last executing test programs:

6.20339492s ago: executing program 1 (id=705):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x400, 0x70bd2b}, 0x14}, 0x1, 0x0, 0x0, 0x400c890}, 0x40004)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, &(0x7f0000019380)={'#! ', './file0', [{0x20, '\x15\xe6\x8e\\\xfe\x15^\xca\xbb\x88B\xeb\x90FAv\xdc\xbc\x1eiU\b\xc2D\xdb\xca\x9d\xb4oL\xe92\x7f+\f\x0e\xfd\xceTC\x1f;u\x84E\x04\xe3B19xO\xc2\xd4.Mp\xf4\x80{e\x87\xc4V\xe0\x99\x99\x8b\x93I\x8a\xb3\xce*\x9b\xd0X\aA0S\x02k\xdb\x12\v\x9c\x10nY\x85\x92\xf6\x93\xc4%\x0f\x80.\x8d\x9b\x15\x8e\xf4LWr\x14\x9eKh\x97L\xb4\x03\xe9=\x8e\xff\xf0\xb1al\xb6\xc9\xa1/L\x8c7\xa0\x8eD\x1f,\x93`\xc0h\xacjGx\xb8\x9cv\x99bA\xc5]\b\xf8\xa5\x9b\x1c\xeeKB\xdd\xe8\xbboT\x90\x84k\xae\xb5\xfa\xd9\x0f\xd4T<\x0f\xdb\xec\x05HcN\xae;\x87\x00\x00\x00\x00\b\x92\xa7\xdf\x1dS\x00\x8b\x81\xf4\x84X*\xa6e\x922|FO\v\xa6\x17jG\xe3]'}]}, 0xe4)
close(r0)
read$FUSE(r0, &(0x7f0000019480)={0x2020, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
r2 = syz_open_procfs(r1, &(0x7f0000000040)='net/raw6\x00')
mount$overlay(0x0, &(0x7f0000019080)='.\x00', &(0x7f00000190c0), 0x3040088, &(0x7f0000000400)={[{@redirect_dir_on}, {@nfs_export_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@redirect_dir_follow}, {@nfs_export_off}], [{@appraise_type}]})
io_setup(0x6, &(0x7f00000003c0)=<r3=>0x0)
syz_open_dev$vim2m(0x0, 0xfff, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x6d8c, 0x0, 0x20000000, 0x142}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x6}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
dup(0xffffffffffffffff)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x62081, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x4, 0x4, 0x5000, 0x2000, &(0x7f00007b6000/0x2000)=nil})
io_submit(r3, 0x1, &(0x7f0000019240)=[&(0x7f0000019280)={0x0, 0x0, 0x0, 0x0, 0xb1, r5, &(0x7f0000019200)="f8326d4c34a7e619b4865b86477b3d217b268529a68c87ca90a5bbd617ab16a5f3d13270505888d9b2121ef1d71e611c", 0x30, 0x100000000, 0x0, 0x2}])
execve(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000019100)={[&(0x7f0000000200)=' ']})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

5.959460504s ago: executing program 3 (id=709):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x400, 0x70bd2b}, 0x14}, 0x1, 0x0, 0x0, 0x400c890}, 0x40004)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, &(0x7f0000019380)={'#! ', './file0', [{0x20, '\x15\xe6\x8e\\\xfe\x15^\xca\xbb\x88B\xeb\x90FAv\xdc\xbc\x1eiU\b\xc2D\xdb\xca\x9d\xb4oL\xe92\x7f+\f\x0e\xfd\xceTC\x1f;u\x84E\x04\xe3B19xO\xc2\xd4.Mp\xf4\x80{e\x87\xc4V\xe0\x99\x99\x8b\x93I\x8a\xb3\xce*\x9b\xd0X\aA0S\x02k\xdb\x12\v\x9c\x10nY\x85\x92\xf6\x93\xc4%\x0f\x80.\x8d\x9b\x15\x8e\xf4LWr\x14\x9eKh\x97L\xb4\x03\xe9=\x8e\xff\xf0\xb1al\xb6\xc9\xa1/L\x8c7\xa0\x8eD\x1f,\x93`\xc0h\xacjGx\xb8\x9cv\x99bA\xc5]\b\xf8\xa5\x9b\x1c\xeeKB\xdd\xe8\xbboT\x90\x84k\xae\xb5\xfa\xd9\x0f\xd4T<\x0f\xdb\xec\x05HcN\xae;\x87\x00\x00\x00\x00\b\x92\xa7\xdf\x1dS\x00\x8b\x81\xf4\x84X*\xa6e\x922|FO\v\xa6\x17jG\xe3]'}]}, 0xe4)
close(r0)
read$FUSE(r0, &(0x7f0000019480)={0x2020, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
r2 = syz_open_procfs(r1, &(0x7f0000000040)='net/raw6\x00')
mount$overlay(0x0, &(0x7f0000019080)='.\x00', &(0x7f00000190c0), 0x3040088, &(0x7f0000000400)={[{@redirect_dir_on}, {@nfs_export_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@redirect_dir_follow}, {@nfs_export_off}], [{@appraise_type}]})
io_setup(0x6, &(0x7f00000003c0)=<r3=>0x0)
syz_open_dev$vim2m(0x0, 0xfff, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x6d8c, 0x0, 0x20000000, 0x142}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x6}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
dup(0xffffffffffffffff)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x62081, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x4, 0x4, 0x5000, 0x2000, &(0x7f00007b6000/0x2000)=nil})
io_submit(r3, 0x1, &(0x7f0000019240)=[&(0x7f0000019280)={0x0, 0x0, 0x0, 0x0, 0xb1, r5, &(0x7f0000019200)="f8326d4c34a7e619b4865b86477b3d217b268529a68c87ca90a5bbd617ab16a5f3d13270505888d9b2121ef1d71e611c", 0x30, 0x100000000, 0x0, 0x2}])
execve(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000019100)={[&(0x7f0000000200)=' ']})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

4.321772532s ago: executing program 1 (id=716):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000380)='source\xcf\x87\x86\x1bY\x0f\xde\xd6\xcd\xc0\x01\xd3\x19>K\x04\xfe\x86YG\xa5\x0f\xed\xa0\x9f\x1e\x14R\x9e\x04\xfa\xed\xd0TG&\x88\xeaz\x9aD\xf8Tt\x8c\x00{\x1fm\xfe\x9c\xf6_h\x9e\xfc\'', &(0x7f00000001c0)='sou\x01ce', 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc2c45513, &(0x7f0000000500)={{0x1, 0x2, 0x81, 0x6, 'syz0\x00', 0xf}, 0x0, [0x3, 0x6, 0x400, 0x6, 0x6, 0x75ad45d3, 0x7, 0x0, 0x1, 0x80000000, 0x0, 0x9, 0x1000, 0x5, 0x4, 0x68, 0x3, 0x4, 0x4, 0x1, 0xfffffffe, 0x81, 0xff, 0xffffffff, 0x2, 0x4, 0x100, 0x1, 0x9, 0x9, 0x7ff, 0x3, 0xf8, 0x8000, 0x9e, 0x5, 0x9, 0x4, 0x81, 0x2, 0x8, 0x10000, 0x2, 0x8, 0x85, 0x7, 0xb08c, 0x2, 0x5, 0x1ff, 0x6, 0x2, 0xffffffff, 0xf, 0x80000000, 0x8, 0x401, 0x7, 0x4, 0x0, 0x9, 0x200, 0x7, 0x6, 0x40, 0x7, 0x0, 0x1ff, 0x80000000, 0x81, 0x8, 0x800, 0x3, 0x2, 0x9, 0xfffffff7, 0x0, 0xb, 0x0, 0x401, 0xf2c0, 0x3364, 0x8000, 0xf85, 0xffffffff, 0x7fff, 0xff, 0xb1, 0xe, 0x2, 0x7, 0x3, 0x0, 0x9e8, 0x7, 0xfffffffc, 0x5, 0x8, 0x10, 0x1, 0x6, 0x6, 0x200, 0x7fff, 0x8, 0x4, 0x9, 0xc651, 0x1, 0x6, 0x6c43, 0x40000, 0x6, 0x5, 0x1ff, 0x7, 0x7, 0x5, 0x526a, 0x0, 0x100, 0x5, 0x7fffffff, 0x401, 0x80, 0x1ff, 0x401, 0x31f]})
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r6=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b036800e0ff499453d7475400f6a13bb10000000800884848203b85dba0cee7a684c1d839aa315d59eb3622e0f2a3cbea34b11a342b70a0", 0x38, 0x94, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14)
r7 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r7, 0x8955, &(0x7f0000000340)={{0x2, 0x0, @broadcast}, {0x0, @link_local}, 0xa, {0x2, 0x800, @multicast2}, 'wg0\x00'})
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e2a, @broadcast}, {0x0, @remote}, 0x4a, {}, 'veth1_to_bridge\x00'})
r8 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r9 = syz_open_dev$cec(&(0x7f0000000140), 0x0, 0x50400)
r10 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x141000)
r11 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
getdents64(r11, &(0x7f0000000080)=""/98, 0x62)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r10, 0xc1105511, &(0x7f0000000140)={0xa, 0x0, 0x1, 0x0, 'syz0\x00'})
madvise(&(0x7f0000cd0000/0x4000)=nil, 0xffffffffdf32ffff, 0x16)
ioctl$CEC_ADAP_S_LOG_ADDRS(r9, 0xc05c6104, &(0x7f0000000200)={"6080d517", 0x3, 0x9, 0x1, 0x2, 0xfffffffc, "f9a927627a359827fdc4ed7cb20708", "ae6c49d8", "1c4391b3", "aa04df4e", ["e4e7d0b3748a08eb4117a58f", "a42a5eb8b97b66092e22038e", "00284dc8b857e17ccdef2efa", "d89c67314b6a13a76640b81a"]})
tkill(r8, 0xb)

4.167590738s ago: executing program 3 (id=717):
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xfbc6, 0x10100, 0x8000003}, &(0x7f0000000080), 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=@newlink={0x3c, 0x10, 0xa01, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x10}]}}}]}, 0x3c}}, 0x0)
r6 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$TCSETSF(r6, 0x5404, &(0x7f0000000040)={0x0, 0xffff7fff, 0x0, 0x0, 0x0, "518aba4d000000000000000000000000002000"})
dup(r6)
sendmsg$nl_generic(r4, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="040019000800ad00", @ANYRES32=0x0, @ANYBLOB="000c00f180050022000000000003fb184728b910725d98b008a721b002cfac71ad897390a2d0007bcecccdaff2f0363271dfe40098ad97e592981c21127fa6ed7678a72f42d57de907123fb39d89d375610e4d9e664a6c07a3cc1b4fdb53ef47fb75c543a3e6d3994b8b3f20d66a3000458008001d00334d77533fd07b0c21a4778e0015ba3c4d4f1ac3de34000000000000", @ANYRES32, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="2a0702ff1bb7ad7732619aec38a3207e9fe971ece1e215b344f27abed7644979b5c8cd0437fb7aad99f66ce54c574568bef9a2314500f470c8e868f70520232138a5ce9f3768076c675758a512b43891a51d58deb9596b5f9bc540d591976f24460df030b987289ae77ec458b872ba4edf84075f0322ef87a6e575fdd3caabccbae442568d60ad15346549c9aba2c4fdcd8bbacfb331b50ff8414d3d0ddb844b3157aa65f9ac27e85f4b7b085b2e7c2d08000a00e00000020400398006007d002d0000000400128000000008000000"], 0x168c}, 0x1, 0x0, 0x0, 0x4008001}, 0x20051)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100)={0x20000014})
close_range(r0, 0xffffffffffffffff, 0x0)

3.650918075s ago: executing program 1 (id=719):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_setup(0x4005a5f, &(0x7f0000000640)={0x0, 0xec27, 0x40, 0x0, 0x386}, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000400)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f000006b000/0xa000)=nil, 0xa000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000280)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = socket$alg(0x26, 0x5, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0xcc}, 0x1, 0x0, 0x0, 0x8010}, 0x4000800)
bind$alg(r5, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20-simd,anubis-generic,nhpoly1305-sse2)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r7 = accept4(r5, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000013a40)={0x0, 0x0, &(0x7f0000013a00)={&(0x7f00000158c0)=@newqdisc={0xffffffffffffff75, 0x24, 0x4, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x3}, {}, {0x0, 0xfffa}}}, 0x10b8c}}, 0x0)
recvmmsg$unix(r7, &(0x7f0000003800)=[{{0x0, 0x0, &(0x7f0000003740)=[{&(0x7f0000001600)=""/4086, 0xff6}], 0x1}}], 0x1, 0x0, 0x0)
connect$inet(r4, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00'})
socket$packet(0x11, 0x2, 0x300)

3.28802013s ago: executing program 3 (id=722):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x400, 0x70bd2b}, 0x14}, 0x1, 0x0, 0x0, 0x400c890}, 0x40004)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, &(0x7f0000019380)={'#! ', './file0', [{0x20, '\x15\xe6\x8e\\\xfe\x15^\xca\xbb\x88B\xeb\x90FAv\xdc\xbc\x1eiU\b\xc2D\xdb\xca\x9d\xb4oL\xe92\x7f+\f\x0e\xfd\xceTC\x1f;u\x84E\x04\xe3B19xO\xc2\xd4.Mp\xf4\x80{e\x87\xc4V\xe0\x99\x99\x8b\x93I\x8a\xb3\xce*\x9b\xd0X\aA0S\x02k\xdb\x12\v\x9c\x10nY\x85\x92\xf6\x93\xc4%\x0f\x80.\x8d\x9b\x15\x8e\xf4LWr\x14\x9eKh\x97L\xb4\x03\xe9=\x8e\xff\xf0\xb1al\xb6\xc9\xa1/L\x8c7\xa0\x8eD\x1f,\x93`\xc0h\xacjGx\xb8\x9cv\x99bA\xc5]\b\xf8\xa5\x9b\x1c\xeeKB\xdd\xe8\xbboT\x90\x84k\xae\xb5\xfa\xd9\x0f\xd4T<\x0f\xdb\xec\x05HcN\xae;\x87\x00\x00\x00\x00\b\x92\xa7\xdf\x1dS\x00\x8b\x81\xf4\x84X*\xa6e\x922|FO\v\xa6\x17jG\xe3]'}]}, 0xe4)
close(r0)
read$FUSE(r0, &(0x7f0000019480)={0x2020, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
r2 = syz_open_procfs(r1, &(0x7f0000000040)='net/raw6\x00')
mount$overlay(0x0, &(0x7f0000019080)='.\x00', &(0x7f00000190c0), 0x3040088, &(0x7f0000000400)={[{@redirect_dir_on}, {@nfs_export_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@redirect_dir_follow}, {@nfs_export_off}], [{@appraise_type}]})
io_setup(0x6, &(0x7f00000003c0)=<r3=>0x0)
syz_open_dev$vim2m(0x0, 0xfff, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x6d8c, 0x0, 0x20000000, 0x142}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x6}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x62081, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x4, 0x4, 0x5000, 0x2000, &(0x7f00007b6000/0x2000)=nil})
io_submit(r3, 0x1, &(0x7f0000019240)=[&(0x7f0000019280)={0x0, 0x0, 0x0, 0x0, 0xb1, r5, &(0x7f0000019200)="f8326d4c34a7e619b4865b86477b3d217b268529a68c87ca90a5bbd617ab16a5f3d13270505888d9b2121ef1d71e611c", 0x30, 0x100000000, 0x0, 0x2}])
execve(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000019100)={[&(0x7f0000000200)=' ']})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

2.591583025s ago: executing program 1 (id=727):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0x3, 0xfc, 0x2, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x3c, 0x0, 0x0, @in={0x2, 0x4e20, @dev}}, @sadb_sa={0x2, 0x1, 0x4d2, 0x0, 0x0, 0x9, 0x0, 0x80000000}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x4e20, 0x4, @remote, 0x8}}]}, 0x60}, 0x1, 0x7}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xad, &(0x7f0000000140)=""/173, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
openat$vmci(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r5, &(0x7f0000000000)=0xfe8e, 0x12)
ioctl$KVM_SET_PIT2(r5, 0x4070aea0, &(0x7f00000002c0)={[{0x0, 0xfff0, 0x83, 0x40, 0x8, 0x6, 0x2, 0x9, 0x5, 0x1, 0x2, 0xe, 0x7f}, {0x2bc, 0x5, 0x3, 0x5, 0x9, 0x5b, 0xa, 0xf1, 0x0, 0x9, 0x9, 0x0, 0xb3ea}, {0x8000, 0x3746, 0x0, 0xf, 0x33, 0x3, 0x5, 0x6, 0xa0, 0x3b, 0xd3, 0x8, 0x2}], 0x80000000})
write$binfmt_script(r4, &(0x7f0000000080), 0x76e5467)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01ec17"], 0x0, 0x42, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
setsockopt$sock_linger(r6, 0x1, 0x3d, &(0x7f0000000080)={0x1}, 0x8)
mmap$qrtrtun(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000002, 0x810, r6, 0xfffff800)
sendmmsg$sock(r6, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@txtime={{0x14, 0x1, 0x3d, 0x1010000003}}], 0x14}}], 0x1, 0x20000844)

2.13409808s ago: executing program 3 (id=729):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x80000003, 0x372, 0x0, 0x19, "40b80000000000000000001c00"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
io_setup(0x3ff, &(0x7f0000000500)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000440)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x7, 0x7, r0, 0x0, 0x0, 0x3fb}])
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x40, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000000)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414aa, @rand_addr, {[@lsrr={0x83, 0x3}, @rr={0x7, 0x2a}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@private=0xa010101}, {@private}, {@dev}, {@remote}, {@private}, {@dev}, {@private}]}]}}}}}}}, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000000)=0x16)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=@newtaction={0x3f4, 0x30, 0x100, 0x1, 0x0, {}, [{0x3e0, 0x1, [@m_skbmod={0x17c, 0x6, 0x0, 0x0, {{0xb}, {0xbc, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x20, 0x2, {{0x8, 0x3, 0x5, 0x8, 0x5}, 0x2}}, @TCA_SKBMOD_SMAC={0xa}, @TCA_SKBMOD_SMAC={0xa, 0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x9, 0x5, 0x3, 0x7fffffff}, 0x8}}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x3, 0x8001, 0x0, 0x9, 0x8}, 0xa}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @local}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x5d2}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x7, 0x656d, 0x4, 0x6e5976ec, 0x88}, 0xa}}]}, {0x98, 0x6, "760c542c1449700536460e4132242a7250403d0a6e29af59823ae569d67186092e16e942d3a61a820685736234c9885e85a031f47d90606ce8fa41fc2683ffc2615f123d1b558f7919aa4b619036587ab088194eb78d9bb987c720fe6c979f906eff4eeacd04d79948e8bfc73282ca52b0ad6b597409a7e78210178a3d97134bd1843757fee2869386308a08f93027b54bfc3057"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_gact={0x190, 0x8, 0x0, 0x0, {{0x9}, {0x94, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x1, 0x1ae2, 0xffffffffffffffff}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x9, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0x3, 0x401, 0x3, 0x4, 0xf}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x34a, 0x10000000}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0xb8d}}, @TCA_GACT_PARMS={0x18, 0x2, {0x80, 0xb78, 0x10000000, 0xfb28, 0x2}}, @TCA_GACT_PARMS={0x18, 0x2, {0x1, 0x8, 0x7, 0x21d, 0x6}}, @TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x80000001, 0xffffffffffffffff, 0x2, 0x10}}]}, {0xd1, 0x6, "79b514312de13745e96d24cdc9d0afe4be09433bdd572122be99119303f56ed3ed51457ce658ea7b9747efaadf85138b5bcffe5b577ad4947c2258b3e7821469a34a7be8d3918bee3aee799c35307007a70c9ddb0b741128c9c30366b927339577d2b03ec67bd78f456ea668ab754a119d429984afe95f062dce82ca5697b8c952a4360db28bc678c823e3381b9b5307966580db143a55410d7e43adf89aac4f4afe0e3d65d16e5729489082b09a9678551d94dcca41a857e47ba1ffe98558997c7039fb285536ce86abb93595"}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_skbmod={0xd0, 0x8, 0x0, 0x0, {{0xb}, {0x5c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @multicast}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x7}, @TCA_SKBMOD_DMAC={0xa, 0x3, @local}, @TCA_SKBMOD_DMAC={0xa, 0x3, @local}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_DMAC={0xa}]}, {0x4a, 0x6, "75096052dc88724b31fdf9eb1bc8864d3a4a206c876ee92d9f240b967d0a59f0784f62e97e3dd360455a9c4250b0780c596728a64341d0c7959444bff4c712d48b7fe25384cb"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x3f4}}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000780)='task\x00')
lseek(r4, 0x0, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, 0x0, 0x0, 0x0)
semget$private(0x0, 0x1, 0xc)
r7 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r8=>0x0, &(0x7f0000000000)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
io_uring_enter(r7, 0x48e9, 0x0, 0x2, 0x0, 0x0)

1.905593333s ago: executing program 2 (id=731):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x7f, 0xfffffffe}}, 0x120)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)
r1 = gettid()
write$UHID_DESTROY(r0, &(0x7f0000000000), 0x4)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000140))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2$9p(0x0, 0x80000)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f00000002c0)={{0x2, 0x4e21, @broadcast}, {}, 0x8, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x39}}, 'lo\x00'})
socket(0x2a, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x22)
shutdown(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000010c0)}, &(0x7f0000000140)=0xc)
prctl$PR_SET_MM_MAP(0x41, 0x3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x300000e, 0x2172, 0xffffffffffffffff, 0x0)
socket(0x2, 0x80805, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r4, 0x0)
connect$x25(r4, &(0x7f0000000080)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x1}}, 0x12)

1.799367855s ago: executing program 0 (id=732):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newtaction={0x7c, 0x30, 0x1, 0x0, 0x0, {}, [{0x68, 0x1, [@m_mpls={0x64, 0x1, 0x0, 0x0, {{0x9}, {0x38, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c}, @TCA_MPLS_LABEL={0x5}, @TCA_MPLS_PROTO={0x6}, @TCA_MPLS_TTL={0x5}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x7c}}, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001040)={0x200f, {"1ae30a30ed0d09f91b23070987f70e06d038e7ff7fc6e5539b0d3e0e8b089b3f363063030890e0879b0af8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c526db51b1b5b31070d0773090acd3b78130daa61d8e8040001000000b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19300305d3f46635eb016d5b18e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f6709000000a141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a027d5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf050000008000000000f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7af1d0e54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c01008e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2f5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e1a63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e09d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89100000dd385a603336c00000077cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046ca5b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe6531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e6586df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59555e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0d8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb601203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000140)={&(0x7f0000000000)=[0x0], &(0x7f0000000080)=[0x0], &(0x7f00000000c0)=[<r3=>0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], 0x1, 0x1, 0x4, 0x1})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000002c0)={&(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, <r4=>0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0], 0xa, 0x8, 0x4, 0x2})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000440)={&(0x7f0000000340)=[0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, <r5=>0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)=[0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0], 0x2, 0x6, 0x1, 0x4})
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000004c0)={0x0, 0x0, <r6=>0x0, 0x0, 0x0, 0x4, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f0000000580)={&(0x7f0000000300)=[r3, r4], 0x2, r5, r6, 0x3, 0x3, 0x400, 0x9, {0x2, 0x8, 0x4, 0x7, 0x7ff, 0x3, 0x7, 0x3, 0x80, 0xa, 0x9, 0x9, 0x451, 0x1000, "ffa822213c51ef85e5ddc48e16c2f4816ed2f508480af80cd75a1f4911114ca2"}})

1.79897651s ago: executing program 3 (id=733):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000380)='source\xcf\x87\x86\x1bY\x0f\xde\xd6\xcd\xc0\x01\xd3\x19>K\x04\xfe\x86YG\xa5\x0f\xed\xa0\x9f\x1e\x14R\x9e\x04\xfa\xed\xd0TG&\x88\xeaz\x9aD\xf8Tt\x8c\x00{\x1fm\xfe\x9c\xf6_h\x9e\xfc\'', &(0x7f00000001c0)='sou\x01ce', 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc2c45513, &(0x7f0000000500)={{0x1, 0x2, 0x81, 0x6, 'syz0\x00', 0xf}, 0x0, [0x3, 0x6, 0x400, 0x6, 0x6, 0x75ad45d3, 0x7, 0x0, 0x1, 0x80000000, 0x0, 0x9, 0x1000, 0x5, 0x4, 0x68, 0x3, 0x4, 0x4, 0x1, 0xfffffffe, 0x81, 0xff, 0xffffffff, 0x2, 0x4, 0x100, 0x1, 0x9, 0x9, 0x7ff, 0x3, 0xf8, 0x8000, 0x9e, 0x5, 0x9, 0x4, 0x81, 0x2, 0x8, 0x10000, 0x2, 0x8, 0x85, 0x7, 0xb08c, 0x2, 0x5, 0x1ff, 0x6, 0x2, 0xffffffff, 0xf, 0x80000000, 0x8, 0x401, 0x7, 0x4, 0x0, 0x9, 0x200, 0x7, 0x6, 0x40, 0x7, 0x0, 0x1ff, 0x80000000, 0x81, 0x8, 0x800, 0x3, 0x2, 0x9, 0xfffffff7, 0x0, 0xb, 0x0, 0x401, 0xf2c0, 0x3364, 0x8000, 0xf85, 0xffffffff, 0x7fff, 0xff, 0xb1, 0xe, 0x2, 0x7, 0x3, 0x0, 0x9e8, 0x7, 0xfffffffc, 0x5, 0x8, 0x10, 0x1, 0x6, 0x6, 0x200, 0x7fff, 0x8, 0x4, 0x9, 0xc651, 0x1, 0x6, 0x6c43, 0x40000, 0x6, 0x5, 0x1ff, 0x7, 0x7, 0x5, 0x526a, 0x0, 0x100, 0x5, 0x7fffffff, 0x401, 0x80, 0x1ff, 0x401, 0x31f]})
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r5=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b036800e0ff499453d7475400f6a13bb10000000800884848203b85dba0cee7a684c1d839aa315d59eb3622e0f2a3cbea34b11a342b70a0", 0x38, 0x94, &(0x7f0000000140)={0x11, 0x0, r5}, 0x14)
r6 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r6, 0x8955, &(0x7f0000000340)={{0x2, 0x0, @broadcast}, {0x0, @link_local}, 0xa, {0x2, 0x800, @multicast2}, 'wg0\x00'})
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e2a, @broadcast}, {0x0, @remote}, 0x4a, {}, 'veth1_to_bridge\x00'})
r7 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r8 = syz_open_dev$cec(&(0x7f0000000140), 0x0, 0x50400)
r9 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x141000)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r10 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
getdents64(r10, &(0x7f0000000080)=""/98, 0x62)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r9, 0xc1105511, &(0x7f0000000140)={0xa, 0x0, 0x1, 0x0, 'syz0\x00'})
madvise(&(0x7f0000cd0000/0x4000)=nil, 0xffffffffdf32ffff, 0x16)
ioctl$CEC_ADAP_S_LOG_ADDRS(r8, 0xc05c6104, &(0x7f0000000200)={"6080d517", 0x3, 0x9, 0x1, 0x2, 0xfffffffc, "f9a927627a359827fdc4ed7cb20708", "ae6c49d8", "1c4391b3", "aa04df4e", ["e4e7d0b3748a08eb4117a58f", "a42a5eb8b97b66092e22038e", "00284dc8b857e17ccdef2efa", "d89c67314b6a13a76640b81a"]})
tkill(r7, 0xb)

1.698643089s ago: executing program 2 (id=734):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000280)={0x3})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000040)={[{0xc, 0x3, 0x4, 0xc, 0x7, 0x2, 0x0, 0x3, 0xfe, 0x5, 0x5, 0x80, 0x5}, {0x6, 0x9, 0x3, 0xd, 0xb5, 0x40, 0x2, 0xc, 0xfe, 0x41, 0x6, 0x18, 0xa}, {0x9, 0x8, 0x3, 0xc, 0x2, 0x78, 0x3, 0x9, 0x2, 0x13, 0x7, 0x54, 0x18bf}], 0xd9})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000500)="b8010000000f01c10f22a10f20e035800000000f22e066ba610066b80a0066ef66b832000f00d0b8010000000f01c166ba4300b0beee0f793c1e2e643e2e3e650f79288fc878c15b0e3f", 0x4a}], 0x1, 0x21, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.698020201s ago: executing program 0 (id=735):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4000)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
r6 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
pipe(&(0x7f00000008c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
splice(r7, 0x0, r9, 0x0, 0x7, 0x9)
write$P9_RWRITE(r9, &(0x7f0000000040)={0xb, 0x77, 0x87}, 0x10c00)
read(r8, &(0x7f0000032440)=""/102364, 0x18fdc)

1.609224431s ago: executing program 1 (id=736):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0x3, 0xfc, 0x2, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x3c, 0x0, 0x0, @in={0x2, 0x4e20, @dev}}, @sadb_sa={0x2, 0x1, 0x4d2, 0x0, 0x0, 0x9, 0x0, 0x80000000}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x4e20, 0x4, @remote, 0x8}}]}, 0x60}, 0x1, 0x7}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xad, &(0x7f0000000140)=""/173, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
openat$vmci(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0xfe8e, 0x12)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f00000002c0)={[{0x0, 0xfff0, 0x83, 0x40, 0x8, 0x6, 0x2, 0x9, 0x5, 0x1, 0x2, 0xe, 0x7f}, {0x2bc, 0x5, 0x3, 0x5, 0x9, 0x5b, 0xa, 0xf1, 0x0, 0x9, 0x9, 0x0, 0xb3ea}, {0x8000, 0x3746, 0x0, 0xf, 0x33, 0x3, 0x5, 0x6, 0xa0, 0x3b, 0xd3, 0x8, 0x2}], 0x80000000})
write$binfmt_script(r4, &(0x7f0000000080), 0x76e5467)

1.458496368s ago: executing program 2 (id=737):
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x2, 0x1)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x1, @mcast2}}}, 0x32)
close(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xc, 0xb5, &(0x7f0000000140)=""/181, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x33, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x42082)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000040)={{0x1}})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r2, 0xc0f85403, &(0x7f0000000040))
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e22}, 0x6e)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x900, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c00000010004b0400000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="40180000000000001c0012800b00010062726964676500000c0002800500160003000000b6e719904c2080a18848f81a0b1db2fcb60cfd28b39876b5e8af41cda6ccac203005989d5cabd569ba306b3f26ba52c1ad1b0000e4edcfd6372795"], 0x3c}}, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000180)='qnx4\x00', 0x204000, 0x0)
socket$kcm(0x2d, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000))
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x3000009, 0x46031, 0xffffffffffffffff, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)

1.323892888s ago: executing program 3 (id=738):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="e00000001300010025bd700000dcdf25647262675f6e6f70725f6374725f616573323536000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000cd500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000"/224], 0xe0}}, 0x0)
io_setup(0x3ff, &(0x7f0000000500)=<r1=>0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0xff, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_procfs(0x0, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x15)
pipe(&(0x7f0000000140)={<r7=>0xffffffffffffffff})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
splice(r7, 0x0, r8, 0x0, 0x87e, 0xd)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000002140), 0x200)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002100)='/proc/asound/seq/clients\x00', 0x0, 0x0)
read$FUSE(r9, &(0x7f0000000080)={0x2020}, 0x2020)
ioctl$HIDIOCGFIELDINFO(0xffffffffffffffff, 0xc038480a, &(0x7f0000001240)={0x1, 0xffffffff, 0x5, 0xfffffff9, 0x7, 0x6, 0x20004, 0x8, 0x40000004, 0x5, 0x0, 0x2, 0xfffffff9, 0x800d89})
writev(r6, &(0x7f0000000280)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025", 0x1d}, {&(0x7f0000000580)="fa21bd2b5c40cc420740358ffc7f9f4b6e68fc8d1aa2597e7b484f301f11e35f22", 0x21}], 0x2)
syz_io_uring_setup(0x24fd, &(0x7f00000004c0)={0x0, 0x0, 0x10000, 0x0, 0x36, 0x0, r5}, &(0x7f0000000200), &(0x7f0000000280))
io_submit(r1, 0xfe60, 0x0)

795.767216ms ago: executing program 0 (id=739):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '\t\t'}]}, 0xe)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$vimc1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000001b91a9fcf35e6f4600"], 0x48)
socket$tipc(0x1e, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
socket$nl_route(0x10, 0x3, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x8, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x4, 0x2}, 0x0, &(0x7f00000002c0)={0x8000003fd, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x20}, 0x0, 0x0)
ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000180)={0x2, &(0x7f0000000000)=[{0x50, 0xff, 0x0, 0xffffffff}, {0x5, 0x60, 0x0, 0x2}]})
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000280)={0x6, 0x66c, 0x0, 'queue1\x00'})
write$sndseq(r4, 0x0, 0x0)
poll(&(0x7f0000000100)=[{r4, 0x3b00}], 0x1, 0x9d)
write$sndseq(r4, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r5 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r1, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x4e21, @local}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x2000c0c9)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
r7 = openat$dir(0xffffff9c, &(0x7f00000001c0)='./file0\x00', 0x2b8a83, 0xc3)
symlinkat(&(0x7f0000000000)='./file0\x00', r7, &(0x7f0000000140)='./file0\x00')
setsockopt$sock_attach_bpf(r5, 0x1, 0x2f, &(0x7f0000000080), 0x24)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
getpgrp(0xffffffffffffffff)

649.967378ms ago: executing program 2 (id=740):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000280)={0x3})
fsetxattr$trusted_overlay_origin(r0, &(0x7f00000000c0), 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000040)={[{0xc, 0x3, 0x4, 0xc, 0x7, 0x2, 0x0, 0x3, 0xfe, 0x5, 0x5, 0x80, 0x5}, {0x6, 0x9, 0x3, 0xd, 0xb5, 0x40, 0x2, 0xc, 0xfe, 0x41, 0x6, 0x18, 0xa}, {0x9, 0x8, 0x3, 0xc, 0x2, 0x78, 0x3, 0x9, 0x2, 0x13, 0x7, 0x54, 0x18bf}], 0xd9})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000500)="b8010000000f01c10f22a10f20e035800000000f22e066ba610066b80a0066ef66b832000f00d0b8010000000f01c166ba4300b0beee0f793c1e2e643e2e3e650f79288fc878c15b0e3f", 0x4a}], 0x1, 0x21, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

599.342397ms ago: executing program 1 (id=741):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
socket$packet(0x11, 0x3, 0x300)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_ifreq(0xffffffffffffffff, 0x8911, &(0x7f0000000280)={'vxcan1\x00', @ifru_addrs=@sco})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000081300000bfa30000000000000703000009feffff720a00fef8ffffff71a400fe0000000071101000000000001d300200000000004704000001ed030407000000c00000001d440000000000006b0a00fe0000000072030000000a0000e500f9ff000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616276fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a26048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdec86f9b1eb93d491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f806694d461b76a58d88cf0f520310a1e80dc18cde9ad662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a090f3b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c00000000000000f59dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ed1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67cf0216e2d81e6127bd9d7fab28800eaab2355992f8ce4cd38add4b272c0bee4076ca4847ffa691cf78fb7ec212bad3bef29f577ea7159b7f3025b3d977ff7c91024cf71126233cb8791c3c"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
timer_create(0x38b88a1f4391e3f6, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$bt_hci(r2, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f00000003c0)={[{0x6cc0, 0x8001, 0x2, 0x5, 0x2, 0x4, 0x9, 0x1, 0x4, 0x7, 0xe3, 0x1, 0x3}, {0x7f, 0xd, 0x3, 0x60, 0xb8, 0x1, 0x3d, 0x6, 0x6, 0x10, 0x4, 0x4f, 0x9}, {0x69e, 0x5, 0x5, 0x7, 0x2, 0x1, 0x5, 0xa, 0xa, 0x9, 0xc5, 0x1, 0xf}], 0x8})
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r4 = openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000100)={0x1, "fa02c8098000"})
openat$sw_sync(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SW_SYNC_IOC_INC(r4, 0x40045701, 0x0)
userfaultfd(0x800)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0x40103e05, 0x0)

431.695938ms ago: executing program 0 (id=742):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x80000003, 0x372, 0x0, 0x19, "40b80000000000000000001c00"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
io_setup(0x3ff, &(0x7f0000000500)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000440)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x7, 0x7, r0, 0x0, 0x0, 0x3fb}])
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x40, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000000)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414aa, @rand_addr, {[@lsrr={0x83, 0x3}, @rr={0x7, 0x2a}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@private=0xa010101}, {@private}, {@dev}, {@remote}, {@private}, {@dev}, {@private}]}]}}}}}}}, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000000)=0x16)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=@newtaction={0x3f4, 0x30, 0x100, 0x1, 0x0, {}, [{0x3e0, 0x1, [@m_skbmod={0x17c, 0x6, 0x0, 0x0, {{0xb}, {0xbc, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x20, 0x2, {{0x8, 0x3, 0x5, 0x8, 0x5}, 0x2}}, @TCA_SKBMOD_SMAC={0xa}, @TCA_SKBMOD_SMAC={0xa, 0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x9, 0x5, 0x3, 0x7fffffff}, 0x8}}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x3, 0x8001, 0x0, 0x9, 0x8}, 0xa}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @local}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x5d2}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x7, 0x656d, 0x4, 0x6e5976ec, 0x88}, 0xa}}]}, {0x98, 0x6, "760c542c1449700536460e4132242a7250403d0a6e29af59823ae569d67186092e16e942d3a61a820685736234c9885e85a031f47d90606ce8fa41fc2683ffc2615f123d1b558f7919aa4b619036587ab088194eb78d9bb987c720fe6c979f906eff4eeacd04d79948e8bfc73282ca52b0ad6b597409a7e78210178a3d97134bd1843757fee2869386308a08f93027b54bfc3057"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_gact={0x190, 0x8, 0x0, 0x0, {{0x9}, {0x94, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x1, 0x1ae2, 0xffffffffffffffff}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x9, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0x3, 0x401, 0x3, 0x4, 0xf}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x34a, 0x10000000}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0xb8d}}, @TCA_GACT_PARMS={0x18, 0x2, {0x80, 0xb78, 0x10000000, 0xfb28, 0x2}}, @TCA_GACT_PARMS={0x18, 0x2, {0x1, 0x8, 0x7, 0x21d, 0x6}}, @TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x80000001, 0xffffffffffffffff, 0x2, 0x10}}]}, {0xd1, 0x6, "79b514312de13745e96d24cdc9d0afe4be09433bdd572122be99119303f56ed3ed51457ce658ea7b9747efaadf85138b5bcffe5b577ad4947c2258b3e7821469a34a7be8d3918bee3aee799c35307007a70c9ddb0b741128c9c30366b927339577d2b03ec67bd78f456ea668ab754a119d429984afe95f062dce82ca5697b8c952a4360db28bc678c823e3381b9b5307966580db143a55410d7e43adf89aac4f4afe0e3d65d16e5729489082b09a9678551d94dcca41a857e47ba1ffe98558997c7039fb285536ce86abb93595"}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_skbmod={0xd0, 0x8, 0x0, 0x0, {{0xb}, {0x5c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @multicast}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x7}, @TCA_SKBMOD_DMAC={0xa, 0x3, @local}, @TCA_SKBMOD_DMAC={0xa, 0x3, @local}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_DMAC={0xa}]}, {0x4a, 0x6, "75096052dc88724b31fdf9eb1bc8864d3a4a206c876ee92d9f240b967d0a59f0784f62e97e3dd360455a9c4250b0780c596728a64341d0c7959444bff4c712d48b7fe25384cb"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x3f4}}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000780)='task\x00')
lseek(r4, 0x0, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, 0x0, 0x0, 0x0)
r7 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r8=>0x0, &(0x7f0000000000)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
io_uring_enter(r7, 0x48e9, 0x0, 0x2, 0x0, 0x0)

429.547691ms ago: executing program 2 (id=743):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x7f, 0xfffffffe}}, 0x120)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)
r1 = gettid()
write$UHID_DESTROY(r0, &(0x7f0000000000), 0x4)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000140))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2$9p(0x0, 0x80000)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f00000002c0)={{0x2, 0x4e21, @broadcast}, {}, 0x8, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x39}}, 'lo\x00'})
socket(0x2a, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x22)
shutdown(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000010c0)}, &(0x7f0000000140)=0xc)
prctl$PR_SET_MM_MAP(0x41, 0x3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x300000e, 0x2172, 0xffffffffffffffff, 0x0)
socket(0x2, 0x80805, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r4, 0x0)
connect$x25(r4, &(0x7f0000000080)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x1}}, 0x12)

229.240187ms ago: executing program 2 (id=744):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0x3, 0xfc, 0x2, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x3c, 0x0, 0x0, @in={0x2, 0x4e20, @dev}}, @sadb_sa={0x2, 0x1, 0x4d2, 0x0, 0x0, 0x9, 0x0, 0x80000000}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x4e20, 0x4, @remote, 0x8}}]}, 0x60}, 0x1, 0x7}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xad, &(0x7f0000000140)=""/173, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
openat$vmci(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r5, &(0x7f0000000000)=0xfe8e, 0x12)
ioctl$KVM_SET_PIT2(r5, 0x4070aea0, &(0x7f00000002c0)={[{0x0, 0xfff0, 0x83, 0x40, 0x8, 0x6, 0x2, 0x9, 0x5, 0x1, 0x2, 0xe, 0x7f}, {0x2bc, 0x5, 0x3, 0x5, 0x9, 0x5b, 0xa, 0xf1, 0x0, 0x9, 0x9, 0x0, 0xb3ea}, {0x8000, 0x3746, 0x0, 0xf, 0x33, 0x3, 0x5, 0x6, 0xa0, 0x3b, 0xd3, 0x8, 0x2}], 0x80000000})
write$binfmt_script(r4, &(0x7f0000000080), 0x76e5467)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r6, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$sock_linger(r6, 0x1, 0x3d, &(0x7f0000000080)={0x1}, 0x8)
mmap$qrtrtun(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000002, 0x810, r6, 0xfffff800)
sendmmsg$sock(r6, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@txtime={{0x14, 0x1, 0x3d, 0x1010000003}}], 0x14}}], 0x1, 0x20000844)

99.730093ms ago: executing program 0 (id=745):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000280)={0x3})
fsetxattr$trusted_overlay_origin(r0, &(0x7f00000000c0), 0x0, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x7fffffff, 0x40001)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000040)={[{0xc, 0x3, 0x4, 0xc, 0x7, 0x2, 0x0, 0x3, 0xfe, 0x5, 0x5, 0x80, 0x5}, {0x6, 0x9, 0x3, 0xd, 0xb5, 0x40, 0x2, 0xc, 0xfe, 0x41, 0x6, 0x18, 0xa}, {0x9, 0x8, 0x3, 0xc, 0x2, 0x78, 0x3, 0x9, 0x2, 0x13, 0x7, 0x54, 0x18bf}], 0xd9})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000500)="b8010000000f01c10f22a10f20e035800000000f22e066ba610066b80a0066ef66b832000f00d0b8010000000f01c166ba4300b0beee0f793c1e2e643e2e3e650f79288fc878c15b0e3f", 0x4a}], 0x1, 0x21, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 0 (id=746):
openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_emit_vhci(&(0x7f0000000580)=ANY=[], 0xf2)
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYRESHEX=r0], &(0x7f0000000140)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x67a0}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffa3, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f00000016c0)=""/4126, 0x101e}], 0x1)
move_pages(0x0, 0x3, &(0x7f0000001080)=[&(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ff7000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil], &(0x7f0000001100)=[0x1, 0x6, 0x7], &(0x7f0000000000), 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x4, 0x1000085}, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x2)
mmap(&(0x7f0000ff9000/0x1000)=nil, 0x1000, 0x0, 0x80010, 0xffffffffffffffff, 0x11b68000)
sched_setaffinity(0x0, 0x8, &(0x7f0000000f80)=0x2)
read$msr(r1, &(0x7f0000019680)=""/102384, 0x18ff0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x71ba, @void, @value}, 0x94)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000001affa000bca30000000000002403000020feffff620af0fff8ffffff71a4f2ff000000001f030000000000002e100200000000002604fdffff02000014010000030000001d130000000000007a0a00fe0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b8074bf7df8b5e783637da740800000000000000c55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2740000000000000000000000000000000000000000000a0009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4100260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb0000000000000005375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d34d3757b1450fdb0a9a69f432e277f3a0386eb2bd3305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07618b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e040000003c3ffad44d2a376def42e41e9fc31678257e040fa7cf32c221aaac08000000000000001a00000000000000000000173570f0c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d641ef02e4d5295d756e110522a7a945b93fb705b95b6aae27a8fb33732ce1da1c0b1af8eb9222a06e984ab1e6984c8bdc12360627137ab67b6b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481efe46a4ce86be0b1d8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0c6cb4bed8594a39bd76d3ef8a7ab014e787596db796bd93a36c2880423291e3bccc86f66ba792ff4d87b3f80e5908779e51c5e9055fc5b23605cd000c723187ef09dcf4b07b06a9342f3f62ee7acddff292082c1f4d8eb9561f80873a09a1ae0c9af1121175e5600f43a1179484502009759264a5729f07c2b218fa36ba2316a99aaad0130df83d0bda1e711290f78c143ea143967b00adcd77e6ad5e48d839ea61aadb83e4d071c54691924a3830d3e7b5c198bb0ed623153590000000000000000004b985ea1702f34f2f85b168c083e810ed567e3f1979b9ed1a4bf6a10dac825c96a0828b335de445a4880bb6474157efd1a72ca46ae4cbe3ab648c9bc4867a5a4cb87d7d6d55475b34b3cb6aa9e2337d4e04a37e35109752522ac9b186ddd80c47da6a2f4ef7bb909c975520000000000000000000000219cf5c1376ab33786f6b856d354e90a2733f78f2d188057cead3480eade49d55b770fad7fa000d23da6275768810b6b2df91d3a991ea98d929d271696c258d5b735d5db11df434e7dd1b7c1ca05cea3977df564115f4ec6ffab1d2ff8a642ca50934b3fbe44b0abeba9df209566984a29dfc0466e439a94e177b3c4d5f6e92b8176b9d6ddeeeb196fa964217f88e1acc180aaa4"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200), 0x10000, &(0x7f0000000040)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './file0'}}], [], 0x2c})

kernel console output (not intermixed with test programs):

0 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   75.043499][ T6709] RSP: 002b:00000000f504d55c EFLAGS: 00000296 ORIG_RAX: 000000000000013b
[   75.043509][ T6709] RAX: fffffffffffffe00 RBX: 0000000000000007 RCX: 000000000000000a
[   75.043515][ T6709] RDX: 00000000000008f5 RSI: 0000000000000000 RDI: 0000000000000000
[   75.043521][ T6709] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   75.043526][ T6709] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   75.043531][ T6709] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   75.043544][ T6709]  </TASK>
[   75.156422][ T6711] netlink: 'syz.3.170': attribute type 1 has an invalid length.
[   75.211526][ T6711] netlink: 4 bytes leftover after parsing attributes in process `syz.3.170'.
[   77.210816][ T6758] FAULT_INJECTION: forcing a failure.
[   77.210816][ T6758] name failslab, interval 1, probability 0, space 0, times 0
[   77.214951][ T6758] CPU: 1 UID: 0 PID: 6758 Comm: syz.2.183 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[   77.214965][ T6758] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.214971][ T6758] Call Trace:
[   77.214975][ T6758]  <TASK>
[   77.214979][ T6758]  dump_stack_lvl+0x16c/0x1f0
[   77.214998][ T6758]  should_fail_ex+0x512/0x640
[   77.215011][ T6758]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[   77.215025][ T6758]  should_failslab+0xc2/0x120
[   77.215039][ T6758]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   77.215051][ T6758]  ? vm_area_dup+0x25/0x760
[   77.215065][ T6758]  vm_area_dup+0x25/0x760
[   77.215078][ T6758]  copy_process+0x7f67/0x91a0
[   77.215101][ T6758]  ? __pfx_copy_process+0x10/0x10
[   77.215119][ T6758]  ? find_held_lock+0x2b/0x80
[   77.215136][ T6758]  kernel_clone+0xfc/0x960
[   77.215150][ T6758]  ? __pfx_kernel_clone+0x10/0x10
[   77.215168][ T6758]  ? __mutex_unlock_slowpath+0x161/0x6a0
[   77.215185][ T6758]  __do_compat_sys_ia32_clone+0xcb/0x110
[   77.215203][ T6758]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[   77.215224][ T6758]  ? ksys_write+0x1b9/0x240
[   77.215235][ T6758]  ? __pfx_ksys_write+0x10/0x10
[   77.215250][ T6758]  ? rcu_is_watching+0x12/0xc0
[   77.215262][ T6758]  __do_fast_syscall_32+0x73/0x120
[   77.215278][ T6758]  do_fast_syscall_32+0x32/0x80
[   77.215293][ T6758]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.215306][ T6758] RIP: 0023:0xf7f72579
[   77.215314][ T6758] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.215324][ T6758] RSP: 002b:00000000f509650c EFLAGS: 00000246 ORIG_RAX: 0000000000000078
[   77.215334][ T6758] RAX: ffffffffffffffda RBX: 0000000062000000 RCX: 0000000000000000
[   77.215340][ T6758] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   77.215345][ T6758] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.215350][ T6758] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   77.215356][ T6758] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.215368][ T6758]  </TASK>
[   77.791697][  T835] libceph: connect (1)[c::]:6789 error -101
[   77.794983][  T835] libceph: mon0 (1)[c::]:6789 connect error
[   77.852960][ T6769] ceph: No mds server is up or the cluster is laggy
[   78.235013][ T6789] netlink: 40 bytes leftover after parsing attributes in process `syz.0.189'.
[   78.278944][ T1330] libceph: connect (1)[c::]:6789 error -101
[   78.280827][ T1330] libceph: mon0 (1)[c::]:6789 connect error
[   78.282895][ T1330] libceph: connect (1)[c::]:6789 error -101
[   78.284868][ T1330] libceph: mon0 (1)[c::]:6789 connect error
[   78.345481][ T6790] ceph: No mds server is up or the cluster is laggy
[   78.478879][ T6799] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[   78.485742][ T6798] mkiss: ax0: crc mode is auto.
[   78.972426][ T1322] libceph: connect (1)[c::]:6789 error -101
[   78.974669][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[   78.976790][ T1322] libceph: connect (1)[c::]:6789 error -101
[   78.978752][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[   79.001030][ T6821] pim6reg: entered allmulticast mode
[   79.008248][ T6822] FAULT_INJECTION: forcing a failure.
[   79.008248][ T6822] name failslab, interval 1, probability 0, space 0, times 0
[   79.012358][ T6822] CPU: 1 UID: 0 PID: 6822 Comm: syz.1.202 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[   79.012372][ T6822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.012389][ T6822] Call Trace:
[   79.012393][ T6822]  <TASK>
[   79.012397][ T6822]  dump_stack_lvl+0x16c/0x1f0
[   79.012416][ T6822]  should_fail_ex+0x512/0x640
[   79.012428][ T6822]  ? __kmalloc_noprof+0xbf/0x510
[   79.012442][ T6822]  ? tcf_idr_create+0x62/0x8c0
[   79.012457][ T6822]  should_failslab+0xc2/0x120
[   79.012471][ T6822]  __kmalloc_noprof+0xd2/0x510
[   79.012489][ T6822]  tcf_idr_create+0x62/0x8c0
[   79.012505][ T6822]  ? __nla_parse+0x40/0x60
[   79.012521][ T6822]  tcf_police_init+0xdb3/0x1510
[   79.012535][ T6822]  ? __pfx_tcf_police_init+0x10/0x10
[   79.012556][ T6822]  ? __asan_memcpy+0x3c/0x60
[   79.012567][ T6822]  tcf_action_init_1+0x45d/0x6c0
[   79.012580][ T6822]  ? __pfx_tcf_action_init_1+0x10/0x10
[   79.012598][ T6822]  ? __nla_parse+0x40/0x60
[   79.012613][ T6822]  tcf_action_init+0x42c/0x9c0
[   79.012629][ T6822]  ? __pfx_tcf_action_init+0x10/0x10
[   79.012638][ T6822]  ? lock_acquire+0x179/0x350
[   79.012663][ T6822]  ? kernel_text_address+0x8d/0x100
[   79.012673][ T6822]  ? __lock_acquire+0x5ca/0x1ba0
[   79.012686][ T6822]  ? __kernel_text_address+0xd/0x40
[   79.012695][ T6822]  ? unwind_get_return_address+0x59/0xa0
[   79.012721][ T6822]  ? kasan_save_stack+0x42/0x60
[   79.012732][ T6822]  ? kasan_save_stack+0x33/0x60
[   79.012742][ T6822]  ? kasan_save_track+0x14/0x30
[   79.012752][ T6822]  ? kasan_save_free_info+0x3b/0x60
[   79.012767][ T6822]  ? __kasan_slab_free+0x51/0x70
[   79.012781][ T6822]  tcf_action_add+0xee/0x5c0
[   79.012793][ T6822]  ? __pfx_tcf_action_add+0x10/0x10
[   79.012825][ T6822]  ? __nla_parse+0x40/0x60
[   79.012840][ T6822]  tc_ctl_action+0x35b/0x470
[   79.012851][ T6822]  ? __pfx_tc_ctl_action+0x10/0x10
[   79.012867][ T6822]  ? __pfx_tc_ctl_action+0x10/0x10
[   79.012878][ T6822]  rtnetlink_rcv_msg+0x3c6/0xe90
[   79.012894][ T6822]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   79.012915][ T6822]  netlink_rcv_skb+0x16a/0x440
[   79.012930][ T6822]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   79.012945][ T6822]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   79.012967][ T6822]  ? netlink_deliver_tap+0x1ae/0xd30
[   79.012984][ T6822]  netlink_unicast+0x53a/0x7f0
[   79.013000][ T6822]  ? __pfx_netlink_unicast+0x10/0x10
[   79.013018][ T6822]  netlink_sendmsg+0x8d1/0xdd0
[   79.013035][ T6822]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.013051][ T6822]  ? __import_iovec+0x1c8/0x660
[   79.013067][ T6822]  ____sys_sendmsg+0xa95/0xc70
[   79.013079][ T6822]  ? __pfx_____sys_sendmsg+0x10/0x10
[   79.013088][ T6822]  ? get_compat_msghdr+0x11a/0x170
[   79.013107][ T6822]  ___sys_sendmsg+0x134/0x1d0
[   79.013122][ T6822]  ? __pfx____sys_sendmsg+0x10/0x10
[   79.013152][ T6822]  __sys_sendmsg+0x16d/0x220
[   79.013166][ T6822]  ? __pfx___sys_sendmsg+0x10/0x10
[   79.013185][ T6822]  ? rcu_is_watching+0x12/0xc0
[   79.013198][ T6822]  __do_fast_syscall_32+0x73/0x120
[   79.013215][ T6822]  do_fast_syscall_32+0x32/0x80
[   79.013230][ T6822]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   79.013242][ T6822] RIP: 0023:0xf7f04579
[   79.013251][ T6822] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   79.013260][ T6822] RSP: 002b:00000000f500555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   79.013270][ T6822] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000300
[   79.013276][ T6822] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   79.013281][ T6822] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   79.013287][ T6822] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   79.013292][ T6822] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   79.013305][ T6822]  </TASK>
[   79.172631][ T6821] pim6reg: left allmulticast mode
[   79.235417][ T1322] libceph: connect (1)[c::]:6789 error -101
[   79.237651][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[   79.346652][   T40] audit: type=1326 audit(1745613571.687:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6795 comm="syz.2.193" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7fc00000
[   79.361767][ T6828] ref_ctr_offset mismatch. inode: 0xea offset: 0x0 ref_ctr_offset(old): 0x100000000 ref_ctr_offset(new): 0x2
[   79.452811][ T6834] pim6reg: entered allmulticast mode
[   79.463517][ T6834] pim6reg: left allmulticast mode
[   79.734033][ T6818] ceph: No mds server is up or the cluster is laggy
[   79.939566][ T6854] netlink: 'syz.3.210': attribute type 1 has an invalid length.
[   79.939579][ T6854] netlink: 16179 bytes leftover after parsing attributes in process `syz.3.210'.
[   79.940533][ T6854] openvswitch: netlink: Key 6 has unexpected len 17 expected 2
[   80.008003][ T6862] netlink: 28 bytes leftover after parsing attributes in process `syz.2.214'.
[   80.981397][ T6888] ceph: No mds server is up or the cluster is laggy
[   80.985076][  T835] libceph: connect (1)[c::]:6789 error -101
[   80.987488][  T835] libceph: mon0 (1)[c::]:6789 connect error
[   81.084708][ T3231] cfg80211: failed to load regulatory.db
[   81.107471][ T6899] fuse: Bad value for 'group_id'
[   81.109237][ T6899] fuse: Bad value for 'group_id'
[   81.114241][ T6900] overlayfs: missing 'lowerdir'
[   81.393910][ T1322] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   81.575961][ T1322] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   81.580186][ T1322] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   81.586554][ T1322] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   81.596345][ T1322] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   81.602913][ T1322] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.611531][ T1322] usb 5-1: config 0 descriptor??
[   81.698228][  T835] libceph: connect (1)[c::]:6789 error -101
[   81.700972][  T835] libceph: mon0 (1)[c::]:6789 connect error
[   81.793498][ T6919] ceph: No mds server is up or the cluster is laggy
[   82.025001][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.027889][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.030258][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.032961][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.035487][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.037825][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.040410][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.042755][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.045410][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.047778][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.050206][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.052534][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.055231][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.057727][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.059964][ T1322] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[   82.062952][ T1322] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[   82.077553][ T1322] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   82.177581][ T6937] mmap: syz.2.237 (6937) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   82.534002][ T5951] Bluetooth: hci3: command 0x0419 tx timeout
[   83.038978][ T6008] IPVS: starting estimator thread 0...
[   83.101559][ T6956] pim6reg: entered allmulticast mode
[   83.112455][ T6956] pim6reg: left allmulticast mode
[   83.134557][ T6955] IPVS: using max 48 ests per chain, 115200 per kthread
[   83.404506][   T34] usb 5-1: reset high-speed USB device number 2 using dummy_hcd
[   83.436625][   T24] libceph: connect (1)[c::]:6789 error -101
[   83.438784][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   83.446626][ T6970] syz_tun: entered allmulticast mode
[   83.490394][ T6966] ceph: No mds server is up or the cluster is laggy
[   83.643329][ T6973] syz_tun: left allmulticast mode
[   83.863026][ T6976] pim6reg: entered allmulticast mode
[   83.872803][ T6976] pim6reg: left allmulticast mode
[   84.066572][ T6979] netlink: 28 bytes leftover after parsing attributes in process `syz.2.246'.
[   84.069447][ T6979] netlink: 'syz.2.246': attribute type 7 has an invalid length.
[   84.072103][ T6979] netlink: 'syz.2.246': attribute type 8 has an invalid length.
[   84.074607][ T6979] netlink: 4 bytes leftover after parsing attributes in process `syz.2.246'.
[   84.086844][ T6979] bond0: entered promiscuous mode
[   84.088468][ T6979] bond_slave_0: entered promiscuous mode
[   84.090355][ T6979] bond_slave_1: entered promiscuous mode
[   84.093339][ T6979] bridge0: entered promiscuous mode
[   84.095980][ T6979] gretap0: entered promiscuous mode
[   84.474054][   T57] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   84.633938][   T57] usb 7-1: Using ep0 maxpacket: 16
[   84.640981][   T57] usb 7-1: unable to get BOS descriptor or descriptor too short
[   84.644299][   T57] usb 7-1: unable to read config index 0 descriptor/start: -71
[   84.646682][   T57] usb 7-1: can't read configurations, error -71
[   84.897026][ T1322] usb 5-1: USB disconnect, device number 2
[   85.029365][ T7005] netlink: 20 bytes leftover after parsing attributes in process `syz.0.253'.
[   85.207851][ T7013] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   85.239339][ T7014] pim6reg: entered allmulticast mode
[   85.245941][ T7014] pim6reg: left allmulticast mode
[   85.633226][ T7026] input: syz0 as /devices/virtual/input/input5
[   87.299116][ T7067] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[   87.303504][ T7067] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.306684][ T7067] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.913973][   T57] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[   88.056283][ T7087] warning: `syz.1.276' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   88.085123][   T57] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   88.087948][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[   88.091504][   T57] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   88.096474][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   88.100625][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   88.107688][   T57] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   88.110633][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[   88.114353][   T57] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   88.117813][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   88.121733][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   88.127039][   T57] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[   88.130090][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[   88.134708][   T57] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   88.139481][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   88.143755][   T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   88.151040][   T57] usb 5-1: string descriptor 0 read error: -22
[   88.153031][   T57] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   88.156199][   T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.164904][   T57] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   88.421263][ T7094] netlink: 60 bytes leftover after parsing attributes in process `syz.0.274'.
[   88.425092][   T40] audit: type=1326 audit(1745613580.767:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.425356][ T7094] netlink: 4 bytes leftover after parsing attributes in process `syz.0.274'.
[   88.427979][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.3.278'.
[   88.444436][ T7094] lo: entered allmulticast mode
[   88.449407][   T40] audit: type=1326 audit(1745613580.787:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.450667][ T7081] lo: left allmulticast mode
[   88.460663][   T57] usb 5-1: USB disconnect, device number 3
[   88.466305][   T40] audit: type=1326 audit(1745613580.807:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.475016][   T40] audit: type=1326 audit(1745613580.807:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.482272][   T40] audit: type=1326 audit(1745613580.807:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.488985][   T40] audit: type=1326 audit(1745613580.807:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.497024][   T40] audit: type=1326 audit(1745613580.807:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.503597][   T40] audit: type=1326 audit(1745613580.807:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.510251][   T40] audit: type=1326 audit(1745613580.807:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   88.516797][   T40] audit: type=1326 audit(1745613580.807:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.0.274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7fc00000
[   89.027015][ T7103] ALSA: seq fatal error: cannot create timer (-19)
[   89.030224][ T7103] i2c i2c-1: Invalid block write size 34
[   89.521251][ T7121] Illegal XDP return value 3485809952 on prog  (id 39) dev syz_tun, expect packet loss!
[   89.640210][ T7124] netlink: 18 bytes leftover after parsing attributes in process `syz.3.285'.
[   90.797588][ T7139] ceph: No mds server is up or the cluster is laggy
[   90.886388][   T57] IPVS: starting estimator thread 0...
[   91.054107][ T7153] IPVS: using max 47 ests per chain, 112800 per kthread
[   92.022570][ T7169] netlink: 'syz.2.294': attribute type 1 has an invalid length.
[   92.026171][ T7169] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.294'.
[   92.243565][ T7178] netlink: 24 bytes leftover after parsing attributes in process `syz.1.297'.
[   92.276467][ T7184] netlink: 'syz.2.299': attribute type 12 has an invalid length.
[   92.328059][ T7178] netlink: 24 bytes leftover after parsing attributes in process `syz.1.297'.
[   92.360228][ T7178] netlink: 8 bytes leftover after parsing attributes in process `syz.1.297'.
[   93.708288][ T7246] netlink: 56 bytes leftover after parsing attributes in process `syz.2.308'.
[   93.711131][ T7246] netlink: 'syz.2.308': attribute type 5 has an invalid length.
[   93.746944][ T7247] pim6reg: entered allmulticast mode
[   93.888534][ T7247] pim6reg: left allmulticast mode
[   94.345883][ T7259] netlink: 20 bytes leftover after parsing attributes in process `syz.3.310'.
[   94.353072][ T7259] netlink: 20 bytes leftover after parsing attributes in process `syz.3.310'.
[   94.568455][ T1322] libceph: connect (1)[c::]:6789 error -101
[   94.570497][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[   94.596644][ T7268] ceph: No mds server is up or the cluster is laggy
[   94.811822][ T7277] MTD: Attempt to mount non-MTD device "/dev/sr0"
[   94.970379][ T7277] /dev/sr0: Can't open blockdev
[   95.031333][ T7281] FAULT_INJECTION: forcing a failure.
[   95.031333][ T7281] name failslab, interval 1, probability 0, space 0, times 0
[   95.044715][ T7281] CPU: 3 UID: 0 PID: 7281 Comm: syz.0.315 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[   95.044741][ T7281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.044748][ T7281] Call Trace:
[   95.044752][ T7281]  <TASK>
[   95.044756][ T7281]  dump_stack_lvl+0x16c/0x1f0
[   95.044775][ T7281]  should_fail_ex+0x512/0x640
[   95.044787][ T7281]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   95.044802][ T7281]  should_failslab+0xc2/0x120
[   95.044815][ T7281]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   95.044828][ T7281]  ? __alloc_skb+0x2b2/0x380
[   95.044843][ T7281]  __alloc_skb+0x2b2/0x380
[   95.044856][ T7281]  ? __pfx___alloc_skb+0x10/0x10
[   95.044870][ T7281]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   95.044888][ T7281]  netlink_alloc_large_skb+0x69/0x130
[   95.044903][ T7281]  netlink_sendmsg+0x6a1/0xdd0
[   95.044932][ T7281]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.044948][ T7281]  ? __import_iovec+0x1c8/0x660
[   95.044964][ T7281]  ____sys_sendmsg+0xa95/0xc70
[   95.044975][ T7281]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.044984][ T7281]  ? get_compat_msghdr+0x11a/0x170
[   95.045003][ T7281]  ___sys_sendmsg+0x134/0x1d0
[   95.045018][ T7281]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.045047][ T7281]  __sys_sendmsg+0x16d/0x220
[   95.045061][ T7281]  ? __pfx___sys_sendmsg+0x10/0x10
[   95.045080][ T7281]  ? rcu_is_watching+0x12/0xc0
[   95.045096][ T7281]  __do_fast_syscall_32+0x73/0x120
[   95.045112][ T7281]  do_fast_syscall_32+0x32/0x80
[   95.045127][ T7281]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.045140][ T7281] RIP: 0023:0xf707e579
[   95.045148][ T7281] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.045158][ T7281] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   95.045168][ T7281] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[   95.045174][ T7281] RDX: 0000000000008010 RSI: 0000000000000000 RDI: 0000000000000000
[   95.045180][ T7281] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.045185][ T7281] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.045191][ T7281] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.045203][ T7281]  </TASK>
[   95.204745][ T7283] =======================================================
[   95.204745][ T7283] WARNING: The mand mount option has been deprecated and
[   95.204745][ T7283]          and is ignored by this kernel. Remove the mand
[   95.204745][ T7283]          option from the mount to silence this warning.
[   95.204745][ T7283] =======================================================
[   95.297101][ T7292] FAULT_INJECTION: forcing a failure.
[   95.297101][ T7292] name failslab, interval 1, probability 0, space 0, times 0
[   95.301635][ T7292] CPU: 2 UID: 0 PID: 7292 Comm: syz.3.320 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[   95.301656][ T7292] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.301666][ T7292] Call Trace:
[   95.301673][ T7292]  <TASK>
[   95.301699][ T7292]  dump_stack_lvl+0x16c/0x1f0
[   95.301729][ T7292]  should_fail_ex+0x512/0x640
[   95.301748][ T7292]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   95.301771][ T7292]  should_failslab+0xc2/0x120
[   95.301793][ T7292]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   95.301817][ T7292]  ? __alloc_skb+0x2b2/0x380
[   95.301841][ T7292]  __alloc_skb+0x2b2/0x380
[   95.301861][ T7292]  ? __pfx___alloc_skb+0x10/0x10
[   95.301888][ T7292]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   95.301915][ T7292]  netlink_alloc_large_skb+0x69/0x130
[   95.301940][ T7292]  netlink_sendmsg+0x6a1/0xdd0
[   95.301965][ T7292]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.301989][ T7292]  ? __import_iovec+0x1c8/0x660
[   95.302016][ T7292]  ____sys_sendmsg+0xa95/0xc70
[   95.302036][ T7292]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.302051][ T7292]  ? get_compat_msghdr+0x11a/0x170
[   95.302082][ T7292]  ___sys_sendmsg+0x134/0x1d0
[   95.302104][ T7292]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.302155][ T7292]  __sys_sendmsg+0x16d/0x220
[   95.302178][ T7292]  ? __pfx___sys_sendmsg+0x10/0x10
[   95.302210][ T7292]  ? rcu_is_watching+0x12/0xc0
[   95.302231][ T7292]  __do_fast_syscall_32+0x73/0x120
[   95.302258][ T7292]  do_fast_syscall_32+0x32/0x80
[   95.302282][ T7292]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.302302][ T7292] RIP: 0023:0xf7fc6579
[   95.302315][ T7292] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.302335][ T7292] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   95.302351][ T7292] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000540
[   95.302361][ T7292] RDX: 0000000000008104 RSI: 0000000000000000 RDI: 0000000000000000
[   95.302371][ T7292] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.302381][ T7292] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.302390][ T7292] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.302408][ T7292]  </TASK>
[   95.376051][    C2] hpet_rtc_timer_reinit: 4573 callbacks suppressed
[   95.376060][    C2] hpet: Lost 3 RTC interrupts
[   95.487490][ T1322] libceph: connect (1)[c::]:6789 error -101
[   95.489437][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[   95.744534][ T1322] libceph: connect (1)[c::]:6789 error -101
[   95.749123][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[   95.942094][ T7301] ceph: No mds server is up or the cluster is laggy
[   96.298542][ T7312] netlink: 16 bytes leftover after parsing attributes in process `syz.2.324'.
[   96.484490][ T3231] libceph: connect (1)[c::]:6789 error -101
[   96.486495][ T3231] libceph: mon0 (1)[c::]:6789 connect error
[   96.543923][ T7314] ceph: No mds server is up or the cluster is laggy
[   96.585393][ T7320] ceph: No mds server is up or the cluster is laggy
[   96.645690][ T7330] FAULT_INJECTION: forcing a failure.
[   96.645690][ T7330] name failslab, interval 1, probability 0, space 0, times 0
[   96.649707][ T7330] CPU: 0 UID: 0 PID: 7330 Comm: syz.2.328 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[   96.649720][ T7330] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.649727][ T7330] Call Trace:
[   96.649731][ T7330]  <TASK>
[   96.649735][ T7330]  dump_stack_lvl+0x16c/0x1f0
[   96.649753][ T7330]  should_fail_ex+0x512/0x640
[   96.649765][ T7330]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   96.649780][ T7330]  should_failslab+0xc2/0x120
[   96.649794][ T7330]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   96.649806][ T7330]  ? __alloc_skb+0x2b2/0x380
[   96.649822][ T7330]  __alloc_skb+0x2b2/0x380
[   96.649834][ T7330]  ? __pfx___alloc_skb+0x10/0x10
[   96.649848][ T7330]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   96.649865][ T7330]  netlink_alloc_large_skb+0x69/0x130
[   96.649881][ T7330]  netlink_sendmsg+0x6a1/0xdd0
[   96.649898][ T7330]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.649913][ T7330]  ? __import_iovec+0x1c8/0x660
[   96.649930][ T7330]  ____sys_sendmsg+0xa95/0xc70
[   96.649942][ T7330]  ? __pfx_____sys_sendmsg+0x10/0x10
[   96.649951][ T7330]  ? get_compat_msghdr+0x11a/0x170
[   96.649969][ T7330]  ___sys_sendmsg+0x134/0x1d0
[   96.649983][ T7330]  ? __pfx____sys_sendmsg+0x10/0x10
[   96.650024][ T7330]  __sys_sendmsg+0x16d/0x220
[   96.650037][ T7330]  ? __pfx___sys_sendmsg+0x10/0x10
[   96.650055][ T7330]  ? rcu_is_watching+0x12/0xc0
[   96.650070][ T7330]  ? rcu_is_watching+0x12/0xc0
[   96.650082][ T7330]  __do_fast_syscall_32+0x73/0x120
[   96.650098][ T7330]  do_fast_syscall_32+0x32/0x80
[   96.650112][ T7330]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   96.650126][ T7330] RIP: 0023:0xf7f72579
[   96.650134][ T7330] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   96.650143][ T7330] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   96.650153][ T7330] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000480
[   96.650159][ T7330] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   96.650165][ T7330] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   96.650170][ T7330] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   96.650176][ T7330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   96.650188][ T7330]  </TASK>
[   97.082148][ T7339] fuse: Bad value for 'fd'
[   97.882786][   T40] audit: type=1326 audit(1745613590.217:4587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7340 comm="syz.1.332" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f04579 code=0x7fc00000
[   98.538362][ T7378] FAULT_INJECTION: forcing a failure.
[   98.538362][ T7378] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   98.545286][ T7378] CPU: 3 UID: 0 PID: 7378 Comm: syz.1.340 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[   98.545301][ T7378] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   98.545308][ T7378] Call Trace:
[   98.545312][ T7378]  <TASK>
[   98.545316][ T7378]  dump_stack_lvl+0x16c/0x1f0
[   98.545335][ T7378]  should_fail_ex+0x512/0x640
[   98.545349][ T7378]  _copy_from_user+0x2e/0xd0
[   98.545363][ T7378]  move_addr_to_kernel+0x65/0x170
[   98.545375][ T7378]  __sys_connect+0xaf/0x170
[   98.545386][ T7378]  ? __pfx___sys_connect+0x10/0x10
[   98.545402][ T7378]  ? __pfx_ksys_write+0x10/0x10
[   98.545416][ T7378]  __ia32_sys_connect+0x71/0xb0
[   98.545427][ T7378]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   98.545443][ T7378]  __do_fast_syscall_32+0x73/0x120
[   98.545458][ T7378]  do_fast_syscall_32+0x32/0x80
[   98.545473][ T7378]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.545486][ T7378] RIP: 0023:0xf7f04579
[   98.545495][ T7378] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   98.545504][ T7378] RSP: 002b:00000000f500555c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[   98.545513][ T7378] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000080000040
[   98.545520][ T7378] RDX: 000000000000001c RSI: 0000000000000000 RDI: 0000000000000000
[   98.545525][ T7378] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   98.545531][ T7378] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   98.545536][ T7378] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.545548][ T7378]  </TASK>
[   98.545804][ T7380] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[   98.887493][ T7393] netlink: 16 bytes leftover after parsing attributes in process `syz.1.345'.
[   99.073905][   T40] audit: type=1800 audit(1745613591.407:4588): pid=7390 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.344" name="cgroup.controllers" dev="tmpfs" ino=500 res=0 errno=0
[   99.133125][ T7403] netlink: 16 bytes leftover after parsing attributes in process `syz.1.346'.
[   99.581805][ T7412] netlink: 8 bytes leftover after parsing attributes in process `syz.0.349'.
[   99.593628][ T7414] MTD: Attempt to mount non-MTD device "/dev/sr0"
[   99.669753][ T7418] "syz.0.352" (7418) uses obsolete ecb(arc4) skcipher
[   99.670830][ T7423] netlink: 4 bytes leftover after parsing attributes in process `syz.2.353'.
[   99.706844][ T7414] /dev/sr0: Can't open blockdev
[   99.743676][ T7429] can0: slcan on ptm2.
[   99.935840][ T7432] can0 (unregistered): slcan off ptm2.
[  100.550913][ T7425] ALSA: mixer_oss: invalid OSS volume ','
[  100.633717][ T7460] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.638653][ T7460] bond0: (slave rose0): Enslaving as an active interface with an up link
[  100.707103][ T7467] syzkaller1: entered promiscuous mode
[  100.708904][ T7467] syzkaller1: entered allmulticast mode
[  100.739241][ T7470] lo speed is unknown, defaulting to 1000
[  101.424782][ T7498] FAULT_INJECTION: forcing a failure.
[  101.424782][ T7498] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  101.430069][ T7498] CPU: 0 UID: 0 PID: 7498 Comm: syz.3.364 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  101.430096][ T7498] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  101.430103][ T7498] Call Trace:
[  101.430107][ T7498]  <TASK>
[  101.430112][ T7498]  dump_stack_lvl+0x16c/0x1f0
[  101.430130][ T7498]  should_fail_ex+0x512/0x640
[  101.430145][ T7498]  should_fail_alloc_page+0xe7/0x130
[  101.430160][ T7498]  prepare_alloc_pages+0x3c2/0x610
[  101.430177][ T7498]  ? __bfs+0x145/0x290
[  101.430190][ T7498]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  101.430205][ T7498]  ? __lock_acquire+0x5ca/0x1ba0
[  101.430221][ T7498]  ? __lock_acquire+0x5ca/0x1ba0
[  101.430235][ T7498]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  101.430249][ T7498]  ? __lock_acquire+0x5ca/0x1ba0
[  101.430266][ T7498]  ? __lock_acquire+0x5ca/0x1ba0
[  101.430280][ T7498]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  101.430296][ T7498]  ? policy_nodemask+0xea/0x4e0
[  101.430315][ T7498]  alloc_pages_mpol+0x1fb/0x550
[  101.430329][ T7498]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  101.430342][ T7498]  ? __lock_acquire+0x5ca/0x1ba0
[  101.430358][ T7498]  folio_alloc_mpol_noprof+0x36/0x2f0
[  101.430374][ T7498]  vma_alloc_folio_noprof+0xed/0x1e0
[  101.430389][ T7498]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  101.430408][ T7498]  do_pte_missing+0x223d/0x3fb0
[  101.430424][ T7498]  __handle_mm_fault+0x103d/0x2a40
[  101.430440][ T7498]  ? __pfx___handle_mm_fault+0x10/0x10
[  101.430459][ T7498]  ? find_vma+0xbf/0x140
[  101.430473][ T7498]  ? __pfx_find_vma+0x10/0x10
[  101.430489][ T7498]  handle_mm_fault+0x3fe/0xad0
[  101.430502][ T7498]  do_user_addr_fault+0x7a6/0x1370
[  101.430516][ T7498]  ? rcu_is_watching+0x12/0xc0
[  101.430528][ T7498]  exc_page_fault+0x5c/0xc0
[  101.430542][ T7498]  asm_exc_page_fault+0x26/0x30
[  101.430552][ T7498] RIP: 0010:compat_filldir+0x29a/0x650
[  101.430568][ T7498] Code: 00 00 e8 49 42 84 ff 0f 01 cb 0f ae e8 8b 44 24 08 41 89 47 04 e8 36 42 84 ff 4c 8b 7c 24 30 8b 04 24 41 89 07 e8 26 42 84 ff <66> 45 89 67 08 e8 1c 42 84 ff 49 63 cc 0f b6 74 24 24 48 89 0c 24
[  101.430577][ T7498] RSP: 0018:ffffc9000e1afa00 EFLAGS: 00050293
[  101.430586][ T7498] RAX: 0000000000000000 RBX: ffffc9000e1afe70 RCX: ffffffff82366796
[  101.430592][ T7498] RDX: ffff888023f94880 RSI: ffffffff823667ca RDI: 0000000000000006
[  101.430598][ T7498] RBP: 0000000000000011 R08: 0000000000000006 R09: 0000000080001fe0
[  101.430604][ T7498] R10: 000000008000201c R11: 0000000000000000 R12: 0000000000000020
[  101.430609][ T7498] R13: 000000008000201c R14: ffffc9000e1afe8c R15: 0000000080001ffc
[  101.430619][ T7498]  ? compat_filldir+0x266/0x650
[  101.430633][ T7498]  ? compat_filldir+0x29a/0x650
[  101.430654][ T7498]  proc_fill_cache+0x1d2/0x470
[  101.430666][ T7498]  ? __pfx_proc_map_files_instantiate+0x10/0x10
[  101.430677][ T7498]  ? __pfx_proc_fill_cache+0x10/0x10
[  101.430687][ T7498]  ? __pfx_vsnprintf+0x10/0x10
[  101.430700][ T7498]  ? mas_next_node+0x7e0/0xf50
[  101.430717][ T7498]  ? snprintf+0xc7/0x100
[  101.430733][ T7498]  ? __pfx___might_resched+0x10/0x10
[  101.430749][ T7498]  proc_map_files_readdir+0x918/0xb40
[  101.430764][ T7498]  ? __pfx_proc_map_files_readdir+0x10/0x10
[  101.430781][ T7498]  ? down_read_killable+0x220/0x4b0
[  101.430791][ T7498]  ? __schedule+0x2920/0x5de0
[  101.430804][ T7498]  ? apparmor_file_permission+0x251/0x400
[  101.430819][ T7498]  iterate_dir+0x293/0xb40
[  101.430836][ T7498]  __ia32_compat_sys_getdents+0x14d/0x2c0
[  101.430852][ T7498]  ? __pfx___ia32_compat_sys_getdents+0x10/0x10
[  101.430868][ T7498]  ? fput+0x70/0xf0
[  101.430880][ T7498]  ? __pfx_compat_filldir+0x10/0x10
[  101.430895][ T7498]  ? rcu_is_watching+0x12/0xc0
[  101.430905][ T7498]  ? rcu_is_watching+0x12/0xc0
[  101.430917][ T7498]  __do_fast_syscall_32+0x73/0x120
[  101.430933][ T7498]  do_fast_syscall_32+0x32/0x80
[  101.430948][ T7498]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.430960][ T7498] RIP: 0023:0xf7fc6579
[  101.430967][ T7498] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  101.430976][ T7498] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 000000000000008d
[  101.430985][ T7498] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001fc0
[  101.430990][ T7498] RDX: 00000000000000b8 RSI: 0000000000000000 RDI: 0000000000000000
[  101.430996][ T7498] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  101.431001][ T7498] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  101.431007][ T7498] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.431029][ T7498]  </TASK>
[  101.700061][   T34] libceph: connect (1)[c::]:6789 error -101
[  101.702737][   T34] libceph: mon0 (1)[c::]:6789 connect error
[  101.790806][ T7502] ceph: No mds server is up or the cluster is laggy
[  101.847142][ T1322] libceph: connect (1)[c::]:6789 error -101
[  101.851030][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[  101.965840][ T7506] ceph: No mds server is up or the cluster is laggy
[  101.975359][ T6008] IPVS: starting estimator thread 0...
[  102.105062][ T1322] libceph: connect (1)[c::]:6789 error -101
[  102.107072][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[  102.133932][ T7523] IPVS: using max 48 ests per chain, 115200 per kthread
[  102.552528][ T7538] FAULT_INJECTION: forcing a failure.
[  102.552528][ T7538] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.556919][ T7538] CPU: 3 UID: 0 PID: 7538 Comm: syz.2.374 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  102.556933][ T7538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  102.556939][ T7538] Call Trace:
[  102.556943][ T7538]  <TASK>
[  102.556947][ T7538]  dump_stack_lvl+0x16c/0x1f0
[  102.556966][ T7538]  should_fail_ex+0x512/0x640
[  102.556981][ T7538]  _copy_from_user+0x2e/0xd0
[  102.556994][ T7538]  __ia32_compat_sys_socketcall+0x187/0x770
[  102.557010][ T7538]  ? __fget_files+0x20e/0x3c0
[  102.557024][ T7538]  ? __pfx___ia32_compat_sys_socketcall+0x10/0x10
[  102.557041][ T7538]  ? fput+0x70/0xf0
[  102.557056][ T7538]  ? rcu_is_watching+0x12/0xc0
[  102.557069][ T7538]  __do_fast_syscall_32+0x73/0x120
[  102.557086][ T7538]  do_fast_syscall_32+0x32/0x80
[  102.557100][ T7538]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  102.557113][ T7538] RIP: 0023:0xf7f72579
[  102.557121][ T7538] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  102.557131][ T7538] RSP: 002b:00000000f5095430 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[  102.557140][ T7538] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f5095444
[  102.557147][ T7538] RDX: 0000000000000000 RSI: 00000000f5095560 RDI: 00000000f7402ff4
[  102.557152][ T7538] RBP: 00000000f5095560 R08: 0000000000000000 R09: 0000000000000000
[  102.557158][ T7538] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000
[  102.557164][ T7538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  102.557176][ T7538]  </TASK>
[  102.638960][ T7541] Invalid logical block size (768)
[  102.964397][ T7558] batman_adv: batadv0: Adding interface: vxlan0
[  102.966497][ T7558] batman_adv: batadv0: The MTU of interface vxlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.974674][ T7558] batman_adv: batadv0: Not using interface vxlan0 (retrying later): interface not active
[  103.471651][ T7575] netlink: 64 bytes leftover after parsing attributes in process `syz.2.384'.
[  104.496135][ T7585] netlink: 88 bytes leftover after parsing attributes in process `syz.0.386'.
[  104.515654][ T7595] netlink: 32 bytes leftover after parsing attributes in process `syz.3.390'.
[  104.568696][ T7595] syz.3.390: attempt to access beyond end of device
[  104.568696][ T7595] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  104.575467][ T7595] (syz.3.390,7595,3):ocfs2_get_sector:1714 ERROR: status = -5
[  104.578495][ T7595] (syz.3.390,7595,3):ocfs2_sb_probe:753 ERROR: status = -5
[  104.581388][ T7595] (syz.3.390,7595,3):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  104.585312][ T7595] (syz.3.390,7595,2):ocfs2_fill_super:1177 ERROR: status = -5
[  104.846361][   T24] libceph: connect (1)[c::]:6789 error -101
[  104.848668][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  104.851763][   T24] libceph: connect (1)[c::]:6789 error -101
[  104.853746][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  104.936287][ T7605] ceph: No mds server is up or the cluster is laggy
[  105.889794][ T7627] netlink: 16 bytes leftover after parsing attributes in process `syz.3.398'.
[  106.760565][ T7654] netlink: 16 bytes leftover after parsing attributes in process `syz.0.405'.
[  107.071139][ T7666] netlink: 16 bytes leftover after parsing attributes in process `syz.0.408'.
[  108.384380][ T7695] netlink: 16 bytes leftover after parsing attributes in process `syz.0.415'.
[  108.777968][ T7702] bridge_slave_0: left allmulticast mode
[  108.779826][ T7702] bridge_slave_0: left promiscuous mode
[  108.782457][ T7702] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.783579][ T5996] IPVS: starting estimator thread 0...
[  108.791421][ T7702] bridge_slave_1: left allmulticast mode
[  108.796309][ T7702] bridge_slave_1: left promiscuous mode
[  108.798853][ T7702] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.805092][ T7702] bond0: (slave bond_slave_0): Releasing backup interface
[  108.811203][ T7702] bond0: (slave bond_slave_1): Releasing backup interface
[  108.837017][ T7702] team0: Port device team_slave_0 removed
[  108.843502][ T7702] team0: Port device team_slave_1 removed
[  108.847375][ T7702] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.850442][ T7702] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.855465][ T7702] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.855679][ T7707] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  108.858460][ T7702] batman_adv: batadv0: Removing interface: batadv_slave_1
[  108.875007][ T6008] lo speed is unknown, defaulting to 1000
[  108.886311][ T7704] IPVS: using max 48 ests per chain, 115200 per kthread
[  108.886998][ T7706] lo speed is unknown, defaulting to 1000
[  109.109236][ T7717] netlink: 4 bytes leftover after parsing attributes in process `syz.0.421'.
[  109.672850][ T7731] netlink: 44 bytes leftover after parsing attributes in process `syz.3.424'.
[  111.458350][ T7774] netlink: 16 bytes leftover after parsing attributes in process `syz.0.435'.
[  111.605699][ T1322] libceph: connect (1)[c::]:6789 error -101
[  111.607719][ T1322] libceph: mon0 (1)[c::]:6789 connect error
[  111.767023][ T7782] ceph: No mds server is up or the cluster is laggy
[  112.539009][   T10] libceph: connect (1)[c::]:6789 error -101
[  112.541146][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  112.544137][   T10] libceph: connect (1)[c::]:6789 error -101
[  112.546245][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  112.626566][ T7812] ceph: No mds server is up or the cluster is laggy
[  112.999320][   T40] audit: type=1326 audit(1745613605.337:4589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7829 comm="syz.0.447" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  113.008506][   T40] audit: type=1326 audit(1745613605.347:4590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7829 comm="syz.0.447" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf707e579 code=0x7ffc0000
[  113.016679][ T7832] netlink: 16 bytes leftover after parsing attributes in process `syz.1.446'.
[  113.017972][   T40] audit: type=1326 audit(1745613605.347:4591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7829 comm="syz.0.447" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  113.028568][   T40] audit: type=1326 audit(1745613605.347:4592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7829 comm="syz.0.447" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  113.039962][   T40] audit: type=1326 audit(1745613605.347:4593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7829 comm="syz.0.447" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf707e579 code=0x7ffc0000
[  113.047510][   T40] audit: type=1326 audit(1745613605.347:4594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7829 comm="syz.0.447" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  113.056991][   T40] audit: type=1326 audit(1745613605.347:4595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7829 comm="syz.0.447" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  113.234252][ T7841] FAULT_INJECTION: forcing a failure.
[  113.234252][ T7841] name failslab, interval 1, probability 0, space 0, times 0
[  113.238477][ T7841] CPU: 0 UID: 0 PID: 7841 Comm: syz.3.449 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  113.238491][ T7841] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.238497][ T7841] Call Trace:
[  113.238501][ T7841]  <TASK>
[  113.238505][ T7841]  dump_stack_lvl+0x16c/0x1f0
[  113.238525][ T7841]  should_fail_ex+0x512/0x640
[  113.238538][ T7841]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  113.238554][ T7841]  should_failslab+0xc2/0x120
[  113.238571][ T7841]  __kmalloc_cache_noprof+0x6a/0x3e0
[  113.238582][ T7841]  ? assoc_array_insert+0x10c/0x3970
[  113.238598][ T7841]  assoc_array_insert+0x10c/0x3970
[  113.238617][ T7841]  ? bpf_lsm_key_permission+0x9/0x10
[  113.238645][ T7841]  ? __pfx_assoc_array_insert+0x10/0x10
[  113.238658][ T7841]  ? key_task_permission+0x2e5/0x400
[  113.238672][ T7841]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.238687][ T7841]  ? find_held_lock+0x2b/0x80
[  113.238701][ T7841]  __key_link_begin+0xf5/0x260
[  113.238717][ T7841]  request_key_and_link+0xd9f/0x1370
[  113.238733][ T7841]  ? __pfx_request_key_and_link+0x10/0x10
[  113.238745][ T7841]  ? __pfx___might_resched+0x10/0x10
[  113.238757][ T7841]  ? find_held_lock+0x2b/0x80
[  113.238769][ T7841]  ? __pfx_asymmetric_key_cmp_name+0x10/0x10
[  113.238780][ T7841]  ? __pfx_keyring_search_iterator+0x10/0x10
[  113.238797][ T7841]  ? _copy_from_user+0x59/0xd0
[  113.238813][ T7841]  __do_sys_request_key+0x23a/0x3d0
[  113.238823][ T7841]  ? __pfx___do_sys_request_key+0x10/0x10
[  113.238832][ T7841]  ? ksys_write+0x1b9/0x240
[  113.238845][ T7841]  ? rcu_is_watching+0x12/0xc0
[  113.238858][ T7841]  __do_fast_syscall_32+0x73/0x120
[  113.238874][ T7841]  do_fast_syscall_32+0x32/0x80
[  113.238889][ T7841]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.238907][ T7841] RIP: 0023:0xf7fc6579
[  113.238916][ T7841] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  113.238925][ T7841] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 000000000000011f
[  113.238935][ T7841] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000080001ffb
[  113.238941][ T7841] RDX: 0000000080001fee RSI: 0000000000000000 RDI: 0000000000000000
[  113.238947][ T7841] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.238952][ T7841] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  113.238958][ T7841] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.238971][ T7841]  </TASK>
[  113.444375][ T3231] libceph: connect (1)[c::]:6789 error -101
[  113.447989][ T3231] libceph: mon0 (1)[c::]:6789 connect error
[  113.505162][ T7857] netlink: 'syz.1.453': attribute type 10 has an invalid length.
[  113.512386][ T7857] FAULT_INJECTION: forcing a failure.
[  113.512386][ T7857] name failslab, interval 1, probability 0, space 0, times 0
[  113.517053][ T7857] CPU: 3 UID: 0 PID: 7857 Comm: syz.1.453 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  113.517067][ T7857] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.517073][ T7857] Call Trace:
[  113.517077][ T7857]  <TASK>
[  113.517081][ T7857]  dump_stack_lvl+0x16c/0x1f0
[  113.517100][ T7857]  should_fail_ex+0x512/0x640
[  113.517112][ T7857]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  113.517127][ T7857]  should_failslab+0xc2/0x120
[  113.517140][ T7857]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  113.517152][ T7857]  ? __pfx_lookup_one_len+0x10/0x10
[  113.517167][ T7857]  ? alloc_inode+0x61/0x240
[  113.517181][ T7857]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  113.517196][ T7857]  alloc_inode+0x61/0x240
[  113.517209][ T7857]  new_inode+0x22/0x1c0
[  113.517221][ T7857]  ? start_creating.part.0+0x25d/0x3a0
[  113.517236][ T7857]  debugfs_create_dir+0xdd/0x5f0
[  113.517253][ T7857]  ieee80211_debugfs_recreate_netdev+0x1d1/0x17e0
[  113.517269][ T7857]  ? __pfx_ieee80211_debugfs_recreate_netdev+0x10/0x10
[  113.517285][ T7857]  ? __pfx___might_resched+0x10/0x10
[  113.517301][ T7857]  drv_remove_interface+0x2bf/0x640
[  113.517314][ T7857]  ieee80211_do_stop+0x1781/0x2510
[  113.517334][ T7857]  ? __pfx_ieee80211_do_stop+0x10/0x10
[  113.517350][ T7857]  ? do_raw_spin_lock+0x12c/0x2b0
[  113.517365][ T7857]  ? mark_held_locks+0x49/0x80
[  113.517375][ T7851] ceph: No mds server is up or the cluster is laggy
[  113.517382][ T7857]  ieee80211_stop+0x11d/0x670
[  113.517396][ T7857]  ? __pfx_ieee80211_stop+0x10/0x10
[  113.517409][ T7857]  __dev_close_many+0x298/0x770
[  113.517421][ T7857]  ? __pfx___dev_close_many+0x10/0x10
[  113.517435][ T7857]  __dev_change_flags+0x4d8/0x720
[  113.517450][ T7857]  ? __pfx___dev_change_flags+0x10/0x10
[  113.517465][ T7857]  ? __pfx_validate_linkmsg+0x10/0x10
[  113.517480][ T7857]  netif_change_flags+0x8d/0x160
[  113.517495][ T7857]  do_setlink.constprop.0+0xddf/0x44b0
[  113.517534][ T7857]  ? __lock_acquire+0xaa4/0x1ba0
[  113.517550][ T7857]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  113.517569][ T7857]  ? __mutex_trylock_common+0xe9/0x250
[  113.517584][ T7857]  ? __pfx___mutex_trylock_common+0x10/0x10
[  113.517599][ T7857]  ? __pfx___might_resched+0x10/0x10
[  113.517611][ T7857]  ? rcu_is_watching+0x12/0xc0
[  113.517622][ T7857]  ? trace_contention_end+0xdd/0x130
[  113.517636][ T7857]  ? __mutex_lock+0x1ca/0xb90
[  113.517651][ T7857]  ? rcu_is_watching+0x12/0xc0
[  113.517661][ T7857]  ? rtnl_newlink+0x600/0x2000
[  113.517673][ T7857]  ? trace_cap_capable+0x18d/0x200
[  113.517684][ T7857]  ? __pfx___mutex_lock+0x10/0x10
[  113.517698][ T7857]  ? apparmor_capable+0x114/0x1d0
[  113.517714][ T7857]  ? netlink_ns_capable+0xfa/0x130
[  113.517730][ T7857]  rtnl_newlink+0x1446/0x2000
[  113.517748][ T7857]  ? __pfx_rtnl_newlink+0x10/0x10
[  113.517764][ T7857]  ? kasan_quarantine_put+0x10a/0x240
[  113.517774][ T7857]  ? lockdep_hardirqs_on+0x7c/0x110
[  113.517791][ T7857]  ? kfree_skbmem+0x1a4/0x1f0
[  113.517803][ T7857]  ? __lock_acquire+0x5ca/0x1ba0
[  113.517817][ T7857]  ? rcu_is_watching+0x12/0xc0
[  113.517827][ T7857]  ? trace_cap_capable+0x18d/0x200
[  113.517841][ T7857]  ? find_held_lock+0x2b/0x80
[  113.517850][ T7857]  ? __pfx_rtnl_newlink+0x10/0x10
[  113.517863][ T7857]  ? __pfx_rtnl_newlink+0x10/0x10
[  113.517876][ T7857]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  113.517895][ T7857]  ? __pfx_rtnl_newlink+0x10/0x10
[  113.517909][ T7857]  rtnetlink_rcv_msg+0x95b/0xe90
[  113.517925][ T7857]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  113.517946][ T7857]  netlink_rcv_skb+0x16a/0x440
[  113.517960][ T7857]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  113.517975][ T7857]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  113.517997][ T7857]  ? netlink_deliver_tap+0x1ae/0xd30
[  113.518014][ T7857]  netlink_unicast+0x53a/0x7f0
[  113.518030][ T7857]  ? __pfx_netlink_unicast+0x10/0x10
[  113.518048][ T7857]  netlink_sendmsg+0x8d1/0xdd0
[  113.518065][ T7857]  ? __pfx_netlink_sendmsg+0x10/0x10
[  113.518081][ T7857]  ? __import_iovec+0x1c8/0x660
[  113.518100][ T7857]  ____sys_sendmsg+0xa95/0xc70
[  113.518116][ T7857]  ? __pfx_____sys_sendmsg+0x10/0x10
[  113.518128][ T7857]  ? get_compat_msghdr+0x11a/0x170
[  113.518155][ T7857]  ___sys_sendmsg+0x134/0x1d0
[  113.518174][ T7857]  ? __pfx____sys_sendmsg+0x10/0x10
[  113.518212][ T7857]  __sys_sendmsg+0x16d/0x220
[  113.518226][ T7857]  ? __pfx___sys_sendmsg+0x10/0x10
[  113.518243][ T7857]  ? rcu_is_watching+0x12/0xc0
[  113.518254][ T7857]  ? rcu_is_watching+0x12/0xc0
[  113.518266][ T7857]  __do_fast_syscall_32+0x73/0x120
[  113.518282][ T7857]  do_fast_syscall_32+0x32/0x80
[  113.518297][ T7857]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.518310][ T7857] RIP: 0023:0xf7f04579
[  113.518319][ T7857] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  113.518328][ T7857] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  113.518338][ T7857] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000600
[  113.518345][ T7857] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  113.518350][ T7857] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.518356][ T7857] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  113.518361][ T7857] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.518374][ T7857]  </TASK>
[  113.518378][ T7857] debugfs: out of free dentries, can not create directory 'netdev:wlan1'
[  113.687778][ T7857] mac80211_hwsim hwsim9 wlan1: left allmulticast mode
[  113.694941][ T7857] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  113.698763][ T7856] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.704236][ T3231] libceph: connect (1)[c::]:6789 error -101
[  113.706776][ T3231] libceph: mon0 (1)[c::]:6789 connect error
[  114.243769][ T7875] netlink: 16 bytes leftover after parsing attributes in process `syz.1.460'.
[  114.659655][ T7886] xt_CT: You must specify a L4 protocol and not use inversions on it
[  114.723646][   T24] libceph: connect (1)[c::]:6789 error -101
[  114.729482][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  114.732757][   T24] libceph: connect (1)[c::]:6789 error -101
[  114.735128][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  114.770932][ T7887] ceph: No mds server is up or the cluster is laggy
[  115.960988][ T7926] netlink: 'syz.3.473': attribute type 2 has an invalid length.
[  115.965246][ T7926] netlink: 8 bytes leftover after parsing attributes in process `syz.3.473'.
[  116.012486][ T7929] netlink: 'syz.3.474': attribute type 10 has an invalid length.
[  116.032247][ T7929] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  116.043174][ T7928] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  116.601279][ T7938] openvswitch: netlink: Flow key attr not present in new flow.
[  116.657980][ T7943] netlink: 4 bytes leftover after parsing attributes in process `syz.3.476'.
[  117.209048][ T7955] netlink: 16 bytes leftover after parsing attributes in process `syz.0.482'.
[  117.748065][ T7963] serio: Serial port ptm2
[  118.601497][ T7972] ALSA: mixer_oss: invalid OSS volume ','
[  120.034772][ T8010] FAULT_INJECTION: forcing a failure.
[  120.034772][ T8010] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.039035][ T8010] CPU: 1 UID: 0 PID: 8010 Comm: syz.0.496 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  120.039048][ T8010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.039055][ T8010] Call Trace:
[  120.039059][ T8010]  <TASK>
[  120.039063][ T8010]  dump_stack_lvl+0x16c/0x1f0
[  120.039082][ T8010]  should_fail_ex+0x512/0x640
[  120.039101][ T8010]  _copy_from_user+0x2e/0xd0
[  120.039115][ T8010]  generic_map_lookup_batch+0x79a/0xb40
[  120.039133][ T8010]  ? __fget_files+0x204/0x3c0
[  120.039146][ T8010]  ? __pfx_generic_map_lookup_batch+0x10/0x10
[  120.039165][ T8010]  ? __pfx_generic_map_lookup_batch+0x10/0x10
[  120.039179][ T8010]  bpf_map_do_batch+0x264/0x670
[  120.039193][ T8010]  __sys_bpf+0x4afc/0x4d80
[  120.039216][ T8010]  ? __pfx___sys_bpf+0x10/0x10
[  120.039231][ T8010]  ? ksys_write+0x190/0x240
[  120.039244][ T8010]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  120.039266][ T8010]  ? fput+0x70/0xf0
[  120.039278][ T8010]  ? ksys_write+0x1b9/0x240
[  120.039291][ T8010]  ? __pfx_ksys_write+0x10/0x10
[  120.039306][ T8010]  __ia32_sys_bpf+0x76/0xe0
[  120.039316][ T8010]  __do_fast_syscall_32+0x73/0x120
[  120.039331][ T8010]  do_fast_syscall_32+0x32/0x80
[  120.039346][ T8010]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.039359][ T8010] RIP: 0023:0xf707e579
[  120.039367][ T8010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.039377][ T8010] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  120.039387][ T8010] RAX: ffffffffffffffda RBX: 0000000000000018 RCX: 0000000080000400
[  120.039393][ T8010] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  120.039398][ T8010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.039404][ T8010] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.039409][ T8010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.039421][ T8010]  </TASK>
[  120.159711][ T8012] netlink: 16 bytes leftover after parsing attributes in process `syz.0.497'.
[  120.309052][ T5991] libceph: connect (1)[c::]:6789 error -101
[  120.311002][ T5991] libceph: mon0 (1)[c::]:6789 connect error
[  120.313125][ T5991] libceph: connect (1)[c::]:6789 error -101
[  120.315087][ T5991] libceph: mon0 (1)[c::]:6789 connect error
[  120.409080][ T8020] ceph: No mds server is up or the cluster is laggy
[  120.962143][ T8044] FAULT_INJECTION: forcing a failure.
[  120.962143][ T8044] name failslab, interval 1, probability 0, space 0, times 0
[  120.966177][ T8044] CPU: 0 UID: 0 PID: 8044 Comm: syz.0.506 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  120.966190][ T8044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.966197][ T8044] Call Trace:
[  120.966201][ T8044]  <TASK>
[  120.966204][ T8044]  dump_stack_lvl+0x16c/0x1f0
[  120.966223][ T8044]  should_fail_ex+0x512/0x640
[  120.966235][ T8044]  ? __kmalloc_noprof+0xbf/0x510
[  120.966248][ T8044]  ? nla_strdup+0xc6/0x150
[  120.966261][ T8044]  should_failslab+0xc2/0x120
[  120.966274][ T8044]  __kmalloc_noprof+0xd2/0x510
[  120.966289][ T8044]  nla_strdup+0xc6/0x150
[  120.966303][ T8044]  nf_tables_newtable+0xdeb/0x1b40
[  120.966322][ T8044]  ? __pfx___nla_validate_parse+0x10/0x10
[  120.966338][ T8044]  ? __pfx_nf_tables_newtable+0x10/0x10
[  120.966357][ T8044]  ? __nla_parse+0x40/0x60
[  120.966373][ T8044]  nfnetlink_rcv_batch+0x1908/0x2350
[  120.966397][ T8044]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  120.966412][ T8044]  ? consume_skb+0xcc/0x100
[  120.966428][ T8044]  ? find_held_lock+0x2b/0x80
[  120.966440][ T8044]  ? __local_bh_enable_ip+0xa4/0x120
[  120.966453][ T8044]  ? lockdep_hardirqs_on+0x7c/0x110
[  120.966474][ T8044]  ? __pfx___dev_queue_xmit+0x10/0x10
[  120.966498][ T8044]  ? __nla_parse+0x40/0x60
[  120.966514][ T8044]  nfnetlink_rcv+0x3c1/0x430
[  120.966529][ T8044]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  120.966548][ T8044]  netlink_unicast+0x53a/0x7f0
[  120.966566][ T8044]  ? __pfx_netlink_unicast+0x10/0x10
[  120.966584][ T8044]  netlink_sendmsg+0x8d1/0xdd0
[  120.966600][ T8044]  ? __pfx_netlink_sendmsg+0x10/0x10
[  120.966616][ T8044]  ? __import_iovec+0x1c8/0x660
[  120.966632][ T8044]  ____sys_sendmsg+0xa95/0xc70
[  120.966643][ T8044]  ? __pfx_____sys_sendmsg+0x10/0x10
[  120.966652][ T8044]  ? get_compat_msghdr+0x11a/0x170
[  120.966671][ T8044]  ___sys_sendmsg+0x134/0x1d0
[  120.966685][ T8044]  ? __pfx____sys_sendmsg+0x10/0x10
[  120.966715][ T8044]  __sys_sendmsg+0x16d/0x220
[  120.966728][ T8044]  ? __pfx___sys_sendmsg+0x10/0x10
[  120.966747][ T8044]  ? rcu_is_watching+0x12/0xc0
[  120.966760][ T8044]  __do_fast_syscall_32+0x73/0x120
[  120.966776][ T8044]  do_fast_syscall_32+0x32/0x80
[  120.966790][ T8044]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.966803][ T8044] RIP: 0023:0xf707e579
[  120.966811][ T8044] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.966821][ T8044] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  120.966830][ T8044] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  120.966836][ T8044] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  120.966842][ T8044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.966847][ T8044] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.966853][ T8044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.966865][ T8044]  </TASK>
[  121.491834][ T8054] FAULT_INJECTION: forcing a failure.
[  121.491834][ T8054] name failslab, interval 1, probability 0, space 0, times 0
[  121.498497][ T8054] CPU: 0 UID: 0 PID: 8054 Comm: syz.2.508 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  121.498523][ T8054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  121.498530][ T8054] Call Trace:
[  121.498534][ T8054]  <TASK>
[  121.498538][ T8054]  dump_stack_lvl+0x16c/0x1f0
[  121.498556][ T8054]  should_fail_ex+0x512/0x640
[  121.498568][ T8054]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  121.498581][ T8054]  should_failslab+0xc2/0x120
[  121.498596][ T8054]  __kmalloc_cache_noprof+0x6a/0x3e0
[  121.498607][ T8054]  ? assoc_array_insert+0x10c/0x3970
[  121.498623][ T8054]  assoc_array_insert+0x10c/0x3970
[  121.498643][ T8054]  ? bpf_lsm_key_permission+0x9/0x10
[  121.498656][ T8054]  ? __pfx_assoc_array_insert+0x10/0x10
[  121.498668][ T8054]  ? key_task_permission+0x2e5/0x400
[  121.498683][ T8054]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.498699][ T8054]  ? find_held_lock+0x2b/0x80
[  121.498712][ T8054]  __key_link_begin+0xf5/0x260
[  121.498728][ T8054]  request_key_and_link+0xd9f/0x1370
[  121.498744][ T8054]  ? __pfx_request_key_and_link+0x10/0x10
[  121.498756][ T8054]  ? __pfx___might_resched+0x10/0x10
[  121.498768][ T8054]  ? find_held_lock+0x2b/0x80
[  121.498780][ T8054]  ? __pfx_asymmetric_key_cmp_name+0x10/0x10
[  121.498792][ T8054]  ? __pfx_keyring_search_iterator+0x10/0x10
[  121.498808][ T8054]  ? _copy_from_user+0x59/0xd0
[  121.498824][ T8054]  __do_sys_request_key+0x23a/0x3d0
[  121.498839][ T8054]  ? __pfx___do_sys_request_key+0x10/0x10
[  121.498848][ T8054]  ? ksys_write+0x1b9/0x240
[  121.498860][ T8054]  ? rcu_is_watching+0x12/0xc0
[  121.498873][ T8054]  __do_fast_syscall_32+0x73/0x120
[  121.498889][ T8054]  do_fast_syscall_32+0x32/0x80
[  121.498904][ T8054]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  121.498917][ T8054] RIP: 0023:0xf7f72579
[  121.498925][ T8054] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  121.498935][ T8054] RSP: 002b:00000000f505455c EFLAGS: 00000296 ORIG_RAX: 000000000000011f
[  121.498944][ T8054] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000080001ffb
[  121.498951][ T8054] RDX: 0000000080001fee RSI: 0000000000000000 RDI: 0000000000000000
[  121.498956][ T8054] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  121.498962][ T8054] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  121.498968][ T8054] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  121.498980][ T8054]  </TASK>
[  121.789194][ T8056] netlink: 'syz.1.509': attribute type 1 has an invalid length.
[  121.791563][ T8056] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.509'.
[  122.136568][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.139110][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.141515][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.144282][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.146815][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.149640][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.152067][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.157471][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.159938][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.162373][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.165101][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.167526][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.169989][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.172357][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.176590][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.179073][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.181487][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.184152][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.186566][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.188957][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.191381][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.193775][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.198497][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.201156][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.203594][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.206327][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.208765][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.211151][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.213541][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.216348][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.218821][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.221190][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.223608][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.226472][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.228970][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.231347][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.233945][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.236318][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.238745][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.241230][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.243716][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.247262][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.253746][  T835] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0
[  122.258537][  T835] hid-generic 0000:007F:FFFFFFFE.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  122.494092][   T40] audit: type=1804 audit(1745613614.827:4596): pid=8080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.517" name="/newroot/131/file0" dev="tmpfs" ino=730 res=1 errno=0
[  122.633946][   T57] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  122.835115][   T57] usb 5-1: config 0 has an invalid interface number: 29 but max is 0
[  122.837662][   T57] usb 5-1: config 0 has no interface number 0
[  122.839572][   T57] usb 5-1: config 0 interface 29 has no altsetting 0
[  122.843878][   T57] usb 5-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac
[  122.846672][   T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  122.849136][   T57] usb 5-1: Product: syz
[  122.850852][   T57] usb 5-1: Manufacturer: syz
[  122.852616][   T57] usb 5-1: SerialNumber: syz
[  122.855739][   T57] usb 5-1: config 0 descriptor??
[  123.060024][ T8078] netlink: 48 bytes leftover after parsing attributes in process `syz.0.518'.
[  123.076069][ T8078] netlink: 4 bytes leftover after parsing attributes in process `syz.0.518'.
[  123.168153][ T8078] hsr_slave_1 (unregistering): left promiscuous mode
[  123.241756][   T57] peak_usb 5-1:0.29 can0: unable to request usb[type=0 value=1] err=-71
[  123.244724][   T57] peak_usb 5-1:0.29: unable to read PCAN-USB X6 firmware info (err -71)
[  123.304946][   T57] peak_usb 5-1:0.29: probe with driver peak_usb failed with error -71
[  123.314121][   T57] usb 5-1: USB disconnect, device number 4
[  123.688996][ T8096] netlink: 8 bytes leftover after parsing attributes in process `syz.1.523'.
[  124.308409][ T8119] pim6reg: entered allmulticast mode
[  124.322239][ T8119] pim6reg: left allmulticast mode
[  124.541935][ T8124] pim6reg: entered allmulticast mode
[  124.560726][ T8124] pim6reg: left allmulticast mode
[  124.682557][ T8127] netlink: 16 bytes leftover after parsing attributes in process `syz.0.530'.
[  124.875478][ T8134] netlink: 40 bytes leftover after parsing attributes in process `syz.3.532'.
[  125.008989][ T8134] netlink: 28 bytes leftover after parsing attributes in process `syz.3.532'.
[  125.078200][ T8144] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  125.085626][ T8144] kvm: MWAIT instruction emulated as NOP!
[  125.239793][ T8154] could not allocate digest TFM handle cbcmac-aes-neon
[  125.598158][ T8162] input: syz0 as /devices/virtual/input/input6
[  125.643243][ T8164] netlink: 4 bytes leftover after parsing attributes in process `syz.1.541'.
[  125.781460][   T40] audit: type=1326 audit(1745613618.117:4597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8168 comm="syz.1.543" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f04579 code=0x0
[  126.298800][   T40] audit: type=1326 audit(1745613618.637:4598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8182 comm="syz.2.547" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x0
[  126.955056][ T8196] netlink: 176 bytes leftover after parsing attributes in process `syz.3.550'.
[  126.963109][ T8199] netlink: 176 bytes leftover after parsing attributes in process `syz.3.550'.
[  127.035118][ T8193] ceph: No mds server is up or the cluster is laggy
[  127.901291][ T8220] tipc: Started in network mode
[  127.902909][ T8220] tipc: Node identity ffffffff, cluster identity 4711
[  127.906908][ T8220] tipc: Node number set to 4294967295
[  128.056497][ T8220] lo speed is unknown, defaulting to 1000
[  129.049660][ T8251] netlink: 4 bytes leftover after parsing attributes in process `syz.3.562'.
[  129.115283][ T3231] libceph: connect (1)[c::]:6789 error -101
[  129.117323][ T3231] libceph: mon0 (1)[c::]:6789 connect error
[  129.144203][ T8259] pim6reg: entered allmulticast mode
[  129.149021][ T8259] pim6reg: left allmulticast mode
[  129.159567][ T8256] ceph: No mds server is up or the cluster is laggy
[  130.075773][   T40] audit: type=1326 audit(1745613622.417:4599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8278 comm="syz.3.568" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x0
[  130.469068][ T8291] pim6reg: entered allmulticast mode
[  130.527935][ T8291] pim6reg: left allmulticast mode
[  130.917461][ T8303] pim6reg: entered allmulticast mode
[  130.922788][ T8303] pim6reg: left allmulticast mode
[  131.015216][ T8304] qnx6: unable to read the first superblock
[  131.467213][ T8318] FAULT_INJECTION: forcing a failure.
[  131.467213][ T8318] name failslab, interval 1, probability 0, space 0, times 0
[  131.471606][ T8318] CPU: 0 UID: 0 PID: 8318 Comm: syz.1.578 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  131.471621][ T8318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.471627][ T8318] Call Trace:
[  131.471631][ T8318]  <TASK>
[  131.471635][ T8318]  dump_stack_lvl+0x16c/0x1f0
[  131.471655][ T8318]  should_fail_ex+0x512/0x640
[  131.471667][ T8318]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  131.471682][ T8318]  should_failslab+0xc2/0x120
[  131.471697][ T8318]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  131.471709][ T8318]  ? alloc_unbound_pwq+0x3ff/0xe10
[  131.471727][ T8318]  alloc_unbound_pwq+0x3ff/0xe10
[  131.471742][ T8318]  apply_wqattrs_prepare+0x8a0/0xbd0
[  131.471759][ T8318]  apply_workqueue_attrs_locked+0x64/0xe0
[  131.471773][ T8318]  __alloc_workqueue+0x1007/0x1810
[  131.471789][ T8318]  ? loop_configure+0x1d8/0x1910
[  131.471803][ T8318]  alloc_workqueue+0xd2/0x200
[  131.471816][ T8318]  ? __pfx_alloc_workqueue+0x10/0x10
[  131.471837][ T8318]  loop_configure+0x1095/0x1910
[  131.471851][ T8318]  ? __lock_acquire+0x5ca/0x1ba0
[  131.471871][ T8318]  ? __lock_acquire+0xaa4/0x1ba0
[  131.471886][ T8318]  ? __pfx_loop_configure+0x10/0x10
[  131.471910][ T8318]  lo_ioctl+0xea8/0x27e0
[  131.471923][ T8318]  ? __pfx_stack_trace_save+0x10/0x10
[  131.471934][ T8318]  ? stack_depot_save_flags+0x28/0xa50
[  131.471947][ T8318]  ? __lock_acquire+0xaa4/0x1ba0
[  131.471966][ T8318]  ? kasan_save_stack+0x42/0x60
[  131.471977][ T8318]  ? kasan_save_stack+0x33/0x60
[  131.471987][ T8318]  ? kasan_save_track+0x14/0x30
[  131.471998][ T8318]  ? kasan_save_free_info+0x3b/0x60
[  131.472012][ T8318]  ? __kasan_slab_free+0x51/0x70
[  131.472023][ T8318]  ? kfree+0x2b6/0x4d0
[  131.472032][ T8318]  ? tomoyo_path_number_perm+0x470/0x580
[  131.472044][ T8318]  ? security_file_ioctl_compat+0x9b/0x240
[  131.472057][ T8318]  ? __ia32_compat_sys_ioctl+0xc3/0x360
[  131.472072][ T8318]  ? __do_fast_syscall_32+0x73/0x120
[  131.472086][ T8318]  ? do_fast_syscall_32+0x32/0x80
[  131.472100][ T8318]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  131.472114][ T8318]  ? __pfx_lo_ioctl+0x10/0x10
[  131.472139][ T8318]  ? kasan_quarantine_put+0x10a/0x240
[  131.472150][ T8318]  ? lockdep_hardirqs_on+0x7c/0x110
[  131.472165][ T8318]  ? find_held_lock+0x2b/0x80
[  131.472176][ T8318]  ? tomoyo_path_number_perm+0x295/0x580
[  131.472190][ T8318]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  131.472222][ T8318]  lo_compat_ioctl+0xb9/0x170
[  131.472234][ T8318]  ? __pfx_lo_compat_ioctl+0x10/0x10
[  131.472246][ T8318]  compat_blkdev_ioctl+0x2eb/0x7a0
[  131.472257][ T8318]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  131.472266][ T8318]  ? __fput_deferred+0x300/0x370
[  131.472282][ T8318]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  131.472292][ T8318]  __ia32_compat_sys_ioctl+0x24c/0x360
[  131.472309][ T8318]  __do_fast_syscall_32+0x73/0x120
[  131.472324][ T8318]  do_fast_syscall_32+0x32/0x80
[  131.472339][ T8318]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  131.472352][ T8318] RIP: 0023:0xf7f04579
[  131.472359][ T8318] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  131.472369][ T8318] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  131.472379][ T8318] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004c0a
[  131.472385][ T8318] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  131.472391][ T8318] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  131.472397][ T8318] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  131.472403][ T8318] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  131.472415][ T8318]  </TASK>
[  131.685544][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.688912][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.692218][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.697636][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.700173][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.702672][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.705881][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.708345][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.710821][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.713254][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.720327][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.733066][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.735837][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.738343][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.740831][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.743310][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.746024][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.748516][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.752096][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.756943][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.759448][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.762003][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.764837][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.767447][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.770024][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.772458][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.776194][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.778663][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.781077][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.784942][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.787664][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.793707][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.798775][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.801253][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.804106][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.806743][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.809403][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.812047][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.821048][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.823452][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.825988][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.828338][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.830700][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  131.833865][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  131.940890][ T8332] netlink: 4 bytes leftover after parsing attributes in process `syz.2.583'.
[  132.286733][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  132.493681][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.496578][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.499577][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.515288][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.517639][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.519983][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.524332][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.527585][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.529943][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.532444][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.534983][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.537237][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.539831][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.542962][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.545545][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.548092][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.550589][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.552936][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.555827][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.558127][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.560400][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.562955][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.565447][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.567814][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.570321][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.572608][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.577590][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.580001][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.582323][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.586893][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.589177][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.591490][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.709225][ T8358] devtmpfs: Cannot change global quota limit on remount
[  132.773590][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.780973][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.783379][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.785871][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.788234][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.790612][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.792983][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.795602][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.797959][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.800343][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.802702][   T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0
[  132.812625][   T10] hid-generic 0000:007F:FFFFFFFE.0006: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  132.907701][ T8355] ceph: No mds server is up or the cluster is laggy
[  133.086908][ T8371] netlink: 16 bytes leftover after parsing attributes in process `syz.1.593'.
[  133.265022][ T8379] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.595'.
[  133.342618][ T8381] netlink: 16 bytes leftover after parsing attributes in process `syz.3.596'.
[  133.429534][ T8386] lo speed is unknown, defaulting to 1000
[  133.711037][ T8391] netlink: 4 bytes leftover after parsing attributes in process `syz.0.599'.
[  134.132816][ T8410] ceph: No mds server is up or the cluster is laggy
[  134.476980][ T8432] netlink: 8 bytes leftover after parsing attributes in process `syz.2.612'.
[  134.479672][ T8432] netlink: 20 bytes leftover after parsing attributes in process `syz.2.612'.
[  134.482409][ T8432] FAULT_INJECTION: forcing a failure.
[  134.482409][ T8432] name failslab, interval 1, probability 0, space 0, times 0
[  134.486869][ T8432] CPU: 3 UID: 0 PID: 8432 Comm: syz.2.612 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  134.486883][ T8432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.486890][ T8432] Call Trace:
[  134.486894][ T8432]  <TASK>
[  134.486897][ T8432]  dump_stack_lvl+0x16c/0x1f0
[  134.486916][ T8432]  should_fail_ex+0x512/0x640
[  134.486929][ T8432]  ? __kvmalloc_node_noprof+0x122/0x600
[  134.486942][ T8432]  should_failslab+0xc2/0x120
[  134.486956][ T8432]  __kvmalloc_node_noprof+0x135/0x600
[  134.486968][ T8432]  ? rcu_is_watching+0x12/0xc0
[  134.486978][ T8432]  ? alloc_netdev_mqs+0xd2/0x1570
[  134.486995][ T8432]  ? __pfx_macvlan_setup+0x10/0x10
[  134.487011][ T8432]  ? alloc_netdev_mqs+0xd2/0x1570
[  134.487024][ T8432]  alloc_netdev_mqs+0xd2/0x1570
[  134.487042][ T8432]  rtnl_create_link+0xc10/0xfa0
[  134.487058][ T8432]  rtnl_newlink+0xb69/0x2000
[  134.487077][ T8432]  ? __pfx_rtnl_newlink+0x10/0x10
[  134.487097][ T8432]  ? kfree_skbmem+0x1a4/0x1f0
[  134.487111][ T8432]  ? rcu_is_watching+0x12/0xc0
[  134.487121][ T8432]  ? trace_cap_capable+0x18d/0x200
[  134.487136][ T8432]  ? find_held_lock+0x2b/0x80
[  134.487147][ T8432]  ? __pfx_rtnl_newlink+0x10/0x10
[  134.487160][ T8432]  ? __pfx_rtnl_newlink+0x10/0x10
[  134.487173][ T8432]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  134.487188][ T8432]  ? __pfx_rtnl_newlink+0x10/0x10
[  134.487202][ T8432]  rtnetlink_rcv_msg+0x95b/0xe90
[  134.487218][ T8432]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  134.487239][ T8432]  netlink_rcv_skb+0x16a/0x440
[  134.487254][ T8432]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  134.487269][ T8432]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  134.487291][ T8432]  ? netlink_deliver_tap+0x1ae/0xd30
[  134.487308][ T8432]  netlink_unicast+0x53a/0x7f0
[  134.487324][ T8432]  ? __pfx_netlink_unicast+0x10/0x10
[  134.487342][ T8432]  netlink_sendmsg+0x8d1/0xdd0
[  134.487359][ T8432]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.487375][ T8432]  ? __import_iovec+0x1c8/0x660
[  134.487392][ T8432]  ____sys_sendmsg+0xa95/0xc70
[  134.487403][ T8432]  ? __pfx_____sys_sendmsg+0x10/0x10
[  134.487412][ T8432]  ? get_compat_msghdr+0x11a/0x170
[  134.487431][ T8432]  ___sys_sendmsg+0x134/0x1d0
[  134.487445][ T8432]  ? __pfx____sys_sendmsg+0x10/0x10
[  134.487476][ T8432]  __sys_sendmsg+0x16d/0x220
[  134.487489][ T8432]  ? __pfx___sys_sendmsg+0x10/0x10
[  134.487509][ T8432]  ? rcu_is_watching+0x12/0xc0
[  134.487521][ T8432]  __do_fast_syscall_32+0x73/0x120
[  134.487537][ T8432]  do_fast_syscall_32+0x32/0x80
[  134.487552][ T8432]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  134.487565][ T8432] RIP: 0023:0xf7f72579
[  134.487573][ T8432] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  134.487583][ T8432] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  134.487593][ T8432] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[  134.487599][ T8432] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  134.487605][ T8432] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.487611][ T8432] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  134.487616][ T8432] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.487629][ T8432]  </TASK>
[  134.612732][ T8434] netlink: 4 bytes leftover after parsing attributes in process `syz.0.613'.
[  134.756997][ T8444] FAULT_INJECTION: forcing a failure.
[  134.756997][ T8444] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.763083][ T8444] CPU: 1 UID: 0 PID: 8444 Comm: syz.0.616 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  134.763106][ T8444] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.763118][ T8444] Call Trace:
[  134.763124][ T8444]  <TASK>
[  134.763132][ T8444]  dump_stack_lvl+0x16c/0x1f0
[  134.763159][ T8444]  should_fail_ex+0x512/0x640
[  134.763181][ T8444]  _copy_from_user+0x2e/0xd0
[  134.763205][ T8444]  get_compat_msghdr+0xa7/0x170
[  134.763226][ T8444]  ? __pfx_get_compat_msghdr+0x10/0x10
[  134.763251][ T8444]  ? __lock_acquire+0x5ca/0x1ba0
[  134.763277][ T8444]  ___sys_recvmsg+0x191/0x1a0
[  134.763300][ T8444]  ? __pfx____sys_recvmsg+0x10/0x10
[  134.763332][ T8444]  ? get_pid_task+0xb0/0x250
[  134.763362][ T8444]  do_recvmmsg+0x568/0x740
[  134.763388][ T8444]  ? __pfx_do_recvmmsg+0x10/0x10
[  134.763426][ T8444]  ? __fget_files+0x20e/0x3c0
[  134.763446][ T8444]  __sys_recvmmsg+0x21c/0x280
[  134.763469][ T8444]  ? __pfx___sys_recvmmsg+0x10/0x10
[  134.763491][ T8444]  ? __pfx_ksys_write+0x10/0x10
[  134.763514][ T8444]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  134.763537][ T8444]  ? lockdep_hardirqs_on+0x7c/0x110
[  134.763558][ T8444]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  134.763582][ T8444]  __do_fast_syscall_32+0x73/0x120
[  134.763609][ T8444]  do_fast_syscall_32+0x32/0x80
[  134.763634][ T8444]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  134.763654][ T8444] RIP: 0023:0xf707e579
[  134.763669][ T8444] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  134.763692][ T8444] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  134.763709][ T8444] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080003780
[  134.763720][ T8444] RDX: 0000000000000003 RSI: 0000000040000000 RDI: 0000000000000000
[  134.763731][ T8444] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.763740][ T8444] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  134.763750][ T8444] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.763772][ T8444]  </TASK>
[  135.758080][ T8459] netlink: 16 bytes leftover after parsing attributes in process `syz.2.622'.
[  135.801949][   T24] libceph: connect (1)[c::]:6789 error -101
[  135.805239][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  135.856028][ T8461] ceph: No mds server is up or the cluster is laggy
[  135.976347][  T835] libceph: connect (1)[c::]:6789 error -101
[  135.996820][  T835] libceph: mon0 (1)[c::]:6789 connect error
[  136.014132][ T8469] ceph: No mds server is up or the cluster is laggy
[  136.070788][ T8470] ceph: No mds server is up or the cluster is laggy
[  137.340988][ T8512] 9pnet_virtio: no channels available for device 127.0.0.1
[  137.347874][ T8512] tipc: Started in network mode
[  137.349493][ T8512] tipc: Node identity ac14140f, cluster identity 4711
[  137.352110][ T8512] tipc: New replicast peer: 255.255.255.255
[  137.354889][ T8512] tipc: Enabled bearer <udp:syz2>, priority 10
[  137.391337][ T5991] libceph: connect (1)[c::]:6789 error -101
[  137.394504][ T5991] libceph: mon0 (1)[c::]:6789 connect error
[  137.450912][ T8513] ceph: No mds server is up or the cluster is laggy
[  138.493944][ T6008] tipc: Node number set to 2886997007
[  138.787548][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.789998][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.793336][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.796355][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.798847][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.801158][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.803557][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.806218][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.808604][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.810998][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.813431][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.816090][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.818425][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.820823][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.823198][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.825683][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.828055][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.830444][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.832814][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.835428][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.837810][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.840153][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.842506][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.845337][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.847728][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.850140][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.852521][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.855321][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.857723][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.860085][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.862652][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.865394][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.867786][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.870173][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.872566][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.875564][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.884952][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.887306][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.889652][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.892024][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.895506][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.897944][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.900322][  T835] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  138.910766][  T835] hid-generic 0000:007F:FFFFFFFE.0007: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  138.937925][ T8543] pim6reg: entered allmulticast mode
[  138.965617][ T8543] pim6reg: left allmulticast mode
[  139.071462][ T8546] qnx6: unable to read the first superblock
[  139.338413][ T8557] syz.1.642: vmalloc error: size 2003292160, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  139.343657][ T8557] CPU: 0 UID: 0 PID: 8557 Comm: syz.1.642 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  139.343674][ T8557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.343682][ T8557] Call Trace:
[  139.343686][ T8557]  <TASK>
[  139.343691][ T8557]  dump_stack_lvl+0x16c/0x1f0
[  139.343710][ T8557]  warn_alloc+0x248/0x3a0
[  139.343725][ T8557]  ? __pfx_warn_alloc+0x10/0x10
[  139.343738][ T8557]  ? stack_depot_save_flags+0x3e6/0xa50
[  139.343754][ T8557]  ? __vb2_queue_alloc+0x23e/0x1280
[  139.343771][ T8557]  ? kasan_save_stack+0x42/0x60
[  139.343783][ T8557]  ? kasan_save_stack+0x33/0x60
[  139.343794][ T8557]  ? kasan_save_track+0x14/0x30
[  139.343820][ T8557]  ? __kasan_kmalloc+0xaa/0xb0
[  139.343831][ T8557]  ? vb2_vmalloc_alloc+0xf9/0x3f0
[  139.343844][ T8557]  ? vb2_core_create_bufs+0x559/0xab0
[  139.343856][ T8557]  ? vb2_create_bufs+0x5e8/0x840
[  139.343865][ T8557]  ? vb2_ioctl_create_bufs+0x244/0x3e0
[  139.343879][ T8557]  __vmalloc_node_range_noprof+0x10ea/0x1540
[  139.343908][ T8557]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  139.343933][ T8557]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  139.343949][ T8557]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  139.343963][ T8557]  vmalloc_user_noprof+0x6b/0x90
[  139.343973][ T8557]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  139.343987][ T8557]  vb2_vmalloc_alloc+0x135/0x3f0
[  139.344002][ T8557]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  139.344017][ T8557]  __vb2_queue_alloc+0x8c6/0x1280
[  139.344039][ T8557]  vb2_core_create_bufs+0x559/0xab0
[  139.344055][ T8557]  ? __pfx_vb2_core_create_bufs+0x10/0x10
[  139.344071][ T8557]  ? __might_fault+0xe3/0x190
[  139.344088][ T8557]  vb2_create_bufs+0x5e8/0x840
[  139.344101][ T8557]  ? __pfx_vb2_create_bufs+0x10/0x10
[  139.344113][ T8557]  ? v4l_sanitize_colorspace+0x213/0x400
[  139.344127][ T8557]  vb2_ioctl_create_bufs+0x244/0x3e0
[  139.344139][ T8557]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  139.344155][ T8557]  vidioc_create_bufs+0x7d/0xf0
[  139.344167][ T8557]  v4l_create_bufs+0x156/0x270
[  139.344183][ T8557]  __video_do_ioctl+0xb3d/0xfc0
[  139.344202][ T8557]  ? __pfx___video_do_ioctl+0x10/0x10
[  139.344219][ T8557]  ? trace_kmalloc+0x2b/0xd0
[  139.344233][ T8557]  ? __kmalloc_noprof+0x242/0x510
[  139.344245][ T8557]  ? __sanitizer_cov_trace_const_cmp2+0x1/0x20
[  139.344261][ T8557]  video_usercopy+0x47c/0x1440
[  139.344272][ T8557]  ? __pfx___video_do_ioctl+0x10/0x10
[  139.344289][ T8557]  ? __pfx_video_usercopy+0x10/0x10
[  139.344304][ T8557]  ? hook_file_ioctl_common+0x145/0x410
[  139.344320][ T8557]  v4l2_ioctl+0x1ba/0x250
[  139.344337][ T8557]  v4l2_compat_ioctl32+0x214/0x2c0
[  139.344351][ T8557]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  139.344366][ T8557]  __ia32_compat_sys_ioctl+0x24c/0x360
[  139.344385][ T8557]  __do_fast_syscall_32+0x73/0x120
[  139.344401][ T8557]  do_fast_syscall_32+0x32/0x80
[  139.344416][ T8557]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.344429][ T8557] RIP: 0023:0xf7f04579
[  139.344438][ T8557] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.344448][ T8557] RSP: 002b:00000000f500555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  139.344458][ T8557] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c0f8565c
[  139.344465][ T8557] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  139.344471][ T8557] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  139.344477][ T8557] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  139.344483][ T8557] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.344495][ T8557]  </TASK>
[  139.458103][ T8557] Mem-Info:
[  139.459219][ T8557] active_anon:9659 inactive_anon:30 isolated_anon:0
[  139.459219][ T8557]  active_file:12047 inactive_file:40161 isolated_file:0
[  139.459219][ T8557]  unevictable:3816 dirty:3365 writeback:0
[  139.459219][ T8557]  slab_reclaimable:9653 slab_unreclaimable:56030
[  139.459219][ T8557]  mapped:28454 shmem:5341 pagetables:912
[  139.459219][ T8557]  sec_pagetables:302 bounce:0
[  139.459219][ T8557]  kernel_misc_reclaimable:0
[  139.459219][ T8557]  free:37332 free_pcp:5051 free_cma:0
[  139.473377][ T8557] Node 0 active_anon:1576kB inactive_anon:0kB active_file:64kB inactive_file:13268kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5788kB dirty:0kB writeback:0kB shmem:3656kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8656kB pagetables:560kB sec_pagetables:1112kB all_unreclaimable? yes Balloon:0kB
[  139.483631][ T8557] Node 1 active_anon:37060kB inactive_anon:120kB active_file:48124kB inactive_file:147376kB unevictable:11728kB isolated(anon):0kB isolated(file):0kB mapped:108028kB dirty:13460kB writeback:0kB shmem:17708kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:6144kB writeback_tmp:0kB kernel_stack:3640kB pagetables:2988kB sec_pagetables:96kB all_unreclaimable? no Balloon:0kB
[  139.494679][ T8557] Node 0 DMA free:3016kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:352kB local_pcp:0kB free_cma:0kB
[  139.503238][ T8557] lowmem_reserve[]: 0 290 290 290 290
[  139.505587][ T8557] Node 0 DMA32 free:30896kB boost:14336kB min:27672kB low:31004kB high:34336kB reserved_highatomic:4096KB active_anon:1576kB inactive_anon:0kB active_file:64kB inactive_file:13268kB unevictable:3536kB writepending:0kB present:1032196kB managed:297556kB mlocked:0kB bounce:0kB free_pcp:1608kB local_pcp:280kB free_cma:0kB
[  139.515091][ T8557] lowmem_reserve[]: 0 0 0 0 0
[  139.516975][ T8557] Node 1 DMA32 free:115416kB boost:0kB min:47148kB low:58932kB high:70716kB reserved_highatomic:0KB active_anon:37060kB inactive_anon:120kB active_file:48124kB inactive_file:147376kB unevictable:11728kB writepending:13460kB present:1048432kB managed:948284kB mlocked:8192kB bounce:0kB free_pcp:18344kB local_pcp:6480kB free_cma:0kB
[  139.534704][ T8557] lowmem_reserve[]: 0 0 0 0 0
[  139.544362][ T8557] Node 0 DMA: 42*4kB (U) 16*8kB (U) 14*16kB (U) 18*32kB (UE) 2*64kB (U) 0*128kB 1*256kB (E) 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 3016kB
[  139.549598][ T8557] Node 0 DMA32: 566*4kB (UME) 161*8kB (UM) 41*16kB (UMEH) 260*32kB (UMEH) 97*64kB (UMH) 21*128kB (UE) 9*256kB (UME) 8*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 30896kB
[  139.555808][ T8557] Node 1 DMA32: 844*4kB (UME) 375*8kB (UME) 399*16kB (UME) 260*32kB (UME) 250*64kB (UME) 75*128kB (UME) 52*256kB (UME) 14*512kB (UME) 17*1024kB (UM) 13*2048kB (UM) 1*4096kB (M) = 115288kB
[  139.561998][ T8557] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  139.565691][ T8557] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  139.568711][ T8557] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  139.571728][ T8557] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  139.575861][ T8557] 57549 total pagecache pages
[  139.577410][ T8557] 0 pages in swap cache
[  139.578788][ T8557] Free swap  = 124996kB
[  139.580152][ T8557] Total swap = 124996kB
[  139.582182][ T8557] 524155 pages RAM
[  139.583431][ T8557] 0 pages HighMem/MovableOnly
[  139.585078][ T8557] 208855 pages reserved
[  139.586432][ T8557] 0 pages cma reserved
[  140.481864][ T5991] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  140.633994][ T5991] usb 7-1: Using ep0 maxpacket: 8
[  140.639990][ T5991] usb 7-1: config index 0 descriptor too short (expected 5924, got 36)
[  140.650541][ T5991] usb 7-1: config 250 has an invalid interface number: 228 but max is -1
[  140.655247][ T5991] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0
[  140.661720][ T5991] usb 7-1: config 250 has no interface number 0
[  140.668487][ T5991] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  140.678570][ T5991] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  140.684925][ T5991] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  140.691544][ T5991] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  140.698533][ T5991] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  140.704100][ T5991] usb 7-1: config 250 interface 228 has no altsetting 0
[  140.708651][ T5991] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  140.711844][ T5991] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  140.715101][ T5991] usb 7-1: Product: syz
[  140.717576][ T5991] usb 7-1: SerialNumber: syz
[  140.724602][ T5991] hub 7-1:250.228: bad descriptor, ignoring hub
[  140.731139][ T5991] hub 7-1:250.228: probe with driver hub failed with error -5
[  140.936808][ T5991] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 4 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  141.132704][ T8597] pim6reg: entered allmulticast mode
[  141.145364][ T8597] pim6reg: left allmulticast mode
[  141.665321][ T5991] libceph: connect (1)[c::]:6789 error -101
[  141.673352][ T5991] libceph: mon0 (1)[c::]:6789 connect error
[  141.736306][ T8610] ceph: No mds server is up or the cluster is laggy
[  141.826994][ T8579] usb 7-1: reset high-speed USB device number 4 using dummy_hcd
[  142.197840][ T8579] usb 7-1: failed to restore interface 228 altsetting 255 (error=-71)
[  142.350129][  T835] usb 7-1: USB disconnect, device number 4
[  142.354529][  T835] usblp0: removed
[  142.461896][   T40] audit: type=1804 audit(1745613634.797:4600): pid=8579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.648" name="/newroot/167/file0" dev="tmpfs" ino=922 res=1 errno=0
[  142.477067][ T8631] netlink: 16 bytes leftover after parsing attributes in process `syz.3.661'.
[  142.840012][ T8621] ALSA: mixer_oss: invalid OSS volume ','
[  142.918527][ T8635] pim6reg: entered allmulticast mode
[  142.927901][ T8635] pim6reg: left allmulticast mode
[  142.937175][ T8637] random: crng reseeded on system resumption
[  143.070252][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.073281][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.080528][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.083510][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.093883][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.096810][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.101465][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.105718][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.108637][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.111628][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.114697][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.117658][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.120528][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.123498][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.126581][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.129486][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.132705][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.136189][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.139287][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.142288][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.146694][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.149839][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.152797][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.156522][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.159728][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.162782][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.167059][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.170836][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.174203][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.179084][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.182245][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.190235][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.193028][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.196388][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.199480][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.202482][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.205607][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.208275][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.211670][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.214688][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.217952][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.220264][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.222564][  T835] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  143.226052][  T835] hid-generic 0000:007F:FFFFFFFE.0008: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  143.385186][   T57] libceph: connect (1)[c::]:6789 error -101
[  143.387831][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  143.391039][   T57] libceph: connect (1)[c::]:6789 error -101
[  143.393220][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  143.493696][ T8657] ceph: No mds server is up or the cluster is laggy
[  143.699446][   T57] libceph: connect (1)[c::]:6789 error -101
[  143.704026][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  143.717252][ T8666] ceph: No mds server is up or the cluster is laggy
[  144.183656][ T8673] netlink: 16 bytes leftover after parsing attributes in process `syz.0.670'.
[  144.570720][ T8684] pim6reg: entered allmulticast mode
[  144.576702][ T8684] pim6reg: left allmulticast mode
[  144.826446][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.829364][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.832211][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.837297][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.839988][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.842675][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.847707][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.850350][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.852845][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.855974][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.858387][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.860902][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.863368][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.865862][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.868260][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.870684][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.873183][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.876005][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.878419][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.880802][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.883549][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.886368][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.888770][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.891163][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.893634][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.896417][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.898876][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.901262][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.903737][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.906715][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.909115][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.911516][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.914245][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.916708][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.919129][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.921541][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.924055][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.926508][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.928979][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.931384][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.933876][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.936408][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.939168][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  144.944627][ T6008] hid-generic 0000:007F:FFFFFFFE.0009: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  144.988300][ T8704] capability: warning: `syz.0.679' uses deprecated v2 capabilities in a way that may be insecure
[  144.995106][   T57] libceph: connect (1)[c::]:6789 error -101
[  144.997053][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  145.000382][   T57] libceph: connect (1)[c::]:6789 error -101
[  145.004737][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  145.076386][ T8701] ceph: No mds server is up or the cluster is laggy
[  145.303499][ T8718] pim6reg: entered allmulticast mode
[  145.310805][ T8718] pim6reg: left allmulticast mode
[  145.947441][ T8744] 9pnet_virtio: no channels available for device 127.0.0.1
[  145.966909][ T8744] tipc: New replicast peer: 255.255.255.255
[  145.971359][ T8744] tipc: Enabled bearer <udp:syz2>, priority 10
[  146.056655][ T8747] netlink: 16 bytes leftover after parsing attributes in process `syz.3.693'.
[  146.653391][ T8763] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  147.113464][ T8770] IPVS: set_ctl: invalid protocol: 58 172.20.20.170:0
[  147.213594][ T8775] ucma_write: process 616 (syz.2.700) changed security contexts after opening file descriptor, this is not allowed.
[  147.664117][ T6008] libceph: connect (1)[c::]:6789 error -101
[  147.667535][ T6008] libceph: mon0 (1)[c::]:6789 connect error
[  147.720155][ T8781] ceph: No mds server is up or the cluster is laggy
[  148.620353][   T64] libceph: connect (1)[c::]:6789 error -101
[  148.622729][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  148.645763][ T8813] ceph: No mds server is up or the cluster is laggy
[  148.801627][ T8820] netlink: 16 bytes leftover after parsing attributes in process `syz.0.713'.
[  149.628045][ T8830] netlink: 8 bytes leftover after parsing attributes in process `syz.2.715'.
[  149.843753][   T64] libceph: connect (1)[c::]:6789 error -101
[  149.847117][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  149.977275][ T8836] ceph: No mds server is up or the cluster is laggy
[  150.104206][   T64] libceph: connect (1)[c::]:6789 error -101
[  150.106172][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  150.661666][ T8857] ceph: No mds server is up or the cluster is laggy
[  152.178354][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.180802][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.183233][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.188028][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.190467][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.192897][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.195761][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.198246][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.200636][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.203182][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.205997][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.208432][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.210904][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.213395][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.217222][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.219731][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.222150][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.225426][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.227840][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.230308][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.232705][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.235882][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.238339][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.240831][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.243285][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.245984][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.248377][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.251184][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.253895][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.256435][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.258845][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.261680][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266314][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266338][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266349][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266361][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266373][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266384][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266395][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266407][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266418][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266430][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.266441][  T835] hid-generic 0000:007F:FFFFFFFE.000A: unknown main item tag 0x0
[  152.269520][  T835] hid-generic 0000:007F:FFFFFFFE.000A: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  152.396539][   T64] libceph: connect (1)[c::]:6789 error -101
[  152.398992][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  152.401216][   T64] libceph: connect (1)[c::]:6789 error -101
[  152.403183][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  152.475131][ T8907] ceph: No mds server is up or the cluster is laggy
[  153.481269][ T8935] netlink: 'syz.0.739': attribute type 4 has an invalid length.
[  153.483772][ T8935] netlink: 152 bytes leftover after parsing attributes in process `syz.0.739'.
[  153.491532][ T8935] : renamed from bond0 (while UP)
[  153.667972][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.670426][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.672799][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.676719][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.679149][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.681722][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.684347][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.686768][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.689240][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.691627][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.694783][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.697185][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.699559][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.701936][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.704644][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.707065][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.709491][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.711878][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.714611][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.716984][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.719370][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.721747][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.724454][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.727710][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.730179][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.732553][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.735418][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.737810][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.740210][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.742624][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.745337][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.747693][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.750082][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.752460][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.755250][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.757760][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.760144][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.762530][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.765273][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.767666][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.770099][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.772490][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.775240][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: unknown main item tag 0x0
[  153.779745][ T6008] hid-generic 0000:007F:FFFFFFFE.000B: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  154.396470][ T8942] ==================================================================
[  154.399019][ T8942] BUG: KASAN: vmalloc-out-of-bounds in vrealloc_noprof+0x132/0x320
[  154.401512][ T8942] Write of size 4064 at addr ffffc90003201020 by task syz.1.741/8942
[  154.405228][ T8942] 
[  154.405997][ T8942] CPU: 2 UID: 0 PID: 8942 Comm: syz.1.741 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  154.406012][ T8942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.406019][ T8942] Call Trace:
[  154.406023][ T8942]  <TASK>
[  154.406028][ T8942]  dump_stack_lvl+0x116/0x1f0
[  154.406052][ T8942]  print_report+0xc3/0x670
[  154.406065][ T8942]  ? __virt_addr_valid+0x5e/0x590
[  154.406081][ T8942]  ? vrealloc_noprof+0x132/0x320
[  154.406092][ T8942]  kasan_report+0xe0/0x110
[  154.406105][ T8942]  ? vrealloc_noprof+0x132/0x320
[  154.406117][ T8942]  kasan_check_range+0xef/0x1a0
[  154.406132][ T8942]  __asan_memset+0x23/0x50
[  154.406143][ T8942]  vrealloc_noprof+0x132/0x320
[  154.406154][ T8942]  push_insn_history+0x2ae/0x6c0
[  154.406167][ T8942]  do_check_common+0xbd3/0xc2a0
[  154.406185][ T8942]  ? __pfx_do_check_common+0x10/0x10
[  154.406196][ T8942]  ? lockdep_hardirqs_on+0x7c/0x110
[  154.406211][ T8942]  ? kfree+0x2b6/0x4d0
[  154.406220][ T8942]  ? bpf_check+0x6c86/0xb460
[  154.406232][ T8942]  ? bpf_check+0x7b2f/0xb460
[  154.406244][ T8942]  bpf_check+0x7f51/0xb460
[  154.406260][ T8942]  ? __pfx_bpf_check+0x10/0x10
[  154.406271][ T8942]  ? pcpu_alloc_noprof+0x949/0x1470
[  154.406286][ T8942]  ? __lock_acquire+0xaa4/0x1ba0
[  154.406304][ T8942]  ? find_held_lock+0x2b/0x80
[  154.406316][ T8942]  ? __asan_memset+0x23/0x50
[  154.406325][ T8942]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  154.406341][ T8942]  bpf_prog_load+0xe41/0x2490
[  154.406356][ T8942]  ? __pfx_bpf_prog_load+0x10/0x10
[  154.406371][ T8942]  ? __pfx___futex_wait+0x10/0x10
[  154.406390][ T8942]  ? bpf_lsm_bpf+0x9/0x10
[  154.406402][ T8942]  __sys_bpf+0x433c/0x4d80
[  154.406418][ T8942]  ? __pfx___sys_bpf+0x10/0x10
[  154.406432][ T8942]  ? __lock_acquire+0x5ca/0x1ba0
[  154.406447][ T8942]  ? do_futex+0x122/0x350
[  154.406459][ T8942]  ? __pfx_do_futex+0x10/0x10
[  154.406473][ T8942]  ? xfd_validate_state+0x5d/0x180
[  154.406484][ T8942]  ? rcu_is_watching+0x12/0xc0
[  154.406496][ T8942]  __ia32_sys_bpf+0x76/0xe0
[  154.406505][ T8942]  __do_fast_syscall_32+0x73/0x120
[  154.406521][ T8942]  do_fast_syscall_32+0x32/0x80
[  154.406536][ T8942]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.406554][ T8942] RIP: 0023:0xf7f04579
[  154.406563][ T8942] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  154.406573][ T8942] RSP: 002b:00000000f500555c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  154.406584][ T8942] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0
[  154.406591][ T8942] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  154.406597][ T8942] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  154.406603][ T8942] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  154.406610][ T8942] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.406619][ T8942]  </TASK>
[  154.406622][ T8942] 
[  154.496753][ T8942] The buggy address belongs to the virtual mapping at
[  154.496753][ T8942]  [ffffc900031e1000, ffffc90003203000) created by:
[  154.496753][ T8942]  kvrealloc_noprof+0x7d/0xd0
[  154.502058][ T8942] 
[  154.502796][ T8942] The buggy address belongs to the physical page:
[  154.504744][ T8942] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x5c183
[  154.507819][ T8942] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  154.510080][ T8942] raw: 04fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  154.512688][ T8942] raw: ffffffffffffffff 0000000000000000 00000001ffffffff 0000000000000000
[  154.515318][ T8942] page dumped because: kasan: bad access detected
[  154.517296][ T8942] page_owner tracks the page as allocated
[  154.519055][ T8942] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102cc2(GFP_HIGHUSER|__GFP_NOWARN), pid 8942, tgid 8940 (syz.1.741), ts 154396370847, free_ts 152369807894
[  154.524234][ T8942]  post_alloc_hook+0x181/0x1b0
[  154.525752][ T8942]  get_page_from_freelist+0x135c/0x3920
[  154.527472][ T8942]  __alloc_frozen_pages_noprof+0x5a8/0x23a0
[  154.529325][ T8942]  alloc_pages_mpol+0x1fb/0x550
[  154.530860][ T8942]  alloc_pages_noprof+0x131/0x390
[  154.532433][ T8942]  __vmalloc_node_range_noprof+0x732/0x1540
[  154.534276][ T8942]  __kvmalloc_node_noprof+0x2ff/0x600
[  154.535951][ T8942]  kvrealloc_noprof+0x7d/0xd0
[  154.537428][ T8942]  push_insn_history+0x2ae/0x6c0
[  154.538977][ T8942]  do_check_common+0xbd3/0xc2a0
[  154.540501][ T8942]  bpf_check+0x7f51/0xb460
[  154.541910][ T8942]  bpf_prog_load+0xe41/0x2490
[  154.543390][ T8942]  __sys_bpf+0x433c/0x4d80
[  154.544803][ T8942]  __ia32_sys_bpf+0x76/0xe0
[  154.546231][ T8942]  __do_fast_syscall_32+0x73/0x120
[  154.547862][ T8942]  do_fast_syscall_32+0x32/0x80
[  154.549394][ T8942] page last free pid 8886 tgid 8884 stack trace:
[  154.551356][ T8942]  __free_frozen_pages+0x69d/0xff0
[  154.552952][ T8942]  __mmdrop+0xd5/0x4f0
[  154.554240][ T8942]  __mmput+0x36c/0x410
[  154.555520][ T8942]  mmput+0x62/0x70
[  154.556703][ T8942]  do_exit+0x9d1/0x2c30
[  154.558019][ T8942]  do_group_exit+0xd3/0x2a0
[  154.559445][ T8942]  get_signal+0x2673/0x26d0
[  154.560872][ T8942]  arch_do_signal_or_restart+0x8f/0x7a0
[  154.562602][ T8942]  syscall_exit_to_user_mode+0x150/0x2a0
[  154.564366][ T8942]  __do_fast_syscall_32+0x80/0x120
[  154.565970][ T8942]  do_fast_syscall_32+0x32/0x80
[  154.567497][ T8942]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.569463][ T8942] 
[  154.570286][ T8942] Memory state around the buggy address:
[  154.572027][ T8942]  ffffc90003200f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  154.574545][ T8942]  ffffc90003200f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  154.577006][ T8942] >ffffc90003201000: 00 00 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  154.579472][ T8942]                                ^
[  154.581067][ T8942]  ffffc90003201080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  154.583568][ T8942]  ffffc90003201100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  154.586037][ T8942] ==================================================================
[  154.589291][    C2] hpet: Lost 12 RTC interrupts
[  154.592587][ T8942] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  154.594883][ T8942] CPU: 2 UID: 0 PID: 8942 Comm: syz.1.741 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(full) 
[  154.598498][ T8942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.601802][ T8942] Call Trace:
[  154.602868][ T8942]  <TASK>
[  154.603822][ T8942]  dump_stack_lvl+0x3d/0x1f0
[  154.605337][ T8942]  panic+0x71c/0x800
[  154.606584][ T8942]  ? __pfx_panic+0x10/0x10
[  154.607998][ T8942]  ? rcu_is_watching+0x12/0xc0
[  154.609523][ T8942]  ? preempt_schedule_thunk+0x16/0x30
[  154.611193][ T8942]  ? vrealloc_noprof+0x132/0x320
[  154.612746][ T8942]  ? preempt_schedule_common+0x44/0xc0
[  154.614459][ T8942]  ? vrealloc_noprof+0x132/0x320
[  154.616013][ T8942]  check_panic_on_warn+0xab/0xb0
[  154.617591][ T8942]  end_report+0x107/0x170
[  154.618956][ T8942]  kasan_report+0xee/0x110
[  154.620364][ T8942]  ? vrealloc_noprof+0x132/0x320
[  154.621925][ T8942]  kasan_check_range+0xef/0x1a0
[  154.623450][ T8942]  __asan_memset+0x23/0x50
[  154.624852][ T8942]  vrealloc_noprof+0x132/0x320
[  154.626355][ T8942]  push_insn_history+0x2ae/0x6c0
[  154.627904][ T8942]  do_check_common+0xbd3/0xc2a0
[  154.629444][ T8942]  ? __pfx_do_check_common+0x10/0x10
[  154.631099][ T8942]  ? lockdep_hardirqs_on+0x7c/0x110
[  154.632717][ T8942]  ? kfree+0x2b6/0x4d0
[  154.634012][ T8942]  ? bpf_check+0x6c86/0xb460
[  154.635456][ T8942]  ? bpf_check+0x7b2f/0xb460
[  154.636938][ T8942]  bpf_check+0x7f51/0xb460
[  154.638350][ T8942]  ? __pfx_bpf_check+0x10/0x10
[  154.639863][ T8942]  ? pcpu_alloc_noprof+0x949/0x1470
[  154.641495][ T8942]  ? __lock_acquire+0xaa4/0x1ba0
[  154.643044][ T8942]  ? find_held_lock+0x2b/0x80
[  154.644523][ T8942]  ? __asan_memset+0x23/0x50
[  154.645980][ T8942]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  154.647554][ T8942]  bpf_prog_load+0xe41/0x2490
[  154.649030][ T8942]  ? __pfx_bpf_prog_load+0x10/0x10
[  154.650640][ T8942]  ? __pfx___futex_wait+0x10/0x10
[  154.652212][ T8942]  ? bpf_lsm_bpf+0x9/0x10
[  154.653578][ T8942]  __sys_bpf+0x433c/0x4d80
[  154.654935][ T8942]  ? __pfx___sys_bpf+0x10/0x10
[  154.656420][ T8942]  ? __lock_acquire+0x5ca/0x1ba0
[  154.657976][ T8942]  ? do_futex+0x122/0x350
[  154.659332][ T8942]  ? __pfx_do_futex+0x10/0x10
[  154.660808][ T8942]  ? xfd_validate_state+0x5d/0x180
[  154.662405][ T8942]  ? rcu_is_watching+0x12/0xc0
[  154.663904][ T8942]  __ia32_sys_bpf+0x76/0xe0
[  154.665360][ T8942]  __do_fast_syscall_32+0x73/0x120
[  154.666976][ T8942]  do_fast_syscall_32+0x32/0x80
[  154.668505][ T8942]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.670492][ T8942] RIP: 0023:0xf7f04579
[  154.671778][ T8942] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  154.677676][ T8942] RSP: 002b:00000000f500555c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  154.680276][ T8942] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800017c0
[  154.682726][ T8942] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  154.685182][ T8942] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  154.687595][ T8942] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  154.690040][ T8942] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.692494][ T8942]  </TASK>
[  154.694171][ T8942] Kernel Offset: disabled
[  154.695532][ T8942] Rebooting in 86400 seconds..

VM DIAGNOSIS:
20:40:46  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88802b223700 RCX=000000000000080b RDX=0000000000000000
RSI=ffffffff8168f37c RDI=0000000000000001 RBP=0000000000000000 RSP=ffffc90000007fc8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=ffffc90000007ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81684d0f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977bf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c307206 CR3=000000004e6dc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01008ab000000000 0000022800000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000617c19 RBX=0000000000000001 RCX=ffffffff8b6f13e9 RDX=0000000000000000
RSI=ffffffff8dbe98c0 RDI=ffffffff8bf44f40 RBP=ffffed1003b55488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed10056665bd R10=ffff88802b332deb R11=0000000000000000
R12=0000000000000001 R13=ffff88801daaa440 R14=ffffffff90866910 R15=0000000000000000
RIP=ffffffff8b6efc7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978bf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080020000 CR3=00000000778a8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854afb45 RDI=ffffffff9ae0cb80 RBP=ffffffff9ae0cb40 RSP=ffffc9000309ef00
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3039636666667257
R12=0000000000000000 R13=000000000000006b R14=ffffffff9ae0cb40 R15=ffffffff854afae0
RIP=ffffffff854afb6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979bf000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c412650 CR3=000000006a03a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000202ec5 RBX=0000000000000003 RCX=ffffffff8b6f13e9 RDX=0000000000000000
RSI=ffffffff8dbe98c0 RDI=ffffffff8bf44f40 RBP=ffffed1003b58000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a65bd R10=ffff88802b532deb R11=0000000000000000
R12=0000000000000003 R13=ffff88801dac0000 R14=ffffffff90866910 R15=0000000000000000
RIP=ffffffff8b6efc7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097abf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2eec63 CR3=000000006a03a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01008ab000000000 0000022800000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000