last executing test programs:

1m42.639926942s ago: executing program 1 (id=621):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000100)={0x79, 0x0, 0xee8})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000640)=ANY=[@ANYBLOB="0100000000000000010000000700000004000000020000000c00000009eee944"])
r5 = syz_io_uring_setup(0x4e3, &(0x7f0000000380)={0x0, 0x1594, 0x10000, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r5, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r8 = syz_open_dev$evdev(&(0x7f00000001c0), 0x0, 0x0)
ioctl$EVIOCSKEYCODE_V2(r8, 0x80104592, &(0x7f0000000040)={0x0, 0xa, 0x9, 0xf773, "00207d1df8e70300201b14700c1e0ac74f000000001200000000000900"})
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000080)=@req3={0x7, 0x1, 0x2, 0x40, 0x3, 0xe, 0x4}, 0x1c)

1m41.571349903s ago: executing program 1 (id=624):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)={0x38, r2, 0x101, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_SSID={0x5, 0x34, @random="c4"}, @chandef_params, @NL80211_ATTR_KEYS={0x10, 0x51, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_MODE={0x5, 0x9, 0x63}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x200000d0}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="40010000100033060000000000000000fc000000000000000080000000000000ac1414bb00000000000020000000000000004000000080040000000000000000", @ANYRES32=r0, @ANYRES32=0x0, @ANYBLOB="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"], 0x140}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
socketpair(0xf, 0x3, 0x2, &(0x7f00000001c0))
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000001300)={0x2020, 0x0, <r5=>0x0}, 0x2020)
r6 = getegid()
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000a40)={0xa0, 0x0, r5, {{0x2, 0x2, 0x200, 0x1, 0x80000000, 0x7, {0x6, 0x5, 0x8, 0x3, 0xe, 0x800, 0x40, 0x5, 0x1, 0xa000, 0xffff8001, 0xffffffffffffffff, r6, 0x5, 0x4}}, {0x0, 0x1c}}}, 0xa0)
r7 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
r8 = syz_clone(0x22180, 0x0, 0xa42f, 0x0, 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r9)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r10 = syz_open_procfs(r8, &(0x7f0000000040)='personality\x00')
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
pread64(r10, &(0x7f0000000140)=""/15, 0xf, 0x4)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
syz_usb_connect(0x1, 0x3d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
r11 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
writev(r11, &(0x7f0000000480)=[{&(0x7f0000000040)=',', 0x1}, {&(0x7f0000000080)="ecfa69", 0x3}], 0x2)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r13 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r13, 0x6, 0xd, &(0x7f0000000140)='dctcp\x00', 0x6)
getsockopt$inet6_tcp_buf(r13, 0x6, 0x1a, 0x0, &(0x7f0000000180))
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r12, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x1], 0x0, 0x0, 0x20000000000000b2, 0x1}}, 0x40)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r7, 0xc4c85513, &(0x7f0000000540)={{0x4, 0x2, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x8, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x7ff, 0x0, 0xfffffffffffffffe, 0xcf, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x6, 0x0, 0x4, 0x801, 0x4, 0x0, 0x1000000, 0x20000000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x80000000, 0xfffffffffffffffd, 0x10000, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x7, 0x0, 0x81, 0x0, 0x0, 0xfffffffffffffffe, 0x8000000000000000, 0x0, 0x1, 0x0, 0x0, 0x8001, 0x3, 0x0, 0x100000001]})
syz_usb_connect(0x0, 0x5a, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000060f94d100d05020027230102030109024840020000000009047d04031d5abf0009050400005539000009050b00000000000009050200000005000009047d01013481af0009a00e00230000690009047dbe"], 0x0)

1m40.150330619s ago: executing program 1 (id=630):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0x48}}, 0x2000c000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x6, &(0x7f0000000280)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x20, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000900)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4e, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff7, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r4, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0xa, 0x0, 0x5, 0x1}}, 0x20)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha256\x00'}, 0x58)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x741002, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r8, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x9, 0xcc, 0x1, 0x4, 0x2, 0x1, 0x81, 0xff, 0x5, 0x0, 0xe, 0x9, 0xa, 0x2, 0xd, 0x5}})
ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000000)={[0x2, 0x7, 0x0, 0x180, 0x7, 0x0, 0xf1, 0x0, 0x8000000000000, 0x4, 0x0, 0x9, 0x0, 0x0, 0x0, 0xbd9], 0x1, 0x3c4210})
r10 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000001, 0x13, r10, 0xc3d33000)
ioctl$KVM_RUN(r9, 0xae80, 0x0)

1m39.001342989s ago: executing program 1 (id=636):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_DIRTYFB(r1, 0xc01864b1, &(0x7f00000000c0)={0x0, 0x0, 0x9c6e, 0x0, 0x0})
ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000001ec0)={0x1, &(0x7f0000001e80)=[{0x0, 0x1000}]})
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x23c, &(0x7f0000000740)={0x0, 0x1c2c, 0x10100, 0x2, 0x315, 0x0, r3}, &(0x7f0000000500), &(0x7f00000001c0))
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), r3)
ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f0000000100)={0x83, "d30cb0b787810f304d174403c1e8a9c77171cb6f601f0346b13a11cf85dd57ac645e15df132a58f67432c00776531842e2aa76f65ba74b04c7b178b74f1d4d8672ea2e90a4ede7d3a1555f7eb6acc0f75e9e03607458e54b69b1895be4c9335c72d06be1fa7a56174f23846da98f25070a6b62267daa18444ef179b731cb40f852f2ba39b738a51a4d3b963f345745ee4f98cad326388094d4450b4a79a9173b371c11e675439b7eb8dd28564f03bcbed70927d35407956ceadb17b7070ab97697e6b7dd9a16653357c494caf4d9ed2c3df6779fa9172cc6a0f843b7481727aa6f369f5081ec79f7aa09933f4cb1dd2dce617eae5c12a8e78e0576de3bbdcdd0eba13d89863a6a8164d19be39303531611fe5436e278eb4a7e451b81f3bca4eb51367d4b100fa6e0160c47ce0795faad35b236d02eb0a3f5825ad2daaf9e61cea8a5f5d32f3bb43071a125c739baa130c821ed3005c8e1d96cb2bf9c4504faa6f647e6e2b1ca97a71020edf30f642859d16582ae78e193e6be2b147c69d1b93054c64196386f2f2f2100898bb4563345f6c99980ffc93b192574c4523dc449416ade6d999cde05c4ecb360d50e614fac068b758a873aa0c87e1ea79c803c4eb42a357151e8bd4cdc61f603eed2830ce1967cb0f49edc5c9de7ec96e48b5b21d676cf4c2e35df9c47f767cf7ec12957d03fa8f89a58cb92146d4e6a0266b293c2"})

1m37.768944892s ago: executing program 1 (id=639):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
openat$vcs(0xffffff9c, &(0x7f00000001c0), 0x50002, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000080)=0x200000000)
r1 = dup2(r0, r0)
ioctl$vim2m_VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000040)={0x0, 0x9, 0x9, 0x80180})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000400)={0x0, 0x0, 0x0, &(0x7f0000000300)=""/121, 0x0})
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f00000002c0)={'rose0\x00', 0x1})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x5)
read$FUSE(r1, &(0x7f0000004d80)={0x2020}, 0x2020)
write$vhost_msg_v2(r1, &(0x7f0000000280)={0x2, 0x0, {&(0x7f0000000140)=""/127, 0x7f, 0x0, 0x0, 0x2}}, 0x48)
syz_open_dev$swradio(&(0x7f0000000100), 0x1, 0x2)

1m37.681288481s ago: executing program 1 (id=640):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/sctp\x00')
r1 = open_tree(r0, &(0x7f0000000640)='\x00', 0x89901)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000040)=[{&(0x7f00000001c0)="580000001400192340834b80044d8c560a067f0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000b0c10000000224e00000000", 0x58}], 0x1)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20)
r3 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x8000)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x6004, 0x0)
faccessat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2)
readv(r3, &(0x7f0000000600)=[{&(0x7f0000000680)=""/192, 0xc0}], 0x61)
ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0x80804120, &(0x7f00000000c0))
socket$tipc(0x1e, 0x2, 0x0)
ioctl$EVIOCGABS20(r3, 0x40044591, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='net/sctp\x00')
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

1m22.696919259s ago: executing program 32 (id=640):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/sctp\x00')
r1 = open_tree(r0, &(0x7f0000000640)='\x00', 0x89901)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000040)=[{&(0x7f00000001c0)="580000001400192340834b80044d8c560a067f0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000b0c10000000224e00000000", 0x58}], 0x1)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20)
r3 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x8000)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x6004, 0x0)
faccessat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2)
readv(r3, &(0x7f0000000600)=[{&(0x7f0000000680)=""/192, 0xc0}], 0x61)
ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0x80804120, &(0x7f00000000c0))
socket$tipc(0x1e, 0x2, 0x0)
ioctl$EVIOCGABS20(r3, 0x40044591, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='net/sctp\x00')
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

3.165088588s ago: executing program 3 (id=1427):
r0 = syz_open_dev$sndctrl(&(0x7f0000000240), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc2c45513, &(0x7f0000000280)={{0xb, 0x0, 0x3, 0x0, 'syz1\x00', 0x4}, 0x0, [0x1, 0x0, 0x0, 0xfffffffd, 0x0, 0xffffffff, 0x0, 0x6, 0x0, 0x0, 0x20000000, 0x1, 0x0, 0x7, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x6, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x3, 0x0, 0x0, 0x3, 0xf, 0x0, 0x0, 0x0, 0x2004, 0x0, 0x0, 0x40000, 0x0, 0x4, 0x0, 0xfbcc, 0x0, 0x4, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, 0x0, 0x0, 0x63c4, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x4, 0x0, 0x9, 0x0, 0x2, 0x0, 0x200000]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r1 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000100)=0x15)
ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x10, &(0x7f0000000480)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x8, 0x9c, &(0x7f0000000140)=""/156, 0x41000, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x3, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPVS_CMD_GET_INFO(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000c80)=ANY=[@ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x810}, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="0404190c4feefd25ad"], 0xd)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0f0000000400000004", @ANYRES32, @ANYBLOB="0417220e38afaa91e7b27a40631a99f2b46d05000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20], 0x50)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
r6 = io_uring_setup(0x2195, &(0x7f0000000080)={0x0, 0x7897, 0x400, 0x1, 0x232})
prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0x25)
io_uring_register$IORING_REGISTER_NAPI(r6, 0x1b, &(0x7f0000000240)={0x1ff, 0x2}, 0x1)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
setsockopt$PNPIPE_HANDLE(r2, 0x113, 0x3, 0x0, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x25, &(0x7f0000000080)=0x4540, 0x4)

2.487727195s ago: executing program 3 (id=1430):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000900)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)={<r1=>r0})
r2 = syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x38, r2, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e22}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_FLAGS={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x24004081}, 0x4000801)
r3 = io_uring_setup(0xaae, &(0x7f0000000100)={0x0, 0xffffeffa, 0x800, 0x7, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0), 0x0)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r4 = syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc2c45512, &(0x7f0000000a00)={{0xa, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803fc90, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2]})

2.440658371s ago: executing program 3 (id=1431):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xd, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x4d, 0x11e41e7a, 0x20000000, 0x2000000, 0xd}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x48, 0x1001, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x44)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xff, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
openat$vhost_vsock(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000440)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000080)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0900000007000000000001"], 0x50)
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r4, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
sendto$netrom(r4, 0x0, 0x0, 0x0, &(0x7f0000000000)={{0x6, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x7)
syz_open_dev$sndpcmp(0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = io_uring_setup(0x46a0, &(0x7f0000000280)={0x0, 0xfffbfffd, 0x3040, 0x4, 0x30c})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xc, 0x0, 0x0)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd74)
syz_io_uring_setup(0x49f, &(0x7f0000000400)={0x0, 0xe7a8, 0x400, 0x7ffe, 0x40024e, 0x0, r5}, &(0x7f0000000340), &(0x7f0000000040))

1.679068522s ago: executing program 0 (id=1435):
socket$igmp(0x2, 0x3, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
setpriority(0x0, 0x0, 0x10000)
poll(&(0x7f0000000140)=[{0xffffffffffffffff, 0x19f23}], 0x1, 0x2000000)

1.52561771s ago: executing program 3 (id=1436):
r0 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000440)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
inotify_rm_watch(0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000500)=ANY=[@ANYBLOB="02c88c5a7da27b30140010cd260018010c05000000010800080001000f00547aefd42f8e9ca36c6edec9a942e89e85aabb9c4342a06f4f295b13b04239784a77730245f8165b213a84ed4f4bf9fcd250437c650010ecb1714536ca0de9677e9183207f6ae300ac65"], 0x19)
syz_open_dev$MSR(0x0, 0x3c3a, 0x0)
mount$9p_virtio(0x0, 0x0, 0x0, 0x0, 0x0)
openat$audio1(0xffffff9c, &(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x0, 0x12002, 0x0)
socket$igmp(0x2, 0x3, 0x2)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x6c}, 0x1, 0x0, 0x0, 0x40880}, 0xc001)
r5 = openat$nvme_fabrics(0xffffff9c, 0x0, 0x8000, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb0100180000000000000014000000140000000200000000000000010000060400000002000000ff7f000000000057d4e5c1"], 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000580))
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000008001d000400000000000000488e0000", @ANYRESOCT=r1, @ANYRESDEC=r0, @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=0x0], 0x48)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x0)

1.179260212s ago: executing program 4 (id=1442):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
inotify_init()

1.129977688s ago: executing program 4 (id=1443):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(0xffffffffffffffff, 0xc2604110, &(0x7f0000000000)={0x0, [[0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], [0x2, 0xfffffffc, 0x0, 0x0, 0x0, 0x6eb10, 0x0, 0xfffffffc], [0xb, 0x1005, 0x10000000, 0x0, 0x0, 0x7, 0x0, 0x1]], '\x00', [{}, {}, {0x3, 0x4}, {0x0, 0x3}, {0x1000}, {0x4}, {0x200000, 0x800000}, {}, {}, {0x4}, {0x0, 0x3ffffe}, {0xe}], '\x00', 0x8, 0x0, 0x0, 0x2})
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r1, 0xc01064d1, &(0x7f0000000140)={0x1, 0x0, &(0x7f0000000040)=[0x0]})
connect$inet(r0, 0x0, 0x0)
r2 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
fsopen(&(0x7f0000000180)='gfs2meta\x00', 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x2, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xd, 0x5, 0x4, 0x7, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000340), 0x2, r4}, 0x38)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f00000003c0)={0xc})
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r7 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000000)={0x9, 0x0, [{0xbdc, 0x0, 0x8000000000000000}, {0x34b, 0x0, 0x8000000000000000}, {0x96d, 0x0, 0x84a8}, {0x0, 0x0, 0xb}, {0x859, 0x0, 0x10000}, {0x275, 0x0, 0x7fffffffffffffff}, {0xb83, 0x0, 0x4}, {0x94e, 0x0, 0x167}, {0xb94, 0x0, 0x2}]})
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)

1.045939229s ago: executing program 2 (id=1444):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id='])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x61901, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
syz_fuse_handle_req(r0, &(0x7f0000002100)="5ae785ca91885b37fd87cc2ee9a0dde54a15384713a93e74c6c5665cf41ab5b614384a0c723d1d85b7f6bc4586aa6e92ed7ac174c56e9d03935baac9cd602ef86c462871833fccb38527807be37748b26ae7121568c933bcac24eff886bfc555d77f982dae5f167f06addff9f70e47b09e437c8a5f0631496993b729d147c59b7c331c97efdbda6d81c4b34cac2cc377aa3c3a0e33b6ec4e6226e7464aa3a0ff858daf3d5ed4221ee3c655a61ded7e823b9dbec76c6d22c92128456aaa2c33514df976bf94da56f6a333e64925dc590fa94f0e094532b47941009e4cfcb1040813b8ace44ee1a5340973e31635585f0e5b8c86dc67c24d3ec03c702fa32c3a3abf8c6f5f43b2e3cff4cf5beff9e94690c82bb0fb0505f0cfda40b1482e76f8d798c9448f8d9c395b0ceb4dedb7bb56bd4c1562fd9c524c8c94b23408975e1d1e710978f7b3bbdfad0464adf76f9e5728ce2054c2b650833623106878debe4c2bac0d5e65f0845dc2eff40dbb98c2a27ff939c54b2aac6fcf3c61ae477f1a12ec4981419862656c9f98e667d5c45ca21548b399dd4c6a3df0c60041ffb6ba8ee6e8f3aebdd0f55f940762028a5e8237a2562a4412531904e585e50f805ffbe023a4fbd138aac5472b15a7624413b5ed41443ca5143ce4fa90542e94cf837c8dd5a0416d3ffbf223d3f79ebc688642708e0dde2521b5ba19390c29288d59ce010a22fc77bafd066ac971609351677edef90d274dc953123f939b4894f305f2b6ff90cbcc9ad3b339a1f34a36ee04bfb2aba728d217d1b7c5ee82f3c72ad95fb3dd227b622c9a2e4779bd72d18dbb25f4096256b527643d5c7af5194df16bacc9b21053eae64a118880beef3e5219bba49740e454720e2ff92487555102d54d78b6b744463788473226c5f9a735f2edac00660af50706006900fb42af3535f3540f5c71251c1c181dc317467c2577fe6df8cdfb08168603b10bb8f75b884923d80e21ee57f27269990b9265df078ea6ab7f672185303fdc0fb0bfccd1348cd850697460d494ef16527b55077b40fb46f33812db50a0f5e84086f9dfe4070b2642f61cbd1b83f6d8d8fd0062d0467ad7503ca8e1c3e42820d08cf2b7ca3d7e9ad02bf383e7e1a3aa09e2c68192bacf5e01604e9fd512cd872c7ba29196329f08c7c663530c21f977ecce626609fd82396d0e6aa957caefe86d08b52ea274baf55fb495d2b5f8da480d504a500846dab13d92dec14ff0ec3be163c170386dc811933c618474e20e488b0510d54308bd2c0bc5cb1a42e38ad5d3c6d8fa013f930f0c1e09de02a9c2e5ad6d64a83a1fd48c1c232fb133db6da04f41d380bf5ae3c42919062c60f99ae4c6a000c6b2f44beca3d248e63a819fe139d66d41ac5e21a092f400a8b9e896ab7ba79726a295902eee991d0e3e20fe2c07187c960631fb8a2ddc2bc0982095557c48e8fc69438a43c8982061d06f9dfbbd5ee30fe22f415bfbf53879196da96f4ce63355fbddf36bdb1468989723c69d3b5d115a5115365d34a2a1bcded104f05b24195ff91d741097d5a58875c1db13b1f8f88af363cb8343900be26455d159b2de68488009f398ef6cdbe29b090b19dca899de430e3991b1cd5eaa5c22a326ddd4adf75e3d2c7bbc3a64349c4599d4360ef9d8ff1c68710a2e412e46dc11d24e9139aa88bd6488196f74be0667e61f60a286b19aa5cb9d3f2c761a987eedf5210e3112d2d816885b6afe5b9e6f2993094ef651c88841c3a35a168e1ec2c9d108fecf14769f4ccea0f9fef6b0c0e8ffab76ea475bd788e53d4b0a422a5b391bf01f5ff8bc7e306983fbd734d61f244761353f4485b3676252ea87785342d8360650c3c21771d6ecda6216bea9584ab91f0bb3048987b644d450753c2c863a191990648c9b4d5c2a95467df25cd4b945775503fd670543b706b492c10c6b99b410b15ac9d06d3a1cc0ec71cec68c76a1e5a4953286fea3c4c4e2f0c2c43fb314fca22a2c98136c3bf1006c33bd29a9d0a17f654429fe45f442208e705595bc85a3987403d58256d58074d899f935c57eda03c0db1f42b2c43caf412ab6e0aff370aaf38ff7755709301deec50a84b9ce58e27f697f9ae9aac4bcee723dadb7b4991923395a85b44d886e755871a8979d98e1f9d0530aaf59ecaad7019f72a5956c0f1f25662f64a4086dfc3e1e98fb895dc39f1e53a0425a838927382e7103ebe761fbf138d09f0a359ad0c2faf323120d73917021391168e1db0bd0a63f04c560b731559a1ab6a4ddf25eb35d2bb3423295276bbe96d78907c1071613f129368d5f516d41f1480c5026156230a9665712f4c13df911c83612f8658b3c70fcc28719f99110796a7ed82c7a87e68addef720dfd7b41cf70a1dd93bc4a04c21a05f4bbdf5f619e0fddc9e7a9043231a96e7e9c236766a1069a668b563ceeca8f785c434b40e512dba2311891dd34c1f98c9c0a89369e310708d68ec84ae8aeaa96a206d9dea7ac16a6e429f08bb8d781eec292f12356c2f6be7bc99dbc35837be62ed18b818db892c8c86168dd6886920638f3c1b9ca32cda3d17f8795bc0b8d1c988ed672f66a289dc481e4c5a857050c39ddb3c4797a9442654b29ee85c3c42c10dc87080f6e07b261e0d2bc908e3faf3c4bfe8d2c2200f3f0e734880e9746a461918ee3e9efff5a84def6de3538388a6bcca4d720a8549af6d79f69a409e06da8d6b6d8aecffea39928b70ee486291bcd3a1e8219c6bd3fce4e68a70e21a4f77fd79a98c89dfa06e75a86181ebe07915af8b94664a55515915ba8b56fcce5b91fd965f3d5a1bdc686d7591dc9646c751cf275d13e88d69f8421db561de7d6f52ec63621490b6cf80942c18574927e4c16084a03ddeda058c6739a4621755d24873796c6a5ac987632536296f2fb0155e9eeadabc4407ccf770a8c1fbe177a02b12b83b92f223bfdc0bf45921975d9e6ff17f7560de014ed5ab3f42272600c9e265d170d492ec81db1daa49b971d605c0d09addb12bec7f45c39e1722f3624abbf5b7064bd90c70961ed2552200a21a36701b0e1842c4982e4ab17244f392320ec67bedda8c0b28935c79a995cc81bede03947d812c038df7fa4f95d4ee84c8ad3ff8fb89dcf6b9b312c01c6d2c263d68da642582fa02701c8ee70990a47f494f1ac66fa38acb1a53ca6bed85fd624f8aee0165f059dd7cfbfeb63968dc527f38e1584864ba807afcbffa9c2e1fbd749032c4178f1baac498cc58dc5478f977308f567aca1ecca6a407077cd77cae3dbc0aa9efc68ab46fe028990516181735e98342f93bd9fe3ade709e8c0e1b8a3160d3a6221ea362b118c890a2d41c40c7cecd8f69f022386f9164b3eacf9f34ecf3117806dcf40ec43e74e96da1e12038f2e998b3b93a5879055c51749f9c13c5d9f81153a968b349888e982e25eae26b9313e73a74badc90e04c970bf7c55465dfe9f2c38573d0217d55eb61f5c20f42bca6842574619729abf516189ec8d9888d5d18cbcda9dc35b8266b5105d1966c5671b8a2c472ffaabe0becca6d143d26061968386a28c47a87ddb0f62e14043ccce65b9c42f044170f876fa481cb7e1f42eac989d4c09e8d5fe34a7b8e385f256209dc50916ebc193a412deab834e21f16bc13ccb51f7015bc6e826e7995d8302b4269e739e2672ccd65ba659b6cdf690500e066d1b943e68cec35f05a8b7add2dc435cac2c562f34544d0e7ebfc011228537dcd38ca37c4d6cb1915f215618d506c8de261967b71f9749e588d61f68ec7edc444f7c0f74fe9ae2e4d56173c4ee89223a445dd289f558ce7c9b57389426d129948087609a24c1f8ebe32088f36cba15ad76661f5ab3f27af94d3cbd7c0135774454150e0ecfd4a0c490c0103958e445354a4da2a62548a8b9d61a7fbdcec617fd0e5891b2df56f7e21cdff564bfc720732c4755167c6f17746b2bfc2e2406163dcc8468e3c015f2d448316841b4f4be64366db8a4190200fa7a7a475b7ffc62f5f5a93dec898214ace9f378e3139dd1bb7478039c3d0184c185bdbd5531e3cb86a41175f632b839f1341fddc184a6d495511623440967788540007f01b0ff1ebc4d66d9a0bbf9e113550e57331918ece37ebf560ebcbee47e09290432d980a5c446d16065b9a9279b470a4a7d0120ad6f02ef5fbd5c0882a2c58d0589d128eb44247a88e3157e62fcbd6063b480ffc7c997a40e59b16f00a5e5d66e5825833a827cb65263410289551860404cab9bc1b3d7f99d9e6494ebe9bd52fd6ed8d9f980ccd5813a2f0eca8b17854138ef0c3abe49bc229fb7a8c7b75f712552625ef358cb69496cecda2637d18c1f28f88d486d84e5f702a312777bc0d6c9f11785817a3fd33113277fb8105893e10dc29b878f3d24a4e8cc474fbb7e2cc6d845a921585e01bfab1a1811e7a2c6018a24979d8fb5a853e6efa9b2810eec00d2f0313e72e25afef8423e0f3069c5f3d5214ec428d238276c44ced78d97a42f489edb54b83475c1b1d4a4e4cb1866ad07e6001f19636c442d3b155081511400dace0f271b8a972dc78b2068884a7d3bd766158497717baabc37628ce1bb7d72863ab7db9b553a205cc662015fc63cef445fed61609ce46e72fb8be8122b37c82ccb87df112fe76e9c394679c14b3116ebf7fb133ddd9e5e7693fe8a66e24f19670a19a1ba46a9564660af94aad7e865910d770b6abeebc4fd5f66d474748e08215e70d19c8392f4c7d744d7073cd10f22d55cbbcbc7e17a565bcf388e2ad751afd3da9896e7ced7833fc42a6c9a739085a0651c4d9fb3173b1b328d7d139ff426903ad469141d8c13fce17dfbb2772eb4c7ae9575df9afe18fb433989aab12072d28443bad20f25b1ef597bc0800f8842e67096c8303812feb359656a89d6bbdfebb186c32bd86376e5750784a02fd68580a2a57832addb372f04a5a889c97eecd784d1d2fe4a1b66b51976e2f012b08b9e269b595bab48dc1aabe10a89cb6ec9c504b2a832fd4a281b23262f1c76b5c94d78f6e1008fa4cba4bce83f4f50bbe814e33f38b8658273f5f6fa47c646049a66d2e2385f550308b66154798146408b1548fa8820114e0500e8bcecd4b4dbb3bc1f23a9962031585bc22e9459393fe8fccedd87a1491caa65265a50136c1041bc0e99e1520a6d8e2c067c89dec0c6f3e494bee8b7e820041642695e0932c7ecb3d8a7584f0c202f26735d3dd17c68453a4829d54811ad2598b353921d8cbee30d591381df76f7f2f83f14f9ed47e7cdeb07c8f5c9efe42c17c54108308a60df7689413b6c7ebf521f97f71571a002c6b6bf1487d331a61e763f340f6e7c9ea03a9caca30b26b75f348da60d871f5b4f66f2ded0ce1c5d1d81fe76f97137d355c9e41e1515772a863d6ba478441d5083d9749380782e5630eb0c4432bc8a2821fd987bb0b46221b9d681d8b6c538cc3e52426d37737fb1ca6bb8c01bb6718a9f7876a9966c8f834991e9fae7249de1a63a9c30539005bc6a9ed58479c6702537e3100cbb26ffc0afa8ef8c3d9f2dd31a5a5ec8e08aa951ce3ec0b154714351d36af0fe7cd37be67f6aeab6dded1254255c85752aeb43d3f774fd7b990ee19f3da2f514f1b7c36709f5d1427e6a6f3c92bea6f0fb4fb6fa37b723abae6d7ecd8833085568a9e12bff5ea54254a724b1f0194bf25659f891bb339d92aa8c9f55c9744c34f421d249a261afc8dfc08fef71247e567fb230d7a6b8b04e271c106241bffdbb0f08e01b1177e769ffcf2c17be0750a849ee78ed0ffb44f045a81aa3d1257eedc62e5465863491b5cdfb3b77ffa6ce6b79facfc9d7d34c64c8c976c46b65ed9bc9e3bb5ccb754cc34ae7243a50a42b1edb93b6b79e6cb818175ed9662e1f317e30e234d061268614d3c98158391a2348c520a873b5a6a3375384a3c83aed3c9628358eb1082f933a329ab2cf661b65791f8e2281e66827d78a92c8c61145802f0c4a1c9b2fbaa292d4d34ec99b0c7f7cb53ad36dcc2f502156ea7ab0f8a057874205bd45273e33ac8a6e3371b11cf1f00c50c9e54141c8034b876f1165c9c0a442627928b82f90da6427f4e48f119e227d05cef8e256b541e66b7f73fdcb38ff35f5aa23d0e6cca93b6e04dd4d4988f284ffec0d33d6b8f0998a300c8d48488b14c7adca0da7f35a61e6aae05a903a05c0f7d573dbc568a0244a9adbb19b5371769fb22efe65795aece724c52b5d44be6ae540d9ddcaeb463481ba790334c2403453be3cf50a11305d34ae5d40a3b3b2f75e3965bb6e6ab8d15df1a355d296d4fc28426149377e59fd8c51e21a7c5a7409a7e6581cc0f0aff0a4255147ddc5fbe5ae126c12cf630ffb27736f01ad75d4bf11078639043e1b5845f885adab193aa2b4fa8316bcbc8ec184be950a57693712ec578c84e8ef871ecdc007dca21a6ec4883749502bf8a6f15edc956eea3feb8f8535709cb5aa29e946c6328784258fd9406dd8edb39833ab55a71131a3bb334febf0e2daf3927b17ba3b8c11569ef09c662aec6bd8190d98bd3b2126d93a9fe50d5969fdaa399de6003b7355a7c52f27924177d48b8e4761b4390c0030f1d224a77758e7aeb3a176fc4a6685281853c64b005250c533eb156098798153dc0b2fac40cd383afa56d977d77f82bf9079e04bc4c0994c2438b40cd5f149243d0fceccf11a35969c46237350bc4708182357c503b2cd69833b9615de75f573fca18f9c65b1d9cbe87a6dd58ea28e322ba6b7f4e168acc01911e4da9d31a0d0f4df5b4a28b02abaf40f12644cf98247ed916ca09d5fbc17222222d09d2723411b3afce6091eb277028238b924eddaee194b35ac21652a3f477ffc3710623f0601dacaadae3a073ed5ef1e2605a0b1892afe390c3118200ea01cea4b2beda90247ab41654c6b2e34dc659507cea0eae67d7d015e3611988d859ec4dbe5cb84f3c94234f68b23ce89cc75b2e02736d7382f26c8cfca473fb458ee107bda97af0e1b9d52b358342909b5cd76456d26c1cadff1d2dd764e742b945b3c83583110bdc55170b6bea08602ed48834fe8878c9d96b4af81fbef7faff0882e47397b198bc68209989ee17db9afb7bc518ee2aab7b430f44dd95bbbeafc46af1b32ce4541e42205f0599dd61778ea6fd67df30336a4f1089eac72e7a813f19c63476776ddbcf73953f9ba1facc713c64822e505e83d01e80e521cee1586feaaab29259a4fc2d95d3c325a69695aa0c4f5bdbd0e5941a48fc531c5f6c4cc9674ddbc10f71bc13dea9099b5001096beeaab53088fc4710b3378af9c9626dacdc3719d3c8b29d10d0237cfd3c743b76fe48b0e6c50aa83a383a2ce78d767bd78ca5af259d9936c7e12b9b1a53ad1b7047c9fc40c42174d8bb26793fffc69c4fe2c4673f9aec97b5c78f6aed8d6ecece4b12e932b14494efcbc5be9b77e6fba5c26dae29e3250678478aebfa432de8dce0aeaefa6b0a5c51855ca0f3587c3e3dc341b1295b541d5be879bb58ed6bac56ec9b1f3e9fa502df744c7c717414673bdf9b8e10884ef3764ed1f8e708e0113bc3c05c723a3e75d28a4bd18580289cd9e4ebf2be7d790f4d3384eb757c6f679ce3fa5df1a827a3f7a61265e8e03389defb7755b7fead3dffbc0d63f57e5ac2dde88ef55cd2232b88f87d3764aaafe6df23d97611499a91287e75e772ba57507b9239cfa120fc2b4a7f4ed4d7352854d5032dcd6b7ac56dc9ed0faa4e20492a58b43d1d2b3dbee1bbbd439b0ee36f83f1d50e7cef8e9a7ac555953517a7d796b23343ddf017e4d8d5642447ba2a21921e26fd4fc1df889fc2f24f33322e6a5388a276d1997f62160e25e105dcdbfd03140263e14f95b7d1c0b857c8cda157896c05383903e29117e5816b9ac7253282b7b2c6a37f5d743d37de0cb5464adf5f5f4b9e93891f90c1d7e9e69391936110bac5b1e8281d35aa4afb78768cf0c327e1b78a97b16e31d3f10060793f83ce9fb6a28dc7bf7936de915f8542a9433f4413b9c2a5d0493dc704242284d1c13dce581d7430f029436f900b16cd85f87ace67c455985779b9853beb00df9c7ee7fd343ec7e06636caf86a964b2fca7b5f6151282f7d39a8342cab95be0f2bfa3417d3524f9d1e2499ad8c60edcc9745f412cb8cced7ef4d2b66b1df296df7b4c8a7ca2f3080423b9ed321964ae942525459cc4b1e8ab63da705457217dcdc78e65b7f13ccca8eac766caadea4affabcb77d5addfeb4b5610a908cf72197c8843da77c207c77c3f07a46ef74ec592825f3f0cdcaac0964b3f254090d9c982d2d468521cce9c876be16091962d5d0d6cf8c3df15974bc433279873fa79c7bdef93f00fb3368a3e3158b8dbc7abbb956ab30158c51c1bc67648c1642eddbf6c6bdba7b23bf47e32e1f3ca405d62d098db1e279922879f66b2eaf25e9ebec9c4dae9544a353c71415c078f6c8c0c6765c0bd684d12e8cc9989deac2ae8d0c240ffdf52e6cc88dd77be6e623d8b909a38d76cd11f052579c6f41502295f9a84277472cc3469502e02179de53e537c6ac284f153439f3fed1a13e56d942607b222e7ab7396cfa0879f58bab70f2451c65fd15933f1fac30e8083d9e3219ee69a3835a40b942695ade334febcfe6222c393f902aefeac00e7c9fb8d95fbb03bca67349c81227cb1a7dd8ed53b5564840ceb69770cf2798ae8337e8c4243efa78a2acd3d29040653ab4420b143a3f97706a1d26829b06236c7c96842d611f280582ee892df7d852f53119dba1c3e44fa32231961d09c6b242c0f2cee1149dec69beaceed29d4f4410920390d8ea115252699d10d676fc2dfb7872579479f7293a060a1aab9d376ef64c32df6c8c1223dfa5774f3218e82f7e6e20b9bdea580b3ddb64cb35252f748357c5b2a0e02dbcc72e4ae20594979c3d5a59eb0f1a3ef607531b104c497301e465187c36c17f9d90359d8dec08618c67422239a85706b0543850313d66915f494f0ca1db1a92f7bb00f9777d1c4611313a2b6eb6adaf0f9023fdf847e51f1b4050a82e9bfae5f5fcff08d7a3845d3645d0bb8ff299377e251d479cf2ffe2f4632d3fbe456ef2d3aa636f64512d7e3f19f0254c9ba131512f38fe4addfebb82ab307d00cb1cd60b713db8d289ebc2745c59f50c3faac180d7d04f781b3ed6b08ac97f08c7fa7763cd308e392cd3e6b40063d47d181891bdde2162dc11d1aa64d1ee8e0de550e4b2d290a14a2027eef92b5db0cee5bf69fe1a966321ba65c820029c7d5d5db3b07514bb9d5744c74d996afe7664d89acc1a5914dce036b8f85ea0532ad2e1c7db057c535ef1952d680fcb8d02f33ed55e7bc1902392ac48d0ff63e339085d81001053d1bf2d433db8e8fba8905cc471143b4a2248264ab3a1490162b409b2abd565abc873033c81e90dfcf19f0f07ee5b51282b79b011007e65b03b5c56f0f4ee43d41232dadc02ac13dc6b6acde05f5d6c772dbda02da386c91d5d30011c71d35d9a5ed9193ab8bec9ff3ae94650861082a1f47770e4a1a6ecf2254758c185f3125f9e67c04742d77533b2b2432cf6f4f0166a1450d96d392178426ee8b757a00227eb57e567280516e16862bb6ef478fa45b119cf41f87ad43a35395282d9ff0d105c3c703b71281af0f55b5e61fba02a33b1aa6fe4841b5e3b6e9f5f4ef9fd2e83f625b35732d6e3d722aacf5cd8e1150b866e0a9edc8c6e5c0e5c7f7f51092e2148ef55ab94784f5d849ce6f2b58c4dfbc8ace44272a24c30b15b414cf22ddb6985145dcad25feea36b4db313f191ecb8c6d8bf4caf83dd63056dc5c0877beb86c5a955c8829ce5a7d27504be07a5328c345370316d61e562e91d35d88357186d70953abc73c4c7f338bbf6bebb8173818857110e49c3ff1aa7597531467c1d81aadc2b0531e7fcbdadb539e1f8f4183f973b6ac02a373a926370f7b22fda9f5375de658e47ac43219d9f0a99e8a8cf3b163625e422aaa0475e693dd844fffa27fe93a3bb047cd73e2f31690d445ad6dd6fd457bf0221a2d4700e2358e95f7d6ab1fac733db481bb20febb767e0b7cb4fe6c2478501a7b8c265208010419bc3a5bcc09e227dc5a7cc0ccd422ee95f13c4847a99cb63b47aebcae1faaab32a90f9891fe1bb901c1d4ab71633dc190c76e046654b06b3310031ce4e2f7aeef70e4017c86ddcb4af5f5a6608acab1ef34d8baa58559e997200d8e0dac285ce17f9143b5196adfa566d8df345d1b6ecce914aa5a6effe6dccc63ab7427e9284112d3bf49b8392e747c0e0a9a661539c97a438fb6aed2b8397983819f4a63ed04cd83a7262077d6c4e13a5fd2151570f8c51bd1125fc091510b9a061aebb8c6d46332e043f60de92eca9db30a4c9b3f8c791eeaf7f885561e17f0c7577f2ff0066aa7545301b9a9687656596b33b2a4dd975e77f12d4347d0cc06e20f8930f07e2dfa697dc296f8a18891125209f74893bd184cf7c0296ad51ffecf56f401c1de66f6ff104b61ae38eb570472953e65add5e52a3f90475d6fe478bda16652dc937907d15f9cc7ded970822dc8d9b086c040284ae12573a69230b5da6d5780da44d24967b0003ea06e8cf8565d7dd78120c13c1c12f94095046972ee93482d3d4c828265f0361b24e4c6031786a56602460d9f404a3e83316b4bac65e7f76e8df882e69e241236fc8794f7aad1eb2bdd412c90c9de2a364ef41a0fcb33309e4be27e9c2524be27fcded13f25c586d770dd0c7cb85253daaa291f74134a5e6003006594cbaca74ca4d5e9f1cb1bf69fbf3289631a0bff045d1c119c8d68e655af4dd3cfbb5d4a12bd0c02e6e0d3b827bb7d72de5eccdb04c1a3a6fe78a62f8d4647363d0186337171374802f1e6e7c9476f4c3df4448c3c84c9653258e6a724d45c838105d6b3cdfcdf2b05767917e55d59487773f5d7ede1596597d535caddca42fa9bf554c44c50010ef082ae904515cc801b90114db77ae81c49a77507280a2a3059cd1b2eb24156d814e451d009be05bb86e8baa0a24e34e8e2e7fa7e5456732b0f1bc72809cd2660f20cefb1a85ec2d13c8c237efccd1c94230457fa470d5dd37046e24809dcb4cdf944294f9f6a34f629f79423a503c9417cb44cafae1982b0cbc5718b814e26382a0f7960982a7d44f54a7a7f60861d586b91167ee4a38cb6308a3a82d5c83e57716fa37e564e7469a5e11b1edc63c9a60801cc8b7ffb1fb0532154d9c4338b415909c5416e19c0662134fa0c898f8827105a7116d7cfb116a190f5fe35a4fb1fbe9d8c994c026bbafa73321afa9dc8e60d15ffa908638a54b2f5358cd08f6aeb78e9de2d1271885b4793b67d2e2170ffdd4776b052247bc3802bdb72fbef654020bb3cb36dd5e0105a985d628b2226ce96b64ba4ad9d370c8ce685817f7bbfb715abc1ab0514969b75f0403bce9cfedc3b6064708cec300b38ed8d621e6a5a15ea80812f7c67ce9aef834023de0e4527bb8c8c568cebecb75b192daf488ac9cc590359b3b2f52621f11603f4bded9ad39e1106e8ee91ac64e21a5db17ce71a15033d7c415c25d01d7f0eb471d0cae24e23a59f41c939cc00", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x18, 0x0, 0x0, {0x1000000}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
io_submit(r3, 0x1, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r2, &(0x7f00000000c0)=' ', 0xfffffde3}])

960.214435ms ago: executing program 4 (id=1445):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
modify_ldt$write(0x1, &(0x7f0000000140)={0x7, 0xffffffffffffffff, 0x2000, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB="200000000307010800000000000000000200000751c2010073797a30000000009aebbe2ea3fdfec6dbad246c6ca69881d107638f909287eaa1c6290b777189ca18cab182ecf08ee113e1c5cf4a5948830f1a2d9952f3cc396fe9b297fe19bb41498aaa9fce14f4be088bb277f882f59c0ed5a0286bd0f944c57a56be15e092e47af900"/141], 0x20}, 0x1, 0x0, 0x0, 0x4040040}, 0xc040)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0xf0c5, 0x100, 0x1, 0x165}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000540)=<r6=>0x0)
syz_io_uring_setup(0x1510, &(0x7f0000000340)={0x0, 0xffd0, 0x40, 0x1, 0xed}, &(0x7f00000003c0)=<r7=>0x0, &(0x7f0000000400))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x40, &(0x7f0000000500)=0x3, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x40, 0x0, @fd_index=0xc7d2, 0x9, 0x0, 0x4, 0x0, 0x1})
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
r8 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000040), 0x2103, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r8, 0xc008640a, &(0x7f0000000140))
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r8, 0x84, 0x20, &(0x7f0000000280)=0x5, 0x4)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="180000002400010300000000000000000100000004"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
io_uring_enter(r4, 0x3517, 0x173d, 0x42, 0x0, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000100)={'syz0\x00', {0x0, 0x0, 0x180, 0xfffc}, 0x7, [0x0, 0x80000000, 0x0, 0x0, 0x8, 0x0, 0x0, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x20002, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000], [0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xffffffff, 0x0, 0x3d, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x1, 0x200, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], [0x0, 0x401, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20, 0x95e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x1], [0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x3, 0x100000, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x1, 0x8000, 0x3, 0x0, 0x0, 0x10000000, 0x5, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xcdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x80000000]}, 0x45c)
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000200)={0x0, 0x7d4b, 0x10100}, &(0x7f0000000180), &(0x7f0000000000))

810.344563ms ago: executing program 0 (id=1446):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_ID={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x5c}}, 0x0)
wait4(r1, 0x0, 0x40000000, &(0x7f0000000680))
r3 = inotify_init1(0x80800)
inotify_add_watch(r3, &(0x7f0000000140)='.\x00', 0x40000022)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
read$eventfd(r4, &(0x7f0000000100), 0xfffffd79)
ptrace(0x10, r1)
sendmmsg$inet6(r0, &(0x7f0000003040)=[{{&(0x7f0000000780)={0xa, 0x4e21, 0x6, @dev={0xfe, 0x80, '\x00', 0x2e}, 0x9}, 0x1c, 0x0, 0x0, &(0x7f0000001a40)=[@flowinfo={{0x10, 0x29, 0x34, 0x6}}], 0x10}}], 0x1, 0x20052044)

727.887895ms ago: executing program 0 (id=1447):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10)
sendmsg$rds(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000400)=[@mask_cswp={0x58, 0x114, 0x9, {{0x7fff, 0x80000000}, 0x0, 0x0, 0x9, 0x8, 0x3, 0x800, 0x47, 0x6}}, @fadd={0x58, 0x114, 0x6, {{0x101, 0xe}, 0x0, 0x0, 0x8, 0x200, 0x9, 0x2, 0x0, 0x400}}], 0xb0}, 0x0) (async)
sendmsg$rds(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000400)=[@mask_cswp={0x58, 0x114, 0x9, {{0x7fff, 0x80000000}, 0x0, 0x0, 0x9, 0x8, 0x3, 0x800, 0x47, 0x6}}, @fadd={0x58, 0x114, 0x6, {{0x101, 0xe}, 0x0, 0x0, 0x8, 0x200, 0x9, 0x2, 0x0, 0x400}}], 0xb0}, 0x0)
socket$netlink(0x10, 0x3, 0x0) (async)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32=r3, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x402c573}]}, 0x38}}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
r6 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'syzkaller0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000001b00)=@raw={'raw\x00', 0x3c1, 0x3, 0x1434, 0x116c, 0x1170, 0x1170, 0x116c, 0x1170, 0x136c, 0x1398, 0x1398, 0x136c, 0x1398, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @broadcast}, @remote, [], [], 'veth0_vlan\x00', 'veth0_to_hsr\x00', {}, {}, 0x84}, 0x0, 0x1124, 0x116c, 0x0, {}, [@common=@inet=@multiport={{0x50}}, @common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz1\x00'}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}, {{@uncond, 0x0, 0x1dc, 0x200, 0x0, {}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@empty, @private2, @remote, @remote, @private2, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @local}, @mcast1, @loopback, @remote, @mcast2, @empty, @rand_addr=' \x01\x00', @mcast1, @loopback]}}]}, @common=@inet=@SYNPROXY={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x1490) (async)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000001b00)=@raw={'raw\x00', 0x3c1, 0x3, 0x1434, 0x116c, 0x1170, 0x1170, 0x116c, 0x1170, 0x136c, 0x1398, 0x1398, 0x136c, 0x1398, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @broadcast}, @remote, [], [], 'veth0_vlan\x00', 'veth0_to_hsr\x00', {}, {}, 0x84}, 0x0, 0x1124, 0x116c, 0x0, {}, [@common=@inet=@multiport={{0x50}}, @common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz1\x00'}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}, {{@uncond, 0x0, 0x1dc, 0x200, 0x0, {}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@empty, @private2, @remote, @remote, @private2, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @local}, @mcast1, @loopback, @remote, @mcast2, @empty, @rand_addr=' \x01\x00', @mcast1, @loopback]}}]}, @common=@inet=@SYNPROXY={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x1490)
sendmsg$nl_route_sched(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000700)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r7, {0xffff, 0x6}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}]}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)
readv(r1, &(0x7f0000000580)=[{&(0x7f0000000080)=""/219, 0xdb}, {&(0x7f0000000180)=""/1, 0x1}, {&(0x7f00000001c0)=""/251, 0xfb}, {&(0x7f00000002c0)=""/231, 0xe7}, {&(0x7f00000003c0)=""/53, 0x35}, {&(0x7f00000004c0)=""/18, 0x12}, {&(0x7f0000000500)=""/79, 0x4f}], 0x7) (async)
readv(r1, &(0x7f0000000580)=[{&(0x7f0000000080)=""/219, 0xdb}, {&(0x7f0000000180)=""/1, 0x1}, {&(0x7f00000001c0)=""/251, 0xfb}, {&(0x7f00000002c0)=""/231, 0xe7}, {&(0x7f00000003c0)=""/53, 0x35}, {&(0x7f00000004c0)=""/18, 0x12}, {&(0x7f0000000500)=""/79, 0x4f}], 0x7)

723.7026ms ago: executing program 2 (id=1448):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000b80)=@newtaction={0x78, 0x30, 0x1, 0x0, 0x0, {}, [{0x64, 0x1, [@m_tunnel_key={0x60, 0x1, 0x0, 0x0, {{0xf}, {0x30, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @initdev={0xac, 0x1e, 0x0, 0x0}}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, @TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x0, 0x7000000, 0x300}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}}, 0x8000)

589.672141ms ago: executing program 2 (id=1449):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000900)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)={<r1=>r0})
r2 = syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x38, r2, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e22}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_FLAGS={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x24004081}, 0x4000801)
r3 = io_uring_setup(0xaae, &(0x7f0000000100)={0x0, 0xffffeffa, 0x800, 0x7, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0), 0x0)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r4 = syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc2c45512, &(0x7f0000000a00)={{0xa, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803fc90, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2]})

589.453623ms ago: executing program 2 (id=1450):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={{0x14}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x28}, 0x1, 0x0, 0x0, 0x10004}, 0x4)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000080)=0x1, r1, 0x0, 0x2, 0x4}}, 0x20)
ioctl$FS_IOC_SETFLAGS(r0, 0x40046602, &(0x7f00000000c0)=0x40)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000003c0)={0x7, 0x8, 0xfa00, {r1, 0x7}}, 0x10)

528.75155ms ago: executing program 3 (id=1451):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
inotify_init()

528.197896ms ago: executing program 2 (id=1452):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001340)=@newtaction={0x494, 0x30, 0x12f, 0x0, 0x0, {}, [{0x480, 0x1, [@m_police={0x47c, 0x1, 0x0, 0x0, {{0xb}, {0x450, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc74, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffb5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x4, 0x0, 0x0, 0x0, 0x8000}}}, @TCA_POLICE_RATE64={0xc, 0x8, 0xfffffffffffffff9}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x1}}}}]}]}, 0x494}}, 0x0)

527.81719ms ago: executing program 0 (id=1453):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, 0x0, 0x40000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x18, &(0x7f0000000140)=0xa80, 0x4)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
lsetxattr$security_ima(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100), &(0x7f0000000380)=@v1={0x2, "ed6d00"}, 0x4, 0x1)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r8=>0x0})
r9 = syz_open_dev$sndpcmc(&(0x7f0000000a00), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r9, 0xc25c4110, &(0x7f0000000100)={0x0, [[0x1, 0x0, 0x0, 0x0, 0x0, 0x1], [0x20000000, 0x500, 0x4, 0x0, 0x0, 0x0, 0x0, 0x6], [0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]], '\x00', [{0x0, 0x0, 0x0, 0x1, 0x1}, {0x0, 0x5, 0x0, 0x1}, {0x0, 0xe}, {0x5}, {}, {0x0, 0x9}], '\x00', 0x6b4})
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r7, 0x5, 0xffff0000, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)

470.030314ms ago: executing program 2 (id=1454):
socket$igmp(0x2, 0x3, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
setpriority(0x0, 0x0, 0x10000)
poll(&(0x7f0000000140)=[{0xffffffffffffffff, 0x19f23}], 0x1, 0x2000000)

469.481769ms ago: executing program 3 (id=1455):
fsopen(&(0x7f0000000000)='befs\x00', 0x1)
userfaultfd(0x801)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000020000000000000f9ffff0b85000000ae000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x90)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
chown(&(0x7f0000000140)='./file0\x00', 0xee01, 0x0)
socket$inet6(0xa, 0x1, 0x200)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r1, @ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="15dc18d59ca607fe4d170460fdbe01fed02dfcfb7b36da3673b9a6d4c7c3e70c824d8c9172d9c6c5b5a910b20e8fefd07aa0e30cadb921710506", @ANYRESHEX=0x0])
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x149a82, 0x240)
write$cgroup_int(r2, &(0x7f0000000000)=0xfe8e, 0x12)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000001b00)=""/102392, 0x18ff8)
openat$procfs(0xffffff9c, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYRESDEC=r1], 0x1c}}, 0x4004)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socket(0x400000000010, 0x3, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x80400, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r5, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)

130.231846ms ago: executing program 0 (id=1456):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="b40000000000000079104800000000006200260000000000950003003b7e56b4cc04d5b3312571fb3a7304e8c3b3cf390cf7707fdb338655956529627869f9e47767b0ba29f6ea64396e8d07842107cf299c00ed5476764df07b68bf62737b740ed460f5d75811732d0d247011ed42f5232a8f8342d74569dff45d2ce08b9728ce4bea2ec344caeff76bae58ebd74ac0b1747590cc8e8cf65ccd97329a6f9d1b8f73734586d00f1b77a6"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = io_uring_setup(0x3f6e, &(0x7f0000000040))
io_uring_register$IORING_REGISTER_FILES2(r1, 0xf, &(0x7f0000000380)={0x60, 0x1, 0x0, 0x0, 0x0}, 0x20)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000009c0), r0)
getpid()
sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000a00)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="05000000595a20b7fd17bf69e3"], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x24000080)

129.605406ms ago: executing program 0 (id=1457):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000000)={0x30, 0x5, 0x0, {0x0, 0xff0f}}, 0x30)
io_submit(r3, 0x1, &(0x7f0000000700)=[&(0x7f0000000440)={0x0, 0x20000000, 0x4, 0x1, 0x0, r2, 0x0, 0x0, 0xd00}])
syz_fuse_handle_req(r0, 0x0, 0x0, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r2, r0, 0x0)

87.252793ms ago: executing program 4 (id=1458):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40088a01, &(0x7f0000000000)=0x200)

278.058µs ago: executing program 4 (id=1459):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000900)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)={<r1=>r0})
r2 = syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x48, r2, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e22}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_FLAGS={0x8}]}, 0x48}, 0x1, 0x0, 0x0, 0x24004081}, 0x4000801)
r3 = io_uring_setup(0xaae, &(0x7f0000000100)={0x0, 0xffffeffa, 0x800, 0x7, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0), 0x0)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r4 = syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc2c45512, &(0x7f0000000a00)={{0xa, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803fc90, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2]})

0s ago: executing program 4 (id=1460):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000100)={0x0, 0x1, 0x3, 0x7, 0x1a4, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$TCSBRK(0xffffffffffffffff, 0x5409, 0x80004)
r0 = socket$inet6(0xa, 0x2, 0x3a)
syz_emit_ethernet(0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r3=>0x0})
getresuid(&(0x7f0000000140), &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0))
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@empty, @in=@multicast2, 0x4e23, 0x61, 0x4e23, 0x1, 0xa, 0x80, 0x80, 0x32, r3, r4}, {0x8000, 0x9, 0xffffffff, 0x10, 0xfa, 0x8, 0xfffffffffffffffd, 0x200}, {0x4, 0x8, 0x10001, 0x2}, 0x7, 0x6e6bb5, 0x0, 0x0, 0x2, 0x2}, {{@in=@multicast2, 0x4d3, 0x3c}, 0x2, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x34ff, 0x7, 0x1, 0x3, 0x7, 0x4, 0x4}}, 0xe4)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r6 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r6, &(0x7f0000000040)={0x18, 0x0, {0x4, @random="bb7fb37b9489", 'bond0\x00'}}, 0x1e)
sendmmsg(r6, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}}], 0x3e8, 0x0)

kernel console output (not intermixed with test programs):

r parsing attributes in process `syz.3.673'.
[  144.262165][ T8348] netlink: 4 bytes leftover after parsing attributes in process `syz.2.672'.
[  144.265000][ T8348] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  144.267282][ T8348] batman_adv: batadv0: Removing interface: batadv_slave_0
[  144.302862][ T8348] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  144.305235][ T8348] batman_adv: batadv0: Removing interface: batadv_slave_1
[  144.530323][ T8365] trusted_key: encrypted_key: master key parameter '' is invalid
[  145.817234][ T8394] FAULT_INJECTION: forcing a failure.
[  145.817234][ T8394] name failslab, interval 1, probability 0, space 0, times 0
[  145.821622][ T8394] CPU: 1 UID: 0 PID: 8394 Comm: syz.2.688 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  145.821638][ T8394] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.821645][ T8394] Call Trace:
[  145.821650][ T8394]  <TASK>
[  145.821655][ T8394]  dump_stack_lvl+0x16c/0x1f0
[  145.821695][ T8394]  should_fail_ex+0x512/0x640
[  145.821714][ T8394]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  145.821733][ T8394]  should_failslab+0xc2/0x120
[  145.821745][ T8394]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  145.821761][ T8394]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  145.821776][ T8394]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  145.821789][ T8394]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  145.821807][ T8394]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  145.821826][ T8394]  mmu_topup_memory_caches+0x25/0x170
[  145.821840][ T8394]  kvm_mmu_load+0xd9/0x22a0
[  145.821853][ T8394]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  145.821870][ T8394]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  145.821895][ T8394]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  145.821914][ T8394]  ? __pfx_kvm_mmu_load+0x10/0x10
[  145.821926][ T8394]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  145.821941][ T8394]  ? kvm_check_and_inject_events+0x71c/0x1310
[  145.821957][ T8394]  vcpu_run+0x34eb/0x5500
[  145.821975][ T8394]  ? __pfx_vcpu_run+0x10/0x10
[  145.821990][ T8394]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  145.822002][ T8394]  ? __local_bh_enable_ip+0xa4/0x120
[  145.822018][ T8394]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  145.822031][ T8394]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  145.822047][ T8394]  kvm_vcpu_ioctl+0x5eb/0x1690
[  145.822062][ T8394]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  145.822075][ T8394]  ? tomoyo_path_number_perm+0x18d/0x580
[  145.822094][ T8394]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  145.822111][ T8394]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  145.822129][ T8394]  ? do_vfs_ioctl+0x523/0x1a60
[  145.822145][ T8394]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  145.822170][ T8394]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  145.822183][ T8394]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  145.822197][ T8394]  ? __fget_files+0x20e/0x3c0
[  145.822211][ T8394]  ? __fput_deferred+0x460/0x480
[  145.822225][ T8394]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  145.822239][ T8394]  __ia32_compat_sys_ioctl+0x242/0x370
[  145.822254][ T8394]  __do_fast_syscall_32+0x7c/0x3a0
[  145.822268][ T8394]  do_fast_syscall_32+0x32/0x80
[  145.822279][ T8394]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  145.822294][ T8394] RIP: 0023:0xf710e579
[  145.822303][ T8394] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  145.822313][ T8394] RSP: 002b:00000000f50fe55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  145.822325][ T8394] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  145.822332][ T8394] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  145.822338][ T8394] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  145.822344][ T8394] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  145.822350][ T8394] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  145.822364][ T8394]  </TASK>
[  146.029345][ T8404] fuse: Unknown parameter 'fd0x0000000000000005'
[  147.439286][ T8416] fuse: Unknown parameter 'rootmod'
[  147.614173][ T8427] 9pnet_fd: Insufficient options for proto=fd
[  147.774377][ T8436] geneve3: entered promiscuous mode
[  147.776780][ T8436] geneve3: entered allmulticast mode
[  147.864473][ T8444] syz.2.703: attempt to access beyond end of device
[  147.864473][ T8444] loop2: rw=6144, sector=128, nr_sectors = 8 limit=0
[  147.868865][ T8444] gfs2: error -5 reading superblock
[  147.910998][ T8446] netlink: 8 bytes leftover after parsing attributes in process `syz.2.704'.
[  148.070799][ T8451] netlink: 8 bytes leftover after parsing attributes in process `syz.2.705'.
[  148.076664][ T8451] netlink: 'syz.2.705': attribute type 11 has an invalid length.
[  148.081633][ T8451] netlink: 48 bytes leftover after parsing attributes in process `syz.2.705'.
[  148.513618][ T8480] netlink: 4 bytes leftover after parsing attributes in process `syz.2.714'.
[  148.549719][ T8483] fuse: Bad value for 'fd'
[  148.552052][ T8483] netlink: 8 bytes leftover after parsing attributes in process `syz.3.718'.
[  148.554715][ T8483] netlink: 93 bytes leftover after parsing attributes in process `syz.3.718'.
[  148.558478][ T8483] fuse: Bad value for 'fd'
[  148.683327][ T8493] vlan2: entered promiscuous mode
[  148.685204][ T8493] vlan2: entered allmulticast mode
[  148.686903][ T8493] hsr_slave_1: entered allmulticast mode
[  148.973873][ T8504] netlink: 'syz.3.724': attribute type 13 has an invalid length.
[  148.979882][ T8504] gretap0: refused to change device tx_queue_len
[  148.983921][ T8504] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  149.218123][ T8515] netlink: 4096 bytes leftover after parsing attributes in process `syz.3.728'.
[  149.304298][ T8520] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  149.306377][ T8520] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  149.306699][ T8521] netlink: 136 bytes leftover after parsing attributes in process `syz.3.730'.
[  149.308756][ T8520] vhci_hcd vhci_hcd.0: Device attached
[  149.312306][ T8521] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  149.322897][ T8522] vhci_hcd: unknown pdu 1
[  149.330371][ T1232] vhci_hcd: stop threads
[  149.332494][ T1232] vhci_hcd: release socket
[  149.334538][ T1232] vhci_hcd: disconnect device
[  149.348770][ T8525] netlink: 132 bytes leftover after parsing attributes in process `syz.0.732'.
[  149.544442][ T5947] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  149.547986][ T5947] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  149.551478][ T5947] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  149.555444][ T5947] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  149.558360][ T5947] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  149.723076][ T8537] chnl_net:caif_netlink_parms(): no params data found
[  149.830297][ T8537] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.834375][ T8537] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.836857][ T8537] bridge_slave_0: entered allmulticast mode
[  149.839520][ T8537] bridge_slave_0: entered promiscuous mode
[  149.843175][ T8537] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.845512][ T8537] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.847754][ T8537] bridge_slave_1: entered allmulticast mode
[  149.850340][ T8537] bridge_slave_1: entered promiscuous mode
[  149.897664][ T8537] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.902573][ T8537] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.955179][ T8537] team0: Port device team_slave_0 added
[  149.961607][ T8537] team0: Port device team_slave_1 added
[  150.030571][   T41] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.038844][ T8537] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.043114][ T8537] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.053564][ T8537] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.068145][ T8537] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.071110][ T8537] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.081696][ T8537] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  150.142771][   T41] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.155416][ T8537] hsr_slave_0: entered promiscuous mode
[  150.158386][ T8537] hsr_slave_1: entered promiscuous mode
[  150.161767][ T8537] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  150.164921][ T8537] Cannot create hsr debugfs directory
[  150.232961][   T41] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.324796][   T41] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.496558][ T8556] netlink: 44 bytes leftover after parsing attributes in process `syz.0.741'.
[  150.500221][ T8556] netlink: 'syz.0.741': attribute type 6 has an invalid length.
[  150.503637][ T8556] netlink: 'syz.0.741': attribute type 5 has an invalid length.
[  150.510167][ T8556] netlink: 'syz.0.741': attribute type 4 has an invalid length.
[  150.513182][ T8537] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  150.515265][ T8558] netlink: 'syz.3.742': attribute type 1 has an invalid length.
[  150.524626][ T8537] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  150.562938][ T8558] veth3: entered promiscuous mode
[  150.566548][ T8558] bond1: (slave veth3): Enslaving as a backup interface with a down link
[  150.569399][ T8537] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  150.576273][ T8537] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  150.691272][ T8566] netlink: 'syz.3.745': attribute type 10 has an invalid length.
[  150.846373][   T41] bond0 (unregistering): Released all slaves
[  150.868335][ T8566] batman_adv: batadv0: Adding interface: team0
[  150.871295][ T8566] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.882203][ T8566] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  150.893777][ T8568] ipvlan2: entered promiscuous mode
[  150.952684][ T8537] 8021q: adding VLAN 0 to HW filter on device bond0
[  150.965158][ T8537] 8021q: adding VLAN 0 to HW filter on device team0
[  150.971094][ T1232] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.973392][ T1232] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.981247][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.983961][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.023543][ T8575] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.128561][ T8575] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.168567][ T8537] 8021q: adding VLAN 0 to HW filter on device batadv0
[  151.194523][   T41] hsr_slave_0: left promiscuous mode
[  151.196733][   T41] hsr_slave_1: left promiscuous mode
[  151.219347][   T41] veth1_macvtap: left promiscuous mode
[  151.221203][   T41] veth0_macvtap: left promiscuous mode
[  151.222975][   T41] veth1_vlan: left promiscuous mode
[  151.224702][   T41] veth0_vlan: left promiscuous mode
[  151.584054][ T5954] Bluetooth: hci4: command tx timeout
[  152.029887][ T8567] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  152.143000][ T5954] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  152.146159][ T5954] Bluetooth: hci3: Injecting HCI hardware error event
[  152.149243][ T5947] Bluetooth: hci3: hardware error 0x00
[  152.644645][ T8588] netlink: 'syz.3.749': attribute type 12 has an invalid length.
[  152.755912][ T8575] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.839949][ T8537] veth0_vlan: entered promiscuous mode
[  152.847791][ T8537] veth1_vlan: entered promiscuous mode
[  152.875316][ T8575] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.884229][ T8537] veth0_macvtap: entered promiscuous mode
[  152.890098][ T8537] veth1_macvtap: entered promiscuous mode
[  152.912542][ T8537] batman_adv: batadv0: Interface activated: batadv_slave_0
[  152.921872][ T8537] batman_adv: batadv0: Interface activated: batadv_slave_1
[  152.926628][ T8537] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  152.929382][ T8537] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  152.932787][ T8537] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  152.935931][ T8537] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  152.981003][ T8575] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.003935][ T8575] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.009232][ T1232] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.009249][ T1232] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.028862][ T8575] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.048396][ T8575] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.053877][ T1232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.056430][ T1232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.114981][ T8611] __nla_validate_parse: 2 callbacks suppressed
[  153.114992][ T8611] netlink: 4 bytes leftover after parsing attributes in process `syz.2.754'.
[  153.319919][ T8618] hub 2-0:1.0: USB hub found
[  153.325007][ T8618] hub 2-0:1.0: 2 ports detected
[  153.427495][ T8620] input: syz1 as /devices/virtual/input/input18
[  153.569077][ T8624] netem: change failed
[  153.571653][ T8624] netlink: 8 bytes leftover after parsing attributes in process `syz.0.758'.
[  153.671279][ T5954] Bluetooth: hci4: command tx timeout
[  153.874985][  T837] kernel write not supported for file [eventfd] (pid: 837 comm: kworker/0:2)
[  154.221274][ T5947] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  154.274022][ T8650] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  154.333594][ T8650] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.279158][ T8650] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.742506][ T5947] Bluetooth: hci4: command tx timeout
[  155.824004][ T8650] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.924972][ T8650] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.967660][ T8696] IPv6: Can't replace route, no match found
[  156.109569][ T8650] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.135995][ T8650] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.145192][ T8650] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.171036][ T8650] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  156.906810][ T8717] netlink: 168 bytes leftover after parsing attributes in process `syz.3.787'.
[  156.910257][ T8717] netlink: 168 bytes leftover after parsing attributes in process `syz.3.787'.
[  157.120735][ T8724] netlink: 4 bytes leftover after parsing attributes in process `syz.2.789'.
[  157.261975][ T8728] ip6t_srh: unknown srh invflags 6BE9
[  157.821292][ T5947] Bluetooth: hci4: command tx timeout
[  158.056518][ T8755] bridge1: entered promiscuous mode
[  158.223220][ T8759] netlink: 8 bytes leftover after parsing attributes in process `syz.3.800'.
[  158.226013][ T8759] netlink: 8 bytes leftover after parsing attributes in process `syz.3.800'.
[  158.257287][ T8762] netlink: 4 bytes leftover after parsing attributes in process `syz.3.801'.
[  158.344853][ T8765] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  158.622083][ T6008] kernel write not supported for file /626/setgroups (pid: 6008 comm: kworker/0:5)
[  159.310013][ T8796] virtio-fs: tag <c:::> not found
[  159.497490][ T8804] macvlan0: entered allmulticast mode
[  159.499681][ T8804] veth1_vlan: entered allmulticast mode
[  159.606332][ T8803] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  159.686505][ T8807] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  159.688921][ T8807] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  159.693764][ T8807] vhci_hcd vhci_hcd.0: Device attached
[  159.931322][ T1265] usb 45-1: new high-speed USB device number 2 using vhci_hcd
[  160.328294][ T8808] vhci_hcd: connection reset by peer
[  160.330338][   T94] vhci_hcd: stop threads
[  160.331824][   T94] vhci_hcd: release socket
[  160.333316][   T94] vhci_hcd: disconnect device
[  160.399579][ T8830] input: syz1 as /devices/virtual/input/input19
[  161.100381][ T8850] loop6: detected capacity change from 0 to 524287999
[  161.140042][   T40] audit: type=1326 audit(1749113851.852:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.147660][   T40] audit: type=1326 audit(1749113851.852:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.155826][   T40] audit: type=1326 audit(1749113851.862:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.162626][   T40] audit: type=1326 audit(1749113851.862:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.169485][   T40] audit: type=1326 audit(1749113851.862:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.176480][   T40] audit: type=1326 audit(1749113851.872:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.183085][   T40] audit: type=1326 audit(1749113851.872:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.189641][   T40] audit: type=1326 audit(1749113851.872:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.196428][   T40] audit: type=1326 audit(1749113851.872:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.202935][   T40] audit: type=1326 audit(1749113851.872:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.3.833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  161.328191][ T8865] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  161.337167][ T8865] netlink: 12 bytes leftover after parsing attributes in process `syz.2.835'.
[  161.761313][   T54] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  161.911251][   T54] usb 5-1: device descriptor read/64, error -71
[  162.226102][ T8885] kAFS: No cell specified
[  162.281240][   T54] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  162.431242][   T54] usb 5-1: device descriptor read/64, error -71
[  162.553348][   T54] usb usb5-port1: attempt power cycle
[  162.913115][   T54] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  162.956956][   T54] usb 5-1: device descriptor read/8, error -71
[  163.214027][   T54] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  163.240576][   T54] usb 5-1: device descriptor read/8, error -71
[  163.361505][   T54] usb usb5-port1: unable to enumerate USB device
[  163.532890][ T8926] netlink: 4 bytes leftover after parsing attributes in process `syz.2.848'.
[  163.977415][ T8936] trusted_key: encrypted_key: insufficient parameters specified
[  165.031631][ T1265] vhci_hcd: vhci_device speed not set
[  165.181284][ T5947] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  165.185626][ T5947] Bluetooth: hci1: Injecting HCI hardware error event
[  165.189489][ T5954] Bluetooth: hci1: hardware error 0x00
[  165.638086][ T8990] netlink: 'syz.0.867': attribute type 10 has an invalid length.
[  165.826284][ T9000] FAULT_INJECTION: forcing a failure.
[  165.826284][ T9000] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.831655][ T9000] CPU: 3 UID: 0 PID: 9000 Comm: syz.2.871 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  165.831681][ T9000] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.831692][ T9000] Call Trace:
[  165.831698][ T9000]  <TASK>
[  165.831705][ T9000]  dump_stack_lvl+0x16c/0x1f0
[  165.831761][ T9000]  should_fail_ex+0x512/0x640
[  165.831791][ T9000]  _copy_to_user+0x32/0xd0
[  165.831816][ T9000]  do_pagemap_scan+0xb81/0xcf0
[  165.831846][ T9000]  ? __pfx_do_pagemap_scan+0x10/0x10
[  165.831895][ T9000]  ? __fget_files+0x20e/0x3c0
[  165.831918][ T9000]  ? __fput_deferred+0x460/0x480
[  165.831943][ T9000]  do_pagemap_cmd+0x58/0x80
[  165.831970][ T9000]  ? __pfx_do_pagemap_cmd+0x10/0x10
[  165.832008][ T9000]  __ia32_compat_sys_ioctl+0x242/0x370
[  165.832046][ T9000]  __do_fast_syscall_32+0x7c/0x3a0
[  165.832069][ T9000]  do_fast_syscall_32+0x32/0x80
[  165.832086][ T9000]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  165.832108][ T9000] RIP: 0023:0xf710e579
[  165.832121][ T9000] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  165.832138][ T9000] RSP: 002b:00000000f50fe55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  165.832156][ T9000] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0606610
[  165.832167][ T9000] RDX: 00000000800010c0 RSI: 0000000000000000 RDI: 0000000000000000
[  165.832177][ T9000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  165.832187][ T9000] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  165.832197][ T9000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  165.832220][ T9000]  </TASK>
[  166.292238][   T40] kauditd_printk_skb: 45 callbacks suppressed
[  166.292249][   T40] audit: type=1326 audit(1749113857.012:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9008 comm="syz.4.874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  166.311133][   T40] audit: type=1326 audit(1749113857.012:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9008 comm="syz.4.874" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  166.559520][ T9031] syz.4.882 (9031): drop_caches: 2
[  166.664304][ T9045] netlink: 4 bytes leftover after parsing attributes in process `syz.0.888'.
[  166.714849][ T9051] netlink: 132 bytes leftover after parsing attributes in process `syz.0.889'.
[  166.748651][ T9057] FAULT_INJECTION: forcing a failure.
[  166.748651][ T9057] name failslab, interval 1, probability 0, space 0, times 0
[  166.752810][ T9057] CPU: 3 UID: 0 PID: 9057 Comm: syz.0.892 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  166.752826][ T9057] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.752833][ T9057] Call Trace:
[  166.752837][ T9057]  <TASK>
[  166.752841][ T9057]  dump_stack_lvl+0x16c/0x1f0
[  166.752863][ T9057]  should_fail_ex+0x512/0x640
[  166.752876][ T9057]  ? __kmalloc_noprof+0xbf/0x510
[  166.752894][ T9057]  ? lsm_blob_alloc+0x68/0x90
[  166.752910][ T9057]  should_failslab+0xc2/0x120
[  166.752922][ T9057]  __kmalloc_noprof+0xd2/0x510
[  166.752942][ T9057]  lsm_blob_alloc+0x68/0x90
[  166.752955][ T9057]  security_sk_alloc+0x30/0x270
[  166.752983][ T9057]  sk_prot_alloc+0xfb/0x2a0
[  166.752999][ T9057]  sk_alloc+0x36/0xc20
[  166.753017][ T9057]  inet_create+0x3a1/0x1090
[  166.753034][ T9057]  ? inet_create+0x93/0x1090
[  166.753052][ T9057]  __sock_create+0x335/0x8d0
[  166.753070][ T9057]  udp_sock_create4+0xa6/0x450
[  166.753083][ T9057]  ? __pfx_udp_sock_create4+0x10/0x10
[  166.753099][ T9057]  ? lockdep_hardirqs_on+0x7c/0x110
[  166.753116][ T9057]  ? crng_make_state+0x48e/0x6d0
[  166.753134][ T9057]  rxrpc_open_socket+0x4f5/0x6b0
[  166.753149][ T9057]  ? __pfx_rxrpc_open_socket+0x10/0x10
[  166.753170][ T9057]  ? __pfx_rxrpc_client_conn_reap_timeout+0x10/0x10
[  166.753186][ T9057]  ? rcu_is_watching+0x12/0xc0
[  166.753200][ T9057]  rxrpc_lookup_local+0xa01/0x1220
[  166.753217][ T9057]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[  166.753234][ T9057]  ? __local_bh_enable_ip+0xa4/0x120
[  166.753248][ T9057]  rxrpc_sendmsg+0x37e/0x680
[  166.753267][ T9057]  ____sys_sendmsg+0xa95/0xc70
[  166.753282][ T9057]  ? __pfx_____sys_sendmsg+0x10/0x10
[  166.753296][ T9057]  ? get_compat_msghdr+0x11a/0x170
[  166.753314][ T9057]  ___sys_sendmsg+0x134/0x1d0
[  166.753325][ T9057]  ? __pfx____sys_sendmsg+0x10/0x10
[  166.753343][ T9057]  ? find_held_lock+0x2b/0x80
[  166.753364][ T9057]  __sys_sendmsg+0x16d/0x220
[  166.753374][ T9057]  ? __pfx___sys_sendmsg+0x10/0x10
[  166.753391][ T9057]  ? rcu_is_watching+0x12/0xc0
[  166.753404][ T9057]  __do_fast_syscall_32+0x7c/0x3a0
[  166.753417][ T9057]  do_fast_syscall_32+0x32/0x80
[  166.753428][ T9057]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  166.753441][ T9057] RIP: 0023:0xf711e579
[  166.753450][ T9057] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  166.753461][ T9057] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  166.753472][ T9057] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000900
[  166.753479][ T9057] RDX: 0000000020014804 RSI: 0000000000000000 RDI: 0000000000000000
[  166.753485][ T9057] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  166.753491][ T9057] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  166.753497][ T9057] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  166.753524][ T9057]  </TASK>
[  166.789617][ T9055] xt_CT: No such helper "snmp_trap"
[  166.835476][ T9064] random: crng reseeded on system resumption
[  166.880430][ T9064] Restarting kernel threads ...
[  166.882725][ T9064] Done restarting kernel threads.
[  166.886731][ T9064] raw_sendmsg: syz.0.894 forgot to set AF_INET. Fix it!
[  166.922627][ T9067] loop6: detected capacity change from 0 to 524287999
[  167.041513][   T40] audit: type=1326 audit(1749113857.742:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9068 comm="syz.4.896" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f64579 code=0x0
[  167.057231][ T9072] tmpfs: Bad value for 'grpquota_inode_hardlimit'
[  167.074836][ T9076] netlink: 60 bytes leftover after parsing attributes in process `syz.4.896'.
[  167.077771][ T9076] netlink: 60 bytes leftover after parsing attributes in process `syz.4.896'.
[  167.261291][ T5954] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  167.773244][   T40] audit: type=1326 audit(1749113858.492:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9084 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  167.779922][   T40] audit: type=1326 audit(1749113858.492:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9084 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  167.788109][   T40] audit: type=1326 audit(1749113858.492:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9084 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf703e579 code=0x7ffc0000
[  167.794968][   T40] audit: type=1326 audit(1749113858.492:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9084 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  167.801885][   T40] audit: type=1326 audit(1749113858.492:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9084 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  167.808519][   T40] audit: type=1326 audit(1749113858.492:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9084 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf703e579 code=0x7ffc0000
[  167.815347][   T40] audit: type=1326 audit(1749113858.492:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9084 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  167.851244][ T6008] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  167.891084][ T9091] FAULT_INJECTION: forcing a failure.
[  167.891084][ T9091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.896742][ T9091] CPU: 2 UID: 60928 PID: 9091 Comm: syz.4.903 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  167.896759][ T9091] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.896766][ T9091] Call Trace:
[  167.896770][ T9091]  <TASK>
[  167.896774][ T9091]  dump_stack_lvl+0x16c/0x1f0
[  167.896798][ T9091]  should_fail_ex+0x512/0x640
[  167.896813][ T9091]  _copy_from_user+0x2e/0xd0
[  167.896828][ T9091]  kstrtouint_from_user+0xd6/0x1d0
[  167.896846][ T9091]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  167.896863][ T9091]  ? __lock_acquire+0xb8a/0x1c90
[  167.896885][ T9091]  proc_fail_nth_write+0x83/0x250
[  167.896900][ T9091]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  167.896917][ T9091]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  167.896934][ T9091]  vfs_write+0x2a0/0x1150
[  167.896954][ T9091]  ? __pfx_vfs_write+0x10/0x10
[  167.896968][ T9091]  ? find_held_lock+0x2b/0x80
[  167.896983][ T9091]  ? __fget_files+0x20e/0x3c0
[  167.897002][ T9091]  ksys_write+0x12a/0x250
[  167.897018][ T9091]  ? __pfx_ksys_write+0x10/0x10
[  167.897036][ T9091]  ? rcu_is_watching+0x12/0xc0
[  167.897049][ T9091]  __do_fast_syscall_32+0x7c/0x3a0
[  167.897062][ T9091]  do_fast_syscall_32+0x32/0x80
[  167.897073][ T9091]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.897087][ T9091] RIP: 0023:0xf7f64579
[  167.897096][ T9091] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.897107][ T9091] RSP: 002b:00000000f5086590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  167.897118][ T9091] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5086620
[  167.897125][ T9091] RDX: 0000000000000001 RSI: 00000000f73f2ff4 RDI: 0000000000000000
[  167.897131][ T9091] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  167.897137][ T9091] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.897143][ T9091] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.897157][ T9091]  </TASK>
[  168.002557][ T6008] usb 7-1: Using ep0 maxpacket: 8
[  168.007569][ T6008] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  168.010151][ T6008] usb 7-1: config 0 has no interface number 0
[  168.012417][ T6008] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  168.015876][ T6008] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  168.019655][ T6008] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  168.023110][ T6008] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  168.027302][ T6008] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  168.030235][ T6008] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.034000][ T6008] usb 7-1: config 0 descriptor??
[  168.042102][ T6008] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  168.242077][ T6008] usb 7-1: USB disconnect, device number 5
[  168.255777][ T6008] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  168.937423][ T9109] FAULT_INJECTION: forcing a failure.
[  168.937423][ T9109] name failslab, interval 1, probability 0, space 0, times 0
[  168.941691][ T9109] CPU: 1 UID: 0 PID: 9109 Comm: syz.4.910 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  168.941707][ T9109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.941715][ T9109] Call Trace:
[  168.941720][ T9109]  <TASK>
[  168.941725][ T9109]  dump_stack_lvl+0x16c/0x1f0
[  168.941747][ T9109]  should_fail_ex+0x512/0x640
[  168.941759][ T9109]  ? fs_reclaim_acquire+0xae/0x150
[  168.941778][ T9109]  should_failslab+0xc2/0x120
[  168.941789][ T9109]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  168.941807][ T9109]  ? security_inode_alloc+0x3b/0x2b0
[  168.941826][ T9109]  security_inode_alloc+0x3b/0x2b0
[  168.941841][ T9109]  inode_init_always_gfp+0xce4/0x1030
[  168.941860][ T9109]  alloc_inode+0x86/0x240
[  168.941872][ T9109]  new_inode+0x22/0x1c0
[  168.941885][ T9109]  shmem_get_inode+0x19a/0xfb0
[  168.941901][ T9109]  shmem_mknod+0x1a8/0x450
[  168.941920][ T9109]  ? __pfx_shmem_create+0x10/0x10
[  168.941932][ T9109]  lookup_open.isra.0+0x11d3/0x1580
[  168.941950][ T9109]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  168.941972][ T9109]  ? __pfx_down_write+0x10/0x10
[  168.941983][ T9109]  ? mnt_get_write_access+0x20c/0x300
[  168.941997][ T9109]  path_openat+0x893/0x2cb0
[  168.942018][ T9109]  ? __pfx_path_openat+0x10/0x10
[  168.942038][ T9109]  do_filp_open+0x20b/0x470
[  168.942055][ T9109]  ? __pfx_do_filp_open+0x10/0x10
[  168.942081][ T9109]  ? _raw_spin_unlock+0x28/0x50
[  168.942098][ T9109]  ? alloc_fd+0x471/0x7d0
[  168.942117][ T9109]  do_sys_openat2+0x11b/0x1d0
[  168.942130][ T9109]  ? __pfx_do_sys_openat2+0x10/0x10
[  168.942144][ T9109]  ? __fget_files+0x20e/0x3c0
[  168.942158][ T9109]  ? handle_mm_fault+0x1f0/0xd10
[  168.942175][ T9109]  __ia32_compat_sys_openat+0x16d/0x210
[  168.942190][ T9109]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  168.942203][ T9109]  ? ksys_write+0x1ac/0x250
[  168.942221][ T9109]  ? rcu_is_watching+0x12/0xc0
[  168.942235][ T9109]  __do_fast_syscall_32+0x7c/0x3a0
[  168.942248][ T9109]  do_fast_syscall_32+0x32/0x80
[  168.942259][ T9109]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  168.942273][ T9109] RIP: 0023:0xf7f64579
[  168.942281][ T9109] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  168.942292][ T9109] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  168.942303][ T9109] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000180
[  168.942310][ T9109] RDX: 00000000000026e1 RSI: 00000000fffffffb RDI: 0000000000000000
[  168.942316][ T9109] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  168.942322][ T9109] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  168.942328][ T9109] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  168.942342][ T9109]  </TASK>
[  169.046042][ T9105] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  169.048839][ T9105] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  169.091328][ T6002] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  169.392261][ T9118] FAULT_INJECTION: forcing a failure.
[  169.392261][ T9118] name failslab, interval 1, probability 0, space 0, times 0
[  169.396386][ T9118] CPU: 3 UID: 0 PID: 9118 Comm: syz.4.913 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  169.396402][ T9118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.396410][ T9118] Call Trace:
[  169.396414][ T9118]  <TASK>
[  169.396434][ T9118]  dump_stack_lvl+0x16c/0x1f0
[  169.396457][ T9118]  should_fail_ex+0x512/0x640
[  169.396470][ T9118]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  169.396493][ T9118]  should_failslab+0xc2/0x120
[  169.396505][ T9118]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  169.396522][ T9118]  ? vm_area_dup+0x27/0x8d0
[  169.396539][ T9118]  vm_area_dup+0x27/0x8d0
[  169.396555][ T9118]  __split_vma+0x17f/0x1030
[  169.396572][ T9118]  ? mas_next_slot+0x12d3/0x21b0
[  169.396583][ T9118]  ? __pfx___split_vma+0x10/0x10
[  169.396601][ T9118]  ? get_page_from_freelist+0x1321/0x3890
[  169.396621][ T9118]  vms_gather_munmap_vmas+0x392/0x1310
[  169.396640][ T9118]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  169.396656][ T9118]  ? trace_mm_page_alloc+0x11f/0x1a0
[  169.396670][ T9118]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  169.396687][ T9118]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  169.396701][ T9118]  ? is_bpf_text_address+0x94/0x1a0
[  169.396720][ T9118]  ? kernel_text_address+0x8d/0x100
[  169.396737][ T9118]  ? __kernel_text_address+0xd/0x40
[  169.396757][ T9118]  do_vmi_align_munmap+0x27c/0x7d0
[  169.396774][ T9118]  ? __lock_acquire+0x622/0x1c90
[  169.396788][ T9118]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  169.396823][ T9118]  do_vmi_munmap+0x204/0x3e0
[  169.396841][ T9118]  do_munmap+0xbd/0x100
[  169.396855][ T9118]  ? __pfx_do_munmap+0x10/0x10
[  169.396870][ T9118]  ? __pfx_down_write_killable+0x10/0x10
[  169.396887][ T9118]  __do_sys_mremap+0xfe7/0x1590
[  169.396906][ T9118]  ? __pfx___do_sys_mremap+0x10/0x10
[  169.396923][ T9118]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  169.396935][ T9118]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  169.396948][ T9118]  ? __fget_files+0x20e/0x3c0
[  169.396963][ T9118]  ? handle_mm_fault+0x1f0/0xd10
[  169.396985][ T9118]  ? rcu_is_watching+0x12/0xc0
[  169.396998][ T9118]  __do_fast_syscall_32+0x7c/0x3a0
[  169.397010][ T9118]  do_fast_syscall_32+0x32/0x80
[  169.397021][ T9118]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.397035][ T9118] RIP: 0023:0xf7f64579
[  169.397044][ T9118] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.397055][ T9118] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 00000000000000a3
[  169.397066][ T9118] RAX: ffffffffffffffda RBX: 00000000806bd000 RCX: 0000000000002000
[  169.397072][ T9118] RDX: 0000000000004000 RSI: 0000000000000003 RDI: 0000000080721000
[  169.397079][ T9118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.397085][ T9118] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.397091][ T9118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.397104][ T9118]  </TASK>
[  169.757858][ T9127] input: syz1 as /devices/virtual/input/input20
[  169.762641][ T9132] netlink: 4 bytes leftover after parsing attributes in process `syz.0.918'.
[  169.943144][ T9151] netlink: 24 bytes leftover after parsing attributes in process `syz.2.925'.
[  169.969983][ T9151] netlink: 4 bytes leftover after parsing attributes in process `syz.2.925'.
[  170.135471][ T9166] overlayfs: failed to clone upperpath
[  170.145039][ T9169] FAULT_INJECTION: forcing a failure.
[  170.145039][ T9169] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.149014][ T9169] CPU: 0 UID: 0 PID: 9169 Comm: syz.2.929 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  170.149037][ T9169] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.149045][ T9169] Call Trace:
[  170.149050][ T9169]  <TASK>
[  170.149054][ T9169]  dump_stack_lvl+0x16c/0x1f0
[  170.149079][ T9169]  should_fail_ex+0x512/0x640
[  170.149103][ T9169]  _copy_to_user+0x32/0xd0
[  170.149127][ T9169]  simple_read_from_buffer+0xcb/0x170
[  170.149153][ T9169]  proc_fail_nth_read+0x197/0x270
[  170.149174][ T9169]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  170.149195][ T9169]  ? rw_verify_area+0xcf/0x680
[  170.149210][ T9169]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  170.149223][ T9169]  vfs_read+0x1e1/0xc60
[  170.149239][ T9169]  ? fdget_pos+0x2a2/0x370
[  170.149257][ T9169]  ? __pfx_vfs_read+0x10/0x10
[  170.149271][ T9169]  ? find_held_lock+0x2b/0x80
[  170.149287][ T9169]  ? __fget_files+0x20e/0x3c0
[  170.149307][ T9169]  ksys_read+0x12a/0x250
[  170.149322][ T9169]  ? __pfx_ksys_read+0x10/0x10
[  170.149339][ T9169]  ? rcu_is_watching+0x12/0xc0
[  170.149353][ T9169]  __do_fast_syscall_32+0x7c/0x3a0
[  170.149366][ T9169]  do_fast_syscall_32+0x32/0x80
[  170.149377][ T9169]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  170.149391][ T9169] RIP: 0023:0xf710e579
[  170.149415][ T9169] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  170.149426][ T9169] RSP: 002b:00000000f50fe590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  170.149436][ T9169] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50fe620
[  170.149443][ T9169] RDX: 000000000000000f RSI: 00000000f7472ff4 RDI: 0000000000000000
[  170.149449][ T9169] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  170.149456][ T9169] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  170.149462][ T9169] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  170.149476][ T9169]  </TASK>
[  170.335846][ T9172] FAULT_INJECTION: forcing a failure.
[  170.335846][ T9172] name failslab, interval 1, probability 0, space 0, times 0
[  170.339906][ T9172] CPU: 3 UID: 0 PID: 9172 Comm: syz.2.930 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  170.339923][ T9172] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.339930][ T9172] Call Trace:
[  170.339934][ T9172]  <TASK>
[  170.339939][ T9172]  dump_stack_lvl+0x16c/0x1f0
[  170.339966][ T9172]  should_fail_ex+0x512/0x640
[  170.339979][ T9172]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  170.339996][ T9172]  should_failslab+0xc2/0x120
[  170.340008][ T9172]  __kmalloc_cache_noprof+0x6a/0x3e0
[  170.340023][ T9172]  ? _snd_pcm_hw_param_min+0x259/0x630
[  170.340037][ T9172]  ? snd_pcm_oss_change_params_locked+0x6f4/0x3a30
[  170.340053][ T9172]  snd_pcm_oss_change_params_locked+0x6f4/0x3a30
[  170.340072][ T9172]  ? __mutex_lock+0x1ca/0xb90
[  170.340082][ T9172]  ? rcu_is_watching+0x12/0xc0
[  170.340095][ T9172]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  170.340111][ T9172]  ? __pfx___mutex_lock+0x10/0x10
[  170.340131][ T9172]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  170.340148][ T9172]  snd_pcm_oss_ioctl+0x31aa/0x37a0
[  170.340164][ T9172]  ? hook_file_ioctl_common+0x145/0x410
[  170.340180][ T9172]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  170.340196][ T9172]  ? __fget_files+0x20e/0x3c0
[  170.340211][ T9172]  ? __fput_deferred+0x460/0x480
[  170.340226][ T9172]  ? __pfx_snd_pcm_oss_ioctl_compat+0x10/0x10
[  170.340241][ T9172]  __ia32_compat_sys_ioctl+0x242/0x370
[  170.340257][ T9172]  __do_fast_syscall_32+0x7c/0x3a0
[  170.340269][ T9172]  do_fast_syscall_32+0x32/0x80
[  170.340281][ T9172]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  170.340294][ T9172] RIP: 0023:0xf710e579
[  170.340303][ T9172] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  170.340318][ T9172] RSP: 002b:00000000f50dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  170.340329][ T9172] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0045005
[  170.340336][ T9172] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  170.340342][ T9172] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  170.340348][ T9172] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  170.340354][ T9172] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  170.340367][ T9172]  </TASK>
[  170.520824][ T9174] binder: 9173:9174 ioctl c00c620f 80000040 returned -22
[  171.004091][ T9187] netlink: 8 bytes leftover after parsing attributes in process `syz.3.935'.
[  171.106749][ T9192] netlink: 8 bytes leftover after parsing attributes in process `syz.3.936'.
[  171.248261][ T9196] futex_wake_op: syz.2.937 tries to shift op by -33; fix this program
[  171.464466][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  171.464479][   T40] audit: type=1326 audit(1749113862.182:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.475588][   T40] audit: type=1326 audit(1749113862.182:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.484376][   T40] audit: type=1326 audit(1749113862.182:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=30 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.493400][   T40] audit: type=1326 audit(1749113862.182:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.503179][   T40] audit: type=1326 audit(1749113862.182:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.512462][   T40] audit: type=1326 audit(1749113862.182:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=321 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.521498][ T9207] FAULT_INJECTION: forcing a failure.
[  171.521498][ T9207] name failslab, interval 1, probability 0, space 0, times 0
[  171.521518][ T9207] CPU: 0 UID: 0 PID: 9207 Comm: syz.4.941 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  171.521532][ T9207] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  171.521539][ T9207] Call Trace:
[  171.521543][ T9207]  <TASK>
[  171.521547][ T9207]  dump_stack_lvl+0x16c/0x1f0
[  171.521570][ T9207]  should_fail_ex+0x512/0x640
[  171.521583][ T9207]  ? fs_reclaim_acquire+0xae/0x150
[  171.521598][ T9207]  ? tomoyo_encode2+0x100/0x3e0
[  171.521609][ T9207]  should_failslab+0xc2/0x120
[  171.521620][ T9207]  __kmalloc_noprof+0xd2/0x510
[  171.521641][ T9207]  tomoyo_encode2+0x100/0x3e0
[  171.521654][ T9207]  tomoyo_encode+0x29/0x50
[  171.521664][ T9207]  tomoyo_realpath_from_path+0x18f/0x6e0
[  171.521678][ T9207]  ? tomoyo_profile+0x47/0x60
[  171.521692][ T9207]  tomoyo_path_number_perm+0x245/0x580
[  171.521713][ T9207]  ? tomoyo_path_number_perm+0x237/0x580
[  171.521729][ T9207]  ? irq_work_sync+0x2f4/0x310
[  171.521740][ T9207]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  171.521771][ T9207]  ? find_held_lock+0x2b/0x80
[  171.521783][ T9207]  ? hook_file_ioctl_common+0x145/0x410
[  171.521802][ T9207]  ? __fget_files+0x20e/0x3c0
[  171.521821][ T9207]  security_file_ioctl_compat+0x9b/0x240
[  171.521840][ T9207]  __ia32_compat_sys_ioctl+0xc3/0x370
[  171.521856][ T9207]  __do_fast_syscall_32+0x7c/0x3a0
[  171.521869][ T9207]  do_fast_syscall_32+0x32/0x80
[  171.521880][ T9207]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.521894][ T9207] RIP: 0023:0xf7f64579
[  171.521903][ T9207] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.521914][ T9207] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  171.521925][ T9207] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  171.521931][ T9207] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  171.521938][ T9207] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.521944][ T9207] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  171.521950][ T9207] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.521963][ T9207]  </TASK>
[  171.521972][ T9207] ERROR: Out of memory at tomoyo_realpath_from_path.
[  171.540824][   T40] audit: type=1326 audit(1749113862.182:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.610419][   T40] audit: type=1326 audit(1749113862.182:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.617019][   T40] audit: type=1326 audit(1749113862.182:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.623582][   T40] audit: type=1326 audit(1749113862.182:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.2.940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  171.929994][ T9212] bridge_slave_0: left allmulticast mode
[  171.933058][ T9212] bridge_slave_0: left promiscuous mode
[  171.935609][ T9212] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.945623][ T9212] bridge_slave_1: left allmulticast mode
[  171.948041][ T9212] bridge_slave_1: left promiscuous mode
[  171.950672][ T9212] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.961907][ T9212] bond0: (slave bond_slave_0): Releasing backup interface
[  171.968070][ T9212] bond0: (slave bond_slave_1): Releasing backup interface
[  171.992344][ T9212] team0: Port device team_slave_0 removed
[  172.003432][ T9212] team0: Port device team_slave_1 removed
[  172.005751][ T9212] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  172.008101][ T9212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  172.011864][ T9212] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  172.014217][ T9212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  172.327239][ T9234] FAULT_INJECTION: forcing a failure.
[  172.327239][ T9234] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.331655][ T9234] CPU: 3 UID: 0 PID: 9234 Comm: syz.0.949 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  172.331671][ T9234] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.331679][ T9234] Call Trace:
[  172.331682][ T9234]  <TASK>
[  172.331687][ T9234]  dump_stack_lvl+0x16c/0x1f0
[  172.331709][ T9234]  should_fail_ex+0x512/0x640
[  172.331724][ T9234]  _copy_to_user+0x32/0xd0
[  172.331739][ T9234]  drm_ioctl+0x5eb/0xc30
[  172.331755][ T9234]  ? __pfx_drm_mode_obj_get_properties_ioctl+0x10/0x10
[  172.331775][ T9234]  ? __pfx_drm_ioctl+0x10/0x10
[  172.331798][ T9234]  drm_compat_ioctl+0x327/0x460
[  172.331815][ T9234]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  172.331831][ T9234]  __ia32_compat_sys_ioctl+0x242/0x370
[  172.331847][ T9234]  __do_fast_syscall_32+0x7c/0x3a0
[  172.331860][ T9234]  do_fast_syscall_32+0x32/0x80
[  172.331877][ T9234]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  172.331891][ T9234] RIP: 0023:0xf711e579
[  172.331900][ T9234] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  172.331911][ T9234] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  172.331921][ T9234] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c02064b9
[  172.331928][ T9234] RDX: 0000000080000dc0 RSI: 0000000000000000 RDI: 0000000000000000
[  172.331934][ T9234] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  172.331940][ T9234] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  172.331946][ T9234] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  172.331959][ T9234]  </TASK>
[  172.434915][ T9235] netlink: 8 bytes leftover after parsing attributes in process `syz.3.948'.
[  172.450223][ T9235] netlink: 'syz.3.948': attribute type 5 has an invalid length.
[  172.453580][ T9235] netlink: 20 bytes leftover after parsing attributes in process `syz.3.948'.
[  172.712022][ T9239] @: renamed from vlan0 (while UP)
[  173.135258][ T9259] netlink: 8 bytes leftover after parsing attributes in process `syz.4.955'.
[  173.209254][ T9259] ubi31: attaching mtd0
[  173.215194][ T9259] ubi31: scanning is finished
[  173.216821][ T9259] ubi31: empty MTD device detected
[  173.296622][ T9259] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  173.296659][ T9259] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  173.296675][ T9259] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  173.296690][ T9259] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  173.296704][ T9259] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  173.296719][ T9259] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  173.296734][ T9259] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3735772354
[  173.296751][ T9259] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  173.298191][ T9277] ubi31: background thread "ubi_bgt31d" started, PID 9277
[  174.363042][ T9299] sp0: Synchronizing with TNC
[  174.449929][ T9301] 9pnet_fd: Insufficient options for proto=fd
[  174.823621][ T9312] netlink: 32 bytes leftover after parsing attributes in process `syz.4.973'.
[  175.345498][ T9337] netlink: 16 bytes leftover after parsing attributes in process `syz.0.981'.
[  175.591501][ T1346] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  175.742053][ T1346] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  175.752746][ T1346] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  175.761365][ T1346] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  175.765812][ T1346] usb 5-1: config 0 interface 0 has no altsetting 0
[  175.778001][ T1346] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  175.791319][ T1346] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  175.795298][ T1346] usb 5-1: config 0 interface 0 has no altsetting 0
[  175.810542][ T1346] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  175.814739][ T1346] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  175.818270][ T1346] usb 5-1: config 0 interface 0 has no altsetting 0
[  175.824516][ T1346] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  175.829057][ T1346] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  175.833744][ T1346] usb 5-1: config 0 interface 0 has no altsetting 0
[  175.837750][ T1346] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  175.841898][ T1346] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  175.845988][ T1346] usb 5-1: config 0 interface 0 has no altsetting 0
[  175.849340][ T1346] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  175.852472][ T1346] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  175.855968][ T1346] usb 5-1: config 0 interface 0 has no altsetting 0
[  175.859026][ T1346] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  175.862087][ T1346] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  175.866087][ T1346] usb 5-1: config 0 interface 0 has no altsetting 0
[  175.870154][ T1346] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  175.875024][ T1346] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  175.882577][ T1346] usb 5-1: config 0 interface 0 has no altsetting 0
[  175.887890][ T1346] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  175.892413][ T1346] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  175.895119][ T1346] usb 5-1: Product: syz
[  175.896558][ T1346] usb 5-1: Manufacturer: syz
[  175.898044][ T1346] usb 5-1: SerialNumber: syz
[  175.905076][ T1346] usb 5-1: config 0 descriptor??
[  175.920764][ T1346] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[  175.937468][ T9363] batman_adv: batadv0: Removing interface: team0
[  175.945951][ T9363] bridge_slave_0: left allmulticast mode
[  175.947773][ T9363] bridge_slave_0: left promiscuous mode
[  175.949643][ T9363] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.998537][ T9363] bridge_slave_1: left allmulticast mode
[  176.000387][ T9363] bridge_slave_1: left promiscuous mode
[  176.002483][ T9363] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.023153][ T9363] : (slave bond_slave_0): Releasing backup interface
[  176.047816][ T9363] : (slave bond_slave_1): Releasing backup interface
[  176.132003][ T1346] usb 5-1: USB disconnect, device number 13
[  176.145677][ T1346] yurex 5-1:0.0: USB YUREX #0 now disconnected
[  176.195527][ T9363] team0: Port device team_slave_0 removed
[  176.209687][ T9363] team0: Port device team_slave_1 removed
[  176.212092][ T9363] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  176.214515][ T9363] batman_adv: batadv0: Removing interface: batadv_slave_0
[  176.217708][ T9363] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  176.220080][ T9363] batman_adv: batadv0: Removing interface: batadv_slave_1
[  176.228322][ T9363] bond0: (slave gretap1): Releasing active interface
[  176.256383][ T9363] bond1: (slave veth3): Releasing backup interface
[  176.646362][ T9388] netlink: 72 bytes leftover after parsing attributes in process `syz.3.997'.
[  176.650020][ T9388] 9pnet: p9_errstr2errno: server reported unknown error 18446744
[  176.758663][  T837] IPVS: starting estimator thread 0...
[  176.852145][ T9398] IPVS: using max 44 ests per chain, 105600 per kthread
[  177.666908][ T9417] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1007'.
[  177.767432][ T9417]  (unregistering): Released all slaves
[  177.974620][    C2] vcan0: j1939_tp_rxtimer: 0xffff88801204d800: rx timeout, send abort
[  178.395904][ T9436] netdevsim netdevsim4 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  178.398770][ T9436] netdevsim netdevsim4 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  178.401531][ T9436] netdevsim netdevsim4 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  178.404373][ T9436] netdevsim netdevsim4 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  178.408852][ T9436] geneve2: entered promiscuous mode
[  178.410833][ T9436] geneve2: entered allmulticast mode
[  178.474967][    C2] vcan0: j1939_tp_rxtimer: 0xffff88801204f800: rx timeout, send abort
[  178.479424][    C2] vcan0: j1939_tp_rxtimer: 0xffff88801204d800: abort rx timeout. Force session deactivation
[  178.773880][ T9449] FAULT_INJECTION: forcing a failure.
[  178.773880][ T9449] name failslab, interval 1, probability 0, space 0, times 0
[  178.781296][ T9449] CPU: 0 UID: 0 PID: 9449 Comm: syz.0.1016 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  178.781312][ T9449] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.781331][ T9449] Call Trace:
[  178.781336][ T9449]  <TASK>
[  178.781340][ T9449]  dump_stack_lvl+0x16c/0x1f0
[  178.781362][ T9449]  should_fail_ex+0x512/0x640
[  178.781375][ T9449]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  178.781392][ T9449]  should_failslab+0xc2/0x120
[  178.781404][ T9449]  __kmalloc_cache_noprof+0x6a/0x3e0
[  178.781419][ T9449]  ? tcf_chain_tp_find+0x2b5/0x470
[  178.781430][ T9449]  ? tc_new_tfilter+0xf0c/0x2340
[  178.781445][ T9449]  tc_new_tfilter+0xf0c/0x2340
[  178.781468][ T9449]  ? __pfx_tc_new_tfilter+0x10/0x10
[  178.781481][ T9449]  ? kfree_skbmem+0x1a4/0x1f0
[  178.781509][ T9449]  ? find_held_lock+0x2b/0x80
[  178.781521][ T9449]  ? __pfx_tc_new_tfilter+0x10/0x10
[  178.781534][ T9449]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  178.781546][ T9449]  ? __pfx_tc_new_tfilter+0x10/0x10
[  178.781560][ T9449]  rtnetlink_rcv_msg+0x95e/0xe90
[  178.781573][ T9449]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  178.781593][ T9449]  ? ref_tracker_free+0x37c/0x830
[  178.781609][ T9449]  netlink_rcv_skb+0x155/0x420
[  178.781622][ T9449]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  178.781635][ T9449]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  178.781654][ T9449]  ? netlink_deliver_tap+0x1ae/0xd30
[  178.781669][ T9449]  netlink_unicast+0x53d/0x7f0
[  178.781684][ T9449]  ? __pfx_netlink_unicast+0x10/0x10
[  178.781702][ T9449]  netlink_sendmsg+0x8d1/0xdd0
[  178.781717][ T9449]  ? __pfx_netlink_sendmsg+0x10/0x10
[  178.781732][ T9449]  ? __import_iovec+0x1dd/0x650
[  178.781750][ T9449]  ____sys_sendmsg+0xa95/0xc70
[  178.781763][ T9449]  ? gfs2_inplace_reserve+0x1fe4/0x2f70
[  178.781776][ T9449]  ? __pfx_____sys_sendmsg+0x10/0x10
[  178.781790][ T9449]  ? get_compat_msghdr+0x11a/0x170
[  178.781808][ T9449]  ___sys_sendmsg+0x134/0x1d0
[  178.781820][ T9449]  ? __pfx____sys_sendmsg+0x10/0x10
[  178.781839][ T9449]  ? find_held_lock+0x2b/0x80
[  178.781860][ T9449]  __sys_sendmsg+0x16d/0x220
[  178.781871][ T9449]  ? __pfx___sys_sendmsg+0x10/0x10
[  178.781888][ T9449]  ? rcu_is_watching+0x12/0xc0
[  178.781902][ T9449]  __do_fast_syscall_32+0x7c/0x3a0
[  178.781915][ T9449]  do_fast_syscall_32+0x32/0x80
[  178.781925][ T9449]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.781940][ T9449] RIP: 0023:0xf711e579
[  178.781949][ T9449] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.781960][ T9449] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  178.781971][ T9449] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000580
[  178.781978][ T9449] RDX: 000000000408c014 RSI: 0000000000000000 RDI: 0000000000000000
[  178.781984][ T9449] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.781990][ T9449] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.781996][ T9449] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.782010][ T9449]  </TASK>
[  178.977720][    C2] vcan0: j1939_tp_rxtimer: 0xffff88801204f800: abort rx timeout. Force session deactivation
[  179.274840][ T9456] overlayfs: failed to resolve './file1': -2
[  179.585633][ T9458] netlink: 120 bytes leftover after parsing attributes in process `syz.3.1017'.
[  179.588914][ T9464] sp0: Synchronizing with TNC
[  180.718567][ T9493] netlink: 120 bytes leftover after parsing attributes in process `syz.0.1026'.
[  181.335326][ T9510] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1034'.
[  181.726879][ T9518] netlink: 'syz.0.1037': attribute type 3 has an invalid length.
[  181.729526][ T9518] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1037'.
[  181.902361][ T9520] netlink: 'syz.0.1038': attribute type 4 has an invalid length.
[  182.195224][ T9532] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  182.197307][ T9532] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  182.200837][ T9532] vhci_hcd vhci_hcd.0: Device attached
[  182.204340][ T9545] vhci_hcd: connection closed
[  182.213097][ T1173] vhci_hcd: stop threads
[  182.216001][ T1173] vhci_hcd: release socket
[  182.217400][ T1173] vhci_hcd: disconnect device
[  182.306548][ T9554] netlink: 27 bytes leftover after parsing attributes in process `syz.2.1046'.
[  182.510026][ T9568] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1051'.
[  182.585619][ T9572] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1052'.
[  182.892526][ T9582] 9pnet_virtio: no channels available for device ./file0/file0
[  182.895471][ T9582] PKCS7: Unknown OID: [4] 2.19.13055.940354.15722
[  182.897810][ T9582] PKCS7: Only support pkcs7_signedData type
[  183.097115][ T9585] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1055'.
[  183.444846][ T9595] fuse: Bad value for 'fd'
[  183.755966][ T9599] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1060'.
[  184.021356][ T6008] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  184.172307][ T6008] usb 9-1: too many configurations: 9, using maximum allowed: 8
[  184.175716][ T6008] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.178533][ T6008] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.182537][ T6008] usb 9-1: config 0 interface 0 has no altsetting 0
[  184.185413][ T6008] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.188239][ T6008] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.192092][ T6008] usb 9-1: config 0 interface 0 has no altsetting 0
[  184.195923][ T6008] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.198758][ T6008] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.202418][ T6008] usb 9-1: config 0 interface 0 has no altsetting 0
[  184.205283][ T6008] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.207953][ T6008] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.211831][ T6008] usb 9-1: config 0 interface 0 has no altsetting 0
[  184.214758][ T6008] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.217736][ T6008] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.221351][ T6008] usb 9-1: config 0 interface 0 has no altsetting 0
[  184.224110][ T6008] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.227093][ T6008] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.230515][ T6008] usb 9-1: config 0 interface 0 has no altsetting 0
[  184.233576][ T6008] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.237016][ T6008] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.241294][ T6008] usb 9-1: config 0 interface 0 has no altsetting 0
[  184.244216][ T6008] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.247187][ T6008] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.250819][ T6008] usb 9-1: config 0 interface 0 has no altsetting 0
[  184.254804][ T6008] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  184.258239][ T6008] usb 9-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  184.260753][ T6008] usb 9-1: Product: syz
[  184.262263][ T6008] usb 9-1: Manufacturer: syz
[  184.263847][ T6008] usb 9-1: SerialNumber: syz
[  184.266738][ T6008] usb 9-1: config 0 descriptor??
[  184.270827][ T6008] yurex 9-1:0.0: USB YUREX device now attached to Yurex #0
[  184.503760][ T1265] usb 9-1: USB disconnect, device number 2
[  184.506958][ T1265] yurex 9-1:0.0: USB YUREX #0 now disconnected
[  184.935278][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  184.935290][   T40] audit: type=1800 audit(1749113875.652:179): pid=9624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1066" name="bus" dev="overlay" ino=1292 res=0 errno=0
[  185.044644][   T40] audit: type=1326 audit(1749113875.762:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.052966][   T40] audit: type=1326 audit(1749113875.762:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.063128][   T40] audit: type=1326 audit(1749113875.762:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.070493][   T40] audit: type=1326 audit(1749113875.762:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.082191][   T40] audit: type=1326 audit(1749113875.762:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.091516][   T40] audit: type=1326 audit(1749113875.762:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.100348][   T40] audit: type=1326 audit(1749113875.762:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.110471][   T40] audit: type=1326 audit(1749113875.762:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.118063][   T40] audit: type=1326 audit(1749113875.762:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9626 comm="syz.4.1068" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  185.720800][ T9650] --map-set only usable from mangle table
[  185.811087][ T9652] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1077'.
[  186.282761][ T9662] FAULT_INJECTION: forcing a failure.
[  186.282761][ T9662] name failslab, interval 1, probability 0, space 0, times 0
[  186.286847][ T9662] CPU: 0 UID: 0 PID: 9662 Comm: syz.4.1078 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  186.286863][ T9662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.286870][ T9662] Call Trace:
[  186.286874][ T9662]  <TASK>
[  186.286879][ T9662]  dump_stack_lvl+0x16c/0x1f0
[  186.286901][ T9662]  should_fail_ex+0x512/0x640
[  186.286914][ T9662]  ? fs_reclaim_acquire+0xae/0x150
[  186.286930][ T9662]  ? tomoyo_encode2+0x100/0x3e0
[  186.286941][ T9662]  should_failslab+0xc2/0x120
[  186.286952][ T9662]  __kmalloc_noprof+0xd2/0x510
[  186.286970][ T9662]  ? find_held_lock+0x2b/0x80
[  186.286983][ T9662]  tomoyo_encode2+0x100/0x3e0
[  186.286996][ T9662]  tomoyo_encode+0x29/0x50
[  186.287006][ T9662]  tomoyo_mount_acl+0x144/0x850
[  186.287024][ T9662]  ? __kernel_text_address+0xd/0x40
[  186.287041][ T9662]  ? unwind_get_return_address+0x59/0xa0
[  186.287058][ T9662]  ? arch_stack_walk+0xa6/0x100
[  186.287077][ T9662]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  186.287109][ T9662]  ? tomoyo_domain+0xbb/0x150
[  186.287121][ T9662]  ? tomoyo_profile+0x47/0x60
[  186.287135][ T9662]  tomoyo_mount_permission+0x16d/0x420
[  186.287153][ T9662]  ? tomoyo_mount_permission+0x14f/0x420
[  186.287171][ T9662]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  186.287197][ T9662]  security_sb_mount+0x9b/0x260
[  186.287214][ T9662]  path_mount+0x128/0x1f70
[  186.287232][ T9662]  ? kmem_cache_free+0x2d1/0x4d0
[  186.287248][ T9662]  ? __pfx_path_mount+0x10/0x10
[  186.287265][ T9662]  ? getname_flags.part.0+0x1c5/0x550
[  186.287280][ T9662]  ? putname+0x154/0x1a0
[  186.287292][ T9662]  __ia32_sys_mount+0x28b/0x310
[  186.287302][ T9662]  ? __pfx___ia32_sys_mount+0x10/0x10
[  186.287313][ T9662]  ? rcu_is_watching+0x12/0xc0
[  186.287327][ T9662]  __do_fast_syscall_32+0x7c/0x3a0
[  186.287340][ T9662]  do_fast_syscall_32+0x32/0x80
[  186.287351][ T9662]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  186.287365][ T9662] RIP: 0023:0xf7f64579
[  186.287374][ T9662] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  186.287385][ T9662] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  186.287395][ T9662] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 0000000080000140
[  186.287402][ T9662] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 00000000800003c0
[  186.287408][ T9662] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  186.287414][ T9662] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  186.287421][ T9662] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  186.287434][ T9662]  </TASK>
[  186.444645][ T6002] libceph: connect (1)[c::]:6789 error -101
[  186.447611][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[  186.451800][ T6002] libceph: connect (1)[c::]:6789 error -101
[  186.453910][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[  186.488124][ T9672] ceph: No mds server is up or the cluster is laggy
[  187.442454][   T29] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  187.818695][ T9724] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1099'.
[  187.824533][ T9724] xt_CT: You must specify a L4 protocol and not use inversions on it
[  187.861697][   T29] usb 7-1: Using ep0 maxpacket: 16
[  187.875046][   T29] usb 7-1: unable to get BOS descriptor or descriptor too short
[  187.879525][   T29] usb 7-1: unable to read config index 0 descriptor/start: -71
[  187.883293][   T29] usb 7-1: can't read configurations, error -71
[  189.046416][ T9742] FAULT_INJECTION: forcing a failure.
[  189.046416][ T9742] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  189.052121][ T9742] CPU: 3 UID: 0 PID: 9742 Comm: syz.4.1106 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  189.052144][ T9742] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  189.052155][ T9742] Call Trace:
[  189.052161][ T9742]  <TASK>
[  189.052168][ T9742]  dump_stack_lvl+0x16c/0x1f0
[  189.052201][ T9742]  should_fail_ex+0x512/0x640
[  189.052224][ T9742]  _copy_to_user+0x32/0xd0
[  189.052270][ T9742]  simple_read_from_buffer+0xcb/0x170
[  189.052296][ T9742]  proc_fail_nth_read+0x197/0x270
[  189.052318][ T9742]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  189.052340][ T9742]  ? rw_verify_area+0xcf/0x680
[  189.052362][ T9742]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  189.052382][ T9742]  vfs_read+0x1e1/0xc60
[  189.052407][ T9742]  ? fdget_pos+0x2a2/0x370
[  189.052434][ T9742]  ? __pfx_vfs_read+0x10/0x10
[  189.052455][ T9742]  ? find_held_lock+0x2b/0x80
[  189.052480][ T9742]  ? __fget_files+0x20e/0x3c0
[  189.052501][ T9742]  ? kfree+0x280/0x4d0
[  189.052530][ T9742]  ksys_read+0x12a/0x250
[  189.052554][ T9742]  ? __pfx_ksys_read+0x10/0x10
[  189.052579][ T9742]  ? rcu_is_watching+0x12/0xc0
[  189.052600][ T9742]  __do_fast_syscall_32+0x7c/0x3a0
[  189.052621][ T9742]  do_fast_syscall_32+0x32/0x80
[  189.052639][ T9742]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  189.052661][ T9742] RIP: 0023:0xf7f64579
[  189.052675][ T9742] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  189.052697][ T9742] RSP: 002b:00000000f5086590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  189.052714][ T9742] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5086620
[  189.052724][ T9742] RDX: 000000000000000f RSI: 00000000f73f2ff4 RDI: 0000000000000000
[  189.052735][ T9742] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  189.052744][ T9742] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  189.052754][ T9742] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  189.052778][ T9742]  </TASK>
[  189.252486][ T9732] 9pnet_fd: p9_fd_create_tcp (9732): problem connecting socket to 127.0.0.1
[  189.365341][ T9758] FAULT_INJECTION: forcing a failure.
[  189.365341][ T9758] name failslab, interval 1, probability 0, space 0, times 0
[  189.369363][ T9758] CPU: 3 UID: 0 PID: 9758 Comm: syz.2.1118 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  189.369390][ T9758] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  189.369397][ T9758] Call Trace:
[  189.369401][ T9758]  <TASK>
[  189.369406][ T9758]  dump_stack_lvl+0x16c/0x1f0
[  189.369427][ T9758]  should_fail_ex+0x512/0x640
[  189.369440][ T9758]  ? fs_reclaim_acquire+0xae/0x150
[  189.369455][ T9758]  should_failslab+0xc2/0x120
[  189.369466][ T9758]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  189.369484][ T9758]  ? security_inode_alloc+0x3b/0x2b0
[  189.369502][ T9758]  security_inode_alloc+0x3b/0x2b0
[  189.369518][ T9758]  inode_init_always_gfp+0xce4/0x1030
[  189.369536][ T9758]  alloc_inode+0x86/0x240
[  189.369548][ T9758]  sock_alloc+0x40/0x280
[  189.369561][ T9758]  do_accept+0xf7/0x530
[  189.369576][ T9758]  ? do_raw_spin_lock+0x12c/0x2b0
[  189.369594][ T9758]  ? __pfx_do_accept+0x10/0x10
[  189.369616][ T9758]  ? _raw_spin_unlock+0x28/0x50
[  189.369634][ T9758]  io_accept+0x259/0x950
[  189.369649][ T9758]  ? __pfx_io_accept+0x10/0x10
[  189.369665][ T9758]  __io_issue_sqe+0xe8/0x7c0
[  189.369681][ T9758]  io_issue_sqe+0x86/0xe50
[  189.369700][ T9758]  io_submit_sqes+0x92d/0x2580
[  189.369725][ T9758]  __do_sys_io_uring_enter+0xd6a/0x1630
[  189.369750][ T9758]  ? __fget_files+0x20e/0x3c0
[  189.369765][ T9758]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  189.369785][ T9758]  ? fput+0x70/0xf0
[  189.369797][ T9758]  ? ksys_write+0x1ac/0x250
[  189.369812][ T9758]  ? __pfx_ksys_write+0x10/0x10
[  189.369829][ T9758]  ? rcu_is_watching+0x12/0xc0
[  189.369843][ T9758]  __do_fast_syscall_32+0x7c/0x3a0
[  189.369856][ T9758]  do_fast_syscall_32+0x32/0x80
[  189.369867][ T9758]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  189.369881][ T9758] RIP: 0023:0xf710e579
[  189.369890][ T9758] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  189.369901][ T9758] RSP: 002b:00000000f50fe55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  189.369912][ T9758] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000003516
[  189.369919][ T9758] RDX: 000000000000c2de RSI: 0000000000000008 RDI: 0000000000000000
[  189.369936][ T9758] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  189.369942][ T9758] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  189.369948][ T9758] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  189.369962][ T9758]  </TASK>
[  189.616262][ T9760] macvtap1: entered allmulticast mode
[  189.621359][ T9760] veth0_macvtap: entered allmulticast mode
[  191.478547][ T9798] ubi: mtd0 is already attached to ubi31
[  191.824917][ T9809] ieee802154 phy0 wpan0: encryption failed: -22
[  191.865106][ T9809] netlink: 'syz.2.1124': attribute type 23 has an invalid length.
[  192.055320][ T9820] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1130'.
[  192.614053][ T9828] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  192.617855][ T9827] IPVS: stopping backup sync thread 9828 ...
[  192.766155][   T40] kauditd_printk_skb: 55 callbacks suppressed
[  192.766167][   T40] audit: type=1326 audit(1749113883.482:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9833 comm="syz.3.1134" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e579 code=0x0
[  193.213496][ T9848] sctp: [Deprecated]: syz.0.1138 (pid 9848) Use of struct sctp_assoc_value in delayed_ack socket option.
[  193.213496][ T9848] Use struct sctp_sack_info instead
[  193.747792][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  193.750067][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  193.892861][ T9855] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[  193.894994][ T9855] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  193.895036][ T9855] vhci_hcd vhci_hcd.0: Device attached
[  193.978905][ T9863] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1140'.
[  194.017622][ T9866] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1141'.
[  194.131233][ T1346] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[  194.288260][ T9876] xt_ecn: cannot match TCP bits for non-tcp packets
[  194.637139][ T9879] openvswitch: netlink: Missing key (keys=40, expected=100)
[  195.118895][ T9858] vhci_hcd: connection reset by peer
[  195.127869][   T12] vhci_hcd: stop threads
[  195.127929][   T12] vhci_hcd: release socket
[  195.128024][   T12] vhci_hcd: disconnect device
[  195.472365][   T40] audit: type=1326 audit(1749113886.192:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9890 comm="syz.4.1151" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f64579 code=0x0
[  195.753510][ T9901] ip6t_srh: unknown srh match flags  E506
[  196.564299][ T9914] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate.
[  196.570238][ T9914] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate.
[  196.635985][ T9921] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1163'.
[  196.639754][ T9919] binder: 9918:9919 ioctl 80489439 0 returned -22
[  197.634530][ T9935] ieee802154 phy0 wpan0: encryption failed: -22
[  197.685750][ T9935] netlink: 'syz.4.1164': attribute type 23 has an invalid length.
[  198.893565][ T9951] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1169'.
[  199.252351][ T1346] vhci_hcd: vhci_device speed not set
[  199.687162][   T40] audit: type=1326 audit(1749113890.402:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9961 comm="syz.0.1175" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  199.695806][   T40] audit: type=1326 audit(1749113890.402:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9961 comm="syz.0.1175" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  199.784779][ T9975] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1170'.
[  200.707395][ T9986] fuse: Bad value for 'fd'
[  200.828924][ T9992] veth1_vlan: left allmulticast mode
[  200.832233][ T9992] macvlan0: entered promiscuous mode
[  200.839216][ T9992] macvlan0: left allmulticast mode
[  200.855752][ T9992] netlink: 'syz.4.1182': attribute type 1 has an invalid length.
[  200.859273][ T9992] netlink: 'syz.4.1182': attribute type 2 has an invalid length.
[  200.990423][ T9992] /dev/sr0: Can't open blockdev
[  201.697229][T10023] sch_fq: defrate 0 ignored.
[  201.714863][T10023] fuse: Unknown parameter '�xØõÓÌQû¶Ì“•O¬W€ºygÖÐ2OÏTЭ°ÕŽ|Ú‘�µ#6%õ†hyþÜO'
[  202.089422][T10031] fuse: Bad value for 'fd'
[  202.277823][ T5947] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  202.283141][ T5947] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  202.286525][ T5947] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  202.289887][ T5947] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  202.292831][ T5947] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  202.414317][T10032] chnl_net:caif_netlink_parms(): no params data found
[  202.513135][T10032] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.515756][T10032] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.518045][T10032] bridge_slave_0: entered allmulticast mode
[  202.523350][T10032] bridge_slave_0: entered promiscuous mode
[  202.528209][T10032] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.531077][T10032] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.533849][T10032] bridge_slave_1: entered allmulticast mode
[  202.536829][T10032] bridge_slave_1: entered promiscuous mode
[  202.562847][T10047] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1198'.
[  202.578562][T10032] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  202.583096][T10032] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  202.615688][T10032] team0: Port device team_slave_0 added
[  202.619169][T10032] team0: Port device team_slave_1 added
[  202.650405][T10032] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.654067][T10032] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.662661][T10032] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.666993][T10032] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.669084][T10032] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.669431][T10052] netlink: 'syz.0.1201': attribute type 11 has an invalid length.
[  202.676700][T10032] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.713710][T10032] hsr_slave_0: entered promiscuous mode
[  202.715945][T10032] hsr_slave_1: entered promiscuous mode
[  202.717946][T10032] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.720208][T10032] Cannot create hsr debugfs directory
[  202.839710][T10032] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.997254][T10032] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.045850][T10032] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.114926][T10032] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.276667][T10032] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  203.284982][T10032] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  203.296510][T10032] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  203.300838][T10032] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  203.370117][T10032] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.379170][T10032] 8021q: adding VLAN 0 to HW filter on device team0
[  203.383988][T10066] fuse: Bad value for 'fd'
[  203.442848][ T1173] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.445128][ T1173] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.454926][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.457227][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  203.613133][T10032] 8021q: adding VLAN 0 to HW filter on device batadv0
[  203.645060][T10032] veth0_vlan: entered promiscuous mode
[  203.653381][T10032] veth1_vlan: entered promiscuous mode
[  203.674657][T10032] veth0_macvtap: entered promiscuous mode
[  203.683190][T10032] veth1_macvtap: entered promiscuous mode
[  203.691728][T10032] batman_adv: batadv0: Interface activated: batadv_slave_0
[  203.697643][T10032] batman_adv: batadv0: Interface activated: batadv_slave_1
[  203.705436][T10032] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.708743][T10032] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.712601][T10032] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.715277][T10032] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.753128][   T94] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.755652][   T94] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  203.773972][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.776393][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  203.902910][T10086] random: crng reseeded on system resumption
[  203.932697][T10085] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1210'.
[  204.401242][ T5954] Bluetooth: hci2: command tx timeout
[  204.688374][T10080] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.691726][T10080] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  204.849750][T10094] netlink: 'syz.0.1220': attribute type 1 has an invalid length.
[  204.852814][T10094] netlink: 'syz.0.1220': attribute type 3 has an invalid length.
[  204.855393][T10094] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1220'.
[  204.858898][T10094] NCSI netlink: No device for ifindex 0
[  204.872058][T10080] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.877381][T10080] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  205.002440][T10080] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.005829][T10080] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  205.035954][T10093] input: syz1 as /devices/virtual/input/input21
[  205.136139][T10080] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.139368][T10080] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  205.282563][T10080] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  205.286327][T10080] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  205.301049][T10080] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  205.305746][T10080] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  205.314921][T10080] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  205.317670][T10080] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  205.370410][T10080] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  205.377417][T10080] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  205.517404][T10107] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1214'.
[  205.567356][T10112] input: syz0 as /devices/virtual/input/input22
[  205.721510][T10121] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1222'.
[  206.002300][T10138] FAULT_INJECTION: forcing a failure.
[  206.002300][T10138] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  206.007307][T10138] CPU: 3 UID: 0 PID: 10138 Comm: syz.0.1229 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  206.007322][T10138] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  206.007330][T10138] Call Trace:
[  206.007336][T10138]  <TASK>
[  206.007342][T10138]  dump_stack_lvl+0x16c/0x1f0
[  206.007372][T10138]  should_fail_ex+0x512/0x640
[  206.007394][T10138]  should_fail_alloc_page+0xe7/0x130
[  206.007413][T10138]  prepare_alloc_pages+0x3c2/0x610
[  206.007433][T10138]  ? stack_depot_save_flags+0x28/0xa40
[  206.007455][T10138]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  206.007481][T10138]  ? kasan_save_stack+0x42/0x60
[  206.007503][T10138]  ? kasan_save_stack+0x33/0x60
[  206.007524][T10138]  ? kasan_save_track+0x14/0x30
[  206.007546][T10138]  ? __kasan_slab_alloc+0x89/0x90
[  206.007560][T10138]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[  206.007583][T10138]  ? ptlock_alloc+0x1f/0x70
[  206.007602][T10138]  ? pte_alloc_one+0x82/0x3a0
[  206.007624][T10138]  ? __pte_alloc+0x6d/0x3c0
[  206.007638][T10138]  ? __handle_mm_fault+0x4358/0x5490
[  206.007657][T10138]  ? handle_mm_fault+0x589/0xd10
[  206.007676][T10138]  ? __get_user_pages+0x589/0x3b80
[  206.007692][T10138]  ? __gup_longterm_locked+0x20d/0x1850
[  206.007709][T10138]  ? gup_fast_fallback+0x1ab3/0x29e0
[  206.007727][T10138]  ? pin_user_pages_fast+0xa7/0xf0
[  206.007743][T10138]  ? iov_iter_extract_pages+0x3a2/0x1ed0
[  206.007762][T10138]  ? extract_iter_to_sg+0xf6e/0x20c0
[  206.007776][T10138]  ? hash_sendmsg+0x43e/0xfb0
[  206.007796][T10138]  ? __sys_sendto+0x4a3/0x520
[  206.007819][T10138]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  206.007842][T10138]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.007874][T10138]  ? __lock_acquire+0x622/0x1c90
[  206.007898][T10138]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  206.007923][T10138]  ? policy_nodemask+0xea/0x4e0
[  206.007942][T10138]  alloc_pages_mpol+0x1fb/0x550
[  206.007959][T10138]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  206.007983][T10138]  alloc_pages_noprof+0x131/0x390
[  206.008000][T10138]  pte_alloc_one+0x1c/0x3a0
[  206.008024][T10138]  __pte_alloc+0x6d/0x3c0
[  206.008040][T10138]  ? __pfx___pte_alloc+0x10/0x10
[  206.008058][T10138]  ? find_held_lock+0x2b/0x80
[  206.008076][T10138]  __handle_mm_fault+0x4358/0x5490
[  206.008130][T10138]  ? __pfx___handle_mm_fault+0x10/0x10
[  206.008151][T10138]  ? folio_mark_accessed+0xc1/0xc00
[  206.008188][T10138]  handle_mm_fault+0x589/0xd10
[  206.008215][T10138]  __get_user_pages+0x589/0x3b80
[  206.008244][T10138]  ? __pfx___get_user_pages+0x10/0x10
[  206.008263][T10138]  ? __pfx_down_read_killable+0x10/0x10
[  206.008288][T10138]  ? __gup_longterm_locked+0xfec/0x1850
[  206.008312][T10138]  __gup_longterm_locked+0x20d/0x1850
[  206.008340][T10138]  ? __pfx___gup_longterm_locked+0x10/0x10
[  206.008363][T10138]  ? find_held_lock+0x2b/0x80
[  206.008379][T10138]  ? sanity_check_pinned_pages+0x23/0x1200
[  206.008403][T10138]  gup_fast_fallback+0x1ab3/0x29e0
[  206.008440][T10138]  ? __pfx_gup_fast_fallback+0x10/0x10
[  206.008474][T10138]  pin_user_pages_fast+0xa7/0xf0
[  206.008493][T10138]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  206.008513][T10138]  ? iov_iter_advance+0x7d/0x6c0
[  206.008535][T10138]  iov_iter_extract_pages+0x3a2/0x1ed0
[  206.008558][T10138]  ? irqentry_exit+0x3b/0x90
[  206.008572][T10138]  ? lockdep_hardirqs_on+0x7c/0x110
[  206.008601][T10138]  ? __pfx_iov_iter_extract_pages+0x10/0x10
[  206.008625][T10138]  ? michael_update+0x286/0x4a0
[  206.008642][T10138]  ? michael_update+0x379/0x4a0
[  206.008665][T10138]  extract_iter_to_sg+0xf6e/0x20c0
[  206.008688][T10138]  ? shash_ahash_update+0x244/0x2d0
[  206.008712][T10138]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  206.008727][T10138]  ? gup_put_folio+0x8d/0x260
[  206.008745][T10138]  ? __pfx_unpin_user_page+0x10/0x10
[  206.008775][T10138]  hash_sendmsg+0x43e/0xfb0
[  206.008806][T10138]  __sys_sendto+0x4a3/0x520
[  206.008831][T10138]  ? __pfx___sys_sendto+0x10/0x10
[  206.008877][T10138]  ? ksys_write+0x1ac/0x250
[  206.008900][T10138]  ? __pfx_ksys_write+0x10/0x10
[  206.008927][T10138]  __ia32_sys_sendto+0xdd/0x1b0
[  206.008950][T10138]  ? lockdep_hardirqs_on+0x7c/0x110
[  206.008974][T10138]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  206.008990][T10138]  __do_fast_syscall_32+0x7c/0x3a0
[  206.009009][T10138]  do_fast_syscall_32+0x32/0x80
[  206.009025][T10138]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.009044][T10138] RIP: 0023:0xf711e579
[  206.009057][T10138] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  206.009072][T10138] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  206.009088][T10138] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800004c0
[  206.009099][T10138] RDX: 00000000fffffd56 RSI: 00000000000180d4 RDI: 0000000000000000
[  206.009108][T10138] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  206.009118][T10138] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  206.009127][T10138] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  206.009151][T10138]  </TASK>
[  206.021087][T10139] IPv6: Can't replace route, no match found
[  206.076528][T10144] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1228'.
[  206.472046][ T5954] Bluetooth: hci2: command tx timeout
[  207.054217][T10167] binder_alloc: binder_alloc_mmap_handler: 10162 80ffc000-80ffd000 already mapped failed -16
[  207.123423][T10170] 9pnet_fd: Insufficient options for proto=fd
[  207.211361][T10172] tmpfs: Bad value for 'mpol'
[  207.519021][T10179] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1241'.
[  207.788007][T10187] overlayfs: failed to clone upperpath
[  207.820188][T10191] FAULT_INJECTION: forcing a failure.
[  207.820188][T10191] name failslab, interval 1, probability 0, space 0, times 0
[  207.824392][T10191] CPU: 1 UID: 0 PID: 10191 Comm: syz.2.1246 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  207.824408][T10191] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  207.824415][T10191] Call Trace:
[  207.824419][T10191]  <TASK>
[  207.824424][T10191]  dump_stack_lvl+0x16c/0x1f0
[  207.824446][T10191]  should_fail_ex+0x512/0x640
[  207.824462][T10191]  should_failslab+0xc2/0x120
[  207.824474][T10191]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  207.824492][T10191]  ? skb_clone+0x190/0x3f0
[  207.824506][T10191]  skb_clone+0x190/0x3f0
[  207.824517][T10191]  netlink_deliver_tap+0xabd/0xd30
[  207.824533][T10191]  netlink_unicast+0x6b2/0x7f0
[  207.824548][T10191]  ? __pfx_netlink_unicast+0x10/0x10
[  207.824560][T10191]  ? genl_rcv_msg+0x4bb/0x800
[  207.824579][T10191]  netlink_ack+0x696/0xb80
[  207.824596][T10191]  netlink_rcv_skb+0x332/0x420
[  207.824609][T10191]  ? __pfx_genl_rcv_msg+0x10/0x10
[  207.824625][T10191]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  207.824644][T10191]  ? netlink_deliver_tap+0x1ae/0xd30
[  207.824658][T10191]  genl_rcv+0x28/0x40
[  207.824672][T10191]  netlink_unicast+0x53d/0x7f0
[  207.824686][T10191]  ? __pfx_netlink_unicast+0x10/0x10
[  207.824704][T10191]  netlink_sendmsg+0x8d1/0xdd0
[  207.824719][T10191]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.824734][T10191]  ? __import_iovec+0x1dd/0x650
[  207.824752][T10191]  ____sys_sendmsg+0xa95/0xc70
[  207.824765][T10191]  ? jhash+0x390/0x610
[  207.824779][T10191]  ? __pfx_____sys_sendmsg+0x10/0x10
[  207.824792][T10191]  ? get_compat_msghdr+0x11a/0x170
[  207.824810][T10191]  ___sys_sendmsg+0x134/0x1d0
[  207.824822][T10191]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.824839][T10191]  ? find_held_lock+0x2b/0x80
[  207.824859][T10191]  __sys_sendmsg+0x16d/0x220
[  207.824870][T10191]  ? __pfx___sys_sendmsg+0x10/0x10
[  207.824887][T10191]  ? rcu_is_watching+0x12/0xc0
[  207.824900][T10191]  __do_fast_syscall_32+0x7c/0x3a0
[  207.824913][T10191]  do_fast_syscall_32+0x32/0x80
[  207.824924][T10191]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  207.824938][T10191] RIP: 0023:0xf7fa6579
[  207.824948][T10191] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  207.824958][T10191] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  207.824969][T10191] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[  207.824976][T10191] RDX: 0000000004004000 RSI: 0000000000000000 RDI: 0000000000000000
[  207.824982][T10191] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  207.824988][T10191] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  207.824994][T10191] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  207.825007][T10191]  </TASK>
[  208.307523][T10208] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  208.307631][T10206] IPVS: stopping backup sync thread 10208 ...
[  208.329348][   T40] audit: type=1326 audit(1749113899.042:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.351854][   T40] audit: type=1326 audit(1749113899.042:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.358781][   T40] audit: type=1326 audit(1749113899.042:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.365588][   T40] audit: type=1326 audit(1749113899.042:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.374386][   T40] audit: type=1326 audit(1749113899.042:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.382083][   T40] audit: type=1326 audit(1749113899.042:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=257 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.389444][   T40] audit: type=1326 audit(1749113899.052:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.398546][   T40] audit: type=1326 audit(1749113899.052:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.405547][   T40] audit: type=1326 audit(1749113899.052:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.406140][T10217] FAULT_INJECTION: forcing a failure.
[  208.406140][T10217] name failslab, interval 1, probability 0, space 0, times 0
[  208.412397][   T40] audit: type=1326 audit(1749113899.052:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.0.1250" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf711e579 code=0x7ffc0000
[  208.416139][T10217] CPU: 2 UID: 0 PID: 10217 Comm: syz.0.1253 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  208.416155][T10217] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  208.416162][T10217] Call Trace:
[  208.416167][T10217]  <TASK>
[  208.416172][T10217]  dump_stack_lvl+0x16c/0x1f0
[  208.416194][T10217]  should_fail_ex+0x512/0x640
[  208.416209][T10217]  should_failslab+0xc2/0x120
[  208.416222][T10217]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  208.416240][T10217]  ? skb_clone+0x190/0x3f0
[  208.416253][T10217]  skb_clone+0x190/0x3f0
[  208.416264][T10217]  netlink_deliver_tap+0xabd/0xd30
[  208.416280][T10217]  netlink_unicast+0x5df/0x7f0
[  208.416299][T10217]  ? __pfx_netlink_unicast+0x10/0x10
[  208.416316][T10217]  netlink_sendmsg+0x8d1/0xdd0
[  208.416331][T10217]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.416346][T10217]  ? __import_iovec+0x1dd/0x650
[  208.416363][T10217]  ____sys_sendmsg+0xa95/0xc70
[  208.416379][T10217]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.416392][T10217]  ? get_compat_msghdr+0x11a/0x170
[  208.416410][T10217]  ___sys_sendmsg+0x134/0x1d0
[  208.416422][T10217]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.416439][T10217]  ? find_held_lock+0x2b/0x80
[  208.416460][T10217]  __sys_sendmsg+0x16d/0x220
[  208.416470][T10217]  ? __pfx___sys_sendmsg+0x10/0x10
[  208.416487][T10217]  ? rcu_is_watching+0x12/0xc0
[  208.416500][T10217]  __do_fast_syscall_32+0x7c/0x3a0
[  208.416513][T10217]  do_fast_syscall_32+0x32/0x80
[  208.416524][T10217]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  208.416539][T10217] RIP: 0023:0xf711e579
[  208.416548][T10217] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  208.416559][T10217] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  208.416569][T10217] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  208.416576][T10217] RDX: 0000000020004004 RSI: 0000000000000000 RDI: 0000000000000000
[  208.416586][T10217] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  208.416592][T10217] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  208.416598][T10217] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  208.416611][T10217]  </TASK>
[  208.541536][ T5954] Bluetooth: hci2: command tx timeout
[  208.813228][T10223] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1254'.
[  208.822734][T10223] fuse: Bad value for 'fd'
[  208.964556][T10227] vxcan1: entered allmulticast mode
[  210.451363][T10259] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  210.452118][T10258] IPVS: stopping backup sync thread 10259 ...
[  210.543898][T10263] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1266'.
[  210.553283][T10263] fuse: Bad value for 'fd'
[  210.632110][ T5954] Bluetooth: hci2: command tx timeout
[  210.856812][T10274] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  211.078957][T10288] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1274'.
[  211.114945][ T6008] kernel write not supported for file [eventfd] (pid: 6008 comm: kworker/0:5)
[  211.351473][ T1330] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[  211.473506][T10294] IPVS: Error joining to the multicast group
[  211.506324][ T1330] usb 9-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  211.510385][ T1330] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.513862][ T1330] usb 9-1: Product: syz
[  211.515504][ T1330] usb 9-1: Manufacturer: syz
[  211.517461][ T1330] usb 9-1: SerialNumber: syz
[  211.520288][ T1330] usb 9-1: config 0 descriptor??
[  211.526109][ T1330] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  211.529456][ T1330] usb 9-1: setting power ON
[  211.531576][ T1330] dvb-usb: bulk message failed: -22 (2/0)
[  211.537952][ T1330] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  211.544351][ T1330] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) error while loading driver (-19)
[  211.548750][ T1330] dvb_usb_cxusb 9-1:0.0: probe with driver dvb_usb_cxusb failed with error -22
[  211.726948][   T54] usb 9-1: USB disconnect, device number 3
[  211.993667][T10302] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1280'.
[  212.687382][T10339] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1293'.
[  213.874512][   T40] kauditd_printk_skb: 218 callbacks suppressed
[  213.874523][   T40] audit: type=1326 audit(1749113904.592:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10348 comm="syz.3.1295" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e579 code=0x0
[  214.099033][T10343] IPVS: Error joining to the multicast group
[  214.531005][T10360] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1298'.
[  214.644308][T10366] overlayfs: failed to clone upperpath
[  214.674521][   T40] audit: type=1326 audit(1749113905.392:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.683566][   T40] audit: type=1326 audit(1749113905.392:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.690477][   T40] audit: type=1326 audit(1749113905.392:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.697760][   T40] audit: type=1326 audit(1749113905.392:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.705993][   T40] audit: type=1326 audit(1749113905.392:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.713156][   T40] audit: type=1326 audit(1749113905.402:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=227 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.720638][   T40] audit: type=1326 audit(1749113905.402:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.749094][    C0] vkms_vblank_simulate: vblank timer overrun
[  214.751450][   T40] audit: type=1326 audit(1749113905.402:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.758153][   T40] audit: type=1326 audit(1749113905.402:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10367 comm="syz.4.1302" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7f64579 code=0x7ffc0000
[  214.884124][T10373] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1304'.
[  215.085049][T10390] netlink: 'syz.0.1310': attribute type 1 has an invalid length.
[  215.106151][T10390] 8021q: adding VLAN 0 to HW filter on device bond1
[  215.435130][T10402] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1313'.
[  216.583154][T10424] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1319'.
[  216.606001][T10426] fuse: Invalid rootmode
[  218.089487][T10433] team0: Device gtp0 is of different type
[  218.098123][T10435] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1318'.
[  218.235661][T10438] FAULT_INJECTION: forcing a failure.
[  218.235661][T10438] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  218.239967][T10438] CPU: 1 UID: 0 PID: 10438 Comm: syz.0.1320 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  218.240009][T10438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  218.240016][T10438] Call Trace:
[  218.240020][T10438]  <TASK>
[  218.240025][T10438]  dump_stack_lvl+0x16c/0x1f0
[  218.240046][T10438]  should_fail_ex+0x512/0x640
[  218.240062][T10438]  _copy_from_iter+0x29f/0x16f0
[  218.240077][T10438]  ? rcu_is_watching+0x12/0xc0
[  218.240090][T10438]  ? __pfx__copy_from_iter+0x10/0x10
[  218.240102][T10438]  ? rcu_is_watching+0x12/0xc0
[  218.240113][T10438]  ? rcu_is_watching+0x12/0xc0
[  218.240124][T10438]  ? kfree+0x24f/0x4d0
[  218.240138][T10438]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  218.240155][T10438]  file_tty_write.constprop.0+0x488/0x9b0
[  218.240173][T10438]  do_iter_readv_writev+0x654/0x950
[  218.240194][T10438]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  218.240212][T10438]  ? bpf_lsm_file_permission+0x9/0x10
[  218.240224][T10438]  ? security_file_permission+0x71/0x210
[  218.240243][T10438]  ? rw_verify_area+0xcf/0x680
[  218.240258][T10438]  vfs_writev+0x35f/0xde0
[  218.240278][T10438]  ? __pfx_vfs_writev+0x10/0x10
[  218.240293][T10438]  ? find_held_lock+0x2b/0x80
[  218.240313][T10438]  ? __fget_files+0x20e/0x3c0
[  218.240328][T10438]  ? __fget_files+0x150/0x3c0
[  218.240346][T10438]  ? do_writev+0x132/0x340
[  218.240360][T10438]  do_writev+0x132/0x340
[  218.240375][T10438]  ? __pfx_do_writev+0x10/0x10
[  218.240391][T10438]  ? rcu_is_watching+0x12/0xc0
[  218.240403][T10438]  __do_fast_syscall_32+0x7c/0x3a0
[  218.240416][T10438]  do_fast_syscall_32+0x32/0x80
[  218.240427][T10438]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  218.240440][T10438] RIP: 0023:0xf711e579
[  218.240449][T10438] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  218.240460][T10438] RSP: 002b:00000000f50cc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  218.240471][T10438] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000b00
[  218.240477][T10438] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  218.240484][T10438] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  218.240490][T10438] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  218.240496][T10438] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  218.240509][T10438]  </TASK>
[  218.769740][T10462] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1330'.
[  219.014517][T10471] xt_CT: No such helper "syz1"
[  219.015692][T10472] xt_CT: No such helper "syz1"
[  219.903241][T10486] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  219.940897][T10504] 9pnet_fd: Insufficient options for proto=fd
[  220.005911][T10507] 9pnet_virtio: no channels available for device ./file0/file0
[  220.078758][T10507] PKCS7: Unknown OID: [4] 2.19.13055.940354.15722
[  220.083846][T10507] PKCS7: Only support pkcs7_signedData type
[  220.298642][T10520] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1342'.
[  220.322049][T10520] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  220.350911][T10524] binder: 10518:10524 ioctl c0306201 80000080 returned -14
[  220.355270][T10524] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1344'.
[  220.433227][T10528] binder: BINDER_SET_CONTEXT_MGR already set
[  220.441139][T10528] binder: 10518:10528 ioctl 4018620d 80000040 returned -16
[  220.447951][T10529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1345'.
[  220.729716][T10544] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1347'.
[  221.251443][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  221.251460][   T40] audit: type=1326 audit(1749113911.962:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10550 comm="syz.2.1349" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa6579 code=0x0
[  221.274281][T10583] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[  221.277152][T10583] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  221.283936][T10583] vhci_hcd vhci_hcd.0: Device attached
[  221.322970][T10586] input: syz0 as /devices/virtual/input/input25
[  221.343386][T10584] vhci_hcd: connection closed
[  221.343975][   T94] vhci_hcd: stop threads
[  221.347557][   T94] vhci_hcd: release socket
[  221.349272][   T94] vhci_hcd: disconnect device
[  221.404313][T10590] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1359'.
[  222.652022][T10627] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1372'.
[  222.930065][   T40] audit: type=1326 audit(1749113913.642:501): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  222.936985][   T40] audit: type=1326 audit(1749113913.642:502): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  222.944111][   T40] audit: type=1326 audit(1749113913.642:503): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf711e579 code=0x7ffc0000
[  222.950978][   T40] audit: type=1326 audit(1749113913.642:504): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf711e579 code=0x7ffc0000
[  222.957912][   T40] audit: type=1326 audit(1749113913.642:505): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  222.965832][   T40] audit: type=1326 audit(1749113913.642:506): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  222.973585][   T40] audit: type=1326 audit(1749113913.642:507): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=133 compat=1 ip=0xf711e579 code=0x7ffc0000
[  222.980342][   T40] audit: type=1326 audit(1749113913.642:508): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  222.987095][   T40] audit: type=1326 audit(1749113913.642:509): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10637 comm="syz.0.1376" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  223.277101][T10648] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1380'.
[  223.302518][T10651] Sensor A: =================  START STATUS  =================
[  223.305482][T10651] Sensor A: Test Pattern: 75% Colorbar
[  223.308355][T10651] Sensor A: Show Information: All
[  223.310107][T10651] Sensor A: Vertical Flip: false
[  223.311841][T10651] Sensor A: Horizontal Flip: false
[  223.313637][T10651] Sensor A: Brightness: 7
[  223.315128][T10651] Sensor A: Contrast: 128
[  223.316741][T10651] Sensor A: Hue: 0
[  223.318127][T10651] Sensor A: Saturation: 128
[  223.319695][T10651] Sensor A: ==================  END STATUS  ==================
[  223.325584][T10651] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1379'.
[  223.329219][T10651] vcan0: entered promiscuous mode
[  223.340970][T10651] vcan0: entered allmulticast mode
[  223.430118][T10664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1386'.
[  223.667852][T10675] xt_CT: You must specify a L4 protocol and not use inversions on it
[  224.843684][T10679] input: syz0 as /devices/virtual/input/input26
[  224.896780][T10682] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1393'.
[  224.938312][T10682] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1393'.
[  224.941751][T10685] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  224.944253][T10672] IPVS: stopping backup sync thread 10685 ...
[  225.086765][T10691] geneve3: entered promiscuous mode
[  225.088487][T10691] geneve3: entered allmulticast mode
[  225.100093][T10692] 9pnet_fd: Insufficient options for proto=fd
[  225.382039][T10707] trusted_key: encrypted_key: master key parameter '/À7ÞV–wÑm0œ)mc5Ä}³ii' is invalid
[  225.614371][T10713] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  225.616716][T10713] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  225.628389][T10713] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  225.635441][T10713] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  225.637944][T10713] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  225.642305][T10713] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  226.074071][T10727] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1403'.
[  226.176471][T10726] RDS: rds_bind could not find a transport for ::ffff:172.30.0.3, load rds_tcp or rds_rdma?
[  226.448518][T10737] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1408'.
[  226.452624][T10737] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  226.455858][T10737] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  226.602632][T10748] fuse: Bad value for 'rootmode'
[  226.769628][T10755] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1414'.
[  226.956534][T10762] FAULT_INJECTION: forcing a failure.
[  226.956534][T10762] name failslab, interval 1, probability 0, space 0, times 0
[  226.960452][T10762] CPU: 3 UID: 0 PID: 10762 Comm: syz.4.1416 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  226.960468][T10762] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  226.960475][T10762] Call Trace:
[  226.960479][T10762]  <TASK>
[  226.960483][T10762]  dump_stack_lvl+0x16c/0x1f0
[  226.960506][T10762]  should_fail_ex+0x512/0x640
[  226.960521][T10762]  should_failslab+0xc2/0x120
[  226.960533][T10762]  __kmalloc_cache_noprof+0x6a/0x3e0
[  226.960548][T10762]  ? __sctp_v6_cmp_addr+0x206/0x530
[  226.960561][T10762]  ? sctp_add_bind_addr+0xae/0x3f0
[  226.960580][T10762]  sctp_add_bind_addr+0xae/0x3f0
[  226.960599][T10762]  sctp_copy_local_addr_list+0x39d/0x5a0
[  226.960614][T10762]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  226.960629][T10762]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  226.960645][T10762]  ? sctp_bind_addr_copy+0xe0/0x530
[  226.960655][T10762]  sctp_bind_addr_copy+0xe0/0x530
[  226.960668][T10762]  sctp_connect_new_asoc+0x1d7/0x790
[  226.960684][T10762]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  226.960701][T10762]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  226.960721][T10762]  __sctp_connect+0x3f3/0xc60
[  226.960739][T10762]  ? __pfx___sctp_connect+0x10/0x10
[  226.960766][T10762]  ? __might_fault+0x13b/0x190
[  226.960788][T10762]  __sctp_setsockopt_connectx+0xfc/0x170
[  226.960805][T10762]  sctp_getsockopt+0x29d6/0x6b10
[  226.960820][T10762]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  226.960839][T10762]  ? __pfx_sctp_getsockopt+0x10/0x10
[  226.960862][T10762]  ? get_pid_task+0xfc/0x250
[  226.960876][T10762]  ? __pfx___might_resched+0x10/0x10
[  226.960891][T10762]  ? aa_sk_perm+0x2f4/0xb10
[  226.960908][T10762]  ? __pfx_aa_sk_perm+0x10/0x10
[  226.960924][T10762]  ? find_held_lock+0x2b/0x80
[  226.960937][T10762]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  226.960952][T10762]  do_sock_getsockopt+0x3fc/0x800
[  226.960970][T10762]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  226.960988][T10762]  ? __fget_files+0x204/0x3c0
[  226.961022][T10762]  __sys_getsockopt+0x123/0x1b0
[  226.961056][T10762]  __ia32_sys_getsockopt+0xbc/0x160
[  226.961082][T10762]  ? lockdep_hardirqs_on+0x7c/0x110
[  226.961101][T10762]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  226.961112][T10762]  __do_fast_syscall_32+0x7c/0x3a0
[  226.961125][T10762]  do_fast_syscall_32+0x32/0x80
[  226.961136][T10762]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  226.961151][T10762] RIP: 0023:0xf7f64579
[  226.961160][T10762] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  226.961171][T10762] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  226.961182][T10762] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000084
[  226.961188][T10762] RDX: 000000000000006f RSI: 0000000080000e80 RDI: 0000000080000ec0
[  226.961195][T10762] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  226.961201][T10762] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  226.961207][T10762] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  226.961220][T10762]  </TASK>
[  227.522523][T10769] loop7: detected capacity change from 0 to 524287999
[  227.661519][ T5954] Bluetooth: hci2: command 0x0c1a tx timeout
[  227.663489][ T5954] Bluetooth: hci4: command 0x0c1a tx timeout
[  229.025491][T10800] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1428'.
[  229.117660][T10802] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  229.120001][T10802] UDF-fs: Scanning with blocksize 2048 failed
[  229.123748][T10802] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  229.126511][T10802] UDF-fs: Scanning with blocksize 4096 failed
[  229.711976][T10818] random: crng reseeded on system resumption
[  229.727810][T10818] IPVS: set_ctl: invalid protocol: 94 172.20.20.43:0
[  229.743636][ T5947] Bluetooth: hci4: command 0x0c1a tx timeout
[  229.746185][ T5947] Bluetooth: hci2: command 0x0c1a tx timeout
[  230.611066][T10830] binder: 10829:10830 ioctl c0306201 80000080 returned -14
[  230.624409][T10830] binder: 10829:10830 unknown command 0
[  230.626712][T10830] binder: 10829:10830 ioctl c0306201 800001c0 returned -22
[  230.807851][T10839] tmpfs: Unknown parameter 'grpquotaio1'
[  230.985539][T10846] random: crng reseeded on system resumption
[  231.010183][T10849] fuse: Bad value for 'group_id'
[  231.011913][T10849] fuse: Bad value for 'group_id'
[  231.348635][T10857] input: syz0 as /devices/virtual/input/input27
[  231.352885][T10859] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1447'.
[  231.400865][T10860] xt_CT: No such helper "syz0"
[  231.409941][T10863] xt_CT: No such helper "syz0"
[  231.591932][T10879] fuse: Unknown parameter 'rootmod'
[  231.821337][ T5954] Bluetooth: hci2: command 0x0c1a tx timeout
[  231.821448][ T5947] Bluetooth: hci4: command 0x0c1a tx timeout
[  232.041709][T10892] 
[  232.042837][T10892] =============================
[  232.044419][T10892] WARNING: suspicious RCU usage
[  232.045926][T10892] 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 Not tainted
[  232.049034][T10892] -----------------------------
[  232.051301][T10892] net/ipv6/ip6_fib.c:1393 suspicious rcu_dereference_protected() usage!
[  232.053938][T10892] 
[  232.053938][T10892] other info that might help us debug this:
[  232.053938][T10892] 
[  232.057288][T10892] 
[  232.057288][T10892] rcu_scheduler_active = 2, debug_locks = 1
[  232.059757][T10892] 3 locks held by syz.4.1460/10892:
[  232.061489][T10892]  #0: ffffffff90149068 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x600/0x2000
[  232.064416][T10892]  #1: ffffffff8e3c4b40 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x3a/0x2d0
[  232.067387][T10892]  #2: ffff88802423f830 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0xeb/0x2d0
[  232.070291][T10892] 
[  232.070291][T10892] stack backtrace:
[  232.072298][T10892] CPU: 0 UID: 0 PID: 10892 Comm: syz.4.1460 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  232.072323][T10892] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  232.072335][T10892] Call Trace:
[  232.072342][T10892]  <TASK>
[  232.072351][T10892]  dump_stack_lvl+0x16c/0x1f0
[  232.072385][T10892]  lockdep_rcu_suspicious+0x166/0x260
[  232.072414][T10892]  __fib6_update_sernum_upto_root+0x221/0x270
[  232.072438][T10892]  fib6_ifup+0x19b/0x2a0
[  232.072456][T10892]  ? __pfx_fib6_ifup+0x10/0x10
[  232.072477][T10892]  fib6_clean_node+0x2a7/0x5b0
[  232.072501][T10892]  ? __pfx_fib6_clean_node+0x10/0x10
[  232.072520][T10892]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  232.072554][T10892]  fib6_walk_continue+0x452/0x8d0
[  232.072578][T10892]  fib6_walk+0x182/0x370
[  232.072597][T10892]  ? __pfx_fib6_ifup+0x10/0x10
[  232.072615][T10892]  fib6_clean_tree+0xd4/0x110
[  232.072633][T10892]  ? __pfx_fib6_clean_tree+0x10/0x10
[  232.072656][T10892]  ? __pfx_fib6_clean_node+0x10/0x10
[  232.072676][T10892]  ? __pfx_fib6_ifup+0x10/0x10
[  232.072704][T10892]  ? __pfx_fib6_ifup+0x10/0x10
[  232.072724][T10892]  __fib6_clean_all+0x107/0x2d0
[  232.072748][T10892]  rt6_sync_up+0xc9/0x170
[  232.072775][T10892]  ? __pfx_rt6_sync_up+0x10/0x10
[  232.072808][T10892]  addrconf_notify+0x1709/0x19e0
[  232.072833][T10892]  ? ip6mr_device_event+0x1bc/0x230
[  232.072861][T10892]  notifier_call_chain+0xbc/0x410
[  232.072880][T10892]  ? __pfx_addrconf_notify+0x10/0x10
[  232.072919][T10892]  call_netdevice_notifiers_info+0xbe/0x140
[  232.072937][T10892]  netif_state_change+0x165/0x3b0
[  232.072952][T10892]  ? __pfx_netif_state_change+0x10/0x10
[  232.072967][T10892]  ? netdev_master_upper_dev_get+0xd6/0x150
[  232.072980][T10892]  ? do_set_master+0x1fa/0x730
[  232.072993][T10892]  do_setlink.constprop.0+0x3570/0x4380
[  232.073010][T10892]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  232.073024][T10892]  ? stack_trace_save+0x8e/0xc0
[  232.073037][T10892]  ? __pfx_stack_trace_save+0x10/0x10
[  232.073051][T10892]  ? __lock_acquire+0xb8a/0x1c90
[  232.073071][T10892]  ? kasan_save_stack+0x42/0x60
[  232.073087][T10892]  ? kasan_save_stack+0x33/0x60
[  232.073103][T10892]  ? __kasan_kmalloc+0xaa/0xb0
[  232.073120][T10892]  ? __mutex_trylock_common+0xe9/0x250
[  232.073137][T10892]  ? __pfx___mutex_trylock_common+0x10/0x10
[  232.073153][T10892]  ? __pfx___might_resched+0x10/0x10
[  232.073166][T10892]  ? rcu_is_watching+0x12/0xc0
[  232.073179][T10892]  ? trace_contention_end+0xdd/0x130
[  232.073194][T10892]  ? __mutex_lock+0x1ca/0xb90
[  232.073206][T10892]  ? rcu_is_watching+0x12/0xc0
[  232.073216][T10892]  ? rtnl_newlink+0x600/0x2000
[  232.073225][T10892]  ? trace_cap_capable+0x18d/0x200
[  232.073241][T10892]  ? __pfx___mutex_lock+0x10/0x10
[  232.073251][T10892]  ? apparmor_capable+0x114/0x1d0
[  232.073270][T10892]  ? netlink_ns_capable+0xfa/0x130
[  232.073284][T10892]  rtnl_newlink+0x18e0/0x2000
[  232.073299][T10892]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.073309][T10892]  ? kasan_quarantine_put+0x10a/0x240
[  232.073325][T10892]  ? lockdep_hardirqs_on+0x7c/0x110
[  232.073344][T10892]  ? kmem_cache_free+0x2d1/0x4d0
[  232.073359][T10892]  ? kfree_skbmem+0x1a4/0x1f0
[  232.073377][T10892]  ? __lock_acquire+0x622/0x1c90
[  232.073392][T10892]  ? rcu_is_watching+0x12/0xc0
[  232.073403][T10892]  ? trace_cap_capable+0x18d/0x200
[  232.073420][T10892]  ? find_held_lock+0x2b/0x80
[  232.073429][T10892]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.073440][T10892]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.073450][T10892]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  232.073461][T10892]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.073473][T10892]  rtnetlink_rcv_msg+0x95e/0xe90
[  232.073487][T10892]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  232.073502][T10892]  ? ref_tracker_free+0x37c/0x830
[  232.073518][T10892]  netlink_rcv_skb+0x155/0x420
[  232.073531][T10892]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  232.073544][T10892]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  232.073562][T10892]  ? netlink_deliver_tap+0x1ae/0xd30
[  232.073577][T10892]  netlink_unicast+0x53d/0x7f0
[  232.073592][T10892]  ? __pfx_netlink_unicast+0x10/0x10
[  232.073609][T10892]  netlink_sendmsg+0x8d1/0xdd0
[  232.073624][T10892]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.073638][T10892]  ? __import_iovec+0x1dd/0x650
[  232.073655][T10892]  ____sys_sendmsg+0xa95/0xc70
[  232.073671][T10892]  ? __pfx_____sys_sendmsg+0x10/0x10
[  232.073684][T10892]  ? get_compat_msghdr+0x11a/0x170
[  232.073702][T10892]  ___sys_sendmsg+0x134/0x1d0
[  232.073714][T10892]  ? __pfx____sys_sendmsg+0x10/0x10
[  232.073731][T10892]  ? find_held_lock+0x2b/0x80
[  232.073750][T10892]  __sys_sendmsg+0x16d/0x220
[  232.073761][T10892]  ? __pfx___sys_sendmsg+0x10/0x10
[  232.073771][T10892]  ? __pfx_bpf_trace_run2+0x10/0x10
[  232.073790][T10892]  ? syscall_trace_enter+0x1cb/0x260
[  232.073808][T10892]  ? rcu_is_watching+0x12/0xc0
[  232.073821][T10892]  __do_fast_syscall_32+0x7c/0x3a0
[  232.073834][T10892]  do_fast_syscall_32+0x32/0x80
[  232.073845][T10892]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  232.073858][T10892] RIP: 0023:0xf7f64579
[  232.073868][T10892] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  232.073879][T10892] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  232.073889][T10892] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000280
[  232.073896][T10892] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  232.073902][T10892] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  232.073908][T10892] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  232.073914][T10892] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  232.073927][T10892]  </TASK>
[  232.073932][T10892] 
[  232.267453][T10892] =============================
[  232.268979][T10892] WARNING: suspicious RCU usage
[  232.270487][T10892] 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 Not tainted
[  232.272728][T10892] -----------------------------
[  232.274509][T10892] net/ipv6/ip6_fib.c:1400 suspicious rcu_dereference_protected() usage!
[  232.277065][T10892] 
[  232.277065][T10892] other info that might help us debug this:
[  232.277065][T10892] 
[  232.280198][T10892] 
[  232.280198][T10892] rcu_scheduler_active = 2, debug_locks = 1
[  232.282992][T10892] 3 locks held by syz.4.1460/10892:
[  232.285156][T10892]  #0: ffffffff90149068 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x600/0x2000
[  232.288039][T10892]  #1: ffffffff8e3c4b40 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x3a/0x2d0
[  232.290952][T10892]  #2: ffff88802423f830 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0xeb/0x2d0
[  232.294167][T10892] 
[  232.294167][T10892] stack backtrace:
[  232.296068][T10892] CPU: 0 UID: 0 PID: 10892 Comm: syz.4.1460 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  232.296082][T10892] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  232.296090][T10892] Call Trace:
[  232.296094][T10892]  <TASK>
[  232.296099][T10892]  dump_stack_lvl+0x16c/0x1f0
[  232.296120][T10892]  lockdep_rcu_suspicious+0x166/0x260
[  232.296138][T10892]  __fib6_update_sernum_upto_root+0x16b/0x270
[  232.296151][T10892]  fib6_ifup+0x19b/0x2a0
[  232.296163][T10892]  ? __pfx_fib6_ifup+0x10/0x10
[  232.296178][T10892]  fib6_clean_node+0x2a7/0x5b0
[  232.296192][T10892]  ? __pfx_fib6_clean_node+0x10/0x10
[  232.296204][T10892]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  232.296224][T10892]  fib6_walk_continue+0x452/0x8d0
[  232.296237][T10892]  fib6_walk+0x182/0x370
[  232.296248][T10892]  ? __pfx_fib6_ifup+0x10/0x10
[  232.296259][T10892]  fib6_clean_tree+0xd4/0x110
[  232.296270][T10892]  ? __pfx_fib6_clean_tree+0x10/0x10
[  232.296283][T10892]  ? __pfx_fib6_clean_node+0x10/0x10
[  232.296296][T10892]  ? __pfx_fib6_ifup+0x10/0x10
[  232.296311][T10892]  ? __pfx_fib6_ifup+0x10/0x10
[  232.296323][T10892]  __fib6_clean_all+0x107/0x2d0
[  232.296337][T10892]  rt6_sync_up+0xc9/0x170
[  232.296354][T10892]  ? __pfx_rt6_sync_up+0x10/0x10
[  232.296373][T10892]  addrconf_notify+0x1709/0x19e0
[  232.296388][T10892]  ? ip6mr_device_event+0x1bc/0x230
[  232.296407][T10892]  notifier_call_chain+0xbc/0x410
[  232.296420][T10892]  ? __pfx_addrconf_notify+0x10/0x10
[  232.296437][T10892]  call_netdevice_notifiers_info+0xbe/0x140
[  232.296453][T10892]  netif_state_change+0x165/0x3b0
[  232.296468][T10892]  ? __pfx_netif_state_change+0x10/0x10
[  232.296482][T10892]  ? netdev_master_upper_dev_get+0xd6/0x150
[  232.296494][T10892]  ? do_set_master+0x1fa/0x730
[  232.296505][T10892]  do_setlink.constprop.0+0x3570/0x4380
[  232.296522][T10892]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  232.296535][T10892]  ? stack_trace_save+0x8e/0xc0
[  232.296548][T10892]  ? __pfx_stack_trace_save+0x10/0x10
[  232.296561][T10892]  ? __lock_acquire+0xb8a/0x1c90
[  232.296576][T10892]  ? kasan_save_stack+0x42/0x60
[  232.296593][T10892]  ? kasan_save_stack+0x33/0x60
[  232.296608][T10892]  ? __kasan_kmalloc+0xaa/0xb0
[  232.296626][T10892]  ? __mutex_trylock_common+0xe9/0x250
[  232.296642][T10892]  ? __pfx___mutex_trylock_common+0x10/0x10
[  232.296657][T10892]  ? __pfx___might_resched+0x10/0x10
[  232.296670][T10892]  ? rcu_is_watching+0x12/0xc0
[  232.296681][T10892]  ? trace_contention_end+0xdd/0x130
[  232.296696][T10892]  ? __mutex_lock+0x1ca/0xb90
[  232.296707][T10892]  ? rcu_is_watching+0x12/0xc0
[  232.296718][T10892]  ? rtnl_newlink+0x600/0x2000
[  232.296728][T10892]  ? trace_cap_capable+0x18d/0x200
[  232.296743][T10892]  ? __pfx___mutex_lock+0x10/0x10
[  232.296754][T10892]  ? apparmor_capable+0x114/0x1d0
[  232.296773][T10892]  ? netlink_ns_capable+0xfa/0x130
[  232.296788][T10892]  rtnl_newlink+0x18e0/0x2000
[  232.296803][T10892]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.296814][T10892]  ? kasan_quarantine_put+0x10a/0x240
[  232.296830][T10892]  ? lockdep_hardirqs_on+0x7c/0x110
[  232.296849][T10892]  ? kmem_cache_free+0x2d1/0x4d0
[  232.296865][T10892]  ? kfree_skbmem+0x1a4/0x1f0
[  232.296884][T10892]  ? __lock_acquire+0x622/0x1c90
[  232.296899][T10892]  ? rcu_is_watching+0x12/0xc0
[  232.296910][T10892]  ? trace_cap_capable+0x18d/0x200
[  232.296927][T10892]  ? find_held_lock+0x2b/0x80
[  232.296937][T10892]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.296948][T10892]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.296958][T10892]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  232.296970][T10892]  ? __pfx_rtnl_newlink+0x10/0x10
[  232.296981][T10892]  rtnetlink_rcv_msg+0x95e/0xe90
[  232.296994][T10892]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  232.297010][T10892]  ? ref_tracker_free+0x37c/0x830
[  232.297025][T10892]  netlink_rcv_skb+0x155/0x420
[  232.297039][T10892]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  232.297054][T10892]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  232.297072][T10892]  ? netlink_deliver_tap+0x1ae/0xd30
[  232.297087][T10892]  netlink_unicast+0x53d/0x7f0
[  232.297102][T10892]  ? __pfx_netlink_unicast+0x10/0x10
[  232.297119][T10892]  netlink_sendmsg+0x8d1/0xdd0
[  232.297135][T10892]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.297149][T10892]  ? __import_iovec+0x1dd/0x650
[  232.297166][T10892]  ____sys_sendmsg+0xa95/0xc70
[  232.297182][T10892]  ? __pfx_____sys_sendmsg+0x10/0x10
[  232.297195][T10892]  ? get_compat_msghdr+0x11a/0x170
[  232.297213][T10892]  ___sys_sendmsg+0x134/0x1d0
[  232.297224][T10892]  ? __pfx____sys_sendmsg+0x10/0x10
[  232.297242][T10892]  ? find_held_lock+0x2b/0x80
[  232.297261][T10892]  __sys_sendmsg+0x16d/0x220
[  232.297272][T10892]  ? __pfx___sys_sendmsg+0x10/0x10
[  232.297282][T10892]  ? __pfx_bpf_trace_run2+0x10/0x10
[  232.297301][T10892]  ? syscall_trace_enter+0x1cb/0x260
[  232.297319][T10892]  ? rcu_is_watching+0x12/0xc0
[  232.297332][T10892]  __do_fast_syscall_32+0x7c/0x3a0
[  232.297344][T10892]  do_fast_syscall_32+0x32/0x80
[  232.297355][T10892]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  232.297369][T10892] RIP: 0023:0xf7f64579
[  232.297378][T10892] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  232.297389][T10892] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  232.297399][T10892] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000280
[  232.297406][T10892] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  232.297412][T10892] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  232.297418][T10892] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  232.297424][T10892] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  232.297437][T10892]  </TASK>

VM DIAGNOSIS:
08:58:42  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8555fc15 RDI=ffffffff9ae5ca00 RBP=ffffffff9ae5c9c0 RSP=ffffc9000da96638
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000065 R14=ffffffff9ae5c9c0 R15=ffffffff8555fbb0
RIP=ffffffff8555fc3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097772000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50c4000 CR3=0000000060f71000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000078e10f RBX=0000000000000001 RCX=ffffffff8b799c69 RDX=0000000000000000
RSI=ffffffff8dc0a7a0 RDI=ffffffff8bf533a0 RBP=ffffed1003ad9488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed1005666645 R10=ffff88802b33322b R11=0000000000000001
R12=0000000000000001 R13=ffff88801d6ca440 R14=ffffffff9087d650 R15=0000000000000000
RIP=ffffffff8b7987cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097872000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000584114c0 CR3=0000000066dfb000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000039c6af RBX=0000000000000002 RCX=ffffffff8b799c69 RDX=0000000000000000
RSI=ffffffff8dc0a7a0 RDI=ffffffff8bf533a0 RBP=ffffed1003ad9910 RSP=ffffc9000047fdf8
R8 =0000000000000001 R9 =ffffed1005686645 R10=ffff88802b43322b R11=0000000000000001
R12=0000000000000002 R13=ffff88801d6cc880 R14=ffffffff9087d650 R15=0000000000000000
RIP=ffffffff8b7987cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097972000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fcdfb9225d0 CR3=0000000074bce000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000335f33 RBX=0000000000000003 RCX=ffffffff8b799c69 RDX=0000000000000000
RSI=ffffffff8dc0a7a0 RDI=ffffffff8bf533a0 RBP=ffffed10037e2000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a6645 R10=ffff88802b53322b R11=ffffffff9adfd550
R12=0000000000000003 R13=ffff88801bf10000 R14=ffffffff9087d650 R15=0000000000000000
RIP=ffffffff8b7987cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a72000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f738789c CR3=000000004ac65000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73a2ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000