last executing test programs:

5.917656592s ago: executing program 2 (id=3786):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004)
ioctl$CDROM_DISC_STATUS(0xffffffffffffffff, 0x5327)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="61128c000000000061134c0000000000bf203fffffff0000070000000f0000003d030100000000009500ffb1000000006926000000000000bf6700000000000036000b000fff52004507faff15300000d60600000ee60000bf050000000000003d63000000000000650700000200000007070000fbffffff1f75000000000000bf54000000000000070000000410f900bd430100000000009500000000000000050000000000000095000000000000001c15a3ce747c693a74b62fd0758b15f09429c09074bc4b2bd2dc480dd7a064b8673e2060162cc43bcba1060999eef9d60bb39d0af449deaa27ea949e8f9000d885deea2783835e29eba8546fc020c1966f8b5f32b095f566edf66b7751828da9dbd5b996b9e8d897e461c01c697671d100000000400036c17fb01dde179c1f26cac1c7b21bde7d1a55d6ebe700b3be005e47ef55e0dd81244b18590e000000000000356d82e43407a6d7fa94b21002f06cd247b126b6349ab62d7b07ba0a71a72145edade9941f49f300a8c8913e0e4ea9e4c77740ab3312edee62a4dc2fc85755d387d8a1bc8eb71fbe11b2216cc8d1f0160c237d929b49d828724b95555b459f4763c6222175c974be2f76fb5f330b015a68587a75c013000000000000000000000003000000000000d6ddc46e58eff8f4fbadfc6a3af8123b7f4240713a4c0cdc9d7820c4eb67cc0f8b5fe9258eeacb5776aebbab3d5c55020000006082778366dadfc36029633e0514cbcee1f3928970bde148c940434f33acd377cbad17673b2d30b6339255c98eba97efb4e9ac1f11be815dd6045592edcbee7f253ec74c7c1313505bd7ff8fd58b3a6569c91dbdef1df585aeaea7346a2a65caee5c85f9eddeeeee3c8a2e523c864ac430eb47cb4d0c8767b9d4125661b5a1a170c04b64da3a99ddb93bf14fae3ca2d1e882375b8dbac83978e136c34f90b33cc0eeb57debcfe26589efc08125d5d62a7e593c9738a50171adf051ea4f07e7e7e770c2016eeacbe8511afffffbea75759a1ea5404f5453c0b5c46c9700808c096cf8cf5223f341cbea3841b5cd224c1b381d56afebe9f99a00e3cd94dc0bb7af9e8709db487cc4d9b3b96723d69d512ddd57b0dee9b9f6ae80a502cce352098603e77f9ecced07fa25e99e9e415414c91f8bfd1c150570512f26c4ee34a64c131dce3800000000000000006c86287945bd8d258442870e000000000000000000000000f7e6a10de4bf7369b0d5b5373829b09bf5b7b34099b27ac7770fca449d4c4ca15f88b588b2429af2e1d1a4e1fa44cb80fcfae6e50d7e5b4675d7e0be706224f34e6eed553b40e2b897e73752fc7d1e4b0f4c5967eefd7448d5fde5841fa464a67267c631052bd7333769a4b8d19d4794357edce762e8136ab9d7ed34a72baffd849b90579b96b3"], &(0x7f0000000100)='GPL\x00'}, 0x48)

5.006199404s ago: executing program 2 (id=3794):
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x89e, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xffffffff}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x54}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x8, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x18, &(0x7f00000006c0)=ANY=[@ANYBLOB="18240000", @ANYRES32=r1, @ANYBLOB="00000000040000001a77100008000000b7080000000000007b8af8ff00000000b70800000c0000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000", @ANYRES32=r1, @ANYBLOB="6383c68100000000dc3e10c5c71a463fb200000000b705000008000024ae362dd3bb1deafc6fd33c7b", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000007f7c0038c6070000185300000800"/56], &(0x7f0000000280)='syzkaller\x00', 0x8, 0x3d, &(0x7f0000000440)=""/61, 0x41000, 0x28, '\x00', 0x0, 0x25, r1, 0x8, &(0x7f0000000480)={0x3, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x3, 0xe, 0x4}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000500)=[{0x0, 0x3, 0xb, 0x2}], 0x10, 0x8001}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmmsg$inet(r7, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
socket$nl_route(0x10, 0x3, 0x0)
close(r8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
mount(0x0, &(0x7f0000000340)='./cgroup\x00', &(0x7f0000000300)='nilfs2\x00', 0x1a0c000, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r1, &(0x7f0000000300)="ca0e808bb35bdabb", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r9, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x3c)
mmap$xdp(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1f, 0x12, r0, 0x100000000)

4.326495585s ago: executing program 0 (id=3802):
kexec_load(0x0, 0x0, 0x0, 0x3e0000)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000000)={0x3, {{0xa, 0x4e22, 0x1, @rand_addr=' \x01\x00', 0xf1d7}}}, 0x84)
setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000240)={0xa, 0x4e23, 0xa4e4, @remote, 0x3}, 0x1c)
sendmmsg(r1, &(0x7f0000001000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4010)

3.768093795s ago: executing program 2 (id=3805):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x65)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xb}, 0x20)
syz_emit_ethernet(0x8e, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa1acd1f78800d86dd608a37f200587300fe8000000000000000000000000000bbfe8000000000f40000000000000000aa00000000", @ANYRES8], 0x0)

3.767017332s ago: executing program 2 (id=3806):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0xc14, 0x65, 0x200, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0xd}, {0x0, 0xfff3}, {0x0, 0xb}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x8, 0x81}}, @filter_kind_options=@f_u32={{0x8}, {0xbd0, 0x2, [@TCA_U32_LINK={0x8, 0x3, 0x5}, @TCA_U32_DIVISOR={0x8, 0x4, 0xf0}, @TCA_U32_POLICE={0x408, 0x6, [@TCA_POLICE_RATE={0x404, 0x2, [0x9b8, 0x6, 0x82, 0xac, 0x401, 0xffffffff, 0x800, 0x9, 0x9, 0x2, 0x18, 0x6, 0xd5, 0x6, 0x0, 0xffffffff, 0xfffffeff, 0x3, 0x8001, 0x16, 0xec8c, 0x800, 0xb7, 0x2, 0xcf7, 0x2, 0xf, 0x1, 0x3ff, 0x8, 0x5, 0xdeb, 0x6e6, 0x0, 0x6, 0x0, 0x2, 0x8746, 0x2, 0x9, 0x5, 0x3, 0x7, 0x6, 0x6, 0x7, 0x4, 0x81, 0x5b, 0x6, 0x0, 0x16, 0x2, 0x1, 0xc49b, 0x9, 0x9, 0xffffff7f, 0x8, 0x401, 0x9, 0x9, 0x401, 0x8, 0x7ff, 0xfe11, 0xb, 0x2, 0xd, 0x8, 0x100, 0x7, 0x0, 0x7be2, 0x4, 0x4, 0xf, 0x101, 0x7, 0x2, 0x324, 0x7, 0xddc4, 0x6, 0x7, 0x99c9, 0x42ecd744, 0x3, 0x0, 0x3, 0x3, 0x0, 0x101, 0x6f74, 0x0, 0x7, 0xfffffff1, 0x6, 0x5, 0xffff, 0x8, 0x6, 0x8, 0x3, 0x0, 0x95, 0x6, 0x3ff, 0x5, 0x6, 0x1, 0x7, 0x0, 0x85ce, 0x7, 0x8, 0x8, 0x7, 0x1, 0x1, 0x8a7, 0x7, 0x7, 0xd73, 0x0, 0x6, 0x4, 0x400, 0x3, 0xb9, 0x7, 0xffffff14, 0x101, 0xa, 0x6, 0xea50, 0x5, 0x800, 0x9, 0x7f, 0x3765, 0x1, 0x40, 0x8, 0x5, 0x0, 0x5, 0x800, 0xfffffff9, 0x80, 0x4, 0x3, 0x400, 0x44, 0x9, 0x6, 0x5, 0xfff, 0x8, 0xfffffffb, 0x7ff, 0xbf0, 0x6, 0x9, 0x7fffffff, 0x40, 0x573b, 0x3, 0x7fffffff, 0xffffffff, 0xfffffffc, 0x5, 0x4, 0x6, 0x1, 0x80000001, 0x9, 0x4, 0x7ff, 0xa, 0x7f, 0x6, 0x80000001, 0x9, 0x7fff, 0x4, 0x3154, 0x3, 0xffffffff, 0x4, 0x5, 0x5, 0xf174, 0x7f, 0x6, 0x5, 0x6, 0x8001, 0x9, 0xd, 0xff, 0x7, 0x200002, 0xfd, 0x3ff, 0xa74, 0x6, 0x8, 0xfffffff7, 0x9, 0x1, 0x6, 0x6163, 0xa, 0x600, 0xf, 0x2, 0xf, 0x7, 0xfffffff4, 0x6, 0x8011, 0x7, 0x2, 0xe3d, 0x400, 0x7, 0x3, 0x9aec, 0x0, 0x3, 0x40000000, 0x7, 0x2, 0x5, 0x8, 0x0, 0x0, 0x2, 0x4, 0xd6, 0x1, 0x9, 0x5, 0x9, 0x4, 0x2e9, 0x3b74, 0x4, 0x0, 0xa0, 0xf, 0x7, 0xb, 0x5, 0x2]}]}, @TCA_U32_DIVISOR={0x8, 0x4, 0x41}, @TCA_U32_SEL={0x794, 0x5, {0xb, 0x80, 0xf5, 0x4745, 0x80, 0x401, 0x2, 0x4, [{0x15, 0x51e26aaa, 0x3, 0x4}, {0x6, 0xc, 0x2}, {0x5, 0x7, 0x0, 0x9}, {0x2, 0x40, 0x6, 0x70}, {0x0, 0x2, 0xfe, 0x1000}, {0x0, 0xfffff000, 0x4, 0x2}, {0xc, 0x7fffffff, 0x7fffffff, 0x2}, {0x8, 0x80000000, 0xffff, 0x9}, {0x9d3, 0x9, 0x7f, 0x1}, {0x6, 0x8, 0x3726, 0x2}, {0x7, 0x1000, 0x1, 0x7fff800}, {0xff, 0x7, 0x92a, 0x9}, {0x10000, 0xc0d, 0x6}, {0x336b998d, 0x4, 0x1, 0x20f1}, {0x9, 0xffffff7e, 0x5, 0xfff}, {0x5, 0xb, 0x1de, 0x1}, {0x3c8, 0x7, 0x7fff, 0xe}, {0x10001, 0x2, 0x2, 0xd8}, {0x800, 0x1, 0x0, 0x72bc4679}, {0x9, 0x6, 0x6, 0x4}, {0x5, 0x761, 0x1, 0x10000}, {0xff, 0x9, 0x0, 0x3}, {0x4, 0x2, 0x6, 0x6}, {0x9, 0x4, 0x6, 0x3}, {0x8, 0x6, 0x1000, 0xf3e}, {0x4, 0x4, 0x200, 0xb}, {0x0, 0x0, 0x1, 0x7}, {0x5a9c, 0x6, 0x10, 0x4}, {0x7, 0x10001, 0x6, 0x3}, {0xc000000, 0x4, 0x3ff, 0x8001}, {0x7, 0x8, 0x7fffffff, 0xd539}, {0x2, 0xd59, 0x0, 0x1ff}, {0xffffff7f, 0x7, 0x8, 0x7}, {0x4b5, 0xd, 0x8, 0xf}, {0x8, 0x101, 0xffff, 0xfffffffc}, {0x5, 0x2, 0x7, 0x2}, {0x7ff, 0x7, 0xffffff81, 0x92}, {0x8001, 0x7, 0x8, 0x1}, {0xb, 0x3, 0x6, 0x7}, {0x2ca, 0x81, 0x37749c31, 0xffffffff}, {0x30, 0x3, 0x3a0, 0x4}, {0x9, 0x6, 0x0, 0x3}, {0x6, 0x9, 0x1, 0x5}, {0x0, 0x8001, 0x99a}, {0x7, 0x0, 0x1fca, 0x1}, {0x9, 0x4, 0x0, 0x6}, {0x6, 0x9, 0x544, 0x9}, {0x401, 0xd23, 0x0, 0x80df}, {0xffffffff, 0x1, 0x7, 0x6}, {0x5, 0xb3ad992a, 0x7, 0x8}, {0x961c, 0x0, 0xe1f, 0x9}, {0x5, 0xfffffffd, 0x1, 0x29}, {0x7, 0x5025, 0x2, 0x9}, {0x0, 0x800, 0x5, 0x4}, {0xfffffffc, 0x8, 0x8, 0x9}, {0x7ff, 0x400, 0x10000, 0x3ac}, {0x8, 0x8, 0x9, 0x9}, {0xd7fa, 0x3, 0x1}, {0x81, 0xec, 0x6, 0x3ff}, {0x5, 0x3, 0x5, 0x6}, {0x9, 0x0, 0x5, 0x8}, {0x4, 0x39, 0x8, 0xcf82}, {0x56, 0x101, 0xfffffffe, 0x6}, {0xce, 0x40, 0x5, 0x3}, {0x6, 0x3, 0xae6, 0x7}, {0x20000000, 0x5, 0x7f, 0x6}, {0x6, 0x10000, 0x3, 0x1}, {0x6, 0x2, 0xffffffff, 0x80000000}, {0xffff, 0xe91, 0x1}, {0x9, 0x6, 0x2, 0x9}, {0x0, 0x2, 0xd, 0xfffffffa}, {0x9ea, 0x4c4, 0x4d, 0x77}, {0x9, 0x197, 0x0, 0x7}, {0x1000, 0x8, 0x1, 0xe7e}, {0x8, 0x44c3, 0x1, 0x81}, {0xa5, 0x5, 0x81, 0x5}, {0x7, 0x7, 0x7, 0x9ac5}, {0xb0b8, 0x7f, 0x4, 0x7ff}, {0x400, 0x3, 0x7fffffff, 0x10}, {0x8, 0x200, 0x5, 0x8000}, {0x40, 0x200, 0x8001, 0x1}, {0x8, 0x8001, 0x1, 0x401}, {0x800, 0x6, 0x80000000, 0xa}, {0x4, 0x10, 0x64bc, 0xd}, {0x2, 0xfffffff6, 0x3ff, 0x1}, {0xe6, 0x401, 0x1, 0x6}, {0x1d, 0x3, 0x1, 0x47}, {0x6fe000, 0x3, 0x81, 0x9}, {0x5, 0x0, 0x9, 0x90c8}, {0xfffffff7, 0xffffffff, 0x2, 0x200}, {0x2, 0x7, 0xfffffff9, 0x9}, {0x4, 0x2, 0x6, 0x401}, {0x190c, 0x7, 0x6, 0x4}, {0xffff8000, 0x107, 0x98b0, 0x8}, {0x0, 0x8, 0x50, 0x5}, {0x80000001, 0x2, 0x9, 0xe9180000}, {0x2, 0x6, 0xeee5}, {0x2, 0x7fffffff, 0x5, 0x80}, {0x4, 0x8, 0x6, 0x80}, {0x8, 0x6, 0xb1f, 0x4}, {0xeaf6, 0x1, 0x619, 0x5}, {0x97, 0xc, 0x0, 0x805}, {0x1, 0x0, 0x9, 0xbaab4e5}, {0x6, 0x0, 0x8, 0x9}, {0x5, 0x75ffa9ed, 0x8, 0x7}, {0x1, 0x2, 0x5, 0x6}, {0x9, 0x8, 0x2, 0x8}, {0x344, 0x69, 0xd, 0x78c57e6}, {0xf, 0x5, 0x3, 0x6}, {0x7, 0x7f, 0x175cdb81, 0x4}, {0x1, 0x6, 0x34000, 0x7}, {0x7, 0x3, 0xfcc1, 0x8}, {0x8, 0xc, 0x3, 0x7f}, {0x3ff, 0x7, 0xffff, 0x7fffffff}, {0xc, 0x5, 0x800, 0x7d80}, {0xecfb, 0x3, 0x6, 0x8}, {0x80000001, 0x400, 0xfffff801, 0x64a}, {0x4, 0x800, 0x570, 0x41479a37}, {0x200, 0x9, 0xe00000, 0xc}, {0x4, 0x20, 0xefd, 0x3}]}}, @TCA_U32_LINK={0x8, 0x3, 0x1dcfacbc}, @TCA_U32_DIVISOR={0x8, 0x4, 0xf3}, @TCA_U32_CLASSID={0x8, 0x1, {0x5, 0x3}}]}}]}, 0xc14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4b, 0x9, 0x8, 0x0, 0x400003}, 0x0)
getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, &(0x7f0000001040)=0x5d)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001400)=@newtaction={0x48, 0x30, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [{0x34, 0x1, [@m_pedit={0x30, 0x1, 0x0, 0x0, {{0xa}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4081}, 0x2400c800)
write$6lowpan_control(r3, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
r5 = inotify_init1(0x80800)
inotify_add_watch(r5, &(0x7f0000000180)='./control\x00', 0x64000ba6)
inotify_add_watch(r5, 0x0, 0xa4000960)
ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x40000, 0x19)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={0x0, 0x6}, 0x8)
sched_setattr(r2, &(0x7f00000001c0)={0x38, 0x3, 0xc, 0x105, 0x6, 0x7, 0x6b4, 0x510000000, 0x6, 0x40}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x4000010)
write$6lowpan_control(r3, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket(0x10, 0x803, 0x0)
sendto(r7, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)

3.405166543s ago: executing program 0 (id=3807):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setrlimit(0x8, 0x0)
r3 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="ae", 0x1, 0xffffffffffffffff)
keyctl$read(0x2, r3, &(0x7f00000003c0)=""/4096, 0x1000)
vmsplice(r2, 0x0, 0x0, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f0000001640), 0x0, &(0x7f00000013c0)=ANY=[@ANYRES16, @ANYBLOB, @ANYRESOCT=r4])
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
removexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=@known='trusted.overlay.impure\x00')
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r5, &(0x7f0000000480)={0x2, 0x4e22, @empty}, 0x10)
sendto$inet(r5, &(0x7f00000004c0)="ab", 0xff04, 0xc0, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)
r6 = syz_open_dev$vbi(&(0x7f0000002100), 0x1, 0x2)
ioctl$VIDIOC_S_FMT(r6, 0xc0d05605, &(0x7f0000000280)={0x7, @pix_mp={0x1, 0x1, 0x32315241, 0x5, 0x2, [{0x6, 0x7}, {0x8, 0x7f}, {0x3ff, 0xc}, {0x8, 0x2}, {0x80000000, 0x9}, {0x3, 0xf}, {0x8, 0x3}, {0xe7b, 0x2}], 0x3, 0x0, 0x8, 0x0, 0x3}})
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

2.443441788s ago: executing program 0 (id=3810):
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="2800000010005fba00"/20, @ANYRES32=0x0, @ANYBLOB="80000200e180000008001b000000000087637539412b7bb03f00a8370ff1e83951192d4d11de52d5a07c31c6297ca5b9f62d004a2bf91998510e99d516d1306ea3cb23c5a8dd0adf52b8b15cfe68f4bfc86b715b"], 0x28}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x8000, 0x8, 0x2, 0x4, {{0x7, 0x4, 0x2, 0x7, 0x1c, 0x68, 0x0, 0x6f, 0x2f, 0x0, @private=0xa010102, @multicast1, {[@ra={0x94, 0x4, 0x1}, @end]}}}}})
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan1\x00'})
syz_open_procfs$userns(0x0, &(0x7f0000000340))
sendmsg$nl_route(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x8002}, 0x24040000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000001800dd8d00000000000000000200000000000005000000000600150001000000280016802400010000000000000000000004010020000000000000000000000000000000000001"], 0x4c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x10, 0x2, 0x10)
r2 = socket$inet(0x2, 0x4, 0xe052)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000001000/0x4000)=nil)
socket$caif_stream(0x25, 0x1, 0x1)
setsockopt$CAIFSO_REQ_PARAM(r2, 0x116, 0x80, &(0x7f0000000500)="9f68accc98e1", 0x6)
mq_open(&(0x7f0000000480)='.\\\x00\xd5\xf6\t\xcf\xc4Q\xdfx\x8e2\xd4\xe9\xb5\xf5w\x9bP\xbf\xe7\x87\xf0\xe5.\xe7\xa0\x8e\xcd\xe1\x8a3\xbbh5SA,\xd3\xec\",p\x81W\xa8\x83\xec\n\xce\x1c@\xa3!\x03\xbe\x00\x00>\x92\xa7\xe9\xb2\x9c\xee\x9b\xb8+\xd88\xddw\x97\'\xc5\xads`^\xb7I\\\xcf\xe5\x98\xe4gY\xa9\xf1\x9f\xfe\xe2\x9a~\xd9\xa1\xe4P*U\x91\x1f\'\xa9OE\xb4F\xdfd\xac\\S\xb2\xc0\xc1\xc9M\xfc\x8c\x1d,\xdc\x03\x1d\xdb\xa2N\xd8\xd7\xed\x8b\\T\xe2\x87]\xcfp\x8d}\x17\xe4?\x96H\x8c\x0fA\xfc]?\xa0I\x82\x02\xe7\xaeG\xc2_j\fSy\xb41M}\xd9\xd6\xd4\xd8\x84l3#z\xb7', 0x40, 0x20, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.net/syz0\x00', 0x200002, 0x0)
fchdir(0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file1\x00', 0x12b)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000003c0)='./file1\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$peekuser(0x3, r3, 0x128)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYRES16=r3], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000540)='afs_get_tree\x00', r4}, 0x10)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="647965e000"])

2.367977238s ago: executing program 1 (id=3812):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
epoll_create(0xc)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x0, 0x40, 0xfffffffffffffffe, 0x0, 0x9}, &(0x7f00000000c0)={0x1f, 0x0, 0x8, 0x5, 0xfffffffffffffff8, 0x8, 0x4000000000}, 0x0, 0x0, 0x0)

2.304168936s ago: executing program 1 (id=3813):
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x89e, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xffffffff}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x54}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x8, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x18, &(0x7f00000006c0)=ANY=[@ANYBLOB="18240000", @ANYRES32=r1, @ANYBLOB="00000000040000001a77100008000000b7080000000000007b8af8ff00000000b70800000c0000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000", @ANYRES32=r1, @ANYBLOB="6383c68100000000dc3e10c5c71a463fb200000000b705000008000024ae362dd3bb1deafc6fd33c7b", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000007f7c0038c6070000185300000800"/56], &(0x7f0000000280)='syzkaller\x00', 0x8, 0x3d, &(0x7f0000000440)=""/61, 0x41000, 0x28, '\x00', 0x0, 0x25, r1, 0x8, &(0x7f0000000480)={0x3, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x3, 0xe, 0x4}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000500)=[{0x0, 0x3, 0xb, 0x2}], 0x10, 0x8001}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmmsg$inet(r7, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
socket$nl_route(0x10, 0x3, 0x0)
close(r8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
mount(0x0, &(0x7f0000000340)='./cgroup\x00', &(0x7f0000000300)='nilfs2\x00', 0x1a0c000, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r1, &(0x7f0000000300)="ca0e808bb35bdabb", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r9, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x3c)
mmap$xdp(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1f, 0x12, r0, 0x100000000)

2.153966635s ago: executing program 0 (id=3815):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
semget(0x0, 0x2, 0x2c0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r2 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4e20, 0xffffffff, @empty, 0x5}, 0x1c)
syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
recvfrom$inet(0xffffffffffffffff, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x3e8, 0x0, 0xfffffffffffffd25)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x1d, @multicast1, 0x4e22, 0x0, 'wrr\x00', 0x18, 0x5, 0x1a}, 0x2c)
chdir(&(0x7f0000000140)='./bus\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.freeze\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000280), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r4, 0x0)
ioctl$VIDIOC_ENUMAUDOUT(0xffffffffffffffff, 0xc0345642, &(0x7f0000000040)={0x4e39, "96e6360000000000000000001b79162b0000008d00", 0x2})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000b00)=ANY=[@ANYBLOB="0b0000000a00000000000000ff02000000000000000000000000000104000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000a0000000000000000000000000000000000ffffe000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a80000000000000fe8000000000000000000000000000bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000199000000000000000000000000000000000001800"/396], 0x190)

2.129802207s ago: executing program 3 (id=3816):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, &(0x7f0000000240)={0x1, 'veth0_to_team\x00'}, 0x18)
syz_emit_ethernet(0xbe, &(0x7f0000000300)={@broadcast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x24, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @local, @dev, {[@cipso={0x86, 0x6e, 0x0, [{0x5, 0xc, "e256b28c59881681fb52"}, {0x5, 0x9, "789607671442eb"}, {0x0, 0xe, "7434954373561de584b703c8"}, {0x0, 0x9, "e706d30bd224f8"}, {0x0, 0x7, "cfa11cab1a"}, {0x0, 0x10, "c600"/14}, {0x0, 0xa, "5c80a5e97612fe86"}, {0x0, 0x12, "73bc2300ad9d19a3000f000000000000"}, {0x0, 0x9, "c8f46976e79e56"}]}, @lsrr={0x83, 0xf, 0x54, [@empty, @multicast2, @private=0xa010102]}]}}}}}}}, 0x0)

2.127854407s ago: executing program 3 (id=3818):
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xd, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x4d, 0x11e41e7a, 0x20000000, 0x2000000, 0xd}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x48, 0x16, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x44)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xff, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000440)=0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket(0x10, 0x3, 0x0)
fsopen(&(0x7f00000000c0)='omfs\x00', 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000002480)={0x2020}, 0x2020)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

2.034556307s ago: executing program 0 (id=3819):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x0, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/164, 0x0, 0xf000})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
r3 = dup(r1)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r3})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="043e"], 0xec)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000006c0)=[<r4=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f0000000040)={r4, <r5=>0x0, <r6=>0x0, 0x0, 0x0, 0xfffffffffffffe14, 0x0})
ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f0000000200)={r4, r5, r6, 0x0, 0x80000001, 0x5, 0x0, 0x0, 0x3, 0x1000, 0x200400})

1.980809585s ago: executing program 0 (id=3820):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="189edd5d6feb6e7fdd00"/21], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
r2 = fcntl$dupfd(r1, 0x406, r1)
ioctl$TCFLSH(r2, 0x400455c8, 0x1)
ioctl$KDSIGACCEPT(r2, 0x400455cb, 0x32)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000440), 0x10)
listen(r3, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
writev(r4, &(0x7f0000000080)=[{&(0x7f00000001c0)='?,', 0x2}], 0x1)
r5 = accept4$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000000040)=""/40, 0x28}, {&(0x7f0000003300)=""/107, 0x6b}], 0x3}}], 0x4000000000000a1, 0x2, 0x0)
recvmsg(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x4c2103a0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x9000}, 0x41)
sendmsg$NFT_BATCH(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a40)=ANY=[@ANYBLOB="140000001000010000000000000000000a9c000a50000000060a0b040000001a4f667b000200000024000480100001800a0001007265646972000000100001800800010064757000040002800900010073797a30000000800000020073797a3200000000140000001100010000000000000000000100000a019db27877d7fb004741a57a9e1a71a92f7190f92da7a0c98481704f055084244ee769f1765b9068"], 0x78}}, 0x0)
writev(r6, &(0x7f0000000940)=[{&(0x7f0000000080)}, {&(0x7f0000000b00)="f8269b4ebee688d59e4daadcd062b3b13ce3f4460ecfc282cad4cfc327a5a1235d81722d7bfcd59ccb9ff970ebc7821335ec7c97a9295b85219b2ee7c70dd7ba3a0bdfed633e0987052f7e9637a46600e47df2bc43d63f30659ff1d41a617f9b9f68a1fea8e41b922b913901e6fd9b8b7322b7d045f9098ba0f14ad61b0effa081cc0728fbd4551c8f5f71", 0x8b}, {&(0x7f0000000440)="f14e5d2256b1c42c14c97f098d277be04e9b15d437a7cc0462f4a3f3d4b08159758744f97befc0739e77bc931405b45e30344fe7d40abecb83371da450268c65249d75119430e3e1cadf56bd6a6e37eaebe4f17dc72b01601e57f29ff79c6983b4dc71164a42b40b1ece9702038a3ce922ebb9381fbc2542d00205e8320e98abb62791c54d77758034e0f67aa901879002d18f7ad30bdf72487e3adc445e7a7ddcf13e3acd888ded82753ca4eb76eb6004cfffd54b1b3f2b082b1a6b722817f9faa2b41fa1df234c46528bbc9e397bd785", 0xd1}, {&(0x7f0000000180)="70b9df50cc32c09df0dbcac21a1bb1a1607889920e29b671f0dfcae5c9204c8d8c74aeec5e85b13705cf56bb1f26980cc15cbc4e9efcaf522e592fca7e207dff6789b11e1ff3c1087f0d4a3e6fe4c9811e5f899cc39a605dce63dfdee43158b03dd33aa8a8f5b5", 0x67}, {&(0x7f0000000540)="b53fcb25a62512ebde36a152b0709340fd86daec2e0220d53d0886732cdebab46f817b29e08065fb2abb390be4104874a4a31962eee5d71a1980e9e6a3b6c5d9823ed496651bcdcc9f34ce9ba500e4a7ee41b3bf3447974caf2a6d76de0d3108a5492aa5c794cc21971585d66650acf43cdf9a5951401d0d51fdf8387b67a6e84e7ba77fe68ba22744392234665cda7c90c784f3c94f6d5fc6ab21e4a035986e9c2e88c153d8ae7e89a2d39706906118806be6789c23cedc755e2fdac8afe1dba64df9ff0dc825369d09727f21e01ecddd2e76593277fa259bc6d5a32b2ee866fd95", 0xe2}, {&(0x7f0000000640)="6fbbab5ff04f8492b3dc996ecada0e4d6a80c744a52fef2b9a5fb4617a695753108083cd443349e7ff2766f1b4e04cf2ad4d0dc0345331b12156d511efd5380e84b4e50252d1067dba063595bd1d90fd182832008db0dcffb8c0c9ce1a2b5e5c6ad5988db7f7a57ab8bc7a37b273237e3a268b98236cec3ff527710c12df28d1c9787b2e790ac333497b69f268e8f9f48ebfce81b56c78765dec1678f1bb", 0x9e}, {&(0x7f0000000700)="82d2196fcb8f3a7ff1e3d1706660b80548c869143b271c996a722746ef15b816c7e2e0fb8b185f493720ff9e00183c26e38ef1d1210d744beedc955c5d24b269ab5bcaf7d46b7eb426cd3bab1cf9d558e36461a6358ceb930836c6d8d02a78d3571d71e119605fc968633d8305afca0e289bfb2c231022838ea75c89e58bb0aee30a5952cee5601c7a299a2b9bb6e5e0852e6f2bc9e581eccf7d2210", 0x9c}, {&(0x7f0000000380)="b40a0a5b5e300283e07a85a090105237750e4f0422450200000000000000e6121c78b2cec328103acd1c9fa8b24b830e9a4b104036adacf657383f64fa7c050c2118292c87317c9d729e84d1c59b71b903d81949902604c13a761c5cd33524f7e6fe9dacbc669df6615ff5bfafab288b977d45", 0x73}, {&(0x7f00000007c0)="6dba0e9c888aea89bbc15088bed291b99254aaf248b69b5202566f4600597421a607cc7c85d2e8fd38b0e127014058b4da06235c5063760d4d716a269051dd692943c7ac08487ba376a8875e203f2bbb2fb6ae64cf77fd59c33050d2259c7448e32b02847780289e83db9ce8c61098fe4acb997ae6321dc993c6b996f8380492c6455888788cb13dcec429a0849b0e13420182af7e8a5969882c979542f72176942aa87e0b162338e2abebc59fb9acab98690def53d9a5d031015b306b46781b6bf2aec1f2206e5653a7d845eb96361a4e13ef5193e3bc57feb353ab99827d1a120a9f948f1d0b547480", 0xea}, {&(0x7f0000000000)="2c8c259950cbc6969ee638156b000400004714cd1e0d92dfd7a10855ba6a", 0x1e}], 0xa)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0x40605346, &(0x7f00000009c0)={0xdbeb, 0x1, {0xffffffffffffffff, 0x0, 0x5c, 0x2, 0x4}, 0x5})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\t\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000002c0000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}}, 0x4004)

1.331009357s ago: executing program 1 (id=3821):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}, 0x1, 0x0, 0x0, 0x40000}, 0x80d0)

1.181307069s ago: executing program 3 (id=3822):
r0 = openat$ppp(0xffffff9c, &(0x7f0000000000), 0x80, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x8, 0x77, 0x5, 0x0, 0x2})
r1 = openat2$dir(0xffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x313800, 0x104, 0x4}, 0x18)
statx(r1, &(0x7f0000000100)='./file0\x00', 0x0, 0x100, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = socket$unix(0x1, 0x0, 0x0)
recvmsg$unix(r3, &(0x7f00000005c0)={&(0x7f0000000240), 0x6e, &(0x7f0000000580)=[{&(0x7f00000002c0)=""/226, 0xe2}, {&(0x7f00000003c0)=""/228, 0xe4}, {&(0x7f00000004c0)}, {&(0x7f0000000500)=""/99, 0x63}], 0x4}, 0x0)
r4 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000600)=0xffffffffffffffff, 0x4)
ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f0000000640)={0x2242, 0x400, 0x5, 0x0, 0x0, [{{}, 0x800000}, {{r4}, 0x1}, {{r3}, 0x4}, {{r3}, 0x2}, {{r0}, 0x9}]})
openat$tun(0xffffff9c, &(0x7f0000000700), 0x201, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x11, &(0x7f0000000740)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8}, {}, {}, [@map_idx={0x18, 0x1, 0x5, 0x0, 0x6}]}, &(0x7f0000000800)='GPL\x00', 0x9, 0xe6, &(0x7f0000000840)=""/230, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000940)={0x2, 0x1, 0xc0, 0x8}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000980)=[0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f00000009c0)=[{0x3, 0x5, 0x2, 0x4}, {0x4, 0x3, 0x6, 0x1}, {0x0, 0x3, 0x7, 0x9}], 0x10, 0x3ff}, 0x94)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000ac0)=r5, 0x4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000b00)={'veth0_to_bond\x00', <r6=>0x0})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={r5, 0xe0, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, &(0x7f0000000b80)=[0x0], &(0x7f0000000bc0)=[0x0, 0x0, 0x0], <r7=>0x0, 0x7e, &(0x7f0000000c00)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f0000000c40), &(0x7f0000000c80), 0x8, 0x7b, 0x8, 0x8, &(0x7f0000000cc0)}}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000e40)={r0, r6, 0x25, 0x4, @val=@tracing={r7, 0x1}}, 0x1c)
r8 = socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$sock_inet6_SIOCSIFDSTADDR(r8, 0x8918, &(0x7f0000000e80)={@mcast1, 0x6b, r6})
open_by_handle_at(r8, &(0x7f0000000ec0)=@ocfs2={0xc, 0x1, {0x8, 0x1, 0x2b}}, 0x400)
r9 = socket$l2tp6(0xa, 0x2, 0x73)
recvfrom$l2tp6(r9, &(0x7f0000000f00)=""/254, 0xfe, 0x40010003, &(0x7f0000001000)={0xa, 0x0, 0x0, @initdev}, 0x20)
socketpair(0xa, 0x4, 0x9b, &(0x7f0000001040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
bind$packet(r10, &(0x7f0000001080)={0x11, 0x9, r6, 0x1, 0x7, 0x6, @broadcast}, 0x14)
syz_open_dev$vim2m(&(0x7f00000010c0), 0xde, 0x2)
accept4$unix(r11, &(0x7f0000001100)=@abs, &(0x7f0000001180)=0x6e, 0x0)
syz_80211_join_ibss(&(0x7f00000011c0)='wlan1\x00', &(0x7f0000001200)=@default_ap_ssid, 0x6, 0x1)
r12 = openat$ipvs(0xffffff9c, &(0x7f0000001240)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
ioctl$UFFDIO_API(r12, 0xc018aa3f, &(0x7f0000001280)={0xaa, 0x8})
quotactl$Q_GETQUOTA(0xffffffff80000701, &(0x7f00000012c0)=@sr0, r2, &(0x7f0000001300))
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r13, &(0x7f0000001480)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001440)={&(0x7f00000013c0)={0x44, 0x3, 0x6, 0xe06, 0x0, 0x0, {0x2, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r11, &(0x7f0000002940)={&(0x7f00000014c0)={0x10, 0x0, 0x0, 0x16802204}, 0xc, &(0x7f0000002900)={&(0x7f0000001580)={0x1350, 0x0, 0x8, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BEACON_HEAD={0x192, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, {0x81}, @device_a, @device_b, @from_mac=@device_b, {0x4, 0x3}}, 0xff, @random=0x401, 0x1217, @val={0x0, 0x6, @default_ap_ssid}, @void, @val={0x3, 0x1, 0x80}, @void, @val={0x6, 0x2}, @val={0x5, 0xb1, {0x9, 0xe4, 0xc4, "cbfd3df9144f085b800104bd5dd139857dcfdf65b9af2c82a2aa533eebdeb58b315907377b42043d0e84b10f9b2b0e7ff7e8d2c8ab4ed3efc42270de7dd77cc5a14fc9e90a6e447c93b63437f1c6dce04273091203c57d48c766737125176e9b36abdcde42c917fc69a4a20a58f737dbc93c28a2871ccfba6bd2f7e4c75b2bdd577fb1b3c4df9c0efec8822ee1a8141265c5a21b352c58853aedc2856682ff41cfddb2b9ad83a695a3ed467ea656"}}, @void, @val={0x2a, 0x1, {0x1, 0x1, 0x1}}, @val={0x3c, 0x4, {0x1, 0xc, 0x88, 0xff}}, @void, @void, @val={0x71, 0x7, {0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, 0x40}}, @val={0x76, 0x6, {0xdc, 0x3, 0x2d, 0x9f3a}}, [{0xdd, 0x8c, "4eccf6b0cd2a26de738998bf14bb7b7db6cce769f1355585be58d5a0a4449d74b92e8f1e0046459006a5cc56203439c21ecf53a855f2355a806623ca5b819be971d9b2af6c3093ab4f53d1f3daeaf9410df53d20c090fe6ddceb8823b4de7ec88439d6ec05b8b3e66c225346a32b81adeb5a41103fca96c9add3220a5a0f3483859cfbd8d725303a02aed78d"}]}}, @NL80211_ATTR_IE_ASSOC_RESP={0xa2, 0x80, [@measure_req={0x26, 0x9c, {0x6, 0x3, 0xa8, "3353302773d60883a4a2f5b5395e519be9b3e5e7adf59e56ea7a99658fc3096def1e198841f7559bc932bb2a5c1d3601054c9268ed1a7dd32cce38031f9e8a10a5ec14d815a7fb46b369449a38bb633da92dfe92f24c74ac38db595ccaaf9090ce88bdb606d8b04e2b1a62aa85b49610068dc4333aa1caa467fb0e61422140c86b0153c3b76d24a8ffc49e79768b615886c3156f6c5e7b83a3"}}]}, @NL80211_ATTR_FTM_RESPONDER={0x310, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_CIVICLOC={0xe4, 0x3, "248e61b7e165ce998f209b8075ddbdec287b7e18ff1fc7caae1cb2ec73149c85324e36c5f6f768317134fdbb2a9cc8e5fa27ef7f2618c4ecf3e8215c7f597edb0141a68b15eb225779d9258ff4f210b2ef6d63a536f35d9b918342f72d79985b409fdd5b26dad5b5a2efbb79ce3a0dac9919d243a8036109df90b73aa0e151dcb99097a15b7844eb8d68e0e4361a3fafa50725d02dee435c8c7fdde3433a8e159cbbcf01091a714c2c4be4058666e08eeef01b190ce56525ee7974d199611bb5c944467737f49e92ba54154d1ca88b8ea9b81cfc92af1d2fac89efbccc6d7995"}, @NL80211_FTM_RESP_ATTR_LCI={0x1a, 0x2, "19258a9e9b4fc1e26337cea99626f17f9bf619078c47"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x6a, 0x3, "a237950785b3c86f4025e08b008465d5deec91314207e4cb9c0516d813da434765e89a56644af20bf0a70b669a3b05a52b628cda2be30e7601ccbcd6474dfdae11b77505d54cb43582a8c955716dbd40eab3d73f6123a35e3fc0349810de56dd9f787f18ee09"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x96, 0x3, "65d3f2c192053c25894c2ee2b7caeaf94bdface8a66663baacb688786f1304dbbc0d406fe9a7b6fd5e0e14f3a79fe6fa4fc123ad40451dca39afbd9885763875fe209933be1663f2228f8a081aa3b2d323354bcf9ab1f23c158dde192c20e4d8578998a9a731fa14522d7850ead7e60cf3ce72c528598f42accc43e85e8dbe39dad2884f4ca6be3d213732053ab33f48ab4f"}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x29, 0x3, "3e9af9cb06c36ce62698533c852647fe91da2b9fc87f64a128424895a8fed7a7e17d7ad651"}, @NL80211_FTM_RESP_ATTR_LCI={0xd3, 0x2, "4b46cea8142f0e9a00a31ea1edee33b2a623e56d2b3759ea25e0c36e72a763b67043973a892e240afddedb6b28b5fd4e4b1fdc57c05460da8c72908cec94b5733ce5ffe2805de70d2b887be2522e2eb9ede98284633e4e3822cbd8276a52cabaae294cf179a6ce0d015295a3f9ceccc02fdc4d4dedf1bcaaa676ea971473e81c634c1ea044a50f64608741ef06b00bcc324d90590cf583996998d1de52b47411045f32524db55a796c820c041af396393db1cd022702958905cfc7ba294781e30f80f85a985c1e196f33429345a0ba"}]}, @NL80211_ATTR_FTM_RESPONDER={0x88, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_CIVICLOC={0x82, 0x3, "af85d9a9c705e827f2f5d91add2db4201b10898fb126fcf4a223d9adae09d829b73c310ea1d73937d02dd0befba30574edf769ec3e569ef4dcf49993cb05b3073066b463a3e09e56fdb05bec280651c7175975f85b2b25b16877c58ab389dfdbcb6d9d6bbde219e825f330d32fa322f15b2be251dfa77e2c8d0a481a99ed"}]}, @NL80211_ATTR_IE_ASSOC_RESP={0x95, 0x80, [@fast_bss_trans={0x37, 0x84, {0x6, 0x3, "e633824e2c3f9e7ef030d21647ea138c", "6de35af1701e6e9d82e6fecf138846ef6aaf027d7fe580d68420205f63e286b0", "a3cd5e3889b6e3582466503483cb2932605cb76ac3ecfe033dd3e88087e8c128", [{0x2, 0x6, "31a5b6c20aeb"}, {0x3, 0x6, "b79fe66bb891"}, {0x1, 0x20, "3082a80ef4969f9a192e0b67f9f759d404f46813285bcd2eefb7760626fef4af"}]}}, @erp={0x2a, 0x1, {0x0, 0x1}}, @mesh_chsw={0x76, 0x6, {0x8, 0x6, 0x32, 0x1}}]}, @NL80211_ATTR_PROBE_RESP={0x85b, 0x91, "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"}, @NL80211_ATTR_BEACON_HEAD={0x28b, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1}, {0x8}, @device_a, @device_b, @random="0fe34a457940", {0x1, 0x3}, @value=@ver_80211n={0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}}, 0x4, @default, 0x6011, @void, @void, @void, @void, @val={0x6, 0x2, 0xb55d}, @void, @val={0x25, 0x3, {0x1, 0xb2, 0x4}}, @void, @val={0x3c, 0x4, {0x0, 0x25, 0x74, 0x68}}, @val={0x2d, 0x1a, {0x10, 0x3, 0x1, 0x0, {0x0, 0x4, 0x0, 0x80, 0x0, 0x1, 0x0, 0x3, 0x1}, 0x1, 0xff, 0x10}}, @void, @void, @void, [{0xdd, 0x6, "b6aab3b9c0fa"}, {0xdd, 0xcd, "278789cc757e047b12d7120446bdc718f00302f6b03d6335005f245387d849daf3eb14edcd92b29605f1dae0391026c93ab49405452e20bf0a63cce480cc3ca7f1b8e3204f40f3a7c3b6027722d1619ea128eb5c831b141c9a844ed05b478a34645f28f56d2a97a9b5648c1c757d9fd96b3c0268f7300eaf5eaec4b2395053fb7ff6bddc52bbb128af41dc98e4122a894860e3fd5af7cd35ebcca3aca3226479778ff56723d2b419dea444c16732eddae84a3fe30e0d1386e92fdb8ae1ffb6e628e6b2f768fe5f05e08dbfbf57"}, {0xdd, 0x29, "2425a25be772fd14f0dbb0f0c8660908e057aa76d1d89b61933e14b56fb75cd26c76d4d25dfd52e386"}, {0xdd, 0x9d, "63f23c0a455d27f4d1e7f3a2da06cf05e773a767678c718a920931d952bd83f68587c829be9ddc99f54b8e47204e245833893cc9b98d928d8514ddfac7492094c6d606a2df0eea86ead08df18246c05c03512488fe4392225f0c9c3a3af044a808500ae4942f4db8a22569e60e1b0dd1b4a56f9da7640ff97a77c9aeba83e2c72feaa2f095ab6311e9b1fd709d7b783b20598959c6c0f43b7dd60d8f5a"}, {0xdd, 0xd, "b7f4f675cfc1a098b18d86654f"}, {0xdd, 0x82, "219dae2d96b6e263914e2040fb8e16b02517565d9f5e39b1e6544508ea558db91e7de75d9d9108ed53e421ff4b7f01e8ca0f4f028ddf18386df7697124c3afc138ce1326b1cbc11ac50a4c3ab8b22490d979a4b73e235874569cd947ed5711c37326e9822ad1e9aa123145ed6c7491b83317d4ab3d551e9084da9e31d82aacac9a23"}]}}, @NL80211_ATTR_FTM_RESPONDER={0x1e4, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_CIVICLOC={0xe6, 0x3, "4357b8660bbb2348a41a5414022af25428aeadd3dc34a0afe8a3a5cb9737e0ab8738a43b06bbfc742d4b0f881008a16487af114cf48a65cf69fae89725fef5055b6a46326e95aafd7f6289bb52dd8b2d0ecfa094641cd755b4dca42ab0a8400a7007d46a60f9085c017b12aae0437b707dd0465c8834e61892979dba1d23b3c5a920ea9efacb2cabd2138cbfab4f8d28f7d5a587aa8c2dc5f1c199a2c631e1f403a4b7af08c609717866535a6d5ba9040dd0412818e6fbf499976270dc73303b2d543dc77052e39c478ab5a733e5ec79242adffd738cc2c7548d027d0767826a23c3"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0xed, 0x3, "e4ac36f9d1e0b1050381ef8f0c891b7413a32b3f884fed78b19443d695cc1c7a727f1b119029e660274437aeadd03c4026dcb92d01cdbf691ed34d623e7441ee2ea3db94d88013a211d33dda6c94437a122ef82798c4311a4a844c7bb86b8ba21fe7c638ef1b49d7f16927d618c0292af3def893ea8fb19b79cdfbf34d95c7634b2de5ffbea4cd404f17aab7c18a059085f1fd27c6eb73bf491dacb73bf86faf709b497a779cb826c757d7b258884ed976d0b5876cfcb4b0e2de65a12030eb291f93cb3e264795ea31b69467e1533dcfdaf169685802088e00b6a07c7fadac92f092c9dd41980ac433"}]}]}, 0x1350}, 0x1, 0x0, 0x0, 0x80}, 0x400c895)

1.17806734s ago: executing program 1 (id=3830):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xfffffffffffffe8d, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x8d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x4, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x4}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24000815}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newlink={0x34, 0x10, 0x403, 0x4, 0x0, {0x0, 0x0, 0x300, 0x0, 0x30141}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0xba01}, 0x810)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = accept4$packet(0xffffffffffffffff, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x0, 0x80800)
r5 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x98, 0x24, 0xf0b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x68, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x1, [0x5, 0x4, 0x2, 0x0, 0x8, 0x2, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x4}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x80000000}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0xc850}, 0x0)
setsockopt$packet_add_memb(r4, 0x107, 0x1, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0xf, 0x0, &(0x7f0000000640))
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
sendfile(r8, r8, 0x0, 0x40008)
setsockopt$inet6_tcp_TCP_MD5SIG(r7, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cd0606000000000000006b943e8bb0ac60081e33dff8150835f7519d5f73b4f5d80e40000900ffff000000005d092392f816d0fdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd9)

1.067983852s ago: executing program 3 (id=3823):
r0 = socket(0x11, 0x3, 0x0)
r1 = syz_io_uring_setup(0x837, &(0x7f0000000180)={0x0, 0x679a, 0x80, 0x3, 0x3ce}, &(0x7f0000000040)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'macsec0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'macsec0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x1, 0x10, 0x25dfdbff, {0x0, 0x0, 0x0, r6, 0x20, 0x40eb8}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ES={0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24008001}, 0x8000) (async)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x1, 0x10, 0x25dfdbff, {0x0, 0x0, 0x0, r6, 0x20, 0x40eb8}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ES={0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24008001}, 0x8000)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x40, 0x0, r0, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0) (async)
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

918.787381ms ago: executing program 3 (id=3824):
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0)
r3 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r3, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback, 0x3}, 0x31)
sendmmsg$inet6(r3, &(0x7f0000002940), 0x40000000000017d, 0x811)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x0, 0x20000000}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc})
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x7, 0x81, &(0x7f0000000280)="1a000000", 0x4)
sendto$inet6(r5, &(0x7f0000000180), 0x0, 0x40d4, &(0x7f0000000140)={0xa, 0x4e23, 0x4, @loopback, 0xffffffff}, 0x1c)

504.329831ms ago: executing program 2 (id=3825):
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="2800000010005fba00"/20, @ANYRES32=0x0, @ANYBLOB="80000200e180000008001b000000000087637539412b7bb03f00a8370ff1e83951192d4d11de52d5a07c31c6297ca5b9f62d004a2bf91998510e99d516d1306ea3cb23c5a8dd0adf52b8b15cfe68f4bfc86b715b"], 0x28}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x8000, 0x8, 0x2, 0x4, {{0x7, 0x4, 0x2, 0x7, 0x1c, 0x68, 0x0, 0x6f, 0x2f, 0x0, @private=0xa010102, @multicast1, {[@ra={0x94, 0x4, 0x1}, @end]}}}}})
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan1\x00'})
syz_open_procfs$userns(0x0, &(0x7f0000000340))
sendmsg$nl_route(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x8002}, 0x24040000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000001800dd8d00000000000000000200000000000005000000000600150001000000280016802400010000000000000000000004010020000000000000000000000000000000000001"], 0x4c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x10, 0x2, 0x10)
r2 = socket$inet(0x2, 0x4, 0xe052)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000001000/0x4000)=nil)
socket$caif_stream(0x25, 0x1, 0x1)
setsockopt$CAIFSO_REQ_PARAM(r2, 0x116, 0x80, &(0x7f0000000500)="9f68accc98e1", 0x6)
mq_open(&(0x7f0000000480)='.\\\x00\xd5\xf6\t\xcf\xc4Q\xdfx\x8e2\xd4\xe9\xb5\xf5w\x9bP\xbf\xe7\x87\xf0\xe5.\xe7\xa0\x8e\xcd\xe1\x8a3\xbbh5SA,\xd3\xec\",p\x81W\xa8\x83\xec\n\xce\x1c@\xa3!\x03\xbe\x00\x00>\x92\xa7\xe9\xb2\x9c\xee\x9b\xb8+\xd88\xddw\x97\'\xc5\xads`^\xb7I\\\xcf\xe5\x98\xe4gY\xa9\xf1\x9f\xfe\xe2\x9a~\xd9\xa1\xe4P*U\x91\x1f\'\xa9OE\xb4F\xdfd\xac\\S\xb2\xc0\xc1\xc9M\xfc\x8c\x1d,\xdc\x03\x1d\xdb\xa2N\xd8\xd7\xed\x8b\\T\xe2\x87]\xcfp\x8d}\x17\xe4?\x96H\x8c\x0fA\xfc]?\xa0I\x82\x02\xe7\xaeG\xc2_j\fSy\xb41M}\xd9\xd6\xd4\xd8\x84l3#z\xb7', 0x40, 0x20, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.net/syz0\x00', 0x200002, 0x0)
fchdir(0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file1\x00', 0x12b)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000003c0)='./file1\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$peekuser(0x3, r3, 0x128)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYRES16=r3], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000540)='afs_get_tree\x00', r4}, 0x10)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="647965e000"])

320.575628ms ago: executing program 2 (id=3826):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r2 = socket(0xa, 0x3, 0x3a)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x18, 0x3c, 0x107, 0x0, 0x0, {0x1, 0x7c}, [@nested={0x4, 0xfc}]}, 0x18}, 0x1, 0x0, 0x0, 0xc000}, 0x4040)
setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000000), 0x4)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000340)={'pim6reg\x00', 0x2})
setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x1, 0x4}, 0xc)
syz_emit_ethernet(0x56, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
sendmsg(r1, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
openat$userio(0xffffffffffffff9c, 0x0, 0xa00, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x5c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x10000}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:mac\x00'}]}, 0x5c}}, 0x4004804)

214.167696ms ago: executing program 1 (id=3827):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
semget(0x0, 0x2, 0x2c0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r2 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4e20, 0xffffffff, @empty, 0x5}, 0x1c)
syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
recvfrom$inet(0xffffffffffffffff, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x3e8, 0x0, 0xfffffffffffffd25)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x1d, @multicast1, 0x4e22, 0x0, 'wrr\x00', 0x18, 0x5, 0x1a}, 0x2c)
chdir(&(0x7f0000000140)='./bus\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.freeze\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000280), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r4, 0x0)
ioctl$VIDIOC_ENUMAUDOUT(0xffffffffffffffff, 0xc0345642, &(0x7f0000000040)={0x4e39, "96e6360000000000000000001b79162b0000008d00", 0x2})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000b00)=ANY=[@ANYBLOB="0b0000000a00000000000000ff02000000000000000000000000000104000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000a0000000000000000000000000000000000ffffe000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a80000000000000fe8000000000000000000000000000bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000199000000000000000000000000000000000001800"/396], 0x190)

83.946653ms ago: executing program 1 (id=3828):
syz_usbip_server_init(0x2)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$sg(&(0x7f0000000000), 0xc, 0x401) (async)
syz_open_dev$sg(&(0x7f0000000000), 0xc, 0x401)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
epoll_create1(0x0) (async)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040))
ioctl$sock_SIOCGIFCONF(r0, 0x8940, &(0x7f0000000000)=@buf={0x3, &(0x7f0000000040)="ce6c06"})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={r1, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x3, 0x2, &(0x7f0000000200)=[0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0], 0x0, 0x68, &(0x7f0000000280)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x95, 0x8, 0x8, &(0x7f0000000340)}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="18000000080000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc1}, 0x94) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="18000000080000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000780)='contention_end\x00', r4}, 0x18)
r5 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r5, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r5, 0x40946400, &(0x7f00000000c0)={'c6xdigio\x00', [0x4f2b, 0x5, 0x3, 0x4, 0x5, 0xcc7, 0xf, 0xb, 0xa, 0x100, 0x2, 0x1, 0xfffffffd, 0x40, 0x6, 0x101, 0x0, 0x1a449, 0x2, 0x40000003, 0x99, 0xcaa7, 0x0, 0x20001e58, 0xa, 0xe69, 0x3f, 0x8, 0x2, 0x0, 0xfffffff8]})
r6 = socket$pppoe(0x18, 0x1, 0x0)
r7 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r7, 0x2) (async)
flock(r7, 0x2)
r8 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r8, 0x2) (async)
flock(r8, 0x2)
r9 = open(&(0x7f00000006c0)='./file0\x00', 0x10000, 0x0)
flock(r9, 0x1)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) (async)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000500)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)=@delchain={0x3c, 0x65, 0x2, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0xfff2, 0xc}, {0x4, 0xfff3}, {0xffe0}}, [@TCA_RATE={0x6, 0x5, {0x5, 0x7}}, @TCA_CHAIN={0x8, 0xb, 0x7}, @TCA_RATE={0x6, 0x5, {0x9, 0x3}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x840}, 0x44000)
ioctl$PPPOEIOCDFWD(r6, 0xb101, 0x0) (async)
ioctl$PPPOEIOCDFWD(r6, 0xb101, 0x0)

0s ago: executing program 3 (id=3829):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000040000000400000004"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000001180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000003000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b70200001a000000bfa30000000030000703000000feffff7a0af0ff0100000079a4f0ff00000000b70600007fffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a0702839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946e0ebc622003b538dfc8e012e79578e51bc5f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b803000000661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7b148ba532e6ea09c346dfebd38608b32a0080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e14861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16b089f37b3591a15c0a9be6eb18208404c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b74cd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f50714600fb6241c6e955031795b282f56411e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeedd005b3d96c7aabf4de517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe00000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1bdb58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000041dcc4cabfc4a21604f0b80da4ec5500000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae6e5c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e80339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd52364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000a5ace201020875c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2f95b6ff92e9a1e24b0b855c02f2b7add58ffb25f3390343c12aa51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fca4d97a0ae75ccf11e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35e9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff17320adda5867947257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f65918192fb8f386bb74b5589829b6b0679b5d65a927de6f4c09f4b742e037381c85d2ec7bb2a8152f0d6a99a0370e0cbd65744eb2efd7b65f04aa7e72588757b9612bb4253a63bb303c0c68a07f115d104f2007237a4f771416741bfd63fdfe3ae6f8bea755d8b7202c2bbae137dc1c3cf40db74a4c1c219d8ddec8f91dae2cdea1353fe062830fa1d233296ec9d8317872257e154665485e7f31cdbfbf435477faf93015b57417d84b8bc8662e097d5ba55d02d48e150695ffae3a676555b10da11751865126d19336116a1e58ab727dda6b343cc97f9479136a66f552abf8fe3d134f6d69df1cffe6740f90735f66ca54fd87800b4bda4db5e68aaccf44d24e09f8a769e3ae7bf246673f15e3d1adae4384bdb7cd30a33e30466b421feb96006c810fd3830a1c75af2580727ffc604d2b04f476acc21419fad9b1baec88974da2db29b8085b0ad5396d3179c71b1dc43291e450ce9b8d7d80fcb44966d7ad4691a37870000000000000000000000000000000000000000000000000000000000000000000083a5765d06da91165d24bc316607e2d69344aa1c07ff7cd7bc3d17f122478b6e81077782b9c298edc2546045feff90e7aa7da88d2489fb000a4aa838f911c1a869fa55e979e033b7707df75b93cf5b8d25242741a88f2d54a7107375b25911aa11efa3a4f87fc14f180e353615b3cb9a5cf5ea843014a277c3694a5a83266f73ef039dd739187923715548d58ff43be997e357e07f9581b40470a7c2fa89cc3ef72a19760b89ded2e546f4966b51c2985101f2248f60ad8119e4db4ade09ebd23fdb750ffccba20bc0e0f52c3316767bb9f67f7e714df5e462bcfc35f3a79147f62f9227441cb3ffb35f4e4c69b04b1399efbeb4b682d6facea9fe1c456a1fb9173833107a38991abac8b0e616f11a2c3e265c484fbc6522e9894dc3b5989b7d585c56778c77c6595b7482dfa90bb818ebd3b0b352d3f48ab947a1240842d592fd9c2f13df205e8974919162421548357a8823bd322e6562fa3e7fb7c56ee00e246a98710b9a710103b3df69655b38dcc196156a16fcc14d8ddb4acf3506adc95c742919b83fd57c8b52956e93104cddd1226ca85a29542b9ea606c72d5339a7d30f23ffcd665b85e4c90d526b33ed854543c2a1d189cd6f319644146c5fe91639d50f2083d46fd82e41bc7d528f18be618904d683726e3eee93388cc78d0df624361bb80afc96b823971fcbbb859d4c2de31f03f884ea774e4abe011389557b2429c85cf795e0a82c94ffc11616d7c8b6939eed3f0e8df5dcc75984430b2a497d78824e539e8f7944b459ae45e7ce803495686984aa91745b8cfb1f80c07c194c4a4327e02cea5fd2ef6041cf053ee5f9829410d150"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)

kernel console output (not intermixed with test programs):

  T40] audit: type=1326 audit(1756657608.620:2947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.3.2902" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  454.298010][   T40] audit: type=1326 audit(1756657608.620:2948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.3.2902" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  454.304644][   T40] audit: type=1326 audit(1756657608.620:2949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.3.2902" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  454.311977][   T40] audit: type=1326 audit(1756657608.620:2950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.3.2902" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  454.319977][   T40] audit: type=1326 audit(1756657608.620:2951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.3.2902" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  454.328441][   T40] audit: type=1326 audit(1756657608.620:2952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.3.2902" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  454.335102][   T40] audit: type=1326 audit(1756657608.630:2953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.3.2902" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  454.879632][T17006] delete_channel: no stack
[  455.168822][   T53] libceph: connect (1)[c::]:6789 error -101
[  455.171276][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  455.216483][T17075] ceph: No mds server is up or the cluster is laggy
[  455.436391][T17083] /dev/sr0: Can't open blockdev
[  455.573923][T17088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2909'.
[  455.967139][T17092] û: entered allmulticast mode
[  455.968677][T17092] veth1_vlan: entered allmulticast mode
[  456.308555][T17105] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2913'.
[  456.318565][T17105] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2913'.
[  456.321939][T17105] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2913'.
[  456.389856][T17108] ref_ctr going negative. vaddr: 0x80ffc002, curr val: -29824, delta: 1
[  456.393297][T17108] ref_ctr increment failed for inode: 0x328 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88801b87a040
[  456.399128][T17109] ata1.00: invalid multi_count 1 ignored
[  456.755746][T17127] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  456.757860][T17127] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  456.760400][T17127] vhci_hcd vhci_hcd.0: Device attached
[  457.085321][   T53] usb 43-1: new high-speed USB device number 3 using vhci_hcd
[  457.505958][T17136] /dev/sr0: Can't open blockdev
[  457.716838][T17128] vhci_hcd: connection reset by peer
[  457.719168][   T60] vhci_hcd: stop threads
[  457.720706][   T60] vhci_hcd: release socket
[  457.722302][   T60] vhci_hcd: disconnect device
[  458.385839][T17148] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2923'.
[  458.468945][T17150] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2924'.
[  459.191644][T17189] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2934'.
[  459.194452][T17189] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2934'.
[  459.213509][T15544] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  459.218533][T15544] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  459.232389][T15544] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  459.244560][T15544] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  460.218067][   T40] kauditd_printk_skb: 35 callbacks suppressed
[  460.218078][   T40] audit: type=1326 audit(1756657614.580:2989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.230031][   T40] audit: type=1326 audit(1756657614.590:2990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.236917][   T40] audit: type=1326 audit(1756657614.590:2991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=327 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.245473][   T40] audit: type=1326 audit(1756657614.590:2992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.252556][   T40] audit: type=1326 audit(1756657614.590:2993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.268752][   T40] audit: type=1326 audit(1756657614.590:2994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=439 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.275542][   T40] audit: type=1326 audit(1756657614.590:2995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.282136][   T40] audit: type=1326 audit(1756657614.590:2996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.288761][   T40] audit: type=1326 audit(1756657614.590:2997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=274 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.295855][   T40] audit: type=1326 audit(1756657614.600:2998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17213 comm="syz.0.2943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  460.748084][T17225] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2946'.
[  460.757094][T17225] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2946'.
[  460.760541][T17225] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2946'.
[  461.042550][T17235] ata1.00: invalid multi_count 1 ignored
[  461.165506][   T61] hid-generic 00A0:0008:0003.0029: unknown main item tag 0x7
[  461.167875][   T61] hid-generic 00A0:0008:0003.0029: item fetching failed at offset 14/15
[  461.173906][   T61] hid-generic 00A0:0008:0003.0029: probe with driver hid-generic failed with error -22
[  461.702746][T17252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2953'.
[  462.235314][   T53] vhci_hcd: vhci_device speed not set
[  462.481333][T17269] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2957'.
[  463.286209][T17285] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2961'.
[  463.483080][T17294] input: syz1 as /devices/virtual/input/input37
[  463.968423][T17312] macvlan2: entered allmulticast mode
[  464.377559][T17322] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2967'.
[  464.823454][T17335] binder: 17332:17335 unknown command 767
[  464.825490][T17335] binder: 17332:17335 ioctl c0306201 80000080 returned -22
[  465.317103][T17351] binder: 17350:17351 ioctl c018620c 80000380 returned -22
[  466.006551][T17354] /dev/sr0: Can't open blockdev
[  466.344699][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  466.344710][   T40] audit: type=1804 audit(1756657620.700:3000): pid=17354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2979" name="/newroot/181/file0" dev="tmpfs" ino=1020 res=1 errno=0
[  466.687234][T17381] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2990'.
[  467.135699][T17399] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2995'.
[  467.799867][   T40] audit: type=1804 audit(1756657622.160:3001): pid=17413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2994" name="/newroot/122/file0" dev="tmpfs" ino=681 res=1 errno=0
[  467.811058][T17415] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2998'.
[  467.826815][T17409] /dev/sr0: Can't open blockdev
[  468.119303][T17425] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3003'.
[  468.559114][T17434] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3006'.
[  468.641159][T17437] comedi comedi3: 8255: I/O port conflict (0x4f27,4)
[  468.644032][T17437] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  468.646763][T17437] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  468.649501][T17437] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  468.651831][T17437] comedi comedi3: 8255: I/O port conflict (0xfff,4)
[  468.654057][T17437] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  468.656541][T17437] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  468.658846][T17437] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  468.661260][T17437] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  468.663399][T17437] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  468.665764][T17437] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  468.668421][T17437] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  468.670979][T17437] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  468.673282][T17437] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  468.675860][T17437] comedi comedi3: 8255: I/O port conflict (0xffffffff80000089,4)
[  468.678677][T17437] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[  468.684125][T17437] netlink: 72 bytes leftover after parsing attributes in process `syz.2.3006'.
[  470.165356][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  470.165419][ T5981] Bluetooth: hci2: command 0x1003 tx timeout
[  470.245950][T17465] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3015'.
[  470.817996][T17481] loop6: detected capacity change from 0 to 2560
[  470.822985][T17481] buffer_io_error: 27 callbacks suppressed
[  470.822995][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.835420][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.838068][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.840585][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.850804][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.855611][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.860920][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.863498][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.872185][T17481] ldm_validate_partition_table(): Disk read failed.
[  470.875672][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.879090][T17481] Buffer I/O error on dev loop6, logical block 0, async page read
[  470.882646][T17481] Dev loop6: unable to read RDB block 0
[  470.887623][T17481]  loop6: unable to read partition table
[  470.891487][T17481] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  471.711773][T17492] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3022'.
[  472.492093][T17510] FAULT_INJECTION: forcing a failure.
[  472.492093][T17510] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.496376][T17510] CPU: 0 UID: 0 PID: 17510 Comm: syz.2.3025 Not tainted syzkaller #0 PREEMPT(full) 
[  472.496397][T17510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  472.496408][T17510] Call Trace:
[  472.496415][T17510]  <TASK>
[  472.496422][T17510]  dump_stack_lvl+0x16c/0x1f0
[  472.496465][T17510]  should_fail_ex+0x512/0x640
[  472.496498][T17510]  _copy_from_user+0x2e/0xd0
[  472.496525][T17510]  move_addr_to_kernel+0x65/0x170
[  472.496545][T17510]  __sys_connect+0xb1/0x160
[  472.496564][T17510]  ? __pfx___sys_connect+0x10/0x10
[  472.496580][T17510]  ? handle_mm_fault+0x200/0xd10
[  472.496606][T17510]  ? __pfx_ksys_write+0x10/0x10
[  472.496625][T17510]  __ia32_sys_connect+0x71/0xb0
[  472.496638][T17510]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  472.496653][T17510]  __do_fast_syscall_32+0x7c/0x3a0
[  472.496670][T17510]  do_fast_syscall_32+0x32/0x80
[  472.496685][T17510]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  472.496698][T17510] RIP: 0023:0xf709e579
[  472.496707][T17510] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  472.496719][T17510] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  472.496735][T17510] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000000
[  472.496745][T17510] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  472.496755][T17510] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  472.496765][T17510] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  472.496774][T17510] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  472.496796][T17510]  </TASK>
[  473.022025][T17513] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3026'.
[  473.200699][T17519] netlink: 'syz.1.3026': attribute type 1 has an invalid length.
[  473.203692][T17519] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3026'.
[  473.216289][T17535] block nbd0: shutting down sockets
[  473.988265][T17546] netlink: 'syz.0.3032': attribute type 4 has an invalid length.
[  473.991257][T17546] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3032'.
[  473.998646][T17546] Ã: renamed from bond0
[  475.446491][T17595] block nbd3: Attempted send on invalid socket
[  475.449198][T17595] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.453322][T17595] vxfs: unable to read disk superblock at 1
[  475.455459][T17595] block nbd3: Attempted send on invalid socket
[  475.458066][T17595] I/O error, dev nbd3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.461326][T17595] vxfs: unable to read disk superblock at 8
[  475.463733][T17595] vxfs: can't find superblock.
[  476.666957][T17623] macvlan2: entered allmulticast mode
[  477.009797][T17640] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3050'.
[  477.068003][T17639] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3055'.
[  477.195593][T17642] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3056'.
[  477.222260][T17642] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3056'.
[  477.230979][T17642] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3056'.
[  477.519254][T17653] loop6: detected capacity change from 0 to 2560
[  477.521607][T17653] buffer_io_error: 11 callbacks suppressed
[  477.521616][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.527672][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.530163][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.532588][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.536426][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.539100][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.541627][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.544560][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.549973][T17653] ldm_validate_partition_table(): Disk read failed.
[  477.552074][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.554719][T17653] Buffer I/O error on dev loop6, logical block 0, async page read
[  477.557806][T17653] Dev loop6: unable to read RDB block 0
[  477.560066][T17653]  loop6: unable to read partition table
[  477.561951][T17653] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  478.809930][T17675] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3065'.
[  478.935009][T17671] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3057'.
[  478.937980][T17671] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3057'.
[  478.970631][T17671] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3057'.
[  478.974160][T17671] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3057'.
[  478.990679][ T6139] Process accounting resumed
[  480.727139][T17714] wireguard0: entered promiscuous mode
[  480.728984][T17714] wireguard0: entered allmulticast mode
[  480.885430][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  480.885917][ T5981] Bluetooth: hci2: command 0x1003 tx timeout
[  481.608516][T17739] netlink: 'syz.1.3077': attribute type 4 has an invalid length.
[  481.634212][T17739] netlink: 'syz.1.3077': attribute type 4 has an invalid length.
[  482.467152][T17760] __nla_validate_parse: 2 callbacks suppressed
[  482.467168][T17760] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3085'.
[  483.444330][T17785] netlink: 'syz.0.3092': attribute type 4 has an invalid length.
[  484.548361][ T5981] Bluetooth: hci2: command 0x1003 tx timeout
[  484.553818][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  484.592613][T17813] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3099'.
[  484.646194][T17816] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3100'.
[  484.752360][T17822] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3103'.
[  485.702452][T17837] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3106'.
[  485.780744][   T40] audit: type=1804 audit(1756657639.998:3002): pid=17829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3104" name="/newroot/180/file0" dev="tmpfs" ino=1027 res=1 errno=0
[  485.824581][T17828] /dev/sr0: Can't open blockdev
[  486.034809][T17841] netlink: 'syz.3.3108': attribute type 4 has an invalid length.
[  486.180356][T17848] pim6reg: entered allmulticast mode
[  486.189152][T17848] pim6reg: left allmulticast mode
[  486.272626][T17851] loop6: detected capacity change from 0 to 2560
[  486.275889][T17851] buffer_io_error: 11 callbacks suppressed
[  486.275901][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.282230][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.285615][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.289682][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.295015][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.298548][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.302628][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.305190][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.307809][T17851] ldm_validate_partition_table(): Disk read failed.
[  486.311400][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.315205][T17851] Buffer I/O error on dev loop6, logical block 0, async page read
[  486.319233][T17851] Dev loop6: unable to read RDB block 0
[  486.322409][T17851]  loop6: unable to read partition table
[  486.324982][T17851] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  486.521255][T17862] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  486.943035][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  486.943093][ T5981] Bluetooth: hci2: command 0x1003 tx timeout
[  487.034938][T17870] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3117'.
[  487.289258][T17878] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  487.323410][T17878] lo speed is unknown, defaulting to 1000
[  487.689610][T17900] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3124'.
[  487.694335][T17902] binder: 17901:17902 ioctl c0306201 800003c0 returned -14
[  487.702472][T17902] binder: 17901:17902 ioctl c0186405 80000080 returned -22
[  488.501238][T17929] netlink: 80 bytes leftover after parsing attributes in process `syz.2.3132'.
[  488.765804][T17935] netlink: 'syz.1.3134': attribute type 4 has an invalid length.
[  488.844882][T17941] FAULT_INJECTION: forcing a failure.
[  488.844882][T17941] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  488.850546][T17941] CPU: 0 UID: 0 PID: 17941 Comm: syz.1.3136 Not tainted syzkaller #0 PREEMPT(full) 
[  488.850571][T17941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  488.850582][T17941] Call Trace:
[  488.850590][T17941]  <TASK>
[  488.850597][T17941]  dump_stack_lvl+0x16c/0x1f0
[  488.850626][T17941]  should_fail_ex+0x512/0x640
[  488.850655][T17941]  _copy_from_iter+0x29f/0x1720
[  488.850685][T17941]  ? __alloc_skb+0x200/0x380
[  488.850708][T17941]  ? __pfx__copy_from_iter+0x10/0x10
[  488.850736][T17941]  ? __pfx___might_resched+0x10/0x10
[  488.850764][T17941]  netlink_sendmsg+0x829/0xdd0
[  488.850795][T17941]  ? __pfx_netlink_sendmsg+0x10/0x10
[  488.850823][T17941]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  488.850847][T17941]  sock_write_iter+0x4fc/0x5b0
[  488.850866][T17941]  ? __pfx_sock_write_iter+0x10/0x10
[  488.850894][T17941]  ? __lock_acquire+0x62e/0x1ce0
[  488.850920][T17941]  do_iter_readv_writev+0x65f/0x9e0
[  488.850942][T17941]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  488.850965][T17941]  ? bpf_lsm_file_permission+0x9/0x10
[  488.850990][T17941]  ? security_file_permission+0x71/0x210
[  488.851015][T17941]  ? rw_verify_area+0xcf/0x6c0
[  488.851035][T17941]  vfs_writev+0x35f/0xde0
[  488.851061][T17941]  ? __pfx_vfs_writev+0x10/0x10
[  488.851081][T17941]  ? find_held_lock+0x2b/0x80
[  488.851114][T17941]  ? __fget_files+0x20e/0x3c0
[  488.851137][T17941]  ? __fget_files+0x1b0/0x3c0
[  488.851161][T17941]  ? do_writev+0x28c/0x340
[  488.851179][T17941]  do_writev+0x28c/0x340
[  488.851198][T17941]  ? __pfx_do_writev+0x10/0x10
[  488.851218][T17941]  ? rcu_is_watching+0x12/0xc0
[  488.851241][T17941]  __do_fast_syscall_32+0x7c/0x3a0
[  488.851268][T17941]  do_fast_syscall_32+0x32/0x80
[  488.851293][T17941]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  488.851315][T17941] RIP: 0023:0xf70ee579
[  488.851331][T17941] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  488.851349][T17941] RSP: 002b:00000000f54de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  488.851367][T17941] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  488.851378][T17941] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  488.851388][T17941] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  488.851398][T17941] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  488.851408][T17941] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  488.851444][T17941]  </TASK>
[  489.012794][T17945] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3138'.
[  489.195912][T17954] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3140'.
[  489.401848][ T6096] usb 5-1: new full-speed USB device number 20 using dummy_hcd
[  489.563709][ T6096] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  489.568001][ T6096] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  489.573565][ T6096] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  489.577437][ T6096] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.801262][ T6096] usb 5-1: usb_control_msg returned -32
[  489.802870][ T6096] usbtmc 5-1:16.0: can't read capabilities
[  490.438600][T17968] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3142'.
[  490.441861][T17968] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3142'.
[  490.510396][T17968] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3142'.
[  490.513498][ T6057] Process accounting resumed
[  490.515679][T17968] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3142'.
[  490.568597][T17968] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3142'.
[  490.571628][T17968] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3142'.
[  491.002646][T17976] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3146'.
[  491.219507][ T5981] Bluetooth: hci2: command 0x1003 tx timeout
[  491.221881][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  491.525816][T17992] macvlan2: entered allmulticast mode
[  491.848375][T18000] usb 2-1: USB disconnect, device number 3
[  491.919130][T18001] hub 2-0:1.0: USB hub found
[  491.923822][T18001] hub 2-0:1.0: 6 ports detected
[  492.326501][ T1059] Bluetooth: hci2: Frame reassembly failed (-84)
[  492.330508][T18003] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  492.372850][    T9] usb 5-1: USB disconnect, device number 20
[  492.437913][ T6057] usb 2-1: new high-speed USB device number 4 using ehci-pci
[  492.647119][ T6057] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  492.650135][ T6057] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  492.652732][ T6057] usb 2-1: Product: QEMU USB Tablet
[  492.654317][ T6057] usb 2-1: Manufacturer: QEMU
[  492.655769][ T6057] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  492.675838][ T6057] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.002A/input/input38
[  492.755206][ T6057] hid-generic 0003:0627:0001.002A: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  492.792744][T18015] dlm: no local IP address has been set
[  492.795034][T18015] dlm: cannot start dlm midcomms -107
[  492.978549][T18018] tmpfs: Unknown parameter ''
[  493.561223][ T6057] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  493.752881][ T6057] usb 7-1: Using ep0 maxpacket: 8
[  493.760060][ T6057] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  493.763026][ T6057] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  493.774276][ T6057] usb 7-1: Product: syz
[  493.775822][ T6057] usb 7-1: Manufacturer: syz
[  493.777595][ T6057] usb 7-1: SerialNumber: syz
[  493.794346][ T6057] usb 7-1: config 0 descriptor??
[  493.990981][   T71] Bluetooth: Error in BCSP hdr checksum
[  494.034011][ T6057] usb 7-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  494.269463][   T71] Bluetooth: Error in BCSP hdr checksum
[  494.469313][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  494.472951][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  494.524099][T18019] syz.2.3158 (18019) used greatest stack depth: 19184 bytes left
[  495.157234][ T6057] dvb_usb_rtl28xxu 7-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  495.848830][ T5981] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  496.179464][T18035] syz.0.3163 invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=1000
[  496.194358][T18035] CPU: 1 UID: 0 PID: 18035 Comm: syz.0.3163 Not tainted syzkaller #0 PREEMPT(full) 
[  496.194375][T18035] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  496.194383][T18035] Call Trace:
[  496.194387][T18035]  <TASK>
[  496.194392][T18035]  dump_stack_lvl+0x16c/0x1f0
[  496.194412][T18035]  dump_header+0x101/0x930
[  496.194428][T18035]  oom_kill_process+0x272/0xa40
[  496.194441][T18035]  ? oom_cpuset_eligible.isra.0+0x199/0x2d0
[  496.194455][T18035]  out_of_memory+0x1405/0x1700
[  496.194472][T18035]  ? __pfx_out_of_memory+0x10/0x10
[  496.194489][T18035]  __alloc_frozen_pages_noprof+0x1d53/0x23f0
[  496.194509][T18035]  ? lock_acquire+0x179/0x350
[  496.194524][T18035]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  496.194542][T18035]  ? xas_move_index+0xb0/0x110
[  496.194561][T18035]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  496.194579][T18035]  ? policy_nodemask+0xea/0x4e0
[  496.194602][T18035]  alloc_pages_mpol+0x1fb/0x550
[  496.194624][T18035]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  496.194654][T18035]  folio_alloc_mpol_noprof+0x36/0x2f0
[  496.194694][T18035]  vma_alloc_folio_noprof+0xed/0x1e0
[  496.194711][T18035]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  496.194727][T18035]  ? rcu_read_unlock+0x2d/0xb0
[  496.194743][T18035]  do_wp_page+0x1e5b/0x4f00
[  496.194762][T18035]  ? __pfx_do_wp_page+0x10/0x10
[  496.194784][T18035]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  496.194808][T18035]  ? ___pte_offset_map+0x2ad/0x4f0
[  496.194838][T18035]  __handle_mm_fault+0x1b2d/0x2a50
[  496.194864][T18035]  ? __pfx___handle_mm_fault+0x10/0x10
[  496.194887][T18035]  ? lock_vma_under_rcu+0x1eb/0x530
[  496.194910][T18035]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  496.194926][T18035]  handle_mm_fault+0x589/0xd10
[  496.194938][T18035]  ? __bpf_trace_exceptions+0x1/0x40
[  496.194956][T18035]  do_user_addr_fault+0x60c/0x1370
[  496.194974][T18035]  ? rcu_is_watching+0x12/0xc0
[  496.194986][T18035]  exc_page_fault+0x5c/0xb0
[  496.195001][T18035]  asm_exc_page_fault+0x26/0x30
[  496.195012][T18035] RIP: 0023:0xf70f1773
[  496.195023][T18035] Code: 00 00 8d 4c 24 24 51 89 d1 89 c2 89 d8 e8 45 19 ff ff 83 c4 10 84 c0 74 96 8b 3c 24 8d 04 76 8b 54 24 1c 8d 0c 87 8b 44 24 18 <c6> 01 01 89 41 04 89 51 08 e9 77 ff ff ff 52 56 8b 54 24 10 8d 82
[  496.195035][T18035] RSP: 002b:00000000ffb039e0 EFLAGS: 00010202
[  496.195044][T18035] RAX: 0000000000000003 RBX: 0000000080000080 RCX: 00000000f7462060
[  496.195051][T18035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7462060
[  496.195058][T18035] RBP: 00000000f7464f90 R08: 0000000000000000 R09: 0000000000000000
[  496.195064][T18035] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  496.195070][T18035] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  496.195084][T18035]  </TASK>
[  496.195100][T18035] Mem-Info:
[  496.282001][T18035] active_anon:63 inactive_anon:140 isolated_anon:0
[  496.282001][T18035]  active_file:681 inactive_file:424 isolated_file:0
[  496.282001][T18035]  unevictable:1768 dirty:0 writeback:15
[  496.282001][T18035]  slab_reclaimable:6842 slab_unreclaimable:67554
[  496.282001][T18035]  mapped:22953 shmem:1769 pagetables:1383
[  496.282001][T18035]  sec_pagetables:328 bounce:0
[  496.282001][T18035]  kernel_misc_reclaimable:0
[  496.282001][T18035]  free:15843 free_pcp:1180 free_cma:0
[  496.297294][T18035] Node 0 active_anon:64kB inactive_anon:0kB active_file:64kB inactive_file:100kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:464kB dirty:0kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8080kB pagetables:1400kB sec_pagetables:1172kB all_unreclaimable? yes Balloon:0kB
[  496.310287][T18035] Node 1 active_anon:388kB inactive_anon:576kB active_file:4160kB inactive_file:1296kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:92248kB dirty:0kB writeback:60kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5936kB pagetables:4132kB sec_pagetables:140kB all_unreclaimable? no Balloon:0kB
[  496.350978][T18035] Node 0 DMA free:2004kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:8kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:60kB local_pcp:0kB free_cma:0kB
[  496.382796][T18035] lowmem_reserve[]: 0 288 288 288 288
[  496.385338][T18035] Node 0 DMA32 free:12304kB boost:2048kB min:15268kB low:18572kB high:21876kB reserved_highatomic:0KB free_highatomic:0KB active_anon:64kB inactive_anon:0kB active_file:68kB inactive_file:96kB unevictable:3536kB writepending:0kB present:1032196kB managed:295132kB mlocked:0kB bounce:0kB free_pcp:3212kB local_pcp:20kB free_cma:0kB
[  496.408119][T18035] lowmem_reserve[]: 0 0 0 0 0
[  496.409666][T18035] Node 1 DMA32 free:81092kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:4096KB free_highatomic:56KB active_anon:800kB inactive_anon:632kB active_file:4268kB inactive_file:2468kB unevictable:3536kB writepending:60kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:26068kB local_pcp:9968kB free_cma:0kB
[  496.421812][T18035] lowmem_reserve[]: 0 0 0 0 0
[  496.423427][T18035] Node 0 DMA: 3*4kB (M) 1*8kB (M) 4*16kB (UM) 2*32kB (UM) 3*64kB (UM) 1*128kB (M) 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2004kB
[  496.428308][T18035] Node 0 DMA32: 200*4kB (UM) 174*8kB (UME) 116*16kB (UM) 77*32kB (ME) 26*64kB (UM) 14*128kB (UM) 9*256kB (UME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12272kB
[  496.433290][T18035] Node 1 DMA32: 1588*4kB (UEH) 355*8kB (UMH) 271*16kB (UMEH) 289*32kB (UM) 185*64kB (UME) 93*128kB (UME) 47*256kB (UM) 18*512kB (UME) 6*1024kB (UM) 7*2048kB (U) 0*4096kB = 88248kB
[  496.439541][T18035] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  496.442574][T18035] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  496.445476][T18035] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  496.449536][T18035] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  496.453132][T18035] 3731 total pagecache pages
[  496.454620][T18035] 133 pages in swap cache
[  496.455976][T18035] Free swap  = 55216kB
[  496.470691][T18035] Total swap = 124996kB
[  496.472364][T18035] 524155 pages RAM
[  496.473885][T18035] 0 pages HighMem/MovableOnly
[  496.475761][T18035] 209477 pages reserved
[  496.477432][T18035] 0 pages cma reserved
[  496.479982][T18035] Unreclaimable slab info:
[  496.482444][T18035] Name                      Used          Total
[  496.484428][T18035] pid_3                     23KB         23KB
[  496.486289][T18035] pid_2                    112KB        149KB
[  496.488129][T18035] bio-360                    7KB          7KB
[  496.490048][T18035] bio-424                    8KB          8KB
[  496.528693][T18035] bio-440                    8KB          8KB
[  496.530387][T18035] bio-536                   15KB         15KB
[  496.532713][T18035] afs_inode_cache           30KB         30KB
[  496.534517][T18035] zspage-zswap1            122KB        122KB
[  496.536273][T18035] zs_handle-zswap1         217KB        232KB
[  496.538217][T18035] zswap_entry              590KB        600KB
[  496.539977][T18035] AF_VSOCK                 122KB        122KB
[  496.541813][T18035] sw_flow_stats             12KB         12KB
[  496.544401][T18035] sw_flow                   45KB         45KB
[  496.546308][T18035] batadv_tt_change_cache         16KB         16KB
[  496.548312][T18035] batadv_tl_cache           16KB         16KB
[  496.550177][T18035] ceph_osd_request          31KB         31KB
[  496.552015][T18035] ceph_msg                   7KB          7KB
[  496.554147][T18035] IEEE-802.15.4-MAC         94KB         94KB
[  496.555987][T18035] IEEE-802.15.4-RAW         63KB         63KB
[  496.557853][T18035] p9_req_t                  71KB        111KB
[  496.559726][T18035] INET_SMC                  91KB         91KB
[  496.561629][T18035] SMC6                     122KB        122KB
[  496.564501][T18035] SMC                      122KB        122KB
[  496.566409][T18035] TIPC                     123KB        123KB
[  496.568298][T18035] rds_tcp_incoming           7KB          7KB
[  496.570332][T18035] rds_tcp_connection         31KB         31KB
[  496.572270][T18035] RDS                      128KB        128KB
[  496.574148][T18035] rds_connection            23KB         23KB
[  496.576584][T18035] SCTPv6                   120KB        120KB
[  496.578829][T18035] SCTP                     122KB        122KB
[  496.581424][T18035] sctp_chunk                93KB        156KB
[  496.583817][T18035] sctp_bind_bucket          16KB         16KB
[  496.586522][T18035] PNPIPE                    92KB         92KB
[  496.593361][T18035] PHONET                    31KB         31KB
[  496.595830][T18035] L2TP/IPv6                127KB        127KB
[  496.599253][T18040] __nla_validate_parse: 3 callbacks suppressed
[  496.599263][T18040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3164'.
[  496.600202][T18035] L2TP/IP                  121KB        121KB
[  496.606367][T18035] KCM                      127KB        127KB
[  496.608392][T18035] kcm_mux                   63KB         63KB
[  496.610298][T18035] RXRPC                    124KB        124KB
[  496.612190][T18035] rxrpc_call_jar           318KB        318KB
[  496.614116][T18035] can_receiver              15KB         15KB
[  496.616002][T18035] net_bridge_fdb_entry        106KB        106KB
[  496.618401][T18035] xfrm6_tunnel_spi           4KB          4KB
[  496.622044][T18035] MPTCPv6                   93KB         93KB
[  496.623916][T18035] fib6_node                148KB        160KB
[  496.625768][T18035] ip6_dst_cache            192KB        390KB
[  496.627663][T18035] mfc6_cache                 8KB          8KB
[  496.629828][T18035] PINGv6                    62KB         62KB
[  496.631712][T18035] RAWv6                    217KB        217KB
[  496.633640][T18035] UDPLITEv6                127KB        127KB
[  496.635579][T18035] UDPv6                    255KB        255KB
[  496.637417][T18035] tw_sock_TCPv6              7KB          7KB
[  496.639694][T18035] request_sock_TCPv6         15KB         15KB
[  496.641869][T18035] TCPv6                    580KB        607KB
[  496.643781][T18035] nf_conntrack              31KB         31KB
[  496.645739][T18035] wg_peer                  148KB        148KB
[  496.647652][T18035] allowedips_node           19KB         19KB
[  496.649838][T18035] ubi_wl_entry_slab          3KB          3KB
[  496.653944][T18035] t10_alua_lu_gp_cache          7KB          7KB
[  496.655998][T18035] scsi_sense_cache          44KB         44KB
[  496.657876][T18035] virtio_scsi_cmd           16KB         16KB
[  496.659736][T18035] bio-136                   92KB        108KB
[  496.664095][T18035] io_kiocb                 148KB        203KB
[  496.666025][T18035] bio-264                   31KB         31KB
[  496.668138][T18035] mqueue_inode_cache        121KB        121KB
[  496.670077][T18035] f2fs_bio_post_read_ctx         23KB         23KB
[  496.672470][T18035] jfs_mp                     7KB          7KB
[  496.674378][T18035] orangefs_op_cache         17KB         17KB
[  496.676359][T18035] fuse_request              79KB         79KB
[  496.678598][T18035] cifs_small_rq             16KB         16KB
[  496.680454][T18035] cifs_request              67KB         67KB
[  496.684544][T18035] cifs_mpx_ids               7KB          7KB
[  496.687051][T18035] cifs_io_subrequest         39KB         39KB
[  496.689799][T18035] cifs_io_request           95KB         95KB
[  496.691729][T18035] nfs_commit_data           15KB         15KB
[  496.696630][T18035] nfs_write_data            63KB         63KB
[  496.696748][T18042] FAULT_INJECTION: forcing a failure.
[  496.696748][T18042] name failslab, interval 1, probability 0, space 0, times 0
[  496.698552][T18035] jbd2_inode                11KB         11KB
[  496.698563][T18035] ext4_system_zone           3KB          3KB
[  496.698571][T18035] ext4_io_end_vec           15KB         15KB
[  496.698583][T18035] kioctx                   127KB        127KB
[  496.702467][T18042] CPU: 0 UID: 0 PID: 18042 Comm: syz.1.3165 Not tainted syzkaller #0 PREEMPT(full) 
[  496.702483][T18042] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  496.702490][T18042] Call Trace:
[  496.702494][T18042]  <TASK>
[  496.702499][T18042]  dump_stack_lvl+0x16c/0x1f0
[  496.702518][T18042]  should_fail_ex+0x512/0x640
[  496.702536][T18042]  should_failslab+0xc2/0x120
[  496.702551][T18042]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  496.702565][T18042]  ? skb_clone+0x190/0x3f0
[  496.702582][T18042]  skb_clone+0x190/0x3f0
[  496.702597][T18042]  netlink_deliver_tap+0xabd/0xd30
[  496.702624][T18042]  netlink_unicast+0x64c/0x870
[  496.702650][T18042]  ? __pfx_netlink_unicast+0x10/0x10
[  496.702673][T18042]  ? __pfx___might_resched+0x10/0x10
[  496.702703][T18042]  netlink_sendmsg+0x8d1/0xdd0
[  496.702735][T18042]  ? __pfx_netlink_sendmsg+0x10/0x10
[  496.702760][T18042]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  496.702781][T18042]  sock_write_iter+0x4fc/0x5b0
[  496.702798][T18042]  ? __pfx_sock_write_iter+0x10/0x10
[  496.702824][T18042]  ? __lock_acquire+0x62e/0x1ce0
[  496.702853][T18042]  do_iter_readv_writev+0x65f/0x9e0
[  496.702875][T18042]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  496.702898][T18042]  ? bpf_lsm_file_permission+0x9/0x10
[  496.702922][T18042]  ? security_file_permission+0x71/0x210
[  496.702942][T18042]  ? rw_verify_area+0xcf/0x6c0
[  496.702963][T18042]  vfs_writev+0x35f/0xde0
[  496.702989][T18042]  ? __pfx_vfs_writev+0x10/0x10
[  496.703005][T18042]  ? find_held_lock+0x2b/0x80
[  496.703036][T18042]  ? __fget_files+0x20e/0x3c0
[  496.703049][T18042]  ? __fget_files+0x1b0/0x3c0
[  496.703072][T18042]  ? do_writev+0x28c/0x340
[  496.703105][T18042]  do_writev+0x28c/0x340
[  496.703120][T18042]  ? __pfx_do_writev+0x10/0x10
[  496.703139][T18042]  ? rcu_is_watching+0x12/0xc0
[  496.703161][T18042]  __do_fast_syscall_32+0x7c/0x3a0
[  496.703189][T18042]  do_fast_syscall_32+0x32/0x80
[  496.703212][T18042]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  496.703230][T18042] RIP: 0023:0xf70ee579
[  496.703245][T18042] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  496.703262][T18042] RSP: 002b:00000000f54de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  496.703278][T18042] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  496.703288][T18042] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  496.703298][T18042] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  496.703309][T18042] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  496.703320][T18042] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  496.703341][T18042]  </TASK>
[  496.703386][T18042] netlink: 'syz.1.3165': attribute type 4 has an invalid length.
[  496.711834][T18035] aio_kiocb                 31KB         31KB
[  496.798195][T18035] userfaultfd_ctx_cache         63KB         63KB
[  496.800307][T18035] fanotify_fid_event         11KB         11KB
[  496.802248][T18035] fanotify_mark              7KB          7KB
[  496.804146][T18035] dnotify_mark               7KB          7KB
[  496.806028][T18035] dnotify_struct             7KB          7KB
[  496.807913][T18035] fasync_cache              15KB         15KB
[  496.809837][T18035] pid_namespace             30KB         30KB
[  496.811933][T18035] kvm_vcpu                 247KB        247KB
[  496.813830][T18035] kvm_mmu_page_header        108KB        127KB
[  496.815907][T18035] pte_list_desc             94KB        114KB
[  496.817799][T18035] x86_emulator             120KB        120KB
[  496.819689][T18035] rpc_buffers              159KB        159KB
[  496.821929][T18035] rpc_tasks                 31KB         31KB
[  496.823831][T18035] UNIX-STREAM              223KB        223KB
[  496.825728][T18035] UNIX                     403KB        637KB
[  496.827403][   T59] usb 7-1: USB disconnect, device number 28
[  496.827615][T18035] ip4-frags                  7KB          7KB
[  496.834889][T18035] mfc_cache                  4KB          4KB
[  496.838195][T18035] UDP-Lite                 124KB        124KB
[  496.840894][T18035] MPTCP                    117KB        117KB
[  496.849307][T18035] tcp_bind2_bucket          16KB         16KB
[  496.851835][T18035] tcp_bind_bucket           16KB         16KB
[  496.855180][T18035] inet_peer                 12KB         12KB
[  496.886286][T18035] xfrm_state               159KB        159KB
[  496.893790][T18035] ip_fib_trie               40KB         40KB
[  496.896709][T18035] ip_fib_alias              94KB        110KB
[  496.899291][T18035] rtable                   102KB        116KB
[  496.901839][T18035] PING                      91KB         91KB
[  496.904379][T18035] RAW                      151KB        151KB
[  496.908280][T18035] UDP                      217KB        217KB
[  496.910657][T18035] tw_sock_TCP               23KB         23KB
[  496.913220][T18035] request_sock_TCP          23KB         23KB
[  496.915328][T18035] TCP                      395KB        541KB
[  496.917345][T18035] hugetlbfs_inode_cache        158KB        158KB
[  496.919448][T18035] fscache_cookie_jar         23KB         23KB
[  496.921452][T18035] netfs_subrequest         140KB        171KB
[  496.923860][T18035] netfs_request            269KB        334KB
[  496.926406][T18035] bio-280                   15KB         15KB
[  496.929146][T18035] ep_head                   16KB         16KB
[  496.931204][T18035] eventpoll_pwq             19KB         19KB
[  496.933126][T18035] eventpoll_epi             43KB         59KB
[  496.935022][T18035] inotify_inode_mark         27KB         27KB
[  496.936992][T18035] sgpool-128                29KB         29KB
[  496.939385][T18035] sgpool-64                 31KB         31KB
[  496.941551][T18035] sgpool-32                283KB        315KB
[  496.943577][T18035] sgpool-16                109KB        109KB
[  496.945548][T18035] sgpool-8                  93KB         93KB
[  496.947493][T18035] bio_crypt_ctx              7KB          7KB
[  496.949823][T18035] bio_integrity_data          4KB          4KB
[  496.951983][T18035] request_queue            255KB        255KB
[  496.953967][T18035] blkdev_ioc                23KB         23KB
[  496.955981][T18035] bio-200                  433KB        472KB
[  496.958067][T18035] biovec-max               748KB        986KB
[  496.960766][T18035] biovec-64                378KB        409KB
[  496.962782][T18035] biovec-16                 62KB         62KB
[  496.963926][T18047] No source specified
[  496.964750][T18035] khugepaged_mm_slot         15KB         15KB
[  496.967988][T18035] ksm_mm_slot                4KB          4KB
[  496.970011][T18035] ksm_stable_node            3KB          3KB
[  496.972166][T18035] ksm_rmap_item             11KB         11KB
[  496.974178][T18035] user_namespace            15KB         15KB
[  496.976120][T18035] uid_cache                 31KB         31KB
[  496.978099][T18035] iommu_iova_magazine       1008KB       1008KB
[  496.981576][T18035] iommu_iova               232KB        232KB
[  496.983573][T18035] dmaengine-unmap-256         30KB         30KB
[  496.985601][T18035] dmaengine-unmap-128         30KB         30KB
[  496.987669][T18035] dmaengine-unmap-16          4KB          4KB
[  496.989710][T18035] dmaengine-unmap-2          4KB          4KB
[  496.991709][T18035] QIPCRTR                   63KB         63KB
[  496.994085][T18035] audit_buffer              19KB         19KB
[  496.996033][T18035] skbuff_ext_cache          52KB         68KB
[  496.998023][T18035] skbuff_small_head       2194KB       2223KB
[  496.999924][T18035] skbuff_fclone_cache        329KB        437KB
[  497.001961][T18035] skbuff_head_cache       1640KB       1687KB
[  497.002555][T18047] overlayfs: failed to resolve './file0': -2
[  497.004186][T18035] configfs_dir_cache         12KB         12KB
[  497.008965][T18035] file_lease_cache          31KB         31KB
[  497.011077][T18035] file_lock_cache           47KB         47KB
[  497.013086][T18035] file_lock_ctx             19KB         19KB
[  497.023549][T18035] fsnotify_mark_connector         15KB         15KB
[  497.025921][T18035] posix_timers_cache         32KB         32KB
[  497.028014][T18035] taskstats                 61KB         61KB
[  497.030088][T18035] mem_cgroup_per_node        144KB        154KB
[  497.031961][T18049] overlayfs: unescaped trailing colons in lowerdir mount option.
[  497.032121][T18035] mem_cgroup               117KB        117KB
[  497.037475][T18035] proc_dir_entry           749KB        789KB
[  497.039511][T18035] pde_opener                15KB         15KB
[  497.041506][T18035] seq_file                  85KB        156KB
[  497.043620][T18035] sigqueue                  47KB         86KB
[  497.045847][T18035] shmem_inode_cache       7935KB       8221KB
[  497.047671][T18035] kernfs_iattrs_cache         15KB         15KB
[  497.049970][T18035] kernfs_node_cache      33715KB      34361KB
[  497.055076][T18035] mnt_cache                104KB        133KB
[  497.057200][T18035] bfilp                     31KB         31KB
[  497.059208][T18035] filp                     340KB        559KB
[  497.061114][T18035] names_cache             2656KB       2737KB
[  497.063035][T18035] net_namespace            163KB        163KB
[  497.064942][T18035] ima_iint_cache            55KB         55KB
[  497.067116][T18035] lsm_inode_cache         1512KB       1712KB
[  497.070057][T18035] lsm_file_cache           129KB        168KB
[  497.072036][T18035] key_jar                   39KB         39KB
[  497.084922][T18035] uts_namespace             31KB         31KB
[  497.087047][T18035] nsproxy                   15KB         15KB
[  497.089012][T18035] vm_area_struct           813KB        984KB
[  497.091233][T18035] fs_cache                  69KB         92KB
[  497.093130][T18035] files_cache              353KB        382KB
[  497.094978][T18035] signal_cache             912KB       1883KB
[  497.096923][T18035] sighand_cache           1253KB       2014KB
[  497.099016][T18035] task_struct             4359KB       4839KB
[  497.101068][T18035] cred                     175KB        372KB
[  497.103629][T18035] anon_vma_chain           258KB        311KB
[  497.105468][T18035] anon_vma                 294KB        470KB
[  497.107279][T18035] pid                      216KB        409KB
[  497.109071][T18035] Acpi-Operand             220KB        340KB
[  497.110858][T18035] Acpi-ParseExt             90KB         90KB
[  497.113062][T18035] Acpi-Parse                43KB         75KB
[  497.114850][T18035] Acpi-State                63KB         98KB
[  497.116568][T18035] Acpi-Namespace            52KB         52KB
[  497.118304][T18035] shared_policy_node          4KB          4KB
[  497.120103][T18035] numa_policy               15KB         15KB
[  497.122043][T18035] perf_event                31KB         31KB
[  497.123762][T18035] trace_event_file         540KB        540KB
[  497.125520][T18035] ftrace_event_field       1008KB       1008KB
[  497.127317][T18035] pool_workqueue          2082KB       2144KB
[  497.129079][T18035] maple_node               621KB       1320KB
[  497.130864][T18035] task_group                30KB         30KB
[  497.132714][T18035] mm_struct                505KB        620KB
[  497.134438][T18035] vmap_area                434KB        526KB
[  497.136181][T18035] debug_objects_cache       2610KB       2874KB
[  497.137990][T18035] page->ptl                135KB        185KB
[  497.139766][T18035] kmalloc-cg-8k           1968KB       2048KB
[  497.141519][T18035] kmalloc-cg-4k          16520KB      17312KB
[  497.143317][T18035] kmalloc-cg-2k          11256KB      11904KB
[  497.144999][T18035] kmalloc-cg-1k           2288KB       2560KB
[  497.146680][T18035] kmalloc-cg-512          1675KB       1680KB
[  497.148432][T18035] kmalloc-cg-256           542KB        600KB
[  497.150221][T18035] kmalloc-cg-128           280KB        304KB
[  497.151987][T18035] kmalloc-cg-64            106KB        132KB
[  497.153884][T18035] kmalloc-cg-32             99KB        156KB
[  497.155739][T18035] kmalloc-cg-16             36KB         48KB
[  497.157472][T18035] kmalloc-cg-8              36KB         40KB
[  497.159286][T18035] kmalloc-cg-192           107KB        120KB
[  497.161028][T18035] kmalloc-cg-96             88KB         88KB
[  497.162799][T18035] kmalloc-8k              6800KB       7104KB
[  497.164690][T18035] kmalloc-4k             23424KB      23848KB
[  497.166729][T18035] kmalloc-2k             13560KB      14848KB
[  497.168531][T18035] kmalloc-1k              9754KB      11360KB
[  497.173626][T18035] kmalloc-512             9827KB      10784KB
[  497.175895][T18035] kmalloc-256             4306KB       4544KB
[  497.177958][T18035] kmalloc-128             1516KB       1912KB
[  497.179879][T18035] kmalloc-64              8707KB      12132KB
[  497.181675][T18035] kmalloc-32              2194KB       2452KB
[  497.183698][T18035] kmalloc-16               527KB        532KB
[  497.185969][T18035] kmalloc-8               1109KB       1412KB
[  497.187970][T18035] kmalloc-192             1939KB       1968KB
[  497.190074][T18035] kmalloc-96              2729KB       3532KB
[  497.191967][T18035] kmem_cache_node          224KB        228KB
[  497.193712][T18035] kmem_cache               195KB        195KB
[  497.195610][T18035] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=syz0,mems_allowed=0-1,global_oom,task_memcg=/syz0,task=syz.0.3163,pid=18035,uid=0
[  497.202081][T18035] Out of memory (oom_kill_allocating_task): Killed process 18035 (syz.0.3163) total-vm:103740kB, anon-rss:0kB, file-rss:20880kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  498.191462][T18064] openvswitch: netlink: VXLAN extension message has 3 unknown bytes.
[  498.480267][T18072] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3173'.
[  498.784620][T18081] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3176'.
[  500.096519][   T40] audit: type=1804 audit(1756657653.392:3003): pid=18107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3181" name="/newroot/171/file0" dev="tmpfs" ino=955 res=1 errno=0
[  500.125283][T18104] /dev/sr0: Can't open blockdev
[  501.562128][T18132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3189'.
[  502.169353][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  503.702996][T18163] netlink: 7 bytes leftover after parsing attributes in process `syz.1.3200'.
[  504.605611][T18178] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  504.609086][T18178] syzkaller0: entered promiscuous mode
[  504.611417][T18178] syzkaller0: entered allmulticast mode
[  504.628909][T18178] tipc: Resetting bearer <eth:syzkaller0>
[  504.642706][T18178] netlink: 'syz.0.3203': attribute type 10 has an invalid length.
[  504.660193][T18178] Ã: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  504.666399][T18180] input: syz1 as /devices/virtual/input/input39
[  504.671679][T18177] tipc: Resetting bearer <eth:syzkaller0>
[  504.690262][T18177] tipc: Disabling bearer <eth:syzkaller0>
[  504.738467][T18184] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3206'.
[  504.771696][T18188] FAULT_INJECTION: forcing a failure.
[  504.771696][T18188] name failslab, interval 1, probability 0, space 0, times 0
[  504.777057][T18188] CPU: 3 UID: 0 PID: 18188 Comm: syz.3.3208 Not tainted syzkaller #0 PREEMPT(full) 
[  504.777078][T18188] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  504.777087][T18188] Call Trace:
[  504.777093][T18188]  <TASK>
[  504.777100][T18188]  dump_stack_lvl+0x16c/0x1f0
[  504.777127][T18188]  should_fail_ex+0x512/0x640
[  504.777148][T18188]  ? __kmalloc_noprof+0xbf/0x510
[  504.777167][T18188]  ? ovl_lookup+0x1243/0x21a0
[  504.777184][T18188]  should_failslab+0xc2/0x120
[  504.777204][T18188]  __kmalloc_noprof+0xd2/0x510
[  504.777227][T18188]  ovl_lookup+0x1243/0x21a0
[  504.777246][T18188]  ? find_held_lock+0x2b/0x80
[  504.777277][T18188]  ? __pfx_ovl_lookup+0x10/0x10
[  504.777295][T18188]  ? d_alloc_parallel+0x828/0x1480
[  504.777320][T18188]  ? aa_get_newest_label+0xd2/0x250
[  504.777341][T18188]  ? __lock_acquire+0xb97/0x1ce0
[  504.777365][T18188]  ? lockdep_init_map_type+0x5c/0x280
[  504.777389][T18188]  __lookup_slow+0x24e/0x460
[  504.777413][T18188]  ? __pfx___lookup_slow+0x10/0x10
[  504.777447][T18188]  ? lookup_fast+0x156/0x610
[  504.777464][T18188]  walk_component+0x353/0x5b0
[  504.777478][T18188]  path_lookupat+0x142/0x6d0
[  504.777489][T18188]  ? __lock_acquire+0xb97/0x1ce0
[  504.777504][T18188]  filename_lookup+0x224/0x5f0
[  504.777517][T18188]  ? __pfx_filename_lookup+0x10/0x10
[  504.777541][T18188]  ? getname_flags.part.0+0x1c5/0x550
[  504.777560][T18188]  user_path_at+0x3a/0x60
[  504.777572][T18188]  __ia32_sys_chdir+0xbe/0x270
[  504.777586][T18188]  ? ksys_write+0x1ac/0x250
[  504.777599][T18188]  ? __pfx___ia32_sys_chdir+0x10/0x10
[  504.777614][T18188]  ? rcu_is_watching+0x12/0xc0
[  504.777627][T18188]  __do_fast_syscall_32+0x7c/0x3a0
[  504.777644][T18188]  do_fast_syscall_32+0x32/0x80
[  504.777659][T18188]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  504.777673][T18188] RIP: 0023:0xf70fe579
[  504.777683][T18188] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  504.777694][T18188] RSP: 002b:00000000f54ee55c EFLAGS: 00000296 ORIG_RAX: 000000000000000c
[  504.777705][T18188] RAX: ffffffffffffffda RBX: 0000000080000140 RCX: 0000000000000000
[  504.777712][T18188] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  504.777719][T18188] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  504.777725][T18188] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  504.777740][T18188] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  504.777753][T18188]  </TASK>
[  505.558130][T18209] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3213'.
[  505.561663][T18209] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3213'.
[  505.576429][T18211] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3211'.
[  505.594056][T18209] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3213'.
[  505.597050][T18209] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3213'.
[  505.618201][ T6057] Process accounting resumed
[  505.683966][T18209] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3213'.
[  505.694512][T18209] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3213'.
[  505.698888][T18215] input: syz1 as /devices/virtual/input/input40
[  505.721226][T18211] batadv1: entered allmulticast mode
[  506.283409][T18229] bond0: (slave netdevsim0): Releasing backup interface
[  506.305561][T18231] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3218'.
[  506.985692][T18228] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.099544][T18228] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.190720][T18228] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.283191][T18228] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.365044][   T12] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  507.377834][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  507.392776][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  507.396545][   T12] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  507.618600][T18255] nbd2: detected capacity change from 0 to 4
[  507.645378][T18257] block nbd2: shutting down sockets
[  507.648818][    C2] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.652424][    C2] buffer_io_error: 11 callbacks suppressed
[  507.652436][    C2] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.653236][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.659659][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.662206][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.664922][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.667268][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.669934][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.672431][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.675280][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.677615][T14423] ldm_validate_partition_table(): Disk read failed.
[  507.679607][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.682286][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.684966][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.687688][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.690058][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.692721][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.695443][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.698142][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.700575][T14423] Dev nbd2: unable to read RDB block 0
[  507.702253][T14423] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  507.705371][T14423] Buffer I/O error on dev nbd2, logical block 0, async page read
[  507.707811][T14423]  nbd2: unable to read partition table
[  507.709565][T14423] nbd2: partition table beyond EOD, truncated
[  507.719062][T14423] ldm_validate_partition_table(): Disk read failed.
[  507.721274][T14423] Dev nbd2: unable to read RDB block 0
[  507.723030][T14423]  nbd2: unable to read partition table
[  507.724845][T14423] nbd2: partition table beyond EOD, truncated
[  508.166733][T18262] : entered promiscuous mode
[  508.169668][T18266] overlay: ./file1 is not a directory
[  508.172122][T18262] : left promiscuous mode
[  509.002752][T18296] geneve2: entered promiscuous mode
[  509.004413][T18296] geneve2: entered allmulticast mode
[  509.155788][T18308] FAULT_INJECTION: forcing a failure.
[  509.155788][T18308] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  509.161027][T18308] CPU: 0 UID: 0 PID: 18308 Comm: syz.2.3239 Not tainted syzkaller #0 PREEMPT(full) 
[  509.161042][T18308] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  509.161048][T18308] Call Trace:
[  509.161052][T18308]  <TASK>
[  509.161057][T18308]  dump_stack_lvl+0x16c/0x1f0
[  509.161076][T18308]  should_fail_ex+0x512/0x640
[  509.161094][T18308]  _copy_from_user+0x2e/0xd0
[  509.161111][T18308]  get_compat_msghdr+0xa7/0x170
[  509.161125][T18308]  ? __pfx_get_compat_msghdr+0x10/0x10
[  509.161140][T18308]  ? __pfx__kstrtoull+0x10/0x10
[  509.161155][T18308]  ___sys_sendmsg+0x1ae/0x1d0
[  509.161171][T18308]  ? __pfx____sys_sendmsg+0x10/0x10
[  509.161201][T18308]  __sys_sendmmsg+0x2f9/0x420
[  509.161217][T18308]  ? __pfx___sys_sendmmsg+0x10/0x10
[  509.161236][T18308]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  509.161256][T18308]  ? fput+0x9b/0xd0
[  509.161275][T18308]  ? ksys_write+0x1ac/0x250
[  509.161291][T18308]  ? __pfx_ksys_write+0x10/0x10
[  509.161312][T18308]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  509.161332][T18308]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  509.161356][T18308]  __do_fast_syscall_32+0x7c/0x3a0
[  509.161381][T18308]  do_fast_syscall_32+0x32/0x80
[  509.161405][T18308]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  509.161426][T18308] RIP: 0023:0xf709e579
[  509.161440][T18308] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  509.161457][T18308] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  509.161475][T18308] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[  509.161486][T18308] RDX: 000000000000009f RSI: 0000000000000000 RDI: 0000000000000000
[  509.161497][T18308] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  509.161507][T18308] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  509.161518][T18308] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  509.161542][T18308]  </TASK>
[  509.329737][T18316] __nla_validate_parse: 7 callbacks suppressed
[  509.329753][T18316] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3241'.
[  509.696754][T18339] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3247'.
[  509.763506][T18348] loop6: detected capacity change from 0 to 2560
[  509.766071][T18348] ldm_validate_partition_table(): Disk read failed.
[  509.769552][T18348] Dev loop6: unable to read RDB block 0
[  509.771610][T18348]  loop6: unable to read partition table
[  509.773439][T18348] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  509.880877][T18356] netlink: 'syz.0.3253': attribute type 4 has an invalid length.
[  510.215845][T18365] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3256'.
[  510.371844][T18382] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond0, syncid = 8, id = 0
[  510.375094][T18381] IPVS: stopping backup sync thread 18382 ...
[  510.382257][T18381] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3262'.
[  510.385573][T18381] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3262'.
[  510.527444][ T6096] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  510.626398][T18389] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3264'.
[  510.708163][ T6096] usb 5-1: Using ep0 maxpacket: 8
[  510.713555][ T6096] usb 5-1: config 0 interface 0 has no altsetting 0
[  510.715836][ T6096] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  510.718891][ T6096] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.723320][ T6096] usb 5-1: config 0 descriptor??
[  511.007602][   T10] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  511.168284][ T6096] mcp2221 0003:04D8:00DD.002B: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  511.178777][   T10] usb 6-1: Using ep0 maxpacket: 8
[  511.184205][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  511.189955][   T10] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  511.193662][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  511.198912][   T10] usb 6-1: config 0 descriptor??
[  511.384278][   T59] usb 5-1: USB disconnect, device number 21
[  511.428693][   T10] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  511.441798][   T24] usb 6-1: USB disconnect, device number 19
[  511.480634][T18404] netlink: 7 bytes leftover after parsing attributes in process `syz.1.3267'.
[  511.493492][T18404] netlink: 7 bytes leftover after parsing attributes in process `syz.1.3267'.
[  511.835829][T18412] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3269'.
[  512.452706][T18431] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3275'.
[  512.739398][ T6057] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  512.942849][ T6057] usb 7-1: Using ep0 maxpacket: 32
[  512.957891][ T6057] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 225, changing to 11
[  512.963867][ T6057] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  512.977610][ T6057] usb 7-1: New USB device found, idVendor=05ac, idProduct=025b, bcdDevice= 0.40
[  512.980652][ T6057] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.983107][ T6057] usb 7-1: Product: syz
[  512.984438][ T6057] usb 7-1: Manufacturer: syz
[  512.991497][ T6057] usb 7-1: SerialNumber: syz
[  513.451409][ T6057] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/input/input41
[  514.771125][   T34] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  515.226946][T18492] netlink: 'syz.3.3292': attribute type 4 has an invalid length.
[  515.439741][T18499] __nla_validate_parse: 9 callbacks suppressed
[  515.439788][T18499] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3293'.
[  515.808849][ T6058] usb 7-1: USB disconnect, device number 29
[  515.808894][ T5375] bcm5974 7-1:1.0: could not read from device
[  516.363609][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  516.363689][ T5981] Bluetooth: hci2: command 0x1003 tx timeout
[  516.502023][   T40] audit: type=1804 audit(1756657668.733:3004): pid=18519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3294" name="/newroot/191/file0" dev="tmpfs" ino=1039 res=1 errno=0
[  516.535250][T18515] /dev/sr0: Can't open blockdev
[  516.662911][   T34] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  516.834067][   T34] usb 6-1: Using ep0 maxpacket: 8
[  516.837611][   T34] usb 6-1: config 0 interface 0 has no altsetting 0
[  516.844818][   T34] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  516.848278][   T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  516.853049][   T34] usb 6-1: config 0 descriptor??
[  517.146801][T18530] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3302'.
[  517.301566][   T34] mcp2221 0003:04D8:00DD.002C: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  517.484260][T18538] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3305'.
[  517.514062][T18541] input: syz1 as /devices/virtual/input/input42
[  517.526877][ T6057] usb 6-1: USB disconnect, device number 21
[  517.566371][T18538] blk_print_req_error: 19 callbacks suppressed
[  517.566390][T18538] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  517.589464][T18538] FAT-fs (loop1): unable to read boot sector
[  518.842918][T18575] wg2: entered promiscuous mode
[  518.845086][T18575] wg2: entered allmulticast mode
[  518.847194][T18575] netlink: 'syz.0.3315': attribute type 4 has an invalid length.
[  518.849605][T18575] netlink: 17 bytes leftover after parsing attributes in process `syz.0.3315'.
[  518.917416][T18586] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3318'.
[  519.214183][T18621] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3321'.
[  519.379228][T18635] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3326'.
[  519.393208][T18635] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3326'.
[  519.407213][T18635] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3326'.
[  520.867541][T18669] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3334'.
[  520.870435][T18669] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3334'.
[  520.931844][T18676] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3337'.
[  520.939108][ T6057] Process accounting resumed
[  520.967714][T18669] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3334'.
[  520.971016][T18669] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3334'.
[  521.120688][T18669] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3334'.
[  521.181623][T18692] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3343'.
[  521.182384][T18690] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3342'.
[  521.193085][T18669] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3334'.
[  521.654361][T18700] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3344'.
[  523.387293][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  523.387904][ T5981] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  523.390773][ T5982] Bluetooth: hci3: command 0x1003 tx timeout
[  523.515906][T18737] ./cgroup: Can't lookup blockdev
[  523.518825][T18737] netlink: 'syz.2.3357': attribute type 4 has an invalid length.
[  524.249841][T18750] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4376 (8752 ns) > initial count (64 ns). Using initial count to start timer.
[  524.711951][   T40] audit: type=1804 audit(1756657676.413:3005): pid=18765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3365" name="/newroot/284/file0" dev="tmpfs" ino=1584 res=1 errno=0
[  525.036495][T18764] /dev/sr0: Can't open blockdev
[  526.228129][T18785] vlan2: entered promiscuous mode
[  526.230713][T18785] vlan2: entered allmulticast mode
[  526.236557][T18785] hsr_slave_1: entered allmulticast mode
[  526.311184][T18785] __nla_validate_parse: 7 callbacks suppressed
[  526.311200][T18785] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3371'.
[  526.466196][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  526.466619][ T5981] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  527.079503][T18805] loop6: detected capacity change from 0 to 2561
[  527.112446][T18805] buffer_io_error: 40 callbacks suppressed
[  527.112460][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.118587][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.122729][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.126012][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.129392][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.132973][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.136565][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.141966][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.145469][T18805] ldm_validate_partition_table(): Disk read failed.
[  527.148254][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.151908][T18805] Buffer I/O error on dev loop6, logical block 0, async page read
[  527.155539][T18805] Dev loop6: unable to read RDB block 0
[  527.158628][T18805]  loop6: unable to read partition table
[  527.182539][T18805] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  527.198311][ T5390] ldm_validate_partition_table(): Disk read failed.
[  527.200822][ T5390] Dev loop6: unable to read RDB block 0
[  527.202797][ T5390]  loop6: unable to read partition table
[  528.278144][T18830] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3381'.
[  529.073239][T18848] syz.2.3387 (18848): attempted to duplicate a private mapping with mremap.  This is not supported.
[  529.844779][ T6061] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  530.015652][ T6061] usb 6-1: Using ep0 maxpacket: 16
[  530.030037][ T6061] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  530.035038][ T6061] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  530.048669][ T6061] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  530.052963][ T6061] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  530.060482][ T6061] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  530.067619][ T6061] usb 6-1: config 0 descriptor??
[  530.333339][ T6061] usbhid 6-1:0.0: can't add hid device: -71
[  530.335246][ T6061] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  530.339905][ T6061] usb 6-1: USB disconnect, device number 22
[  530.406906][T18876] lo speed is unknown, defaulting to 1000
[  531.326800][   T40] audit: type=1804 audit(1756657682.596:3006): pid=18901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3396" name="/newroot/230/file0" dev="tmpfs" ino=1258 res=1 errno=0
[  531.534698][T18895] /dev/sr0: Can't open blockdev
[  532.192668][T18915] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3403'.
[  532.195655][T18915] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3403'.
[  532.259352][T18915] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3403'.
[  532.262520][T18915] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3403'.
[  532.510229][T18915] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3403'.
[  532.513126][T18915] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3403'.
[  532.678925][T18933] loop6: detected capacity change from 0 to 2562
[  532.681775][T14423] buffer_io_error: 32 callbacks suppressed
[  532.681784][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.686083][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.689153][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.691816][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.694297][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.696883][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.702398][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.704973][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.707480][T14423] ldm_validate_partition_table(): Disk read failed.
[  532.711759][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.714682][T14423] Buffer I/O error on dev loop6, logical block 0, async page read
[  532.717460][T14423] Dev loop6: unable to read RDB block 0
[  532.719587][T14423]  loop6: unable to read partition table
[  532.724100][T18933] ldm_validate_partition_table(): Disk read failed.
[  532.726906][T18933] Dev loop6: unable to read RDB block 0
[  532.729305][T18933]  loop6: unable to read partition table
[  532.731345][T18933] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  532.863421][T18939] netlink: 3160 bytes leftover after parsing attributes in process `syz.2.3411'.
[  532.940012][T18917] Process accounting resumed
[  533.002271][T18939] hsr_slave_1 (unregistering): left promiscuous mode
[  533.003019][T18943] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3412'.
[  533.268615][T18952] netlink: 'syz.3.3415': attribute type 4 has an invalid length.
[  533.471112][T18965] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3420'.
[  533.514357][T18968] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3421'.
[  534.274628][T18986] pim6reg1: entered promiscuous mode
[  534.276326][T18986] pim6reg1: entered allmulticast mode
[  534.676558][ T6139] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  534.890336][ T6139] usb 5-1: Using ep0 maxpacket: 8
[  534.896307][ T6139] usb 5-1: config 0 interface 0 has no altsetting 0
[  534.898397][ T6139] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  534.901329][ T6139] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  534.905588][ T6139] usb 5-1: config 0 descriptor??
[  534.950935][T19003] autofs: Unknown parameter '0x0000000000000000'
[  535.244307][T19006] fuse: Invalid rootmode
[  535.397357][ T6139] mcp2221 0003:04D8:00DD.002D: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  535.602367][   T59] usb 5-1: USB disconnect, device number 22
[  535.606687][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  535.607134][ T5981] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  535.998250][T19023] input: syz0 as /devices/virtual/input/input43
[  537.290380][T19048] FAULT_INJECTION: forcing a failure.
[  537.290380][T19048] name failslab, interval 1, probability 0, space 0, times 0
[  537.294365][T19048] CPU: 3 UID: 0 PID: 19048 Comm: syz.1.3446 Not tainted syzkaller #0 PREEMPT(full) 
[  537.294379][T19048] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  537.294386][T19048] Call Trace:
[  537.294391][T19048]  <TASK>
[  537.294396][T19048]  dump_stack_lvl+0x16c/0x1f0
[  537.294427][T19048]  should_fail_ex+0x512/0x640
[  537.294448][T19048]  ? metadata_dst_alloc+0x25/0x60
[  537.294462][T19048]  should_failslab+0xc2/0x120
[  537.294477][T19048]  __kmalloc_noprof+0xd2/0x510
[  537.294489][T19048]  ? __pfx_tcf_idr_check_alloc+0x10/0x10
[  537.294504][T19048]  metadata_dst_alloc+0x25/0x60
[  537.294517][T19048]  tunnel_key_init+0xaa4/0x1960
[  537.294532][T19048]  ? tcf_action_init_1+0x278/0x6c0
[  537.294541][T19048]  ? tcf_action_init+0x432/0xa50
[  537.294551][T19048]  ? tcf_action_add+0xee/0x5c0
[  537.294561][T19048]  ? tc_ctl_action+0x35b/0x470
[  537.294570][T19048]  ? rtnetlink_rcv_msg+0x3c6/0xe90
[  537.294585][T19048]  ? netlink_rcv_skb+0x158/0x420
[  537.294600][T19048]  ? netlink_sendmsg+0x8d1/0xdd0
[  537.294618][T19048]  ? __pfx_tunnel_key_init+0x10/0x10
[  537.294643][T19048]  ? tcf_action_init_1+0x2d2/0x6c0
[  537.294660][T19048]  ? tcf_action_init_1+0x460/0x6c0
[  537.294669][T19048]  tcf_action_init_1+0x460/0x6c0
[  537.294682][T19048]  ? __pfx_tcf_action_init_1+0x10/0x10
[  537.294700][T19048]  ? __nla_parse+0x40/0x60
[  537.294712][T19048]  tcf_action_init+0x432/0xa50
[  537.294728][T19048]  ? __pfx_tcf_action_init+0x10/0x10
[  537.294749][T19048]  ? arch_stack_walk+0xa6/0x100
[  537.294773][T19048]  ? kasan_save_free_info+0x3b/0x60
[  537.294789][T19048]  ? __kasan_slab_free+0x60/0x70
[  537.294801][T19048]  ? kmem_cache_free+0x2d1/0x4d0
[  537.294812][T19048]  ? kfree_skbmem+0x1a4/0x1f0
[  537.294821][T19048]  ? consume_skb+0xcc/0x100
[  537.294836][T19048]  ? nlmon_xmit+0xa5/0xe0
[  537.294850][T19048]  ? dev_hard_start_xmit+0x94/0x740
[  537.294861][T19048]  ? __dev_queue_xmit+0xa46/0x4490
[  537.294871][T19048]  ? netlink_deliver_tap+0xa87/0xd30
[  537.294885][T19048]  ? netlink_unicast+0x64c/0x870
[  537.294898][T19048]  ? netlink_sendmsg+0x8d1/0xdd0
[  537.294914][T19048]  tcf_action_add+0xee/0x5c0
[  537.294927][T19048]  ? __pfx_tcf_action_add+0x10/0x10
[  537.294958][T19048]  ? __nla_parse+0x40/0x60
[  537.294970][T19048]  tc_ctl_action+0x35b/0x470
[  537.294982][T19048]  ? __pfx_tc_ctl_action+0x10/0x10
[  537.294998][T19048]  ? __pfx_tc_ctl_action+0x10/0x10
[  537.295009][T19048]  rtnetlink_rcv_msg+0x3c6/0xe90
[  537.295026][T19048]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  537.295045][T19048]  ? ref_tracker_free+0x37c/0x830
[  537.295062][T19048]  netlink_rcv_skb+0x158/0x420
[  537.295077][T19048]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  537.295093][T19048]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  537.295113][T19048]  ? netlink_deliver_tap+0x1ae/0xd30
[  537.295130][T19048]  netlink_unicast+0x5a7/0x870
[  537.295146][T19048]  ? __pfx_netlink_unicast+0x10/0x10
[  537.295160][T19048]  ? __asan_memset+0x23/0x50
[  537.295171][T19048]  ? __build_skb_around+0x278/0x3b0
[  537.295182][T19048]  ? is_vmalloc_addr+0x86/0xa0
[  537.295197][T19048]  netlink_sendmsg+0x8d1/0xdd0
[  537.295213][T19048]  ? __pfx_netlink_sendmsg+0x10/0x10
[  537.295230][T19048]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  537.295244][T19048]  ____sys_sendmsg+0xa98/0xc70
[  537.295256][T19048]  ? __pfx_____sys_sendmsg+0x10/0x10
[  537.295266][T19048]  ? get_compat_msghdr+0x11a/0x170
[  537.295282][T19048]  ? __pfx__kstrtoull+0x10/0x10
[  537.295298][T19048]  ___sys_sendmsg+0x134/0x1d0
[  537.295313][T19048]  ? __pfx____sys_sendmsg+0x10/0x10
[  537.295344][T19048]  __sys_sendmmsg+0x2f9/0x420
[  537.295360][T19048]  ? __pfx___sys_sendmmsg+0x10/0x10
[  537.295379][T19048]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  537.295399][T19048]  ? fput+0x9b/0xd0
[  537.295414][T19048]  ? ksys_write+0x1ac/0x250
[  537.295427][T19048]  ? __pfx_ksys_write+0x10/0x10
[  537.295442][T19048]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  537.295456][T19048]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  537.295472][T19048]  __do_fast_syscall_32+0x7c/0x3a0
[  537.295488][T19048]  do_fast_syscall_32+0x32/0x80
[  537.295503][T19048]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  537.295516][T19048] RIP: 0023:0xf70ee579
[  537.295525][T19048] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  537.295536][T19048] RSP: 002b:00000000f54de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  537.295547][T19048] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[  537.295554][T19048] RDX: 000000000000009f RSI: 0000000000000000 RDI: 0000000000000000
[  537.295560][T19048] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  537.295578][T19048] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  537.295585][T19048] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  537.295599][T19048]  </TASK>
[  538.127613][   T40] audit: type=1804 audit(1756657688.956:3007): pid=19063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3448" name="/newroot/240/file0" dev="tmpfs" ino=1310 res=1 errno=0
[  538.183778][T19058] /dev/sr0: Can't open blockdev
[  538.428435][T19068] __nla_validate_parse: 6 callbacks suppressed
[  538.428448][T19068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3450'.
[  539.080119][T19079] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3453'.
[  539.113150][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  539.113348][ T5981] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  539.182542][T19079] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.290500][T19079] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.414239][T19079] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.423332][   T34] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  539.523701][T19079] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.591976][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  539.600087][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  539.603147][   T34] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  539.621940][   T34] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  539.626520][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  539.638013][   T34] usb 7-1: config 0 descriptor??
[  539.640009][T18604] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  539.649105][T18604] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  539.658920][T18608] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  539.669975][T18608] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  540.077557][   T34] plantronics 0003:047F:FFFF.002E: reserved main item tag 0xd
[  540.090502][   T34] plantronics 0003:047F:FFFF.002E: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  540.290275][T19082] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  540.293162][T19082] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  540.366864][T19082] netlink: 'syz.2.3454': attribute type 4 has an invalid length.
[  540.371174][ T6139] usb 7-1: USB disconnect, device number 30
[  540.427512][T19103] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3460'.
[  540.689375][T19110] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  540.692116][T19110] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  540.696576][T19110] overlayfs: missing 'lowerdir'
[  541.390110][T19127] sp0: Synchronizing with TNC
[  541.627646][T19142] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3471'.
[  541.901890][T19151] input: syz1 as /devices/virtual/input/input45
[  542.234838][    T9] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  542.245554][ T6139] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  542.395199][    T9] usb 7-1: Using ep0 maxpacket: 16
[  542.413520][    T9] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  542.416524][ T6139] usb 8-1: Using ep0 maxpacket: 8
[  542.417979][    T9] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 180, changing to 11
[  542.427735][    T9] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid maxpacket 26584, setting to 1024
[  542.435513][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  542.447854][ T6139] usb 8-1: config 0 interface 0 has no altsetting 0
[  542.455713][ T6139] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  542.455732][    T9] usb 7-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  542.458730][ T6139] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  542.461682][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  542.461702][    T9] usb 7-1: Product: syz
[  542.461715][    T9] usb 7-1: Manufacturer: syz
[  542.461730][    T9] usb 7-1: SerialNumber: syz
[  542.465178][    T9] usb 7-1: config 0 descriptor??
[  542.487414][T19155] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  542.491280][ T6139] usb 8-1: config 0 descriptor??
[  542.710422][T19155] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  542.714450][    T9] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input46
[  542.783366][T19176] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3480'.
[  543.006524][ T1333] usb 7-1: USB disconnect, device number 31
[  543.044779][ T6139] mcp2221 0003:04D8:00DD.002F: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  543.295979][ T1333] usb 8-1: USB disconnect, device number 22
[  543.488051][T19179] Bluetooth: MGMT ver 1.23
[  543.551648][T19187] FAULT_INJECTION: forcing a failure.
[  543.551648][T19187] name failslab, interval 1, probability 0, space 0, times 0
[  543.555862][T19187] CPU: 0 UID: 0 PID: 19187 Comm: syz.0.3485 Not tainted syzkaller #0 PREEMPT(full) 
[  543.555878][T19187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  543.555885][T19187] Call Trace:
[  543.555889][T19187]  <TASK>
[  543.555894][T19187]  dump_stack_lvl+0x16c/0x1f0
[  543.555913][T19187]  should_fail_ex+0x512/0x640
[  543.555928][T19187]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  543.555944][T19187]  should_failslab+0xc2/0x120
[  543.555958][T19187]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  543.555972][T19187]  ? __alloc_skb+0x2b2/0x380
[  543.555988][T19187]  __alloc_skb+0x2b2/0x380
[  543.556001][T19187]  ? __pfx___alloc_skb+0x10/0x10
[  543.556013][T19187]  ? __pfx_tc_ctl_action+0x10/0x10
[  543.556030][T19187]  netlink_ack+0x15d/0xb80
[  543.556049][T19187]  netlink_rcv_skb+0x332/0x420
[  543.556064][T19187]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  543.556081][T19187]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  543.556100][T19187]  ? netlink_deliver_tap+0x1ae/0xd30
[  543.556117][T19187]  netlink_unicast+0x5a7/0x870
[  543.556134][T19187]  ? __pfx_netlink_unicast+0x10/0x10
[  543.556148][T19187]  ? __asan_memset+0x23/0x50
[  543.556182][T19187]  ? __build_skb_around+0x278/0x3b0
[  543.556195][T19187]  ? is_vmalloc_addr+0x86/0xa0
[  543.556210][T19187]  netlink_sendmsg+0x8d1/0xdd0
[  543.556227][T19187]  ? __pfx_netlink_sendmsg+0x10/0x10
[  543.556244][T19187]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  543.556258][T19187]  ____sys_sendmsg+0xa98/0xc70
[  543.556270][T19187]  ? __pfx_____sys_sendmsg+0x10/0x10
[  543.556280][T19187]  ? get_compat_msghdr+0x11a/0x170
[  543.556296][T19187]  ? __pfx__kstrtoull+0x10/0x10
[  543.556312][T19187]  ___sys_sendmsg+0x134/0x1d0
[  543.556327][T19187]  ? __pfx____sys_sendmsg+0x10/0x10
[  543.556357][T19187]  __sys_sendmmsg+0x2f9/0x420
[  543.556373][T19187]  ? __pfx___sys_sendmmsg+0x10/0x10
[  543.556391][T19187]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  543.556412][T19187]  ? fput+0x9b/0xd0
[  543.556427][T19187]  ? ksys_write+0x1ac/0x250
[  543.556439][T19187]  ? __pfx_ksys_write+0x10/0x10
[  543.556454][T19187]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  543.556468][T19187]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  543.556483][T19187]  __do_fast_syscall_32+0x7c/0x3a0
[  543.556500][T19187]  do_fast_syscall_32+0x32/0x80
[  543.556515][T19187]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  543.556528][T19187] RIP: 0023:0xf70be579
[  543.556537][T19187] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  543.556548][T19187] RSP: 002b:00000000f54ae55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  543.556560][T19187] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[  543.556570][T19187] RDX: 000000000000009f RSI: 0000000000000000 RDI: 0000000000000000
[  543.556579][T19187] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  543.556588][T19187] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  543.556598][T19187] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  543.556620][T19187]  </TASK>
[  543.708468][T19184] 9pnet_fd: Insufficient options for proto=fd
[  543.842662][T19197] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3487'.
[  544.103398][T19203] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3490'.
[  545.883364][   T40] audit: type=1804 audit(1756657696.215:3008): pid=19231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3495" name="/newroot/252/file0" dev="tmpfs" ino=1372 res=1 errno=0
[  545.934354][T19228] /dev/sr0: Can't open blockdev
[  546.287868][T19234] syz.2.3496 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  546.297439][ T5981] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  546.297940][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  546.361826][T19237] netlink: 'syz.2.3496': attribute type 9 has an invalid length.
[  546.426014][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  546.558755][T19252] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3501'.
[  548.017837][   T40] audit: type=1804 audit(1756657698.207:3009): pid=19289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3507" name="/newroot/256/file0" dev="tmpfs" ino=1395 res=1 errno=0
[  548.072514][T19288] /dev/sr0: Can't open blockdev
[  555.968805][T19337] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3515'.
[  556.444528][   T40] audit: type=1804 audit(1756657706.102:3010): pid=19346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3517" name="/newroot/259/file0" dev="tmpfs" ino=1411 res=1 errno=0
[  556.486054][T19343] /dev/sr0: Can't open blockdev
[  556.846692][T18587] Bluetooth: hci2: Frame reassembly failed (-84)
[  556.894574][T19357] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  557.728955][T19354] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  557.731102][T19354] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  557.738444][T19354] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  557.740486][T19354] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  557.742446][T19354] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  558.592529][T19387] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3527'.
[  559.040626][ T5981] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  559.042479][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  559.126164][ T5981] Bluetooth: hci4: command 0x041b tx timeout
[  559.192651][T19393] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3528'.
[  559.199694][T19393] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3528'.
[  559.256973][   T53] Process accounting resumed
[  559.262850][T19393] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3528'.
[  559.268813][T19393] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3528'.
[  559.310395][T19393] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3528'.
[  559.320707][T19393] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3528'.
[  559.353428][T19401] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3529'.
[  559.896091][ T5981] Bluetooth: hci1: command 0x0c1a tx timeout
[  559.896125][T18023] Bluetooth: hci5: command 0x0c1a tx timeout
[  560.429748][T19418] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3536'.
[  561.238922][T19411] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  561.240931][T19411] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  561.244591][T19411] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  561.721688][T19440] __nla_validate_parse: 2 callbacks suppressed
[  561.721701][T19440] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3540'.
[  561.744384][T19440] 8021q: adding VLAN 0 to HW filter on device Ã
[  561.752544][T19440] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  561.908073][   T40] audit: type=1804 audit(1756657711.210:3011): pid=19446 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3539" name="/newroot/325/file0" dev="tmpfs" ino=1815 res=1 errno=0
[  561.949187][T19444] /dev/sr0: Can't open blockdev
[  562.023123][   T10] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  562.183563][   T10] usb 7-1: device descriptor read/64, error -71
[  562.398612][T19451] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3542'.
[  562.493539][   T10] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  562.502848][T19454] fuse: Unknown parameter 'group_id00000000000000000000'
[  562.643329][ T5981] Bluetooth: hci4: command 0x041b tx timeout
[  562.653884][   T10] usb 7-1: device descriptor read/64, error -71
[  562.782730][   T10] usb usb7-port1: attempt power cycle
[  563.145730][   T10] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  563.178317][   T10] usb 7-1: device descriptor read/8, error -71
[  563.403061][ T5981] Bluetooth: hci1: command 0x0c1a tx timeout
[  563.405062][ T5981] Bluetooth: hci5: command 0x0c1a tx timeout
[  563.458451][   T10] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  563.488415][   T10] usb 7-1: device descriptor read/8, error -71
[  563.595238][   T10] usb usb7-port1: unable to enumerate USB device
[  563.941756][T19468] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3548'.
[  564.187635][T19486] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3550'.
[  564.941898][T19497] input: syz1 as /devices/virtual/input/input47
[  564.988233][T19499] mac80211_hwsim hwsim11 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  564.995558][T19097] IPVS: starting estimator thread 0...
[  564.997676][T19499] IPVS: lblc: FWM 3 0x00000003 - no destination available
[  565.112745][T19501] IPVS: using max 46 ests per chain, 110400 per kthread
[  565.820217][T19528] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3563'.
[  566.396295][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  566.401741][ T5981] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  566.974383][T19557] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3570'.
[  567.330280][T19560] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3571'.
[  567.422500][T19562] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3572'.
[  567.753376][   T53] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  567.851536][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  567.913631][   T53] usb 7-1: Using ep0 maxpacket: 8
[  567.924632][   T53] usb 7-1: config 0 interface 0 has no altsetting 0
[  567.926739][   T53] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  567.929572][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.947526][   T53] usb 7-1: config 0 descriptor??
[  568.412974][   T53] mcp2221 0003:04D8:00DD.0030: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  568.629792][    T9] usb 7-1: USB disconnect, device number 36
[  569.217085][T19578] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3577'.
[  569.264002][T19581] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3586'.
[  569.342983][T19585] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3579'.
[  569.560054][ T5981] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  570.172809][T19593] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3582'.
[  570.383212][T19597] nbd3: detected capacity change from 0 to 4
[  570.388496][T19598] block nbd3: shutting down sockets
[  570.389916][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.393485][T19305] buffer_io_error: 27 callbacks suppressed
[  570.393497][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.398719][T14959] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.402554][T14959] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.406923][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.409740][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.412142][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.414895][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.417641][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.420414][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.422754][T19305] ldm_validate_partition_table(): Disk read failed.
[  570.424809][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.427646][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.430458][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.434058][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.438124][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.441733][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.444965][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.448996][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.452111][T19305] Dev nbd3: unable to read RDB block 0
[  570.454399][T19305] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.458523][T19305] Buffer I/O error on dev nbd3, logical block 0, async page read
[  570.463475][T19305]  nbd3: unable to read partition table
[  570.465901][T19305] nbd3: partition table beyond EOD, truncated
[  570.471789][T19305] ldm_validate_partition_table(): Disk read failed.
[  570.474585][T19305] Dev nbd3: unable to read RDB block 0
[  570.477140][T19305]  nbd3: unable to read partition table
[  570.479730][T19305] nbd3: partition table beyond EOD, truncated
[  570.946343][T19602] bridge_slave_0: left allmulticast mode
[  570.948289][T19602] bridge_slave_0: left promiscuous mode
[  570.950548][T19602] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.957061][T19602] bridge_slave_1: left allmulticast mode
[  570.958871][T19602] bridge_slave_1: left promiscuous mode
[  570.961063][T19602] bridge0: port 2(bridge_slave_1) entered disabled state
[  570.966984][T19602] Ã: (slave bond_slave_0): Releasing backup interface
[  570.969641][T19602] bond_slave_0: left promiscuous mode
[  570.981307][T19602] Ã: (slave bond_slave_1): Releasing backup interface
[  570.986142][T19602] bond_slave_1: left promiscuous mode
[  570.998135][T19602] team0: Port device team_slave_0 removed
[  571.007769][T19603] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3585'.
[  571.009123][T19602] team0: Port device team_slave_1 removed
[  571.013398][T19602] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  571.015979][T19602] batman_adv: batadv0: Removing interface: batadv_slave_0
[  571.023758][T19602] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  571.027043][T19602] batman_adv: batadv0: Removing interface: batadv_slave_1
[  571.192962][T19602] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  571.307355][T19602] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  571.356069][T18023] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  571.356130][ T5981] Bluetooth: hci3: command 0x1003 tx timeout
[  571.391429][T19602] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  571.441635][T18023] Bluetooth: hci6: command 0x1003 tx timeout
[  571.445100][ T5982] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  571.513737][T19602] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  571.540530][T19612] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3590'.
[  571.619649][T18594] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  571.628950][T18594] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  571.640001][T18594] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  571.655141][T18594] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  571.922682][   T10] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  572.041038][T19614] overlay: Unknown parameter 'audit'
[  572.157871][   T10] usb 8-1: Using ep0 maxpacket: 8
[  572.161190][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  572.163716][   T10] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  572.166812][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  572.176360][   T10] usb 8-1: config 0 descriptor??
[  572.589461][T19624] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3591'.
[  572.710874][   T10] mcp2221 0003:04D8:00DD.0031: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  572.940231][ T1333] usb 8-1: USB disconnect, device number 23
[  573.751107][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  573.755396][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  573.912234][T19643] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3598'.
[  575.509964][T19683] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3605'.
[  575.868132][T19687] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3606'.
[  575.882626][T19687] batadv1: entered allmulticast mode
[  575.935428][T19688] input: syz1 as /devices/virtual/input/input48
[  576.070777][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  576.073026][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  576.148114][T19692] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3608'.
[  576.871916][   T40] audit: type=1804 audit(1756657725.203:3012): pid=19706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3610" name="/newroot/271/file0" dev="tmpfs" ino=1462 res=1 errno=0
[  576.918722][T19701] /dev/sr0: Can't open blockdev
[  577.303539][T19716] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3614'.
[  577.411657][T19721] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3615'.
[  577.815127][T19731] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3616'.
[  577.841807][ T1333] Process accounting resumed
[  578.593940][T19752] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3623'.
[  579.185258][   T40] audit: type=1804 audit(1756657727.373:3013): pid=19768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3625" name="/newroot/353/file0" dev="tmpfs" ino=1969 res=1 errno=0
[  579.257017][T19767] /dev/sr0: Can't open blockdev
[  580.153540][T19782] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3631'.
[  581.172804][T19798] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3635'.
[  581.332196][T19802] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3637'.
[  581.348769][T19804] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3638'.
[  582.058745][T19830] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3643'.
[  582.468640][T19840] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3646'.
[  583.106072][   T34] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  583.277724][   T34] usb 6-1: config 0 has no interfaces?
[  583.279774][   T34] usb 6-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  583.283592][   T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  583.289118][   T34] usb 6-1: config 0 descriptor??
[  583.557671][T19868] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3655'.
[  583.596373][T19869] netlink: 72 bytes leftover after parsing attributes in process `syz.1.3651'.
[  583.666476][T19874] netlink: 80 bytes leftover after parsing attributes in process `syz.0.3656'.
[  583.813755][   T34] usb 6-1: USB disconnect, device number 24
[  584.350458][T19889] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3667'.
[  586.494142][T18023] Bluetooth: hci2: command 0x1003 tx timeout
[  586.494158][ T5982] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  586.958479][T19954] __nla_validate_parse: 1 callbacks suppressed
[  586.958491][T19954] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3673'.
[  587.193080][T19959] netlink: 'syz.2.3674': attribute type 4 has an invalid length.
[  588.082995][T19979] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3682'.
[  588.263111][T19988] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3683'.
[  589.364137][T20014] 8021q: VLANs not supported on ip6_vti0
[  589.748400][T20021] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3688'.
[  589.777527][T18587] bridge_slave_1: left allmulticast mode
[  589.779443][T18587] bridge_slave_1: left promiscuous mode
[  589.781423][T18587] bridge0: port 2(bridge_slave_1) entered disabled state
[  589.785264][T18587] bridge_slave_0: left allmulticast mode
[  589.789621][T18587] bridge_slave_0: left promiscuous mode
[  589.791635][T18587] bridge0: port 1(bridge_slave_0) entered disabled state
[  589.913125][T18587] bond4 (unregistering): (slave gretap1): Releasing active interface
[  589.916024][T18587] gretap1 (unregistering): left promiscuous mode
[  589.920533][T18587] gretap1 (unregistering): left allmulticast mode
[  589.970606][T18587] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  590.349547][T20044] 9pnet_fd: Insufficient options for proto=fd
[  590.349625][T20043] 9pnet_fd: Insufficient options for proto=fd
[  590.372572][T18587] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  590.379849][T18587] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  590.387768][T18587] bond0 (unregistering): Released all slaves
[  590.500286][T18587] bond1 (unregistering): Released all slaves
[  590.757839][T18587] bond2 (unregistering): Released all slaves
[  590.842259][T20058] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3689'.
[  590.868934][T18587] bond3 (unregistering): (slave veth3): Releasing active interface
[  590.875956][T18587] bond3 (unregistering): Released all slaves
[  590.979914][T18587] bond4 (unregistering): Released all slaves
[  591.036389][T20061] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3694'.
[  591.080778][T18587] : left promiscuous mode
[  591.166949][T18587] tipc: Disabling bearer <udp:s>
[  591.168640][T18587] tipc: Left network mode
[  591.709125][T18587] hsr_slave_0: left promiscuous mode
[  591.714051][T18587] hsr_slave_1: left promiscuous mode
[  591.716141][T18587] batman_adv: batadv0: Removing interface: batadv_slave_0
[  591.718876][T18587] batman_adv: batadv0: Removing interface: batadv_slave_1
[  592.976875][T18587] team0 (unregistering): Port device team_slave_1 removed
[  593.124537][T18587] team0 (unregistering): Port device team_slave_0 removed
[  593.500678][T20116] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3702'.
[  594.125800][T18604] smc: removing ib device ‚yz0
[  594.260101][T20129] netlink: 'syz.2.3705': attribute type 4 has an invalid length.
[  594.328154][T20122] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3703'.
[  594.457639][T20136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3706'.
[  594.678127][T20138] loop6: detected capacity change from 0 to 2568
[  594.683910][T20138] buffer_io_error: 19 callbacks suppressed
[  594.683920][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.688585][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.691444][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.725913][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.732339][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.735705][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.739967][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.742594][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.745709][T20138] ldm_validate_partition_table(): Disk read failed.
[  594.751937][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.756211][T20138] Buffer I/O error on dev loop6, logical block 0, async page read
[  594.760887][T20138] Dev loop6: unable to read RDB block 0
[  594.764879][T20138]  loop6: unable to read partition table
[  594.768704][T20138] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  594.815177][T18587] IPVS: stop unused estimator thread 0...
[  596.093293][T20178] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3715'.
[  596.373109][T20199] netlink: 'syz.1.3718': attribute type 10 has an invalid length.
[  596.732295][T20215] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3721'.
[  597.213311][T20222] loop6: detected capacity change from 0 to 2562
[  597.246420][T19305] ldm_validate_partition_table(): Disk read failed.
[  597.250738][T19305] Dev loop6: unable to read RDB block 0
[  597.254080][T19305]  loop6: unable to read partition table
[  597.278565][T20222] ldm_validate_partition_table(): Disk read failed.
[  597.283336][T20222] Dev loop6: unable to read RDB block 0
[  597.286139][T20222]  loop6: unable to read partition table
[  597.293348][T20222] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  597.305969][ T5390] ldm_validate_partition_table(): Disk read failed.
[  597.313600][ T5390] Dev loop6: unable to read RDB block 0
[  597.318379][ T5390]  loop6: unable to read partition table
[  597.669411][T20237] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3726'.
[  597.722367][T20231] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  597.724555][T20231] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  597.729317][T20231] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  597.819930][T20241] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3725'.
[  598.540096][T20246] overlayfs: failed to resolve './file1': -2
[  599.835876][ T5982] Bluetooth: hci4: command 0x041b tx timeout
[  599.932235][ T5982] Bluetooth: hci2: command 0x1003 tx timeout
[  599.935943][ T5981] Bluetooth: hci5: command 0x0c1a tx timeout
[  599.936053][ T5984] Bluetooth: hci1: command 0x0c1a tx timeout
[  599.937889][T18023] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  600.120489][T20300] autofs: Unknown parameter '0x0000000000000000'
[  601.140203][   T10] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  601.256969][   T40] audit: type=1326 audit(1756657748.008:3014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20312 comm="syz.3.3737" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70fe579 code=0x0
[  601.266535][T20313] infiniband syz1: set active
[  601.269229][T20313] infiniband syz1: added syz_tun
[  601.288944][T20313] RDS/IB: syz1: added
[  601.290910][T20313] smc: adding ib device syz1 with port count 1
[  601.293421][T20313] smc:    ib device syz1 port 1 has pnetid 
[  601.311162][   T10] usb 7-1: Using ep0 maxpacket: 8
[  601.433279][T20315] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3737'.
[  601.437369][   T10] usb 7-1: config 0 interface 0 has no altsetting 0
[  601.453501][   T10] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  601.456334][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  601.847354][   T10] usb 7-1: config 0 descriptor??
[  602.051209][T20323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3741'.
[  602.450515][   T10] mcp2221 0003:04D8:00DD.0032: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  602.560510][T20341] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3745'.
[  602.563912][T20341] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3745'.
[  602.603115][T20341] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3745'.
[  602.606214][T20341] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3745'.
[  602.625061][   T53] Process accounting resumed
[  602.666963][T20341] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3745'.
[  602.672135][    T9] usb 7-1: USB disconnect, device number 37
[  602.672249][T20341] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3745'.
[  603.288244][T20354] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3756'.
[  603.840122][T20366] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3751'.
[  604.197651][T18023] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  604.197668][ T5982] Bluetooth: hci2: command 0x1003 tx timeout
[  605.495258][ T5984] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  605.497674][ T5982] Bluetooth: hci3: command 0x1003 tx timeout
[  605.584500][   T53] Process accounting resumed
[  605.696181][T20396] input: syz0 as /devices/virtual/input/input49
[  606.763464][T18023] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  606.876903][T20431] overlayfs: failed to resolve './file0': -2
[  606.922967][T20430] overlayfs: failed to resolve './file0': -2
[  607.843749][   T40] audit: type=1804 audit(1756657754.182:3015): pid=20454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3773" name="/newroot/392/file0" dev="tmpfs" ino=2214 res=1 errno=0
[  607.875889][T20453] /dev/sr0: Can't open blockdev
[  607.923214][   T40] audit: type=1804 audit(1756657754.247:3016): pid=20455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3775" name="/newroot/317/file0" dev="tmpfs" ino=1718 res=1 errno=0
[  608.069958][T20460] rdma_rxe: rxe_newlink: failed to add syz_tun
[  608.070214][   T40] audit: type=1326 audit(1756657754.388:3017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20457 comm="syz.3.3777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  608.082270][   T40] audit: type=1326 audit(1756657754.388:3018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20457 comm="syz.3.3777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  608.090359][   T40] audit: type=1326 audit(1756657754.388:3019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20457 comm="syz.3.3777" exe="/syz-executor" sig=0 arch=40000003 syscall=371 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  608.101418][   T40] audit: type=1326 audit(1756657754.388:3020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20457 comm="syz.3.3777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  608.111269][   T40] audit: type=1326 audit(1756657754.388:3021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20457 comm="syz.3.3777" exe="/syz-executor" sig=0 arch=40000003 syscall=12 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  608.118677][   T40] audit: type=1326 audit(1756657754.388:3022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20457 comm="syz.3.3777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  608.128490][   T40] audit: type=1326 audit(1756657754.388:3023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20457 comm="syz.3.3777" exe="/syz-executor" sig=0 arch=40000003 syscall=303 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  608.136583][   T40] audit: type=1326 audit(1756657754.388:3024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20457 comm="syz.3.3777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[  608.276354][T20466] overlayfs: failed to resolve './file0': -2
[  608.358960][T20472] __nla_validate_parse: 12 callbacks suppressed
[  608.358973][T20472] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3781'.
[  608.362932][T20465] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3776'.
[  608.920770][T20483] netlink: 'syz.0.3784': attribute type 4 has an invalid length.
[  609.075592][T20492] netlink: 'syz.1.3787': attribute type 2 has an invalid length.
[  609.078925][T20492] netlink: 'syz.1.3787': attribute type 2 has an invalid length.
[  609.081746][T20492] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3787'.
[  609.473915][T20506] overlayfs: failed to resolve './file0': -2
[  609.693102][T20508] /dev/sr0: Can't open blockdev
[  609.744570][T20511] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3792'.
[  609.763662][T20511] netlink: 52 bytes leftover after parsing attributes in process `syz.0.3792'.
[  609.767049][T20511] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3792'.
[  610.150697][T20523] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3796'.
[  610.392679][T20534] overlayfs: failed to resolve './file0': -2
[  610.426098][T18589] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  610.428910][T18589] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  610.433069][T18589] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  610.435704][T18589] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  610.481966][T20530] afs: Unknown parameter 'dyeà'
[  610.697481][ T5982] Bluetooth: hci1: command 0x0c1a tx timeout
[  611.396739][T20565] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  611.398842][T20565] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  611.400977][T20565] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  611.639921][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  612.584018][T20597] overlayfs: failed to resolve './file0': -2
[  612.593344][T18587] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  612.596906][T18587] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  612.599471][T18587] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  612.602947][T18587] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  612.673288][T20587] afs: Unknown parameter 'dyeà'
[  612.709470][T20602] overlayfs: failed to resolve './file1': -2
[  612.719198][T20599] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3814'.
[  612.950631][T20614] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3820'.
[  613.231532][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  613.231543][   T40] audit: type=1804 audit(1756657759.214:3033): pid=20617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3813" name="/newroot/332/file0" dev="tmpfs" ino=1821 res=1 errno=0
[  613.519867][ T5982] Bluetooth: hci4: command 0x041b tx timeout
[  613.578845][T20620] netlink: 7 bytes leftover after parsing attributes in process `syz.1.3821'.
[  613.605835][ T5982] Bluetooth: hci1: command 0x0c1a tx timeout
[  613.616113][ T5982] Bluetooth: hci5: command 0x0c1a tx timeout
[  614.384716][T20638] bridge0: port 2(bridge_slave_1) entered disabled state
[  614.387159][T20638] bridge0: port 1(bridge_slave_0) entered disabled state
[  614.435794][T20638] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  614.446862][T20638] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  614.474229][T20640] overlayfs: failed to resolve './file0': -2
[  614.512388][T20640] afs: Unknown parameter 'dyeà'
[  614.512879][T20638] veth1_vlan: left allmulticast mode
[  614.519485][T18608] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  614.522364][T18608] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  614.525681][T18608] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  614.528466][T18608] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  614.531273][T18608] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  614.534118][T18608] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  614.537010][T18608] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  614.539748][T18608] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  614.690397][T20646] overlayfs: failed to resolve './file1': -2
[  614.868407][T20650] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  614.870532][T20650] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  614.878578][T20650] vhci_hcd vhci_hcd.0: Device attached
[  614.885949][T20653] comedi comedi3: c6xdigio: I/O port conflict (0x4f2b,3)
[  614.889129][T20653] ------------[ cut here ]------------
[  614.892219][T20653] Unexpected driver unregister!
[  614.895284][T20653] WARNING: CPU: 1 PID: 20653 at drivers/base/driver.c:273 driver_unregister+0x90/0xb0
[  614.898175][T20653] Modules linked in:
[  614.900606][T20653] CPU: 1 UID: 0 PID: 20653 Comm: syz.1.3828 Not tainted syzkaller #0 PREEMPT(full) 
[  614.904681][T20653] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  614.909122][T20653] RIP: 0010:driver_unregister+0x90/0xb0
[  614.911186][T20653] Code: 48 89 ef e8 92 13 4c fc 48 89 df e8 3a 93 ff ff 5b 5d e9 83 99 a6 fb e8 7e 99 a6 fb 90 48 c7 c7 00 8a 42 8c e8 01 92 65 fb 90 <0f> 0b 90 90 5b 5d e9 65 99 a6 fb e8 10 fc 0b fc eb 94 e8 09 fc 0b
[  614.917138][T20653] RSP: 0018:ffffc9000f707770 EFLAGS: 00010282
[  614.919442][T20653] RAX: 0000000000000000 RBX: ffffffff90194760 RCX: ffffffff817a02c8
[  614.922241][T20653] RDX: ffff888024e74880 RSI: ffffffff817a02d5 RDI: 0000000000000001
[  614.924958][T20653] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  614.927404][T20653] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff901946a0
[  614.929874][T20653] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff8880416e7000
[  614.932544][T20653] FS:  0000000000000000(0000) GS:ffff8880975c0000(0063) knlGS:00000000f54bdb40
[  614.935548][T20653] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  614.937640][T20653] CR2: 00000000f73a9aa4 CR3: 0000000049e29000 CR4: 0000000000352ef0
[  614.940360][T20653] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  614.943267][T20653] DR3: 000000000000000c DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  614.945719][T20653] Call Trace:
[  614.946778][T20653]  <TASK>
[  614.947726][T20653]  comedi_device_detach_locked+0x12c/0xa50
[  614.949560][T20653]  comedi_device_detach+0x67/0xb0
[  614.951641][T20653]  comedi_device_attach+0x43d/0x900
[  614.953722][T20653]  do_devconfig_ioctl+0x1b1/0x710
[  614.955258][T20653]  ? __mutex_lock+0x1c5/0x1060
[  614.956802][T20653]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  614.958527][T20653]  ? kasan_save_stack+0x42/0x60
[  614.960147][T20653]  ? kasan_save_stack+0x33/0x60
[  614.961666][T20653]  ? kasan_save_track+0x14/0x30
[  614.963267][T20653]  ? kasan_save_free_info+0x3b/0x60
[  614.964988][T20653]  ? __kasan_slab_free+0x60/0x70
[  614.966576][T20653]  ? kfree+0x2b4/0x4d0
[  614.967877][T20653]  ? tomoyo_path_number_perm+0x470/0x580
[  614.969665][T20653]  comedi_unlocked_ioctl+0x165d/0x2f00
[  614.971446][T20653]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  614.973322][T20653]  ? kasan_quarantine_put+0x10a/0x240
[  614.975130][T20653]  ? lockdep_hardirqs_on+0x7c/0x110
[  614.976794][T20653]  ? find_held_lock+0x2b/0x80
[  614.978271][T20653]  ? tomoyo_path_number_perm+0x295/0x580
[  614.980037][T20653]  ? tomoyo_path_number_perm+0x18d/0x580
[  614.981787][T20653]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  614.983679][T20653]  comedi_compat_ioctl+0x1d0/0x990
[  614.985300][T20653]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  614.987059][T20653]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  614.988807][T20653]  ? do_vfs_ioctl+0x128/0x14f0
[  614.990252][T20653]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  614.991796][T20653]  ? find_held_lock+0x2b/0x80
[  614.993275][T20653]  ? hook_file_ioctl_common+0x145/0x410
[  614.995093][T20653]  ? __fget_files+0x20e/0x3c0
[  614.996603][T20653]  ? __ia32_compat_sys_openat+0x160/0x210
[  614.998378][T20653]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  615.000203][T20653]  __ia32_compat_sys_ioctl+0x242/0x370
[  615.001911][T20653]  __do_fast_syscall_32+0x7c/0x3a0
[  615.003538][T20653]  do_fast_syscall_32+0x32/0x80
[  615.005099][T20653]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  615.007220][T20653] RIP: 0023:0xf70ee579
[  615.008517][T20653] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  615.014611][T20653] RSP: 002b:00000000f54bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  615.017284][T20653] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000040946400
[  615.019534][T20653] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  615.021792][T20653] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  615.024250][T20653] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  615.026735][T20653] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  615.029255][T20653]  </TASK>
[  615.030275][T20653] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  615.032532][T20653] CPU: 1 UID: 0 PID: 20653 Comm: syz.1.3828 Not tainted syzkaller #0 PREEMPT(full) 
[  615.035370][T20653] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  615.038673][T20653] Call Trace:
[  615.039738][T20653]  <TASK>
[  615.040678][T20653]  dump_stack_lvl+0x3d/0x1f0
[  615.042122][T20653]  vpanic+0x6e8/0x7a0
[  615.043397][T20653]  ? __pfx_vpanic+0x10/0x10
[  615.044825][T20653]  ? driver_unregister+0x90/0xb0
[  615.046379][T20653]  panic+0xca/0xd0
[  615.047602][T20653]  ? __pfx_panic+0x10/0x10
[  615.049005][T20653]  ? check_panic_on_warn+0x1f/0xb0
[  615.050600][T20653]  check_panic_on_warn+0xab/0xb0
[  615.052170][T20653]  __warn+0xf6/0x3c0
[  615.053405][T20653]  ? preempt_schedule_notrace+0x62/0xe0
[  615.055121][T20653]  ? driver_unregister+0x90/0xb0
[  615.056655][T20653]  report_bug+0x3c3/0x580
[  615.058001][T20653]  ? driver_unregister+0x90/0xb0
[  615.059557][T20653]  handle_bug+0x184/0x210
[  615.060927][T20653]  exc_invalid_op+0x17/0x50
[  615.062355][T20653]  asm_exc_invalid_op+0x1a/0x20
[  615.063891][T20653] RIP: 0010:driver_unregister+0x90/0xb0
[  615.065610][T20653] Code: 48 89 ef e8 92 13 4c fc 48 89 df e8 3a 93 ff ff 5b 5d e9 83 99 a6 fb e8 7e 99 a6 fb 90 48 c7 c7 00 8a 42 8c e8 01 92 65 fb 90 <0f> 0b 90 90 5b 5d e9 65 99 a6 fb e8 10 fc 0b fc eb 94 e8 09 fc 0b
[  615.071507][T20653] RSP: 0018:ffffc9000f707770 EFLAGS: 00010282
[  615.073367][T20653] RAX: 0000000000000000 RBX: ffffffff90194760 RCX: ffffffff817a02c8
[  615.075802][T20653] RDX: ffff888024e74880 RSI: ffffffff817a02d5 RDI: 0000000000000001
[  615.078254][T20653] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  615.081040][T20653] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff901946a0
[  615.083615][T20653] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff8880416e7000
[  615.086089][T20653]  ? __warn_printk+0x198/0x350
[  615.087615][T20653]  ? __warn_printk+0x1a5/0x350
[  615.089126][T20653]  comedi_device_detach_locked+0x12c/0xa50
[  615.090983][T20653]  comedi_device_detach+0x67/0xb0
[  615.092561][T20653]  comedi_device_attach+0x43d/0x900
[  615.094187][T20653]  do_devconfig_ioctl+0x1b1/0x710
[  615.095763][T20653]  ? __mutex_lock+0x1c5/0x1060
[  615.097275][T20653]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  615.099001][T20653]  ? kasan_save_stack+0x42/0x60
[  615.100866][T20653]  ? kasan_save_stack+0x33/0x60
[  615.102738][T20653]  ? kasan_save_track+0x14/0x30
[  615.104276][T20653]  ? kasan_save_free_info+0x3b/0x60
[  615.105898][T20653]  ? __kasan_slab_free+0x60/0x70
[  615.107458][T20653]  ? kfree+0x2b4/0x4d0
[  615.108742][T20653]  ? tomoyo_path_number_perm+0x470/0x580
[  615.110773][T20653]  comedi_unlocked_ioctl+0x165d/0x2f00
[  615.112693][T20653]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  615.114731][T20653]  ? kasan_quarantine_put+0x10a/0x240
[  615.116411][T20653]  ? lockdep_hardirqs_on+0x7c/0x110
[  615.118036][T20653]  ? find_held_lock+0x2b/0x80
[  615.119515][T20653]  ? tomoyo_path_number_perm+0x295/0x580
[  615.121870][T20653]  ? tomoyo_path_number_perm+0x18d/0x580
[  615.124241][T20653]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  615.126452][T20653]  comedi_compat_ioctl+0x1d0/0x990
[  615.128061][T20653]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  615.129863][T20653]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  615.131736][T20653]  ? do_vfs_ioctl+0x128/0x14f0
[  615.133242][T20653]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  615.134818][T20653]  ? find_held_lock+0x2b/0x80
[  615.136299][T20653]  ? hook_file_ioctl_common+0x145/0x410
[  615.138023][T20653]  ? __fget_files+0x20e/0x3c0
[  615.139503][T20653]  ? __ia32_compat_sys_openat+0x160/0x210
[  615.141764][T20653]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  615.143482][T20653]  __ia32_compat_sys_ioctl+0x242/0x370
[  615.145151][T20653]  __do_fast_syscall_32+0x7c/0x3a0
[  615.146744][T20653]  do_fast_syscall_32+0x32/0x80
[  615.148263][T20653]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  615.150262][T20653] RIP: 0023:0xf70ee579
[  615.151565][T20653] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  615.157192][T20653] RSP: 002b:00000000f54bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  615.159427][T20653] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000040946400
[  615.162537][T20653] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  615.164918][T20653] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  615.167378][T20653] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  615.169836][T20653] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  615.172285][T20653]  </TASK>
[  615.174019][T20653] Kernel Offset: disabled
[  615.175367][T20653] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:29:29  Registers:
info registers vcpu 0

CPU#0
RAX=fffff940002e9db6 RBX=fffff940002e9db7 RCX=ffffffff81f10aff RDX=fffff940002e9db7
RSI=0000000000000004 RDI=ffffea000174edb4 RBP=fffff940002e9db6 RSP=ffffc9000ec1f9b8
R8 =0000000000000001 R9 =fffff940002e9db6 R10=ffffea000174edb7 R11=0000000000000000
R12=0000000000000000 R13=00000000000000ff R14=dffffc0000000000 R15=1ffff92001d83f6a
RIP=ffffffff822064bc RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880974c0000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71f5fe0 CR3=000000007930d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000001 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000034 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85616e75 RDI=ffffffff9b0fc700 RBP=ffffffff9b0fc6c0 RSP=ffffc9000f7070e0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000034 R14=ffffffff9b0fc6c0 R15=ffffffff85616e10
RIP=ffffffff85616e9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975c0000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73a9aa4 CR3=0000000049e29000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000c 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000020 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000001 RBP=ffffc90002c6f320 RSP=ffffc90002c6f190
R8 =0000000000000001 R9 =0000000000000020 R10=0000000000000020 R11=0000000000000000
R12=0000000000000020 R13=ffffc90002c6f300 R14=ffff88802b37ff47 R15=0000000000000059
RIP=ffffffff84e8fe23 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007ff498b44300 ffffffff 00c00000
GS =0000 ffff8880976c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005619aeccd000 CR3=00000000292d8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000001 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000002c00000012 0004000000080024 0000000000280030
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000efd 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c69662f2e01ffff ffffffffffffef08 0a80033800000838 0000000e00000001
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0007800201000000 0806060101dc0008 0007980300080007 9003018408000788
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300020007860302 02000784033c0400 0780030008000a08 003c0800060071b4
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0008000c80020401 40ea007375622f2e 01ffffffffffffff fff3080c80030008
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000fffffffff0201 c70800060140ee20 08000a800201c708 00060140ee003065
ZMM24=a339d249a339d249 a339d249a339d249 a339d249a339d249 a339d249a339d249 a339d249a339d249 a339d249a339d249 a339d249a339d249 a339d249a339d249
ZMM25=dd625ac7dd625ac7 dd625ac7dd625ac7 dd625ac7dd625ac7 dd625ac7dd625ac7 dd625ac7dd625ac7 dd625ac7dd625ac7 dd625ac7dd625ac7 dd625ac7dd625ac7
ZMM26=4278c32a4278c32a 4278c32a4278c32a 4278c32a4278c32a 4278c32a4278c32a 4278c32a4278c32a 4278c32a4278c32a 4278c32a4278c32a 4278c32a4278c32a
ZMM27=5d94e0eb5d94e0eb 5d94e0eb5d94e0eb 5d94e0eb5d94e0eb 5d94e0eb5d94e0eb 5d94e0eb5d94e0eb 5d94e0eb5d94e0eb 5d94e0eb5d94e0eb 5d94e0eb5d94e0eb
ZMM28=000000a00000009f 0000009e0000009d 0000009c0000009b 0000009a00000099 0000009800000097 0000009600000095 0000009400000093 0000009200000091
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=dd4d0000dd4d0000 dd4d0000dd4d0000 dd4d0000dd4d0000 dd4d0000dd4d0000 dd4d0000dd4d0000 dd4d0000dd4d0000 dd4d0000dd4d0000 dd4d0000dd4d0000
info registers vcpu 3

CPU#3
RAX=00000000008a7509 RBX=0000000000000003 RCX=ffffffff8b90dbf9 RDX=0000000000000000
RSI=ffffffff8de4d2d9 RDI=ffffffff8c162d80 RBP=ffffed1003867000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000
R12=0000000000000003 R13=ffff88801c338000 R14=ffffffff90ab8890 R15=0000000000000000
RIP=ffffffff8b90c75f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000801fa018 CR3=000000004978f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000001 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 63f46a3f2b7a0c66 abbac963afba7c04
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 eee26682957a5987 68a7f365a237825e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 58ce54344439e1f7 cc53ddba931a1198
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5d9fe7780a84d387 d79b3612843adb02
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004e40
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3f70000074700000 01756b0700000576
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ca58000048890000 38c000008d0e0000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1ac00000017568c1 017568b70175689b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01756b4a01756d64 c9800000017564f9
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f8b184928c6bed3 24c9731b7bc92711
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b2d13981164c467b ef0448ee80e9c051
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000