last executing test programs:

3.895645265s ago: executing program 3 (id=674):
bind$tipc(0xffffffffffffffff, &(0x7f0000000400)=@nameseq={0x1e, 0x1, 0x3, {0x42, 0x0, 0x2}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
syz_usb_connect(0x0, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
timerfd_settime(0xffffffffffffffff, 0x1, 0x0, &(0x7f00000003c0))
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)}, {0x0}], 0x2)
close(r1)

3.34849012s ago: executing program 2 (id=678):
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="240000002b000b00000000000000000006000000040003000c00018008000000", @ANYRES32=0x0, @ANYBLOB="80"], 0x24}}, 0xc00)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000023c0)='sched_pi_setprio\x00', r4}, 0x18)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/96, 0x2329000, 0x800}, 0x20)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000002d00090027bd7000fedbdf250500000008000a"], 0x1c}}, 0x20000086)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r6, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r7, 0xfffffffd, 0x0, 0x30, 0x0, @in6={0xa, 0x4e24, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}, 0x9}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, 0x118)
write$RDMA_USER_CM_CMD_LISTEN(r6, &(0x7f0000000180)={0x7, 0x8, 0xfa00, {r7, 0xffffffef}}, 0x10)
r8 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000001c0), 0x35c, 0x0)
preadv(r8, &(0x7f0000000040)=[{&(0x7f00000013c0)=""/4096, 0x5}], 0x1, 0x0, 0x0)
close(r6)
r9 = syz_open_procfs(0x0, &(0x7f00000001c0)='coredump_filter\x00')
r10 = syz_io_uring_setup(0x2461, &(0x7f0000000440)={0x0, 0xdaed, 0x100, 0x0, 0x2a9, 0x0, r9}, &(0x7f00000003c0), &(0x7f0000000400))
io_uring_enter(r10, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r1, &(0x7f0000002400)={0x2020}, 0x2020)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
lsm_get_self_attr(0x69, &(0x7f0000000600)={0x0, 0x0, 0x85, 0x65, ""/101}, &(0x7f00000005c0)=0x85, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000d00)='kfree\x00', r9}, 0x18)

3.071564659s ago: executing program 2 (id=679):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000010}, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffffffffffaaaaa8aaaabb86dd000186dd06100004aaaaaaaaaabbfc000000000000000000000000000001aaaaaaaaaabbfe8000"/62], 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e22, @broadcast}, 0x10)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
sendto$inet(r3, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
unshare(0x40020000)

2.779638484s ago: executing program 0 (id=680):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match', 0x0, 0x1aa)
read$nci(r0, &(0x7f0000000380)=""/227, 0xe3)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x6, 0x10001, 0x34324152, 0x0, 0xb, [{}, {0x10}, {0x2}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000200)={'wg2\x00', <r6=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001c00)=ANY=[@ANYBLOB="28040000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r6], 0x428}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@updpolicy={0xb4, 0x19, 0x1, 0xfffffffc, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x2c}, @in6=@loopback, 0x4e22, 0x0, 0x4e24, 0x0, 0xa, 0x0, 0xe0}, {0x0, 0x1000000000000401, 0xfffffffffffffffe, 0x40000000, 0x0, 0x1a, 0x1, 0xfffffffffffffffe}, {0x0, 0x5, 0x0, 0x7fff}, 0x8, 0x0, 0x0, 0x1, 0x3}}, 0xb4}}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=@newqdisc={0x50, 0x10, 0x1, 0x0, 0x10000000, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe, 0x4}}, [@TCA_INGRESS_BLOCK={0x8}, @qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x3, '\x00', 0x8000, 0x2, 0x3, 0xfffffffb}}}}]}, 0x50}}, 0x0)
sendto$inet6(r3, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x0, 0x80000001, @local, 0x3}, 0x1c)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4c0000000206e2240001080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b00"], 0x4c}}, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x4e21, 0x9, @remote, 0xd}, 0x1c)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x24, r9, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x6}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0xffffffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008091}, 0x41)
mount$tmpfs(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000f80), 0x400, &(0x7f0000000080)=ANY=[@ANYBLOB='mpol=bind:N-', @ANYRESOCT])

2.314866923s ago: executing program 3 (id=682):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r1 = socket(0x2, 0x2, 0x1)
r2 = syz_io_uring_setup(0x332e, &(0x7f0000000480)={0x0, 0xaeb7, 0x40, 0x3, 0x2d9}, &(0x7f00000001c0), &(0x7f0000000400))
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r2, 0x1e, &(0x7f0000000500)={r1}, 0x1)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
r3 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
pipe2$watch_queue(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x8a)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)}, {0x0}], 0x2)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r7, &(0x7f00000001c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r7, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x0, 0xfe, 0x2, 0x0, 0x9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xe)
shutdown(r7, 0x1)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r7, 0x84, 0x21, &(0x7f0000000100)=0x6, 0x4)
recvmmsg(r7, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x60000)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)

2.120058833s ago: executing program 3 (id=683):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r1 = socket(0x2, 0x2, 0x1)
r2 = syz_io_uring_setup(0x332e, &(0x7f0000000480)={0x0, 0xaeb7, 0x40, 0x3, 0x2d9}, &(0x7f00000001c0), &(0x7f0000000400))
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r2, 0x1e, &(0x7f0000000500)={r1}, 0x1)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
r3 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
pipe2$watch_queue(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x8a)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)}, {0x0}], 0x2)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r7, &(0x7f00000001c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r7, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x0, 0xfe, 0x2, 0x0, 0x9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xe)
shutdown(r7, 0x1)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r7, 0x84, 0x21, &(0x7f0000000100)=0x6, 0x4)
recvmmsg(r7, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x60000)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)

2.014594325s ago: executing program 2 (id=684):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r0 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r0, &(0x7f0000000000)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e21, 0xb, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x9}}, 0x24)
openat$sndseq(0xffffff9c, &(0x7f0000000240), 0x80)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x80200, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = gettid()
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r2, &(0x7f0000000440)=""/247, 0x26)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f00000001c0), 0x2)
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="3ee2f4ea", @ANYRES16=r4, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=r5, @ANYBLOB="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"], 0x230}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000080)={0x31, @time={0x3, 0xfffefffd}, 0x4, {0x0, 0x2}, 0xa, 0x1, 0x4})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x402c5342, &(0x7f00000000c0)={0x2, 0x1, 0x3, {0x4, 0x40}, 0x82c7, 0xf})
tkill(r1, 0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)

1.926694338s ago: executing program 0 (id=685):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x2f)
socket$alg(0x26, 0x5, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0) (async)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="c5", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @dev, 0x15}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1a, 0x0, 0x28)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 32)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) (rerun: 32)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff}, 0x13f, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000300)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000380)=[{0x0, 0x0, [0x6, 0x9, 0x0, 0x0, 0x0, 0x5d, 0x3ff, 0xff, 0x7, 0x6, 0x7, 0x7, 0x7, 0x7f, 0x7, 0x8b]}, {0x1, 0x0, [0x9, 0xc9a7, 0x7f, 0x40, 0x9, 0x3, 0x7, 0x29, 0x4, 0x3ff, 0xc, 0xd7f, 0x5, 0x874, 0x8, 0x4]}, {0x4, 0x0, [0xff, 0x4, 0xffffffff, 0x9, 0x1, 0xfffffffe, 0x9, 0x6, 0x4, 0xd, 0x10, 0x1, 0x8, 0xffff7fff, 0x6, 0xa8]}, {0x4, 0x0, [0x0, 0x0, 0x101, 0x0, 0x7fffffff, 0xe19, 0x9, 0x8, 0xfffff5f5, 0xbd86, 0x2, 0xb0e6, 0xf, 0x1, 0x1]}, {0x0, 0x0, [0x3ff, 0xffff, 0x8, 0x60aa, 0x10, 0x0, 0x40, 0x2, 0x0, 0x0, 0x2, 0x1, 0x1, 0xffffffff, 0x0, 0x3]}], r3, 0x1, 0x1, 0x168}}, 0x20) (async, rerun: 32)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) (rerun: 32)
io_setup(0xeb0, &(0x7f0000000140)=<r4=>0x0) (async)
r5 = socket$xdp(0x2c, 0x3, 0x0)
io_submit(r4, 0x1, &(0x7f0000000000)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}]) (async)
io_cancel(r4, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x2, r5, 0x0, 0x0, 0x100000000000}, 0x0) (async, rerun: 64)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981) (rerun: 64)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f00000001c0)={0xfffffffc, 0x0, 0x0, 'queue0\x00', 0x83})
write(0xffffffffffffffff, 0x0, 0x0)
dup(0xffffffffffffffff) (async, rerun: 64)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r7}, 0x10)

1.905890778s ago: executing program 3 (id=687):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback, 0xe}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x200002, 0x30}, 0xc)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000040)='x', 0x1}], 0x1)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000340)={0x0, 0x3}, 0x8)
sendmsg$inet6(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)='d', 0x1}], 0x1}, 0x40000851)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000240)=',', 0x3d800}], 0x1)

1.744755873s ago: executing program 2 (id=689):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=@gettaction={0x158, 0x32, 0x300, 0x70bd27, 0x25dfdbff, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x2}, @action_gd=@TCA_ACT_TAB={0x84, 0x1, [{0xc, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0x10, 0x18, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0x10, 0x7, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x12, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xe8ef}}, {0xc, 0x1a, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xce4}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x20000}}, {0x14, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0x10, 0x7, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2c11}}]}, @action_gd=@TCA_ACT_TAB={0x30, 0x1, [{0x14, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0x1b, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x1b, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x20000009}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1, 0x1}}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc}, @action_gd=@TCA_ACT_TAB={0x64, 0x1, [{0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0x10, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x205, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xfffff055}}, {0xc, 0x16, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xfffff222}}, {0x10, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1}}]}]}, 0x158}}, 0x200440d0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000800), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = add_key$user(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000200)="5d8f2237c34c33e111bb3517377acc110de1855bcc8e479dc06d316212ff83a23ca4772f7f09034b176cd0015cfc4e520bbaf73998a93e2ed19054a28b9eb128ff658bf8ce466832170b47a4fb9fd0f690fa64981bfe58fb47e901a9cf1e939394707bb8b3de9dfbccb4b36e44004ec765b54fc12ed8b42b8884d12d2d61d30bb0782d450c1cdd9075bf9deb522face99da0c68a5eb971b22a7962af5dd0a7312184fb3e7b0de004f652fa1773f83d516517b0f97a340754268e9e2551", 0xbd, 0xfffffffffffffffc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000009c0)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x10, 0x0, 0x0, 0xffbd2bcf140de4fb}]}}, 0x0, 0x2a, 0x0, 0x1}, 0x28)
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000000)={'syz', 0x2}, &(0x7f0000000240)="f2", 0x1, 0xfffffffffffffffe)
r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x203, 0x402)
ioctl$USBDEVFS_CONTROL(r5, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x1c, 0x6, 0x0, 0x5, 0x0})
keyctl$revoke(0x3, r4)
keyctl$dh_compute(0x17, &(0x7f0000000180)={r3, 0x0, r4}, &(0x7f0000000440)=""/158, 0x9e, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@loopback={0xffffffffffff0000}, 0x800, 0x0, 0x1, 0x3, 0x7}, 0x20)
socket$nl_netfilter(0x10, 0x3, 0xc)
read$FUSE(r1, &(0x7f0000006380)={0x2020, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
ioctl$sock_SIOCBRDELBR(r2, 0x89a1, &(0x7f0000000040)='bond0\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
writev(0xffffffffffffffff, 0x0, 0x0)
r8 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r9 = dup(r8)
write$6lowpan_enable(r9, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0xe, 0x4, 0x4, 0x20002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)
syz_fuse_handle_req(r1, &(0x7f00000083c0)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x90, 0x0, 0x3fffffffffffe, {0x0, 0x200000000, 0x1, 0x4, 0x6, 0x0, {0x0, 0x10001, 0x200000000000, 0xd, 0x0, 0x100, 0x10000, 0x2, 0x80000000, 0x0, 0xd, r7, 0x0, 0x7, 0xa0}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r1, &(0x7f0000004300)={0x50, 0xfffffffffffffffe, r6, {0x7, 0x26, 0x8, 0xfffffffff323ca46, 0x0, 0xfffc, 0x80000006, 0x5d3186cc, 0x0, 0x0, 0x1, 0x10001}}, 0x50)
mount$bpf(0x0, &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x9168638c743c6d31, 0x0)
creat(&(0x7f00000001c0)='./file0/file0\x00', 0x108)

1.448579802s ago: executing program 0 (id=690):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = fcntl$dupfd(r0, 0x406, r0)
ioctl$VIDIOC_S_INPUT(r3, 0xc0045627, &(0x7f00000000c0)=0x9)
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd7000fedbdf255100000008000300", @ANYRES32=r1, @ANYBLOB="0a000600080211000001000005008a0003"], 0x30}, 0x1, 0x0, 0x0, 0x24000801}, 0x4c000)

1.409176321s ago: executing program 0 (id=691):
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x103100, 0x0) (async)
socket$netlink(0x10, 0x3, 0x4) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)) (async)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0xbb0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c) (async)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, 0x0, 0x20)
syz_io_uring_setup(0x497, &(0x7f0000000900)={0x0, 0x7278, 0x100, 0x40f, 0x14a}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x800}}) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
socket(0x28, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$pptp(0x18, 0x1, 0x2) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) (async)
r3 = syz_io_uring_setup(0x24f6, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0) (async)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000180)=ANY=[], 0x118) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, 0xffffffffffffffff, 0x0) (async)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x8})
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x15, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x11, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r7}, 0x10) (async)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)

1.404049363s ago: executing program 1 (id=692):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r1 = socket(0x2, 0x2, 0x1)
r2 = syz_io_uring_setup(0x332e, &(0x7f0000000480)={0x0, 0xaeb7, 0x40, 0x3, 0x2d9}, &(0x7f00000001c0), &(0x7f0000000400))
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r2, 0x1e, &(0x7f0000000500)={r1}, 0x1)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
r3 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
pipe2$watch_queue(&(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x8a)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r7, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r7, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x0, 0xfe, 0x2, 0x0, 0x9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xe)
shutdown(r7, 0x1)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r7, 0x84, 0x21, &(0x7f0000000100)=0x6, 0x4)
recvmmsg(r7, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x60000)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)

1.338580758s ago: executing program 0 (id=693):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000010}, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffffffffffaaaaa8aaaabb86dd000186dd06100004aaaaaaaaaabbfc000000000000000000000000000001aaaaaaaaaabbfe8000"/62], 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e22, @broadcast}, 0x10)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
sendto$inet(r3, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
unshare(0x40020000)

1.144894453s ago: executing program 1 (id=694):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r0, 0x8923, &(0x7f0000000000)={'bridge_slave_0\x00', 0x40000001}) (fail_nth: 11)

956.274329ms ago: executing program 1 (id=695):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r0, 0x8923, &(0x7f0000000000)={'bridge_slave_0\x00', 0x4000002e})

954.285791ms ago: executing program 3 (id=696):
syz_open_procfs$pagemap(0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet6(0xa, 0x2, 0x3a)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001d00), 0x0, 0x2, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x2d)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff})
readv(r4, &(0x7f0000002a40)=[{&(0x7f00000007c0)=""/4096, 0x1000}], 0x1)

953.049096ms ago: executing program 1 (id=697):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x44, 0x2, 0x6, 0x3, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r3 = dup3(r1, r0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a, 0x2})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3e, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0})

922.896644ms ago: executing program 1 (id=698):
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$rdma_cm(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
setregid(0x0, 0x0)
unshare(0x2000000)
socket(0x11, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x840}, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000f40), 0x0, 0xe000)

771.359145ms ago: executing program 2 (id=699):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e00000002"], 0x8)

678.961013ms ago: executing program 2 (id=700):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000511a8def"], 0x48)
add_key(&(0x7f0000000080)='rxrpc_s\x00', &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000080))
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0x2, 0x2b}, 0xa, @in6=@local, 0x0, 0x4}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
bind$inet(r6, 0x0, 0x0)
setsockopt$sock_int(r6, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r6, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r6, &(0x7f0000004d00)=[{{0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x1, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{}, [{0x0, 0x0, 0x6, 0x0, 0x0, 0x651e51ba}, {}, {}, {}, {0x2000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0xffffffff}, {0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x7d2d}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x53f9}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0xfffffffc}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
sendmsg$nl_route(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="380000002000010000000000000000000a00000000000000000000001400110064766d7270310000000001000000000008000a00000046"], 0x38}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="940000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0300000000000000640012800b0001006970366772650000540002800800150061db0a0008000100", @ANYRES32, @ANYBLOB="14000700fe8000000000000000000000000000aa08000d005fe1ffff060010004e22000008000500200c000014000600fc"], 0x94}}, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r8 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r8, &(0x7f0000000040)={0x23, 0x4, 0x2}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c00000010004b0400f4ed00000000007a000000", @ANYRES64=r0, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c0002"], 0x4c}}, 0x0)

73.209845ms ago: executing program 0 (id=701):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
write(r3, &(0x7f0000000000)="240000001a00590214f9f407000904101f00000000000100000000000800040001000000", 0x24)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000005000000014d564b00000000af"])
ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f00000000c0))
timer_create(0x8, &(0x7f00000002c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x101080, 0x0) (fail_nth: 9)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

61.874921ms ago: executing program 3 (id=702):
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48)
io_uring_setup(0x4126, &(0x7f00000007c0)={0x0, 0x0, 0x800, 0x0, 0x1000000})
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0x29, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
socket$inet6(0xa, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0xaa000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = socket(0x10, 0x80002, 0x0)
write$P9_RLERRORu(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ffff", @ANYRES16=r4, @ANYRESDEC], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_9p2000}]}})

0s ago: executing program 1 (id=703):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
prlimit64(0x0, 0x7, &(0x7f0000000440), 0x0)
r2 = epoll_create1(0x0)
r3 = epoll_create(0x3e5)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000)={0x20000000})
close(r3)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x200, 0x800, 0x25dfdbee, {0x0, 0x0, 0x0, 0x0, {0x4, 0x10}, {0x0, 0x6}, {0xf, 0xfff1}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_TARGET={0x8, 0x1, 0x7}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1e, 0x805, 0x0)
connect$tipc(r5, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x0, 0x1}, 0x2}}, 0x10)
epoll_create1(0x80000)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r4, 0x0, 0x4ffe6, 0x0)

kernel console output (not intermixed with test programs):

1326 audit(1753444777.669:12538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7105 comm="syz.1.241" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  127.447479][   T40] audit: type=1326 audit(1753444777.689:12539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7105 comm="syz.1.241" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  127.456512][   T40] audit: type=1326 audit(1753444777.689:12540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7105 comm="syz.1.241" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  127.465414][   T40] audit: type=1326 audit(1753444777.699:12541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7105 comm="syz.1.241" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  127.474407][   T40] audit: type=1326 audit(1753444777.699:12542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7105 comm="syz.1.241" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  127.483479][   T40] audit: type=1326 audit(1753444777.709:12543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7105 comm="syz.1.241" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  127.782905][ T7109] netlink: 'syz.2.242': attribute type 1 has an invalid length.
[  127.798811][ T7109] 8021q: adding VLAN 0 to HW filter on device bond1
[  127.824282][ T7109] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  127.833586][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  127.889025][ T7109] bond1 (unregistering): (slave gretap1): Releasing backup interface
[  127.893172][ T7109] bond1 (unregistering): Released all slaves
[  127.965272][ T7109] bridge0: entered allmulticast mode
[  127.970560][ T7109] pim6reg: entered allmulticast mode
[  128.176657][ T7114] loop4: detected capacity change from 0 to 524255232
[  128.220084][ T7114] loop4: detected capacity change from 524255232 to 524287956
[  128.390044][ T7124] netlink: 4 bytes leftover after parsing attributes in process `syz.1.245'.
[  128.863630][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  129.215925][ T7131] netlink: 52 bytes leftover after parsing attributes in process `syz.2.247'.
[  129.903647][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  130.943639][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  131.082512][ T7164] fuse: Bad value for 'user_id'
[  131.084175][ T7164] fuse: Bad value for 'user_id'
[  131.122081][ T7155] netlink: 160 bytes leftover after parsing attributes in process `syz.0.254'.
[  131.129033][ T7166] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  131.241612][ T5955] Bluetooth: to_multiplier 0 < 10
[  131.247513][ T7168] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  131.287955][ T7170] netlink: 52 bytes leftover after parsing attributes in process `syz.3.258'.
[  131.983784][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  132.235231][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  132.237255][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  132.287184][ T7193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.264'.
[  132.513591][   T40] kauditd_printk_skb: 240 callbacks suppressed
[  132.513605][   T40] audit: type=1326 audit(1753444782.759:12784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.525919][   T40] audit: type=1326 audit(1753444782.759:12785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.534664][   T40] audit: type=1326 audit(1753444782.759:12786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.543087][   T40] audit: type=1326 audit(1753444782.759:12787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.558561][   T40] audit: type=1326 audit(1753444782.759:12788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.567911][   T40] audit: type=1326 audit(1753444782.759:12789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.567958][ T7199] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  132.577371][   T40] audit: type=1326 audit(1753444782.769:12790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.579299][ T7199] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  132.586698][   T40] audit: type=1326 audit(1753444782.769:12791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.591127][ T7199] vhci_hcd vhci_hcd.0: Device attached
[  132.596702][   T40] audit: type=1326 audit(1753444782.769:12792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.605120][   T40] audit: type=1326 audit(1753444782.769:12793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7195 comm="syz.0.265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  132.630685][ T7200] vhci_hcd: unknown pdu 1
[  132.633994][ T1139] vhci_hcd: stop threads
[  132.635865][ T1139] vhci_hcd: release socket
[  132.637682][ T1139] vhci_hcd: disconnect device
[  133.023594][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  133.482207][ T7205] netlink: 52 bytes leftover after parsing attributes in process `syz.2.267'.
[  134.063638][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  135.103548][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  135.989615][ T6002] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  136.153641][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  136.395217][ T6002] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  136.399527][ T6002] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  136.403448][ T6002] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  136.407116][ T6002] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.413014][ T7243] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  136.418099][ T6002] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  136.774738][ T6002] usb 6-1: USB disconnect, device number 6
[  136.880608][ T7275] netlink: 4 bytes leftover after parsing attributes in process `syz.2.284'.
[  137.183630][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  137.314766][ T5955] Bluetooth: hci2: unexpected event 0x07 length: 4 < 255
[  138.223606][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  138.751899][ T7305] netlink: 4 bytes leftover after parsing attributes in process `syz.1.293'.
[  139.111466][   T40] kauditd_printk_skb: 778 callbacks suppressed
[  139.111556][   T40] audit: type=1326 audit(1753444789.369:13572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.125894][   T40] audit: type=1326 audit(1753444789.369:13573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.132668][   T40] audit: type=1326 audit(1753444789.369:13574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.184368][   T40] audit: type=1326 audit(1753444789.369:13575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.199542][   T40] audit: type=1326 audit(1753444789.369:13576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.216302][   T40] audit: type=1326 audit(1753444789.369:13577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.230623][   T40] audit: type=1326 audit(1753444789.369:13578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.246448][   T40] audit: type=1326 audit(1753444789.379:13579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.253898][   T40] audit: type=1326 audit(1753444789.379:13580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.254041][   T40] audit: type=1326 audit(1753444789.379:13581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7312 comm="syz.2.295" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  139.273553][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  140.303601][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  140.765085][ T7341] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  140.770434][ T7341] overlayfs: failed to resolve './file0': -2
[  140.809342][ T7345] IPVS: Error connecting to the multicast addr
[  141.343754][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  142.383595][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  142.784835][ T7377] vlan1: entered promiscuous mode
[  142.787459][ T7377] vlan1: entered allmulticast mode
[  142.789045][ T7377] veth0_vlan: entered allmulticast mode
[  143.012522][ T7395] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  143.014576][ T7395] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  143.019567][ T7395] vhci_hcd vhci_hcd.0: Device attached
[  143.022004][ T7396] vhci_hcd: unknown pdu 1
[  143.024627][ T1009] vhci_hcd: stop threads
[  143.026841][ T1009] vhci_hcd: release socket
[  143.029811][ T1009] vhci_hcd: disconnect device
[  143.167625][ T7377] syz.1.309 (7377) used greatest stack depth: 19288 bytes left
[  143.390519][ T7403] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  143.392535][ T7403] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  143.405191][ T7403] vhci_hcd vhci_hcd.0: Device attached
[  143.421982][ T7404] vhci_hcd: unknown pdu 1
[  143.433584][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  143.436758][ T1254] vhci_hcd: stop threads
[  143.438724][ T1254] vhci_hcd: release socket
[  143.441264][ T1254] vhci_hcd: disconnect device
[  144.473556][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  144.609651][ T7418] trusted_key: encrypted_key: master key parameter '' is invalid
[  145.354848][ T7422] netlink: 52 bytes leftover after parsing attributes in process `syz.1.317'.
[  145.500858][   T40] kauditd_printk_skb: 655 callbacks suppressed
[  145.500869][   T40] audit: type=1326 audit(1753444795.759:14237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7431 comm="syz.2.319" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  145.509792][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  145.513801][   T40] audit: type=1326 audit(1753444795.779:14238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7431 comm="syz.2.319" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  145.630657][ T7437] netlink: 24 bytes leftover after parsing attributes in process `syz.1.321'.
[  145.761862][   T40] audit: type=1326 audit(1753444796.009:14239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.1.322" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  146.104200][   T40] audit: type=1326 audit(1753444796.009:14240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.1.322" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  146.113206][   T40] audit: type=1326 audit(1753444796.019:14241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.1.322" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  146.133676][   T40] audit: type=1326 audit(1753444796.019:14242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.1.322" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  146.140420][   T40] audit: type=1326 audit(1753444796.019:14243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.1.322" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  146.147276][   T40] audit: type=1326 audit(1753444796.019:14244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.1.322" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  146.153958][   T40] audit: type=1326 audit(1753444796.019:14245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.1.322" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  146.160754][   T40] audit: type=1326 audit(1753444796.019:14246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.1.322" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  146.543623][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  147.260406][ T7454] 9pnet_fd: Insufficient options for proto=fd
[  147.383836][ T7463] syz.0.328(7463): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  147.583630][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  147.677044][ T7469] FAULT_INJECTION: forcing a failure.
[  147.677044][ T7469] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.683048][ T7469] CPU: 2 UID: 0 PID: 7469 Comm: syz.0.330 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  147.683063][ T7469] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.683069][ T7469] Call Trace:
[  147.683073][ T7469]  <TASK>
[  147.683077][ T7469]  dump_stack_lvl+0x16c/0x1f0
[  147.683093][ T7469]  should_fail_ex+0x512/0x640
[  147.683106][ T7469]  _copy_to_user+0x32/0xd0
[  147.683118][ T7469]  simple_read_from_buffer+0xcb/0x170
[  147.683135][ T7469]  proc_fail_nth_read+0x197/0x270
[  147.683150][ T7469]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  147.683164][ T7469]  ? rw_verify_area+0xcf/0x680
[  147.683178][ T7469]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  147.683192][ T7469]  vfs_read+0x1e4/0xc60
[  147.683202][ T7469]  ? fdget_pos+0x2a2/0x370
[  147.683213][ T7469]  ? __pfx_vfs_read+0x10/0x10
[  147.683221][ T7469]  ? find_held_lock+0x2b/0x80
[  147.683236][ T7469]  ? __fget_files+0x20e/0x3c0
[  147.683255][ T7469]  ksys_read+0x12a/0x250
[  147.683264][ T7469]  ? __pfx_ksys_read+0x10/0x10
[  147.683274][ T7469]  ? rcu_is_watching+0x12/0xc0
[  147.683287][ T7469]  __do_fast_syscall_32+0x7c/0x3a0
[  147.683299][ T7469]  do_fast_syscall_32+0x32/0x80
[  147.683310][ T7469]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.683322][ T7469] RIP: 0023:0xf707e579
[  147.683331][ T7469] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  147.683340][ T7469] RSP: 002b:00000000f506e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  147.683350][ T7469] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f506e620
[  147.683356][ T7469] RDX: 000000000000000f RSI: 00000000f73e4ff4 RDI: 0000000000000000
[  147.683362][ T7469] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  147.683367][ T7469] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  147.683373][ T7469] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.683385][ T7469]  </TASK>
[  147.750993][ T7466] netlink: 52 bytes leftover after parsing attributes in process `syz.1.329'.
[  147.839745][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  148.317945][ T5955] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  148.322512][ T5955] CPU: 0 UID: 0 PID: 5955 Comm: kworker/u33:2 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  148.322537][ T5955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.322548][ T5955] Workqueue: hci3 hci_rx_work
[  148.322571][ T5955] Call Trace:
[  148.322578][ T5955]  <TASK>
[  148.322585][ T5955]  dump_stack_lvl+0x16c/0x1f0
[  148.322609][ T5955]  sysfs_warn_dup+0x7f/0xa0
[  148.322636][ T5955]  sysfs_create_dir_ns+0x24b/0x2b0
[  148.322659][ T5955]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  148.322688][ T5955]  ? find_held_lock+0x2b/0x80
[  148.322712][ T5955]  ? do_raw_spin_unlock+0x172/0x230
[  148.322744][ T5955]  kobject_add_internal+0x2c4/0x9b0
[  148.322770][ T5955]  kobject_add+0x16e/0x240
[  148.322789][ T5955]  ? __pfx_kobject_add+0x10/0x10
[  148.322812][ T5955]  ? do_raw_spin_unlock+0x172/0x230
[  148.322839][ T5955]  ? kobject_put+0xab/0x5a0
[  148.322865][ T5955]  device_add+0x288/0x1a70
[  148.322889][ T5955]  ? __pfx_dev_set_name+0x10/0x10
[  148.322914][ T5955]  ? __pfx_device_add+0x10/0x10
[  148.322936][ T5955]  ? mgmt_send_event_skb+0x2fb/0x460
[  148.322961][ T5955]  hci_conn_add_sysfs+0x17e/0x230
[  148.323004][ T5955]  le_conn_complete_evt+0x1075/0x1d70
[  148.323044][ T5955]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  148.323073][ T5955]  ? hci_event_packet+0x459/0x11c0
[  148.323107][ T5955]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  148.323136][ T5955]  ? skb_pull_data+0x166/0x210
[  148.323157][ T5955]  hci_le_meta_evt+0x357/0x5e0
[  148.323175][ T5955]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  148.323207][ T5955]  hci_event_packet+0x682/0x11c0
[  148.323236][ T5955]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  148.323257][ T5955]  ? __pfx_hci_event_packet+0x10/0x10
[  148.323287][ T5955]  ? kcov_remote_start+0x3c9/0x6d0
[  148.323311][ T5955]  ? lockdep_hardirqs_on+0x7c/0x110
[  148.323334][ T5955]  hci_rx_work+0x2c5/0x16b0
[  148.323354][ T5955]  ? rcu_is_watching+0x12/0xc0
[  148.323376][ T5955]  process_one_work+0x9cf/0x1b70
[  148.323414][ T5955]  ? __pfx_process_one_work+0x10/0x10
[  148.323449][ T5955]  ? assign_work+0x1a0/0x250
[  148.323476][ T5955]  worker_thread+0x6c8/0xf10
[  148.323540][ T5955]  ? __pfx_worker_thread+0x10/0x10
[  148.323569][ T5955]  kthread+0x3c2/0x780
[  148.323597][ T5955]  ? __pfx_kthread+0x10/0x10
[  148.323624][ T5955]  ? rcu_is_watching+0x12/0xc0
[  148.323642][ T5955]  ? __pfx_kthread+0x10/0x10
[  148.323669][ T5955]  ret_from_fork+0x5d4/0x6f0
[  148.323701][ T5955]  ? __pfx_kthread+0x10/0x10
[  148.323728][ T5955]  ret_from_fork_asm+0x1a/0x30
[  148.323764][ T5955]  </TASK>
[  148.427362][ T5955] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  148.433297][ T5955] Bluetooth: hci3: failed to register connection device
[  148.623776][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  149.663615][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  150.464606][ T5955] Bluetooth: hci3: command tx timeout
[  150.703797][    C0] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  151.743722][    C0] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  152.783807][    C2] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  153.833569][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  154.863613][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  155.903735][    C2] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  156.943679][    C2] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  157.983636][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  159.023833][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  160.063706][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  161.023806][    C2] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  161.103565][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  162.143864][    C0] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  162.516180][ T7553] netlink: 4 bytes leftover after parsing attributes in process `syz.3.343'.
[  163.183571][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  163.505852][ T7547] netlink: 12 bytes leftover after parsing attributes in process `syz.2.342'.
[  163.824955][ T7580] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  163.827054][ T7580] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  163.830115][ T7580] vhci_hcd vhci_hcd.0: Device attached
[  163.834236][ T7581] vhci_hcd: unknown pdu 1
[  163.836182][   T46] vhci_hcd: stop threads
[  163.837914][   T46] vhci_hcd: release socket
[  163.839532][   T46] vhci_hcd: disconnect device
[  164.233645][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  164.829536][ T7598] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  164.832137][ T7598] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  164.850728][ T7598] vhci_hcd vhci_hcd.0: Device attached
[  165.254067][ T6046] usb 39-1: new low-speed USB device number 3 using vhci_hcd
[  165.257122][ T7604] 9pnet: p9_errstr2errno: server reported unknown error 1844674407370955161
[  165.263571][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  165.452338][ T7599] vhci_hcd: connection reset by peer
[  165.457905][   T60] vhci_hcd: stop threads
[  165.459840][   T60] vhci_hcd: release socket
[  165.461757][   T60] vhci_hcd: disconnect device
[  166.316303][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  166.474480][    T9] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  166.634267][    T9] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  166.640158][    T9] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  166.644708][    T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  166.649198][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.658544][ T7627] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  166.730197][    T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  167.313744][    T9] usb 6-1: USB disconnect, device number 7
[  167.353570][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  168.383571][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  169.434927][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  170.143596][ T5963] Bluetooth: hci1: command 0x0406 tx timeout
[  170.145563][ T5963] Bluetooth: hci2: command 0x0406 tx timeout
[  170.194610][ T7688] netlink: 52 bytes leftover after parsing attributes in process `syz.2.372'.
[  170.394136][ T6046] vhci_hcd: vhci_device speed not set
[  170.463673][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  170.463768][    T9] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  170.774980][    T9] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  170.780006][    T9] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  170.784818][    T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  170.788916][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.296991][ T7693] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  171.308895][    T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  171.503578][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  171.515682][    T9] usb 6-1: USB disconnect, device number 8
[  172.219949][ T7728] netlink: 52 bytes leftover after parsing attributes in process `syz.1.383'.
[  172.543591][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  172.833634][ T6046] usb 6-1: new low-speed USB device number 9 using dummy_hcd
[  172.963596][ T6046] usb 6-1: device descriptor read/64, error -71
[  173.209089][ T6046] usb 6-1: new low-speed USB device number 10 using dummy_hcd
[  173.354591][ T6046] usb 6-1: device descriptor read/64, error -71
[  173.459593][ T7746] FAULT_INJECTION: forcing a failure.
[  173.459593][ T7746] name failslab, interval 1, probability 0, space 0, times 0
[  173.465037][ T7746] CPU: 0 UID: 0 PID: 7746 Comm: syz.3.389 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  173.465060][ T7746] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.465071][ T7746] Call Trace:
[  173.465077][ T7746]  <TASK>
[  173.465084][ T7746]  dump_stack_lvl+0x16c/0x1f0
[  173.465107][ T7746]  should_fail_ex+0x512/0x640
[  173.465125][ T7746]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  173.465153][ T7746]  should_failslab+0xc2/0x120
[  173.465174][ T7746]  __kmalloc_cache_noprof+0x6a/0x3e0
[  173.465200][ T7746]  ? drm_atomic_state_alloc+0xb8/0x120
[  173.465224][ T7746]  ? kasan_save_track+0x14/0x30
[  173.465244][ T7746]  drm_atomic_state_alloc+0xb8/0x120
[  173.465268][ T7746]  drm_mode_atomic_ioctl+0x393/0x25f0
[  173.465306][ T7746]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  173.465331][ T7746]  ? __lock_acquire+0xb8a/0x1c90
[  173.465370][ T7746]  ? drm_is_current_master+0x2c/0x40
[  173.465396][ T7746]  ? do_raw_spin_unlock+0x172/0x230
[  173.465425][ T7746]  drm_ioctl_kernel+0x1f1/0x3e0
[  173.465443][ T7746]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  173.465469][ T7746]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  173.465495][ T7746]  drm_ioctl+0x5c9/0xc30
[  173.465523][ T7746]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  173.465549][ T7746]  ? __pfx_drm_ioctl+0x10/0x10
[  173.465588][ T7746]  drm_compat_ioctl+0x327/0x460
[  173.465614][ T7746]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  173.465638][ T7746]  __ia32_compat_sys_ioctl+0x23f/0x370
[  173.465666][ T7746]  __do_fast_syscall_32+0x7c/0x3a0
[  173.465688][ T7746]  do_fast_syscall_32+0x32/0x80
[  173.465707][ T7746]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.465728][ T7746] RIP: 0023:0xf7fd2579
[  173.465741][ T7746] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.465756][ T7746] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  173.465772][ T7746] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c03864bc
[  173.465782][ T7746] RDX: 0000000080000380 RSI: 0000000000000000 RDI: 0000000000000000
[  173.465792][ T7746] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  173.465802][ T7746] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  173.465811][ T7746] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.465833][ T7746]  </TASK>
[  173.474406][ T6046] usb usb6-port1: attempt power cycle
[  173.583558][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  174.364572][ T6046] usb 6-1: new low-speed USB device number 11 using dummy_hcd
[  174.384201][ T6046] usb 6-1: device descriptor read/8, error -71
[  174.623562][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  174.723611][ T6046] usb 6-1: new low-speed USB device number 12 using dummy_hcd
[  174.743995][ T6046] usb 6-1: device descriptor read/8, error -71
[  174.854711][ T6046] usb usb6-port1: unable to enumerate USB device
[  175.235131][   T40] kauditd_printk_skb: 136 callbacks suppressed
[  175.235141][   T40] audit: type=1326 audit(1753444825.499:14383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.250800][   T40] audit: type=1326 audit(1753444825.499:14384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.258937][   T40] audit: type=1326 audit(1753444825.509:14385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.266137][   T40] audit: type=1326 audit(1753444825.509:14386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.272779][   T40] audit: type=1326 audit(1753444825.509:14387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.282211][   T40] audit: type=1326 audit(1753444825.509:14388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.289414][   T40] audit: type=1326 audit(1753444825.509:14389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.298001][   T40] audit: type=1326 audit(1753444825.509:14390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.307282][   T40] audit: type=1326 audit(1753444825.509:14391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.315439][   T40] audit: type=1326 audit(1753444825.509:14392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.2.394" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  175.663591][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  176.703623][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  177.295059][ T7791] FAULT_INJECTION: forcing a failure.
[  177.295059][ T7791] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.300148][ T7791] CPU: 1 UID: 0 PID: 7791 Comm: syz.1.397 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  177.300171][ T7791] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  177.300181][ T7791] Call Trace:
[  177.300188][ T7791]  <TASK>
[  177.300195][ T7791]  dump_stack_lvl+0x16c/0x1f0
[  177.300218][ T7791]  should_fail_ex+0x512/0x640
[  177.300240][ T7791]  _copy_from_user+0x2e/0xd0
[  177.300260][ T7791]  generic_map_update_batch+0x3e9/0x610
[  177.300295][ T7791]  ? __pfx_generic_map_update_batch+0x10/0x10
[  177.300326][ T7791]  ? __pfx_generic_map_update_batch+0x10/0x10
[  177.300353][ T7791]  bpf_map_do_batch+0x5b4/0x680
[  177.300378][ T7791]  __sys_bpf+0x189f/0x4ea0
[  177.300397][ T7791]  ? __pfx___sys_bpf+0x10/0x10
[  177.300413][ T7791]  ? ksys_write+0x190/0x250
[  177.300433][ T7791]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  177.300466][ T7791]  ? fput+0x70/0xf0
[  177.300491][ T7791]  ? ksys_write+0x1ac/0x250
[  177.300507][ T7791]  ? __pfx_ksys_write+0x10/0x10
[  177.300528][ T7791]  __ia32_sys_bpf+0x76/0xe0
[  177.300545][ T7791]  __do_fast_syscall_32+0x7c/0x3a0
[  177.300566][ T7791]  do_fast_syscall_32+0x32/0x80
[  177.300584][ T7791]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  177.300605][ T7791] RIP: 0023:0xf70ee579
[  177.300619][ T7791] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  177.300635][ T7791] RSP: 002b:00000000f509c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  177.300651][ T7791] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 0000000080000480
[  177.300662][ T7791] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  177.300671][ T7791] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  177.300681][ T7791] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  177.300690][ T7791] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  177.300712][ T7791]  </TASK>
[  177.367788][    C1] vkms_vblank_simulate: vblank timer overrun
[  177.415974][ T7793] netlink: 4 bytes leftover after parsing attributes in process `syz.3.400'.
[  177.753555][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  178.783571][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  179.133744][   T10] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  179.212692][ T7825] lo speed is unknown, defaulting to 1000
[  179.215933][ T7825] lo speed is unknown, defaulting to 1000
[  179.225649][ T7825] lo speed is unknown, defaulting to 1000
[  179.238155][ T7825] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  179.244747][ T7825] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  179.260389][ T7825] lo speed is unknown, defaulting to 1000
[  179.263105][ T7825] lo speed is unknown, defaulting to 1000
[  179.268165][ T7825] lo speed is unknown, defaulting to 1000
[  179.271454][ T7825] lo speed is unknown, defaulting to 1000
[  179.289453][   T10] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  179.299282][   T10] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  179.302540][   T10] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  179.308167][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.318919][ T7820] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  179.330770][   T10] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  179.537905][   T10] usb 7-1: USB disconnect, device number 4
[  179.823573][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  180.420112][ T7849] FAULT_INJECTION: forcing a failure.
[  180.420112][ T7849] name failslab, interval 1, probability 0, space 0, times 0
[  180.424888][ T7849] CPU: 1 UID: 0 PID: 7849 Comm: syz.2.413 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  180.424914][ T7849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.424921][ T7849] Call Trace:
[  180.424925][ T7849]  <TASK>
[  180.424929][ T7849]  dump_stack_lvl+0x16c/0x1f0
[  180.424943][ T7849]  should_fail_ex+0x512/0x640
[  180.424954][ T7849]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  180.424966][ T7849]  should_failslab+0xc2/0x120
[  180.424978][ T7849]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  180.424988][ T7849]  ? lockdep_hardirqs_on+0x7c/0x110
[  180.424998][ T7849]  ? alloc_empty_file+0x55/0x1e0
[  180.425012][ T7849]  alloc_empty_file+0x55/0x1e0
[  180.425025][ T7849]  path_openat+0xda/0x2cb0
[  180.425034][ T7849]  ? do_fast_syscall_32+0x32/0x80
[  180.425044][ T7849]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  180.425061][ T7849]  ? __pfx_path_openat+0x10/0x10
[  180.425075][ T7849]  do_filp_open+0x20b/0x470
[  180.425085][ T7849]  ? __pfx_do_filp_open+0x10/0x10
[  180.425104][ T7849]  ? _raw_spin_unlock+0x28/0x50
[  180.425118][ T7849]  ? alloc_fd+0x471/0x7d0
[  180.425137][ T7849]  do_sys_openat2+0x11b/0x1d0
[  180.425150][ T7849]  ? __pfx_do_sys_openat2+0x10/0x10
[  180.425164][ T7849]  ? __fget_files+0x20e/0x3c0
[  180.425178][ T7849]  ? handle_mm_fault+0x250/0xd10
[  180.425196][ T7849]  __ia32_compat_sys_openat+0x16d/0x210
[  180.425210][ T7849]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  180.425224][ T7849]  ? ksys_write+0x1ac/0x250
[  180.425235][ T7849]  ? rcu_is_watching+0x12/0xc0
[  180.425248][ T7849]  __do_fast_syscall_32+0x7c/0x3a0
[  180.425259][ T7849]  do_fast_syscall_32+0x32/0x80
[  180.425270][ T7849]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  180.425282][ T7849] RIP: 0023:0xf7fd3579
[  180.425290][ T7849] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  180.425299][ T7849] RSP: 002b:00000000f50b455c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  180.425309][ T7849] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000a80
[  180.425316][ T7849] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  180.425321][ T7849] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  180.425327][ T7849] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  180.425333][ T7849] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  180.425346][ T7849]  </TASK>
[  180.873977][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  181.250057][ T7854] lo speed is unknown, defaulting to 1000
[  181.751230][ T7865] =======================================================
[  181.751230][ T7865] WARNING: The mand mount option has been deprecated and
[  181.751230][ T7865]          and is ignored by this kernel. Remove the mand
[  181.751230][ T7865]          option from the mount to silence this warning.
[  181.751230][ T7865] =======================================================
[  181.780978][ T7865] ubi31: attaching mtd0
[  181.877789][ T7865] ubi31: scanning is finished
[  181.879887][ T7865] ubi31: empty MTD device detected
[  181.913644][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  182.009325][ T7865] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  182.015733][ T7865] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  182.018973][ T7865] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  182.022037][ T7865] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  182.025483][ T7865] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  182.028332][ T7865] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  182.031767][ T7865] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 717539533
[  182.037877][ T7865] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  182.043567][ T7870] ubi31: background thread "ubi_bgt31d" started, PID 7870
[  182.776467][ T7881] warning: `syz.2.424' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  182.943624][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  183.033630][ T6046] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  183.183702][ T6046] usb 8-1: Using ep0 maxpacket: 16
[  183.191377][ T6046] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  183.195901][ T6046] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  183.199852][ T6046] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  183.205224][ T6046] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  183.208962][ T6046] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.212998][ T6046] usb 8-1: config 0 descriptor??
[  183.622005][ T7883] input: syz1 as /devices/virtual/input/input7
[  183.636176][ T7883] random: crng reseeded on system resumption
[  183.651700][ T6046] usbhid 8-1:0.0: can't add hid device: -71
[  183.653700][ T6046] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  183.658835][ T6046] usb 8-1: USB disconnect, device number 5
[  183.993599][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  184.214845][ T7899] lo speed is unknown, defaulting to 1000
[  184.699307][ T7913] ieee802154 phy0 wpan0: encryption failed: -22
[  185.023572][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  185.565108][ T7920] comedi comedi2: multiq3: I/O port conflict (0x40,16)
[  185.603169][ T7924] FAULT_INJECTION: forcing a failure.
[  185.603169][ T7924] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  185.609218][ T7924] CPU: 0 UID: 0 PID: 7924 Comm: syz.0.438 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  185.609242][ T7924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.609252][ T7924] Call Trace:
[  185.609257][ T7924]  <TASK>
[  185.609263][ T7924]  dump_stack_lvl+0x16c/0x1f0
[  185.609283][ T7924]  should_fail_ex+0x512/0x640
[  185.609303][ T7924]  should_fail_alloc_page+0xe7/0x130
[  185.609324][ T7924]  prepare_alloc_pages+0x3c2/0x610
[  185.609351][ T7924]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  185.609374][ T7924]  ? rcu_is_watching+0x12/0xc0
[  185.609393][ T7924]  ? trace_mm_page_alloc+0x11f/0x1a0
[  185.609418][ T7924]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  185.609447][ T7924]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  185.609470][ T7924]  ? is_bpf_text_address+0x8a/0x1a0
[  185.609494][ T7924]  ? bpf_ksym_find+0x124/0x1c0
[  185.609517][ T7924]  ? is_bpf_text_address+0x94/0x1a0
[  185.609542][ T7924]  ? __lock_acquire+0x622/0x1c90
[  185.609565][ T7924]  ? __kernel_text_address+0xd/0x40
[  185.609593][ T7924]  ? unwind_get_return_address+0x59/0xa0
[  185.609633][ T7924]  alloc_pages_bulk_noprof+0x71c/0x1410
[  185.609650][ T7924]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.609680][ T7924]  ? policy_nodemask+0xea/0x4e0
[  185.609702][ T7924]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  185.609721][ T7924]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  185.609752][ T7924]  kasan_populate_vmalloc+0xf1/0x1f0
[  185.609787][ T7924]  alloc_vmap_area+0x959/0x29c0
[  185.609819][ T7924]  ? __pfx_alloc_vmap_area+0x10/0x10
[  185.609848][ T7924]  __get_vm_area_node+0x1ca/0x330
[  185.609876][ T7924]  __vmalloc_node_range_noprof+0x271/0x14b0
[  185.609903][ T7924]  ? fpu_alloc_guest_fpstate+0x24/0x450
[  185.609923][ T7924]  ? local_lock_release+0x99/0x140
[  185.609948][ T7924]  ? fpu_alloc_guest_fpstate+0x24/0x450
[  185.609972][ T7924]  ? rcu_read_unlock+0x17/0x60
[  185.609993][ T7924]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  185.610019][ T7924]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[  185.610047][ T7924]  ? fpu_alloc_guest_fpstate+0x24/0x450
[  185.610065][ T7924]  __vmalloc_node_noprof+0xad/0xf0
[  185.610087][ T7924]  ? fpu_alloc_guest_fpstate+0x24/0x450
[  185.610109][ T7924]  fpu_alloc_guest_fpstate+0x24/0x450
[  185.610129][ T7924]  kvm_arch_vcpu_create+0x54e/0xb20
[  185.610159][ T7924]  kvm_vm_ioctl+0xf6f/0x3dd0
[  185.610188][ T7924]  ? stack_trace_save+0x8e/0xc0
[  185.610213][ T7924]  ? __lock_acquire+0xb8a/0x1c90
[  185.610235][ T7924]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  185.610259][ T7924]  ? kasan_save_stack+0x42/0x60
[  185.610276][ T7924]  ? kasan_save_stack+0x33/0x60
[  185.610292][ T7924]  ? kasan_save_track+0x14/0x30
[  185.610304][ T7924]  ? kasan_save_free_info+0x3b/0x60
[  185.610327][ T7924]  ? __kasan_slab_free+0x51/0x70
[  185.610342][ T7924]  ? kfree+0x2b4/0x4d0
[  185.610363][ T7924]  ? tomoyo_path_number_perm+0x470/0x580
[  185.610383][ T7924]  ? security_file_ioctl_compat+0x9b/0x240
[  185.610407][ T7924]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  185.610429][ T7924]  ? __do_fast_syscall_32+0x7c/0x3a0
[  185.610450][ T7924]  ? do_fast_syscall_32+0x32/0x80
[  185.610465][ T7924]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.610502][ T7924]  ? kvm_arch_vm_compat_ioctl+0x2d0/0x470
[  185.610524][ T7924]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  185.610562][ T7924]  ? kasan_quarantine_put+0x10a/0x240
[  185.610579][ T7924]  ? lockdep_hardirqs_on+0x7c/0x110
[  185.610598][ T7924]  ? find_held_lock+0x2b/0x80
[  185.610616][ T7924]  ? tomoyo_path_number_perm+0x295/0x580
[  185.610642][ T7924]  ? tomoyo_path_number_perm+0x18d/0x580
[  185.610668][ T7924]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  185.610690][ T7924]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.610715][ T7924]  ? do_vfs_ioctl+0x523/0x1a60
[  185.610738][ T7924]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  185.610771][ T7924]  kvm_vm_compat_ioctl+0x393/0x430
[  185.610796][ T7924]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  185.610822][ T7924]  ? find_held_lock+0x2b/0x80
[  185.610838][ T7924]  ? hook_file_ioctl_common+0x145/0x410
[  185.610864][ T7924]  ? __fget_files+0x20e/0x3c0
[  185.610889][ T7924]  ? __fput_deferred+0x480/0x480
[  185.610913][ T7924]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  185.610940][ T7924]  __ia32_compat_sys_ioctl+0x23f/0x370
[  185.610966][ T7924]  __do_fast_syscall_32+0x7c/0x3a0
[  185.610988][ T7924]  do_fast_syscall_32+0x32/0x80
[  185.611005][ T7924]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.611027][ T7924] RIP: 0023:0xf707e579
[  185.611040][ T7924] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.611057][ T7924] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  185.611075][ T7924] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000ae41
[  185.611084][ T7924] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  185.611095][ T7924] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.611106][ T7924] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.611114][ T7924] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.611136][ T7924]  </TASK>
[  185.611376][ T7924] syz.0.438: vmalloc error: size 2496, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  185.877032][ T7924] CPU: 0 UID: 0 PID: 7924 Comm: syz.0.438 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  185.877057][ T7924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.877068][ T7924] Call Trace:
[  185.877074][ T7924]  <TASK>
[  185.877081][ T7924]  dump_stack_lvl+0x16c/0x1f0
[  185.877102][ T7924]  warn_alloc+0x248/0x3a0
[  185.877118][ T7924]  ? __pfx_warn_alloc+0x10/0x10
[  185.877132][ T7924]  ? kfree+0x2b4/0x4d0
[  185.877154][ T7924]  ? __get_vm_area_node+0x208/0x330
[  185.877176][ T7924]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  185.877197][ T7924]  ? local_lock_release+0x99/0x140
[  185.877216][ T7924]  ? fpu_alloc_guest_fpstate+0x24/0x450
[  185.877233][ T7924]  ? rcu_read_unlock+0x17/0x60
[  185.877253][ T7924]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  185.877280][ T7924]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[  185.877325][ T7924]  ? fpu_alloc_guest_fpstate+0x24/0x450
[  185.877341][ T7924]  __vmalloc_node_noprof+0xad/0xf0
[  185.877365][ T7924]  ? fpu_alloc_guest_fpstate+0x24/0x450
[  185.877385][ T7924]  fpu_alloc_guest_fpstate+0x24/0x450
[  185.877405][ T7924]  kvm_arch_vcpu_create+0x54e/0xb20
[  185.877434][ T7924]  kvm_vm_ioctl+0xf6f/0x3dd0
[  185.877462][ T7924]  ? stack_trace_save+0x8e/0xc0
[  185.877486][ T7924]  ? __lock_acquire+0xb8a/0x1c90
[  185.877511][ T7924]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  185.877533][ T7924]  ? kasan_save_stack+0x42/0x60
[  185.877550][ T7924]  ? kasan_save_stack+0x33/0x60
[  185.877564][ T7924]  ? kasan_save_track+0x14/0x30
[  185.877579][ T7924]  ? kasan_save_free_info+0x3b/0x60
[  185.877600][ T7924]  ? __kasan_slab_free+0x51/0x70
[  185.877622][ T7924]  ? kfree+0x2b4/0x4d0
[  185.877642][ T7924]  ? tomoyo_path_number_perm+0x470/0x580
[  185.877664][ T7924]  ? security_file_ioctl_compat+0x9b/0x240
[  185.877687][ T7924]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  185.877707][ T7924]  ? __do_fast_syscall_32+0x7c/0x3a0
[  185.877725][ T7924]  ? do_fast_syscall_32+0x32/0x80
[  185.877739][ T7924]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.877760][ T7924]  ? kvm_arch_vm_compat_ioctl+0x2d0/0x470
[  185.877796][ T7924]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  185.877838][ T7924]  ? kasan_quarantine_put+0x10a/0x240
[  185.877853][ T7924]  ? lockdep_hardirqs_on+0x7c/0x110
[  185.877871][ T7924]  ? find_held_lock+0x2b/0x80
[  185.877888][ T7924]  ? tomoyo_path_number_perm+0x295/0x580
[  185.877915][ T7924]  ? tomoyo_path_number_perm+0x18d/0x580
[  185.877941][ T7924]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  185.877964][ T7924]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  185.877988][ T7924]  ? do_vfs_ioctl+0x523/0x1a60
[  185.878009][ T7924]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  185.878042][ T7924]  kvm_vm_compat_ioctl+0x393/0x430
[  185.878067][ T7924]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  185.878095][ T7924]  ? find_held_lock+0x2b/0x80
[  185.878112][ T7924]  ? hook_file_ioctl_common+0x145/0x410
[  185.878142][ T7924]  ? __fget_files+0x20e/0x3c0
[  185.878164][ T7924]  ? __fput_deferred+0x480/0x480
[  185.878188][ T7924]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  185.878215][ T7924]  __ia32_compat_sys_ioctl+0x23f/0x370
[  185.878242][ T7924]  __do_fast_syscall_32+0x7c/0x3a0
[  185.878260][ T7924]  do_fast_syscall_32+0x32/0x80
[  185.878279][ T7924]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.878300][ T7924] RIP: 0023:0xf707e579
[  185.878313][ T7924] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.878330][ T7924] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  185.878347][ T7924] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000ae41
[  185.878355][ T7924] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  185.878364][ T7924] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.878374][ T7924] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.878385][ T7924] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.878406][ T7924]  </TASK>
[  185.878719][ T7924] Mem-Info:
[  186.047050][ T7924] active_anon:9063 inactive_anon:33 isolated_anon:0
[  186.047050][ T7924]  active_file:11263 inactive_file:39889 isolated_file:0
[  186.047050][ T7924]  unevictable:1768 dirty:234 writeback:0
[  186.047050][ T7924]  slab_reclaimable:10419 slab_unreclaimable:55018
[  186.047050][ T7924]  mapped:30803 shmem:5285 pagetables:1074
[  186.047050][ T7924]  sec_pagetables:298 bounce:0
[  186.047050][ T7924]  kernel_misc_reclaimable:0
[  186.047050][ T7924]  free:35778 free_pcp:16370 free_cma:0
[  186.063599][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  186.066117][ T7924] Node 0 active_anon:3096kB inactive_anon:0kB active_file:456kB inactive_file:16088kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:10540kB dirty:0kB writeback:0kB shmem:3996kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:7920kB pagetables:1128kB sec_pagetables:1124kB all_unreclaimable? yes Balloon:0kB
[  186.081931][ T7924] Node 1 active_anon:33156kB inactive_anon:132kB active_file:44596kB inactive_file:143468kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:112672kB dirty:936kB writeback:0kB shmem:17144kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5192kB pagetables:3168kB sec_pagetables:68kB all_unreclaimable? no Balloon:0kB
[  186.101113][ T7924] Node 0 DMA free:2324kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:328kB local_pcp:12kB free_cma:0kB
[  186.116224][ T7924] lowmem_reserve[]: 0 289 289 289 289
[  186.121643][ T7924] Node 0 DMA32 free:17108kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:4096KB free_highatomic:2180KB active_anon:3096kB inactive_anon:0kB active_file:456kB inactive_file:16088kB unevictable:3536kB writepending:0kB present:1032196kB managed:295992kB mlocked:0kB bounce:0kB free_pcp:15300kB local_pcp:3648kB free_cma:0kB
[  186.136893][ T7924] lowmem_reserve[]: 0 0 0 0 0
[  186.138936][ T7924] Node 1 DMA32 free:123680kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:33456kB inactive_anon:132kB active_file:44596kB inactive_file:143468kB unevictable:3536kB writepending:936kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:49600kB local_pcp:5808kB free_cma:0kB
[  186.153135][ T7924] lowmem_reserve[]: 0 0 0 0 0
[  186.155998][ T7924] Node 0 DMA: 45*4kB (UE) 6*8kB (UE) 1*16kB (U) 7*32kB (UE) 1*64kB (E) 0*128kB 1*256kB (E) 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 2324kB
[  186.162675][ T7924] Node 0 DMA32: 5*4kB (EH) 38*8kB (UMEH) 45*16kB (UMEH) 144*32kB (UMEH) 89*64kB (UMEH) 19*128kB (UEH) 3*256kB (UE) 1*512kB (U) 2*1024kB (ME) 0*2048kB 0*4096kB = 17108kB
[  186.181450][ T7924] Node 1 DMA32: 5*4kB (UE) 71*8kB (UE) 136*16kB (UM) 59*32kB (UME) 299*64kB (UME) 56*128kB (UME) 22*256kB (UME) 14*512kB (UME) 12*1024kB (UME) 11*2048kB (UME) 11*4096kB (UM) = 123628kB
[  186.206549][ T7924] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  186.210659][ T7924] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  186.214971][ T7924] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  186.218836][ T7924] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  186.222844][ T7924] 56466 total pagecache pages
[  186.283717][ T7924] 33 pages in swap cache
[  186.285938][ T7924] Free swap  = 124864kB
[  186.288644][ T7924] Total swap = 124996kB
[  186.313778][ T7924] 524155 pages RAM
[  186.315946][ T7924] 0 pages HighMem/MovableOnly
[  186.318225][ T7924] 209246 pages reserved
[  186.320198][ T7924] 0 pages cma reserved
[  186.322132][ T7924] kvm: failed to allocate vcpu's fpu
[  186.469909][ T7937] 9pnet: p9_errstr2errno: server reported unknown error 1844674407370955
[  186.490029][ T7939] ieee802154 phy0 wpan0: encryption failed: -22
[  186.610622][ T7945] netlink: 4 bytes leftover after parsing attributes in process `syz.0.445'.
[  187.104520][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  187.550200][ T7955] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  188.049946][ T7968] lo speed is unknown, defaulting to 1000
[  188.143673][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  188.324687][ T7975] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  188.600547][ T7985] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  188.603306][ T7985] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  188.606705][ T7985] vhci_hcd vhci_hcd.0: Device attached
[  188.610855][ T7986] vhci_hcd: unknown pdu 1
[  188.614282][ T1138] vhci_hcd: stop threads
[  188.617723][ T1138] vhci_hcd: release socket
[  188.619200][ T1138] vhci_hcd: disconnect device
[  189.183853][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  190.233552][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  190.800334][ T8012] Bluetooth: MGMT ver 1.23
[  190.801717][ T8014] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  190.912833][ T8021] netlink: 12 bytes leftover after parsing attributes in process `syz.1.464'.
[  191.048764][ T8033] netlink: 4 bytes leftover after parsing attributes in process `syz.1.469'.
[  191.152286][ T8038] Bluetooth: MGMT ver 1.23
[  191.268125][ T8049] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  191.273551][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  191.348276][ T8050] 9pnet_fd: Insufficient options for proto=fd
[  191.449692][ T8036] lo speed is unknown, defaulting to 1000
[  192.053758][    T9] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  192.150390][ T8072] batadv_slave_0: entered promiscuous mode
[  192.224895][    T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  192.228374][    T9] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  192.232054][    T9] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  192.239214][    T9] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  192.242884][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  192.245927][    T9] usb 6-1: Product: syz
[  192.247351][    T9] usb 6-1: Manufacturer: syz
[  192.248963][    T9] usb 6-1: SerialNumber: syz
[  192.303546][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  192.395925][ T8080] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  192.459163][    T9] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 13 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  192.460519][ T8083] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  192.566372][ T8087] netlink: 72 bytes leftover after parsing attributes in process `syz.3.486'.
[  192.613203][ T8087] netlink: 'syz.3.486': attribute type 1 has an invalid length.
[  192.625478][ T8087] 8021q: adding VLAN 0 to HW filter on device bond2
[  192.643853][ T8087] bond2: (slave gretap1): making interface the new active one
[  192.647047][ T8087] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  192.670947][ T1464] usb 6-1: USB disconnect, device number 13
[  192.728595][ T1464] usblp0: removed
[  192.864400][ T5966] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  192.864667][ T5955] Bluetooth: hci2: command 0x0406 tx timeout
[  193.226308][ T8094] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  193.343556][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  193.513519][    C0] vkms_vblank_simulate: vblank timer overrun
[  193.678764][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  193.680833][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  193.713521][    C0] vkms_vblank_simulate: vblank timer overrun
[  193.863566][    C0] vkms_vblank_simulate: vblank timer overrun
[  193.933524][    C0] vkms_vblank_simulate: vblank timer overrun
[  193.967439][    C0] vkms_vblank_simulate: vblank timer overrun
[  194.069843][    C0] vkms_vblank_simulate: vblank timer overrun
[  194.123534][    C0] vkms_vblank_simulate: vblank timer overrun
[  194.263558][    C0] vkms_vblank_simulate: vblank timer overrun
[  194.330313][ T8099] netlink: 28 bytes leftover after parsing attributes in process `syz.2.490'.
[  194.383595][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  194.565254][ T8092] lo speed is unknown, defaulting to 1000
[  194.572243][ T8106] FAULT_INJECTION: forcing a failure.
[  194.572243][ T8106] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.576494][ T8106] CPU: 2 UID: 0 PID: 8106 Comm: syz.1.492 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  194.576509][ T8106] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  194.576516][ T8106] Call Trace:
[  194.576520][ T8106]  <TASK>
[  194.576524][ T8106]  dump_stack_lvl+0x16c/0x1f0
[  194.576539][ T8106]  should_fail_ex+0x512/0x640
[  194.576552][ T8106]  _copy_to_user+0x32/0xd0
[  194.576571][ T8106]  simple_read_from_buffer+0xcb/0x170
[  194.576587][ T8106]  proc_fail_nth_read+0x197/0x270
[  194.576603][ T8106]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  194.576618][ T8106]  ? rw_verify_area+0xcf/0x680
[  194.576632][ T8106]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  194.576646][ T8106]  vfs_read+0x1e4/0xc60
[  194.576655][ T8106]  ? fdget_pos+0x2a2/0x370
[  194.576667][ T8106]  ? __pfx_vfs_read+0x10/0x10
[  194.576674][ T8106]  ? find_held_lock+0x2b/0x80
[  194.576689][ T8106]  ? __fget_files+0x20e/0x3c0
[  194.576708][ T8106]  ksys_read+0x12a/0x250
[  194.576717][ T8106]  ? __pfx_ksys_read+0x10/0x10
[  194.576728][ T8106]  ? rcu_is_watching+0x12/0xc0
[  194.576741][ T8106]  __do_fast_syscall_32+0x7c/0x3a0
[  194.576753][ T8106]  do_fast_syscall_32+0x32/0x80
[  194.576763][ T8106]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  194.576776][ T8106] RIP: 0023:0xf70ee579
[  194.576785][ T8106] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  194.576795][ T8106] RSP: 002b:00000000f50de590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  194.576805][ T8106] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50de620
[  194.576811][ T8106] RDX: 000000000000000f RSI: 00000000f7454ff4 RDI: 0000000000000000
[  194.576817][ T8106] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  194.576823][ T8106] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  194.576829][ T8106] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  194.576841][ T8106]  </TASK>
[  194.691361][ T8110] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  194.803592][   T40] kauditd_printk_skb: 196 callbacks suppressed
[  194.803604][   T40] audit: type=1326 audit(1753444845.059:14589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.1.494" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ee579 code=0x0
[  194.925865][   T40] audit: type=1326 audit(1753444845.189:14590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  194.933697][   T40] audit: type=1326 audit(1753444845.189:14591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  194.940583][   T40] audit: type=1326 audit(1753444845.189:14592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  194.947609][   T40] audit: type=1326 audit(1753444845.199:14593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  194.954301][   T40] audit: type=1326 audit(1753444845.199:14594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  194.961435][   T40] audit: type=1326 audit(1753444845.199:14595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  194.968983][   T40] audit: type=1326 audit(1753444845.199:14596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  194.979679][   T40] audit: type=1326 audit(1753444845.199:14597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  194.988268][   T40] audit: type=1326 audit(1753444845.199:14598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.3.495" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  195.423570][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  195.743606][ T5966] Bluetooth: hci3: command 0x0406 tx timeout
[  196.142399][ T8130] netlink: 24 bytes leftover after parsing attributes in process `syz.3.499'.
[  196.463567][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  196.636373][ T8143] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  197.130206][ T8152] lo speed is unknown, defaulting to 1000
[  197.503563][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  197.908418][ T8168] netlink: 16 bytes leftover after parsing attributes in process `syz.0.506'.
[  198.479080][ T8173] lo speed is unknown, defaulting to 1000
[  198.543578][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  198.644821][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  198.963871][ T8199] FAULT_INJECTION: forcing a failure.
[  198.963871][ T8199] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.968063][ T8199] CPU: 3 UID: 0 PID: 8199 Comm: syz.1.514 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  198.968078][ T8199] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  198.968084][ T8199] Call Trace:
[  198.968088][ T8199]  <TASK>
[  198.968093][ T8199]  dump_stack_lvl+0x16c/0x1f0
[  198.968108][ T8199]  should_fail_ex+0x512/0x640
[  198.968121][ T8199]  _copy_from_iter+0x29f/0x16f0
[  198.968136][ T8199]  ? __pfx__copy_from_iter+0x10/0x10
[  198.968146][ T8199]  ? rcu_is_watching+0x12/0xc0
[  198.968158][ T8199]  ? rcu_is_watching+0x12/0xc0
[  198.968168][ T8199]  ? kfree+0x24f/0x4d0
[  198.968182][ T8199]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  198.968197][ T8199]  file_tty_write.constprop.0+0x488/0x9b0
[  198.968212][ T8199]  vfs_write+0x6c4/0x1150
[  198.968223][ T8199]  ? __pfx_tty_write+0x10/0x10
[  198.968235][ T8199]  ? __pfx_vfs_write+0x10/0x10
[  198.968243][ T8199]  ? find_held_lock+0x2b/0x80
[  198.968262][ T8199]  ksys_write+0x12a/0x250
[  198.968271][ T8199]  ? __pfx_ksys_write+0x10/0x10
[  198.968282][ T8199]  ? rcu_is_watching+0x12/0xc0
[  198.968298][ T8199]  __do_fast_syscall_32+0x7c/0x3a0
[  198.968311][ T8199]  do_fast_syscall_32+0x32/0x80
[  198.968321][ T8199]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  198.968334][ T8199] RIP: 0023:0xf70ee579
[  198.968342][ T8199] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  198.968352][ T8199] RSP: 002b:00000000f50bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  198.968362][ T8199] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080001040
[  198.968369][ T8199] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000
[  198.968375][ T8199] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  198.968381][ T8199] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  198.968387][ T8199] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  198.968399][ T8199]  </TASK>
[  199.455969][ T8209] lo speed is unknown, defaulting to 1000
[  199.583553][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  200.623613][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  200.708531][ T8214] delete_channel: no stack
[  201.663616][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  202.703711][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  203.743630][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  204.783649][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  205.823709][    C2] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  206.873568][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  207.903600][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  208.943573][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  209.983635][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  211.033616][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  212.073609][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  212.429317][ T8248] netlink: 12 bytes leftover after parsing attributes in process `syz.3.522'.
[  212.450562][ T8248] lo speed is unknown, defaulting to 1000
[  212.594683][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  213.103717][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  213.517835][ T6046] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  214.136329][   T40] kauditd_printk_skb: 507 callbacks suppressed
[  214.136340][   T40] audit: type=1326 audit(1753444864.399:15106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.145086][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  214.147668][   T40] audit: type=1326 audit(1753444864.409:15107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.154136][   T40] audit: type=1326 audit(1753444864.409:15108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.161163][   T40] audit: type=1326 audit(1753444864.409:15109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.167602][   T40] audit: type=1326 audit(1753444864.409:15110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.175796][   T40] audit: type=1326 audit(1753444864.409:15111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.182703][   T40] audit: type=1326 audit(1753444864.409:15112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.189931][   T40] audit: type=1326 audit(1753444864.409:15113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.196502][   T40] audit: type=1326 audit(1753444864.409:15114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.203688][   T40] audit: type=1326 audit(1753444864.409:15115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8295 comm="syz.2.529" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  214.436918][ T8303] lo speed is unknown, defaulting to 1000
[  215.183645][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  216.223722][    C2] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  217.263652][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  218.303622][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  219.343561][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  219.546239][ T8322] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  219.616709][ T8325] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  219.763449][ T8335] netlink: 4 bytes leftover after parsing attributes in process `syz.2.533'.
[  219.786232][ T8335] bridge_slave_1: left allmulticast mode
[  219.790717][ T8335] bridge_slave_1: left promiscuous mode
[  219.795338][ T8335] bridge0: port 2(bridge_slave_1) entered disabled state
[  219.829138][ T8335] bridge_slave_0: left allmulticast mode
[  219.831205][ T8335] bridge_slave_0: left promiscuous mode
[  219.833471][ T8335] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.996491][ T8335] bridge0 (unregistering): left allmulticast mode
[  220.003217][ T8337] netlink: 8 bytes leftover after parsing attributes in process `syz.3.535'.
[  220.008146][ T8337] netlink: 4 bytes leftover after parsing attributes in process `syz.3.535'.
[  220.010790][ T8337] netlink: 'syz.3.535': attribute type 11 has an invalid length.
[  220.393572][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  221.071452][   T40] kauditd_printk_skb: 155 callbacks suppressed
[  221.071466][   T40] audit: type=1326 audit(1753444871.329:15271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.081301][   T40] audit: type=1326 audit(1753444871.329:15272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.090168][   T40] audit: type=1326 audit(1753444871.339:15273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.097430][   T40] audit: type=1326 audit(1753444871.339:15274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.106474][   T40] audit: type=1326 audit(1753444871.339:15275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.114881][   T40] audit: type=1326 audit(1753444871.339:15276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.123740][   T40] audit: type=1326 audit(1753444871.339:15277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.132053][   T40] audit: type=1326 audit(1753444871.339:15278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.140901][   T40] audit: type=1326 audit(1753444871.339:15279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.149143][   T40] audit: type=1326 audit(1753444871.339:15280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8360 comm="syz.3.542" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  221.405110][ T8370] netlink: 8 bytes leftover after parsing attributes in process `syz.1.545'.
[  221.433580][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  221.525462][ T8378] FAULT_INJECTION: forcing a failure.
[  221.525462][ T8378] name failslab, interval 1, probability 0, space 0, times 0
[  221.530184][ T8378] CPU: 3 UID: 0 PID: 8378 Comm: syz.1.547 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  221.530200][ T8378] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.530206][ T8378] Call Trace:
[  221.530210][ T8378]  <TASK>
[  221.530215][ T8378]  dump_stack_lvl+0x16c/0x1f0
[  221.530230][ T8378]  should_fail_ex+0x512/0x640
[  221.530240][ T8378]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  221.530253][ T8378]  should_failslab+0xc2/0x120
[  221.530266][ T8378]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  221.530277][ T8378]  ? __d_alloc+0x31/0xaa0
[  221.530290][ T8378]  __d_alloc+0x31/0xaa0
[  221.530302][ T8378]  d_alloc+0x4a/0x1e0
[  221.530313][ T8378]  d_alloc_parallel+0xe3/0x12e0
[  221.530330][ T8378]  ? kasan_save_stack+0x42/0x60
[  221.530339][ T8378]  ? kasan_save_stack+0x33/0x60
[  221.530348][ T8378]  ? kasan_save_track+0x14/0x30
[  221.530361][ T8378]  ? kasan_save_free_info+0x3b/0x60
[  221.530375][ T8378]  ? __kasan_slab_free+0x51/0x70
[  221.530384][ T8378]  ? kfree+0x2b4/0x4d0
[  221.530397][ T8378]  ? map_id_range_up+0x2ce/0x3b0
[  221.530412][ T8378]  ? __pfx_d_alloc_parallel+0x10/0x10
[  221.530428][ T8378]  ? lockdep_init_map_type+0x5c/0x280
[  221.530443][ T8378]  ? lockdep_init_map_type+0x5c/0x280
[  221.530460][ T8378]  __lookup_slow+0x193/0x460
[  221.530474][ T8378]  ? __pfx___lookup_slow+0x10/0x10
[  221.530489][ T8378]  ? compaction_alloc+0x2b30/0x4220
[  221.530507][ T8378]  ? compaction_alloc+0x2b30/0x4220
[  221.530521][ T8378]  ? d_lookup+0xe7/0x190
[  221.530536][ T8378]  lookup_one_unlocked+0xd4/0x120
[  221.530550][ T8378]  lookup_one_positive_unlocked+0x24/0xc0
[  221.530565][ T8378]  ovl_lookup_index+0x20d/0x800
[  221.530580][ T8378]  ? __pfx_ovl_lookup_index+0x10/0x10
[  221.530592][ T8378]  ? trace_kmalloc+0x2b/0xd0
[  221.530607][ T8378]  ovl_lookup+0x98f/0x21a0
[  221.530625][ T8378]  ? __pfx_ovl_lookup+0x10/0x10
[  221.530638][ T8378]  ? d_alloc_parallel+0x6ae/0x12e0
[  221.530656][ T8378]  ? register_lock_class+0x41/0x4c0
[  221.530674][ T8378]  ? lockdep_init_map_type+0x5c/0x280
[  221.530691][ T8378]  __lookup_slow+0x24e/0x460
[  221.530704][ T8378]  ? __pfx___lookup_slow+0x10/0x10
[  221.530726][ T8378]  ? lookup_fast+0x156/0x610
[  221.530742][ T8378]  walk_component+0x353/0x5b0
[  221.530759][ T8378]  path_lookupat+0x142/0x6d0
[  221.530775][ T8378]  filename_lookup+0x224/0x5f0
[  221.530786][ T8378]  ? __pfx_filename_lookup+0x10/0x10
[  221.530805][ T8378]  ? __might_fault+0xe3/0x190
[  221.530814][ T8378]  ? __might_fault+0x13b/0x190
[  221.530847][ T8378]  filename_setxattr+0x9d/0x1d0
[  221.530857][ T8378]  ? __pfx_filename_setxattr+0x10/0x10
[  221.530867][ T8378]  ? getname_flags.part.0+0x1c5/0x550
[  221.530883][ T8378]  path_setxattrat+0x1de/0x2a0
[  221.530892][ T8378]  ? __pfx_path_setxattrat+0x10/0x10
[  221.530904][ T8378]  ? ksys_write+0x190/0x250
[  221.530925][ T8378]  ? fput+0x70/0xf0
[  221.530936][ T8378]  ? ksys_write+0x1ac/0x250
[  221.530945][ T8378]  ? __pfx_ksys_write+0x10/0x10
[  221.530956][ T8378]  __ia32_sys_setxattr+0xc4/0x140
[  221.530965][ T8378]  ? lockdep_hardirqs_on+0x7c/0x110
[  221.530976][ T8378]  __do_fast_syscall_32+0x7c/0x3a0
[  221.530988][ T8378]  do_fast_syscall_32+0x32/0x80
[  221.530999][ T8378]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  221.531011][ T8378] RIP: 0023:0xf70ee579
[  221.531020][ T8378] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  221.531030][ T8378] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 00000000000000e2
[  221.531040][ T8378] RAX: ffffffffffffffda RBX: 0000000080000140 RCX: 0000000080002b80
[  221.531047][ T8378] RDX: 0000000080000280 RSI: 0000000000000024 RDI: 0000000000000003
[  221.531053][ T8378] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  221.531059][ T8378] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  221.531065][ T8378] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  221.531077][ T8378]  </TASK>
[  221.531083][ T8378] overlayfs: failed inode index lookup (ino=917, key=00fb210001e1a73b25f40344c193b00b8f84be3d040191d86a9503000000000000, err=-12);
[  221.531083][ T8378] overlayfs: mount with '-o index=off' to disable inodes index.
[  221.655764][ T8379] netlink: 8 bytes leftover after parsing attributes in process `syz.2.543'.
[  221.661763][ T8379] netlink: 48 bytes leftover after parsing attributes in process `syz.2.543'.
[  221.693935][ T8379] geneve2: entered promiscuous mode
[  221.706763][ T8379] geneve2: entered allmulticast mode
[  221.944689][ T8387] netlink: 420 bytes leftover after parsing attributes in process `syz.3.550'.
[  221.966165][   T24] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  222.135231][   T24] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  222.138601][   T24] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  222.141617][   T24] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  222.148754][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.182698][ T8383] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  222.186502][   T24] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  222.463607][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  222.620394][ T6002] usb 6-1: USB disconnect, device number 14
[  222.955214][ T8399] wireguard0: entered promiscuous mode
[  222.957203][ T8399] wireguard0: entered allmulticast mode
[  223.513641][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  224.543562][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  224.682692][ T8430] bridge6: entered promiscuous mode
[  225.583691][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  225.672788][ T8447] 9pnet: p9_errstr2errno: server reported unknown error 1844674407370955161
[  225.727895][ T8448] tmpfs: Bad value for 'mpol'
[  226.073800][   T40] kauditd_printk_skb: 859 callbacks suppressed
[  226.073811][   T40] audit: type=1326 audit(1753444876.329:16140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[  226.084934][   T40] audit: type=1326 audit(1753444876.339:16141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  226.093076][   T40] audit: type=1326 audit(1753444876.339:16142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  226.101053][   T40] audit: type=1326 audit(1753444876.339:16143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[  226.109222][   T40] audit: type=1326 audit(1753444876.339:16144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  226.119986][   T40] audit: type=1326 audit(1753444876.349:16145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  226.127946][   T40] audit: type=1326 audit(1753444876.359:16146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[  226.135590][   T40] audit: type=1326 audit(1753444876.359:16147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  226.143246][   T40] audit: type=1326 audit(1753444876.359:16148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  226.151756][   T40] audit: type=1326 audit(1753444876.359:16149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8449 comm="syz.1.568" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[  226.546809][ T8458] FAULT_INJECTION: forcing a failure.
[  226.546809][ T8458] name failslab, interval 1, probability 0, space 0, times 0
[  226.551902][ T8458] CPU: 3 UID: 0 PID: 8458 Comm: syz.2.570 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  226.551924][ T8458] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  226.551934][ T8458] Call Trace:
[  226.551940][ T8458]  <TASK>
[  226.551947][ T8458]  dump_stack_lvl+0x16c/0x1f0
[  226.551975][ T8458]  should_fail_ex+0x512/0x640
[  226.551992][ T8458]  ? fs_reclaim_acquire+0xae/0x150
[  226.552032][ T8458]  should_failslab+0xc2/0x120
[  226.552051][ T8458]  __kmalloc_node_noprof+0xd8/0x500
[  226.552067][ T8458]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  226.552086][ T8458]  ? alloc_slab_obj_exts+0x41/0xa0
[  226.552109][ T8458]  ? find_held_lock+0x2b/0x80
[  226.552129][ T8458]  alloc_slab_obj_exts+0x41/0xa0
[  226.552154][ T8458]  new_slab+0x283/0x330
[  226.552180][ T8458]  ___slab_alloc+0xd9c/0x1940
[  226.552204][ T8458]  ? do_fanotify_mark+0x270b/0x3600
[  226.552227][ T8458]  ? new_slab+0x2d1/0x330
[  226.552261][ T8458]  ? do_fanotify_mark+0x270b/0x3600
[  226.552282][ T8458]  ? __slab_alloc.constprop.0+0x56/0xb0
[  226.552306][ T8458]  __slab_alloc.constprop.0+0x56/0xb0
[  226.552334][ T8458]  kmem_cache_alloc_noprof+0xef/0x3b0
[  226.552353][ T8458]  ? do_fanotify_mark+0x270b/0x3600
[  226.552378][ T8458]  do_fanotify_mark+0x270b/0x3600
[  226.552412][ T8458]  ? __pfx_do_fanotify_mark+0x10/0x10
[  226.552440][ T8458]  ? __might_fault+0xe3/0x190
[  226.552457][ T8458]  ? __might_fault+0xe3/0x190
[  226.552472][ T8458]  ? __might_fault+0x13b/0x190
[  226.552495][ T8458]  __ia32_compat_sys_fanotify_mark+0xe6/0x1b0
[  226.552517][ T8458]  ? syscall_trace_enter+0xee/0x260
[  226.552541][ T8458]  __do_fast_syscall_32+0x7c/0x3a0
[  226.552560][ T8458]  do_fast_syscall_32+0x32/0x80
[  226.552577][ T8458]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  226.552597][ T8458] RIP: 0023:0xf7fd3579
[  226.552610][ T8458] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  226.552625][ T8458] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000153
[  226.552641][ T8458] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000021
[  226.552651][ T8458] RDX: 0000000008000019 RSI: 0000000000000000 RDI: 0000000000000000
[  226.552661][ T8458] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  226.552670][ T8458] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  226.552680][ T8458] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  226.552703][ T8458]  </TASK>
[  226.641381][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  227.663588][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  228.581924][ T8477] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  228.713590][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  228.815853][ T8486] lo speed is unknown, defaulting to 1000
[  229.743626][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  230.040657][ T8515] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  230.104352][ T8513] lo speed is unknown, defaulting to 1000
[  230.297521][ T8520] wireguard0: entered promiscuous mode
[  230.300032][ T8520] wireguard0: entered allmulticast mode
[  230.400965][ T8525] Cannot find map_set index 0 as target
[  230.412626][ T8525] FAULT_INJECTION: forcing a failure.
[  230.412626][ T8525] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  230.418485][ T8525] CPU: 3 UID: 0 PID: 8525 Comm: syz.0.586 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  230.418502][ T8525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.418509][ T8525] Call Trace:
[  230.418513][ T8525]  <TASK>
[  230.418517][ T8525]  dump_stack_lvl+0x16c/0x1f0
[  230.418532][ T8525]  should_fail_ex+0x512/0x640
[  230.418545][ T8525]  _copy_from_user+0x2e/0xd0
[  230.418558][ T8525]  snd_seq_oss_write+0x397/0x7d0
[  230.418576][ T8525]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  230.418592][ T8525]  ? apparmor_file_permission+0x251/0x400
[  230.418607][ T8525]  ? bpf_lsm_file_permission+0x9/0x10
[  230.418622][ T8525]  ? __pfx_odev_write+0x10/0x10
[  230.418633][ T8525]  odev_write+0x51/0xa0
[  230.418644][ T8525]  vfs_write+0x29d/0x1150
[  230.418657][ T8525]  ? __pfx_vfs_write+0x10/0x10
[  230.418666][ T8525]  ? find_held_lock+0x2b/0x80
[  230.418677][ T8525]  ? __fget_files+0x204/0x3c0
[  230.418694][ T8525]  ? __fget_files+0x20e/0x3c0
[  230.418709][ T8525]  ? handle_mm_fault+0x250/0xd10
[  230.418727][ T8525]  ksys_write+0x12a/0x250
[  230.418758][ T8525]  ? __pfx_ksys_write+0x10/0x10
[  230.418775][ T8525]  ? rcu_is_watching+0x12/0xc0
[  230.418800][ T8525]  __do_fast_syscall_32+0x7c/0x3a0
[  230.418813][ T8525]  do_fast_syscall_32+0x32/0x80
[  230.418823][ T8525]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  230.418836][ T8525] RIP: 0023:0xf707e579
[  230.418845][ T8525] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  230.418855][ T8525] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  230.418865][ T8525] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000580
[  230.418871][ T8525] RDX: 0000000000000237 RSI: 0000000000000000 RDI: 0000000000000000
[  230.418877][ T8525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  230.418883][ T8525] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  230.418889][ T8525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  230.418901][ T8525]  </TASK>
[  230.539455][ T8529] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  230.783629][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  230.885529][ T8542] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  231.085842][   T40] kauditd_printk_skb: 817 callbacks suppressed
[  231.085854][   T40] audit: type=1326 audit(1753444881.349:16967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  231.096463][   T40] audit: type=1326 audit(1753444881.349:16968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[  231.103243][   T40] audit: type=1326 audit(1753444881.349:16969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  231.110325][   T40] audit: type=1326 audit(1753444881.349:16970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  231.117701][   T40] audit: type=1326 audit(1753444881.349:16971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[  231.125830][   T40] audit: type=1326 audit(1753444881.349:16972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  231.132554][   T40] audit: type=1326 audit(1753444881.359:16973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  231.139573][   T40] audit: type=1326 audit(1753444881.359:16974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[  231.146624][   T40] audit: type=1326 audit(1753444881.359:16975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  231.153179][   T40] audit: type=1326 audit(1753444881.369:16976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8526 comm="syz.1.587" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  231.213593][ T2024] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  231.363599][ T2024] usb 8-1: Using ep0 maxpacket: 32
[  231.367249][ T2024] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  231.373320][ T2024] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  231.378887][ T2024] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  231.382284][ T2024] usb 8-1: Product: syz
[  231.384240][ T2024] usb 8-1: Manufacturer: syz
[  231.388416][ T2024] usb 8-1: SerialNumber: syz
[  231.392630][ T2024] usb 8-1: config 0 descriptor??
[  231.395810][ T8550] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  231.575264][ T8560] lo speed is unknown, defaulting to 1000
[  231.789480][ T8564] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  231.823610][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  232.119661][ T8573] FAULT_INJECTION: forcing a failure.
[  232.119661][ T8573] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  232.125313][ T8573] CPU: 3 UID: 0 PID: 8573 Comm: syz.2.603 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  232.125339][ T8573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  232.125349][ T8573] Call Trace:
[  232.125355][ T8573]  <TASK>
[  232.125362][ T8573]  dump_stack_lvl+0x16c/0x1f0
[  232.125386][ T8573]  should_fail_ex+0x512/0x640
[  232.125409][ T8573]  _copy_from_user+0x2e/0xd0
[  232.125429][ T8573]  kstrtouint_from_user+0xd6/0x1d0
[  232.125453][ T8573]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  232.125477][ T8573]  ? __lock_acquire+0xb8a/0x1c90
[  232.125511][ T8573]  proc_fail_nth_write+0x83/0x250
[  232.125536][ T8573]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  232.125566][ T8573]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  232.125588][ T8573]  vfs_write+0x29d/0x1150
[  232.125611][ T8573]  ? __pfx_vfs_write+0x10/0x10
[  232.125625][ T8573]  ? find_held_lock+0x2b/0x80
[  232.125650][ T8573]  ? __fget_files+0x20e/0x3c0
[  232.125683][ T8573]  ksys_write+0x12a/0x250
[  232.125699][ T8573]  ? __pfx_ksys_write+0x10/0x10
[  232.125718][ T8573]  ? rcu_is_watching+0x12/0xc0
[  232.125740][ T8573]  __do_fast_syscall_32+0x7c/0x3a0
[  232.125761][ T8573]  do_fast_syscall_32+0x32/0x80
[  232.125779][ T8573]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  232.125801][ T8573] RIP: 0023:0xf7fd3579
[  232.125814][ T8573] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  232.125830][ T8573] RSP: 002b:00000000f50f6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  232.125847][ T8573] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f50f6620
[  232.125858][ T8573] RDX: 0000000000000001 RSI: 00000000f7464ff4 RDI: 0000000000000000
[  232.125868][ T8573] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  232.125878][ T8573] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  232.125888][ T8573] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  232.125912][ T8573]  </TASK>
[  232.204417][    C3] vkms_vblank_simulate: vblank timer overrun
[  232.506404][ T6002] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[  232.658302][ T8579] lo speed is unknown, defaulting to 1000
[  232.863627][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  232.925050][ T6002] usb 7-1: too many endpoints for config 1 interface 0 altsetting 4: 128, using maximum allowed: 30
[  232.928450][ T6002] usb 7-1: config 1 interface 0 altsetting 4 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  232.932334][ T6002] usb 7-1: config 1 interface 0 altsetting 4 has 2 endpoint descriptors, different from the interface descriptor's value: 128
[  232.937727][ T6002] usb 7-1: config 1 interface 0 has no altsetting 0
[  232.941429][ T6002] usb 7-1: New USB device found, idVendor=056a, idProduct=0064, bcdDevice= 0.40
[  232.944308][ T6002] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.946768][ T6002] usb 7-1: Product: á°Š
[  232.948086][ T6002] usb 7-1: Manufacturer: à ¬
[  232.949545][ T6002] usb 7-1: SerialNumber: Ч
[  232.952937][ T8575] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  233.167513][ T6002] usbhid 7-1:1.0: can't add hid device: -71
[  233.169455][ T6002] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[  233.173625][ T6002] usb 7-1: USB disconnect, device number 5
[  233.260478][ T8583] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  233.903600][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  234.052824][ T8595] netlink: 'syz.0.610': attribute type 10 has an invalid length.
[  234.060786][ T8595] 8021q: adding VLAN 0 to HW filter on device team0
[  234.067581][ T8595] bond0: (slave team0): Enslaving as an active interface with an up link
[  234.154819][ T2024] usb 8-1: USB disconnect, device number 6
[  234.226223][ T8604] lo speed is unknown, defaulting to 1000
[  234.623739][    C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  234.749936][ T8618] netlink: 'syz.2.615': attribute type 2 has an invalid length.
[  234.752511][ T8618] netlink: 1184 bytes leftover after parsing attributes in process `syz.2.615'.
[  234.953617][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  235.763911][ T8632] netlink: 1284 bytes leftover after parsing attributes in process `syz.1.618'.
[  235.983619][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  236.102978][ T8649] netlink: 'syz.3.623': attribute type 4 has an invalid length.
[  236.513596][ T1464] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  236.666267][ T1464] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  236.669762][ T1464] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  236.672807][ T1464] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  236.678093][ T1464] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.684338][ T8651] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  236.690241][ T1464] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  236.847767][ T8659] tmpfs: Unknown parameter 'usrquota_blck_h>Pºå©4	ý”§t'
[  236.857725][ T8659] Bluetooth: MGMT ver 1.23
[  236.867182][   T40] kauditd_printk_skb: 168 callbacks suppressed
[  236.867192][   T40] audit: type=1326 audit(1753444887.129:17145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.876158][   T40] audit: type=1326 audit(1753444887.139:17146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.883247][   T40] audit: type=1326 audit(1753444887.139:17147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.891266][   T40] audit: type=1326 audit(1753444887.139:17148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.902238][   T40] audit: type=1326 audit(1753444887.139:17149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.909708][   T40] audit: type=1326 audit(1753444887.139:17150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.915414][   T61] usb 8-1: USB disconnect, device number 7
[  236.923393][   T40] audit: type=1326 audit(1753444887.139:17151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=448 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.931759][   T40] audit: type=1326 audit(1753444887.139:17152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.939068][   T40] audit: type=1326 audit(1753444887.139:17153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  236.946300][   T40] audit: type=1326 audit(1753444887.159:17154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.1.627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  237.023568][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  238.063580][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  238.364153][ T8682] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  238.693998][ T1326] usb 7-1: new low-speed USB device number 6 using dummy_hcd
[  238.866235][ T1326] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  238.886455][ T1326] usb 7-1: config 0 has no interface number 0
[  238.897023][ T1326] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  238.912566][ T1326] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  238.926485][ T1326] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  238.945942][ T1326] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  238.962810][ T1326] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  238.981143][ T1326] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  238.999275][ T1326] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  239.007372][ T1326] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.043575][ T1326] usb 7-1: config 0 descriptor??
[  239.058548][ T8684] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  239.062424][ T8684] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  239.108646][ T1326] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  239.113568][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  239.217031][ T8696] bridge7: entered promiscuous mode
[  239.362467][ T8684] ldusb 7-1:0.55: Write buffer overflow, 1 bytes dropped
[  239.411161][ T8684] netlink: 'syz.2.633': attribute type 1 has an invalid length.
[  239.588148][   T61] usb 7-1: USB disconnect, device number 6
[  239.592371][   T61] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  240.143618][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  240.227052][ T5955] Bluetooth: hci1: adv larger than maximum supported
[  240.227096][ T5955] Bluetooth: hci1: Unknown advertising packet type: 0x56
[  240.303737][ T2024] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  240.475400][ T2024] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  240.480309][ T2024] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  240.490381][ T2024] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  240.493266][ T2024] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.505131][ T8708] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  240.523873][ T2024] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  240.728269][ T2024] usb 8-1: USB disconnect, device number 8
[  240.885923][ T8716] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  241.183582][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  241.887762][ T8728] lo speed is unknown, defaulting to 1000
[  242.206403][ T8742] FAULT_INJECTION: forcing a failure.
[  242.206403][ T8742] name failslab, interval 1, probability 0, space 0, times 0
[  242.210248][ T8742] CPU: 2 UID: 0 PID: 8742 Comm: syz.0.645 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  242.210270][ T8742] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  242.210281][ T8742] Call Trace:
[  242.210287][ T8742]  <TASK>
[  242.210293][ T8742]  dump_stack_lvl+0x16c/0x1f0
[  242.210313][ T8742]  should_fail_ex+0x512/0x640
[  242.210332][ T8742]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  242.210350][ T8742]  should_failslab+0xc2/0x120
[  242.210365][ T8742]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  242.210376][ T8742]  ? getname_flags.part.0+0x4c/0x550
[  242.210391][ T8742]  getname_flags.part.0+0x4c/0x550
[  242.210403][ T8742]  ? _copy_from_user+0x93/0xd0
[  242.210416][ T8742]  getname_flags+0x93/0xf0
[  242.210431][ T8742]  user_path_at+0x24/0x60
[  242.210441][ T8742]  __ia32_sys_mount+0x1fb/0x310
[  242.210453][ T8742]  ? __pfx___ia32_sys_mount+0x10/0x10
[  242.210465][ T8742]  ? rcu_is_watching+0x12/0xc0
[  242.210478][ T8742]  __do_fast_syscall_32+0x7c/0x3a0
[  242.210490][ T8742]  do_fast_syscall_32+0x32/0x80
[  242.210501][ T8742]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  242.210514][ T8742] RIP: 0023:0xf707e579
[  242.210523][ T8742] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  242.210532][ T8742] RSP: 002b:00000000f504d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  242.210543][ T8742] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000000
[  242.210549][ T8742] RDX: 00000000800001c0 RSI: 0000000000000080 RDI: 0000000080000080
[  242.210555][ T8742] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  242.210561][ T8742] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  242.210567][ T8742] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  242.210579][ T8742]  </TASK>
[  242.223566][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  242.594289][ T8749] lo speed is unknown, defaulting to 1000
[  243.263630][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  243.296474][ T8758] x_tables: ip6_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  243.306519][ T8758] netlink: 'syz.1.650': attribute type 1 has an invalid length.
[  243.308916][ T8758] netlink: 224 bytes leftover after parsing attributes in process `syz.1.650'.
[  243.417905][ T8762] lo speed is unknown, defaulting to 1000
[  243.503294][   T40] kauditd_printk_skb: 264 callbacks suppressed
[  243.503372][   T40] audit: type=1326 audit(1753444893.759:17419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.515655][ T8767] libceph: resolve '0' (ret=-3): failed
[  243.518702][ T8767] netlink: 'syz.1.652': attribute type 1 has an invalid length.
[  243.521166][ T8767] netlink: 'syz.1.652': attribute type 3 has an invalid length.
[  243.523624][ T8767] netlink: 224 bytes leftover after parsing attributes in process `syz.1.652'.
[  243.527315][ T5955] Bluetooth: hci2: Malformed LE Event: 0x0d
[  243.528496][   T40] audit: type=1326 audit(1753444893.759:17420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.543667][   T40] audit: type=1326 audit(1753444893.759:17421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.551074][   T40] audit: type=1326 audit(1753444893.779:17422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.558599][   T40] audit: type=1326 audit(1753444893.779:17423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.565748][   T40] audit: type=1326 audit(1753444893.779:17424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.572356][   T40] audit: type=1326 audit(1753444893.779:17425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.579329][   T40] audit: type=1326 audit(1753444893.779:17426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.586387][   T40] audit: type=1326 audit(1753444893.779:17427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  243.593103][   T40] audit: type=1326 audit(1753444893.789:17428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.2.651" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  244.303585][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  244.663685][   T24] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  244.816377][ T8787] lo speed is unknown, defaulting to 1000
[  245.057229][   T24] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  245.063655][   T24] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  245.068041][   T24] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  245.071777][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  245.113247][ T8776] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  245.142187][   T24] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  245.343608][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  245.377786][ T8791] 9pnet: p9_errstr2errno: server reported unknown error 18446744073709551
[  245.577935][   T24] usb 8-1: USB disconnect, device number 9
[  245.913783][ T8803] wireguard0: entered promiscuous mode
[  245.915625][ T8803] wireguard0: entered allmulticast mode
[  246.127807][ T8813] lo speed is unknown, defaulting to 1000
[  246.363913][ T8819] binder_alloc: binder_alloc_mmap_handler: 8817 80ffd000-80ffe000 already mapped failed -16
[  246.393581][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  246.735222][ T8827] 9pnet: p9_errstr2errno: server reported unknown error 18446744073709551
[  246.788078][ T8831] FAULT_INJECTION: forcing a failure.
[  246.788078][ T8831] name failslab, interval 1, probability 0, space 0, times 0
[  246.792037][ T8831] CPU: 2 UID: 0 PID: 8831 Comm: syz.0.671 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  246.792051][ T8831] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  246.792058][ T8831] Call Trace:
[  246.792062][ T8831]  <TASK>
[  246.792066][ T8831]  dump_stack_lvl+0x16c/0x1f0
[  246.792081][ T8831]  should_fail_ex+0x512/0x640
[  246.792091][ T8831]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  246.792104][ T8831]  should_failslab+0xc2/0x120
[  246.792116][ T8831]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  246.792126][ T8831]  ? stack_depot_save_flags+0x28/0xa40
[  246.792136][ T8831]  ? __d_alloc+0x31/0xaa0
[  246.792149][ T8831]  __d_alloc+0x31/0xaa0
[  246.792158][ T8831]  ? lsm_blob_alloc+0x68/0x90
[  246.792169][ T8831]  ? kasan_save_stack+0x42/0x60
[  246.792180][ T8831]  d_alloc+0x4a/0x1e0
[  246.792191][ T8831]  d_alloc_parallel+0xe3/0x12e0
[  246.792204][ T8831]  ? do_fast_syscall_32+0x32/0x80
[  246.792219][ T8831]  ? map_id_range_up+0x2ce/0x3b0
[  246.792235][ T8831]  ? __pfx_d_alloc_parallel+0x10/0x10
[  246.792250][ T8831]  ? lockdep_init_map_type+0x5c/0x280
[  246.792265][ T8831]  ? lockdep_init_map_type+0x5c/0x280
[  246.792281][ T8831]  __lookup_slow+0x193/0x460
[  246.792295][ T8831]  ? __pfx___lookup_slow+0x10/0x10
[  246.792310][ T8831]  ? compaction_alloc+0x2b30/0x4220
[  246.792327][ T8831]  ? compaction_alloc+0x2b30/0x4220
[  246.792341][ T8831]  ? d_lookup+0xe7/0x190
[  246.792357][ T8831]  lookup_one+0x115/0x170
[  246.792371][ T8831]  ovl_create_or_link+0x2b5/0x820
[  246.792391][ T8831]  ovl_create_object+0x266/0x300
[  246.792406][ T8831]  ? __pfx_ovl_create_object+0x10/0x10
[  246.792422][ T8831]  ? bpf_lsm_inode_permission+0x9/0x10
[  246.792434][ T8831]  ? security_inode_permission+0xbf/0x260
[  246.792451][ T8831]  ovl_mkdir+0x2a/0x40
[  246.792464][ T8831]  vfs_mkdir+0x593/0x8c0
[  246.792480][ T8831]  do_mkdirat+0x304/0x3e0
[  246.792491][ T8831]  ? __pfx_do_mkdirat+0x10/0x10
[  246.792501][ T8831]  ? getname_flags.part.0+0x1c5/0x550
[  246.792517][ T8831]  __ia32_sys_mkdirat+0x82/0xb0
[  246.792528][ T8831]  __do_fast_syscall_32+0x7c/0x3a0
[  246.792539][ T8831]  do_fast_syscall_32+0x32/0x80
[  246.792550][ T8831]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  246.792562][ T8831] RIP: 0023:0xf707e579
[  246.792571][ T8831] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  246.792580][ T8831] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000128
[  246.792590][ T8831] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800001c0
[  246.792596][ T8831] RDX: 00000000000001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  246.792602][ T8831] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  246.792608][ T8831] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  246.792614][ T8831] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  246.792627][ T8831]  </TASK>
[  247.055536][ T8832] Illegal XDP return value 4294967274 on prog  (id 91) dev N/A, expect packet loss!
[  247.423694][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  247.424896][ T1464] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  247.686794][ T1464] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  247.687325][ T8858] netlink: 'syz.2.678': attribute type 1 has an invalid length.
[  247.690310][ T1464] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  247.696622][ T1464] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  247.699620][ T1464] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.711121][ T8843] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  247.724471][ T1464] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  248.157450][    T9] usb 8-1: USB disconnect, device number 10
[  248.244855][ T8884] lo speed is unknown, defaulting to 1000
[  248.382550][ T8892] netlink: 'syz.0.680': attribute type 4 has an invalid length.
[  248.385805][ T8892] netlink: 32 bytes leftover after parsing attributes in process `syz.0.680'.
[  248.398536][ T8892] tmpfs: Bad value for 'mpol'
[  248.463645][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  248.483699][ T8896] FAULT_INJECTION: forcing a failure.
[  248.483699][ T8896] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  248.488457][ T8896] CPU: 3 UID: 0 PID: 8896 Comm: syz.1.681 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  248.488472][ T8896] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  248.488478][ T8896] Call Trace:
[  248.488483][ T8896]  <TASK>
[  248.488487][ T8896]  dump_stack_lvl+0x16c/0x1f0
[  248.488501][ T8896]  should_fail_ex+0x512/0x640
[  248.488526][ T8896]  _copy_from_user+0x2e/0xd0
[  248.488540][ T8896]  snd_pcm_oss_write2+0x1c2/0x410
[  248.488556][ T8896]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  248.488568][ T8896]  ? snd_pcm_kernel_ioctl+0x267/0x2e0
[  248.488584][ T8896]  ? snd_pcm_oss_prepare+0x11e/0x220
[  248.488598][ T8896]  snd_pcm_oss_write+0x711/0xa10
[  248.488613][ T8896]  ? security_file_permission+0x71/0x210
[  248.488631][ T8896]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  248.488644][ T8896]  vfs_write+0x29d/0x1150
[  248.488657][ T8896]  ? __pfx_vfs_write+0x10/0x10
[  248.488665][ T8896]  ? find_held_lock+0x2b/0x80
[  248.488677][ T8896]  ? __fget_files+0x204/0x3c0
[  248.488695][ T8896]  ? __fget_files+0x20e/0x3c0
[  248.488709][ T8896]  ? handle_mm_fault+0x250/0xd10
[  248.488728][ T8896]  ksys_write+0x12a/0x250
[  248.488738][ T8896]  ? __pfx_ksys_write+0x10/0x10
[  248.488748][ T8896]  ? rcu_is_watching+0x12/0xc0
[  248.488761][ T8896]  __do_fast_syscall_32+0x7c/0x3a0
[  248.488778][ T8896]  do_fast_syscall_32+0x32/0x80
[  248.488788][ T8896]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  248.488801][ T8896] RIP: 0023:0xf70ee579
[  248.488809][ T8896] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  248.488819][ T8896] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  248.488829][ T8896] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800012c0
[  248.488836][ T8896] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  248.488842][ T8896] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  248.488847][ T8896] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  248.488853][ T8896] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  248.488866][ T8896]  </TASK>
[  249.165728][ T8915] block nbd1: shutting down sockets
[  249.391625][ T8924] netlink: 4 bytes leftover after parsing attributes in process `syz.1.688'.
[  249.503646][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  249.883136][ T8942] 
: renamed from bridge_slave_0 (while UP)
[  249.890469][ T8942] FAULT_INJECTION: forcing a failure.
[  249.890469][ T8942] name failslab, interval 1, probability 0, space 0, times 0
[  249.895167][ T8942] CPU: 2 UID: 0 PID: 8942 Comm: syz.1.694 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  249.895182][ T8942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  249.895188][ T8942] Call Trace:
[  249.895192][ T8942]  <TASK>
[  249.895197][ T8942]  dump_stack_lvl+0x16c/0x1f0
[  249.895210][ T8942]  should_fail_ex+0x512/0x640
[  249.895221][ T8942]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  249.895239][ T8942]  should_failslab+0xc2/0x120
[  249.895250][ T8942]  __kmalloc_cache_noprof+0x6a/0x3e0
[  249.895266][ T8942]  ? kobject_uevent_env+0x265/0x1870
[  249.895281][ T8942]  kobject_uevent_env+0x265/0x1870
[  249.895293][ T8942]  ? __pfx_dev_uevent_name+0x10/0x10
[  249.895312][ T8942]  ? kernfs_put+0x35/0x60
[  249.895324][ T8942]  kobject_rename+0x209/0x260
[  249.895335][ T8942]  ? __pfx_kobject_rename+0x10/0x10
[  249.895348][ T8942]  ? kernfs_put+0x35/0x60
[  249.895359][ T8942]  device_rename+0x130/0x230
[  249.895374][ T8942]  netif_change_name+0x27c/0x920
[  249.895388][ T8942]  ? __pfx_netif_change_name+0x10/0x10
[  249.895398][ T8942]  ? __mutex_trylock_common+0xe9/0x250
[  249.895413][ T8942]  ? __pfx___mutex_trylock_common+0x10/0x10
[  249.895427][ T8942]  ? full_name_hash+0xbc/0x110
[  249.895441][ T8942]  dev_change_name+0xb2/0x260
[  249.895454][ T8942]  dev_ifsioc+0xa39/0x1ee0
[  249.895464][ T8942]  ? aa_get_newest_label+0x375/0x680
[  249.895477][ T8942]  ? __pfx_dev_ifsioc+0x10/0x10
[  249.895487][ T8942]  ? __pfx___mutex_lock+0x10/0x10
[  249.895498][ T8942]  ? rcu_is_watching+0x12/0xc0
[  249.895509][ T8942]  ? trace_cap_capable+0x18d/0x200
[  249.895523][ T8942]  ? apparmor_capable+0x114/0x1d0
[  249.895536][ T8942]  ? bpf_lsm_capable+0x9/0x10
[  249.895554][ T8942]  dev_ioctl+0x46f/0x1060
[  249.895564][ T8942]  sock_do_ioctl+0x19d/0x280
[  249.895578][ T8942]  ? __pfx_sock_do_ioctl+0x10/0x10
[  249.895591][ T8942]  ? find_held_lock+0x2b/0x80
[  249.895602][ T8942]  ? __local_bh_enable_ip+0xa4/0x120
[  249.895614][ T8942]  ? lockdep_hardirqs_on+0x7c/0x110
[  249.895623][ T8942]  ? pppox_ioctl+0x12b/0x280
[  249.895635][ T8942]  ? __local_bh_enable_ip+0xa4/0x120
[  249.895646][ T8942]  ? pppox_ioctl+0x12b/0x280
[  249.895659][ T8942]  compat_sock_ioctl+0x301/0x730
[  249.895674][ T8942]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  249.895688][ T8942]  ? hook_file_ioctl_common+0x145/0x410
[  249.895704][ T8942]  ? __fget_files+0x20e/0x3c0
[  249.895718][ T8942]  ? __fput_deferred+0x480/0x480
[  249.895735][ T8942]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  249.895748][ T8942]  __ia32_compat_sys_ioctl+0x23f/0x370
[  249.895763][ T8942]  __do_fast_syscall_32+0x7c/0x3a0
[  249.895775][ T8942]  do_fast_syscall_32+0x32/0x80
[  249.895786][ T8942]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  249.895799][ T8942] RIP: 0023:0xf70ee579
[  249.895807][ T8942] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  249.895817][ T8942] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  249.895828][ T8942] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008923
[  249.895834][ T8942] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  249.895840][ T8942] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  249.895846][ T8942] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  249.895851][ T8942] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  249.895864][ T8942]  </TASK>
[  250.121998][ T8954] lo speed is unknown, defaulting to 1000
[  250.400744][ T8963] netlink: 4 bytes leftover after parsing attributes in process `syz.2.700'.
[  250.543607][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  251.028369][ T8967] FAULT_INJECTION: forcing a failure.
[  251.028369][ T8967] name failslab, interval 1, probability 0, space 0, times 0
[  251.029252][ T8966] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095516
[  251.033253][ T8967] CPU: 1 UID: 0 PID: 8967 Comm: syz.0.701 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  251.033276][ T8967] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  251.033286][ T8967] Call Trace:
[  251.033292][ T8967]  <TASK>
[  251.033298][ T8967]  dump_stack_lvl+0x16c/0x1f0
[  251.033313][ T8967]  should_fail_ex+0x512/0x640
[  251.033326][ T8967]  should_failslab+0xc2/0x120
[  251.033339][ T8967]  __kmalloc_cache_noprof+0x6a/0x3e0
[  251.033354][ T8967]  ? do_raw_spin_lock+0x12c/0x2b0
[  251.033370][ T8967]  ? find_held_lock+0x2b/0x80
[  251.033379][ T8967]  ? async_schedule_node_domain+0x54/0x120
[  251.033393][ T8967]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  251.033404][ T8967]  async_schedule_node_domain+0x54/0x120
[  251.033417][ T8967]  dev_cache_fw_image+0x38e/0x490
[  251.033434][ T8967]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  251.033451][ T8967]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  251.033466][ T8967]  dpm_for_each_dev+0x5d/0xb0
[  251.033499][ T8967]  fw_pm_notify+0x81/0x150
[  251.033522][ T8967]  notifier_call_chain+0xbc/0x410
[  251.033542][ T8967]  ? __pfx_fw_pm_notify+0x10/0x10
[  251.033565][ T8967]  blocking_notifier_call_chain_robust+0xc8/0x160
[  251.033580][ T8967]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[  251.033594][ T8967]  ? do_raw_spin_unlock+0x172/0x230
[  251.033612][ T8967]  pm_notifier_call_chain_robust+0x27/0x60
[  251.033627][ T8967]  snapshot_open+0x189/0x2b0
[  251.033640][ T8967]  ? __pfx_snapshot_open+0x10/0x10
[  251.033652][ T8967]  misc_open+0x35d/0x420
[  251.033668][ T8967]  ? __pfx_misc_open+0x10/0x10
[  251.033682][ T8967]  chrdev_open+0x231/0x6a0
[  251.033693][ T8967]  ? __pfx_apparmor_file_open+0x10/0x10
[  251.033709][ T8967]  ? __pfx_chrdev_open+0x10/0x10
[  251.033720][ T8967]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  251.033743][ T8967]  do_dentry_open+0x744/0x1c10
[  251.033755][ T8967]  ? __pfx_chrdev_open+0x10/0x10
[  251.033768][ T8967]  vfs_open+0x82/0x3f0
[  251.033783][ T8967]  path_openat+0x1de4/0x2cb0
[  251.033798][ T8967]  ? __pfx_path_openat+0x10/0x10
[  251.033811][ T8967]  do_filp_open+0x20b/0x470
[  251.033821][ T8967]  ? __pfx_do_filp_open+0x10/0x10
[  251.033842][ T8967]  ? _raw_spin_unlock+0x28/0x50
[  251.033856][ T8967]  ? alloc_fd+0x471/0x7d0
[  251.033875][ T8967]  do_sys_openat2+0x11b/0x1d0
[  251.033888][ T8967]  ? __pfx_do_sys_openat2+0x10/0x10
[  251.033902][ T8967]  ? __fget_files+0x20e/0x3c0
[  251.033916][ T8967]  ? handle_mm_fault+0x250/0xd10
[  251.033933][ T8967]  __ia32_compat_sys_openat+0x16d/0x210
[  251.033948][ T8967]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  251.033961][ T8967]  ? ksys_write+0x1ac/0x250
[  251.033973][ T8967]  ? rcu_is_watching+0x12/0xc0
[  251.033987][ T8967]  __do_fast_syscall_32+0x7c/0x3a0
[  251.034000][ T8967]  do_fast_syscall_32+0x32/0x80
[  251.034011][ T8967]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  251.034023][ T8967] RIP: 0023:0xf707e579
[  251.034032][ T8967] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  251.034042][ T8967] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  251.034052][ T8967] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000080
[  251.034058][ T8967] RDX: 0000000000101080 RSI: 0000000000000000 RDI: 0000000000000000
[  251.034064][ T8967] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  251.034070][ T8967] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  251.034076][ T8967] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  251.034089][ T8967]  </TASK>
[  251.036804][ T8967] 
[  251.146301][ T8967] ============================================
[  251.148227][ T8967] WARNING: possible recursive locking detected
[  251.150138][ T8967] 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 Not tainted
[  251.153282][ T8967] --------------------------------------------
[  251.155789][ T8967] syz.0.701/8967 is trying to acquire lock:
[  251.157640][ T8967] ffffffff8f512ae8 (fw_lock){+.+.}-{4:4}, at: assign_fw+0x4e/0x640
[  251.160126][ T8967] 
[  251.160126][ T8967] but task is already holding lock:
[  251.162437][ T8967] ffffffff8f512ae8 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150
[  251.165038][ T8967] 
[  251.165038][ T8967] other info that might help us debug this:
[  251.167546][ T8967]  Possible unsafe locking scenario:
[  251.167546][ T8967] 
[  251.169853][ T8967]        CPU0
[  251.170952][ T8967]        ----
[  251.172079][ T8967]   lock(fw_lock);
[  251.173269][ T8967]   lock(fw_lock);
[  251.174481][ T8967] 
[  251.174481][ T8967]  *** DEADLOCK ***
[  251.174481][ T8967] 
[  251.176995][ T8967]  May be due to missing lock nesting notation
[  251.176995][ T8967] 
[  251.179547][ T8967] 5 locks held by syz.0.701/8967:
[  251.181167][ T8967]  #0: ffffffff8f300228 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  251.183917][ T8967]  #1: ffffffff8e488228 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0
[  251.187129][ T8967]  #2: ffffffff8e4c8910 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160
[  251.190767][ T8967]  #3: ffffffff8f512ae8 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150
[  251.193494][ T8967]  #4: ffffffff8f50d4e8 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0
[  251.196420][ T8967] 
[  251.196420][ T8967] stack backtrace:
[  251.198267][ T8967] CPU: 1 UID: 0 PID: 8967 Comm: syz.0.701 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  251.198281][ T8967] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  251.198288][ T8967] Call Trace:
[  251.198293][ T8967]  <TASK>
[  251.198297][ T8967]  dump_stack_lvl+0x116/0x1f0
[  251.198310][ T8967]  print_deadlock_bug+0x1e9/0x240
[  251.198323][ T8967]  __lock_acquire+0x1106/0x1c90
[  251.198337][ T8967]  ? __kasan_slab_free+0x51/0x70
[  251.198348][ T8967]  lock_acquire+0x179/0x350
[  251.198361][ T8967]  ? assign_fw+0x4e/0x640
[  251.198376][ T8967]  ? __pfx___might_resched+0x10/0x10
[  251.198386][ T8967]  ? do_sys_openat2+0x11b/0x1d0
[  251.198399][ T8967]  ? __ia32_compat_sys_openat+0x16d/0x210
[  251.198413][ T8967]  ? __do_fast_syscall_32+0x7c/0x3a0
[  251.198424][ T8967]  __mutex_lock+0x199/0xb90
[  251.198434][ T8967]  ? assign_fw+0x4e/0x640
[  251.198448][ T8967]  ? assign_fw+0x4e/0x640
[  251.198462][ T8967]  ? __pfx___mutex_lock+0x10/0x10
[  251.198474][ T8967]  ? kasan_quarantine_put+0x10a/0x240
[  251.198483][ T8967]  ? lockdep_hardirqs_on+0x7c/0x110
[  251.198493][ T8967]  ? assign_fw+0x4e/0x640
[  251.198506][ T8967]  assign_fw+0x4e/0x640
[  251.198520][ T8967]  ? _request_firmware+0x957/0x1470
[  251.198535][ T8967]  _request_firmware+0x988/0x1470
[  251.198566][ T8967]  ? __pfx__request_firmware+0x10/0x10
[  251.198583][ T8967]  ? dump_stack_lvl+0x197/0x1f0
[  251.198592][ T8967]  ? dump_stack_lvl+0x1a3/0x1f0
[  251.198601][ T8967]  __async_dev_cache_fw_image+0xb1/0x340
[  251.198611][ T8967]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  251.198621][ T8967]  ? mark_held_locks+0x49/0x80
[  251.198633][ T8967]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  251.198648][ T8967]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[  251.198658][ T8967]  async_schedule_node_domain+0xd4/0x120
[  251.198669][ T8967]  dev_cache_fw_image+0x38e/0x490
[  251.198684][ T8967]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  251.198699][ T8967]  ? __pfx_dev_cache_fw_image+0x10/0x10
[  251.198713][ T8967]  dpm_for_each_dev+0x5d/0xb0
[  251.198727][ T8967]  fw_pm_notify+0x81/0x150
[  251.198744][ T8967]  notifier_call_chain+0xbc/0x410
[  251.198755][ T8967]  ? __pfx_fw_pm_notify+0x10/0x10
[  251.198770][ T8967]  blocking_notifier_call_chain_robust+0xc8/0x160
[  251.198784][ T8967]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[  251.198797][ T8967]  ? do_raw_spin_unlock+0x172/0x230
[  251.198813][ T8967]  pm_notifier_call_chain_robust+0x27/0x60
[  251.198827][ T8967]  snapshot_open+0x189/0x2b0
[  251.198839][ T8967]  ? __pfx_snapshot_open+0x10/0x10
[  251.198851][ T8967]  misc_open+0x35d/0x420
[  251.198866][ T8967]  ? __pfx_misc_open+0x10/0x10
[  251.198879][ T8967]  chrdev_open+0x231/0x6a0
[  251.198889][ T8967]  ? __pfx_apparmor_file_open+0x10/0x10
[  251.198905][ T8967]  ? __pfx_chrdev_open+0x10/0x10
[  251.198915][ T8967]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  251.198932][ T8967]  do_dentry_open+0x744/0x1c10
[  251.198941][ T8967]  ? __pfx_chrdev_open+0x10/0x10
[  251.198953][ T8967]  vfs_open+0x82/0x3f0
[  251.198965][ T8967]  path_openat+0x1de4/0x2cb0
[  251.198976][ T8967]  ? __pfx_path_openat+0x10/0x10
[  251.198987][ T8967]  do_filp_open+0x20b/0x470
[  251.198996][ T8967]  ? __pfx_do_filp_open+0x10/0x10
[  251.199009][ T8967]  ? _raw_spin_unlock+0x28/0x50
[  251.199022][ T8967]  ? alloc_fd+0x471/0x7d0
[  251.199038][ T8967]  do_sys_openat2+0x11b/0x1d0
[  251.199050][ T8967]  ? __pfx_do_sys_openat2+0x10/0x10
[  251.199063][ T8967]  ? __fget_files+0x20e/0x3c0
[  251.199077][ T8967]  ? handle_mm_fault+0x250/0xd10
[  251.199092][ T8967]  __ia32_compat_sys_openat+0x16d/0x210
[  251.199106][ T8967]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  251.199119][ T8967]  ? ksys_write+0x1ac/0x250
[  251.199129][ T8967]  ? rcu_is_watching+0x12/0xc0
[  251.199140][ T8967]  __do_fast_syscall_32+0x7c/0x3a0
[  251.199151][ T8967]  do_fast_syscall_32+0x32/0x80
[  251.199161][ T8967]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  251.199174][ T8967] RIP: 0023:0xf707e579
[  251.199182][ T8967] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  251.199192][ T8967] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  251.199202][ T8967] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000080
[  251.199208][ T8967] RDX: 0000000000101080 RSI: 0000000000000000 RDI: 0000000000000000
[  251.199214][ T8967] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  251.199220][ T8967] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  251.199226][ T8967] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  251.199234][ T8967]  </TASK>
[  251.340687][    C1] vkms_vblank_simulate: vblank timer overrun
[  251.583558][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  252.623667][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  253.663552][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  254.713574][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  255.105547][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  255.743695][    C2] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  256.783589][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  257.823576][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  258.863640][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  259.903611][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  260.943587][    C3] IPVS: sed: UDP 224.0.0.2:0 - no destination available

VM DIAGNOSIS:
12:01:41  Registers:
info registers vcpu 0

CPU#0
RAX=000000000047a264 RBX=0000000000000000 RCX=ffffffff8b82bc69 RDX=ffffed1005646646
RSI=ffffffff8c155de0 RDI=ffffffff819197a1 RBP=fffffbfff1c52ef0 RSP=ffffffff8e207e08
R8 =0000000000000000 R9 =ffffed1005646645 R10=ffff88802b23322b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e297780 R14=ffffffff90a95c50 R15=0000000000000000
RIP=ffffffff8b82a7cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809752d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080532000 CR3=0000000068879000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8556cfc0 RDI=ffffffff9b09f540 RBP=ffffffff9b09f500 RSP=ffffc900046d6c68
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e36312e36
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff3613efa R15=dffffc0000000000
RIP=ffffffff8556cfe7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809762d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f506dfac CR3=00000000246df000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88802b341f20 RCX=ffffffff81af48fd RDX=ffff8880272f0000
RSI=ffffffff81af48d9 RDI=0000000000000005 RBP=0000000000000001 RSP=ffffc90006c8f8a0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000002
R12=dffffc0000000000 R13=0000000000000003 R14=ffffed10056683e5 R15=ffff88802b43b6c0
RIP=ffffffff81af48df RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809772d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008000f000 CR3=000000000e382000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000022735c RBX=0000000000000003 RCX=ffffffff8b82bc69 RDX=ffffed10056a6646
RSI=ffffffff8c155de0 RDI=ffffffff819197a1 RBP=ffffed1003865000 RSP=ffffc9000048fdf8
R8 =0000000000000000 R9 =ffffed10056a6645 R10=ffff88802b53322b R11=0000000000000001
R12=0000000000000003 R13=ffff88801c328000 R14=ffffffff90a95c50 R15=0000000000000000
RIP=ffffffff8b82a7cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809782d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50bdda4 CR3=00000000246e5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000