last executing test programs:

19.615630165s ago: executing program 2 (id=604):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xfc, {"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", 0xffffffffffffff34}}, 0x1006)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), 0xffffffffffffffff)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
epoll_create(0x208000)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000340), 0xc901, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x5, &(0x7f0000000180)=0x100000001, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000000c0)=@x86={0xf0, 0x3, 0xb, 0x0, 0x6, 0x7, 0xd0, 0x73, 0x6, 0xc6, 0x35, 0x1, 0x0, 0xffffff2f, 0x6, 0x0, 0x0, 0x8, 0x0, '\x00', 0x1, 0x7})
prlimit64(0x0, 0x1, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(&(0x7f0000000100), r4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000140), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000040)=@gcm_256={{0x303}, "fdb87942485c70d0", "e9f894f1bea78dae88e137bbe22cb78d6c1bd363aba53c9e1899fae620c670d9", '\x00\x00\x00T', "00000000001000"}, 0x38)
sendto$inet6(r3, &(0x7f00000001c0), 0xfffffffffffffede, 0x0, 0x0, 0x3000137)
openat$snapshot(0xffffffffffffff9c, 0x0, 0x0, 0xfffe)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000880)={'wlan0\x00'})
sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000240)=ANY=[], 0x1c}}, 0x4040)

19.615468035s ago: executing program 0 (id=605):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x0, 0x0})
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)

19.295368319s ago: executing program 0 (id=606):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
r1 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x80000000}]})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002080)={<r4=>0xffffffffffffffff})
close(r4)
io_setup(0x7, &(0x7f0000000280)=<r5=>0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
io_submit(r5, 0x1, &(0x7f0000000080)=[&(0x7f0000000540)={0x4c5, 0x0, 0x0, 0x800000000001, 0x0, r4, &(0x7f0000000040), 0x20000044}])
creat(0x0, 0x0)
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c)
recvmmsg$unix(r6, &(0x7f0000003100), 0x0, 0x22, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100))
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=@newtaction={0x88, 0x30, 0xffff, 0x1, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xfffff7e8}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x1, 0x400, 0xfffffff7}, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}}, 0x0)
sendmmsg(r6, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0xe, 0xfeff, &(0x7f0000000100)="e0857f9f582f0300000000000000", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r1, &(0x7f0000000000)={0xa0000001})
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)

8.066726162s ago: executing program 3 (id=607):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
shutdown(r1, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder0\x00', 0x0, 0x0)
r3 = openat$binderfs(0xffffff9c, &(0x7f0000000000)='./binderfs2/binder1\x00', 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x2c, 0x0, &(0x7f0000000140)=[@increfs={0x40046304, 0x2}, @increfs={0x40046304, 0x2}, @release, @register_looper, @clear_death], 0x0, 0x0, 0x0})
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = openat$cuse(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_BACKING_OPEN(r5, 0x4010e501, &(0x7f00000001c0)={r6})
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = dup(r7)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f0000000340)='{%}-\x00', &(0x7f0000000380)='/}\\-:!])\x00', 0x0)
r9 = dup3(r2, r0, 0x80000)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x3, 0x1800, &(0x7f0000000440)="e27bb0"})
read$FUSE(r9, &(0x7f0000000480)={0x2020, 0x0, 0x0, <r10=>0x0}, 0x2020)
setuid(r10)

8.066226149s ago: executing program 2 (id=608):
r0 = socket$kcm(0x2, 0x1000000000000005, 0x0)
sendmsg$inet(r0, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x20, @rand_addr=0xa9fe0000}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000080)='r', 0x1}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="10000000300fe469b969512066a8d6b6024aa0816f44adb5950963b11d35a94ec4c21c50510816e59f33daf3c3b55d5fc03a10dd5805d8fd177f80a9e0060fb33506d1af6b5069698de64ebb2cb4273f375b53c1c9131c72a25de01ff6999e7119441175b17845c9cc8f86e86806e0d0c0bb97a13c7599c93130998dae30d4045c033a05d5d0ed50b7ce3911e48a2a0ee898af27ff624d598a5519a9eed3ccf4961328e74bad785d16eae53e47d4a8f50f91d9f086bbef4d23d1f68ee2a3b3d666e414a457ea7cfcc6c568d8879cbbcbdc4b9390086106d82a3f07be8cec4c762525a7afb5799b26802230fc0000000000000003974ef968acde0fdc6843e364b7ad3e488137c91da0f96d82169e07d7242f00dda0e7085882f01b7250897e20fd3c50def6ece7337c5aa9ce6175cd2176d854"], 0x10}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000500)={"a0453822", 0x0, 0x6, 0x2, 0x0, 0x0, "33793e77df2a87ba315ab8da00", "f9fe8002", "acc28000", "1eb15fbb", ["d8085781ae0cff21223446fe", "51f3d17dc9ed6f291acb3a10", "2ce50f8a285d9500c522afe1", '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00']})
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x0, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x59, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r3, 0xc1105518, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x200000000000008e, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r6}, 0x10)
munlockall()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

8.066083809s ago: executing program 1 (id=609):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32, @ANYBLOB="0c009985f2330fd547793c000800a0003a0900080500390104000000080026"], 0x40}}, 0x0)

8.065634355s ago: executing program 1 (id=610):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x4, 0x4, 0x1a, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2000, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

8.06533715s ago: executing program 3 (id=611):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
socket$inet(0x2, 0x3, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan0\x00'})
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000440)=ANY=[], 0x206c}, 0x1, 0x0, 0x0, 0x4000044}, 0x40)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x60}}, 0x0)
r2 = openat$binderfs(0xffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x800, 0x0)
ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000100)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000000000), 0x0, &(0x7f0000000640)=ANY=[], 0x20}, 0x41)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020300031200000000000000000000000400090088000000e3d36433c4920893924540ac18fabaf0c70000000000000005000600000000000a0000000000000000000000000000000000000000000000000000000000000002000b00000000000000fbfc0000000005000500000000000a"], 0x90}, 0x1, 0x7}, 0x0)

8.065185789s ago: executing program 1 (id=612):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000000100))
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
openat$dlm_plock(0xffffff9c, &(0x7f00000000c0), 0x101, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0x9, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000006c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000001880)={&(0x7f0000000700)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x3, 0x3}}, 0x10, 0x0}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000004c0)={0x60, 0x0, &(0x7f0000165000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x4, 0x0, 0x0, 0xe0, 0xe4, 0x4})
ioctl$sock_ifreq(r4, 0x8918, &(0x7f0000000040)={'veth1_vlan\x00', @ifru_flags=0x200})
r5 = openat$cdrom(0xffffff9c, &(0x7f0000000080), 0x200, 0x0)
ioctl$CDROM_DEBUG(r5, 0x5330, 0x1)

8.065014929s ago: executing program 3 (id=613):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r1 = dup(r0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r1)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
socket(0x15, 0x5, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x420802)
r6 = dup(r5)
sendmsg$nl_route_sched(r6, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f000010f000/0x1000)=nil, 0x1000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x0, 0x0)
r10 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000001c0)={'ip_vti0\x00', <r11=>0x0})
r12 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r12, 0x107, 0x18, &(0x7f0000000800)={r11, 0x1, 0x6, @broadcast}, 0x10)
sched_setaffinity(r7, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x101940, 0x0)

1.907001886s ago: executing program 0 (id=614):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="020d000018000000000000000000000005000600000000000a00000000000000fc010000000000000000000000000000000000000000000005000500000000000a00000000000000ff0100000000000080ff00000000000100000000000000000200120002000200000000000000000006002b00000000000000000000000000fc010000000000000000000000000000fc01020000000000000000000000000004"], 0xc0}}, 0x0)

1.903128889s ago: executing program 1 (id=615):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x6, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002a00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
setpgid(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000200000000000000010000040800"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x5a1000, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x5)
ioctl$TIOCSETD(r5, 0x5423, 0x0)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, &(0x7f0000000000)='bridge0\x00')
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r6 = io_uring_setup(0x1694, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r6, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000003740)=""/4096, 0x1900}], 0x0, 0x11a}, 0x20)
r7 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r7, 0x0, 0x0)
write$USERIO_CMD_REGISTER(r7, &(0x7f00000000c0), 0x2)
read(r7, &(0x7f00000001c0)=""/93, 0x5d)

1.895435659s ago: executing program 2 (id=616):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x1, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x7000000}, 0x4040004)

1.895103383s ago: executing program 3 (id=617):
r0 = socket$kcm(0x2, 0x1000000000000005, 0x0)
sendmsg$inet(r0, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x20, @rand_addr=0xa9fe0000}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000080)='r', 0x1}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x10}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000500)={"a0453822", 0x0, 0x6, 0x2, 0x0, 0x0, "33793e77df2a87ba315ab8da00", "f9fe8002", "acc28000", "1eb15fbb", ["d8085781ae0cff21223446fe", "51f3d17dc9ed6f291acb3a10", "2ce50f8a285d9500c522afe1", '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00']})
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r4, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x59, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r4, 0xc1105518, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]})
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x200000000000008e, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
munlockall()

1.825800947s ago: executing program 0 (id=618):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x6, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002a00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
setpgid(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000200000000000000010000040800"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x5a1000, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x5)
ioctl$TIOCSETD(r5, 0x5423, 0x0)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, &(0x7f0000000000)='bridge0\x00')
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r6 = io_uring_setup(0x1694, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r6, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000003740)=""/4096, 0x1900}], 0x0, 0x11a}, 0x20)
r7 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r7, 0x0, 0x0)
write$USERIO_CMD_REGISTER(r7, &(0x7f00000000c0), 0x2)
read(r7, &(0x7f00000001c0)=""/93, 0x5d)

989.309883ms ago: executing program 2 (id=619):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef4100000", 0x17}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

987.119544ms ago: executing program 1 (id=620):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00'})
sendmsg$NL80211_CMD_FRAME(r0, 0x0, 0x0)

982.958377ms ago: executing program 3 (id=621):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000003700)={0x0, 0x30000, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000800000000000008100000008000300", @ANYRES32=r2, @ANYBLOB="060066008e8800000a0006000802110007010000260033"], 0x58}}, 0x0)

937.866304ms ago: executing program 1 (id=622):
sched_setaffinity(0x0, 0x0, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f00000001c0)={{}, 'syz1\x00'})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @sliced={0x0, [0x2, 0x0, 0x0, 0x7ff, 0x1951, 0x51d5, 0x7ff, 0x60f4, 0x100, 0x7, 0x8, 0x404, 0x1006, 0x8, 0xfffa, 0x0, 0x1, 0x7, 0x4, 0x71, 0x6, 0x1, 0x7, 0x7fff, 0xfffa, 0x5, 0x5, 0x8000, 0x40, 0xfd7d, 0x80, 0x3b, 0x401, 0xe, 0x7, 0xa, 0xfb, 0x5, 0x7, 0x0, 0x1, 0x9, 0x6, 0x7, 0x10, 0x0, 0x2, 0x5], 0x80000000}})
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x1000007, 0x10, 0xffffffffffffffff, 0x9573b000)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x4)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000380))
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f00000002c0)={0x0, 0x1, 0x0, &(0x7f0000000600)=""/42, 0x0, 0xffff1000})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x0, 0xffffffff, &(0x7f0000000380)=""/225, &(0x7f00000000c0)=""/80, &(0x7f00000004c0)=""/40})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
munmap(&(0x7f0000004000/0x2000)=nil, 0x2000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x3a, 0x0, 0x0)
r4 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io$printer(r4, 0x0, &(0x7f0000000480)={0x34, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})

925.866711ms ago: executing program 0 (id=623):
set_mempolicy(0x4005, &(0x7f0000000080)=0x3, 0x2)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, 0x0)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x2, 0x288}, &(0x7f00000006c0), &(0x7f0000000200))
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000004700)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, 0x0, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r5}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_tracing={0x1a, 0x18, &(0x7f0000000480)=ANY=[@ANYBLOB="180000008c000000000000003123000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000079ab1fec001832000003000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000184c0000050000000000000000000000bf91000000000000b7020000010000008500000000000000b7000000000000009500000000000000"], &(0x7f00000000c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41000, 0x2, '\x00', r5, 0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0xc, 0x6, 0xffffffff}, 0x10, 0x36ed, 0xffffffffffffffff, 0x5, 0x0, &(0x7f0000000380)=[{0x5, 0x3, 0xf, 0x2}, {0x4, 0x4, 0x7, 0xc}, {0x4, 0x5, 0x1, 0x2}, {0x2, 0x2, 0x8, 0x7}, {0x1, 0x5, 0xd, 0x4}], 0x10, 0x6, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{}, &(0x7f0000000080), &(0x7f0000000640)=r6}, 0x1c)
syz_open_dev$admmidi(&(0x7f0000000700), 0x2, 0xe140)
r7 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, &(0x7f0000000040))
ioctl$EVIOCSKEYCODE_V2(r7, 0x40044591, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000100000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r9}, 0x10)
r10 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_REAPURB(r10, 0x4008550c, &(0x7f0000002680))
ioctl$USBDEVFS_FREE_STREAMS(r10, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002302230102090500000010000020d3"])

854.957268ms ago: executing program 3 (id=624):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
r1 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x80000000}]})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002080)={<r4=>0xffffffffffffffff})
close(r4)
io_setup(0x7, &(0x7f0000000280)=<r5=>0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
io_submit(r5, 0x1, &(0x7f0000000080)=[&(0x7f0000000540)={0x4c5, 0x0, 0x0, 0x800000000001, 0x0, r4, &(0x7f0000000040), 0x20000044}])
creat(0x0, 0x0)
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c)
recvmmsg$unix(r6, &(0x7f0000003100), 0x0, 0x22, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=@newtaction={0x88, 0x30, 0xffff, 0x1, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xfffff7e8}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x1, 0x400, 0xfffffff7}, 0x2, r7}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}}, 0x0)
sendmmsg(r6, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0xe, 0xfeff, &(0x7f0000000100)="e0857f9f582f0300000000000000", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r9 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r1, &(0x7f0000000000)={0xa0000001})
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)

854.271574ms ago: executing program 2 (id=625):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e00000002"], 0x80}}, 0x0)
r1 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x880, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000000000000b2000040"])
socket$xdp(0x2c, 0x3, 0x0)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_dccp_buf(r4, 0x21, 0xc0, &(0x7f0000000240)="4549f46918198cf8fd953f7e369eca92", 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x20000240, 0x20000270, 0x200002a0], 0x11e, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff00000000407058ea90a4a4a2352a63deddd52f4b63342243a4b2b5c67756b9a1deacee96ee824f69644548e87428a8dd9307a5148a1f08c5d3c3e589a27ce5ad05077873465124a6653909631d33b2eebca553be071cf5e163c28ef5d50f8c6dd1442236621220d9e88052689d99a960d88faa376e299d34eb7cba640de520473de6883498df65031b895675ea131d7810e6ca06cb2c90a38373d626668e016160b7b041bfc77fba5d4a2d350c6bb9c71486658c298d419688c18221fab8a1e7c31fdf44b3cf024842d2d6fb3bd5096dd14ab2de958306745d059e19c78cb38581943d76f7d442d2e5627f928515d05901e64ff9cb94a1f74be00c1d1eba205c15bb38a0e0eb89f1f75e9aaa15c57dc2c89f98a635837869fe81d4e493a7a21c33d25676cd4b2e8718ba3e3d5a6724bf79d9c5611c2751737778b3abefd782329bf60ac51074138057d0ca54c58bb5b8e1a830179fe15ab5ea6c62cdbdf1b46993ddf7267d4f78744f632efaaf370c87d1cfbcc4a731750b0c3f11d0dd09495eb8a4"]}, 0x25e)

755.291137ms ago: executing program 2 (id=626):
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000005000000020000000400000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000010000002000374d61d9c700"/28], 0x48)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7c2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x60800, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000000c0))
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0003000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000000)="89e7ee2c7cdad9b4b47380c988ca", 0xe}], 0x1)

0s ago: executing program 0 (id=627):
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0xc027, &(0x7f0000000340)=[{&(0x7f00000000c0)="97eb000014006bcd9e", 0xeb98}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000300)='mmap_lock_acquire_returned\x00', 0xffffffffffffffff, 0x0, 0x8000}, 0x65)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006380)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000100)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x8000}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x401, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r4=>0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r3, &(0x7f00000001c0)=ANY=[], 0x27) (fail_nth: 3)
io_submit(r4, 0x1, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r3, 0x0}])
dup3(r3, r1, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x0, 0x185)
ioctl$FBIOGET_VSCREENINFO(r5, 0x4600, &(0x7f0000000580))
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x5, &(0x7f0000000000)=@raw=[@map_idx_val={0x18, 0xa, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0xffffff7b}, @func={0x85, 0x0, 0x1, 0x0, 0x1}, @ldst={0x2, 0x1, 0x4, 0x7, 0x9, 0x6, 0x4}, @ldst={0x2, 0x3, 0x0, 0xb, 0x7, 0xfffffffffffffff0, 0x4}], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pread64(r5, &(0x7f0000000080)=""/75, 0x8e, 0x0)
read$FUSE(r5, &(0x7f0000001b80)={0x2020}, 0x2020)
r6 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffff9)
keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f0000000180)={r6, 0x5c, 0x99}, &(0x7f00000001c0)={'enc=', 'pkcs1', ' hash=', {'nhpoly1305-avx2\x00'}}, &(0x7f0000000240)="8f83b6cf87d6dfc590c52e66285b36e54555dfef93268ef5548b87e19ce5cbb6ddbfff551cc17ab695231b46569289271ff98ce1a30a3e9731284f3da12f0c6d550883cad62b651f09595aeadf486f2961c7844f5d00f3b6d2a1303f", &(0x7f00000003c0)="f39b30e586d54ee7c85432f7da6d16a2021037caddaaf6ff5cd4a388b9ea8f139d773e7a363a2eec8a79c2fcf1a4cbbdf2909f109cf401006fc071207c9e878239c1b73594cdb293f51ba24c10f9f5707fd2918ae22fe1473dd2885375fcd77769bc64022e99d7d288f926fe5cd4171c1dd5abc9433a16748f3d020420b02d3af2c7a7548497b065d3c8024e2c1179217d8d785285672c7f4a")

kernel console output (not intermixed with test programs):

23]  ? __pfx___mutex_lock+0x10/0x10
[   56.568833][ T6523]  ? __pfx_vfs_read+0x10/0x10
[   56.570176][ T6523]  ? __fget_files+0x206/0x3a0
[   56.571523][ T6523]  ksys_read+0x12b/0x250
[   56.572731][ T6523]  ? __pfx_ksys_read+0x10/0x10
[   56.574108][ T6523]  __do_fast_syscall_32+0x73/0x120
[   56.575605][ T6523]  do_fast_syscall_32+0x32/0x80
[   56.576986][ T6523]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   56.578777][ T6523] RIP: 0023:0xf7f28579
[   56.579914][ T6523] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   56.585248][ T6523] RSP: 002b:00000000f5076590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   56.587544][ T6523] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5076620
[   56.589753][ T6523] RDX: 000000000000000f RSI: 00000000f73b3ff4 RDI: 0000000000000000
[   56.591969][ T6523] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   56.594168][ T6523] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   56.596342][ T6523] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   56.598532][ T6523]  </TASK>
[   56.657233][ T6527] netlink: 'syz.1.107': attribute type 4 has an invalid length.
[   57.686947][   T39] audit: type=1804 audit(1736458230.378:3): pid=6548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.114" name="/newroot/33/file0/file0" dev="9p" ino=37618192 res=1 errno=0
[   58.036503][ T6553] netlink: 16 bytes leftover after parsing attributes in process `syz.0.115'.
[   58.455908][ T6568] netlink: 'syz.3.120': attribute type 4 has an invalid length.
[   58.709895][ T6579] netlink: 'syz.3.123': attribute type 10 has an invalid length.
[   58.712799][ T6581] netlink: 8 bytes leftover after parsing attributes in process `syz.1.125'.
[   58.715398][ T6579] batman_adv: batadv0: Adding interface: team0
[   58.717366][ T6579] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.750861][ T6579] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   58.764332][ T6588] netlink: 'syz.3.123': attribute type 10 has an invalid length.
[   58.766653][ T6588] netlink: 2 bytes leftover after parsing attributes in process `syz.3.123'.
[   58.778607][ T6588] team0: entered promiscuous mode
[   58.800369][ T6588] 8021q: adding VLAN 0 to HW filter on device team0
[   58.804607][ T6588] batman_adv: batadv0: Interface activated: team0
[   58.806715][ T6588] batman_adv: batadv0: Interface deactivated: team0
[   58.808742][ T6588] batman_adv: batadv0: Removing interface: team0
[   58.823652][ T6588] bridge0: port 1(team0) entered blocking state
[   58.842022][ T6588] bridge0: port 1(team0) entered disabled state
[   58.844569][ T6588] team0: entered allmulticast mode
[   59.095693][ T6598] netlink: 'syz.2.129': attribute type 4 has an invalid length.
[   59.444482][   T39] audit: type=1326 audit(1736458232.138:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   59.468331][ T6601] e1000e 0000:00:02.0 eth1: NIC Link is Down
[   59.473578][   T39] audit: type=1326 audit(1736458232.148:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   59.486165][   T39] audit: type=1326 audit(1736458232.148:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   59.492237][   T39] audit: type=1326 audit(1736458232.148:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   59.498079][   T39] audit: type=1326 audit(1736458232.148:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   59.514381][   T39] audit: type=1326 audit(1736458232.148:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   59.539005][   T39] audit: type=1326 audit(1736458232.148:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   59.549572][   T39] audit: type=1326 audit(1736458232.148:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=363 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   59.555538][   T39] audit: type=1326 audit(1736458232.148:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6613 comm="syz.3.133" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f80579 code=0x7ffc0000
[   60.021774][ T6650] cgroup: Invalid name
[   61.337941][ T6674] netlink: 'syz.2.140': attribute type 10 has an invalid length.
[   61.339849][ T6675] binder: 6669:6675 ioctl 4018620d 0 returned -22
[   61.389922][ T6676] netlink: 'syz.2.140': attribute type 10 has an invalid length.
[   61.393291][ T6676] netlink: 2 bytes leftover after parsing attributes in process `syz.2.140'.
[   61.422075][ T6674] batman_adv: batadv0: Adding interface: team0
[   61.424064][ T6674] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.431549][ T6674] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   61.440422][ T6676] team0: entered promiscuous mode
[   61.442568][ T6676] team_slave_0: entered promiscuous mode
[   61.447584][ T6676] team_slave_1: entered promiscuous mode
[   61.452037][ T6676] 8021q: adding VLAN 0 to HW filter on device team0
[   61.455131][ T6676] batman_adv: batadv0: Interface activated: team0
[   61.457895][ T6676] batman_adv: batadv0: Interface deactivated: team0
[   61.464138][ T6676] batman_adv: batadv0: Removing interface: team0
[   61.467024][ T6676] bridge0: port 3(team0) entered blocking state
[   61.469342][ T6676] bridge0: port 3(team0) entered disabled state
[   61.471552][ T6676] team0: entered allmulticast mode
[   61.473221][ T6676] team_slave_0: entered allmulticast mode
[   61.475133][ T6676] team_slave_1: entered allmulticast mode
[   61.478903][ T6676] bridge0: port 3(team0) entered blocking state
[   61.480838][ T6676] bridge0: port 3(team0) entered forwarding state
[   61.885404][ T6683] tipc: Started in network mode
[   61.887205][ T6683] tipc: Node identity e27eac2251ac, cluster identity 4711
[   61.905813][ T6683] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   62.095988][ T6683] syzkaller0: entered promiscuous mode
[   62.097824][ T6683] syzkaller0: entered allmulticast mode
[   62.101855][ T6683] tipc: Resetting bearer <eth:syzkaller0>
[   62.639194][ T6681] tipc: Resetting bearer <eth:syzkaller0>
[   62.919795][   T35] tipc: Node number set to 3016928290
[   63.568399][ T6697] misc userio: Invalid payload size
[   63.572572][ T6697] misc userio: No port type given on /dev/userio
[   63.927339][ T6681] tipc: Disabling bearer <eth:syzkaller0>
[   63.931167][ T6688] netlink: 'syz.2.144': attribute type 4 has an invalid length.
[   64.553192][ T6725] netlink: 'syz.2.153': attribute type 4 has an invalid length.
[   65.001753][ T6733] netlink: 4 bytes leftover after parsing attributes in process `syz.1.156'.
[   65.004559][ T6733] netlink: 12 bytes leftover after parsing attributes in process `syz.1.156'.
[   65.125427][ T6738] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   65.141869][ T6738] syzkaller0: entered promiscuous mode
[   65.143681][ T6738] syzkaller0: entered allmulticast mode
[   65.145630][ T6738] tipc: Resetting bearer <eth:syzkaller0>
[   65.449772][ T6740] misc userio: Invalid payload size
[   65.452677][ T6740] misc userio: No port type given on /dev/userio
[   65.914180][ T6744] netlink: 'syz.2.159': attribute type 4 has an invalid length.
[   66.183375][ T6734] tipc: Resetting bearer <eth:syzkaller0>
[   67.081304][ T6763] FAULT_INJECTION: forcing a failure.
[   67.081304][ T6763] name failslab, interval 1, probability 0, space 0, times 0
[   67.085010][ T6763] CPU: 1 UID: 0 PID: 6763 Comm: syz.3.163 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[   67.088055][ T6763] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.091150][ T6763] Call Trace:
[   67.092132][ T6763]  <TASK>
[   67.093008][ T6763]  dump_stack_lvl+0x16c/0x1f0
[   67.094379][ T6763]  should_fail_ex+0x497/0x5b0
[   67.095794][ T6763]  ? fs_reclaim_acquire+0xae/0x150
[   67.097293][ T6763]  should_failslab+0xc2/0x120
[   67.098687][ T6763]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   67.100261][ T6763]  ? security_file_alloc+0x34/0x2b0
[   67.101770][ T6763]  security_file_alloc+0x34/0x2b0
[   67.103245][ T6763]  init_file+0x93/0x480
[   67.104460][ T6763]  alloc_empty_file+0x91/0x1e0
[   67.105869][ T6763]  alloc_file_pseudo+0x13d/0x200
[   67.107318][ T6763]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   67.108892][ T6763]  ? alloc_fd+0x41f/0x760
[   67.110265][ T6763]  ? __pfx_lock_release+0x10/0x10
[   67.111796][ T6763]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   67.113334][ T6763]  __anon_inode_getfile+0x136/0x3c0
[   67.114861][ T6763]  ? _raw_spin_unlock+0x28/0x50
[   67.116292][ T6763]  ? __pfx___anon_inode_getfile+0x10/0x10
[   67.117947][ T6763]  anon_inode_getfd+0x52/0xb0
[   67.119327][ T6763]  __ia32_sys_fsopen+0x18f/0x240
[   67.120775][ T6763]  __do_fast_syscall_32+0x73/0x120
[   67.122272][ T6763]  do_fast_syscall_32+0x32/0x80
[   67.123704][ T6763]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   67.125540][ T6763] RIP: 0023:0xf7f80579
[   67.127075][ T6763] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   67.132878][ T6763] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 00000000000001ae
[   67.135977][ T6763] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000000000
[   67.138537][ T6763] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   67.140834][ T6763] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   67.143136][ T6763] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   67.145425][ T6763] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.147743][ T6763]  </TASK>
[   67.557747][ T6734] tipc: Disabling bearer <eth:syzkaller0>
[   67.562865][ T6757] netlink: 'syz.2.161': attribute type 4 has an invalid length.
[   67.566547][ T6768] netlink: 'syz.3.164': attribute type 4 has an invalid length.
[   67.727057][ T6772] xt_socket: unknown flags 0x46
[   67.900060][ T6781] ptrace attach of "/syz-executor exec"[5941] was attempted by "/syz-executor exec"[6781]
[   67.954625][ T6772] block nbd1: shutting down sockets
[   68.158948][ T5973] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   68.263213][ T6789] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   68.329260][ T5973] usb 7-1: Using ep0 maxpacket: 8
[   68.523726][ T6791] misc userio: Invalid payload size
[   68.527412][ T5973] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   68.530443][ T5973] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[   68.532950][ T5973] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   68.536401][ T5973] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   68.540241][ T5973] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   68.543243][ T5973] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.577023][ T5973] hub 7-1:1.0: bad descriptor, ignoring hub
[   68.579228][ T5973] hub 7-1:1.0: probe with driver hub failed with error -5
[   68.583167][ T5973] cdc_wdm 7-1:1.0: skipping garbage
[   68.584885][ T5973] cdc_wdm 7-1:1.0: skipping garbage
[   68.610077][ T5973] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   68.612002][ T5973] cdc_wdm 7-1:1.0: Unknown control protocol
[   68.691484][ T6793] syz.3.170 uses obsolete (PF_INET,SOCK_PACKET)
[   68.986150][ T6801] netlink: 'syz.3.171': attribute type 10 has an invalid length.
[   69.065640][ T6801] team0: left allmulticast mode
[   69.070141][ T6801] team0: left promiscuous mode
[   69.073722][ T6801] bridge0: port 1(team0) entered disabled state
[   69.086473][ T6801] batman_adv: batadv0: Adding interface: team0
[   69.088555][ T6801] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.097895][ T6801] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   69.240487][ T6780] usb 7-1: reset high-speed USB device number 2 using dummy_hcd
[   69.452095][ T6823] netlink: 'syz.3.178': attribute type 4 has an invalid length.
[   69.457727][ T6824] netlink: 'syz.0.179': attribute type 4 has an invalid length.
[   69.709733][ T5996] usb 7-1: USB disconnect, device number 2
[   70.084410][ T6829] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   70.241755][ T6831] fuse: Unknown parameter 'grou00000000000000000000'
[   70.269556][ T6833] FAULT_INJECTION: forcing a failure.
[   70.269556][ T6833] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.274122][ T6833] CPU: 1 UID: 0 PID: 6833 Comm: syz.2.182 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[   70.277153][ T6833] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   70.280181][ T6833] Call Trace:
[   70.281184][ T6833]  <TASK>
[   70.282044][ T6833]  dump_stack_lvl+0x16c/0x1f0
[   70.283421][ T6833]  should_fail_ex+0x497/0x5b0
[   70.284729][ T6833]  _copy_from_user+0x2e/0xd0
[   70.286080][ T6833]  get_compat_msghdr+0xa8/0x170
[   70.287603][ T6833]  ? __pfx_get_compat_msghdr+0x10/0x10
[   70.289173][ T6833]  ___sys_recvmsg+0x193/0x1a0
[   70.290540][ T6833]  ? __pfx____sys_recvmsg+0x10/0x10
[   70.292417][ T6833]  ? __fget_files+0x1fc/0x3a0
[   70.293766][ T6833]  ? trace_lock_acquire+0x14e/0x1f0
[   70.295324][ T6833]  ? __fget_files+0x206/0x3a0
[   70.296683][ T6833]  ? __pfx___might_resched+0x10/0x10
[   70.298343][ T6833]  do_recvmmsg+0x55d/0x740
[   70.299658][ T6833]  ? __pfx_do_recvmmsg+0x10/0x10
[   70.301109][ T6833]  ? vfs_write+0x306/0x1150
[   70.302427][ T6833]  ? __fget_files+0x206/0x3a0
[   70.304177][ T6833]  __sys_recvmmsg+0x21e/0x280
[   70.305725][ T6833]  ? __pfx___sys_recvmmsg+0x10/0x10
[   70.307496][ T6833]  ? __pfx_ksys_write+0x10/0x10
[   70.309447][ T6833]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[   70.311927][ T6833]  ? lockdep_hardirqs_on+0x7c/0x110
[   70.314196][ T6833]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   70.317156][ T6833]  __do_fast_syscall_32+0x73/0x120
[   70.318922][ T6833]  do_fast_syscall_32+0x32/0x80
[   70.320321][ T6833]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   70.322120][ T6833] RIP: 0023:0xf7f28579
[   70.323305][ T6833] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   70.328885][ T6833] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[   70.332027][ T6833] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000600
[   70.335067][ T6833] RDX: 00000000cb88ff8b RSI: 0000000000000002 RDI: 0000000000000000
[   70.338122][ T6833] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   70.341007][ T6833] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   70.344063][ T6833] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   70.347128][ T6833]  </TASK>
[   70.348337][    C1] vkms_vblank_simulate: vblank timer overrun
[   70.458654][ T6840] netlink: 20 bytes leftover after parsing attributes in process `syz.0.185'.
[   70.463030][ T6840] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[   70.507981][ T6837] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   70.568996][ T6837] syzkaller0: entered promiscuous mode
[   70.571007][ T6837] syzkaller0: entered allmulticast mode
[   70.576216][ T6837] tipc: Resetting bearer <eth:syzkaller0>
[   70.802241][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[   70.804587][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[   71.218210][ T6834] tipc: Resetting bearer <eth:syzkaller0>
[   71.309331][ T6861] netlink: 'syz.2.191': attribute type 10 has an invalid length.
[   71.362619][ T6864] netlink: 'syz.2.191': attribute type 10 has an invalid length.
[   71.364912][ T6864] netlink: 2 bytes leftover after parsing attributes in process `syz.2.191'.
[   72.233367][ T6834] tipc: Disabling bearer <eth:syzkaller0>
[   72.238565][ T6861] bridge0: port 3(team0) entered disabled state
[   72.249061][ T6861] team0: left allmulticast mode
[   72.250532][ T6861] team_slave_0: left allmulticast mode
[   72.252629][ T6861] team_slave_1: left allmulticast mode
[   72.254816][ T6861] team0: left promiscuous mode
[   72.256586][ T6861] team_slave_0: left promiscuous mode
[   72.258754][ T6861] team_slave_1: left promiscuous mode
[   72.261915][ T6861] bridge0: port 3(team0) entered disabled state
[   72.266419][ T6861] batman_adv: batadv0: Adding interface: team0
[   72.268994][ T6861] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.278774][ T6861] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   72.283751][ T6864] team0: entered promiscuous mode
[   72.285887][ T6864] team_slave_0: entered promiscuous mode
[   72.288670][ T6864] team_slave_1: entered promiscuous mode
[   72.292407][ T6864] 8021q: adding VLAN 0 to HW filter on device team0
[   72.295231][ T6864] batman_adv: batadv0: Interface activated: team0
[   72.297349][ T6864] batman_adv: batadv0: Interface deactivated: team0
[   72.300436][ T6864] batman_adv: batadv0: Removing interface: team0
[   72.303844][ T6864] bridge0: port 3(team0) entered blocking state
[   72.306281][ T6864] bridge0: port 3(team0) entered disabled state
[   72.309384][ T6864] team0: entered allmulticast mode
[   72.311585][ T6864] team_slave_0: entered allmulticast mode
[   72.313692][ T6864] team_slave_1: entered allmulticast mode
[   72.316087][ T6864] bridge0: port 3(team0) entered blocking state
[   72.317931][ T6864] bridge0: port 3(team0) entered forwarding state
[   72.320979][ T6865] netlink: 'syz.0.190': attribute type 4 has an invalid length.
[   72.401253][   T39] kauditd_printk_skb: 681 callbacks suppressed
[   72.401267][   T39] audit: type=1804 audit(1736458245.098:694): pid=6876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.195" name="/newroot/54/file0/file0" dev="9p" ino=37618192 res=1 errno=0
[   72.781519][ T6893] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   73.140140][ T6898] netlink: 'syz.2.201': attribute type 1 has an invalid length.
[   73.246446][ T6892] misc userio: No port type given on /dev/userio
[   73.463105][ T6901] netlink: 'syz.3.202': attribute type 10 has an invalid length.
[   73.466687][ T6901] netlink: 'syz.3.202': attribute type 10 has an invalid length.
[   73.469203][ T6901] netlink: 2 bytes leftover after parsing attributes in process `syz.3.202'.
[   73.472479][ T6901] team0: entered promiscuous mode
[   73.474832][ T6901] 8021q: adding VLAN 0 to HW filter on device team0
[   73.476901][ T6901] batman_adv: batadv0: Interface activated: team0
[   73.478955][ T6901] batman_adv: batadv0: Interface deactivated: team0
[   73.481593][ T6901] batman_adv: batadv0: Removing interface: team0
[   73.489196][ T6901] bridge0: port 1(team0) entered blocking state
[   73.492238][ T6901] bridge0: port 1(team0) entered disabled state
[   73.494995][ T6901] team0: entered allmulticast mode
[   74.060591][ T6917] ip6gretap1: entered allmulticast mode
[   74.073982][ T6917] netlink: 'syz.2.207': attribute type 10 has an invalid length.
[   74.094994][ T6917] bridge0: port 3(team0) entered disabled state
[   74.096949][ T6917] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.099248][ T6917] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.105375][ T6917] bridge0: port 3(team0) entered blocking state
[   74.108703][ T6917] bridge0: port 3(team0) entered forwarding state
[   74.112826][ T6917] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.115692][ T6917] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.119102][ T6917] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.121306][ T6917] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.126956][ T6917] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   74.312234][ T6928] netlink: 'syz.1.211': attribute type 10 has an invalid length.
[   74.322775][ T6928] batman_adv: batadv0: Adding interface: team0
[   74.324715][ T6928] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.332314][ T6928] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   74.336965][ T6928] netlink: 'syz.1.211': attribute type 10 has an invalid length.
[   74.339514][ T6928] netlink: 2 bytes leftover after parsing attributes in process `syz.1.211'.
[   74.343283][ T6928] team0: entered promiscuous mode
[   74.345182][ T6928] 8021q: adding VLAN 0 to HW filter on device team0
[   74.347292][ T6928] batman_adv: batadv0: Interface activated: team0
[   74.349364][ T6928] batman_adv: batadv0: Interface deactivated: team0
[   74.351283][ T6928] batman_adv: batadv0: Removing interface: team0
[   74.353652][ T6928] bridge0: port 1(team0) entered blocking state
[   74.355590][ T6928] bridge0: port 1(team0) entered disabled state
[   74.357482][ T6928] team0: entered allmulticast mode
[   74.736971][ T6946] FAULT_INJECTION: forcing a failure.
[   74.736971][ T6946] name failslab, interval 1, probability 0, space 0, times 0
[   74.741281][ T6946] CPU: 3 UID: 0 PID: 6946 Comm: syz.3.215 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[   74.744300][ T6946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.747432][ T6946] Call Trace:
[   74.748400][ T6946]  <TASK>
[   74.749283][ T6946]  dump_stack_lvl+0x16c/0x1f0
[   74.750659][ T6946]  should_fail_ex+0x497/0x5b0
[   74.752018][ T6946]  ? fs_reclaim_acquire+0xae/0x150
[   74.753504][ T6946]  should_failslab+0xc2/0x120
[   74.754884][ T6946]  __kmalloc_noprof+0xce/0x4f0
[   74.756308][ T6946]  ? __vb2_queue_alloc+0x238/0x1230
[   74.757825][ T6946]  __vb2_queue_alloc+0x238/0x1230
[   74.759299][ T6946]  ? vid_out_queue_setup+0x90a/0xcd0
[   74.760809][ T6946]  vb2_core_reqbufs+0xa73/0xfb0
[   74.762222][ T6946]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[   74.763775][ T6946]  ? __pfx___mutex_trylock_common+0x10/0x10
[   74.765467][ T6946]  ? rcu_is_watching+0x12/0xc0
[   74.766861][ T6946]  ? trace_contention_end+0xee/0x140
[   74.768374][ T6946]  vb2_ioctl_reqbufs+0x299/0x430
[   74.769805][ T6946]  ? __pfx_vb2_ioctl_reqbufs+0x10/0x10
[   74.771357][ T6946]  ? __pfx___mutex_lock+0x10/0x10
[   74.772789][ T6946]  ? __pfx___lock_acquire+0x10/0x10
[   74.774294][ T6946]  ? find_held_lock+0x2d/0x110
[   74.775682][ T6946]  vidioc_reqbufs+0x86/0x100
[   74.777027][ T6946]  v4l_reqbufs+0x193/0x1d0
[   74.778314][ T6946]  __video_do_ioctl+0xaf0/0xf00
[   74.779731][ T6946]  ? __pfx___video_do_ioctl+0x10/0x10
[   74.781268][ T6946]  ? __might_fault+0xe3/0x190
[   74.782653][ T6946]  video_usercopy+0x427/0x1520
[   74.784020][ T6946]  ? __pfx___video_do_ioctl+0x10/0x10
[   74.785561][ T6946]  ? __pfx_video_usercopy+0x10/0x10
[   74.787063][ T6946]  v4l2_ioctl+0x1ba/0x250
[   74.788301][ T6946]  ? __fget_files+0x121/0x3a0
[   74.789655][ T6946]  v4l2_compat_ioctl32+0x214/0x2c0
[   74.791136][ T6946]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[   74.792742][ T6946]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   74.794253][ T6946]  __do_fast_syscall_32+0x73/0x120
[   74.795724][ T6946]  do_fast_syscall_32+0x32/0x80
[   74.797137][ T6946]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   74.798942][ T6946] RIP: 0023:0xf7f80579
[   74.800107][ T6946] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   74.805625][ T6946] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   74.808012][ T6946] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0145608
[   74.810273][ T6946] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   74.812535][ T6946] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   74.814796][ T6946] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   74.817074][ T6946] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   74.819345][ T6946]  </TASK>
[   75.568890][   T56] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   75.718899][   T56] usb 6-1: Using ep0 maxpacket: 8
[   75.721640][   T56] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   75.724590][   T56] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[   75.727123][   T56] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   75.730517][   T56] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   75.733757][   T56] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   75.734121][ T6966] netlink: 'syz.3.221': attribute type 10 has an invalid length.
[   75.736334][   T56] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.739470][   T56] hub 6-1:1.0: bad descriptor, ignoring hub
[   75.739490][   T56] hub 6-1:1.0: probe with driver hub failed with error -5
[   75.739663][   T56] cdc_wdm 6-1:1.0: skipping garbage
[   75.748234][   T56] cdc_wdm 6-1:1.0: skipping garbage
[   75.752048][   T56] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[   75.753779][   T56] cdc_wdm 6-1:1.0: Unknown control protocol
[   75.756805][ T6966] team0: left allmulticast mode
[   75.758303][ T6966] team0: left promiscuous mode
[   75.761429][ T6966] bridge0: port 1(team0) entered disabled state
[   75.766792][ T6966] batman_adv: batadv0: Adding interface: team0
[   75.768632][ T6966] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.777776][ T6966] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   75.885947][  T834] cfg80211: failed to load regulatory.db
[   75.897820][ T6971] xt_socket: unknown flags 0x46
[   75.917756][ T6970] block nbd2: shutting down sockets
[   76.141238][ T6979] VFS: could not find a valid V7 on nullb0.
[   76.206367][ T6982] netlink: 8 bytes leftover after parsing attributes in process `syz.3.226'.
[   76.631260][ T6986] misc userio: No port type given on /dev/userio
[   76.684131][ T6960] usb 6-1: reset high-speed USB device number 2 using dummy_hcd
[   77.189895][ T6002] usb 6-1: USB disconnect, device number 2
[   77.490448][ T6997] netlink: 'syz.2.230': attribute type 10 has an invalid length.
[   77.498444][ T6997] bridge0: port 3(team0) entered disabled state
[   77.512610][ T6997] team0: left allmulticast mode
[   77.514044][ T6997] team_slave_0: left allmulticast mode
[   77.515643][ T6997] team_slave_1: left allmulticast mode
[   77.517232][ T6997] team0: left promiscuous mode
[   77.518633][ T6997] team_slave_0: left promiscuous mode
[   77.529138][ T6997] team_slave_1: left promiscuous mode
[   77.530929][ T6997] bridge0: port 3(team0) entered disabled state
[   77.545892][ T6997] batman_adv: batadv0: Adding interface: team0
[   77.547896][ T6997] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.555432][ T6997] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   77.703892][ T7002] block nbd2: shutting down sockets
[   77.807202][ T7007] netlink: 'syz.0.232': attribute type 4 has an invalid length.
[   78.354212][ T7009] misc userio: No port type given on /dev/userio
[   78.798266][ T7027] netlink: 'syz.2.239': attribute type 10 has an invalid length.
[   78.823840][ T7030] netlink: 4 bytes leftover after parsing attributes in process `syz.2.240'.
[   78.826939][ T7030] netlink: 12 bytes leftover after parsing attributes in process `syz.2.240'.
[   79.649081][ T5996] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   79.808898][ T5996] usb 5-1: Using ep0 maxpacket: 8
[   79.812892][ T5996] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   79.815961][ T5996] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[   79.818613][ T5996] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   79.822339][ T5996] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   79.826423][ T5996] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   79.829983][ T5996] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.835617][ T5996] hub 5-1:1.0: bad descriptor, ignoring hub
[   79.837721][ T5996] hub 5-1:1.0: probe with driver hub failed with error -5
[   79.840224][ T5996] cdc_wdm 5-1:1.0: skipping garbage
[   79.841843][ T5996] cdc_wdm 5-1:1.0: skipping garbage
[   79.844995][ T5996] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[   79.846847][ T5996] cdc_wdm 5-1:1.0: Unknown control protocol
[   80.333589][ T7056] netlink: 'syz.1.246': attribute type 4 has an invalid length.
[   80.719123][ T7060] netlink: 700 bytes leftover after parsing attributes in process `syz.3.248'.
[   80.722527][ T7060] netlink: 4 bytes leftover after parsing attributes in process `syz.3.248'.
[   80.726559][ T7060] netlink: 12 bytes leftover after parsing attributes in process `syz.3.248'.
[   80.749205][ T7038] usb 5-1: reset high-speed USB device number 2 using dummy_hcd
[   81.359211][  T833] usb 5-1: USB disconnect, device number 2
[   82.004947][ T7098] netlink: 'syz.0.259': attribute type 10 has an invalid length.
[   82.021373][ T7098] batman_adv: batadv0: Adding interface: team0
[   82.025058][ T7098] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.032742][ T7098] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   82.890947][ T7113] netlink: 20 bytes leftover after parsing attributes in process `syz.3.263'.
[   82.893538][ T7113] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[   82.927226][ T7115] binder: 7114:7115 ioctl c00c620f 20000040 returned -22
[   84.163204][ T7140] misc userio: Invalid payload size
[   84.165098][ T7140] misc userio: No port type given on /dev/userio
[   85.068651][ T7171] team0: left allmulticast mode
[   85.070653][ T7171] bridge0: port 1(team0) entered disabled state
[   85.479363][ T7196] 9pnet_fd: Insufficient options for proto=fd
[   85.481864][ T7196] netlink: 28 bytes leftover after parsing attributes in process `syz.1.288'.
[   85.735528][ T7209] netlink: 'syz.0.293': attribute type 10 has an invalid length.
[   85.738552][ T7209] netlink: 2 bytes leftover after parsing attributes in process `syz.0.293'.
[   85.741765][ T7209] team0: entered promiscuous mode
[   85.743270][ T7209] team_slave_0: entered promiscuous mode
[   85.744957][ T7209] team_slave_1: entered promiscuous mode
[   85.747385][ T7209] 8021q: adding VLAN 0 to HW filter on device team0
[   85.751022][ T7209] batman_adv: batadv0: Interface activated: team0
[   85.753426][ T7209] batman_adv: batadv0: Interface deactivated: team0
[   85.755313][ T7209] batman_adv: batadv0: Removing interface: team0
[   85.757770][ T7209] bridge0: port 3(team0) entered blocking state
[   85.760018][ T7209] bridge0: port 3(team0) entered disabled state
[   85.763019][ T7209] team0: entered allmulticast mode
[   85.764623][ T7209] team_slave_0: entered allmulticast mode
[   85.766327][ T7209] team_slave_1: entered allmulticast mode
[   85.769072][ T7209] bridge0: port 3(team0) entered blocking state
[   85.770943][ T7209] bridge0: port 3(team0) entered forwarding state
[   86.611707][ T7227] netlink: 8 bytes leftover after parsing attributes in process `syz.0.298'.
[   87.580895][ T5996] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   87.728889][ T5996] usb 8-1: Using ep0 maxpacket: 8
[   87.732508][ T5996] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   87.735384][ T5996] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   87.738983][ T5996] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   87.741443][ T5996] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.744827][ T5996] usb 8-1: config 0 descriptor??
[   87.747670][ T5996] iowarrior 8-1:0.0: no interrupt-in endpoint found
[   87.827341][ T7249] Cannot find map_set index 0 as target
[   87.868118][ T7251] FAULT_INJECTION: forcing a failure.
[   87.868118][ T7251] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.872728][ T7251] CPU: 0 UID: 0 PID: 7251 Comm: syz.1.306 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[   87.875807][ T7251] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.878867][ T7251] Call Trace:
[   87.879802][ T7251]  <TASK>
[   87.880636][ T7251]  dump_stack_lvl+0x16c/0x1f0
[   87.881951][ T7251]  should_fail_ex+0x497/0x5b0
[   87.883289][ T7251]  _copy_from_user+0x2e/0xd0
[   87.884575][ T7251]  copy_folio_from_user+0xff/0x2a0
[   87.886019][ T7251]  mfill_atomic_copy+0x1ba3/0x1e60
[   87.887491][ T7251]  ? __pfx_mfill_atomic_copy+0x10/0x10
[   87.889035][ T7251]  ? __might_fault+0xe3/0x190
[   87.890401][ T7251]  ? __might_fault+0xe3/0x190
[   87.891714][ T7251]  userfaultfd_ioctl+0x1e50/0x3830
[   87.893148][ T7251]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   87.894621][ T7251]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[   87.896223][ T7251]  ? __pfx_lock_release+0x10/0x10
[   87.897658][ T7251]  ? trace_lock_acquire+0x14e/0x1f0
[   87.899122][ T7251]  ? __fget_files+0x206/0x3a0
[   87.900446][ T7251]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[   87.901972][ T7251]  ? compat_ptr_ioctl+0x6b/0xa0
[   87.903354][ T7251]  compat_ptr_ioctl+0x6b/0xa0
[   87.904670][ T7251]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[   87.906196][ T7251]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   87.907694][ T7251]  __do_fast_syscall_32+0x73/0x120
[   87.909131][ T7251]  do_fast_syscall_32+0x32/0x80
[   87.910509][ T7251]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   87.912253][ T7251] RIP: 0023:0xf7fb2579
[   87.913406][ T7251] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   87.918725][ T7251] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   87.921007][ T7251] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa03
[   87.923074][ T7251] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[   87.925315][ T7251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   87.927464][ T7251] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   87.929548][ T7251] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   87.931658][ T7251]  </TASK>
[   88.162526][ T7258] netlink: 4 bytes leftover after parsing attributes in process `syz.1.307'.
[   88.168640][ T7258] trusted_key: syz.1.307 sent an empty control message without MSG_MORE.
[   89.072580][ T7271] netlink: 'syz.2.309': attribute type 4 has an invalid length.
[   90.422523][ T7286] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.426781][ T7286] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[   90.441732][   T30] usb 8-1: USB disconnect, device number 2
[   90.511668][ T7286] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.520669][ T7286] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[   90.650091][ T7286] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.654092][ T7286] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[   90.710418][ T7286] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.713460][ T7286] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[   90.793589][ T7286] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[   90.796110][ T7286] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[   90.801453][ T7286] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[   90.803908][ T7286] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[   90.810608][ T7286] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[   90.813362][ T7286] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[   90.817926][ T7286] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[   90.820613][ T7286] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[   91.323533][ T7305] netlink: 'syz.0.319': attribute type 1 has an invalid length.
[   91.325868][ T7305] netlink: 4 bytes leftover after parsing attributes in process `syz.0.319'.
[   91.464837][ T7309] sysfs: cannot create duplicate filename '/class/ieee80211/!Âο$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒwaÅZ'
[   91.468232][ T7309] CPU: 1 UID: 0 PID: 7309 Comm: syz.3.321 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[   91.471278][ T7309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.474566][ T7309] Call Trace:
[   91.475611][ T7309]  <TASK>
[   91.476499][ T7309]  dump_stack_lvl+0x16c/0x1f0
[   91.477891][ T7309]  sysfs_warn_dup+0x7f/0xa0
[   91.479245][ T7309]  sysfs_do_create_link_sd+0x124/0x140
[   91.480809][ T7309]  sysfs_create_link+0x61/0xc0
[   91.482200][ T7309]  device_add+0x62e/0x1a70
[   91.483496][ T7309]  ? __pfx_device_add+0x10/0x10
[   91.484907][ T7309]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   91.486679][ T7309]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[   91.488426][ T7309]  wiphy_register+0x1c7a/0x2860
[   91.489856][ T7309]  ? netdev_run_todo+0x837/0x12d0
[   91.491330][ T7309]  ? __pfx_wiphy_register+0x10/0x10
[   91.492855][ T7309]  ieee80211_register_hw+0x2951/0x3fa0
[   91.494433][ T7309]  ? __pfx_ieee80211_register_hw+0x10/0x10
[   91.496115][ T7309]  ? net_generic+0xea/0x2a0
[   91.497444][ T7309]  ? lockdep_init_map_type+0x16d/0x7d0
[   91.499033][ T7309]  ? rcu_is_watching+0x12/0xc0
[   91.500459][ T7309]  ? trace_hrtimer_init+0x1a6/0x230
[   91.501958][ T7309]  ? __hrtimer_init+0x106/0x2c0
[   91.503374][ T7309]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[   91.505026][ T7309]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[   91.506824][ T7309]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[   91.508354][ T7309]  hwsim_new_radio_nl+0xb42/0x12b0
[   91.509838][ T7309]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[   91.511446][ T7309]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[   91.513558][ T7309]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   91.515702][ T7309]  genl_family_rcv_msg_doit+0x202/0x2f0
[   91.517311][ T7309]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   91.519098][ T7309]  ? genl_get_cmd+0x195/0x580
[   91.520473][ T7309]  ? bpf_lsm_capable+0x9/0x10
[   91.521843][ T7309]  ? security_capable+0x7e/0x260
[   91.523290][ T7309]  ? ns_capable+0xd7/0x110
[   91.524590][ T7309]  genl_rcv_msg+0x565/0x800
[   91.525914][ T7309]  ? __pfx_genl_rcv_msg+0x10/0x10
[   91.527379][ T7309]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[   91.528980][ T7309]  ? __pfx___lock_acquire+0x10/0x10
[   91.530489][ T7309]  netlink_rcv_skb+0x165/0x410
[   91.532048][ T7309]  ? __pfx_genl_rcv_msg+0x10/0x10
[   91.533509][ T7309]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   91.535055][ T7309]  ? down_read+0xc9/0x330
[   91.536316][ T7309]  ? __pfx_down_read+0x10/0x10
[   91.537718][ T7309]  ? netlink_deliver_tap+0x1ae/0xca0
[   91.539258][ T7309]  genl_rcv+0x28/0x40
[   91.540426][ T7309]  netlink_unicast+0x53c/0x7f0
[   91.541821][ T7309]  ? __pfx_netlink_unicast+0x10/0x10
[   91.543365][ T7309]  ? __phys_addr_symbol+0x30/0x80
[   91.544835][ T7309]  ? __check_object_size+0x488/0x710
[   91.546412][ T7309]  netlink_sendmsg+0x8b8/0xd70
[   91.547811][ T7309]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.549343][ T7309]  ____sys_sendmsg+0x9ae/0xb40
[   91.550733][ T7309]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.552259][ T7309]  ? get_compat_msghdr+0x11b/0x170
[   91.553736][ T7309]  ___sys_sendmsg+0x135/0x1e0
[   91.555128][ T7309]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.556661][ T7309]  ? __pfx_lock_release+0x10/0x10
[   91.558138][ T7309]  ? trace_lock_acquire+0x14e/0x1f0
[   91.559655][ T7309]  ? __fget_files+0x206/0x3a0
[   91.561029][ T7309]  __sys_sendmsg+0x16e/0x220
[   91.562384][ T7309]  ? __pfx___sys_sendmsg+0x10/0x10
[   91.563913][ T7309]  ? __ia32_sys_futex_time32+0x1da/0x460
[   91.565590][ T7309]  __do_fast_syscall_32+0x73/0x120
[   91.567108][ T7309]  do_fast_syscall_32+0x32/0x80
[   91.568542][ T7309]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   91.570385][ T7309] RIP: 0023:0xf7f80579
[   91.571576][ T7309] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   91.577084][ T7309] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   91.579507][ T7309] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[   91.581709][ T7309] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   91.583993][ T7309] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   91.586245][ T7309] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   91.588486][ T7309] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   91.590775][ T7309]  </TASK>
[   92.076805][ T7344] Cannot find add_set index 0 as target
[   92.775089][ T7364] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   92.857532][ T7364] syzkaller0: entered promiscuous mode
[   92.859339][ T7364] syzkaller0: entered allmulticast mode
[   92.861984][ T7364] tipc: Resetting bearer <eth:syzkaller0>
[   93.382253][ T7362] tipc: Resetting bearer <eth:syzkaller0>
[   93.875639][ T7383] FAULT_INJECTION: forcing a failure.
[   93.875639][ T7383] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.886217][ T7383] CPU: 1 UID: 0 PID: 7383 Comm: syz.2.340 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[   93.889479][ T7383] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.892535][ T7383] Call Trace:
[   93.893540][ T7383]  <TASK>
[   93.894426][ T7383]  dump_stack_lvl+0x16c/0x1f0
[   93.895862][ T7383]  should_fail_ex+0x497/0x5b0
[   93.897264][ T7383]  _copy_from_user+0x2e/0xd0
[   93.898703][ T7383]  get_compat_msghdr+0xa8/0x170
[   93.900135][ T7383]  ? __pfx_get_compat_msghdr+0x10/0x10
[   93.901674][ T7383]  ___sys_recvmsg+0x193/0x1a0
[   93.903092][ T7383]  ? __pfx____sys_recvmsg+0x10/0x10
[   93.904681][ T7383]  ? __fget_files+0x1fc/0x3a0
[   93.906207][ T7383]  ? trace_lock_acquire+0x14e/0x1f0
[   93.907736][ T7383]  ? __fget_files+0x206/0x3a0
[   93.909241][ T7383]  ? __pfx___might_resched+0x10/0x10
[   93.910732][ T7383]  do_recvmmsg+0x55d/0x740
[   93.912034][ T7383]  ? __pfx_do_recvmmsg+0x10/0x10
[   93.913394][ T7383]  ? vfs_write+0x306/0x1150
[   93.914709][ T7383]  ? __fget_files+0x206/0x3a0
[   93.916031][ T7383]  __sys_recvmmsg+0x21e/0x280
[   93.917336][ T7383]  ? __pfx___sys_recvmmsg+0x10/0x10
[   93.918788][ T7383]  ? __pfx_ksys_write+0x10/0x10
[   93.920127][ T7383]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[   93.921880][ T7383]  ? lockdep_hardirqs_on+0x7c/0x110
[   93.923323][ T7383]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   93.925229][ T7383]  __do_fast_syscall_32+0x73/0x120
[   93.926746][ T7383]  do_fast_syscall_32+0x32/0x80
[   93.928151][ T7383]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   93.929923][ T7383] RIP: 0023:0xf7f28579
[   93.931075][ T7383] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   93.936484][ T7383] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[   93.938807][ T7383] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000600
[   93.941015][ T7383] RDX: 00000000cb88ff8b RSI: 0000000000000002 RDI: 0000000000000000
[   93.943225][ T7383] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   93.945486][ T7383] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   93.947616][ T7383] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   93.949777][ T7383]  </TASK>
[   94.192626][ T7390] misc userio: Invalid payload size
[   94.194500][ T7390] misc userio: No port type given on /dev/userio
[   94.381117][ T7398] misc userio: Invalid payload size
[   94.383906][ T7398] misc userio: No port type given on /dev/userio
[   95.062134][ T7362] tipc: Disabling bearer <eth:syzkaller0>
[   95.065559][ T7400] netlink: 'syz.0.344': attribute type 4 has an invalid length.
[   95.155833][ T7414] fuse: Invalid rootmode
[   95.421177][ T7426] misc userio: Invalid payload size
[   95.423778][ T7426] misc userio: No port type given on /dev/userio
[   95.617849][ T7429] netlink: 'syz.2.351': attribute type 4 has an invalid length.
[   95.667921][ T7431] netlink: 4 bytes leftover after parsing attributes in process `syz.0.353'.
[   95.671371][ T7431] netlink: 12 bytes leftover after parsing attributes in process `syz.0.353'.
[   96.016287][ T7446] fuse: Invalid rootmode
[   96.056037][ T7448] batman_adv: batadv0: Removing interface: team0
[   96.133790][ T7452] netlink: 'syz.1.361': attribute type 10 has an invalid length.
[   96.136112][ T7452] netlink: 2 bytes leftover after parsing attributes in process `syz.1.361'.
[   96.138686][ T7452] bridge0: port 1(team0) entered blocking state
[   96.141096][ T7452] bridge0: port 1(team0) entered disabled state
[   96.143148][ T7452] team0: entered allmulticast mode
[   96.258239][ T7458] FAULT_INJECTION: forcing a failure.
[   96.258239][ T7458] name failslab, interval 1, probability 0, space 0, times 0
[   96.263014][ T7458] CPU: 0 UID: 0 PID: 7458 Comm: syz.2.364 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[   96.265959][ T7458] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.268946][ T7458] Call Trace:
[   96.269885][ T7458]  <TASK>
[   96.270725][ T7458]  dump_stack_lvl+0x16c/0x1f0
[   96.272042][ T7458]  should_fail_ex+0x497/0x5b0
[   96.273350][ T7458]  ? fs_reclaim_acquire+0xae/0x150
[   96.274799][ T7458]  should_failslab+0xc2/0x120
[   96.276132][ T7458]  __kmalloc_noprof+0xce/0x4f0
[   96.277488][ T7458]  ? __vb2_queue_alloc+0x238/0x1230
[   96.278977][ T7458]  __vb2_queue_alloc+0x238/0x1230
[   96.280440][ T7458]  ? vid_out_queue_setup+0x90a/0xcd0
[   96.281927][ T7458]  vb2_core_reqbufs+0xa73/0xfb0
[   96.283330][ T7458]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[   96.284831][ T7458]  ? __pfx___mutex_trylock_common+0x10/0x10
[   96.286568][ T7458]  ? rcu_is_watching+0x12/0xc0
[   96.287927][ T7458]  ? trace_contention_end+0xee/0x140
[   96.289545][ T7458]  vb2_ioctl_reqbufs+0x299/0x430
[   96.291084][ T7458]  ? __pfx_vb2_ioctl_reqbufs+0x10/0x10
[   96.292611][ T7458]  ? __pfx___mutex_lock+0x10/0x10
[   96.294039][ T7458]  ? __pfx___lock_acquire+0x10/0x10
[   96.295532][ T7458]  ? find_held_lock+0x2d/0x110
[   96.296875][ T7458]  vidioc_reqbufs+0x86/0x100
[   96.298191][ T7458]  v4l_reqbufs+0x193/0x1d0
[   96.299459][ T7458]  __video_do_ioctl+0xaf0/0xf00
[   96.300819][ T7458]  ? __pfx___video_do_ioctl+0x10/0x10
[   96.302305][ T7458]  ? __might_fault+0xe3/0x190
[   96.303639][ T7458]  video_usercopy+0x427/0x1520
[   96.304976][ T7458]  ? __pfx___video_do_ioctl+0x10/0x10
[   96.306460][ T7458]  ? __pfx_video_usercopy+0x10/0x10
[   96.307919][ T7458]  v4l2_ioctl+0x1ba/0x250
[   96.309121][ T7458]  ? __fget_files+0x121/0x3a0
[   96.310392][ T7458]  v4l2_compat_ioctl32+0x214/0x2c0
[   96.311826][ T7458]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[   96.313383][ T7458]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   96.314867][ T7458]  __do_fast_syscall_32+0x73/0x120
[   96.316352][ T7458]  do_fast_syscall_32+0x32/0x80
[   96.317761][ T7458]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   96.319553][ T7458] RIP: 0023:0xf7f28579
[   96.320676][ T7458] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   96.326031][ T7458] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   96.328348][ T7458] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0145608
[   96.330497][ T7458] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   96.332711][ T7458] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   96.334896][ T7458] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   96.337120][ T7458] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   96.339333][ T7458]  </TASK>
[   96.407162][ T7467] netlink: 'syz.1.362': attribute type 4 has an invalid length.
[   96.413273][ T7466] netlink: 'syz.3.360': attribute type 9 has an invalid length.
[   96.493650][ T7472] netlink: 'syz.2.366': attribute type 5 has an invalid length.
[   96.495927][ T7472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.366'.
[   96.496646][ T7459] warning: `syz.0.363' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   96.529590][ T7473] syzkaller1: entered promiscuous mode
[   96.531370][ T7473] syzkaller1: entered allmulticast mode
[   96.536771][ T7473] netlink: 'syz.3.360': attribute type 1 has an invalid length.
[   96.562895][ T7476] fuse: Invalid rootmode
[   97.711800][ T7496] netlink: 'syz.1.372': attribute type 4 has an invalid length.
[   97.769955][ T7506] IPVS: Error connecting to the multicast addr
[   98.087307][ T7515] misc userio: Invalid payload size
[   98.089494][ T7515] misc userio: No port type given on /dev/userio
[   98.464887][ T7526] misc userio: Invalid payload size
[   98.467849][ T7526] misc userio: No port type given on /dev/userio
[   98.763494][ T7528] netlink: 4 bytes leftover after parsing attributes in process `syz.3.381'.
[   98.766739][ T7528] netlink: 12 bytes leftover after parsing attributes in process `syz.3.381'.
[   99.476506][ T7552] netlink: 'syz.2.386': attribute type 4 has an invalid length.
[   99.892827][ T7563] netlink: 8 bytes leftover after parsing attributes in process `syz.0.390'.
[  100.022511][ T7564] misc userio: Invalid payload size
[  100.025374][ T7564] misc userio: No port type given on /dev/userio
[  100.634075][ T7572] netlink: 'syz.3.391': attribute type 4 has an invalid length.
[  100.647478][ T7575] netlink: 'syz.1.393': attribute type 10 has an invalid length.
[  100.650712][ T7575] netlink: 2 bytes leftover after parsing attributes in process `syz.1.393'.
[  100.738210][ T7582] fuse: Unknown parameter 'use00000000000000000000'
[  101.108852][ T7598] netlink: 52 bytes leftover after parsing attributes in process `syz.2.401'.
[  101.108886][ T7597] netlink: 52 bytes leftover after parsing attributes in process `syz.2.401'.
[  101.415568][ T7604] misc userio: Invalid payload size
[  101.417646][ T7604] misc userio: No port type given on /dev/userio
[  101.638869][ T5947] Bluetooth: hci3: command tx timeout
[  101.707582][ T7606] netlink: 'syz.1.403': attribute type 10 has an invalid length.
[  101.709983][ T7606] netlink: 2 bytes leftover after parsing attributes in process `syz.1.403'.
[  101.789205][ T7609] fuse: Unknown parameter 'use00000000000000000000'
[  102.148559][ T7628] netlink: 'syz.1.412': attribute type 10 has an invalid length.
[  102.154016][ T7628] netlink: 2 bytes leftover after parsing attributes in process `syz.1.412'.
[  102.458958][  T832] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  102.562871][ T7636] netlink: 'syz.2.414': attribute type 4 has an invalid length.
[  102.628965][  T832] usb 6-1: Using ep0 maxpacket: 8
[  102.632349][  T832] usb 6-1: config 0 has an invalid interface number: 52 but max is 0
[  102.636799][  T832] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  102.643470][  T832] usb 6-1: config 0 has no interface number 0
[  102.647546][  T832] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  102.652349][  T832] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  102.657153][  T832] usb 6-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  102.663614][  T832] usb 6-1: config 0 interface 52 has no altsetting 0
[  102.668205][  T832] usb 6-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  102.673537][  T832] usb 6-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  102.678147][  T832] usb 6-1: Product: syz
[  102.679687][  T832] usb 6-1: SerialNumber: syz
[  102.687316][  T832] usb 6-1: config 0 descriptor??
[  102.898259][  T832] input: syz (Stick) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.52/input/input5
[  102.909213][ T5341] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  102.920794][ T5341] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  102.983056][ T6938] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  102.987872][ T5341] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  102.999128][ T5341] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  103.002684][ T5341] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  103.007161][ T5341] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  103.125464][ T7641] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  103.144773][ T7641] syzkaller0: entered promiscuous mode
[  103.147977][ T7641] syzkaller0: entered allmulticast mode
[  103.152105][ T7641] tipc: Resetting bearer <eth:syzkaller0>
[  103.159044][ T7631] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  103.235789][ T7647] fuse: Unknown parameter 'use00000000000000000000'
[  103.893620][ T7639] tipc: Resetting bearer <eth:syzkaller0>
[  104.555193][ T7657] misc userio: Invalid payload size
[  104.557665][ T7657] misc userio: No port type given on /dev/userio
[  105.207948][ T7665] netlink: 'syz.2.421': attribute type 10 has an invalid length.
[  105.211056][ T7665] netlink: 2 bytes leftover after parsing attributes in process `syz.2.421'.
[  105.249248][  T833] usb 6-1: USB disconnect, device number 3
[  105.974118][ T7639] tipc: Disabling bearer <eth:syzkaller0>
[  105.981090][ T7665] team0: entered promiscuous mode
[  105.982613][ T7665] team_slave_0: entered promiscuous mode
[  105.990897][ T7665] team_slave_1: entered promiscuous mode
[  106.001015][ T7665] 8021q: adding VLAN 0 to HW filter on device team0
[  106.004119][ T7665] batman_adv: batadv0: Interface activated: team0
[  106.006841][ T7665] batman_adv: batadv0: Interface deactivated: team0
[  106.009857][ T7665] batman_adv: batadv0: Removing interface: team0
[  106.012977][ T7665] bridge0: port 3(team0) entered blocking state
[  106.015061][ T7665] bridge0: port 3(team0) entered disabled state
[  106.016985][ T7665] team0: entered allmulticast mode
[  106.018694][ T7665] team_slave_0: entered allmulticast mode
[  106.036568][ T7665] team_slave_1: entered allmulticast mode
[  106.052722][ T7665] bridge0: port 3(team0) entered blocking state
[  106.054604][ T7665] bridge0: port 3(team0) entered forwarding state
[  106.091468][ T7674] netlink: 'syz.2.425': attribute type 58 has an invalid length.
[  106.094672][ T7674] netlink: 20 bytes leftover after parsing attributes in process `syz.2.425'.
[  107.095756][ T7697] misc userio: Invalid payload size
[  107.097809][ T7697] misc userio: No port type given on /dev/userio
[  107.747303][ T7701] misc userio: Invalid payload size
[  107.749886][ T7701] misc userio: No port type given on /dev/userio
[  107.960121][ T7705] FAULT_INJECTION: forcing a failure.
[  107.960121][ T7705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.963960][ T7705] CPU: 1 UID: 0 PID: 7705 Comm: syz.3.432 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  107.967018][ T7705] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.970100][ T7705] Call Trace:
[  107.971074][ T7705]  <TASK>
[  107.971935][ T7705]  dump_stack_lvl+0x16c/0x1f0
[  107.973303][ T7705]  should_fail_ex+0x497/0x5b0
[  107.974677][ T7705]  _copy_from_user+0x2e/0xd0
[  107.976036][ T7705]  get_compat_msghdr+0xa8/0x170
[  107.977453][ T7705]  ? __pfx_get_compat_msghdr+0x10/0x10
[  107.979026][ T7705]  ? __pfx_mark_lock+0x10/0x10
[  107.980417][ T7705]  ___sys_recvmsg+0x193/0x1a0
[  107.981777][ T7705]  ? __pfx____sys_recvmsg+0x10/0x10
[  107.983287][ T7705]  ? __fget_files+0x1fc/0x3a0
[  107.984647][ T7705]  ? trace_lock_acquire+0x14e/0x1f0
[  107.986200][ T7705]  ? __fget_files+0x206/0x3a0
[  107.987558][ T7705]  ? __pfx___might_resched+0x10/0x10
[  107.989078][ T7705]  do_recvmmsg+0x55d/0x740
[  107.990393][ T7705]  ? __pfx_do_recvmmsg+0x10/0x10
[  107.991835][ T7705]  ? lock_acquire.part.0+0x11b/0x380
[  107.993348][ T7705]  ? find_held_lock+0x2d/0x110
[  107.994740][ T7705]  ? bpf_trace_run2+0x266/0x590
[  107.996172][ T7705]  ? __pfx_lock_release+0x10/0x10
[  107.997629][ T7705]  ? find_held_lock+0x2d/0x110
[  107.999028][ T7705]  __sys_recvmmsg+0x21e/0x280
[  108.000383][ T7705]  ? __pfx___sys_recvmmsg+0x10/0x10
[  108.001886][ T7705]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  108.003677][ T7705]  ? syscall_trace_enter+0xf0/0x260
[  108.005251][ T7705]  __do_fast_syscall_32+0x73/0x120
[  108.006779][ T7705]  do_fast_syscall_32+0x32/0x80
[  108.008304][ T7705]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.010147][ T7705] RIP: 0023:0xf7f80579
[  108.011328][ T7705] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.016829][ T7705] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  108.019217][ T7705] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000600
[  108.021476][ T7705] RDX: 00000000cb88ff8b RSI: 0000000000000002 RDI: 0000000000000000
[  108.023765][ T7705] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  108.026065][ T7705] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  108.028328][ T7705] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.030613][ T7705]  </TASK>
[  108.067712][ T7708] netlink: 'syz.3.433': attribute type 10 has an invalid length.
[  108.071804][ T7708] netlink: 2 bytes leftover after parsing attributes in process `syz.3.433'.
[  108.074881][ T7708] team0: entered promiscuous mode
[  108.076930][ T7708] 8021q: adding VLAN 0 to HW filter on device team0
[  108.079130][ T7708] bridge0: port 1(team0) entered blocking state
[  108.080993][ T7708] bridge0: port 1(team0) entered disabled state
[  108.082900][ T7708] team0: entered allmulticast mode
[  108.182446][ T7715] netlink: 'syz.0.442': attribute type 10 has an invalid length.
[  108.184731][ T7715] netlink: 2 bytes leftover after parsing attributes in process `syz.0.442'.
[  109.023575][ T7744] FAULT_INJECTION: forcing a failure.
[  109.023575][ T7744] name failslab, interval 1, probability 0, space 0, times 0
[  109.027497][ T7744] CPU: 3 UID: 0 PID: 7744 Comm: syz.0.443 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  109.030874][ T7744] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.034116][ T7744] Call Trace:
[  109.035131][ T7744]  <TASK>
[  109.036016][ T7744]  dump_stack_lvl+0x16c/0x1f0
[  109.037483][ T7744]  should_fail_ex+0x497/0x5b0
[  109.038926][ T7744]  ? fs_reclaim_acquire+0xae/0x150
[  109.040530][ T7744]  should_failslab+0xc2/0x120
[  109.042043][ T7744]  __kmalloc_node_noprof+0xd1/0x520
[  109.043584][ T7744]  ? shmem_xattr_handler_set+0x2ee/0x3b0
[  109.045275][ T7744]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  109.047116][ T7744]  __kvmalloc_node_noprof+0xad/0x1a0
[  109.048879][ T7744]  simple_xattr_set+0x68/0x450
[  109.050435][ T7744]  shmem_xattr_handler_set+0x31b/0x3b0
[  109.052247][ T7744]  ? __pfx_shmem_xattr_handler_set+0x10/0x10
[  109.054003][ T7744]  __vfs_setxattr+0x173/0x1e0
[  109.055421][ T7744]  ? __pfx___vfs_setxattr+0x10/0x10
[  109.057057][ T7744]  ? apparmor_capable+0x114/0x1d0
[  109.058658][ T7744]  __vfs_setxattr_noperm+0x127/0x660
[  109.060201][ T7744]  __vfs_setxattr_locked+0x182/0x260
[  109.061886][ T7744]  vfs_setxattr+0x146/0x360
[  109.063301][ T7744]  ? __pfx_snprintf+0x10/0x10
[  109.064682][ T7744]  ? __pfx_vfs_setxattr+0x10/0x10
[  109.066182][ T7744]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  109.068105][ T7744]  ovl_set_nlink_common.isra.0+0x286/0x3c0
[  109.069801][ T7744]  ? __pfx_ovl_set_nlink_common.isra.0+0x10/0x10
[  109.071821][ T7744]  ovl_copy_up_one+0xdcb/0x3720
[  109.073395][ T7744]  ? __pfx_ovl_copy_up_one+0x10/0x10
[  109.075146][ T7744]  ? __pfx_lockdep_lock+0x10/0x10
[  109.076833][ T7744]  ? lockdep_unlock+0x11a/0x290
[  109.078451][ T7744]  ? __lock_acquire+0x2077/0x3c40
[  109.080077][ T7744]  ? do_raw_spin_unlock+0x172/0x230
[  109.081651][ T7744]  ovl_copy_up_flags+0x18d/0x200
[  109.083103][ T7744]  ovl_nlink_start+0x317/0x3d0
[  109.084510][ T7744]  ovl_do_remove+0x171/0xde0
[  109.085965][ T7744]  ? vfs_unlink+0xd3/0x9b0
[  109.087396][ T7744]  ? __pfx_ovl_do_remove+0x10/0x10
[  109.088912][ T7744]  vfs_unlink+0x2fb/0x9b0
[  109.090184][ T7744]  do_unlinkat+0x570/0x760
[  109.091553][ T7744]  ? __virt_addr_valid+0x5e/0x590
[  109.093081][ T7744]  ? __pfx_do_unlinkat+0x10/0x10
[  109.094520][ T7744]  ? __check_object_size+0x488/0x710
[  109.096193][ T7744]  ? getname_flags.part.0+0x1c5/0x550
[  109.097940][ T7744]  __ia32_sys_unlink+0xc4/0x110
[  109.099513][ T7744]  __do_fast_syscall_32+0x73/0x120
[  109.101110][ T7744]  do_fast_syscall_32+0x32/0x80
[  109.102685][ T7744]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.104633][ T7744] RIP: 0023:0xf7f67579
[  109.105927][ T7744] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.111963][ T7744] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 000000000000000a
[  109.114483][ T7744] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 0000000000000000
[  109.117050][ T7744] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  109.119351][ T7744] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  109.121831][ T7744] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  109.124250][ T7744] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  109.126538][ T7744]  </TASK>
[  109.178464][ T7748] netlink: 'syz.0.446': attribute type 10 has an invalid length.
[  109.180981][ T7748] netlink: 2 bytes leftover after parsing attributes in process `syz.0.446'.
[  109.541263][ T7754] misc userio: Invalid payload size
[  109.543932][ T7754] misc userio: No port type given on /dev/userio
[  110.311034][ T7770] netlink: 8 bytes leftover after parsing attributes in process `syz.2.453'.
[  110.825125][ T7781] netlink: 'syz.3.455': attribute type 10 has an invalid length.
[  110.827770][ T7781] netlink: 2 bytes leftover after parsing attributes in process `syz.3.455'.
[  110.889625][ T7785] team0: left allmulticast mode
[  110.891173][ T7785] bridge0: port 1(team0) entered disabled state
[  110.921185][ T7787] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  110.924478][ T7787] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  110.957111][ T7789] FAULT_INJECTION: forcing a failure.
[  110.957111][ T7789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.961021][ T7789] CPU: 2 UID: 0 PID: 7789 Comm: syz.0.460 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  110.964035][ T7789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.967129][ T7789] Call Trace:
[  110.968464][ T7789]  <TASK>
[  110.969423][ T7789]  dump_stack_lvl+0x16c/0x1f0
[  110.970845][ T7789]  should_fail_ex+0x497/0x5b0
[  110.972213][ T7789]  _copy_from_user+0x2e/0xd0
[  110.973552][ T7789]  copy_folio_from_user+0xff/0x2a0
[  110.975039][ T7789]  mfill_atomic_copy+0x1ba3/0x1e60
[  110.976527][ T7789]  ? __pfx_mfill_atomic_copy+0x10/0x10
[  110.978153][ T7789]  ? __might_fault+0xe3/0x190
[  110.979521][ T7789]  ? __might_fault+0xe3/0x190
[  110.980914][ T7789]  userfaultfd_ioctl+0x1e50/0x3830
[  110.982406][ T7789]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  110.983852][ T7789]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  110.985431][ T7789]  ? __pfx_lock_release+0x10/0x10
[  110.986834][ T7789]  ? trace_lock_acquire+0x14e/0x1f0
[  110.988723][ T7789]  ? __fget_files+0x206/0x3a0
[  110.990152][ T7789]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  110.991715][ T7789]  ? compat_ptr_ioctl+0x6b/0xa0
[  110.993124][ T7789]  compat_ptr_ioctl+0x6b/0xa0
[  110.994497][ T7789]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  110.996046][ T7789]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  110.997629][ T7789]  __do_fast_syscall_32+0x73/0x120
[  110.999124][ T7789]  do_fast_syscall_32+0x32/0x80
[  111.000555][ T7789]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  111.002365][ T7789] RIP: 0023:0xf7f67579
[  111.003545][ T7789] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  111.009312][ T7789] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  111.011745][ T7789] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa03
[  111.014022][ T7789] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  111.016468][ T7789] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  111.018789][ T7789] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  111.021093][ T7789] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  111.023411][ T7789]  </TASK>
[  111.135223][ T7801] geneve2: entered promiscuous mode
[  111.136795][ T7801] geneve2: entered allmulticast mode
[  111.653319][ T7811] netlink: 'syz.0.463': attribute type 4 has an invalid length.
[  111.830393][ T7818] team0: left allmulticast mode
[  111.831951][ T7818] bridge0: port 1(team0) entered disabled state
[  112.074728][ T7826] fuse: Bad value for 'fd'
[  112.668460][ T7837] misc userio: Invalid payload size
[  112.670618][ T7837] misc userio: No port type given on /dev/userio
[  112.868951][ T7843] netlink: 28 bytes leftover after parsing attributes in process `syz.0.475'.
[  112.875461][ T7843] netlink: 8 bytes leftover after parsing attributes in process `syz.0.475'.
[  112.879761][ T7843] netlink: 16 bytes leftover after parsing attributes in process `syz.0.475'.
[  112.952523][ T7841] misc userio: Invalid payload size
[  112.955559][ T7841] misc userio: No port type given on /dev/userio
[  113.065963][   T11] Bluetooth: (null): Invalid header checksum
[  113.068464][   T11] Bluetooth: (null): Invalid header checksum
[  113.169439][   T76] Bluetooth: (null): Invalid header checksum
[  113.279844][   T11] Bluetooth: (null): Invalid header checksum
[  113.390928][   T11] Bluetooth: (null): Invalid header checksum
[  113.499053][ T1134] Bluetooth: (null): Invalid header checksum
[  113.617169][   T76] Bluetooth: (null): Invalid header checksum
[  114.135875][ T7870] netlink: 108 bytes leftover after parsing attributes in process `syz.0.481'.
[  114.142249][ T7870] netlink: 108 bytes leftover after parsing attributes in process `syz.0.481'.
[  115.110980][ T7901] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  115.126213][ T7901] syzkaller0: entered promiscuous mode
[  115.127871][ T7901] syzkaller0: entered allmulticast mode
[  115.130026][ T7901] tipc: Resetting bearer <eth:syzkaller0>
[  115.392747][ T7897] misc userio: Invalid payload size
[  115.394690][ T7897] misc userio: No port type given on /dev/userio
[  116.056366][ T7898] tipc: Resetting bearer <eth:syzkaller0>
[  116.131371][ T7922] netlink: 4 bytes leftover after parsing attributes in process `syz.3.496'.
[  116.187772][ T7926] netlink: 12 bytes leftover after parsing attributes in process `syz.3.496'.
[  116.188509][ T7925] netlink: 28 bytes leftover after parsing attributes in process `syz.0.495'.
[  116.192971][ T7925] netlink: 28 bytes leftover after parsing attributes in process `syz.0.495'.
[  117.078826][ T7898] tipc: Disabling bearer <eth:syzkaller0>
[  117.094073][ T7924] sysfs: cannot create duplicate filename '/class/ieee80211/!Âο$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒwaÅZ'
[  117.097182][ T7924] CPU: 1 UID: 0 PID: 7924 Comm: syz.1.497 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  117.100333][ T7924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.103456][ T7924] Call Trace:
[  117.104446][ T7924]  <TASK>
[  117.105326][ T7924]  dump_stack_lvl+0x16c/0x1f0
[  117.106734][ T7924]  sysfs_warn_dup+0x7f/0xa0
[  117.108172][ T7924]  sysfs_do_create_link_sd+0x124/0x140
[  117.109903][ T7924]  sysfs_create_link+0x61/0xc0
[  117.111779][ T7924]  device_add+0x62e/0x1a70
[  117.113516][ T7924]  ? __pfx_device_add+0x10/0x10
[  117.115409][ T7924]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  117.117706][ T7924]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  117.119616][ T7924]  wiphy_register+0x1c7a/0x2860
[  117.121076][ T7924]  ? netdev_run_todo+0x837/0x12d0
[  117.122631][ T7924]  ? __pfx_wiphy_register+0x10/0x10
[  117.124189][ T7924]  ieee80211_register_hw+0x2951/0x3fa0
[  117.125817][ T7924]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  117.127579][ T7924]  ? net_generic+0xea/0x2a0
[  117.128973][ T7924]  ? lockdep_init_map_type+0x16d/0x7d0
[  117.130639][ T7924]  ? rcu_is_watching+0x12/0xc0
[  117.132131][ T7924]  ? trace_hrtimer_init+0x1a6/0x230
[  117.133683][ T7924]  ? __hrtimer_init+0x106/0x2c0
[  117.135211][ T7924]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  117.136925][ T7924]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  117.138907][ T7924]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  117.140828][ T7924]  hwsim_new_radio_nl+0xb42/0x12b0
[  117.142839][ T7924]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  117.144991][ T7924]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  117.147905][ T7924]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  117.150773][ T7924]  genl_family_rcv_msg_doit+0x202/0x2f0
[  117.152935][ T7924]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  117.155320][ T7924]  ? genl_get_cmd+0x195/0x580
[  117.157185][ T7924]  ? bpf_lsm_capable+0x9/0x10
[  117.159135][ T7924]  ? security_capable+0x7e/0x260
[  117.161275][ T7924]  ? ns_capable+0xd7/0x110
[  117.163067][ T7924]  genl_rcv_msg+0x565/0x800
[  117.164868][ T7924]  ? __pfx_genl_rcv_msg+0x10/0x10
[  117.166849][ T7924]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  117.169031][ T7924]  ? __pfx___lock_acquire+0x10/0x10
[  117.171074][ T7924]  netlink_rcv_skb+0x165/0x410
[  117.172945][ T7924]  ? __pfx_genl_rcv_msg+0x10/0x10
[  117.174918][ T7924]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  117.176995][ T7924]  ? down_read+0xc9/0x330
[  117.178722][ T7924]  ? __pfx_down_read+0x10/0x10
[  117.180597][ T7924]  ? netlink_deliver_tap+0x1ae/0xca0
[  117.182440][ T7924]  genl_rcv+0x28/0x40
[  117.183608][ T7924]  netlink_unicast+0x53c/0x7f0
[  117.185005][ T7924]  ? __pfx_netlink_unicast+0x10/0x10
[  117.186572][ T7924]  ? __phys_addr_symbol+0x30/0x80
[  117.188103][ T7924]  ? __check_object_size+0x488/0x710
[  117.189655][ T7924]  netlink_sendmsg+0x8b8/0xd70
[  117.191062][ T7924]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.193007][ T7924]  ____sys_sendmsg+0x9ae/0xb40
[  117.194899][ T7924]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.197003][ T7924]  ? get_compat_msghdr+0x11b/0x170
[  117.199028][ T7924]  ___sys_sendmsg+0x135/0x1e0
[  117.200909][ T7924]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.203013][ T7924]  ? __pfx_lock_release+0x10/0x10
[  117.205050][ T7924]  ? trace_lock_acquire+0x14e/0x1f0
[  117.207206][ T7924]  ? __fget_files+0x206/0x3a0
[  117.208880][ T7924]  __sys_sendmsg+0x16e/0x220
[  117.210239][ T7924]  ? __pfx___sys_sendmsg+0x10/0x10
[  117.211720][ T7924]  ? __ia32_sys_futex_time32+0x1da/0x460
[  117.213364][ T7924]  __do_fast_syscall_32+0x73/0x120
[  117.215161][ T7924]  do_fast_syscall_32+0x32/0x80
[  117.217119][ T7924]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  117.219455][ T7924] RIP: 0023:0xf7fb2579
[  117.221088][ T7924] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  117.228720][ T7924] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  117.232130][ T7924] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[  117.235314][ T7924] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  117.238379][ T7924] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  117.241013][ T7924] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  117.243719][ T7924] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  117.246005][ T7924]  </TASK>
[  117.350233][ T7956] FAULT_INJECTION: forcing a failure.
[  117.350233][ T7956] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.354133][ T7956] CPU: 1 UID: 0 PID: 7956 Comm: syz.2.505 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  117.357194][ T7956] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.360293][ T7956] Call Trace:
[  117.361739][ T7956]  <TASK>
[  117.362837][ T7956]  dump_stack_lvl+0x16c/0x1f0
[  117.364490][ T7956]  should_fail_ex+0x497/0x5b0
[  117.365863][ T7956]  _copy_from_user+0x2e/0xd0
[  117.367244][ T7956]  get_compat_msghdr+0xa8/0x170
[  117.368651][ T7956]  ? __pfx_get_compat_msghdr+0x10/0x10
[  117.370243][ T7956]  ___sys_recvmsg+0x193/0x1a0
[  117.371607][ T7956]  ? __pfx____sys_recvmsg+0x10/0x10
[  117.373114][ T7956]  ? __fget_files+0x1fc/0x3a0
[  117.374490][ T7956]  ? trace_lock_acquire+0x14e/0x1f0
[  117.375997][ T7956]  ? __fget_files+0x206/0x3a0
[  117.377372][ T7956]  ? __pfx___might_resched+0x10/0x10
[  117.379398][ T7956]  do_recvmmsg+0x55d/0x740
[  117.380712][ T7956]  ? __pfx_do_recvmmsg+0x10/0x10
[  117.382173][ T7956]  ? vfs_write+0x306/0x1150
[  117.383504][ T7956]  ? __fget_files+0x206/0x3a0
[  117.384848][ T7956]  __sys_recvmmsg+0x21e/0x280
[  117.386252][ T7956]  ? __pfx___sys_recvmmsg+0x10/0x10
[  117.387765][ T7956]  ? __pfx_ksys_write+0x10/0x10
[  117.389184][ T7956]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  117.390992][ T7956]  ? lockdep_hardirqs_on+0x7c/0x110
[  117.392502][ T7956]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  117.394505][ T7956]  __do_fast_syscall_32+0x73/0x120
[  117.396152][ T7956]  do_fast_syscall_32+0x32/0x80
[  117.397661][ T7956]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  117.399500][ T7956] RIP: 0023:0xf7f28579
[  117.400688][ T7956] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  117.406297][ T7956] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  117.408677][ T7956] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000600
[  117.410957][ T7956] RDX: 00000000cb88ff8b RSI: 0000000000000002 RDI: 0000000000000000
[  117.413227][ T7956] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  117.414698][ T7965] netlink: 8 bytes leftover after parsing attributes in process `syz.3.504'.
[  117.415554][ T7956] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  117.418388][ T7965] netlink: 8 bytes leftover after parsing attributes in process `syz.3.504'.
[  117.420464][ T7956] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  117.420479][ T7956]  </TASK>
[  117.456067][ T7969] netlink: 'syz.1.516': attribute type 10 has an invalid length.
[  117.458468][ T7969] netlink: 2 bytes leftover after parsing attributes in process `syz.1.516'.
[  117.461381][ T7969] bridge0: port 1(team0) entered blocking state
[  117.463329][ T7969] bridge0: port 1(team0) entered disabled state
[  117.465450][ T7969] team0: entered allmulticast mode
[  117.467897][ T7967] sysfs: cannot create duplicate filename '/class/ieee80211/!Âο$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒwaÅZ'
[  117.471426][ T7967] CPU: 1 UID: 0 PID: 7967 Comm: syz.2.508 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  117.474481][ T7967] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.477580][ T7967] Call Trace:
[  117.478571][ T7967]  <TASK>
[  117.479446][ T7967]  dump_stack_lvl+0x16c/0x1f0
[  117.480819][ T7967]  sysfs_warn_dup+0x7f/0xa0
[  117.482157][ T7967]  sysfs_do_create_link_sd+0x124/0x140
[  117.483851][ T7967]  sysfs_create_link+0x61/0xc0
[  117.485234][ T7967]  device_add+0x62e/0x1a70
[  117.486543][ T7967]  ? __pfx_device_add+0x10/0x10
[  117.487955][ T7967]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  117.489662][ T7967]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  117.491409][ T7967]  wiphy_register+0x1c7a/0x2860
[  117.492824][ T7967]  ? netdev_run_todo+0x837/0x12d0
[  117.494301][ T7967]  ? __pfx_wiphy_register+0x10/0x10
[  117.495840][ T7967]  ieee80211_register_hw+0x2951/0x3fa0
[  117.497407][ T7967]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  117.499109][ T7967]  ? net_generic+0xea/0x2a0
[  117.500426][ T7967]  ? lockdep_init_map_type+0x16d/0x7d0
[  117.502028][ T7967]  ? rcu_is_watching+0x12/0xc0
[  117.503444][ T7967]  ? trace_hrtimer_init+0x1a6/0x230
[  117.504951][ T7967]  ? __hrtimer_init+0x106/0x2c0
[  117.506387][ T7967]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  117.508289][ T7967]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  117.510256][ T7967]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  117.512352][ T7967]  hwsim_new_radio_nl+0xb42/0x12b0
[  117.514285][ T7967]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  117.516451][ T7967]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  117.519220][ T7967]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  117.522057][ T7967]  genl_family_rcv_msg_doit+0x202/0x2f0
[  117.524008][ T7967]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  117.526229][ T7967]  ? genl_get_cmd+0x195/0x580
[  117.527906][ T7967]  ? bpf_lsm_capable+0x9/0x10
[  117.529414][ T7967]  ? security_capable+0x7e/0x260
[  117.531209][ T7967]  ? ns_capable+0xd7/0x110
[  117.532806][ T7967]  genl_rcv_msg+0x565/0x800
[  117.534545][ T7967]  ? __pfx_genl_rcv_msg+0x10/0x10
[  117.536065][ T7967]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  117.537759][ T7967]  ? __pfx___lock_acquire+0x10/0x10
[  117.539275][ T7967]  netlink_rcv_skb+0x165/0x410
[  117.540667][ T7967]  ? __pfx_genl_rcv_msg+0x10/0x10
[  117.542135][ T7967]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  117.544039][ T7967]  ? down_read+0xc9/0x330
[  117.545312][ T7967]  ? __pfx_down_read+0x10/0x10
[  117.546993][ T7967]  ? netlink_deliver_tap+0x1ae/0xca0
[  117.548992][ T7967]  genl_rcv+0x28/0x40
[  117.550220][ T7967]  netlink_unicast+0x53c/0x7f0
[  117.551837][ T7967]  ? __pfx_netlink_unicast+0x10/0x10
[  117.553818][ T7967]  ? __phys_addr_symbol+0x30/0x80
[  117.555373][ T7967]  ? __check_object_size+0x488/0x710
[  117.557001][ T7967]  netlink_sendmsg+0x8b8/0xd70
[  117.558425][ T7967]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.559941][ T7967]  ____sys_sendmsg+0x9ae/0xb40
[  117.561314][ T7967]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.562844][ T7967]  ? get_compat_msghdr+0x11b/0x170
[  117.564347][ T7967]  ___sys_sendmsg+0x135/0x1e0
[  117.565710][ T7967]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.566973][ T7973] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  117.567484][ T7967]  ? __pfx_lock_release+0x10/0x10
[  117.574040][ T7967]  ? trace_lock_acquire+0x14e/0x1f0
[  117.576014][ T7967]  ? __fget_files+0x206/0x3a0
[  117.577804][ T7967]  __sys_sendmsg+0x16e/0x220
[  117.579703][ T7967]  ? __pfx___sys_sendmsg+0x10/0x10
[  117.581196][ T7967]  ? __ia32_sys_futex_time32+0x1da/0x460
[  117.582997][ T7967]  __do_fast_syscall_32+0x73/0x120
[  117.584500][ T7967]  do_fast_syscall_32+0x32/0x80
[  117.585921][ T7967]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  117.587862][ T7967] RIP: 0023:0xf7f28579
[  117.589366][ T7967] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  117.597704][ T7967] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  117.597723][ T7967] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[  117.597731][ T7967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  117.597738][ T7967] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  117.597745][ T7967] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  117.597753][ T7967] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  117.597768][ T7967]  </TASK>
[  117.795058][ T7996] x_tables: duplicate underflow at hook 2
[  117.875067][ T8005] netlink: 'syz.1.518': attribute type 10 has an invalid length.
[  117.877362][ T8005] netlink: 2 bytes leftover after parsing attributes in process `syz.1.518'.
[  117.980962][ T8011] loop9: detected capacity change from 0 to 6
[  117.983378][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  117.985804][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  117.989106][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  117.991397][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  117.993583][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  117.995773][ T8011] ldm_validate_partition_table(): Disk read failed.
[  117.997613][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  118.000472][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  118.003559][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  118.005831][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  118.008056][ T8011] Dev loop9: unable to read RDB block 0
[  118.009995][ T8011] Buffer I/O error on dev loop9, logical block 0, async page read
[  118.012407][ T8011]  loop9: unable to read partition table
[  118.014100][ T8011] loop9: partition table beyond EOD, truncated
[  118.015893][ T8011] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  118.015893][ T8011] 
) failed (rc=-5)
[  118.132189][ T8011] trusted_key: encrypted_key: insufficient parameters specified
[  118.872971][ T8022] vivid-000: =================  START STATUS  =================
[  118.875896][ T8022] vivid-000: Test Pattern: 75% Colorbar
[  118.880318][ T8022] vivid-000: Fill Percentage of Frame: 100
[  118.883292][ T8022] vivid-000: Horizontal Movement: No Movement
[  118.885670][ T8022] vivid-000: Vertical Movement: Move Up Slow
[  118.887940][ T8022] vivid-000: OSD Text Mode: All
[  118.894311][ T8022] vivid-000: Show Border: false
[  118.895977][ T8022] vivid-000: Show Square: false
[  118.897453][ T8022] vivid-000: Sensor Flipped Horizontally: false
[  118.899900][ T8022] vivid-000: Sensor Flipped Vertically: false
[  118.901672][ T8022] vivid-000: Insert SAV Code in Image: false
[  118.903706][ T8022] vivid-000: Insert EAV Code in Image: false
[  118.906097][ T8022] vivid-000: Insert Video Guard Band: false
[  118.908328][ T8022] vivid-000: Reduced Framerate: false
[  118.911685][ T8022] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  118.914792][ T8022] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  118.917155][ T8022] vivid-000: Enable Capture Cropping: true
[  118.919064][ T8022] vivid-000: Enable Capture Composing: true
[  118.920791][ T8022] vivid-000: Enable Capture Scaler: true
[  118.922505][ T8022] vivid-000: Timestamp Source: End of Frame
[  118.924221][ T8022] vivid-000: Colorspace: sRGB
[  118.925608][ T8022] vivid-000: Transfer Function: Default
[  118.927226][ T8022] vivid-000: Y'CbCr Encoding: Default
[  118.929507][ T8022] vivid-000: HSV Encoding: Hue 0-179
[  118.931052][ T8022] vivid-000: Quantization: Default
[  118.932538][ T8022] vivid-000: Apply Alpha To Red Only: false
[  118.934316][ T8022] vivid-000: Standard Aspect Ratio: 4x3
[  118.935984][ T8022] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  118.938218][ T8022] vivid-000: DV Timings: 640x480p59 inactive
[  118.940102][ T8022] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  118.942230][ T8022] vivid-000: Maximum EDID Blocks: 2
[  118.943751][ T8022] vivid-000: Limited RGB Range (16-235): false
[  118.945557][ T8022] vivid-000: Rx RGB Quantization Range: Automatic
[  118.947420][ T8022] vivid-000: Power Present: 0x00000001
[  118.949191][ T8022] tpg source WxH: 640x360 (Y'CbCr)
[  118.950711][ T8022] tpg field: 1
[  118.951870][ T8022] tpg crop: 640x360@0x0
[  118.953106][ T8022] tpg compose: 640x360@0x0
[  118.954428][ T8022] tpg colorspace: 8
[  118.955624][ T8022] tpg transfer function: 0/2
[  118.956996][ T8022] tpg Y'CbCr encoding: 0/1
[  118.958318][ T8022] tpg quantization: 0/2
[  118.959687][ T8022] tpg RGB range: 0/2
[  118.960854][ T8022] vivid-000: ==================  END STATUS  ==================
[  118.975823][ T8022] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  119.014226][ T8027] sysfs: cannot create duplicate filename '/class/ieee80211/!Âο$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒwaÅZ'
[  119.017370][ T8027] CPU: 1 UID: 0 PID: 8027 Comm: syz.0.524 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  119.020464][ T8027] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.023556][ T8027] Call Trace:
[  119.024558][ T8027]  <TASK>
[  119.025448][ T8027]  dump_stack_lvl+0x16c/0x1f0
[  119.026826][ T8027]  sysfs_warn_dup+0x7f/0xa0
[  119.028148][ T8027]  sysfs_do_create_link_sd+0x124/0x140
[  119.029732][ T8027]  sysfs_create_link+0x61/0xc0
[  119.031156][ T8027]  device_add+0x62e/0x1a70
[  119.032463][ T8027]  ? __pfx_device_add+0x10/0x10
[  119.033879][ T8027]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  119.035612][ T8027]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  119.038141][ T8027]  wiphy_register+0x1c7a/0x2860
[  119.039561][ T8027]  ? netdev_run_todo+0x837/0x12d0
[  119.041017][ T8027]  ? __pfx_wiphy_register+0x10/0x10
[  119.042544][ T8027]  ieee80211_register_hw+0x2951/0x3fa0
[  119.044115][ T8027]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  119.045841][ T8027]  ? net_generic+0xea/0x2a0
[  119.047175][ T8027]  ? lockdep_init_map_type+0x16d/0x7d0
[  119.048732][ T8027]  ? rcu_is_watching+0x12/0xc0
[  119.050122][ T8027]  ? trace_hrtimer_init+0x1a6/0x230
[  119.051618][ T8027]  ? __hrtimer_init+0x106/0x2c0
[  119.053028][ T8027]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  119.054680][ T8027]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  119.056449][ T8027]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  119.057985][ T8027]  hwsim_new_radio_nl+0xb42/0x12b0
[  119.059463][ T8027]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  119.061063][ T8027]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  119.063171][ T8027]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  119.065283][ T8027]  genl_family_rcv_msg_doit+0x202/0x2f0
[  119.066892][ T8027]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  119.068626][ T8027]  ? genl_get_cmd+0x195/0x580
[  119.070015][ T8027]  ? bpf_lsm_capable+0x9/0x10
[  119.071389][ T8027]  ? security_capable+0x7e/0x260
[  119.072830][ T8027]  ? ns_capable+0xd7/0x110
[  119.074127][ T8027]  genl_rcv_msg+0x565/0x800
[  119.075451][ T8027]  ? __pfx_genl_rcv_msg+0x10/0x10
[  119.076912][ T8027]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  119.078509][ T8027]  ? __pfx___lock_acquire+0x10/0x10
[  119.080009][ T8027]  netlink_rcv_skb+0x165/0x410
[  119.081381][ T8027]  ? __pfx_genl_rcv_msg+0x10/0x10
[  119.082839][ T8027]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  119.084358][ T8027]  ? down_read+0xc9/0x330
[  119.085619][ T8027]  ? __pfx_down_read+0x10/0x10
[  119.087013][ T8027]  ? netlink_deliver_tap+0x1ae/0xca0
[  119.088537][ T8027]  genl_rcv+0x28/0x40
[  119.089700][ T8027]  netlink_unicast+0x53c/0x7f0
[  119.091134][ T8027]  ? __pfx_netlink_unicast+0x10/0x10
[  119.092655][ T8027]  ? __phys_addr_symbol+0x30/0x80
[  119.094122][ T8027]  ? __check_object_size+0x488/0x710
[  119.095655][ T8027]  netlink_sendmsg+0x8b8/0xd70
[  119.097040][ T8027]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.098560][ T8027]  ____sys_sendmsg+0x9ae/0xb40
[  119.099937][ T8027]  ? __pfx_____sys_sendmsg+0x10/0x10
[  119.101450][ T8027]  ? get_compat_msghdr+0x11b/0x170
[  119.102934][ T8027]  ___sys_sendmsg+0x135/0x1e0
[  119.104350][ T8027]  ? __pfx____sys_sendmsg+0x10/0x10
[  119.106614][ T8027]  ? __pfx_lock_release+0x10/0x10
[  119.106631][ T8027]  ? trace_lock_acquire+0x14e/0x1f0
[  119.106651][ T8027]  ? __fget_files+0x206/0x3a0
[  119.106669][ T8027]  __sys_sendmsg+0x16e/0x220
[  119.106687][ T8027]  ? __pfx___sys_sendmsg+0x10/0x10
[  119.106703][ T8027]  ? __ia32_sys_futex_time32+0x1da/0x460
[  119.106728][ T8027]  __do_fast_syscall_32+0x73/0x120
[  119.106743][ T8027]  do_fast_syscall_32+0x32/0x80
[  119.106757][ T8027]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.106772][ T8027] RIP: 0023:0xf7f67579
[  119.106783][ T8027] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.106793][ T8027] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  119.106805][ T8027] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[  119.106812][ T8027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  119.106818][ T8027] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.106825][ T8027] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  119.106831][ T8027] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.106844][ T8027]  </TASK>
[  119.237479][ T8044] netlink: 'syz.3.528': attribute type 10 has an invalid length.
[  119.239666][ T8047] FAULT_INJECTION: forcing a failure.
[  119.239666][ T8047] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.246337][ T8047] CPU: 0 UID: 0 PID: 8047 Comm: syz.0.531 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  119.247893][ T8044] team0: left promiscuous mode
[  119.250479][ T8047] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.250494][ T8047] Call Trace:
[  119.250500][ T8047]  <TASK>
[  119.250508][ T8047]  dump_stack_lvl+0x16c/0x1f0
[  119.250533][ T8047]  should_fail_ex+0x497/0x5b0
[  119.250558][ T8047]  _copy_from_user+0x2e/0xd0
[  119.250582][ T8047]  copy_folio_from_user+0xff/0x2a0
[  119.250611][ T8047]  mfill_atomic_copy+0x1ba3/0x1e60
[  119.250650][ T8047]  ? __pfx_mfill_atomic_copy+0x10/0x10
[  119.258872][ T8044] batman_adv: batadv0: Adding interface: team0
[  119.260110][ T8047]  ? __might_fault+0xe3/0x190
[  119.261466][ T8044] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.263157][ T8047]  ? __might_fault+0xe3/0x190
[  119.264785][ T8044] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  119.266670][ T8047]  userfaultfd_ioctl+0x1e50/0x3830
[  119.285760][ T8047]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  119.287223][ T8047]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  119.288799][ T8047]  ? __pfx_lock_release+0x10/0x10
[  119.290799][ T8047]  ? trace_lock_acquire+0x14e/0x1f0
[  119.293177][ T8047]  ? __fget_files+0x206/0x3a0
[  119.295092][ T8047]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  119.297241][ T8047]  ? compat_ptr_ioctl+0x6b/0xa0
[  119.299221][ T8047]  compat_ptr_ioctl+0x6b/0xa0
[  119.300957][ T8047]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  119.302824][ T8047]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  119.304646][ T8047]  __do_fast_syscall_32+0x73/0x120
[  119.306260][ T8047]  do_fast_syscall_32+0x32/0x80
[  119.307689][ T8047]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.309522][ T8047] RIP: 0023:0xf7f67579
[  119.310662][ T8047] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.316193][ T8047] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  119.318594][ T8047] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa03
[  119.320930][ T8047] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  119.323187][ T8047] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.325635][ T8047] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  119.328026][ T8047] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.330722][ T8047]  </TASK>
[  119.342977][ T8055] FAULT_INJECTION: forcing a failure.
[  119.342977][ T8055] name failslab, interval 1, probability 0, space 0, times 0
[  119.346620][ T8055] CPU: 0 UID: 0 PID: 8055 Comm: syz.2.534 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  119.349652][ T8055] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.353037][ T8055] Call Trace:
[  119.354014][ T8055]  <TASK>
[  119.354907][ T8055]  dump_stack_lvl+0x16c/0x1f0
[  119.356363][ T8055]  should_fail_ex+0x497/0x5b0
[  119.357746][ T8055]  ? fs_reclaim_acquire+0xae/0x150
[  119.359275][ T8055]  should_failslab+0xc2/0x120
[  119.360658][ T8055]  __kmalloc_noprof+0xce/0x4f0
[  119.362529][ T8055]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  119.364608][ T8055]  ? tomoyo_realpath_from_path+0xbf/0x710
[  119.366871][ T8055]  tomoyo_realpath_from_path+0xbf/0x710
[  119.369080][ T8055]  ? tomoyo_path_number_perm+0x235/0x5b0
[  119.371358][ T8055]  tomoyo_path_number_perm+0x248/0x5b0
[  119.373495][ T8055]  ? tomoyo_path_number_perm+0x235/0x5b0
[  119.375319][ T8055]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  119.377765][ T8055]  ? __pfx_lock_release+0x10/0x10
[  119.379343][ T8055]  ? trace_lock_acquire+0x14e/0x1f0
[  119.380860][ T8055]  ? lock_acquire+0x2f/0xb0
[  119.382183][ T8055]  ? __fget_files+0x40/0x3a0
[  119.383514][ T8055]  ? __fget_files+0x206/0x3a0
[  119.384915][ T8055]  security_file_ioctl_compat+0x9b/0x240
[  119.387165][ T8055]  __do_compat_sys_ioctl+0x4e/0x2c0
[  119.388728][ T8055]  __do_fast_syscall_32+0x73/0x120
[  119.390226][ T8055]  do_fast_syscall_32+0x32/0x80
[  119.391678][ T8055]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.393482][ T8055] RIP: 0023:0xf7f28579
[  119.394679][ T8055] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.395003][ T8058] netlink: 8 bytes leftover after parsing attributes in process `syz.3.535'.
[  119.400239][ T8055] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  119.400261][ T8055] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c00c643c
[  119.400268][ T8055] RDX: 0000000020000300 RSI: 0000000000000000 RDI: 0000000000000000
[  119.400275][ T8055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.400281][ T8055] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  119.400287][ T8055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.400299][ T8055]  </TASK>
[  119.401759][ T8055] ERROR: Out of memory at tomoyo_realpath_from_path.
[  119.550858][ T8058] block nbd3: NBD_DISCONNECT
[  119.552838][ T8058] block nbd3: Disconnected due to user request.
[  119.554733][ T8058] block nbd3: shutting down sockets
[  119.989420][ T8085] netlink: 64 bytes leftover after parsing attributes in process `syz.3.540'.
[  120.415686][ T8091] netlink: 'syz.1.541': attribute type 10 has an invalid length.
[  120.420409][ T8091] team0: left allmulticast mode
[  120.421848][ T8091] team0: left promiscuous mode
[  120.423514][ T8091] bridge0: port 1(team0) entered disabled state
[  120.426649][ T8091] batman_adv: batadv0: Adding interface: team0
[  120.428463][ T8091] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  120.436624][ T8091] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  120.655031][ T8109] 9pnet_virtio: no channels available for device syz
[  121.064738][ T8125] cgroup: Invalid name
[  121.250138][ T8127] netlink: 'syz.3.553': attribute type 10 has an invalid length.
[  121.411327][ T8131] block nbd3: shutting down sockets
[  121.433552][ T8137] sysfs: cannot create duplicate filename '/class/ieee80211/!Âο$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒwaÅZ'
[  121.436543][ T8137] CPU: 1 UID: 0 PID: 8137 Comm: syz.3.556 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  121.439463][ T8137] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  121.442386][ T8137] Call Trace:
[  121.443323][ T8137]  <TASK>
[  121.444152][ T8137]  dump_stack_lvl+0x16c/0x1f0
[  121.445504][ T8137]  sysfs_warn_dup+0x7f/0xa0
[  121.446817][ T8137]  sysfs_do_create_link_sd+0x124/0x140
[  121.448321][ T8137]  sysfs_create_link+0x61/0xc0
[  121.449664][ T8137]  device_add+0x62e/0x1a70
[  121.451050][ T8137]  ? __pfx_device_add+0x10/0x10
[  121.452452][ T8137]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.454146][ T8137]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  121.455853][ T8137]  wiphy_register+0x1c7a/0x2860
[  121.457209][ T8137]  ? netdev_run_todo+0x837/0x12d0
[  121.458628][ T8137]  ? __pfx_wiphy_register+0x10/0x10
[  121.460109][ T8137]  ieee80211_register_hw+0x2951/0x3fa0
[  121.461639][ T8137]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  121.463288][ T8137]  ? net_generic+0xea/0x2a0
[  121.464586][ T8137]  ? lockdep_init_map_type+0x16d/0x7d0
[  121.466149][ T8137]  ? rcu_is_watching+0x12/0xc0
[  121.467520][ T8137]  ? trace_hrtimer_init+0x1a6/0x230
[  121.469002][ T8137]  ? __hrtimer_init+0x106/0x2c0
[  121.470418][ T8137]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  121.472056][ T8137]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  121.473755][ T8137]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  121.475249][ T8137]  hwsim_new_radio_nl+0xb42/0x12b0
[  121.476726][ T8137]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  121.478329][ T8137]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  121.480433][ T8137]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  121.482675][ T8137]  genl_family_rcv_msg_doit+0x202/0x2f0
[  121.484213][ T8137]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  121.485936][ T8137]  ? genl_get_cmd+0x195/0x580
[  121.487272][ T8137]  ? bpf_lsm_capable+0x9/0x10
[  121.488598][ T8137]  ? security_capable+0x7e/0x260
[  121.490021][ T8137]  ? ns_capable+0xd7/0x110
[  121.491273][ T8137]  genl_rcv_msg+0x565/0x800
[  121.492553][ T8137]  ? __pfx_genl_rcv_msg+0x10/0x10
[  121.493980][ T8137]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  121.495545][ T8137]  ? __pfx___lock_acquire+0x10/0x10
[  121.497023][ T8137]  netlink_rcv_skb+0x165/0x410
[  121.498387][ T8137]  ? __pfx_genl_rcv_msg+0x10/0x10
[  121.499811][ T8137]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  121.501295][ T8137]  ? down_read+0xc9/0x330
[  121.502512][ T8137]  ? __pfx_down_read+0x10/0x10
[  121.503856][ T8137]  ? netlink_deliver_tap+0x1ae/0xca0
[  121.505320][ T8137]  genl_rcv+0x28/0x40
[  121.506441][ T8137]  netlink_unicast+0x53c/0x7f0
[  121.507783][ T8137]  ? __pfx_netlink_unicast+0x10/0x10
[  121.509251][ T8137]  ? __phys_addr_symbol+0x30/0x80
[  121.510700][ T8137]  ? __check_object_size+0x488/0x710
[  121.512197][ T8137]  netlink_sendmsg+0x8b8/0xd70
[  121.513582][ T8137]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.515087][ T8137]  ____sys_sendmsg+0x9ae/0xb40
[  121.516450][ T8137]  ? __pfx_____sys_sendmsg+0x10/0x10
[  121.517951][ T8137]  ? get_compat_msghdr+0x11b/0x170
[  121.519399][ T8137]  ___sys_sendmsg+0x135/0x1e0
[  121.520725][ T8137]  ? __pfx____sys_sendmsg+0x10/0x10
[  121.522208][ T8137]  ? __pfx_lock_release+0x10/0x10
[  121.523606][ T8137]  ? trace_lock_acquire+0x14e/0x1f0
[  121.525075][ T8137]  ? __fget_files+0x206/0x3a0
[  121.526416][ T8137]  __sys_sendmsg+0x16e/0x220
[  121.527736][ T8137]  ? __pfx___sys_sendmsg+0x10/0x10
[  121.529206][ T8137]  ? __ia32_sys_futex_time32+0x1da/0x460
[  121.530745][ T8137]  __do_fast_syscall_32+0x73/0x120
[  121.532194][ T8137]  do_fast_syscall_32+0x32/0x80
[  121.533561][ T8137]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  121.535357][ T8137] RIP: 0023:0xf7f80579
[  121.536535][ T8137] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  121.536549][ T8137] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  121.536562][ T8137] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[  121.536570][ T8137] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  121.536578][ T8137] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  121.536585][ T8137] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  121.536592][ T8137] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  121.536607][ T8137]  </TASK>
[  121.664509][ T8152] netlink: 'syz.3.559': attribute type 1 has an invalid length.
[  121.666878][ T8152] netlink: 4 bytes leftover after parsing attributes in process `syz.3.559'.
[  121.762407][ T8164] netlink: 20 bytes leftover after parsing attributes in process `syz.0.564'.
[  121.806261][ T8166] netfs: Couldn't get user pages (rc=-14)
[  122.208958][   T30] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  122.358884][   T30] usb 7-1: Using ep0 maxpacket: 8
[  122.366837][   T30] usb 7-1: config 0 has no interfaces?
[  122.368458][   T30] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  122.375420][   T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.381977][   T30] usb 7-1: config 0 descriptor??
[  122.420204][ T8184] netlink: 'syz.3.571': attribute type 1 has an invalid length.
[  122.475674][ T8191] trusted_key: encrypted_key: keyword 'bew' not recognized
[  122.490706][ T8193] 9pnet_virtio: no channels available for device syz
[  122.727220][ T8159] syz_tun: entered allmulticast mode
[  122.762536][   T39] audit: type=1326 audit(1736459575.460:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.768367][   T39] audit: type=1326 audit(1736459575.460:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.778853][   T39] audit: type=1326 audit(1736459575.460:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.784844][   T39] audit: type=1326 audit(1736459575.460:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.791127][   T39] audit: type=1326 audit(1736459575.460:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.797090][   T39] audit: type=1326 audit(1736459575.460:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.803342][   T39] audit: type=1326 audit(1736459575.460:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.804249][ T8198] misc userio: Invalid payload size
[  122.809406][   T39] audit: type=1326 audit(1736459575.460:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.815687][ T8203] netlink: 4 bytes leftover after parsing attributes in process `syz.0.579'.
[  122.819150][   T39] audit: type=1326 audit(1736459575.460:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.820333][ T8203] netlink: 12 bytes leftover after parsing attributes in process `syz.0.579'.
[  122.826535][   T39] audit: type=1326 audit(1736459575.460:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8172 comm="syz.0.567" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[  122.839605][ T8198] misc userio: No port type given on /dev/userio
[  123.010149][ T8204] misc userio: Invalid payload size
[  123.013016][ T8204] misc userio: No port type given on /dev/userio
[  123.017167][ T8211] tipc: Started in network mode
[  123.020236][ T8211] tipc: Node identity 1efb9f9a6dde, cluster identity 4711
[  123.022300][ T8211] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  123.035591][ T8211] syzkaller0: entered promiscuous mode
[  123.037172][ T8211] syzkaller0: entered allmulticast mode
[  123.049700][ T8211] tipc: Resetting bearer <eth:syzkaller0>
[  123.501567][ T8215] overlay: ./file0 is not a directory
[  123.558101][ T8220] netlink: 'syz.3.586': attribute type 10 has an invalid length.
[  123.596677][ T8223] FAULT_INJECTION: forcing a failure.
[  123.596677][ T8223] name failslab, interval 1, probability 0, space 0, times 0
[  123.601947][ T8223] CPU: 3 UID: 0 PID: 8223 Comm: syz.3.587 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  123.604920][ T8223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.608256][ T8223] Call Trace:
[  123.609615][ T8223]  <TASK>
[  123.610803][ T8223]  dump_stack_lvl+0x16c/0x1f0
[  123.612205][ T8223]  should_fail_ex+0x497/0x5b0
[  123.613535][ T8223]  ? fs_reclaim_acquire+0xae/0x150
[  123.615013][ T8223]  should_failslab+0xc2/0x120
[  123.616310][ T8223]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  123.618245][ T8223]  ? shmem_xattr_handler_set+0x2ee/0x3b0
[  123.619854][ T8223]  ? simple_xattr_set+0xb8/0x450
[  123.621288][ T8223]  kstrdup+0x42/0xb0
[  123.622710][ T8223]  simple_xattr_set+0xb8/0x450
[  123.624602][ T8223]  shmem_xattr_handler_set+0x31b/0x3b0
[  123.626220][ T8223]  ? __pfx_shmem_xattr_handler_set+0x10/0x10
[  123.627937][ T8223]  __vfs_setxattr+0x173/0x1e0
[  123.629294][ T8223]  ? __pfx___vfs_setxattr+0x10/0x10
[  123.630802][ T8223]  ? apparmor_capable+0x114/0x1d0
[  123.632299][ T8223]  __vfs_setxattr_noperm+0x127/0x660
[  123.633754][ T8223]  __vfs_setxattr_locked+0x182/0x260
[  123.635341][ T8223]  ? up_write+0x1b2/0x520
[  123.636766][ T8223]  vfs_setxattr+0x146/0x360
[  123.638169][ T8223]  ? __pfx_snprintf+0x10/0x10
[  123.639501][ T8223]  ? __pfx_vfs_setxattr+0x10/0x10
[  123.641243][ T8223]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  123.643231][ T8223]  ovl_set_nlink_common.isra.0+0x286/0x3c0
[  123.645376][ T8223]  ? __pfx_ovl_set_nlink_common.isra.0+0x10/0x10
[  123.647449][ T8223]  ovl_copy_up_one+0x1129/0x3720
[  123.648867][ T8223]  ? hlock_class+0x4e/0x130
[  123.650178][ T8223]  ? __pfx_mark_lock+0x10/0x10
[  123.651552][ T8223]  ? __pfx_ovl_copy_up_one+0x10/0x10
[  123.653271][ T8223]  ? __pfx_mark_lock+0x10/0x10
[  123.654921][ T8223]  ? mark_lock+0xb5/0xc60
[  123.656483][ T8223]  ? __pfx_mark_lock+0x10/0x10
[  123.657841][ T8223]  ? hlock_class+0x4e/0x130
[  123.659173][ T8223]  ? __lock_acquire+0x15a9/0x3c40
[  123.660620][ T8223]  ? do_raw_spin_unlock+0x172/0x230
[  123.662173][ T8223]  ovl_copy_up_flags+0x18d/0x200
[  123.663915][ T8223]  ovl_nlink_start+0x317/0x3d0
[  123.665339][ T8223]  ovl_do_remove+0x171/0xde0
[  123.666639][ T8223]  ? vfs_unlink+0xd3/0x9b0
[  123.667807][ T8223]  ? __pfx_ovl_do_remove+0x10/0x10
[  123.669194][ T8223]  vfs_unlink+0x2fb/0x9b0
[  123.670648][ T8223]  do_unlinkat+0x570/0x760
[  123.671906][ T8223]  ? __virt_addr_valid+0x5e/0x590
[  123.673309][ T8223]  ? __pfx_do_unlinkat+0x10/0x10
[  123.675176][ T8223]  ? __check_object_size+0x488/0x710
[  123.677289][ T8223]  ? getname_flags.part.0+0x1c5/0x550
[  123.679386][ T8223]  __ia32_sys_unlink+0xc4/0x110
[  123.681338][ T8223]  __do_fast_syscall_32+0x73/0x120
[  123.683056][ T8223]  do_fast_syscall_32+0x32/0x80
[  123.684446][ T8223]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  123.686296][ T8223] RIP: 0023:0xf7f80579
[  123.687464][ T8223] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  123.692778][ T8223] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 000000000000000a
[  123.695110][ T8223] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 0000000000000000
[  123.697318][ T8223] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  123.699519][ T8223] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  123.701725][ T8223] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  123.703912][ T8223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  123.706172][ T8223]  </TASK>
[  123.707181][    C3] vkms_vblank_simulate: vblank timer overrun
[  123.808966][ T8209] tipc: Resetting bearer <eth:syzkaller0>
[  124.010983][ T8230] netlink: 20 bytes leftover after parsing attributes in process `syz.1.590'.
[  124.090497][  T832] tipc: Node number set to 1931845530
[  124.912340][ T8209] tipc: Disabling bearer <eth:syzkaller0>
[  124.915347][ T8226] batman_adv: batadv0: Removing interface: team0
[  124.925920][ T8230] netlink: 20 bytes leftover after parsing attributes in process `syz.1.590'.
[  124.929081][ T8170] syz_tun: left allmulticast mode
[  124.933504][   T56] usb 7-1: USB disconnect, device number 3
[  125.035897][ T8237] FAULT_INJECTION: forcing a failure.
[  125.035897][ T8237] name failslab, interval 1, probability 0, space 0, times 0
[  125.041037][ T8237] CPU: 2 UID: 0 PID: 8237 Comm: syz.1.592 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  125.045002][ T8237] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.049039][ T8237] Call Trace:
[  125.050333][ T8237]  <TASK>
[  125.051478][ T8237]  dump_stack_lvl+0x16c/0x1f0
[  125.053293][ T8237]  should_fail_ex+0x497/0x5b0
[  125.055114][ T8237]  ? fs_reclaim_acquire+0xae/0x150
[  125.057101][ T8237]  should_failslab+0xc2/0x120
[  125.058951][ T8237]  __kmalloc_noprof+0xce/0x4f0
[  125.060834][ T8237]  ? fuse_io_alloc+0x92/0x150
[  125.062645][ T8237]  ? kasan_save_track+0x14/0x30
[  125.064456][ T8237]  fuse_io_alloc+0x92/0x150
[  125.066251][ T8237]  fuse_direct_io+0x31f/0x2580
[  125.068085][ T8237]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  125.070229][ T8237]  ? trace_lock_acquire+0x14e/0x1f0
[  125.072244][ T8237]  ? __pfx_register_lock_class+0x10/0x10
[  125.074408][ T8237]  ? fuse_direct_write_iter+0x42c/0x830
[  125.076548][ T8237]  ? generic_write_check_limits+0x1f1/0x290
[  125.078781][ T8237]  ? __pfx_fuse_direct_io+0x10/0x10
[  125.080774][ T8237]  ? __pfx_generic_write_checks+0x10/0x10
[  125.083123][ T8237]  fuse_direct_write_iter+0x64f/0x830
[  125.085164][ T8237]  ? __pfx___lock_acquire+0x10/0x10
[  125.087167][ T8237]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[  125.089423][ T8237]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  125.091559][ T8237]  ? rcu_is_watching+0x12/0xc0
[  125.093380][ T8237]  ? trace_lock_acquire+0x14e/0x1f0
[  125.095404][ T8237]  fuse_file_write_iter+0x66e/0x8c0
[  125.097458][ T8237]  vfs_write+0x5ae/0x1150
[  125.099128][ T8237]  ? __pfx_fuse_file_write_iter+0x10/0x10
[  125.101066][ T8241] netlink: 40 bytes leftover after parsing attributes in process `syz.0.593'.
[  125.101452][ T8237]  ? __pfx___mutex_lock+0x10/0x10
[  125.106014][ T8237]  ? __pfx_vfs_write+0x10/0x10
[  125.107912][ T8237]  ksys_write+0x12b/0x250
[  125.109611][ T8237]  ? __pfx_ksys_write+0x10/0x10
[  125.111519][ T8237]  ? rcu_is_watching+0x12/0xc0
[  125.113376][ T8237]  __do_fast_syscall_32+0x73/0x120
[  125.115427][ T8237]  do_fast_syscall_32+0x32/0x80
[  125.117389][ T8237]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.119711][ T8237] RIP: 0023:0xf7fb2579
[  125.121254][ T8237] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.128603][ T8237] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  125.131948][ T8237] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000200001c0
[  125.134945][ T8237] RDX: 0000000000000027 RSI: 0000000000000000 RDI: 0000000000000000
[  125.137974][ T8237] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.141095][ T8237] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.144105][ T8237] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.147145][ T8237]  </TASK>
[  125.154877][ T8241] geneve0: entered promiscuous mode
[  125.226937][ T8248] fuse: Unknown parameter '0x0000000000000004'
[  125.351932][ T8235] misc userio: Invalid payload size
[  125.353571][ T8235] misc userio: No port type given on /dev/userio
[  125.358194][ T8253] netlink: 'syz.1.598': attribute type 10 has an invalid length.
[  125.407041][ T8255] netlink: 'syz.1.599': attribute type 1 has an invalid length.
[  125.425260][ T8255] 8021q: adding VLAN 0 to HW filter on device bond1
[  125.435898][ T8255] bond1: (slave gretap1): making interface the new active one
[  125.439199][ T8255] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  125.476371][ T8255] input input8: cannot allocate more than FF_MAX_EFFECTS effects
[  125.718895][  T832] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  125.876002][ T8265] FAULT_INJECTION: forcing a failure.
[  125.876002][ T8265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.883579][  T832] usb 6-1: Using ep0 maxpacket: 32
[  125.884991][ T8265] CPU: 2 UID: 0 PID: 8265 Comm: syz.3.601 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  125.886334][  T832] usb 6-1: config 32 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  125.888161][ T8265] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.891214][  T832] usb 6-1: config 32 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  125.894087][ T8265] Call Trace:
[  125.894094][ T8265]  <TASK>
[  125.894099][ T8265]  dump_stack_lvl+0x16c/0x1f0
[  125.894116][ T8265]  should_fail_ex+0x497/0x5b0
[  125.896786][  T832] usb 6-1: config 32 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  125.897730][ T8265]  _copy_from_user+0x2e/0xd0
[  125.898594][  T832] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  125.899976][ T8265]  copy_folio_from_user+0xff/0x2a0
[  125.900006][ T8265]  mfill_atomic_copy+0x1ba3/0x1e60
[  125.900026][ T8265]  ? __pfx_mfill_atomic_copy+0x10/0x10
[  125.900040][ T8265]  ? __might_fault+0xe3/0x190
[  125.900054][ T8265]  ? __might_fault+0xe3/0x190
[  125.901375][  T832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.904852][ T8265]  userfaultfd_ioctl+0x1e50/0x3830
[  125.919392][ T8265]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  125.920768][ T8265]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  125.922247][ T8265]  ? __pfx_lock_release+0x10/0x10
[  125.923602][ T8265]  ? trace_lock_acquire+0x14e/0x1f0
[  125.925006][ T8265]  ? __fget_files+0x206/0x3a0
[  125.926344][ T8265]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  125.927826][ T8265]  ? compat_ptr_ioctl+0x6b/0xa0
[  125.929395][ T8265]  compat_ptr_ioctl+0x6b/0xa0
[  125.930724][ T8265]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  125.932191][ T8265]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  125.933804][ T8265]  __do_fast_syscall_32+0x73/0x120
[  125.935331][ T8265]  do_fast_syscall_32+0x32/0x80
[  125.936785][ T8265]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.938699][ T8265] RIP: 0023:0xf7f80579
[  125.939858][ T8265] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.945309][ T8265] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  125.947700][ T8265] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa03
[  125.949920][ T8265] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  125.952302][ T8265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.954509][ T8265] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.956799][ T8265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.959833][ T8265]  </TASK>
[  126.356982][ T8278] bond0: entered promiscuous mode
[  126.442832][ T8284] netlink: 'syz.0.606': attribute type 4 has an invalid length.
[  126.517322][   T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  126.538334][  T832] usbhid 6-1:32.0: can't add hid device: -71
[  126.540170][  T832] usbhid 6-1:32.0: probe with driver usbhid failed with error -71
[  126.547423][  T832] usb 6-1: USB disconnect, device number 4
[  127.212432][ T8319] netlink: 12 bytes leftover after parsing attributes in process `syz.3.613'.
[  132.200834][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  132.203348][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  143.931565][ T8339] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  143.935615][ T8339] netdevsim netdevsim2 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  144.022656][ T8339] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  144.025623][ T8339] netdevsim netdevsim2 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  144.300793][ T8347] misc userio: Invalid payload size
[  144.308848][ T8347] misc userio: No port type given on /dev/userio
[  144.560811][ T8339] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  144.561489][ T8348] misc userio: Invalid payload size
[  144.563683][ T8339] netdevsim netdevsim2 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  144.568654][ T8348] misc userio: No port type given on /dev/userio
[  144.662419][ T8339] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  144.666894][ T8339] netdevsim netdevsim2 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  144.730230][ T8339] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  144.732884][ T8339] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  144.738166][ T8339] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  144.740802][ T8339] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  144.747562][ T8339] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  144.750389][ T8339] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  144.759424][ T8339] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  144.768880][ T8339] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  144.845906][ T8356] netlink: 'syz.2.619': attribute type 10 has an invalid length.
[  144.849310][ T8356] bridge0: port 3(team0) entered disabled state
[  144.851440][ T8356] team0: left allmulticast mode
[  144.852825][ T8356] team_slave_0: left allmulticast mode
[  144.854366][ T8356] team_slave_1: left allmulticast mode
[  144.855915][ T8356] team0: left promiscuous mode
[  144.857304][ T8356] team_slave_0: left promiscuous mode
[  144.859468][ T8356] team_slave_1: left promiscuous mode
[  144.861176][ T8356] bridge0: port 3(team0) entered disabled state
[  144.875296][ T8356] batman_adv: batadv0: Adding interface: team0
[  144.879288][ T8356] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.889826][ T8356] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  145.030415][ T8377] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  145.055169][ T8380] netlink: 'syz.3.624': attribute type 4 has an invalid length.
[  145.162423][ T8383] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  145.268961][ T5996] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  145.277595][ T8383] syzkaller0: entered promiscuous mode
[  145.279578][ T8383] syzkaller0: entered allmulticast mode
[  145.289636][ T8383] tipc: Resetting bearer <eth:syzkaller0>
[  145.418882][ T5996] usb 6-1: Using ep0 maxpacket: 8
[  145.424153][ T5996] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  145.428155][ T5996] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  145.431306][ T5996] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  145.434351][ T5996] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  145.437431][ T5996] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  145.444173][ T5996] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  145.446979][ T5996] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.716417][ T5996] usb 6-1: GET_CAPABILITIES returned 0
[  145.718525][ T5996] usbtmc 6-1:16.0: can't read capabilities
[  145.817739][ T8379] tipc: Resetting bearer <eth:syzkaller0>
[  145.907436][ T8386] FAULT_INJECTION: forcing a failure.
[  145.907436][ T8386] name failslab, interval 1, probability 0, space 0, times 0
[  145.911365][ T8386] CPU: 0 UID: 0 PID: 8386 Comm: syz.0.627 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  145.914409][ T8386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.917522][ T8386] Call Trace:
[  145.918523][ T8386]  <TASK>
[  145.919383][ T8386]  dump_stack_lvl+0x16c/0x1f0
[  145.920739][ T8386]  should_fail_ex+0x497/0x5b0
[  145.922112][ T8386]  ? fs_reclaim_acquire+0xae/0x150
[  145.923589][ T8386]  should_failslab+0xc2/0x120
[  145.924980][ T8386]  __kmalloc_noprof+0xce/0x4f0
[  145.926387][ T8386]  ? kasan_save_track+0x14/0x30
[  145.927917][ T8386]  ? fuse_direct_io+0x5b3/0x2580
[  145.929414][ T8386]  fuse_direct_io+0x5b3/0x2580
[  145.930793][ T8386]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  145.932406][ T8386]  ? __pfx_fuse_direct_io+0x10/0x10
[  145.933902][ T8386]  ? __pfx_generic_write_checks+0x10/0x10
[  145.935549][ T8386]  fuse_direct_write_iter+0x64f/0x830
[  145.937093][ T8386]  ? __pfx___lock_acquire+0x10/0x10
[  145.938697][ T8386]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[  145.940390][ T8386]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  145.941999][ T8386]  ? rcu_is_watching+0x12/0xc0
[  145.943378][ T8386]  ? trace_lock_acquire+0x14e/0x1f0
[  145.944894][ T8386]  fuse_file_write_iter+0x66e/0x8c0
[  145.946403][ T8386]  vfs_write+0x5ae/0x1150
[  145.947824][ T8386]  ? __pfx_fuse_file_write_iter+0x10/0x10
[  145.949693][ T8386]  ? __pfx___mutex_lock+0x10/0x10
[  145.951138][ T8386]  ? __pfx_vfs_write+0x10/0x10
[  145.952526][ T8386]  ksys_write+0x12b/0x250
[  145.953779][ T8386]  ? __pfx_ksys_write+0x10/0x10
[  145.955176][ T8386]  __do_fast_syscall_32+0x73/0x120
[  145.956667][ T8386]  do_fast_syscall_32+0x32/0x80
[  145.958073][ T8386]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  145.959951][ T8386] RIP: 0023:0xf7f67579
[  145.961133][ T8386] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  145.967315][ T8386] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  145.969757][ T8386] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000200001c0
[  145.972006][ T8386] RDX: 0000000000000027 RSI: 0000000000000000 RDI: 0000000000000000
[  145.974270][ T8386] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  145.976707][ T8386] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  145.979835][ T8386] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  145.982946][ T8386]  </TASK>
[  146.045191][ T8386] ------------[ cut here ]------------
[  146.046909][ T8386] kernel BUG at lib/iov_iter.c:626!
[  146.048973][ T8386] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  146.051575][ T8386] CPU: 0 UID: 0 PID: 8386 Comm: syz.0.627 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  146.055327][ T8386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.058417][ T8386] RIP: 0010:iov_iter_revert+0x533/0x5a0
[  146.060024][ T8386] Code: 89 e6 48 c7 c7 00 3b 90 8e e8 79 db 31 00 e9 b1 fd ff ff e8 0f 1e 65 fd eb 95 e8 38 1e 65 fd e9 46 fb ff ff e8 0e b7 02 fd 90 <0f> 0b 48 8b 3c 24 e8 22 1e 65 fd e9 97 fb ff ff 48 8b 7c 24 08 e8
[  146.065511][ T8386] RSP: 0018:ffffc90003eb7948 EFLAGS: 00010293
[  146.067239][ T8386] RAX: 0000000000000000 RBX: 0000000000000027 RCX: ffffffff84969750
[  146.069536][ T8386] RDX: ffff888022dca440 RSI: ffffffff84969b62 RDI: 0000000000000001
[  146.071769][ T8386] RBP: ffffc90003eb7d88 R08: 0000000000000001 R09: 0000000000000000
[  146.074013][ T8386] R10: 0000000000000000 R11: 0000000000000003 R12: 0000000000000000
[  146.076303][ T8386] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff8880495da800
[  146.078576][ T8386] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f50b6b40
[  146.081103][ T8386] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  146.082983][ T8386] CR2: 00000000f506bda4 CR3: 0000000068a40000 CR4: 0000000000352ef0
[  146.085237][ T8386] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  146.087491][ T8386] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  146.089755][ T8386] Call Trace:
[  146.090717][ T8386]  <TASK>
[  146.091567][ T8386]  ? die+0x31/0x80
[  146.092651][ T8386]  ? do_trap+0x232/0x430
[  146.093873][ T8386]  ? iov_iter_revert+0x533/0x5a0
[  146.095312][ T8386]  ? iov_iter_revert+0x533/0x5a0
[  146.096742][ T8386]  ? do_error_trap+0xf4/0x230
[  146.098095][ T8386]  ? iov_iter_revert+0x533/0x5a0
[  146.099541][ T8386]  ? handle_invalid_op+0x34/0x40
[  146.100949][ T8386]  ? iov_iter_revert+0x533/0x5a0
[  146.102385][ T8386]  ? exc_invalid_op+0x2e/0x50
[  146.103745][ T8386]  ? asm_exc_invalid_op+0x1a/0x20
[  146.105231][ T8386]  ? iov_iter_revert+0x120/0x5a0
[  146.106655][ T8386]  ? iov_iter_revert+0x532/0x5a0
[  146.108073][ T8386]  ? iov_iter_revert+0x533/0x5a0
[  146.109565][ T8386]  ? iov_iter_revert+0x532/0x5a0
[  146.110984][ T8386]  fuse_direct_io+0xf0e/0x2580
[  146.112349][ T8386]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  146.113943][ T8386]  ? __pfx_fuse_direct_io+0x10/0x10
[  146.115422][ T8386]  ? __pfx_generic_write_checks+0x10/0x10
[  146.117042][ T8386]  fuse_direct_write_iter+0x64f/0x830
[  146.118635][ T8386]  ? __pfx___lock_acquire+0x10/0x10
[  146.120166][ T8386]  ? __pfx_fuse_direct_write_iter+0x10/0x10
[  146.121868][ T8386]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  146.123459][ T8386]  ? rcu_is_watching+0x12/0xc0
[  146.124835][ T8386]  ? trace_lock_acquire+0x14e/0x1f0
[  146.126333][ T8386]  fuse_file_write_iter+0x66e/0x8c0
[  146.127819][ T8386]  vfs_write+0x5ae/0x1150
[  146.129121][ T8386]  ? __pfx_fuse_file_write_iter+0x10/0x10
[  146.130779][ T8386]  ? __pfx___mutex_lock+0x10/0x10
[  146.132216][ T8386]  ? __pfx_vfs_write+0x10/0x10
[  146.133584][ T8386]  ksys_write+0x12b/0x250
[  146.134823][ T8386]  ? __pfx_ksys_write+0x10/0x10
[  146.136219][ T8386]  __do_fast_syscall_32+0x73/0x120
[  146.137735][ T8386]  do_fast_syscall_32+0x32/0x80
[  146.139360][ T8386]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  146.141276][ T8386] RIP: 0023:0xf7f67579
[  146.142464][ T8386] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  146.147693][ T8386] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  146.149859][ T8386] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000200001c0
[  146.152062][ T8386] RDX: 0000000000000027 RSI: 0000000000000000 RDI: 0000000000000000
[  146.154278][ T8386] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  146.156541][ T8386] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  146.158807][ T8386] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  146.161065][ T8386]  </TASK>
[  146.161979][ T8386] Modules linked in:
[  146.163344][ T8386] ---[ end trace 0000000000000000 ]---
[  146.171488][ T8386] RIP: 0010:iov_iter_revert+0x533/0x5a0
[  146.173784][ T8386] Code: 89 e6 48 c7 c7 00 3b 90 8e e8 79 db 31 00 e9 b1 fd ff ff e8 0f 1e 65 fd eb 95 e8 38 1e 65 fd e9 46 fb ff ff e8 0e b7 02 fd 90 <0f> 0b 48 8b 3c 24 e8 22 1e 65 fd e9 97 fb ff ff 48 8b 7c 24 08 e8
[  146.182330][ T8386] RSP: 0018:ffffc90003eb7948 EFLAGS: 00010293
[  146.184813][ T8386] RAX: 0000000000000000 RBX: 0000000000000027 RCX: ffffffff84969750
[  146.193762][ T8386] RDX: ffff888022dca440 RSI: ffffffff84969b62 RDI: 0000000000000001
[  146.196943][ T8386] RBP: ffffc90003eb7d88 R08: 0000000000000001 R09: 0000000000000000
[  146.200258][ T8386] R10: 0000000000000000 R11: 0000000000000003 R12: 0000000000000000
[  146.205243][ T8386] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff8880495da800
[  146.209786][ T8386] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000f50b6b40
[  146.213391][ T8386] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  146.218178][ T8386] CR2: 00000000f7f555c0 CR3: 0000000068a40000 CR4: 0000000000352ef0
[  146.222935][ T8386] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  146.226143][ T8386] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  146.229538][ T8386] Kernel panic - not syncing: Fatal exception
[  146.232604][ T8386] Kernel Offset: disabled
[  146.234348][ T8386] Rebooting in 86400 seconds..

VM DIAGNOSIS:
21:23:26  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85144a70 RDI=ffffffff9a668200 RBP=ffffffff9a6681c0 RSP=ffffc90003eb7210
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6e69203a73706f4f
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff34cd092 R15=dffffc0000000000
RIP=ffffffff85144a97 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f506bda4 CR3=0000000068a40000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001d800000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000005448ec RBX=0000000000000001 RCX=ffffffff8b1a6899 RDX=ffffed10056a6fee
RSI=ffffffff8bb16fc0 RDI=ffffffff81702ec9 RBP=ffffed10039dc910 RSP=ffffc9000047fe08
R8 =0000000000000000 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000001
R12=0000000000000001 R13=ffff88801cee4880 R14=ffffffff901cead0 R15=0000000000000000
RIP=ffffffff8b1a7c7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020001b80 CR3=0000000068a40000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001d800000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=1ffffffff2cf7648 RBX=ffffffff96997c98 RCX=ffffffff817583f5 RDX=0000000000000e96
RSI=0000000000000223 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffc90006c3f980
R8 =ffffffff93334c6c R9 =0000000000006976 R10=ffffffff969b7e97 R11=00000000000a201e
R12=ffffffff967bb240 R13=0000000000006974 R14=ffffffff93d81e88 R15=dffffc0000000000
RIP=ffffffff81757eb8 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f506c000 CR3=000000006b800000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000004080 Opmask01=0000000000000000 Opmask02=000000000000ffdf Opmask03=0000002008080010
Opmask04=00000000ffdfffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 505e4eb71cba3f2d 1514d4e97a6f92da
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d63ec2575d28200f dc5f126aab9659b9
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ddbceaadff9f3803 7c7b0e2931e85374
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 97230d0bdd9fd564 f12de2ca196bb43f
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000006a00
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00596af80059855d ee950000d5b00000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00596b86000012be 005985650000006e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0059750694be0000 684c000043340000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e47d000054540000 00598561068afbd2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1d365047a28780ed 84c2dbf6e6b8c831
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7976875f595c62cd 04841004d25cd5c7
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000002d1 0000000000000000 44455a494c414954 494e495f43455355
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000101 0000000031327075 656b61772f707565 6b61772f6c617574
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d8342edf81f01824 000055654fe0c376 0000000000000111 000000000030636d
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3c653274726d7763 74787e78310e4f5a 5a5748114859094c 465e591049445545
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7d7d77777f7f7f77 777d7f7f7f7f7f7f 7f7f7d7f6f7f7f7f 777f7f757f777f7d
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 69305f474f5b647c 69303b2433273f39 7b27697a787c7a30 23333a3a38263342
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3055424336300000 30303034313d4d55 4e513d5300303041 000030313431313d
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302c313130000000 302c3031313d2c33 2c3200310030302d 000030302c312c30
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000001651f4 RBX=0000000000000003 RCX=ffffffff8b1a6899 RDX=ffffed10056e6fee
RSI=ffffffff8bb16fc0 RDI=ffffffff81702ec9 RBP=ffffed10039df488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000001
R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901cead0 R15=0000000000000000
RIP=ffffffff8b1a7c7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f555c0 CR3=0000000047fc4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73e3ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000