f1159780300 ffffffff 00c00000
GS =0000 ffff888097b12000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000056010e569f40 CR3=000000004b96c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e236667e630c9f81 35c5021f80d42d3e
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 98cf5a3ece150331 6e43e2efec2ba4c7
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e98126461e297da1 5b28e3b2d7a4d940
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d83d863a062c7660 2d479469f6d9ff2e
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000e40
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3211497a34800102 000001e83491b50e
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0080010000800100 0080010034b4e06a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001e800800100 321eb95e000001e8
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00800100000001e8 000001e800800100
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5876723374fff38f f4307dc2b3d73d4e
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 acaef91df3f72230 8c27b76c065f3798
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=3c6c0d34b9ef808b aa804764c0cde4e9 3c6c0d34b9ef808b aa804764c0cde4e9 3c6c0d34b9ef808b aa804764c0cde4e9 3c6c0d34b9ef808b aa804764c0cde4e9
ZMM18=477e852ee0d4c6df d6e952b6a0b98743 477e852ee0d4c6df d6e952b6a0b98743 477e852ee0d4c6df d6e952b6a0b98743 477e852ee0d4c6df d6e952b6a0b98743
ZMM19=7f34000000000000 0000000000000004 7f34000000000000 0000000000000003 7f34000000000000 0000000000000002 7f34000000000000 0000000000000001
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8403080400018003 000204a580080001 000000080606013b a40180100020035c
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1000100302100000 030c800800060800 220800060071a206 0000005600000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001a32 0000001000000000 0000000000000000 0000000000000015
ZMM24=b5c7bf85b5c7bf85 b5c7bf85b5c7bf85 b5c7bf85b5c7bf85 b5c7bf85b5c7bf85 b5c7bf85b5c7bf85 b5c7bf85b5c7bf85 b5c7bf85b5c7bf85 b5c7bf85b5c7bf85
ZMM25=ed85d71fed85d71f ed85d71fed85d71f ed85d71fed85d71f ed85d71fed85d71f ed85d71fed85d71f ed85d71fed85d71f ed85d71fed85d71f ed85d71fed85d71f
ZMM26=cba4c7a3cba4c7a3 cba4c7a3cba4c7a3 cba4c7a3cba4c7a3 cba4c7a3cba4c7a3 cba4c7a3cba4c7a3 cba4c7a3cba4c7a3 cba4c7a3cba4c7a3 cba4c7a3cba4c7a3
ZMM27=e5e5aae0e5e5aae0 e5e5aae0e5e5aae0 e5e5aae0e5e5aae0 e5e5aae0e5e5aae0 e5e5aae0e5e5aae0 e5e5aae0e5e5aae0 e5e5aae0e5e5aae0 e5e5aae0e5e5aae0
ZMM28=000000e0000000df 000000de000000dd 000000dc000000db 000000da000000d9 000000d8000000d7 000000d6000000d5 000000d4000000d3 000000d2000000d1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=4360000043600000 4360000043600000 4360000043600000 4360000043600000 4360000043600000 4360000043600000 4360000043600000 4360000043600000