last executing test programs:

3m33.151493363s ago: executing program 1 (id=308):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x800)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1709000000000000000001000000050007000000000008000900000000001400200000000000000000000400ffffe000fd6e08000a0000000004060002000100000014001f"], 0x5c}, 0x1, 0x620b}, 0x0)

3m33.149772606s ago: executing program 1 (id=309):
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[], 0x178}}, 0x0) (async)
r1 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x200380, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)

3m33.149594897s ago: executing program 1 (id=310):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, 0x0, 0x0}, 0x20)
syz_usb_connect(0x3, 0x24, 0x0, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
unshare(0x2040400)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10)
fstat64(r3, &(0x7f00000002c0))
r4 = fsopen(&(0x7f0000000440)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
unshare(0x1e030800)
fsmount(r4, 0x0, 0x4)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
unshare(0x20800)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000a80)=ANY=[@ANYBLOB], 0xf4}}, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
openat$vcs(0xffffff9c, &(0x7f0000000340), 0x408840, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000080)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000180)=0x1)
unshare(0x44000400)
sendmsg$RDMA_NLDEV_CMD_GET(r5, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xc0000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x30, 0x1401, 0x8, 0x70bd25, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000080}, 0x4008884)

3m32.267413212s ago: executing program 1 (id=315):
syz_open_dev$usbfs(&(0x7f0000000100), 0x74, 0x101201)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
connect(0xffffffffffffffff, &(0x7f0000000140)=@hci, 0x80)
openat$binder_debug(0xffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[])
chdir(&(0x7f0000000300)='./file0\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0xfffffd9d)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x408)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x5452, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x81, 0xfffffffb})

3m31.361731634s ago: executing program 1 (id=320):
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000002c0)={{}, 0x0, 0x0, @inherit={0x78, 0x0}, @subvolid=0x2})
syz_io_uring_setup(0x70d6, &(0x7f0000000040)={0x0, 0xe92b, 0x8000, 0x0, 0x296}, &(0x7f00000000c0), &(0x7f0000000100))
syz_usb_connect(0x2, 0x3d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x2, 0x10000000, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e49e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x201, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x7}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24004894}, 0x20008085)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001c80)={0xffffffffffffffff, 0xe0, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f00000019c0)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000001a00)=[0x0, 0x0], &(0x7f0000001a40)=[0x0, 0x0], 0x0, 0x24, &(0x7f0000001a80)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000001ac0), &(0x7f0000001b00), 0x8, 0x100, 0x8, 0x8, &(0x7f0000001b40)}}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000001cc0)={'batadv_slave_0\x00'})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x25dfdbfb, {0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x24}}, 0x40)
capset(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
r5 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x2503, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r5, 0xc008640a, &(0x7f0000000140))
sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c00000008060101f3ffffff00000000000000000500010007000000"], 0x1c}}, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

3m31.072924843s ago: executing program 1 (id=322):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000080)={[{@quota}, {@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x37]}}]}) (fail_nth: 12)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt(r0, 0x1, 0x10000000000009, &(0x7f0000000100)="0100ddff", 0x507b420f2d51f971)
setsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000040)=0x40, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000440), 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r2, &(0x7f0000000380)=[{&(0x7f0000000700)="ff8da7094743d732efd1804bd638d781f636037ca0e6dd1c607333833e4a34811b928815874be99f03b476ff8fe0a4260aadc68f5fb8e8d7e36246239634114097f110f9d5ef58597f9d87c4ff", 0x4d}], 0x1)
r3 = accept4$unix(r1, 0x0, 0x0, 0x0)
recvmsg(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/72, 0x4c}], 0x29, 0x0, 0xfffffed5}, 0x0)
r4 = open(&(0x7f0000000140)='./file0\x00', 0x800, 0x70)
mknodat$loop(r4, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
unlinkat(r4, &(0x7f0000000000)='./file1\x00', 0x0)
openat$mice(0xffffffffffffff9c, 0x0, 0x80082)
ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, &(0x7f0000000100)={0x7, 0x7, 0x441, 0x5, "392bd5b670d972030582f51612b0f4546fcef8d7d361cb6a1d58ff5200"})

3m31.035402822s ago: executing program 32 (id=322):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000080)={[{@quota}, {@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x37]}}]}) (fail_nth: 12)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt(r0, 0x1, 0x10000000000009, &(0x7f0000000100)="0100ddff", 0x507b420f2d51f971)
setsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000040)=0x40, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000440), 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r2, &(0x7f0000000380)=[{&(0x7f0000000700)="ff8da7094743d732efd1804bd638d781f636037ca0e6dd1c607333833e4a34811b928815874be99f03b476ff8fe0a4260aadc68f5fb8e8d7e36246239634114097f110f9d5ef58597f9d87c4ff", 0x4d}], 0x1)
r3 = accept4$unix(r1, 0x0, 0x0, 0x0)
recvmsg(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/72, 0x4c}], 0x29, 0x0, 0xfffffed5}, 0x0)
r4 = open(&(0x7f0000000140)='./file0\x00', 0x800, 0x70)
mknodat$loop(r4, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
unlinkat(r4, &(0x7f0000000000)='./file1\x00', 0x0)
openat$mice(0xffffffffffffff9c, 0x0, 0x80082)
ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, &(0x7f0000000100)={0x7, 0x7, 0x441, 0x5, "392bd5b670d972030582f51612b0f4546fcef8d7d361cb6a1d58ff5200"})

2m31.19008378s ago: executing program 4 (id=704):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="88000000020601000000000600000000000000000e0003006269746d61703a697000000005000400000000000900020073797a3000000000400007801800028014000240ff0200000000000000000000000000010c00018008000140ac1414bbf9204a22c6e9ef5b5be235ce49180003801c00024000000000000000000000ffff0a01010205000100070000000500010600000000"], 0x88}}, 0x0)
r2 = gettid()
r3 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x2000)
read(r3, &(0x7f0000000200)=""/209, 0x128)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000080)={0x335, @time={0x80, 0xff}})
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0600000004000000080000000800000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=r2, @ANYRES64=r1, @ANYBLOB='\x00'/28, @ANYRESHEX], 0x50)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket(0x11, 0x80a, 0x0)
dup(0xffffffffffffffff)
socket$inet6(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000400))
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}, {}, {}, {0xfffffffc}, {}, {0xfffffffc}, {0x400000}], 0x0, 0x4, 0x6}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setrlimit(0x1, &(0x7f0000000000)={0x3, 0x6})
syz_open_dev$MSR(&(0x7f00000001c0), 0x8002, 0x0)
eventfd(0x1e)
modify_ldt$write(0x1, &(0x7f0000000080)={0x2000004, 0x20001000}, 0x10)
syz_emit_ethernet(0x46, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(0xffffffffffffffff, 0x40045731, 0x0)
ioctl$SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f0000000040)=0xdfe5)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)=@newtaction={0x11c, 0x30, 0x1, 0x0, 0x3, {}, [{0x108, 0x1, [@m_csum={0x104, 0xa, 0x0, 0x0, {{0x9}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0xfffffffb, 0x9b, 0x7, 0x2, 0x100}, 0x3}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x2, 0x4, 0xfffffffffffffffa, 0x9, 0x8001}, 0x30}}]}, {0x9e, 0x6, "127c2e8f899bddf17658bc8cbf401f738d8b607f014c8897dd79698a59f7fbd4421b9a1e380e90ddf71fd3f023183a624a63dfe015e0894fa72d77ce252527e83dfbd143925919d87f53788d8cdb579b91134e4a15d92be3ac3b1cd131a30d117780e30985f2222a756705d80405562050f9b4b809fd95fa1fccfbd48309e8ebabc6887a2d48d659e10d008742fd13ed9849aa4a85282eeef437"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x11c}, 0x1, 0x0, 0x0, 0x40841}, 0x4080)

2m29.411845111s ago: executing program 4 (id=714):
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.threads\x00', 0x2, 0x0)
open_by_handle_at(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="0c000000fe00010003"], 0x408100)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
r3 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3w\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0)
write(r3, &(0x7f0000001380)="06", 0x1)
sendfile(r3, r3, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r3, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r4, 0x84, 0x13, &(0x7f0000000000)=0x8, 0x4)

2m27.101347681s ago: executing program 4 (id=726):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x235, &(0x7f0000000500)={0x0, 0x4533, 0x10100, 0x0, 0x24c, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x201}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="f8000000190001000000000000000000e0000002000000000000000000000000ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000a900000000000000000000000000000000000000000000000000000000000000ffffffffffffffff00000000000000000000000000000000000000000000000085820091020000000000000000804000020000000000000800000000000000000001000044000500ac1414aa000000000000000000000000000000003c00000000000000ffffffff000000000000000000000000020000000400"/176], 0xf8}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r8=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="31032fbd7000fddbdf250800000008000300", @ANYRES32=r8, @ANYBLOB="050006"], 0x2c}, 0x1, 0x0, 0x0, 0x8814}, 0x20000084)

2m26.771925964s ago: executing program 4 (id=728):
syz_open_dev$usbfs(&(0x7f0000000100), 0x74, 0x101201)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
connect(0xffffffffffffffff, &(0x7f0000000140)=@hci, 0x80)
openat$binder_debug(0xffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[])
chdir(&(0x7f0000000300)='./file0\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0xfffffd9d)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x408)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x5452, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x81, 0xfffffffb})

2m25.873182641s ago: executing program 4 (id=734):
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000240)='cgroup.threads\x00', 0x2, 0x0)
open_by_handle_at(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="0c000000fe00010003"], 0x408100)
r3 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3w\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0)
write(r3, &(0x7f0000001380)="06", 0x1)
sendfile(r3, r3, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r3, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r4, 0x84, 0x13, &(0x7f0000000000)=0x8, 0x4)

2m25.620441833s ago: executing program 4 (id=737):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x235, &(0x7f0000000500)={0x0, 0x4533, 0x10100, 0x0, 0x24c, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x201}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="f8000000190001000000000000000000e0000002000000000000000000000000ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000a900000000000000000000000000000000000000000000000000000000000000ffffffffffffffff00000000000000000000000000000000000000000000000085820091020000000000000000804000020000000000000800000000000000000001000044000500ac1414aa000000000000000000000000000000003c00000000000000ffffffff000000000000000000000000020000000400"/176], 0xf8}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r9=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r7, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="31032fbd7000fddbdf250800000008000300", @ANYRES32=r9, @ANYBLOB="050006"], 0x2c}, 0x1, 0x0, 0x0, 0x8814}, 0x20000084)

2m25.565574873s ago: executing program 33 (id=737):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
openat$nullb(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x235, &(0x7f0000000500)={0x0, 0x4533, 0x10100, 0x0, 0x24c, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x201}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="f8000000190001000000000000000000e0000002000000000000000000000000ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000a900000000000000000000000000000000000000000000000000000000000000ffffffffffffffff00000000000000000000000000000000000000000000000085820091020000000000000000804000020000000000000800000000000000000001000044000500ac1414aa000000000000000000000000000000003c00000000000000ffffffff000000000000000000000000020000000400"/176], 0xf8}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r9=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r7, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="31032fbd7000fddbdf250800000008000300", @ANYRES32=r9, @ANYBLOB="050006"], 0x2c}, 0x1, 0x0, 0x0, 0x8814}, 0x20000084)

4.990652803s ago: executing program 0 (id=1677):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x62d81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f00000001c0)=[{0x23, 0x0, 0x0, 0x0, @tick, {}, {}, @queue={0x0, {0x7a120}}}], 0x1c)
r1 = syz_open_procfs(0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
openat$6lowpan_control(0xffffff9c, &(0x7f0000000100), 0x2, 0x0)
mmap(&(0x7f00005b8000/0x1000)=nil, 0x1000, 0xb635773f06ebbeef, 0x108171, 0xffffffffffffffff, 0xf2844000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="c00000000001050500000000000000000a0000003c0002802c00018014000300ff01000000000000000000000000000114000400ff0200020000000000000000000000010c00028005000100000000003c0001800c00028005000100000000002c00018014000300ff02000000000000000000000000000114000400fc00000000000000000000000000000108000740000000002c00068014000500fc0200000000000000000000edffffff130004"], 0xc0}, 0x1, 0x0, 0x0, 0x4880}, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = gettid()
rt_sigaction(0x21, &(0x7f0000000040)={&(0x7f0000000540)="f30f00cff365d9fff30f38f6322e652e660f5b5f27a1ce2a1e2ec4e3ed0f43fff10ffbb39c0c00008fc9a893a4d502000000f26567774367f2ab16e1450f0f1d060000001dc4627dad4d660808646466f3d74e25974e259709b60000", 0x48000004, 0x0}, 0x0, 0x8, &(0x7f0000000000))
tkill(r5, 0x21)

4.120694814s ago: executing program 0 (id=1684):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESOCT, @ANYRES64=r0, @ANYRES64=r0, @ANYRES8=r0], &(0x7f0000000280)='GPL\x00', 0x9, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
fsopen(0x0, 0x0)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = syz_io_uring_setup(0x7069, &(0x7f00000000c0)={0x0, 0x8723, 0x804, 0x2, 0x88}, &(0x7f00000003c0), &(0x7f00000004c0))
mmap$IORING_OFF_SQ_RING(&(0x7f0000639000/0x1000)=nil, 0x1000, 0x9, 0x810, r1, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x8, 0x2c, 0x0, @remote, @local, {[], {{0x3a00, 0x5, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
ioctl$sock_SIOCGIFCONF(r3, 0x8912, &(0x7f0000000040)=@buf={0x1000, &(0x7f0000000a00)="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"})

3.200740739s ago: executing program 0 (id=1689):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9c, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_CLOCK(r4, 0x4030ae7b, &(0x7f0000000040)={0x81, 0xa, 0x3, 0x3, 0x2})
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, 0x0, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4})
ioctl$UFFDIO_CONTINUE(r6, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r7, 0x80047437, &(0x7f0000000140)=0x10)
r8 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0xffffffffffffffff, r8, 0x1)
socket$netlink(0x10, 0x3, 0x4)

2.140640476s ago: executing program 0 (id=1694):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x60b03, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(0xffffffffffffffff, 0x4068aea3, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
openat$bsg(0xffffff9c, &(0x7f00000000c0), 0x14100, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x10, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x8, 0xb1, &(0x7f0000000140)=""/177, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket(0x2a, 0x2, 0x9)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r5)
setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000680)={@in6={{0xa, 0x4f22, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, 0x6}}, 0x0, 0x0, 0xd, 0x0, "cde609099c5c17fd7b3d1ff1fd4f53d1dbebfc35a7dbf1261d75071099e44f1d02dbbfaebb0b41801d359eda9122ac7d75a487558df1e59bf4e68f5185f8e06358ef263485e43e824528ef45d3461c3e"}, 0xd8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.078138558s ago: executing program 2 (id=1695):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000000)={'sit0\x00', &(0x7f0000000340)={'ip_vti0\x00', <r1=>0x0, 0x40, 0x1, 0x5, 0x10001, {{0x37, 0x4, 0x0, 0x3, 0xdc, 0x64, 0x0, 0x0, 0xa91575ab388a1130, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_addr={0x44, 0xc, 0x50, 0x1, 0x1, [{@multicast2, 0x2}]}, @noop, @generic={0x88, 0x7, "4fc499daa1"}, @timestamp_prespec={0x44, 0x54, 0xdc, 0x3, 0x3, [{@dev={0xac, 0x14, 0x14, 0x42}, 0x5}, {@broadcast}, {@local, 0x3}, {@local, 0x4}, {@empty, 0x5}, {@dev={0xac, 0x14, 0x14, 0x1d}}, {@rand_addr=0x64010100, 0x3d77}, {@local, 0x4}, {@local}, {@multicast1, 0x141}]}, @rr={0x7, 0x1b, 0xb7, [@multicast1, @private=0xa010100, @multicast2, @rand_addr=0x64010100, @private=0xa010101, @multicast2]}, @cipso={0x86, 0x33, 0x3, [{0x5, 0x10, "c6a37e8653a4183d31b711e00c55"}, {0x5, 0xb, "eae30721c6ba35babd"}, {0x5, 0x3, 'O'}, {0x0, 0xf, "e2d535feb88d281a5172fdf52e"}]}, @lsrr={0x83, 0xf, 0x66, [@dev={0xac, 0x14, 0x14, 0x14}, @dev={0xac, 0x14, 0x14, 0x10}, @dev={0xac, 0x14, 0x14, 0x2f}]}]}}}}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=@newtclass={0x68, 0x28, 0x100, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0xd, 0xfff3}, {0xb, 0x6}, {0xfff1, 0x8}}, [@TCA_RATE={0x6, 0x5, {0x7, 0x9d}}, @tclass_kind_options=@c_mqprio={0xb}, @tclass_kind_options=@c_sfb={0x8}, @tclass_kind_options=@c_qfq={{0x8}, {0xc, 0x2, [@TCA_QFQ_WEIGHT={0x8, 0x1, 0xb6ce}]}}, @tclass_kind_options=@c_multiq={0xb}, @TCA_RATE={0x6, 0x5, {0xa4, 0x1}}]}, 0x68}, 0x1, 0x0, 0x0, 0x805}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000540)=ANY=[@ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="0000004001"], 0x80}, 0x1, 0x0, 0x0, 0x800}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getrlimit(0xc, &(0x7f0000000300))
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f00000005c0)=@filter={'filter\x00', 0xe, 0x4, 0x344, 0xffffffff, 0x188, 0x188, 0xb8, 0xffffffff, 0xffffffff, 0x2b0, 0x2b0, 0x2b0, 0xffffffff, 0x4, &(0x7f0000000280), {[{{@uncond, 0x0, 0x94, 0xb8, 0x0, {}, [@common=@icmp={{0x24}, {0x0, "b6eb"}}]}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x1, 0x5, 0x4, 0x2, 0x6], 0x1, 0x1}, {0x1, [0x2, 0x2, 0x1, 0x7, 0x0, 0x4], 0x5}}}}, {{@ip={@multicast2, @multicast2, 0xffffff00, 0xffffff00, 'veth1_virt_wifi\x00', 'batadv0\x00', {}, {0xff}, 0x8, 0x0, 0x61}, 0x0, 0xe0, 0x128, 0x0, {}, [@common=@osf={{0x50}, {'syz1\x00', 0x0, 0xb, 0x1}}, @common=@socket0={{0x20}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x1, 0x9b, {0xfff}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x3a0)
r5 = inotify_init1(0x0)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f0000000040)=0x2, 0x4)
bind$inet(r6, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
r7 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r7, 0x1, 0xf, &(0x7f0000000040)=0x2, 0x4)
bind$inet(r7, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
close_range(r5, 0xffffffffffffffff, 0x0)
r8 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r8, 0x0, 0x0, 0x400ad80, &(0x7f0000000080)={0xa, 0x4621, 0x0, @local}, 0x1c)
sendmmsg$inet6(r8, &(0x7f0000006780), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])

1.577731733s ago: executing program 5 (id=1697):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9c, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_CLOCK(r4, 0x4030ae7b, &(0x7f0000000040)={0x81, 0xa, 0x3, 0x3, 0x2})
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, 0x0, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4})
r7 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r8, 0x80047437, &(0x7f0000000140)=0x10)
r9 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x1e, r7, 0xffffffffffffffff, r9, 0x1)
socket$netlink(0x10, 0x3, 0x4)

1.469530525s ago: executing program 3 (id=1698):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESOCT, @ANYRES64=r0, @ANYRES64=r0, @ANYRES8=r0], &(0x7f0000000280)='GPL\x00', 0x9, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
fsopen(0x0, 0x0)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFCONF(r2, 0x8912, &(0x7f0000000040)=@buf={0x1000, &(0x7f0000000a00)="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"}) (fail_nth: 11)

630.419021ms ago: executing program 2 (id=1699):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x15, 0x80000, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x4048010)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
userfaultfd(0x80001)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_PMKSA(r4, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="040027bd7000ffdbdf253500000008000300", @ANYRES8, @ANYBLOB="0a00340001015461a2de0101010100006ac38352dd3b2dc158a1cc0b50d9578c776e8e683c21b1cb5b8a003a615f06b9fb4fb2dc107ce8afb10ca50208928116d84dc3f28db74c6e8a741aa272a2aee4531095bf9b759d50f4a6174f955981200b6de1cd386c509d457daf5d9588d133"], 0x28}}, 0x2000c010)
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r6, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r9, &(0x7f0000000340)=ANY=[@ANYBLOB="000008000105060003008000060062a88a5c00603a01fc010000000000000000000000000001fe80000000000000000000000000002601059078060000006431efd513ffc98f285e2c72902d00020001fc000000000000000000000000000000ff01000000000000000000000000000111020000000000000401050502d1e2040102fe96660485210f60e0c204000000030401090000000000670000000000004b956cd40edbb15ce09dfbe1fe67"], 0x96)
sendmsg$DEVLINK_CMD_RATE_NEW(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="080025bd7000fbdbdf2125000000"], 0x14}}, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x0)
r11 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_STATISTICS(r11, 0x11b, 0x7, &(0x7f0000000080), &(0x7f0000000240)=0x30)
sendmsg$inet(r10, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

506.13557ms ago: executing program 5 (id=1700):
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
r0 = socket$l2tp6(0xa, 0x2, 0x73)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newlink={0x68, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_LINKINFO={0x48, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x34, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r3}, @IFLA_GRE_LOCAL={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0x15}}, @IFLA_GRE_REMOTE={0x14, 0x7, @rand_addr=' \x01\x00'}]}}}]}, 0x68}}, 0x0)
sendto$packet(r1, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x11, 0x88a8, r3, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, 0x14)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r4)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)={0x28, r5, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x9}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000080)={0x1, 0x8, 0x2})
sendmsg$inet6(r0, &(0x7f0000000040)={&(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0x7f}, 0x1c, 0x0, 0x0, &(0x7f00000018c0)=ANY=[@ANYBLOB="140000002900000037df00001d00000000000000"], 0x14}, 0x24004810)

500.165049ms ago: executing program 3 (id=1701):
clock_nanosleep(0xfffffff2, 0x225c17d03, &(0x7f0000000400)={0x0, 0x989680}, 0x0)

428.648323ms ago: executing program 5 (id=1702):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0xa, 0x0, 0x2, 0x7, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x3c, 0x0, 0x0, @in6={0xa, 0x4e24, 0x1, @loopback, 0x2}}]}, 0x38}, 0x1, 0x7}, 0x8)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_type(r1, &(0x7f0000000540), 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
openat$hwrng(0xffffff9c, &(0x7f00000000c0), 0x300, 0x0)
write$cgroup_pid(r4, &(0x7f0000000c40), 0x12)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000f0f000000000700000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000003c000000050a01020000000000000000010000000c00024000000000000000010900010073797a3100000000040004800b00070066696c746572"], 0xc4}}, 0x0)
write$cgroup_type(r2, &(0x7f0000000280), 0x9)

428.260192ms ago: executing program 3 (id=1703):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000300)={&(0x7f0000000080)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_REVISION={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0xc000)
accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000040)=0xfffffffffffffff5, 0x400)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000180))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000840))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000b00))
r1 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000e80)={<r3=>0xffffffffffffffff}, 0x111, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r3, 0x2000000}}, 0x18)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r4, @ANYBLOB="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"], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000014c0))
r7 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r8 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r8, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_EXPBUF(r8, 0xc0405610, &(0x7f0000000040)={0x2, 0x0, 0x0, 0x0, <r9=>0xffffffffffffffff})
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x13, r9, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)=<r10=>0x0)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
sendmsg$NFC_CMD_START_POLL(r11, 0x0, 0x0)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r11, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)={0x24, 0x0, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r10}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x24}}, 0x0)
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000240), r12)
sendmsg$NL802154_CMD_DEL_SEC_DEV(r12, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x30, r13, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVICE={0x10, 0x2e, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0302}}}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x30}, 0x1, 0x0, 0x0, 0x85}, 0x4)
syz_genetlink_get_family_id$nfc(&(0x7f0000001440), r12)

428.068524ms ago: executing program 5 (id=1704):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000300)={&(0x7f0000000080)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_REVISION={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0xc000)
accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000040)=0xfffffffffffffff5, 0x400)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000180))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000840))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000b00))
r1 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000e80)={<r3=>0xffffffffffffffff}, 0x111, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r3, 0x2000000}}, 0x18) (fail_nth: 1)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r4, @ANYBLOB="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"], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000014c0))
r7 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r8 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r8, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_EXPBUF(r8, 0xc0405610, &(0x7f0000000040)={0x2, 0x0, 0x0, 0x0, <r9=>0xffffffffffffffff})
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x13, r9, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)=<r10=>0x0)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
sendmsg$NFC_CMD_START_POLL(r11, 0x0, 0x0)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r11, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)={0x24, 0x0, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r10}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x24}}, 0x0)
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000240), r12)
sendmsg$NL802154_CMD_DEL_SEC_DEV(r12, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x30, r13, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVICE={0x10, 0x2e, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0302}}}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x30}, 0x1, 0x0, 0x0, 0x85}, 0x4)
syz_genetlink_get_family_id$nfc(&(0x7f0000001440), r12)

260.666752ms ago: executing program 5 (id=1705):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000300)={&(0x7f0000000080)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_REVISION={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0xc000)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r1=>r0, {0xfff80000}}, './file0\x00'})
accept4$nfc_llcp(r1, &(0x7f0000000580), &(0x7f0000000280)=0x58, 0x80c00)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000180))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000840))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000b00))
r2 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000e80)={<r4=>0xffffffffffffffff}, 0x111, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f00000000c0)={0x13, 0x10, 0x8, {0x0, r4, 0x2000000}}, 0x18)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r6)
sendmsg$NFC_CMD_DEV_UP(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r5, @ANYBLOB="5605b511419fce6b14640594798809bbaee68af603b396600ef82409c7e92f034802527ec95846e20edd909636233853f27349f8032e1c97a5bd94811ee7523b4c0e88b736eee4631cfc3aaa6226618b8ddabcc969fb89d7073ee2dc1ab036da818696a4dd6201c9dd86bbb11caab14e8557f1644d67734cbf6d57dd9c7fbb9608e0291a67e7ff2608f80697cf85edaccb9a98171a24deed1ccbb8db8fb05b8a5c5e25ccaa577bc52c4e62038d7bd3ace919814a717fce652c58b8ce794aa0d72a907fb82813ae10e469ede402e2de94925e3b04c563c578008b88706a67b269f56a0f5ef188375e60d72706aceba79ff883db0806d2a649529efefd6fb9fbcaffb79e164887f974651616927ffdab94ae9f049c"], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000014c0))
r8 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r9 = syz_open_dev$vim2m(&(0x7f0000000200), 0x3786, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r9, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_EXPBUF(r9, 0xc0405610, &(0x7f0000000040)={0x2, 0x0, 0x0, 0x0, <r10=>0xffffffffffffffff})
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x13, r10, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r8, 0x0, &(0x7f00000000c0)=<r11=>0x0)
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_DEV_UP(r12, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
sendmsg$NFC_CMD_START_POLL(r12, 0x0, 0x0)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r12, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)={0x24, 0x0, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x24}}, 0x0)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000240), r13)
sendmsg$NL802154_CMD_DEL_SEC_DEV(r13, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x30, r14, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVICE={0x10, 0x2e, 0x0, 0x1, {0xc, 0x4, {0xaaaaaaaaaaaa0302}}}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x30}, 0x1, 0x0, 0x0, 0x85}, 0x4)
syz_genetlink_get_family_id$nfc(&(0x7f0000001440), r13)

218.918497ms ago: executing program 2 (id=1706):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
open(&(0x7f0000000000)='./bus\x00', 0x551481, 0x0)

217.568802ms ago: executing program 5 (id=1707):
mkdir(&(0x7f0000000580)='./bus\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x4, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x7fffffffffffef9, 0x40000002, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
socket(0x1e, 0x5, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
sendmsg$IPSET_CMD_SAVE(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x2c, 0x8, 0x6, 0x801, 0x0, 0x0, {0x7, 0x0, 0x400}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48044}, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r9, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x2c)
r10 = socket$inet6(0xa, 0x3, 0x1)
setsockopt$inet6_IPV6_XFRM_POLICY(r10, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@mcast1, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e22, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffc}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x2, @in=@empty, 0x10000000, 0x4}}, 0xe8)
connect$inet6(r10, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1)

150.248891ms ago: executing program 3 (id=1708):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setlease(r0, 0x400, 0x2)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(camellia-generic)\x00'}, 0x58)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
ioctl$SNDRV_PCM_IOCTL_INFO(r0, 0x81204101, &(0x7f0000000080))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)

148.660968ms ago: executing program 2 (id=1709):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev}, 0x1c)
r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000640)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r1, 0x47bc, 0x20, 0x0, 0x0, 0xff00)

90.462603ms ago: executing program 2 (id=1710):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev}, 0x1c)
r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000640)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r1, 0x47bc, 0x20, 0x0, 0x0, 0x0)

90.336705ms ago: executing program 3 (id=1711):
clock_nanosleep(0xfffffff2, 0x225c17d03, &(0x7f0000000400)={0x0, 0x989680}, 0x0)

90.107493ms ago: executing program 2 (id=1712):
r0 = openat$nmem0(0xffffff9c, &(0x7f00000000c0), 0x20002, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$tipc(r0, &(0x7f0000000680)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x40, 0x0, 0x1}}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000180)="da4494fa9f5fba460bc6d2d3f5c954ca7a40d5423f38df10a18b35026883455b3fa8968144bc8104d1c528a7c4f54afa31394f66c6257a148dc4c15c4deabd918612cbd39d44", 0x46}, {&(0x7f0000000200)="dcdf0f25e883df0b026eb0b25b723732857aa84667cd7b3138b4dbe43dd9cf014fbc8b48e5713366f09b228f6d4c18ac9e8432b3418ae0c7b5592355b45017afabdece3aed75aa27f7d7e95a89fd1655fd9c37765dba7f52c02c209409a3b10b0c19b79ea13a531392334bc6088a39e2a9fd7b92be149647068e1ed47349550e9c02086f1ae94f26f0dac06e521e70b77382633d9f1dabae9b5787603366d954a522cab24f86d368052d0f81869be52092ef65089c81bf6729ba8e8a8ffa5b5b0d67ee56e773aaa28132ced427", 0xcd}, {&(0x7f0000000340)="34b4d061f25b6ab4f9c0260e97cf5d", 0xf}, {&(0x7f0000000380)="067b23bd06b15cffad0883cbaab49210b7638aebc27fab0a78002abdbee96725f956b651483ccc57367d228f5acbb1adc32ea1a62c84d35afabc2d480919d0e0cdf0c345f999b681fa61d6f7e906b2e5f2341fcb86fd0fbbd0edf5450ba83825a7a0dc0967fffbb108cc0cf33838cd95b819d84d552316f9f40c8f357a2ca5c3a06f0b20a67beaf5866c743bc390782237f5275a97bdd44889177c77d214e27848f7d43e364553c378edb2f5a9e64d80eb2127", 0xb3}, {&(0x7f0000000440)="20277bc23bc51f58861e8b6603a1b73f994a2f1ad61f2b3708beba0cc28fc539547b7f07223c7951dbfba8897abbacc6c7cb1914836cf694a28968dae38c36d0ab6fc7f532fb721a1176b4d52be7c7af042ede49b11b60855ec57f34129b2665", 0x60}, {&(0x7f00000004c0)="6535f97c20270735de784339ac6ad047fef468c5c4142e8190f6fc2c8dd0c7f79638699a219e84a28c826b216c5a1699339c3ee9954fd24850351e84a13037c6b7e3dac9af2f5aa9e87f19fdc04d7581f56709d2cf6a9472915e6d8f7acbce4f4d27f5c11517dcbba19cb8585891c7ac4f7ec668ffa74e09083d8652df30c6d9c446443c134c046b1c675ac08858f6d7f66395237199", 0x96}], 0x6, &(0x7f00000005c0)="b506eb9f76182d3dcaa455c51bbad897d1a59e370a8104c0521a1cf4bd94e92183f4776bb9de39bd872b3751c05c5c4615a2586ca04288925c1f224f568d669e1103b355e69f8c5ed97b9397aaf983c333b227ab6bde1a14a3b3e59d74b354f3d69562078b8f12af8b7006a72878cfbae6042b93f3d81d011a190e108c10d25f38aa", 0x82, 0x10}, 0x8000)
pipe2$9p(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='mountinfo\x00')
splice(r3, &(0x7f0000000300)=0x2, r1, &(0x7f0000000740)=0x2, 0x5d, 0x1) (async)
splice(r3, &(0x7f0000000300)=0x2, r1, &(0x7f0000000740)=0x2, 0x5d, 0x1)
sendfile(r3, r3, &(0x7f0000000000)=0x2eb4, 0x7ff)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x40440, 0x0) (async)
r5 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x40440, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x0) (async)
ioctl$TCXONC(r5, 0x540a, 0x0)
close(0x3)
ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x101, 0x300, 0x105, 0xb6a, 0x10}}) (async)
ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x101, 0x300, 0x105, 0xb6a, 0x10}})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="7472616e733d66642c7266e7ed201b2d8024646e6f3d", @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',\x00'])
splice(r1, 0x0, r6, 0x0, 0x1fffffffffff, 0x0)

74.443609ms ago: executing program 3 (id=1713):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = landlock_create_ruleset(&(0x7f00000002c0)={0x2000}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0) (fail_nth: 5)

249.705µs ago: executing program 0 (id=1714):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x62d81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r1, &(0x7f00000001c0)=[{0x23, 0x0, 0x0, 0x0, @tick, {}, {}, @queue={0x0, {0x7a120}}}], 0x1c)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x8, 0x81}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000881}, 0x4)

0s ago: executing program 0 (id=1715):
socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r3}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="1802000067f9bfff00000000fdffffffb7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000044fa00000000b70500000900000085000000a50000009500900000000000510f1cb44c85dcf582d8746220ebb5da3d73d4c271fc05d5c60adb6f8ae25283b4a922e180b58c55e4bbfc2652767bc4cb4ff2c9f7ec73064b667a59c21fabcb46de0f2f4f646b479de8a41b6b1e067323929403e51edc372922dbc0fbcc920bfde99a"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_freezer_state(r4, &(0x7f0000000140), 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x9)
r6 = socket$alg(0x26, 0x5, 0x0)
accept4(r6, 0x0, 0x0, 0x80800)
r7 = fsopen(&(0x7f00000000c0)='ocfs2_dlmfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
fsmount(r7, 0x0, 0x1)
fsconfig$FSCONFIG_SET_FLAG(r7, 0x0, &(0x7f0000000180)='rw\x00', 0x0, 0x0)

kernel console output (not intermixed with test programs):

ailslab+0xc2/0x120
[  239.687120][T10398]  __kmalloc_cache_noprof+0x6a/0x3e0
[  239.687140][T10398]  ? xprt_alloc+0x51d/0x850
[  239.687157][T10398]  ? kasan_save_track+0x14/0x30
[  239.687180][T10398]  xprt_alloc+0x51d/0x850
[  239.687202][T10398]  xs_setup_xprt+0xaf/0x430
[  239.687224][T10398]  xs_setup_local+0x47/0x820
[  239.687237][T10398]  xprt_create_transport+0x169/0x730
[  239.687256][T10398]  rpc_create+0x38e/0x7f0
[  239.687277][T10398]  ? bpf_ksym_find+0x124/0x1c0
[  239.687297][T10398]  ? __pfx_rpc_create+0x10/0x10
[  239.687327][T10398]  ? arch_stack_walk+0xa6/0x100
[  239.687366][T10398]  ? save_trace+0x4e/0x380
[  239.687387][T10398]  ? add_lock_to_list+0x9d/0x130
[  239.687411][T10398]  rpcb_create_af_local+0x11b/0x310
[  239.687429][T10398]  ? __pfx_rpcb_create_af_local+0x10/0x10
[  239.687460][T10398]  ? find_held_lock+0x2b/0x80
[  239.687479][T10398]  ? rpcb_create_local+0x1da/0x270
[  239.687502][T10398]  rpcb_create_local+0x1ee/0x270
[  239.687528][T10398]  svc_bind+0x1e8/0x260
[  239.687550][T10398]  nfsd_create_serv+0x2d2/0x480
[  239.687573][T10398]  ? __pfx_nfsd_create_serv+0x10/0x10
[  239.687601][T10398]  nfsd_nl_listener_set_doit+0xe5/0x1a40
[  239.687625][T10398]  ? rcu_is_watching+0x12/0xc0
[  239.687644][T10398]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  239.687660][T10398]  ? __nla_parse+0x40/0x60
[  239.687685][T10398]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  239.687710][T10398]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  239.687740][T10398]  genl_family_rcv_msg_doit+0x206/0x2f0
[  239.687762][T10398]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  239.687783][T10398]  ? rcu_is_watching+0x12/0xc0
[  239.687808][T10398]  ? bpf_lsm_capable+0x9/0x10
[  239.687828][T10398]  ? security_capable+0x7e/0x260
[  239.687849][T10398]  genl_rcv_msg+0x55c/0x800
[  239.687865][T10398]  ? __pfx_genl_rcv_msg+0x10/0x10
[  239.687880][T10398]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  239.687898][T10398]  ? __lock_acquire+0xaa4/0x1ba0
[  239.687916][T10398]  netlink_rcv_skb+0x16a/0x440
[  239.687938][T10398]  ? __pfx_genl_rcv_msg+0x10/0x10
[  239.687953][T10398]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  239.687987][T10398]  ? __pfx_down_read+0x10/0x10
[  239.688011][T10398]  ? netlink_deliver_tap+0x1ae/0xd30
[  239.688036][T10398]  genl_rcv+0x28/0x40
[  239.688057][T10398]  netlink_unicast+0x53a/0x7f0
[  239.688080][T10398]  ? __pfx_netlink_unicast+0x10/0x10
[  239.688108][T10398]  netlink_sendmsg+0x8d1/0xdd0
[  239.688134][T10398]  ? __pfx_netlink_sendmsg+0x10/0x10
[  239.688157][T10398]  ? __import_iovec+0x1c8/0x660
[  239.688182][T10398]  ____sys_sendmsg+0xa95/0xc70
[  239.688209][T10398]  ? __pfx_____sys_sendmsg+0x10/0x10
[  239.688232][T10398]  ? get_compat_msghdr+0x11a/0x170
[  239.688261][T10398]  ___sys_sendmsg+0x134/0x1d0
[  239.688281][T10398]  ? __pfx____sys_sendmsg+0x10/0x10
[  239.688327][T10398]  __sys_sendmsg+0x16d/0x220
[  239.688347][T10398]  ? __pfx___sys_sendmsg+0x10/0x10
[  239.688377][T10398]  ? rcu_is_watching+0x12/0xc0
[  239.688398][T10398]  __do_fast_syscall_32+0x73/0x120
[  239.688422][T10398]  do_fast_syscall_32+0x32/0x80
[  239.688445][T10398]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  239.688464][T10398] RIP: 0023:0xf73ce579
[  239.688476][T10398] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  239.688489][T10398] RSP: 002b:00000000f503555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  239.688504][T10398] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800002c0
[  239.688513][T10398] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  239.688526][T10398] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  239.688534][T10398] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  239.688542][T10398] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  239.688563][T10398]  </TASK>
[  239.820844][    C1] vkms_vblank_simulate: vblank timer overrun
[  239.936909][T10414] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1252'.
[  240.003365][   T58] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  240.032929][T10417] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.036378][T10417] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.038844][T10417] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.041443][T10417] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.044603][T10417] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.046933][T10417] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.069869][    C0] sr 2:0:0:0: [sr0] tag#22 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  240.072641][    C0] sr 2:0:0:0: [sr0] tag#22 CDB: Write Verify(10)
[  240.074675][    C0] sr 2:0:0:0: [sr0] tag#22 CDB[00]: 2e 16 66 ce 20 db 5e 1f c3 51 de 1e e5 4b 06 be
[  240.077791][    C0] sr 2:0:0:0: [sr0] tag#22 CDB[10]: 40
[  240.085586][T10415] overlayfs: conflicting lowerdir path
[  240.155352][   T58] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  240.159299][   T58] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  240.162882][   T58] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  240.166691][   T58] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  240.171316][   T58] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  240.174425][   T58] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.179081][   T58] usb 7-1: config 0 descriptor??
[  240.182384][T10403] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  240.263521][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  240.592261][   T58] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  240.596721][   T58] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  241.757344][T10451] overlayfs: failed to clone lowerpath
[  241.838999][T10457] batman_adv: batadv0: Adding interface: dummy0
[  241.840729][T10457] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  241.847419][T10457] batman_adv: batadv0: Interface activated: dummy0
[  242.277379][T10461] FAULT_INJECTION: forcing a failure.
[  242.277379][T10461] name failslab, interval 1, probability 0, space 0, times 0
[  242.282408][T10461] CPU: 1 UID: 0 PID: 10461 Comm: syz.3.1266 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  242.282430][T10461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  242.282437][T10461] Call Trace:
[  242.282441][T10461]  <TASK>
[  242.282445][T10461]  dump_stack_lvl+0x16c/0x1f0
[  242.282463][T10461]  should_fail_ex+0x512/0x640
[  242.282474][T10461]  ? __kmalloc_noprof+0xbf/0x510
[  242.282490][T10461]  ? __list_lru_init+0xe8/0x4c0
[  242.282505][T10461]  should_failslab+0xc2/0x120
[  242.282514][T10461]  __kmalloc_noprof+0xd2/0x510
[  242.282534][T10461]  __list_lru_init+0xe8/0x4c0
[  242.282551][T10461]  alloc_super+0x8bf/0xbd0
[  242.282566][T10461]  ? __pfx_test_keyed_super+0x10/0x10
[  242.282577][T10461]  sget_fc+0x116/0xc20
[  242.282590][T10461]  ? __pfx_set_anon_super_fc+0x10/0x10
[  242.282602][T10461]  ? __pfx_nfsd_fill_super+0x10/0x10
[  242.282618][T10461]  get_tree_keyed+0x59/0x1d0
[  242.282632][T10461]  vfs_get_tree+0x8b/0x340
[  242.282643][T10461]  vfs_cmd_create+0xd7/0x2a0
[  242.282658][T10461]  __do_sys_fsconfig+0x7b8/0xbe0
[  242.282675][T10461]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  242.282689][T10461]  ? fput+0x70/0xf0
[  242.282708][T10461]  ? rcu_is_watching+0x12/0xc0
[  242.282727][T10461]  __do_fast_syscall_32+0x73/0x120
[  242.282747][T10461]  do_fast_syscall_32+0x32/0x80
[  242.282768][T10461]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  242.282792][T10461] RIP: 0023:0xf7fd2579
[  242.282804][T10461] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  242.282819][T10461] RSP: 002b:00000000f50b455c EFLAGS: 00000296 ORIG_RAX: 00000000000001af
[  242.282833][T10461] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000000006
[  242.282842][T10461] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  242.282851][T10461] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  242.282859][T10461] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  242.282868][T10461] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  242.282890][T10461]  </TASK>
[  242.351334][    C1] vkms_vblank_simulate: vblank timer overrun
[  242.753585][  T836] usb 7-1: USB disconnect, device number 30
[  242.910268][T10479] [U] 
[  242.911449][T10479] [U] 
[  242.912232][T10479] [U] (‚ÈmåÏØïÐΰHÅÖ|ý-ÃïcS;Â6PLªÒã?üV%0µCÕÆ0qEÿ¸;:55¯º¼]övg
[  242.914407][T10479] [U] ˆú�%Ø\$¾ph/Þ&–;Æ/“І�6³îÚ+ZĬþ{r“§üÿYí–÷˜)#ÓJ>ÕÃ#V|ZAÜ6!*„üQd¬û)�"\'–=9=R\v'ðO~gi‘¾ôþ0é
[  242.917561][T10479] [U] Ž#¶:º5Ý+÷x Y>gó8ÑL³ŽÝ«J
[  242.918993][T10479] [U] C‡O.¯ž•–ÓD%O(ï
[  242.920100][T10479] [U] âÇk¼R‡Æ],°ˆ‰CDRÐ-!DRÇÔ~@0Ô{žm"¹_�î	w˜‰	…Ôʽ¿Q˜f׆¬�Ñ.l¯Ýé#á]‹6Ñà­¯9aKˆÌœ.Ã"µ¶¦¨ îÍûè§Àe0ºd!ûÁ¯Vî« âo–«¦Ïc¦šø…´É]çÞE‹>½©ÛÀok	‰¥d°ù¶D½![^ãrã-Aáš6aº…Ñ,�ôsÔËLl‚mµÈÇíq…àŒê­Ò�v—ŒnS¦oÃú¾,
[  242.925817][T10479] [U] ´-ÙZß“Wa@v‡Y)¡¸‰zGS(@þÇ䦋±…¾v‹
[  242.927474][T10479] [U] ùIìË%R§.8àÃr]¹Eô:ÖÎÈe^QÝ\^Ó¤î~K@›–®lÃú5µ
[  242.953466][T10479] [U] ªßò9ÂM�™Ä…û\]�dùÝ#a”a(ã	[�­,Ø#q~¼¹—saòõÙX¹D[gŲMµU¶dê(ì•ÚE5CÓ×åF¥è¨û¼Œ¿B‡ø›A•Ù<è{·pçKí�.Y,Zö
ÿ›ÍÀ'��˜„ÀÊ?GGJOEvg‹p©0)&îåè «ÌPbð(lõ­S”
[  242.957656][T10479] [U] ØÜ«ü@á
[  242.958629][T10479] [U] k뮢£�è¢É%áãî?éšàÇÔçMêï|å‘~žÝS®1ÂïD°
[  242.960295][T10479] [U] t´¥lå´$OxvÞY N9ÛaÛ];Þ;$Ÿ�Í6Z’
[  242.961821][T10479] [U] ÿÉ´Ì¢ *1P°‡A£�EÁxRB±=X³å+ûø�Eü™‹Ä (Ë�|Ÿ0Rnà¤mÊl­É@1yª,2
[  242.964033][T10479] [U] §ÀøXÔÞÍ‘ûÔ ‹ÔýAûA¼‘PžÎ%M¤¼^ÜÖi}ã(ø\Aú¥�&»¿í)ìÔáÕ†Âk!€ìvÔ2Ç)šUÉ`üÓ
�`¥÷„·ÔhJÅMŒüÂrŸÀÕ�zº~ôù^rñ'	EÔÅÃðŒ5{DqoV¦ê¹4Ý0Ut™Š
r0`Ãe:Ô&6Qç$Q5®ÊE=¨�áô>ŸªLdè4ÎQèt½ÇaX±hÜkúÚoð9Nžû¤¹ÀCì‹×=­ðÀ.0
”žâTÇóŸ4lŠÏ*dÙãJ—`‹ºf‹À…ià$ˆ6s¡¨}Fˆ=Çv‚h¯—¬6·¡‚H»8VBýTh&û«§úxnµ3Åù¤÷oÂ=*–"ƒeý�‰¾›Þ#Z;/…›@ô<ËZ‡x__ooMbw2 ÚÔ,&�!+¡í{�EØí‹çdÔPعÜP®äSä?äŒÆDtdÑñ¤Ñ^–ÐÆQ½[½î¥µùí{
„’~Ë}?µ‰ƒOÿ¹[(*é¿]£²ØÌ-´´†È„Ÿm £¡­Æm+¯d!„=5[¸ëhóE2-
[  242.975089][T10479] [U] „FÇÆÍÓ6›4D9¦Ø'Ž>ÔU6ÃÀĹ£y^Ø"ß?‰Õ¾…ñ\ˆkòwϩ⃃ÜËÝ\$�~‡´Î]	wöséôR~øð˜Ü!Ê€pBM W©Ð¹á}ç	¼²G1¤lŽž]*Yì£iÍ6¡Ë;÷ÐE/y9
[  242.978936][T10479] [U] i‹8öcÂyêØQ\+“¦�+ÓaæÓV#¦~†¼êܬ·LïÎuh5ݳ7±é0Âô¨[!µ†�Ù"’¸
ÔoËpÙçgëâY@7ž�,,ŽW‚€„À²Yw³XNŽZ¬Ï<sÕ¹íf¯Êº¸«&“$?ö1Ieu­Ä,‹Šÿ‹nÑ‘hüÙ‹ÀGÀ~GmÍùGsù««]J
[  242.983391][T10479] [U] Ç+ÓÚwœ‡K³f¿ÝlkÚ¡ A­ , dùR|v*p‰†³U·ÑÀØØOÇ€êÞãÎUîé)æ±ØÆ„@³R:«ò”WÁzI~{§Ÿp5y;½fÂÙ�^ÈÂpÐî©ÉXG[2Çù‘˘Z^˜6E ¼>”£÷‹¦¬s¡Ðuù0¿˜]¦¨ž(VûÌ}0æ
[  242.987383][T10479] [U] �ÍÎ’[²L¶©âKoôHãRÛfÓfqÓ½ò‹ý$-öb©ŸËÛá­ìʉLÏáÐIVdÊbQ4îm;ÅNW/EýˆÆ]°™ƒ-Ç‹+Þ	¾ï"!²ºÒy,ó>Ð}8õ��7,Æk É1@…\L#«i€l
[  242.992361][T10479] [U] ‹ÅϾÍÑðù
Ï!0”j»îÀ ø
Ž+#PÐSÔ_�±ÜÙQc™ëVˆYObEÁ�\�¡“7œÌ}Ÿ“VîsƒÚÅ#…»ä}ýwh†-ýH
[  242.995008][T10479] [U] #÷¹… ×÷4…ÅD“Âu{ÞM*T�oÎk’z+‘+Ðßê/’U‡£8ÉI+ù�e‹V�m
[  242.997016][T10479] [U] +@ÝoâÄ&tYª$PóNX$!ž‹ý°óls´ÊKÚ…KÂc^êú`H ÿ‚Tä°G‰esøF�é×. ƪoɧ”¾ý*ö½*M¹¢µØò†™ˆ),’ÞŠ0ûRÈÿC"…¡�RK÷¿ÛûŒÙ¨¥KÎÞ#FjÌkÖ¤ðÇ.u’xýÜHP¦0“yªÖ(0±—k�€ÀŽÁC­Þß™WKdmÀ+8Ή63Ž¸‹§I¦¢Ü‘ŠR^}Ù½:9ªgù¢G9É,†8Ð×cÖWÓä…Æ£34<ÎÇaŒ\}+¹„jNµV;TŒò4;ó:ý/AÆÊ7ªž¸ž®|_âÞ1û’ß@ò)÷ÞÝè3éûàèTj¼TÃè,ÕüEïªëZÞ�=Ã×~qNs¸þ(o8Q���ˆI±•»á
[  243.005230][T10479] [U] C,ÿ
[  243.006098][T10479] [U] qnò–C.ydëéD½æ³Ž{C/³ÈÛñ¼áž^¦c¤Zl¬Hhê­ÜeÓ4	ÏçT`kÕBhðÁª¼na9Ž$ԕＦ÷Å&°&¬UÖâšU‚?ê–Òúeê½
[  243.008989][T10479] [U] 5¨ÿŬMü_"2!b”Ç<Èaä(.¾û†h7ó¤«Ú<Ö†h�Z°âþË;¶ZD‹$¹ö™Ù@Œ<¶¶±QÁ³'1yÃ�š}÷‰Rô¯PÉðDyò1ÔÈqÈðC`°ƒš­
[  243.012137][T10479] [U] Iö]�‹®³(™¹`8“VíZêh½$8U!÷ÕŸ/–Þß�ußK}nÌçÔ<#¿p #ÿ8R]¿F£Ÿ�(Í“
²}!¹ng3µÄM7”[Ð8Ôº™ë#„Ï…
[  243.014804][T10479] [U] Òõ„šU•S¢·‰^íøA°0÷‚Ç
/W ´ÛŸ¼¦°®ºT’J²Je5‹ïCþ
mµ�vŸ
x]´¾mݳ¾o@=uüj —€yýF8Pt¯=pW–^Õ‘ˆ¸ë‡�kû ¦)^2ËŽX¤)KÕ/‚ÁƒÊþY¦£ò>%!ßW�˜Èÿªd2UM*o¹o
p=Ô¼!?,Òž�Aéu&¢–y”mžXõ(hV)Ÿp9ê¾<AíŠ#³P—�5¬Êàó~
©1Üòp#9”‡¬ôÛ[fÓÊO<A×Úë÷ Y¦rtÇ\x òlf™³€¡ÏÏî—Ë]ŽÀr
[  243.021468][T10479] [U] ¯§,CÆV¿à’L¨öÅÁ®
°Óý¸ƒPu<ö"E²±ám…-<qríŠ6žÝx³.Âÿ½.�s!ƒ·Æ¦wŒ¯–)–ª¹Ë
‚Î"°< á7Ô+�2â/è°A1‘Ül»:¹B>Ñ Ö4lƒ>/*uø}¾� Ñ|He®FCBo¼Pá#.<’¯åÊH�~<îŸú™ÿçrp7ÀA³ƒ‹ì.K	e Ø ›ác
§H„Ò›[©gº
8#ç‰zŸüûÕzƒuÁE¥Ã"G½m!ÓÒT�Z8ïšu3B
[  243.027372][T10479] [U] ­ÙïF¤`̶Žƒ—L�”µÌ4Êí,à§ð#—¶î¹�Lic€/‰÷œ
R‰EÙZT¥ÿ˜Äc=@æ¤þ^Räé:ák‚åçVÒÊÓX³çSx—$þ.O:lx•1]ªY³Ý°zî£\»5]#64çÑß¿e[wÎ?œ9W‰¼œ'ÀðfA¦!Í8³ƒµz1üƒáÁÔïÞ½j`߆üuñ4ìê~C0	Ö\…8¨¬Htùàå[Q{>×ì©°Œ™Ú9ˆ¯»²ê
[  243.032689][T10479] [U] ›1ao·p¶bÁ™\…âg;²��"r‚l¢hª–G1Í'8{¥<M2㹈!¾ŸxÜd8ãè(hœÄ²låêS:¿jDè8åÊQ²�½�•…Ñ2k7Ðl
[  243.035546][T10479] [U] s0*/â:_ZÊ9Ä
[  243.036591][T10479] [U] ú�­ì­z
[  243.037512][T10479] [U] ´¸=åÍ(ËDB
[  243.038659][T10479] [U]  Æ„RçôžtA!}ð^±âWß«Ò“ ŽÄðkÇ	÷\
[  243.042103][T10479] [U] ê”:'ü÷Þ‚€›XöçÉò°,BîZ„åì9¦Üµ ù&}Õ>ø»‹û1ŠªS4nµ»4¯MµÕ»1ôÅ9<§×zE•Q»a™#8¢ ã„ƒ½П܇ñ]5H÷¼è˜«>ã¬!Ý”^VÏ|5±VÓ?úí”0Ã5Ùüµ¾”Þ”½2œœ�™%F«Ý­:«ŽèiÆCº¹Ò·C‰µÊ®þÓht•—ý™)Àîq}Û#4›¿Ü=+Òñ‰÷‚ž ²š®µÞ×ÓÁõ½uÃï„G@�õÁ:^ɳÌU—¶9Ô¬�áT³ÖÕD²ÛNù½</Ã�ÕɶröRþ†2ÝÐå­XIò9˜¼(Òôùnžf}•³—ݯ ÜÜ9`ý¾rø§tbà,9Ûþ E�€¹Ll�
[  243.050010][T10479] [U] Ýà—×UAêó6ã:_)Œ¶ÚX$ßE”ç£â<­kuŠÚ»3Í·:

[  243.051717][T10479] [U] O'±�(’úw¦EH¨_¶F¼J¿"êÕݵ÷b/-#?Pc#΄@¿¾FîÄi€8“š[¹Nœö¥1ŽŠ§Ô�ŽF’¥\š›Ê]õçÉ(¦NÐ~H¬"ú)÷üÄ¡Î~º@ °¤5óRÊ´ÖàèØNŠ£Ü^U$�9jzm\"¥º†È;jZðfp&„ÿ¼-^ßQά_÷4¼×Õr"g^î#ú0]mJtükv}¾ÞòÇkîïëÛ_íT¢Ét`ûÒ¥ ¢ìŽ¤ÒøTÁvêÕØdÔDCµÄB[$ú Ä
[  243.057620][T10479] [U] èJy¶³JD0{n¯¦Ó²ç¤ýÔ+w·¬¼a¸ÏWìçÌ#òýð‘#eû´—OE25OâäµNPß¿�–’^5'
[  243.059824][T10479] [U] a{D¡Õe¡Ëì®MZBñ4~ýLBå�Ñ?šƒq¶Þù�Zƒ;©˜¨

�g$÷¿0+,À*¿o2@÷‡3%c_¼hé/•W§ƒˆÌ@븳r/1µ
[  243.062560][T10479] [U] Œ˜`8WÐEþGfüÄ#°†µI‘j�GŸåCïd6Y�ü´~ìŬì›Ý„îXìËؤ„µDþd�ló/¤j�!»ÁÐß#M<¸èÍGNZo䌆’G¿
[  243.065321][T10479] [U] „ÆÑ8Kω®æîÜx§¥v׆%m˜L389ñ¤D¥äÊz}zYºá/Q;:˜Q)ïýîq�Œ�Ei
[  243.067382][T10479] [U] ïoè`ë)§_ŸÔ07��Ìï†Dû5¨�žLʆ½±ëù[.ÆóÝqšÄYA×Ç�âçÞ}k™zå¶]£Ï5‰£PÄÛªöª-:žBª‘Ê£P=´áéÂÇ8{çÛ"ÚþZÓ
[  243.070547][T10479] [U] ‚ªË¨¨dÇŸuQ¡ÁC«¶ð¡¯t¡IRpp°gåx�Œó°“žW½@凲֙G¹`qò|ë4YO¶#¡
[  243.072822][T10479] [U] ƒ§¬”¦½I Q¦°n{Ðp#;qéä5mMÅðµ"Öï×#¡õ¥–ÙýKBâª�)þ†#óÝUQéPHÍßÌúñ…;*:ö+„»˜é¿xb»ŸíŸâ·©)‚™§ ›žìZç—
[  243.075876][T10479] [U] \$\Ò[]×;JûØ5ÿÝ°1¹ª“XG-ýBg´[–èPR¡½#�Šêîþ5¨­¤ºŽz[âcL,m”—ž¡¤a…AP%”èâ’ÛQ8�Ô΀�~:Ÿƒç9¤¬îÊ8ºág•í1? ÒÙ	#k@K·C�/Yq3“ä�@Ÿ–”V–Bðié'FjìRÚ¿ðf
[  243.080145][T10479] [U] Tsï5ª•Éså!›û<Zf™F¡êHj?•Ä<ñ¤Ùsð�ð4âµâ>j¢Ÿñ®þH†hÛî6„�¹ÉG`³•ÔM+\�É÷Bvˆ)7•Rg=y̳©~àÝ'õ›¯:LÇõ¾Üã(’D÷"F%äDi²¾ë)ËCµÞY¶“@^áðÄFÎ0ÂÓ_ˆ°Ãž2R9Ï�SjO­³ç”¥NÚõ–F¢íeG¹×ÿßõ&Ì…ÒR¾®Ÿ
[  243.085349][T10479] [U] Ù
©ñ�zæ,y´…¢‡ÖæÂàž«ÄUĈ´ã "4à¿b]ÖF¦Ú…ñø3~CtÎ|­ã\T%uÖp
[  243.087514][T10479] [U] ­x›ìãoÌ£à:’´Ý‚”ðxnE¶j
[  243.090603][T10479] [U] ÷ØøU°¤”X‘«a	wYÁlQ#•­¤×59�¶²è…*q‘ãVxƒˆ¼¥brn”v`ôαÏÊ#³‡S ¸{\]Þ2(°¢çz¦#É«U�ó1Ö6Q+u„å?3ìVêºÌ“ÆÀLc),�”ëÕùŒ‰o•Fm8[u2´ßƒA‹¡íXͶæÇîeYÙšçÛjÉ"Ž”‰¤ßl›`çô¨^Œ¨Gþc
�yœÇg#¾$¬¥E©fý]{Lme"v�¯‡{›æÅð‘нUW­Ÿáác7›•ùsë'˜G˜¨Ž¦â!}x| gq‚·68ØZ‚wA:ï…-)!ŠŸÙqj–
[  243.094429][T10483] netlink: 8192 bytes leftover after parsing attributes in process `syz.3.1273'.
[  243.097495][T10479] [U] ò$¼’htXŽ·a0¶O-nñ&ú«àQõTݯHñ
[  243.101532][T10479] [U] V¿
[  243.102451][T10479] [U] �_›�‡ØÙàÊ–ÄB«c†³½Å}á™´%µŸ‚Q�cÒœ’ìôJv7Nô¥M×Õr —Ýå:ížð©„/øÍú’ù×ò±íEsŽÎT8örN°ãÀKôá­M«þî²Î‹ºK}a×_~–ê3ƒî½«3 ï´ì–“YÇ
[  243.106133][T10479] [U] 
[  243.106920][T10479] [U] 
[  243.109433][T10479] [U] 
[  243.110456][T10479] [U] 
[  243.111442][T10479] [U] 
[  243.112443][T10479] [U] 
[  243.113426][T10479] [U] 
[  243.114439][T10479] [U] 
[  243.115618][T10479] [U] 
[  243.116597][T10479] [U] 
[  243.117608][T10479] [U] 
[  243.118738][T10479] [U] 
[  243.119973][T10479] [U] 
[  243.120961][T10479] [U] 
[  243.122067][T10479] [U] 
[  243.123072][T10479] [U] 
[  243.124077][T10479] [U] 
[  243.125020][T10479] [U] 
[  243.126042][T10479] [U] 
[  243.127045][T10479] [U] 
[  243.128148][T10479] [U] 
[  243.129126][T10479] [U] 
[  243.130139][T10479] [U] 
[  243.131143][T10479] [U] 
[  243.132326][T10479] [U] 
[  243.133315][T10479] [U] 
[  243.134341][T10479] [U] 
[  243.135342][T10479] [U] 
[  243.140195][T10479] [U] 
[  243.141026][T10479] [U] 
[  243.141827][T10479] [U] 
[  243.142614][T10479] [U] 
[  243.144038][T10479] [U] 
[  243.144833][T10479] [U] 
[  243.145613][T10479] [U] 
[  243.146404][T10479] [U] 
[  243.147190][T10479] [U] 
[  243.147983][T10479] [U] 
[  243.148782][T10479] [U] 
[  243.149579][T10479] [U] 
[  243.150446][T10479] [U] 
[  243.151239][T10479] [U] 
[  243.152026][T10479] [U] 
[  243.152814][T10479] [U] 
[  243.153990][T10479] [U] 
[  243.154782][T10479] [U] 
[  243.155573][T10479] [U] 
[  243.156354][T10479] [U] 
[  243.157151][T10479] [U] 
[  243.157946][T10479] [U] 
[  243.158757][T10479] [U] 
[  243.159542][T10479] [U] 
[  243.160338][T10479] [U] 
[  243.161115][T10479] [U] 
[  243.161883][T10479] [U] 
[  243.162663][T10479] [U] 
[  243.163844][T10479] [U] 
[  243.164638][T10479] [U] 
[  243.165415][T10479] [U] 
[  243.166207][T10479] [U] 
[  243.167312][T10479] [U] 
[  243.168119][T10479] [U] 
[  243.168902][T10479] [U] 
[  243.169690][T10479] [U] 
[  243.170480][T10479] [U] 
[  243.171272][T10479] [U] 
[  243.172055][T10479] [U] 
[  243.172845][T10479] [U] 
[  243.175107][T10479] [U] 
[  243.175912][T10479] [U] 
[  243.176701][T10479] [U] 
[  243.177494][T10479] [U] 
[  243.178306][T10479] [U] 
[  243.179098][T10479] [U] 
[  243.179882][T10479] [U] 
[  243.180686][T10479] [U] 
[  243.181470][T10479] [U] ½aƃ£/ÏÁ^„é&ÑJ�:^ Bm¶\Õ"’u|u3ÜüaÈþÀh”„ì>ɵ«¹úâ¿
[  243.183456][T10479] [U] ;a_
[  243.184291][T10479] [U] ê!iÏa©ðË?)¦Â‡Rø'(Ã
[  243.185548][T10479] [U] .ßäLÄ=%e
¡äBƒüLÍZ¨SŒ`-æê Û(ës48%ï})\ñ¯
[  243.187268][T10479] [U] J1TÛ"M1Ÿš	¿:r>[÷Æš¨,ç
[  243.188607][T10479] [U] çq:Âç9E§ùKß±7o.A§·ÓœÄãŽ`ÂÊ·“}ï¬y«äH®Õ¾R€[Gô�)ÌÌ6;
[  243.190639][T10479] [U] Ø„r•å¯í÷ãîSågTtÔ…(ÀÝœ4¦?âÕɈžŽ|#“ïs <ÝŒ&6ƒIA‹Ä¶Qå#÷�óXŒàiÁtç]j¡O	ÑK{²³=7BcÝú&š¸¶*ãÙ}Qj[°�%㎳¥6 ±{Tb벓m»¡‘9GJü½°ÎB�L4^Ýòx±méïú„,E–ù=K%¡àNú“;|<Ÿi¦é˜¬ÆŽ"±¹5ú‡@(¦Í®ÎÅ@‰Â Æ‰Û¹µA°8‰ÿÄ#é)¢²{øÛ%Å/™MU|ô 5 `¥Ð¥»p+±ÅÄ͇bÏ¢½UD	`¾�¨¢“Îû©ýq…O‚
ž©Ž‰"O€µ
[  243.197648][T10479] [U] 2€²ÊFuq›¾Dë=š¦Ð¸û;¼v‰]›¸6h?„ýÒ/àŠÝ/[¯Ü5ÁÊ”dÿ8Å<nƒÀ�G‚lúyõ¯Ëjd³X†×(¢
ÝSG¤v´#©Ô•ß&y^�?:ª;ùO›t€Â¦Æ™Ï‘¤�{lÔ‰ö_ç>À	á�pºoÒÖñU>½¥á•4$†ñ‚)²bt³6¾¼çÂz«7a�ÉòEž°h

¯Fo3¯ù¨±)aâÍ
èös|<¿„Ï
[  243.202784][T10479] [U] #6yÍÕÊÇLOÄׄ9�íÔõ,	†2Øá
[  243.204595][T10479] [U] óL¿²Vºa6$2ìts*¼d÷òª¸'>øŽ1‰}.P;¸“À¡-c„ ¾¶ïž¬¨hÉüaªx|¨Û¬™ßT\âÕÕÄü~1äå°j2«ê·0lR‹Ò,#^”úúBq­K²)‡	xj"R¸!J0ð›êY¸@yÒþhE×P¡Pi
[  243.208319][T10479] [U] ³¨ÒF0žo¦m4Ýï™·7¹â‚z0ÕFEfGC¯yN»é'ä=ùiPª$‹�ΕUј{ªGĆ¼A€Ûe¸—ë!ÿ%)B<ˆò"~ôîð°5ÌÉщ]íŸ
[  243.211168][T10479] [U] dí"Å
[  243.212035][T10479] [U] ¡q²#üþ
[  243.212957][T10479] [U] ~EƒAÞ¶>>Öÿʟך¬lŒÔåŠL*ø¬Ô‡¾¤„k|"*ÝxrÒ¶Eg€îiö1 5ûÅѳÙ[
[  243.215114][T10479] [U] ‹¹øËÉ�Úw.gÓi‘¢\8·~öÐWÌ»öT‘•ZMÈ.Õái¤çôˆ°”™4”z{ió•k;bÉÓWÉ£2�ÚK‚t7ÆÐïÇõ·g%<
[  243.217669][T10479] [U] {F>Éì�d/¡Æï›q0¥¹€y3~߬hÈ·w·;Õ€—Ú©öL£¹Ú«ÌSßÎ{èÜØ;sôS=W2«;¹Z€„^nB{¦ˆQŽ÷B\ð6­Bß—³9«ˆ”��ëåôÀQ‚<Ñ&yI„«Â¢ãgn~DÂCäŠ/$@ïT›¯>Š}· ðRï „tÙÁ ~rýq¢]Z�{‘¾³£¹Õ~Ü÷È‹
[  243.222262][T10479] [U] ;J
[  243.223093][T10479] [U] ~¥f~[DK
[  243.224052][T10479] [U] ÚÀá°7E䊳ú<�G+õ§yÃGžo\Kˆ
[  243.225444][T10479] [U] lkÊÌÆ÷6 ì@1×ú#È›¶¨p*iJ¨~ˆR�¥ÛÕÐåw[VùÔ7n6~1¨=öAÅ]8
õsïz.©E7Ÿ� Løºå^QY—÷œ£9Ä!ÿc£5áO&oQqâ{`µDø“Ì�ì+Ñ‘ÿ~ØtvãyßO
×óvTðœ
GÓ̹…æï÷ÄOÈ:´z¾ ‚ŽB†'G%žxÑÑ‹ÈïÌ6¢vCû»ó>îÖµgs£©
ÚøXá�Ÿóê3[´‚
[  243.230648][T10479] [U] #¡¹zçàýµedº)™Ç®Ìí>ÑÑ…½ÁÂDñw'UcÑ0=½Ö”rwÙôaB_nj¦Ji¡F8aø?íÐ
[  243.232819][T10479] [U] ?Œ!ë‘„Ìõ
«5<ÜÓì�¦wèÚ„rÒ+ñO4½\C5ܵ�ŠdZptöÏ-ï½/ °¸�dðñ�&£
[  243.235030][T10479] [U] ¡
[  243.235827][T10479] [U] Á‹jŠ»—µXÔû3Ù ²£¶Kwn}OS¡»f•1‘ �]�2ù,:@Âĉ´b,Þˆ¯i÷2»d8Z|aJœ¹§u?êËÅN2Ã41#x²R´¼t±à}…çË;•yÔH» éÙ|2
[  243.239085][T10479] [U] Ê
”Œ÷P³½”";’º<Uð
[  243.240328][T10479] [U] EiÖL>³“j/®m°Õ'µ^@-ñ›„ÏÍW3.ºeÙ橼ŽC‚�
[  243.242123][T10479] [U] #%[o$¦òVv~¡k‡8øèS˜ÔßwåÕ�-UCMPK^›å¨³Ò³´Ϩ1†yï&Öï
[  243.244300][T10479] [U] :­\³3…="GÌ(ÎÃTheAöi¨ƒÄU%(°xªÜ…(¤BÚ²æ„QÙ­	fh|m�Ö–e*øÔ?ý7ç̹mZö×,7hUéÐ…Õôm6ïU¯–âê¡õÕÎDFW�qo–=ôŠÄÎ
[  243.247991][T10479] [U] ”LIQM¥×@ó‰4°hfðÂ÷Âj€¤@ƒ QÒÃXßcöã9ÚGaPσA
[  243.249793][T10479] [U] ¨ùÅdq6LÿJ Jòƒé“ä6Á†µ1Ÿ$u„-+ªô"æ—âÑþƒq~¶¾	êº}5N¿�h�x°ß\¤Ÿ?:*K¡sr‚öq8·g+Æá!�ô_ûÃtÍn÷ÎÈWKÚ,ƒšc5H”©ÌÒÚ›SÉ^¡/d™Î×â
 ðüÃ/Æý
[  243.253928][T10479] [U] ï9УTÃèªb'ôû'‡±üa]ÃV€
[  243.255231][T10479] [U] ’×ÿ†³ÉÝ�ëóû!-L#֛㙃{’úÜ¥^§‡ua«dfM¡áÿ9Ì ôQ‹F
[  243.257136][T10479] [U] éøy•½:æbróòJGÆ4°1‹g¬Û&KÌÏ|Ë£†àq'Ùÿ½¢ˆÏ)$b9Ùô¾—`ZµÝ©iôMè©J½hG:·ÐéC5ãX÷Øv¡ãKnf�_(jA¢<ºŸêMÄþ»R²‘ .�¾¶îž
[  243.260578][T10479] [U] :Y
[  243.261396][T10479] [U] QŸ_>å¿3öí"ÕH×ðZ¦Dÿ€�I£Â’LÄݸ9Öð|ð‰NƦ7,E=#ª2H0ˆ3xa”fy«Õ@TŠ»•gCÏË9%ÊÿYs4·.�z©‚"BkSž7x¢ý£óEU×!Wr^>«\Înª£Xl}~íº´ ·¯rÓÚ¤Päg‘q�»,>®Ãt Ÿ~t¤éT‡1n|“M?M
[  243.265932][T10479] [U] ýs®Ui
[  243.266911][T10479] [U] _ÐJÕgÜßÃfù+ñ<>f}¼â>+d#,öA½|¬žîr똥Ì("jüÑþþÁ²ul@ðcü.™D…i»Z�:ÔP¥�+Èú:zæ9sItÓh­	h²ÿ�Á(«
[  243.269826][T10479] [U] þÒ¬ëz•“ÐÞìã­ýf´ôPÀÌ"ƒ[û¢²%Ù‘øí… N›VÚG	ãÁTJ–ü¹Ã'ª�n~"²7EõyH:Y¢vl³J–rƱÎÜË´)�SQO»8O�’ô¥àH6gÆ…³ý*œ
GQ½…ëz›VOwŸ�3± ûž®wž7²Œ‚y	Ú-v1†@ù¹Ó¥rÛ×÷¬T¥¯íPYN^Ë#ùÉû”›¿„¹NÅ€¡×
[  243.274670][T10479] [U] ¤ÖEîHQ}#�]ÐÀGNP™6µ}jõ2V!9Ÿ¦G”kè²{ÿ�«ûð„Í{Ãýµ166º~å&N�×jÝ[AÃÒ?¼²éo{º'p«ê'òªøËåEòå½ì³¥„Qp1@XGH¢Oˆ�;½iã3âÉaƒÇ”W6 ó–v¶K³ÃÎvyÆ}‡«nž-(�VtéÚyŽ &ËTMJãV™)íKÓ�*Z|lò£mHpÎ~µsèJFÂPpR_gÔU8pL£ÏS¾lDèO»@8xæÛG³sÍ6x6‰·ù>²r‡W
[  243.280681][T10479] [U] ®�Ò¨]kú‰�Ì!�¯n%Úêxm}P¯¥‡1´úÉÉÒ†€,únøTçG!|
[  243.282476][T10479] [U] ‰J(Ò
[  243.283348][T10479] [U] C¹ÞC˜\GV›V)ï•ÏÜ'¿8òm¬/ß—ÌXÙÁÅ›ôîYvŠÕ
[  243.308340][T10479] [U] �é-,r;ßA#Vlà·,Â'Ô¶;j�ç%%­1o®õªr3÷¿í‡¨a¯±sU/]|›Ç¬ÉQ»Ã#ÃvJ
«ÚBÑ«'¸mÃÞ;~Gyx‰kË,S*{t‡»o$ÄB5}õ.MXHµXF	¤‚Þ¤m=*iYX
[  243.312101][T10479] [U] ge„œ?3°¸rð™�GÆä$1{Ø°â÷
[  243.313865][T10479] [U] Á
[  243.314787][T10479] [U] ú¡™�â£÷Dê[2™mÂ(ÿ�è6µì·ålû=¿H+_ðžìñD9¸»ÅÏ<̘cïUGú(–·1–ÍʹyTù¬¾ÈçÒbk;‰ƒú1–øÈhNè$óC“<×=Qn€†Uj·

[  243.317897][T10479] [U] væVÍu5I—P#�dñÎü7cnž´€S¶1É]€¼PâHïV’î³ðÈj¥vî¸øq¤ÄÝ€&L?ð¶+b‘Û…†XÌ6‡„¤¯Ä@œ3†„3
[  243.320724][T10479] [U] d›1ànêMíNÙ,D¢ƒhŠíišîw*ÅsNt¦ZkŠÍl¸k+Ï3¨RNè8­ú<]$ã²åèš\›•¦Y)ŠI5Tž!�K´ÚX¢¦c%úåÆŽp¨j:&ô½ò¤¹û<‚*¹a„oÀ$u0È�®×ï¡Lº;GÓi˜ô€Iº¢qÊîŽ
[  243.324754][T10479] [U] b)PÂävÑióS?ùÝD`’Eå�0+Ø?÷Žq£�ðKëøÚÉV›{ãÓ›e±}/³	…�mæ,õ‡`¤b2gìT–X�*µ@~1¡2òoâžÎ€­€e<¡�¸<šÈ4RY
[  243.327936][T10479] [U] „ 
ûûIÇD*³qÓ—¹GyŸ…~©jûŸ¤³==Ï2D—Z—©m°_Á¼¬0�ߪà�±l¬¤Ü˜¯ÕyƒG²ÏÆ©.µâ7u-dß‚ï±ö°°Òì¢Cðù‘£óJHkõŽÖù"àtÕ„OòyUŸŒ@…à ~ÎLçÜSÇp^&G£ÃR�.ûo°ö•.¸¬ëù~Vè1Â(Ì1ž��‰ÒÿCü9Â׉:âFtzŒ4ÂŒõÖê›lq³éf³ó"Y¡œ>5ä �MÒpR?×ñC|éÍ ˆ³‹©tU�í±øÔ5^"N�øÚ;É<³ùµ‚¬7�Í
£ñFÖÓûi�éœÌЙ¾«æ8A¢Û¦F[%†’ý˜ÉÔÿ¼rê fÅ6dp~{.Åx¥2�JÃ;P+˜jÀF,l4Uör~>‰[Mñ–Ô÷©âS¦P
[  243.337636][T10479] [U] ÆéWS
d¼dŽ¿í¶És®�äš’ü§'O)íË #Vw[ª·#ùã :$ÖÝ¥hSï
[  243.339478][T10479] [U] ‘Ê‹ÇÅ0âŽè–ïÑ¡õ†bÝ‚àëUOJþÝž‡V)´™c×-Œ¬§»	u%/�Ux(~X:¬a‰•©A)Ÿ —>g®DF“6ä[hùxþßÈx^36ø›B&ønw
[  243.342348][T10479] [U] ɇ˄ùÇn\Ê®þd¿ÊßV5¾æ~6Nˆr
[  243.343783][T10479] [U] ÉâÛ꼎cÿÔ…Ý“ZB=\œÿƒ,ÁÔ�ä�mÀ
vÐ4/Ú±œì%o¾Ó«ctìÐ"Þa|²rþ¿¸¹‹Bl´EC›{�ÇÙíš‘˜Ÿ+ºØQ�p¦ùß|IãOïS8zZ+[™Þ‘^<G‹„?°¯å¦Œøÿþeº°�oT%ÔX¥]æ5UX¼PIã¡v—v0¤]à·lÝ¢¡g
[  243.349479][T10479] [U] '_öOKã;4’Ô„–uJ6¹e~û®²éXÞ)²ÞL#áþ·þ9‡~!¿+U
[  243.351421][T10479] [U] ÆÌåþ·/ªÌ³ºGô˜Ä`fœ£EµV™µòð ¢À�•9�dîÑ·ç[€/>p#›XÇ_�gÊECì]^2ûû³m›©Û‚ÇÆ>‘ó™u,]Åz-¬ýÖùå 1)ç1M^½ÌÏŸ0˜]ºåÐ(?lK~>½Ôkbyè8G¨´b@<çkî�ú{b&jPSªÍ €8	ËFqÕ?nUÚØýPƒsÁÂÉ5:Ÿ�âPž¬¾Ž3Gx€ÅIã'¨ÛZ®)šÈ†ÍP†·ôè‚5IÄNHüÃh?ÐEÝ“gs6™Œ@Ü1‚>Ãj
[  243.358748][T10479] [U] ,ì©,³ØÕà‚uôp”=è»ÏX:‰…Ã
[  243.361161][T10479] [U] ºÎøBZ¬¥}È`u<1Áq”÷]1er¼ø¸Ûbàlãœj$ÝhØ,uv(BÉ»·
'‘TËvŠ¯ÓGµÈ®Ï'ÀïЃ–à¦#‰)=
[  243.364215][T10479] [U] {†òUa_Ô
[  243.365464][T10479] [U] U}FñRd(œ	ÏYKZÓrRWZ”„¡Þhpt],bHXÓp'gV7ÇÏ{ÁZcw[�Â…¾wÛ‹…Ü«�»0v”Az�J¡í‡¼X£^Èâ<Þ7HÆ©3p9}ÕÄqûä[†ãA
[  243.369770][T10479] [U] ì{Ôw0Çý·àbÊúæ† i`'¬8Á‘Ã3Ò\ÈÄR(YYŽ~T J}êârS:ãž)g…Nûgžeg¸Û,´Ø{ê:q‹’X%¹vN­´‡'äÄ+î6é„O5ÇŸµ‰äÙ­j{FB™üÑ
[  243.373245][T10479] [U] ;M<7yÎèpÈm—×¼D¶9¢üI…_¥N“ÞÎß�ß9w3ú”y,ðhS5°'óÞÈ÷ðö©åˆñüºù‚µ¸d\N²üªÊ<f~ÝÄ
[  243.376348][T10479] [U] ËS“Žö¶aK*ïÐuLT„¶šÑŠÂ>ûÃÞøY\¤^òL¶<“&�¡òïE_•£CÞ–ÔÔ&Ó§§%&°›‚Zuß$ÛôÕ[wøË”‹ËxÄ´À�©*êù…]@°ÕØê¼_å|U_Xº
%â•Ò)[�Û¤_7£Fç‚jN;Ϥ
[  243.379968][T10479] [U] T¾	oiZßžf¼Ÿ6•V¬&ÆþFÔ½€¬”œÓ�ÁC‡¨µÏ�IDæ
[  243.381672][T10479] [U] )7
[  243.382667][T10479] [U] 
[  243.383466][T10479] [U] 
[  243.384249][T10479] [U] 
[  243.385032][T10479] [U] 
[  243.385922][T10479] [U] 
[  243.386722][T10479] [U] 
[  243.387529][T10479] [U] 
[  243.388312][T10479] [U] 
[  243.389132][T10479] [U] 
[  243.389936][T10479] [U] 
[  243.390721][T10479] [U] 
[  243.391510][T10479] [U] 
[  243.395371][T10479] [U] 
[  243.396194][T10479] [U] 
[  243.396950][T10479] [U] 
[  243.397708][T10479] [U] 
[  243.398489][T10479] [U] 
[  243.399298][T10479] [U] 
[  243.400081][T10479] [U] 
[  243.407493][T10488] overlayfs: failed to clone lowerpath
[  243.445009][T10477] [U] 
[  243.481540][  T104] Bluetooth: hci4: Frame reassembly failed (-84)
[  243.654625][ T5297] net_ratelimit: 14 callbacks suppressed
[  243.654637][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.186760][T10509] netfs: Couldn't get user pages (rc=-14)
[  244.213156][T10511] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  244.222128][T10511] FAULT_INJECTION: forcing a failure.
[  244.222128][T10511] name failslab, interval 1, probability 0, space 0, times 0
[  244.226762][  T836] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  244.229246][T10511] CPU: 3 UID: 0 PID: 10511 Comm: syz.2.1283 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  244.229260][T10511] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  244.229267][T10511] Call Trace:
[  244.229270][T10511]  <TASK>
[  244.229274][T10511]  dump_stack_lvl+0x16c/0x1f0
[  244.229292][T10511]  should_fail_ex+0x512/0x640
[  244.229306][T10511]  should_failslab+0xc2/0x120
[  244.229316][T10511]  __kmalloc_cache_noprof+0x6a/0x3e0
[  244.229329][T10511]  ? __sctp_v6_cmp_addr+0x206/0x530
[  244.229345][T10511]  ? sctp_add_bind_addr+0xae/0x3f0
[  244.229360][T10511]  sctp_add_bind_addr+0xae/0x3f0
[  244.229374][T10511]  sctp_copy_local_addr_list+0x39d/0x5a0
[  244.229392][T10511]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  244.229408][T10511]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  244.229427][T10511]  ? sctp_bind_addr_copy+0xe0/0x530
[  244.229439][T10511]  sctp_bind_addr_copy+0xe0/0x530
[  244.229455][T10511]  sctp_connect_new_asoc+0x1d7/0x790
[  244.229467][T10511]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  244.229481][T10511]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  244.229495][T10511]  sctp_sendmsg+0x15f9/0x1ee0
[  244.229510][T10511]  ? __pfx_sctp_sendmsg+0x10/0x10
[  244.229526][T10511]  ? __might_fault+0xe3/0x190
[  244.229542][T10511]  ? __pfx_aa_sk_perm+0x10/0x10
[  244.229555][T10511]  ? __pfx_sctp_sendmsg+0x10/0x10
[  244.229566][T10511]  inet_sendmsg+0x119/0x140
[  244.229577][T10511]  __sys_sendto+0x431/0x510
[  244.229590][T10511]  ? __pfx___sys_sendto+0x10/0x10
[  244.229612][T10511]  ? ksys_write+0x1b9/0x240
[  244.229625][T10511]  ? __pfx_ksys_write+0x10/0x10
[  244.229640][T10511]  __ia32_sys_sendto+0xdd/0x1b0
[  244.229651][T10511]  ? lockdep_hardirqs_on+0x7c/0x110
[  244.229664][T10511]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  244.229678][T10511]  __do_fast_syscall_32+0x73/0x120
[  244.229693][T10511]  do_fast_syscall_32+0x32/0x80
[  244.229707][T10511]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  244.229748][T10511] RIP: 0023:0xf747e579
[  244.229760][T10511] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  244.229770][T10511] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  244.229780][T10511] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000180
[  244.229786][T10511] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 0000000080000480
[  244.229792][T10511] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  244.229798][T10511] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  244.229803][T10511] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  244.229816][T10511]  </TASK>
[  244.336502][T10514] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1285'.
[  244.411683][T10518] overlayfs: failed to clone lowerpath
[  244.603745][T10523] overlayfs: conflicting lowerdir path
[  244.986748][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  245.074073][T10528] IPv6: addrconf: prefix option has invalid lifetime
[  245.157583][T10536] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  245.493939][ T5304] Bluetooth: hci4: command 0x1003 tx timeout
[  245.496400][   T67] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  245.744113][ T8634] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  245.903103][T10547] overlayfs: failed to clone lowerpath
[  246.054035][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  246.072827][T10558] netfs: Couldn't get user pages (rc=-14)
[  246.574055][ T1461] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  246.628334][T10575] FAULT_INJECTION: forcing a failure.
[  246.628334][T10575] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  246.632004][T10575] CPU: 2 UID: 0 PID: 10575 Comm: syz.3.1304 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  246.632018][T10575] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  246.632024][T10575] Call Trace:
[  246.632029][T10575]  <TASK>
[  246.632034][T10575]  dump_stack_lvl+0x16c/0x1f0
[  246.632052][T10575]  should_fail_ex+0x512/0x640
[  246.632066][T10575]  _copy_from_user+0x2e/0xd0
[  246.632079][T10575]  __sys_bpf+0x21d/0x4d80
[  246.632092][T10575]  ? __pfx___sys_bpf+0x10/0x10
[  246.632103][T10575]  ? ksys_write+0x190/0x240
[  246.632120][T10575]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  246.632142][T10575]  ? fput+0x70/0xf0
[  246.632151][T10575]  ? ksys_write+0x1b9/0x240
[  246.632164][T10575]  ? __pfx_ksys_write+0x10/0x10
[  246.632179][T10575]  __ia32_sys_bpf+0x76/0xe0
[  246.632191][T10575]  __do_fast_syscall_32+0x73/0x120
[  246.632207][T10575]  do_fast_syscall_32+0x32/0x80
[  246.632221][T10575]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  246.632233][T10575] RIP: 0023:0xf7fd2579
[  246.632241][T10575] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  246.632251][T10575] RSP: 002b:00000000f50d555c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  246.632260][T10575] RAX: ffffffffffffffda RBX: 0000000000000022 RCX: 0000000080000140
[  246.632266][T10575] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  246.632272][T10575] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  246.632277][T10575] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  246.632283][T10575] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  246.632295][T10575]  </TASK>
[  246.763762][ T1461] usb 5-1: Using ep0 maxpacket: 8
[  246.766494][ T1461] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  246.769014][ T1461] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  246.771518][ T1461] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  246.775585][ T1461] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  246.779117][ T1461] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  246.781503][ T1461] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  246.989127][ T1461] usb 5-1: GET_CAPABILITIES returned 0
[  246.990690][ T1461] usbtmc 5-1:16.0: can't read capabilities
[  247.095171][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  247.194371][T10567] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  247.198204][T10567] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  247.202347][T10567] usbtmc 5-1:16.0: usbtmc488_ioctl_trigger returned -90
[  247.205765][    T9] usb 5-1: USB disconnect, device number 30
[  247.254025][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  247.379704][T10581] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.383983][T10581] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.386956][T10581] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.390148][T10581] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.393810][T10581] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.396750][T10581] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.399465][T10581] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.402325][T10581] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.407182][T10581] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.410038][T10581] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.412665][T10581] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  247.417074][T10581] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  247.420668][T10581] batadv_slave_0: entered promiscuous mode
[  247.426094][T10581] batadv_slave_0: left promiscuous mode
[  247.440993][T10580] batadv_slave_0: entered promiscuous mode
[  247.503055][T10581] batadv_slave_0: left promiscuous mode
[  247.715967][T10593] netlink: 'syz.2.1308': attribute type 11 has an invalid length.
[  247.718230][T10593] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1308'.
[  247.820044][T10598] overlayfs: failed to clone lowerpath
[  248.133780][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  248.243689][ T1461] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  248.394888][ T1461] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  248.401310][ T1461] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  248.404380][ T1461] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.406512][ T1461] usb 10-1: Product: syz
[  248.407671][ T1461] usb 10-1: Manufacturer: syz
[  248.409218][ T1461] usb 10-1: SerialNumber: syz
[  248.622192][ T1461] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 9 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  248.897866][ T1461] usb 10-1: USB disconnect, device number 9
[  249.113081][T10610] usblp0: removed
[  249.174230][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  249.284042][T10652] batman_adv: batadv0: Adding interface: dummy0
[  249.285869][T10652] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  249.292590][T10652] batman_adv: batadv0: Interface activated: dummy0
[  249.564676][T10658] overlayfs: failed to clone lowerpath
[  249.719191][T10664] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  250.259315][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.304102][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  250.315424][T10672] FAULT_INJECTION: forcing a failure.
[  250.315424][T10672] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  250.320468][T10672] CPU: 3 UID: 0 PID: 10672 Comm: syz.3.1324 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  250.320489][T10672] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  250.320499][T10672] Call Trace:
[  250.320505][T10672]  <TASK>
[  250.320512][T10672]  dump_stack_lvl+0x16c/0x1f0
[  250.320538][T10672]  should_fail_ex+0x512/0x640
[  250.320556][T10672]  _copy_from_user+0x2e/0xd0
[  250.320573][T10672]  do_handle_open+0x500/0xb70
[  250.320590][T10672]  ? __fget_files+0x20e/0x3c0
[  250.320609][T10672]  ? __pfx_do_handle_open+0x10/0x10
[  250.320632][T10672]  ? ksys_write+0x1b9/0x240
[  250.320670][T10672]  ? __do_fast_syscall_32+0x73/0x120
[  250.320692][T10672]  __do_fast_syscall_32+0x73/0x120
[  250.320717][T10672]  do_fast_syscall_32+0x32/0x80
[  250.320738][T10672]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  250.320758][T10672] RIP: 0023:0xf7fd2579
[  250.320770][T10672] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  250.320785][T10672] RSP: 002b:00000000f50d555c EFLAGS: 00000296 ORIG_RAX: 0000000000000156
[  250.320801][T10672] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800000c0
[  250.320811][T10672] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  250.320819][T10672] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  250.320829][T10672] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  250.320838][T10672] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  250.320860][T10672]  </TASK>
[  250.754035][T10695] FAULT_INJECTION: forcing a failure.
[  250.754035][T10695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  250.757833][T10695] CPU: 3 UID: 0 PID: 10695 Comm: syz.5.1333 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  250.757855][T10695] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  250.757863][T10695] Call Trace:
[  250.757867][T10695]  <TASK>
[  250.757871][T10695]  dump_stack_lvl+0x16c/0x1f0
[  250.757888][T10695]  should_fail_ex+0x512/0x640
[  250.757902][T10695]  _copy_from_user+0x2e/0xd0
[  250.757916][T10695]  do_fb_ioctl+0x290/0x7e0
[  250.757929][T10695]  ? __pfx_do_fb_ioctl+0x10/0x10
[  250.757939][T10695]  ? lockdep_hardirqs_on+0x7c/0x110
[  250.757954][T10695]  ? find_held_lock+0x2b/0x80
[  250.757973][T10695]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  250.757997][T10695]  fb_compat_ioctl+0x55e/0x670
[  250.758009][T10695]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  250.758019][T10695]  ? hook_file_ioctl_common+0x145/0x410
[  250.758033][T10695]  ? __fget_files+0x20e/0x3c0
[  250.758050][T10695]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  250.758062][T10695]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  250.758075][T10695]  __do_fast_syscall_32+0x73/0x120
[  250.758090][T10695]  do_fast_syscall_32+0x32/0x80
[  250.758104][T10695]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  250.758116][T10695] RIP: 0023:0xf73ce579
[  250.758124][T10695] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  250.758135][T10695] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  250.758144][T10695] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004601
[  250.758150][T10695] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[  250.758156][T10695] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  250.758161][T10695] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  250.758166][T10695] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  250.758179][T10695]  </TASK>
[  250.896736][T10697] overlayfs: failed to clone lowerpath
[  251.252650][T10712] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1338'.
[  251.333715][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  252.223398][   T29] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  252.375564][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  252.384848][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  252.387701][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  252.390354][   T29] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  252.394026][   T29] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  252.396391][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.400019][   T29] usb 5-1: config 0 descriptor??
[  252.624716][ T6008] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  252.783575][ T6008] usb 8-1: Using ep0 maxpacket: 32
[  252.786900][ T6008] usb 8-1: config 5 has an invalid interface number: 236 but max is 3
[  252.789093][ T6008] usb 8-1: config 5 has an invalid interface number: 233 but max is 3
[  252.791263][ T6008] usb 8-1: config 5 has an invalid interface number: 70 but max is 3
[  252.793468][ T6008] usb 8-1: config 5 has an invalid interface number: 248 but max is 3
[  252.795651][ T6008] usb 8-1: config 5 contains an unexpected descriptor of type 0x2, skipping
[  252.797974][ T6008] usb 8-1: config 5 has an invalid interface number: 235 but max is 3
[  252.800177][ T6008] usb 8-1: config 5 contains an unexpected descriptor of type 0x1, skipping
[  252.802507][ T6008] usb 8-1: config 5 contains an unexpected descriptor of type 0x1, skipping
[  252.805019][ T6008] usb 8-1: config 5 has 5 interfaces, different from the descriptor's value: 4
[  252.807405][ T6008] usb 8-1: config 5 has no interface number 0
[  252.809064][ T6008] usb 8-1: config 5 has no interface number 1
[  252.809364][T10727] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1343'.
[  252.810700][ T6008] usb 8-1: config 5 has no interface number 2
[  252.810710][ T6008] usb 8-1: config 5 has no interface number 3
[  252.810718][ T6008] usb 8-1: config 5 has no interface number 4
[  252.810754][ T6008] usb 8-1: config 5 interface 236 altsetting 5 endpoint 0x2 has invalid maxpacket 1023, setting to 64
[  252.818592][   T29] usbhid 5-1:0.0: can't add hid device: -71
[  252.820940][ T6008] usb 8-1: config 5 interface 236 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  252.820956][ T6008] usb 8-1: too many endpoints for config 5 interface 233 altsetting 238: 140, using maximum allowed: 30
[  252.820974][ T6008] usb 8-1: config 5 interface 233 altsetting 238 has an invalid descriptor for endpoint zero, skipping
[  252.825153][   T29] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  252.827372][ T6008] usb 8-1: config 5 interface 233 altsetting 238 has 2 endpoint descriptors, different from the interface descriptor's value: 140
[  252.831913][   T29] usb 5-1: USB disconnect, device number 31
[  252.833353][ T6008] usb 8-1: config 5 interface 70 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[  252.842826][ T6008] usb 8-1: config 5 interface 248 altsetting 1 endpoint 0x9 has invalid maxpacket 1024, setting to 64
[  252.847271][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has an endpoint descriptor with address 0xD2, changing to 0x82
[  252.850554][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has a duplicate endpoint with address 0x82, skipping
[  252.853761][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  252.856804][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  252.860016][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  252.863045][ T6008] usb 8-1: config 5 interface 248 altsetting 1 endpoint 0xA has invalid maxpacket 512, setting to 64
[  252.866506][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[  252.869536][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has a duplicate endpoint with address 0xC, skipping
[  252.872698][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[  252.876600][ T6008] usb 8-1: config 5 interface 248 altsetting 1 bulk endpoint 0xE has invalid maxpacket 903
[  252.879599][ T6008] usb 8-1: config 5 interface 248 altsetting 1 endpoint 0xD has invalid maxpacket 991, setting to 64
[  252.882529][ T6008] usb 8-1: config 5 interface 248 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  252.885989][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0xA, skipping
[  252.889180][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has an invalid descriptor for endpoint zero, skipping
[  252.892321][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0x6, skipping
[  252.895341][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0xD, skipping
[  252.898409][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has an invalid descriptor for endpoint zero, skipping
[  252.901377][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0x6, skipping
[  252.904371][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0x1, skipping
[  252.907417][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0x2, skipping
[  252.910479][ T6008] usb 8-1: config 5 interface 235 altsetting 12 endpoint 0x5 has invalid maxpacket 1023, setting to 64
[  252.913910][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0x2, skipping
[  252.917005][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0x6, skipping
[  252.920085][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has an invalid descriptor for endpoint zero, skipping
[  252.923117][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has an invalid descriptor for endpoint zero, skipping
[  252.926450][ T6008] usb 8-1: config 5 interface 235 altsetting 12 has a duplicate endpoint with address 0xC, skipping
[  252.929428][ T6008] usb 8-1: config 5 interface 236 has no altsetting 0
[  252.931325][ T6008] usb 8-1: config 5 interface 233 has no altsetting 0
[  252.933601][ T6008] usb 8-1: config 5 interface 70 has no altsetting 0
[  252.935634][ T6008] usb 8-1: config 5 interface 248 has no altsetting 0
[  252.937558][ T6008] usb 8-1: config 5 interface 235 has no altsetting 0
[  252.941717][ T6008] usb 8-1: Dual-Role OTG device on HNP port
[  252.944104][ T6008] usb 8-1: New USB device found, idVendor=0856, idProduct=ba02, bcdDevice=b5.8e
[  252.946505][ T6008] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  252.948595][ T6008] usb 8-1: Product: 늠�隙�蕢早�䜧ꇔﴺ棇蒘緫﹤��⛞�⑷魋꫈ᚋꔓ�잚铚ޑ䕨纙緦᤺�쿀웆⹛ᤄਣ䩡ﱆఄ馩쑺�亞྇胢�콿귪땑ᶀ㯶跦籶ꬎ뚂㺈ȣʧἴ뮷簪ᴒ佶�楊䓚셮頵ՙ鎠ꯑ㷩唪�䢸㚉関Ⱝ穓ꧩ㻷�
[  252.955682][ T6008] usb 8-1: Manufacturer: 䘺豛�䅔鉿ߙ槀䪿赫�쮩욈�⭒ꗯ픂�⠛ᶢ�첩�䄦褢飣烧䓹��렾次撵놫�꿬䷡⿞儗浃ሥᘕ湎꒶톶௦�䃠�໅�媟�㘷烘鷿衇쳉崼�垣�្䟽�露෼䋠㱠䲊毕炀糼ᅩ숅괚�爆᮱怬评㠒�ﴟᕡ俦ᰯꢓﯕ挣챃ί⬥䔆�ٹ삹꺙㵡
[  252.964314][ T6008] usb 8-1: SerialNumber: ᅕ爾�騼踣瑹�뛑⒲擟棬栀㸒螛퓴㚗㕺ڧ푺丂쯃飷尋㧬驔袮喵䖛퓿竂摡钤魶⟠��턻痸젎孢䳵﫳�ተ�耬㩟뭽욵ㆪ憤캟┶�☭샌샱�絤怃஻䛩鈨گ꧱ቲ阄Ʝ蔬滧�哒䯤媊㛠璴뀵櫸鰫徼푕䇵켗
[  253.141790][T10741] overlayfs: failed to clone lowerpath
[  253.176531][T10729] IPv6: NLM_F_CREATE should be specified when creating new route
[  253.185739][ T6008] ftdi_sio 8-1:5.236: FTDI USB Serial Device converter detected
[  253.189006][ T6008] ftdi_sio ttyUSB0: unknown device type: 0xb58e
[  253.193914][ T6008] ftdi_sio 8-1:5.233: FTDI USB Serial Device converter detected
[  253.196775][ T6008] ftdi_sio ttyUSB1: unknown device type: 0xb58e
[  253.200461][ T6008] ftdi_sio 8-1:5.70: FTDI USB Serial Device converter detected
[  253.203004][ T6008] ftdi_sio ttyUSB2: unknown device type: 0xb58e
[  253.207152][ T6008] ftdi_sio 8-1:5.248: FTDI USB Serial Device converter detected
[  253.210084][ T6008] ftdi_sio ttyUSB3: unknown device type: 0xb58e
[  253.216000][ T6008] ftdi_sio 8-1:5.235: FTDI USB Serial Device converter detected
[  253.218692][ T6008] ftdi_sio ttyUSB4: unknown device type: 0xb58e
[  253.229230][ T6008] usb 8-1: USB disconnect, device number 27
[  253.232801][ T6008] ftdi_sio 8-1:5.236: device disconnected
[  253.235934][ T6008] ftdi_sio 8-1:5.233: device disconnected
[  253.238704][ T6008] ftdi_sio 8-1:5.70: device disconnected
[  253.244389][ T6008] ftdi_sio 8-1:5.248: device disconnected
[  253.247700][ T6008] ftdi_sio 8-1:5.235: device disconnected
[  253.333978][  T836] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  253.395855][T10747] netfs: Couldn't get user pages (rc=-14)
[  253.480421][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.260545][T10761] 9pnet_virtio: no channels available for device syz
[  254.533883][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  254.856020][   T65] Bluetooth: hci4: Frame reassembly failed (-84)
[  254.858490][T10771] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  254.861676][   T65] Bluetooth: hci4: Frame reassembly failed (-84)
[  255.096793][ T8634] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  255.096939][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  255.125632][T10779] overlayfs: failed to clone lowerpath
[  255.583581][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  255.678213][T10788] netfs: Couldn't get user pages (rc=-14)
[  256.373745][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  256.615021][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  256.933564][ T5304] Bluetooth: hci4: command 0x1003 tx timeout
[  256.935622][   T67] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  256.996864][T10810] overlayfs: failed to clone lowerpath
[  257.553420][ T5297] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  257.631307][T10822] overlayfs: failed to clone lowerpath
[  257.653905][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  257.715234][ T5297] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  257.718742][ T5297] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  257.722097][ T5297] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  257.726432][ T5297] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  257.729356][ T5297] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.733071][ T5297] usb 7-1: config 0 descriptor??
[  257.876307][T10826] netfs: Couldn't get user pages (rc=-14)
[  258.141948][T10818] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1371'.
[  258.270116][ T5297] usbhid 7-1:0.0: can't add hid device: -71
[  258.272068][ T5297] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  258.275834][ T5297] usb 7-1: USB disconnect, device number 31
[  258.327862][T10834] 9pnet_virtio: no channels available for device syz
[  258.741375][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.749474][T10840] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1378'.
[  258.842004][T10840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.845128][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.848061][T10840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  258.856978][T10840] overlayfs: conflicting lowerdir path
[  258.964506][T10853] netfs: Couldn't get user pages (rc=-14)
[  259.172905][T10864] overlayfs: failed to clone lowerpath
[  259.718438][T10870] 9pnet_virtio: no channels available for device syz
[  259.759117][T10867] overlayfs: failed to clone lowerpath
[  259.809706][T10874] 9pnet_virtio: no channels available for device syz
[  259.843775][ T5297] net_ratelimit: 4 callbacks suppressed
[  259.843786][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  259.921168][T10879] FAULT_INJECTION: forcing a failure.
[  259.921168][T10879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.925195][T10879] CPU: 3 UID: 0 PID: 10879 Comm: syz.5.1387 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  259.925209][T10879] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.925215][T10879] Call Trace:
[  259.925219][T10879]  <TASK>
[  259.925223][T10879]  dump_stack_lvl+0x16c/0x1f0
[  259.925240][T10879]  should_fail_ex+0x512/0x640
[  259.925254][T10879]  _copy_to_user+0x32/0xd0
[  259.925267][T10879]  simple_read_from_buffer+0xcb/0x170
[  259.925282][T10879]  proc_fail_nth_read+0x197/0x270
[  259.925297][T10879]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  259.925311][T10879]  ? rw_verify_area+0xcf/0x680
[  259.925322][T10879]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  259.925336][T10879]  vfs_read+0x1de/0xc70
[  259.925355][T10879]  ? __pfx___mutex_lock+0x10/0x10
[  259.925369][T10879]  ? __pfx_vfs_read+0x10/0x10
[  259.925385][T10879]  ? __fget_files+0x20e/0x3c0
[  259.925404][T10879]  ksys_read+0x12a/0x240
[  259.925417][T10879]  ? __pfx_ksys_read+0x10/0x10
[  259.925429][T10879]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  259.925444][T10879]  ? rcu_is_watching+0x12/0xc0
[  259.925459][T10879]  __do_fast_syscall_32+0x73/0x120
[  259.925474][T10879]  do_fast_syscall_32+0x32/0x80
[  259.925488][T10879]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  259.925500][T10879] RIP: 0023:0xf73ce579
[  259.925508][T10879] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  259.925518][T10879] RSP: 002b:00000000f5056590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  259.925527][T10879] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5056620
[  259.925533][T10879] RDX: 000000000000000f RSI: 00000000f73bcff4 RDI: 0000000000000000
[  259.925539][T10879] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  259.925544][T10879] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  259.925549][T10879] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  259.925562][T10879]  </TASK>
[  260.042840][T10883] netfs: Couldn't get user pages (rc=-14)
[  260.864827][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  261.903525][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  262.409821][T10924] netfs: Couldn't get user pages (rc=-14)
[  262.453744][  T836] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  263.098175][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  263.485557][T10934] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  263.488098][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  263.687486][T10936] netlink: 'syz.2.1404': attribute type 29 has an invalid length.
[  263.689745][T10936] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1404'.
[  264.133609][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  264.157673][T10950] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1407'.
[  264.408934][T10958] netfs: Couldn't get user pages (rc=-14)
[  264.850902][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.131992][T10971] overlayfs: failed to clone upperpath
[  265.247926][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.301407][   T40] kauditd_printk_skb: 45 callbacks suppressed
[  265.301419][   T40] audit: type=1800 audit(1744043961.963:2144): pid=10978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1423" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  265.535224][   T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.589507][T10981] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.592361][T10981] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.595822][T10981] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.598360][T10981] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.600734][T10981] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.603042][T10981] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.813874][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.816244][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  267.183373][ T5297] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  267.343989][ T5297] usb 10-1: Using ep0 maxpacket: 32
[  267.347421][ T5297] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  267.352936][ T5297] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  267.356553][ T5297] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  267.359648][ T5297] usb 10-1: Product: syz
[  267.361290][ T5297] usb 10-1: Manufacturer: syz
[  267.363070][ T5297] usb 10-1: SerialNumber: syz
[  267.366730][ T5297] usb 10-1: config 0 descriptor??
[  267.369322][T11010] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  267.581219][T11010] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  267.587846][T11010] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  267.918806][T11032] IPVS: Unknown mcast interface: vcan0
[  268.045723][   T10] usb 10-1: USB disconnect, device number 10
[  268.818070][T11044] netfs: Couldn't get user pages (rc=-14)
[  269.862798][T11052] nvme_fabrics: missing parameter 'transport=%s'
[  269.865643][T11052] nvme_fabrics: missing parameter 'nqn=%s'
[  269.899128][T11055] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1439'.
[  270.167871][T11059] overlayfs: conflicting lowerdir path
[  270.676428][   T10] net_ratelimit: 31 callbacks suppressed
[  270.676440][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.765944][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  270.770778][T11068] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1442'.
[  270.774446][T11068] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1442'.
[  270.971019][T11080] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1448'.
[  271.702319][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.823899][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.870112][T11107] FAULT_INJECTION: forcing a failure.
[  271.870112][T11107] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  271.874271][T11107] CPU: 2 UID: 0 PID: 11107 Comm: syz.0.1456 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  271.874290][T11107] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  271.874297][T11107] Call Trace:
[  271.874300][T11107]  <TASK>
[  271.874304][T11107]  dump_stack_lvl+0x16c/0x1f0
[  271.874339][T11107]  should_fail_ex+0x512/0x640
[  271.874360][T11107]  _copy_to_user+0x32/0xd0
[  271.874373][T11107]  simple_read_from_buffer+0xcb/0x170
[  271.874389][T11107]  proc_fail_nth_read+0x197/0x270
[  271.874403][T11107]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  271.874417][T11107]  ? rw_verify_area+0xcf/0x680
[  271.874428][T11107]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  271.874442][T11107]  vfs_read+0x1de/0xc70
[  271.874456][T11107]  ? __pfx___mutex_lock+0x10/0x10
[  271.874470][T11107]  ? __pfx_vfs_read+0x10/0x10
[  271.874487][T11107]  ? __fget_files+0x20e/0x3c0
[  271.874500][T11107]  ? __print_lock_name+0x30/0xe0
[  271.874517][T11107]  ksys_read+0x12a/0x240
[  271.874530][T11107]  ? __pfx_ksys_read+0x10/0x10
[  271.874545][T11107]  ? rcu_is_watching+0x12/0xc0
[  271.874559][T11107]  __do_fast_syscall_32+0x73/0x120
[  271.874574][T11107]  do_fast_syscall_32+0x32/0x80
[  271.874588][T11107]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  271.874601][T11107] RIP: 0023:0xf7fa4579
[  271.874609][T11107] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  271.874618][T11107] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  271.874628][T11107] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50c6620
[  271.874634][T11107] RDX: 000000000000000f RSI: 00000000f742cff4 RDI: 0000000000000000
[  271.874639][T11107] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  271.874645][T11107] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  271.874650][T11107] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  271.874663][T11107]  </TASK>
[  272.411544][T11121] netlink: 'syz.2.1461': attribute type 2 has an invalid length.
[  272.591056][   T40] audit: type=1326 audit(2000000000.969:2145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.597649][   T40] audit: type=1326 audit(2000000000.969:2146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.603992][   T40] audit: type=1326 audit(2000000000.979:2147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.610402][   T40] audit: type=1326 audit(2000000000.979:2148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.616273][   T40] audit: type=1326 audit(2000000000.979:2149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.622041][   T40] audit: type=1326 audit(2000000000.979:2150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.627739][   T40] audit: type=1326 audit(2000000000.979:2151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.633443][   T40] audit: type=1326 audit(2000000000.979:2152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.638954][   T40] audit: type=1326 audit(2000000000.989:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.644607][   T40] audit: type=1326 audit(2000000000.989:2154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11124 comm="syz.2.1463" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  272.847350][T11131] FAULT_INJECTION: forcing a failure.
[  272.847350][T11131] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  272.851148][T11131] CPU: 2 UID: 0 PID: 11131 Comm: syz.0.1464 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  272.851161][T11131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.851168][T11131] Call Trace:
[  272.851172][T11131]  <TASK>
[  272.851176][T11131]  dump_stack_lvl+0x16c/0x1f0
[  272.851193][T11131]  should_fail_ex+0x512/0x640
[  272.851208][T11131]  _copy_to_user+0x32/0xd0
[  272.851222][T11131]  simple_read_from_buffer+0xcb/0x170
[  272.851237][T11131]  proc_fail_nth_read+0x197/0x270
[  272.851251][T11131]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  272.851265][T11131]  ? rw_verify_area+0xcf/0x680
[  272.851276][T11131]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  272.851290][T11131]  vfs_read+0x1de/0xc70
[  272.851305][T11131]  ? __pfx___mutex_lock+0x10/0x10
[  272.851319][T11131]  ? __pfx_vfs_read+0x10/0x10
[  272.851335][T11131]  ? __fget_files+0x20e/0x3c0
[  272.851353][T11131]  ksys_read+0x12a/0x240
[  272.851366][T11131]  ? __pfx_ksys_read+0x10/0x10
[  272.851380][T11131]  ? rcu_is_watching+0x12/0xc0
[  272.851395][T11131]  __do_fast_syscall_32+0x73/0x120
[  272.851410][T11131]  do_fast_syscall_32+0x32/0x80
[  272.851424][T11131]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  272.851436][T11131] RIP: 0023:0xf7fa4579
[  272.851444][T11131] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  272.851454][T11131] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  272.851463][T11131] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50c6620
[  272.851469][T11131] RDX: 000000000000000f RSI: 00000000f742cff4 RDI: 0000000000000000
[  272.851474][T11131] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  272.851480][T11131] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  272.851485][T11131] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  272.851502][T11131]  </TASK>
[  272.899150][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.969194][T11139] netlink: 140 bytes leftover after parsing attributes in process `syz.3.1468'.
[  272.972048][T11139] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1468'.
[  272.975305][T11139] netlink: 'syz.3.1468': attribute type 26 has an invalid length.
[  274.033513][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.147663][T11175] overlayfs: failed to clone lowerpath
[  274.174942][T11182] FAULT_INJECTION: forcing a failure.
[  274.174942][T11182] name failslab, interval 1, probability 0, space 0, times 0
[  274.178449][T11182] CPU: 2 UID: 0 PID: 11182 Comm: syz.3.1479 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  274.178462][T11182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.178468][T11182] Call Trace:
[  274.178472][T11182]  <TASK>
[  274.178476][T11182]  dump_stack_lvl+0x16c/0x1f0
[  274.178494][T11182]  should_fail_ex+0x512/0x640
[  274.178505][T11182]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  274.178520][T11182]  should_failslab+0xc2/0x120
[  274.178530][T11182]  __kmalloc_cache_noprof+0x6a/0x3e0
[  274.178544][T11182]  ? nvmf_dev_write+0x161/0xc70
[  274.178557][T11182]  nvmf_dev_write+0x161/0xc70
[  274.178569][T11182]  ? rw_verify_area+0xcf/0x680
[  274.178582][T11182]  vfs_write+0x25c/0x1180
[  274.178595][T11182]  ? __pfx_nvmf_dev_write+0x10/0x10
[  274.178608][T11182]  ? __pfx_vfs_write+0x10/0x10
[  274.178619][T11182]  ? find_held_lock+0x2b/0x80
[  274.178633][T11182]  ? __fget_files+0x204/0x3c0
[  274.178649][T11182]  ? __fget_files+0x20e/0x3c0
[  274.178667][T11182]  ksys_write+0x12a/0x240
[  274.178679][T11182]  ? __pfx_ksys_write+0x10/0x10
[  274.178694][T11182]  ? rcu_is_watching+0x12/0xc0
[  274.178709][T11182]  __do_fast_syscall_32+0x73/0x120
[  274.178724][T11182]  do_fast_syscall_32+0x32/0x80
[  274.178739][T11182]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  274.178752][T11182] RIP: 0023:0xf7fd2579
[  274.178761][T11182] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  274.178771][T11182] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  274.178781][T11182] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[  274.178789][T11182] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000
[  274.178797][T11182] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  274.178804][T11182] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  274.178812][T11182] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  274.178824][T11182]  </TASK>
[  274.274617][T11185] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1481'.
[  274.287775][T11186] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1480'.
[  274.484930][T11189] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.487367][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.490114][T11189] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.492769][ T1136] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.515177][T11189] overlayfs: conflicting lowerdir path
[  274.593730][T11191] overlayfs: failed to clone upperpath
[  274.700506][T11193] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1482'.
[  274.880513][T11196] nvme_fabrics: unknown parameter or missing value '
x	' in ctrl creation request
[  274.920330][T11198] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1491'.
[  275.260505][T11204] overlayfs: conflicting lowerdir path
[  275.629150][T11193] overlayfs: conflicting lowerdir path
[  275.867096][T11219] overlayfs: failed to clone lowerpath
[  275.969070][T11222] net_ratelimit: 12 callbacks suppressed
[  275.969082][T11222] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.223753][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.055985][T11252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1498'.
[  277.211785][T11257] overlayfs: failed to clone lowerpath
[  277.253613][ T5989] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.279485][T11260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.281871][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.284318][T11260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.286795][ T1138] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.289018][T11260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.291362][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.293978][T11260] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.299179][T11260] overlayfs: conflicting lowerdir path
[  277.654955][   T40] kauditd_printk_skb: 40 callbacks suppressed
[  277.654964][   T40] audit: type=1326 audit(2000000006.039:2195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.662772][   T40] audit: type=1326 audit(2000000006.039:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.669847][   T40] audit: type=1326 audit(2000000006.039:2197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.677833][   T40] audit: type=1326 audit(2000000006.039:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.684194][   T40] audit: type=1326 audit(2000000006.039:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.690129][   T40] audit: type=1326 audit(2000000006.039:2200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.696685][   T40] audit: type=1326 audit(2000000006.039:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.702609][   T40] audit: type=1326 audit(2000000006.039:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.709404][   T40] audit: type=1326 audit(2000000006.039:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf747e579 code=0x7ffc0000
[  277.715797][   T40] audit: type=1326 audit(2000000006.039:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11273 comm="syz.2.1507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  278.256639][T11288] IPVS: Error connecting to the multicast addr
[  278.418587][T11290] netlink: 140 bytes leftover after parsing attributes in process `syz.5.1511'.
[  278.421607][T11290] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1511'.
[  278.425749][T11290] netlink: 'syz.5.1511': attribute type 26 has an invalid length.
[  278.622202][T11304] overlayfs: failed to clone lowerpath
[  278.992203][T11329] netfs: Couldn't get user pages (rc=-14)
[  280.210943][T11361] overlayfs: failed to clone lowerpath
[  281.423618][ T5297] net_ratelimit: 6 callbacks suppressed
[  281.423636][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  281.658320][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  281.817717][T11408] overlayfs: failed to clone lowerpath
[  281.850516][T11413] FAULT_INJECTION: forcing a failure.
[  281.850516][T11413] name failslab, interval 1, probability 0, space 0, times 0
[  281.854119][T11413] CPU: 0 UID: 0 PID: 11413 Comm: syz.0.1544 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  281.854132][T11413] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.854139][T11413] Call Trace:
[  281.854143][T11413]  <TASK>
[  281.854147][T11413]  dump_stack_lvl+0x16c/0x1f0
[  281.854165][T11413]  should_fail_ex+0x512/0x640
[  281.854176][T11413]  ? fs_reclaim_acquire+0xae/0x150
[  281.854189][T11413]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  281.854204][T11413]  should_failslab+0xc2/0x120
[  281.854218][T11413]  __kmalloc_noprof+0xd2/0x510
[  281.854235][T11413]  tomoyo_realpath_from_path+0xc2/0x6e0
[  281.854250][T11413]  ? tomoyo_profile+0x47/0x60
[  281.854267][T11413]  tomoyo_path_number_perm+0x245/0x580
[  281.854278][T11413]  ? tomoyo_path_number_perm+0x237/0x580
[  281.854291][T11413]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  281.854303][T11413]  ? find_held_lock+0x2b/0x80
[  281.854328][T11413]  ? find_held_lock+0x2b/0x80
[  281.854340][T11413]  ? hook_file_ioctl_common+0x145/0x410
[  281.854354][T11413]  ? __fget_files+0x20e/0x3c0
[  281.854371][T11413]  security_file_ioctl_compat+0x9b/0x240
[  281.854384][T11413]  __do_compat_sys_ioctl+0x4e/0x2c0
[  281.854398][T11413]  __do_fast_syscall_32+0x73/0x120
[  281.854414][T11413]  do_fast_syscall_32+0x32/0x80
[  281.854428][T11413]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  281.854441][T11413] RIP: 0023:0xf7fa4579
[  281.854450][T11413] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  281.854460][T11413] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  281.854470][T11413] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000890b
[  281.854476][T11413] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  281.854482][T11413] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  281.854488][T11413] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  281.854494][T11413] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  281.854506][T11413]  </TASK>
[  281.854511][T11413] ERROR: Out of memory at tomoyo_realpath_from_path.
[  282.463511][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  282.464449][T11462] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1551'.
[  282.484949][T11465] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1553'.
[  282.763285][T11474] overlayfs: failed to clone upperpath
[  282.780328][   T67] Bluetooth: hci0: command 0x041b tx timeout
[  282.783112][ T5955] Bluetooth: hci3: command 0x0405 tx timeout
[  282.803497][ T5304] Bluetooth: hci0: unexpected event for opcode 0x2002
[  282.867495][T11478] overlayfs: failed to clone lowerpath
[  283.414339][T11487] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  283.505055][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.769255][T11504] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  283.771654][T11504] overlayfs: missing 'lowerdir'
[  283.952487][T11514] overlayfs: failed to clone upperpath
[  284.063608][ T5297] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  284.213428][ T5297] usb 8-1: Using ep0 maxpacket: 16
[  284.217290][ T5297] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  284.220247][ T5297] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  284.222826][ T5297] usb 8-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  284.225437][ T5297] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.231316][ T5297] usb 8-1: config 0 descriptor??
[  284.533843][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.684199][ T5297] kye 0003:0458:5016.0006: control desc unexpectedly large
[  284.690730][ T5297] input: HID 0458:5016 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:0458:5016.0006/input/input22
[  284.697802][T11531] FAULT_INJECTION: forcing a failure.
[  284.697802][T11531] name failslab, interval 1, probability 0, space 0, times 0
[  284.702140][T11531] CPU: 1 UID: 0 PID: 11531 Comm: syz.0.1574 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  284.702159][T11531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.702168][T11531] Call Trace:
[  284.702174][T11531]  <TASK>
[  284.702180][T11531]  dump_stack_lvl+0x16c/0x1f0
[  284.702204][T11531]  should_fail_ex+0x512/0x640
[  284.702220][T11531]  ? __kmalloc_node_noprof+0xc5/0x500
[  284.702244][T11531]  should_failslab+0xc2/0x120
[  284.702258][T11531]  __kmalloc_node_noprof+0xd8/0x500
[  284.702279][T11531]  ? __vmalloc_node_range_noprof+0x3eb/0x1540
[  284.702300][T11531]  __vmalloc_node_range_noprof+0x3eb/0x1540
[  284.702326][T11531]  ? bpf_prog_calc_tag+0x110/0x700
[  284.702350][T11531]  ? stack_depot_save_flags+0x28/0xa50
[  284.702368][T11531]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  284.702389][T11531]  ? kasan_save_stack+0x42/0x60
[  284.702408][T11531]  ? kasan_save_stack+0x33/0x60
[  284.702425][T11531]  ? kasan_save_track+0x14/0x30
[  284.702443][T11531]  ? __kasan_kmalloc+0xaa/0xb0
[  284.702461][T11531]  ? __kvmalloc_node_noprof+0x279/0x600
[  284.702480][T11531]  ? bpf_prog_calc_tag+0x110/0x700
[  284.702501][T11531]  vmalloc_noprof+0x6b/0x90
[  284.702518][T11531]  ? bpf_prog_calc_tag+0x110/0x700
[  284.702538][T11531]  bpf_prog_calc_tag+0x110/0x700
[  284.702562][T11531]  ? __pfx_bpf_prog_calc_tag+0x10/0x10
[  284.702584][T11531]  ? __sort_r+0x4d/0x660
[  284.702608][T11531]  ? __pfx_cmp_subprogs+0x10/0x10
[  284.702625][T11531]  ? sort+0x97/0xd0
[  284.702642][T11531]  resolve_pseudo_ldimm64+0xd3/0x1a80
[  284.702660][T11531]  ? find_containing_subprog+0x175/0x1d0
[  284.702680][T11531]  ? __pfx_resolve_pseudo_ldimm64+0x10/0x10
[  284.702699][T11531]  ? check_subprogs+0x5e2/0x850
[  284.702722][T11531]  bpf_check+0x6107/0xb460
[  284.702741][T11531]  ? __mutex_trylock_common+0xe9/0x250
[  284.702770][T11531]  ? __pfx_bpf_check+0x10/0x10
[  284.702788][T11531]  ? pcpu_alloc_noprof+0x949/0x1470
[  284.702817][T11531]  ? __lock_acquire+0xaa4/0x1ba0
[  284.702841][T11531]  ? find_held_lock+0x2b/0x80
[  284.702861][T11531]  ? rcu_is_watching+0x12/0xc0
[  284.702878][T11531]  ? ktime_get_with_offset+0x26e/0x3b0
[  284.702899][T11531]  ? __asan_memset+0x23/0x50
[  284.702916][T11531]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  284.702933][T11531]  bpf_prog_load+0xe41/0x2490
[  284.702953][T11531]  ? __pfx_bpf_prog_load+0x10/0x10
[  284.702986][T11531]  ? bpf_lsm_bpf+0x9/0x10
[  284.703006][T11531]  __sys_bpf+0x433c/0x4d80
[  284.703024][T11531]  ? __pfx___sys_bpf+0x10/0x10
[  284.703040][T11531]  ? ksys_write+0x190/0x240
[  284.703063][T11531]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  284.703095][T11531]  ? fput+0x70/0xf0
[  284.703109][T11531]  ? ksys_write+0x1b9/0x240
[  284.703131][T11531]  ? __pfx_ksys_write+0x10/0x10
[  284.703154][T11531]  __ia32_sys_bpf+0x76/0xe0
[  284.703171][T11531]  __do_fast_syscall_32+0x73/0x120
[  284.703194][T11531]  do_fast_syscall_32+0x32/0x80
[  284.703215][T11531]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  284.703234][T11531] RIP: 0023:0xf7fa4579
[  284.703248][T11531] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  284.703264][T11531] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  284.703281][T11531] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800001c0
[  284.703305][T11531] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  284.703315][T11531] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  284.703324][T11531] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  284.703333][T11531] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  284.703352][T11531]  </TASK>
[  284.719166][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.728572][T11531] syz.0.1574: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null)
[  284.825656][ T5297] input: HID 0458:5016 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:0458:5016.0006/input/input23
[  284.832335][T11531] ,cpuset=/,mems_allowed=0-1
[  284.836934][ T5297] kye 0003:0458:5016.0006: input,hiddev0,hidraw1: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.3-1/input0
[  284.838382][T11531] CPU: 0 UID: 0 PID: 11531 Comm: syz.0.1574 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  284.838397][T11531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.838403][T11531] Call Trace:
[  284.838408][T11531]  <TASK>
[  284.838412][T11531]  dump_stack_lvl+0x16c/0x1f0
[  284.838430][T11531]  warn_alloc+0x248/0x3a0
[  284.838446][T11531]  ? __pfx_warn_alloc+0x10/0x10
[  284.838459][T11531]  ? dump_stack_lvl+0x1a1/0x1f0
[  284.838477][T11531]  ? rcu_is_watching+0x12/0xc0
[  284.838490][T11531]  ? __kmalloc_node_noprof+0x23b/0x500
[  284.838509][T11531]  __vmalloc_node_range_noprof+0x1110/0x1540
[  284.838526][T11531]  ? bpf_prog_calc_tag+0x110/0x700
[  284.838544][T11531]  ? stack_depot_save_flags+0x28/0xa50
[  284.838556][T11531]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  284.838571][T11531]  ? kasan_save_stack+0x42/0x60
[  284.838584][T11531]  ? kasan_save_stack+0x33/0x60
[  284.838597][T11531]  ? kasan_save_track+0x14/0x30
[  284.838610][T11531]  ? __kasan_kmalloc+0xaa/0xb0
[  284.838623][T11531]  ? __kvmalloc_node_noprof+0x279/0x600
[  284.838636][T11531]  ? bpf_prog_calc_tag+0x110/0x700
[  284.838652][T11531]  vmalloc_noprof+0x6b/0x90
[  284.838664][T11531]  ? bpf_prog_calc_tag+0x110/0x700
[  284.838679][T11531]  bpf_prog_calc_tag+0x110/0x700
[  284.838696][T11531]  ? __pfx_bpf_prog_calc_tag+0x10/0x10
[  284.838712][T11531]  ? __sort_r+0x4d/0x660
[  284.838729][T11531]  ? __pfx_cmp_subprogs+0x10/0x10
[  284.838740][T11531]  ? sort+0x97/0xd0
[  284.838752][T11531]  resolve_pseudo_ldimm64+0xd3/0x1a80
[  284.838765][T11531]  ? find_containing_subprog+0x175/0x1d0
[  284.838779][T11531]  ? __pfx_resolve_pseudo_ldimm64+0x10/0x10
[  284.838791][T11531]  ? check_subprogs+0x5e2/0x850
[  284.838807][T11531]  bpf_check+0x6107/0xb460
[  284.838821][T11531]  ? __mutex_trylock_common+0xe9/0x250
[  284.838840][T11531]  ? __pfx_bpf_check+0x10/0x10
[  284.838853][T11531]  ? pcpu_alloc_noprof+0x949/0x1470
[  284.838873][T11531]  ? __lock_acquire+0xaa4/0x1ba0
[  284.838888][T11531]  ? find_held_lock+0x2b/0x80
[  284.838902][T11531]  ? rcu_is_watching+0x12/0xc0
[  284.838913][T11531]  ? ktime_get_with_offset+0x26e/0x3b0
[  284.838929][T11531]  ? __asan_memset+0x23/0x50
[  284.838942][T11531]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  284.838954][T11531]  bpf_prog_load+0xe41/0x2490
[  284.838967][T11531]  ? __pfx_bpf_prog_load+0x10/0x10
[  284.838988][T11531]  ? bpf_lsm_bpf+0x9/0x10
[  284.839003][T11531]  __sys_bpf+0x433c/0x4d80
[  284.839015][T11531]  ? __pfx___sys_bpf+0x10/0x10
[  284.839026][T11531]  ? ksys_write+0x190/0x240
[  284.839042][T11531]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  284.839064][T11531]  ? fput+0x70/0xf0
[  284.839073][T11531]  ? ksys_write+0x1b9/0x240
[  284.839086][T11531]  ? __pfx_ksys_write+0x10/0x10
[  284.839101][T11531]  __ia32_sys_bpf+0x76/0xe0
[  284.839114][T11531]  __do_fast_syscall_32+0x73/0x120
[  284.839133][T11531]  do_fast_syscall_32+0x32/0x80
[  284.839147][T11531]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  284.839159][T11531] RIP: 0023:0xf7fa4579
[  284.839167][T11531] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  284.839177][T11531] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  284.839187][T11531] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800001c0
[  284.839193][T11531] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  284.839199][T11531] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  284.839204][T11531] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  284.839210][T11531] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  284.839222][T11531]  </TASK>
[  284.839226][T11531] Mem-Info:
[  284.854862][T11509] FAULT_INJECTION: forcing a failure.
[  284.854862][T11509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  284.862847][T11531] active_anon:3575 inactive_anon:14468 isolated_anon:0
[  284.862847][T11531]  active_file:1312 inactive_file:15445 isolated_file:0
[  284.862847][T11531]  unevictable:1768 dirty:640 writeback:0
[  284.862847][T11531]  slab_reclaimable:5997 slab_unreclaimable:74476
[  284.862847][T11531]  mapped:25911 shmem:10242 pagetables:1033
[  284.862847][T11531]  sec_pagetables:315 bounce:0
[  284.862847][T11531]  kernel_misc_reclaimable:0
[  284.862847][T11531]  free:37586 free_pcp:2968 free_cma:0
[  284.871650][T11509] CPU: 2 UID: 0 PID: 11509 Comm: syz.3.1565 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  284.871673][T11509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.871683][T11509] Call Trace:
[  284.871690][T11509]  <TASK>
[  284.871696][T11509]  dump_stack_lvl+0x16c/0x1f0
[  284.871723][T11509]  should_fail_ex+0x512/0x640
[  284.871747][T11509]  _copy_to_user+0x32/0xd0
[  284.871771][T11509]  simple_read_from_buffer+0xcb/0x170
[  284.871796][T11509]  proc_fail_nth_read+0x197/0x270
[  284.871819][T11509]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  284.871843][T11509]  ? rw_verify_area+0xcf/0x680
[  284.871862][T11509]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  284.871884][T11509]  vfs_read+0x1de/0xc70
[  284.871908][T11509]  ? __pfx___mutex_lock+0x10/0x10
[  284.871931][T11509]  ? __pfx_vfs_read+0x10/0x10
[  284.871959][T11509]  ? __fget_files+0x20e/0x3c0
[  284.871990][T11509]  ksys_read+0x12a/0x240
[  284.872012][T11509]  ? __pfx_ksys_read+0x10/0x10
[  284.872032][T11509]  ? evdev_ioctl_compat+0x136/0x1a0
[  284.872061][T11509]  ? rcu_is_watching+0x12/0xc0
[  284.872086][T11509]  __do_fast_syscall_32+0x73/0x120
[  284.872113][T11509]  do_fast_syscall_32+0x32/0x80
[  284.872135][T11509]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  284.872155][T11509] RIP: 0023:0xf7fd2579
[  284.872168][T11509] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  284.872191][T11509] RSP: 002b:00000000f50f6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  284.872207][T11509] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50f6620
[  284.872218][T11509] RDX: 000000000000000f RSI: 00000000f745cff4 RDI: 0000000000000000
[  284.872227][T11509] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  284.872236][T11509] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  284.872246][T11509] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  284.872268][T11509]  </TASK>
[  285.033397][T11531] Node 0 active_anon:1144kB inactive_anon:4kB active_file:844kB inactive_file:96kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4408kB dirty:68kB writeback:0kB shmem:3752kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9264kB pagetables:1100kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  285.042114][T11531] Node 1 active_anon:9356kB inactive_anon:57868kB active_file:4404kB inactive_file:61684kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:94036kB dirty:2492kB writeback:0kB shmem:33316kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3780kB pagetables:3032kB sec_pagetables:104kB all_unreclaimable? no Balloon:0kB
[  285.051392][T11531] Node 0 DMA free:2616kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:52kB local_pcp:0kB free_cma:0kB
[  285.059225][T11531] lowmem_reserve[]: 0 290 290 290 290
[  285.060693][T11531] Node 0 DMA32 free:17940kB boost:0kB min:13336kB low:16668kB high:20000kB reserved_highatomic:4096KB active_anon:1144kB inactive_anon:0kB active_file:844kB inactive_file:96kB unevictable:3536kB writepending:68kB present:1032196kB managed:297492kB mlocked:0kB bounce:0kB free_pcp:2180kB local_pcp:1172kB free_cma:0kB
[  285.067291][ T8634] usb 8-1: USB disconnect, device number 28
[  285.068823][T11531] lowmem_reserve[]: 0 0 0 0 0
[  285.072414][T11531] Node 1 DMA32 free:137328kB boost:0kB min:47148kB low:58932kB high:70716kB reserved_highatomic:0KB active_anon:4656kB inactive_anon:57868kB active_file:4404kB inactive_file:61684kB unevictable:3536kB writepending:2492kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:8732kB local_pcp:1500kB free_cma:0kB
[  285.090267][T11531] lowmem_reserve[]: 0 0 0 0 0
[  285.092006][T11531] Node 0 DMA: 58*4kB (UM) 18*8kB (UM) 6*16kB (UM) 9*32kB (UM) 3*64kB (UM) 1*128kB (M) 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2616kB
[  285.101622][T11531] Node 0 DMA32: 229*4kB (UMEH) 127*8kB (UMEH) 59*16kB (UMEH) 36*32kB (UMEH) 43*64kB (UMEH) 25*128kB (UMEH) 5*256kB (UM) 7*512kB (UME) 1*1024kB (U) 1*2048kB (M) 0*4096kB = 17916kB
[  285.107504][T11531] Node 1 DMA32: 793*4kB (UME) 778*8kB (UME) 622*16kB (UME) 331*32kB (UME) 310*64kB (UME) 97*128kB (UME) 27*256kB (UME) 16*512kB (UM) 7*1024kB (ME) 7*2048kB (UM) 10*4096kB (UM) = 139764kB
[  285.112595][T11531] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  285.116000][T11531] Node 0 hugepages_total=92 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  285.118562][T11531] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  285.121281][T11531] Node 1 hugepages_total=4294967208 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  285.124790][T11531] 24905 total pagecache pages
[  285.126147][T11531] 181 pages in swap cache
[  285.127478][T11531] Free swap  = 121032kB
[  285.128636][T11531] Total swap = 124996kB
[  285.129968][T11531] 524155 pages RAM
[  285.131420][T11531] 0 pages HighMem/MovableOnly
[  285.133042][T11531] 208871 pages reserved
[  285.134971][T11531] 0 pages cma reserved
[  285.167459][T11542] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1578'.
[  285.268516][T11548] overlayfs: failed to clone upperpath
[  285.372094][T11546] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1580'.
[  285.439101][T11540] block device autoloading is deprecated and will be removed.
[  285.443202][T11540] syz.3.1575: attempt to access beyond end of device
[  285.443202][T11540] md2: rw=2048, sector=3656, nr_sectors = 8 limit=0
[  285.573677][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  285.818032][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  285.993417][    T9] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  286.155156][    T9] usb 5-1: config 0 has no interfaces?
[  286.164311][    T9] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  286.167367][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.170344][    T9] usb 5-1: Product: syz
[  286.171786][    T9] usb 5-1: Manufacturer: syz
[  286.173213][    T9] usb 5-1: SerialNumber: syz
[  286.181158][    T9] usb 5-1: config 0 descriptor??
[  286.191799][T11576] overlayfs: failed to clone upperpath
[  286.391784][    T9] usb 5-1: USB disconnect, device number 32
[  286.544733][T11584] fuse: Bad value for 'fd'
[  286.617365][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.658757][T11587] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1591'.
[  286.661547][T11587] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1591'.
[  287.401846][T11612] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.405691][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.409396][T11612] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.413176][T11612] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.416351][T11612] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.419342][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.443433][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.446811][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.449869][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.988637][T11623] 9pnet_fd: Insufficient options for proto=fd
[  288.214896][T11637] FAULT_INJECTION: forcing a failure.
[  288.214896][T11637] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.218395][T11637] CPU: 3 UID: 0 PID: 11637 Comm: syz.3.1607 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  288.218408][T11637] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  288.218415][T11637] Call Trace:
[  288.218419][T11637]  <TASK>
[  288.218423][T11637]  dump_stack_lvl+0x16c/0x1f0
[  288.218440][T11637]  should_fail_ex+0x512/0x640
[  288.218454][T11637]  _copy_from_user+0x2e/0xd0
[  288.218468][T11637]  get_compat_msghdr+0xa7/0x170
[  288.218481][T11637]  ? __pfx_get_compat_msghdr+0x10/0x10
[  288.218497][T11637]  ___sys_sendmsg+0x1ae/0x1d0
[  288.218512][T11637]  ? __pfx____sys_sendmsg+0x10/0x10
[  288.218540][T11637]  __sys_sendmsg+0x16d/0x220
[  288.218553][T11637]  ? __pfx___sys_sendmsg+0x10/0x10
[  288.218571][T11637]  ? rcu_is_watching+0x12/0xc0
[  288.218586][T11637]  __do_fast_syscall_32+0x73/0x120
[  288.218601][T11637]  do_fast_syscall_32+0x32/0x80
[  288.218616][T11637]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  288.218628][T11637] RIP: 0023:0xf7fd2579
[  288.218636][T11637] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  288.218646][T11637] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  288.218656][T11637] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  288.218662][T11637] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  288.218668][T11637] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  288.218673][T11637] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  288.218679][T11637] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  288.218692][T11637]  </TASK>
[  288.556758][T11654] af_packet: tpacket_rcv: packet too big, clamped from 124 to 4294967272. macoff=96
[  288.667198][T11658] overlayfs: failed to clone lowerpath
[  288.796648][   T40] kauditd_printk_skb: 26 callbacks suppressed
[  288.796659][   T40] audit: type=1326 audit(2000000017.179:2231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.805717][   T40] audit: type=1326 audit(2000000017.179:2232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.813120][   T40] audit: type=1326 audit(2000000017.179:2233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.819214][   T40] audit: type=1326 audit(2000000017.179:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.826014][   T40] audit: type=1326 audit(2000000017.179:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=39 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.834325][   T40] audit: type=1326 audit(2000000017.179:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.842180][   T40] audit: type=1326 audit(2000000017.179:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.851211][   T40] audit: type=1326 audit(2000000017.179:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.858586][   T40] audit: type=1326 audit(2000000017.179:2239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  288.865414][   T40] audit: type=1326 audit(2000000017.179:2240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.5.1617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  289.616788][T11668] FAULT_INJECTION: forcing a failure.
[  289.616788][T11668] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  289.622385][T11668] CPU: 2 UID: 0 PID: 11668 Comm: syz.0.1619 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  289.622399][T11668] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.622406][T11668] Call Trace:
[  289.622410][T11668]  <TASK>
[  289.622415][T11668]  dump_stack_lvl+0x16c/0x1f0
[  289.622432][T11668]  should_fail_ex+0x512/0x640
[  289.622446][T11668]  should_fail_alloc_page+0xe7/0x130
[  289.622457][T11668]  prepare_alloc_pages+0x3c2/0x610
[  289.622470][T11668]  ? is_bpf_text_address+0x8a/0x1a0
[  289.622481][T11668]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  289.622501][T11668]  ? __lock_acquire+0x5ca/0x1ba0
[  289.622513][T11668]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  289.622533][T11668]  ? is_bpf_text_address+0x8a/0x1a0
[  289.622542][T11668]  ? bpf_ksym_find+0x124/0x1c0
[  289.622555][T11668]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  289.622573][T11668]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  289.622585][T11668]  ? policy_nodemask+0xea/0x4e0
[  289.622602][T11668]  alloc_pages_mpol+0x1fb/0x550
[  289.622616][T11668]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  289.622625][T11668]  ? __lock_acquire+0x5ca/0x1ba0
[  289.622637][T11668]  folio_alloc_mpol_noprof+0x36/0x2f0
[  289.622649][T11668]  vma_alloc_folio_noprof+0xed/0x1e0
[  289.622660][T11668]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  289.622675][T11668]  do_pte_missing+0x223d/0x3fb0
[  289.622694][T11668]  __handle_mm_fault+0x103d/0x2a40
[  289.622712][T11668]  ? __pfx___handle_mm_fault+0x10/0x10
[  289.622733][T11668]  ? find_vma+0xbf/0x140
[  289.622743][T11668]  ? __pfx_find_vma+0x10/0x10
[  289.622753][T11668]  ? __sigqueue_free+0xba/0x2a0
[  289.622767][T11668]  handle_mm_fault+0x3fe/0xad0
[  289.622789][T11668]  do_user_addr_fault+0x7a6/0x1370
[  289.622809][T11668]  ? rcu_is_watching+0x12/0xc0
[  289.622828][T11668]  exc_page_fault+0x5c/0xc0
[  289.622848][T11668]  asm_exc_page_fault+0x26/0x30
[  289.622862][T11668] RIP: 0010:rep_stos_alternative+0x40/0x80
[  289.622877][T11668] Code: c9 75 f6 c3 cc cc cc cc 48 89 07 48 83 c7 08 83 e9 08 74 ef 83 f9 08 73 ef eb de 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 <48> 89 07 48 89 47 08 48 89 47 10 48 89 47 18 48 89 47 20 48 89 47
[  289.622891][T11668] RSP: 0018:ffffc9000cc0faf8 EFLAGS: 00050246
[  289.622903][T11668] RAX: 0000000000000000 RBX: 0000000000000040 RCX: 0000000000000040
[  289.622913][T11668] RDX: ffff8880226f2440 RSI: ffffffff81603381 RDI: 00000000f50c3bc0
[  289.622924][T11668] RBP: 0000000000000000 R08: 1525ca5b0a5321be R09: 0000000000000001
[  289.622934][T11668] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000f50c39c0
[  289.622943][T11668] R13: 00000000f50c3950 R14: ffff8880226f3dc0 R15: 00007ffffffff000
[  289.622961][T11668]  ? copy_fpstate_to_sigframe+0x161/0xb10
[  289.622981][T11668]  copy_fpstate_to_sigframe+0x17b/0xb10
[  289.623003][T11668]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  289.623023][T11668]  ? __sigqueue_free+0xba/0x2a0
[  289.623037][T11668]  ? collect_signal+0x263/0x540
[  289.623055][T11668]  get_sigframe+0x4a8/0x9c0
[  289.623074][T11668]  ? __pfx_get_sigframe+0x10/0x10
[  289.623089][T11668]  ? _raw_spin_unlock_irq+0x23/0x50
[  289.623101][T11668]  ? siginfo_layout+0x1d2/0x290
[  289.623115][T11668]  ia32_setup_rt_frame+0xe3/0xb30
[  289.623133][T11668]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[  289.623146][T11668]  ? do_sys_openat2+0x157/0x1d0
[  289.623159][T11668]  arch_do_signal_or_restart+0x477/0x7d0
[  289.623175][T11668]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  289.623197][T11668]  syscall_exit_to_user_mode+0x150/0x2a0
[  289.623212][T11668]  __do_fast_syscall_32+0x80/0x120
[  289.623227][T11668]  do_fast_syscall_32+0x32/0x80
[  289.623242][T11668]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.623254][T11668] RIP: 0023:0xf7fa4579
[  289.623262][T11668] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.623272][T11668] RSP: 002b:00000000f50c4460 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  289.623281][T11668] RAX: 0000000000000006 RBX: 00000000ffffff9c RCX: 00000000f72b4df8
[  289.623287][T11668] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 00000000f742cff4
[  289.623308][T11668] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  289.623314][T11668] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  289.623320][T11668] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.623333][T11668]  </TASK>
[  289.942036][T11671] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1620'.
[  290.681867][T11683] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  290.724277][T11687] FAULT_INJECTION: forcing a failure.
[  290.724277][T11687] name failslab, interval 1, probability 0, space 0, times 0
[  290.729266][T11687] CPU: 2 UID: 0 PID: 11687 Comm: syz.5.1624 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  290.729281][T11687] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  290.729309][T11687] Call Trace:
[  290.729316][T11687]  <TASK>
[  290.729322][T11687]  dump_stack_lvl+0x16c/0x1f0
[  290.729341][T11687]  should_fail_ex+0x512/0x640
[  290.729356][T11687]  should_failslab+0xc2/0x120
[  290.729367][T11687]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  290.729382][T11687]  ? __alloc_skb+0x2b2/0x380
[  290.729397][T11687]  __alloc_skb+0x2b2/0x380
[  290.729409][T11687]  ? __pfx___alloc_skb+0x10/0x10
[  290.729420][T11687]  ? mark_held_locks+0x49/0x80
[  290.729437][T11687]  ? __lock_acquire+0x5ca/0x1ba0
[  290.729448][T11687]  xfrm_send_policy_notify+0x217/0x1a30
[  290.729462][T11687]  ? __pfx_xfrm_send_policy_notify+0x10/0x10
[  290.729475][T11687]  ? __local_bh_enable_ip+0xa4/0x120
[  290.729489][T11687]  ? __pfx_xfrm_send_policy_notify+0x10/0x10
[  290.729500][T11687]  km_policy_notify+0xb0/0x240
[  290.729515][T11687]  pfkey_spdadd+0x118e/0x15d0
[  290.729529][T11687]  ? __pfx_pfkey_spdadd+0x10/0x10
[  290.729539][T11687]  ? kfree_skbmem+0x1a4/0x1f0
[  290.729549][T11687]  ? sk_skb_reason_drop+0x136/0x1a0
[  290.729563][T11687]  ? pfkey_broadcast+0x2af/0x460
[  290.729575][T11687]  ? __pfx_pfkey_spdadd+0x10/0x10
[  290.729586][T11687]  pfkey_process+0x6d9/0x840
[  290.729599][T11687]  ? __pfx_pfkey_process+0x10/0x10
[  290.729610][T11687]  ? trace_contention_end+0xdd/0x130
[  290.729631][T11687]  ? __pfx_aa_sk_perm+0x10/0x10
[  290.729644][T11687]  pfkey_sendmsg+0x435/0x850
[  290.729658][T11687]  ____sys_sendmsg+0xa95/0xc70
[  290.729676][T11687]  ? __pfx_____sys_sendmsg+0x10/0x10
[  290.729691][T11687]  ? get_compat_msghdr+0x11a/0x170
[  290.729706][T11687]  ? __pfx__kstrtoull+0x10/0x10
[  290.729724][T11687]  ___sys_sendmsg+0x134/0x1d0
[  290.729738][T11687]  ? __pfx____sys_sendmsg+0x10/0x10
[  290.729757][T11687]  ? find_held_lock+0x2b/0x80
[  290.729778][T11687]  __sys_sendmmsg+0x2f9/0x420
[  290.729793][T11687]  ? __pfx___sys_sendmmsg+0x10/0x10
[  290.729810][T11687]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  290.729831][T11687]  ? fput+0x70/0xf0
[  290.729841][T11687]  ? ksys_write+0x1b9/0x240
[  290.729854][T11687]  ? __pfx_ksys_write+0x10/0x10
[  290.729870][T11687]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  290.729883][T11687]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  290.729899][T11687]  __do_fast_syscall_32+0x73/0x120
[  290.729914][T11687]  do_fast_syscall_32+0x32/0x80
[  290.729929][T11687]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  290.729942][T11687] RIP: 0023:0xf73ce579
[  290.729951][T11687] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  290.729961][T11687] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  290.729971][T11687] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  290.729977][T11687] RDX: 00000000000003ef RSI: 0000000000000000 RDI: 0000000000000000
[  290.729983][T11687] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  290.729989][T11687] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  290.729994][T11687] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  290.730007][T11687]  </TASK>
[  291.014920][T11691] overlayfs: failed to clone lowerpath
[  291.092717][T11694] netfs: Couldn't get user pages (rc=-14)
[  291.474575][T11704] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1631'.
[  291.762055][T11713] overlayfs: conflicting lowerdir path
[  291.895187][ T5297] net_ratelimit: 63 callbacks suppressed
[  291.895205][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.903586][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  292.075595][T11715] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  292.077799][T11715] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  292.080576][T11715] vhci_hcd vhci_hcd.0: Device attached
[  292.263526][ T8634] vhci_hcd: vhci_device speed not set
[  292.584461][ T8634] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  292.586473][   T10] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  292.706954][T11725] netfs: Couldn't get user pages (rc=-14)
[  292.823448][   T10] usb 5-1: Using ep0 maxpacket: 8
[  292.828910][   T10] usb 5-1: config 0 has no interfaces?
[  292.834130][   T10] usb 5-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1
[  292.837295][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.839658][   T10] usb 5-1: Product: syz
[  292.840847][   T10] usb 5-1: Manufacturer: syz
[  292.842210][   T10] usb 5-1: SerialNumber: syz
[  292.848221][   T10] usb 5-1: config 0 descriptor??
[  292.934339][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.089728][   T10] usb 5-1: USB disconnect, device number 33
[  293.133514][ T8634] vhci_hcd: vhci_device speed not set
[  293.166155][T11716] vhci_hcd: connection reset by peer
[  293.184866][ T1136] vhci_hcd: stop threads
[  293.189495][ T1136] vhci_hcd: release socket
[  293.194741][ T1136] vhci_hcd: disconnect device
[  293.257768][ T8634] usb 37-1: device descriptor read/64, error -71
[  293.262210][T11746] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1643'.
[  293.743773][ T8634] vhci_hcd: vhci_device speed not set
[  293.956655][T11763] overlayfs: failed to clone upperpath
[  293.985367][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  294.160524][T11767] netfs: Couldn't get user pages (rc=-14)
[  294.531508][T11784] overlayfs: failed to resolve './file1': -2
[  294.541848][T11778] overlayfs: failed to clone upperpath
[  294.646524][T11793] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1652'.
[  294.655029][T11793] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  294.658933][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.016464][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.114611][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.623740][T11812] FAULT_INJECTION: forcing a failure.
[  295.623740][T11812] name failslab, interval 1, probability 0, space 0, times 0
[  295.631989][T11812] CPU: 1 UID: 0 PID: 11812 Comm: syz.0.1657 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  295.632005][T11812] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.632012][T11812] Call Trace:
[  295.632016][T11812]  <TASK>
[  295.632020][T11812]  dump_stack_lvl+0x16c/0x1f0
[  295.632039][T11812]  should_fail_ex+0x512/0x640
[  295.632051][T11812]  ? __kmalloc_noprof+0xbf/0x510
[  295.632068][T11812]  ? hci_alloc_dev_priv+0x1d/0x2820
[  295.632078][T11812]  should_failslab+0xc2/0x120
[  295.632089][T11812]  __kmalloc_noprof+0xd2/0x510
[  295.632103][T11812]  ? hook_file_ioctl_common+0x145/0x410
[  295.632115][T11812]  ? __pfx___might_resched+0x10/0x10
[  295.632131][T11812]  hci_alloc_dev_priv+0x1d/0x2820
[  295.632142][T11812]  hci_uart_tty_ioctl+0x38f/0xc30
[  295.632155][T11812]  ? __pfx_hci_uart_tty_ioctl+0x10/0x10
[  295.632164][T11812]  tty_compat_ioctl+0x381/0x4d0
[  295.632175][T11812]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  295.632184][T11812]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  295.632198][T11812]  __do_fast_syscall_32+0x73/0x120
[  295.632214][T11812]  do_fast_syscall_32+0x32/0x80
[  295.632229][T11812]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  295.632241][T11812] RIP: 0023:0xf7fa4579
[  295.632250][T11812] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  295.632260][T11812] RSP: 002b:00000000f508455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  295.632270][T11812] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000400455c8
[  295.632276][T11812] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  295.632282][T11812] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  295.632288][T11812] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  295.632293][T11812] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  295.632306][T11812]  </TASK>
[  295.632311][T11812] Bluetooth: Can't allocate HCI device
[  295.922392][T11827] overlayfs: failed to resolve './file1': -2
[  295.955112][T11831] i2c i2c-1: Invalid block write size 34
[  295.961291][T11831] input: syz0 as /devices/virtual/input/input24
[  295.971335][T11831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1664'.
[  296.093412][   T10] usb 5-1: new low-speed USB device number 34 using dummy_hcd
[  296.142586][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.200300][T11834] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1663'.
[  296.233472][   T10] usb 5-1: device descriptor read/64, error -71
[  296.264067][T11840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.284227][T11840] overlayfs: conflicting lowerdir path
[  296.493426][   T10] usb 5-1: new low-speed USB device number 35 using dummy_hcd
[  296.643448][   T10] usb 5-1: device descriptor read/64, error -71
[  296.764052][   T10] usb usb5-port1: attempt power cycle
[  297.123577][   T10] usb 5-1: new low-speed USB device number 36 using dummy_hcd
[  297.260409][   T29] net_ratelimit: 5 callbacks suppressed
[  297.260422][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  297.273983][   T10] usb 5-1: device descriptor read/8, error -71
[  297.417053][T11862] bridge0: entered promiscuous mode
[  297.433167][T11862] syz.3.1671: attempt to access beyond end of device
[  297.433167][T11862] loop3: rw=6144, sector=128, nr_sectors = 8 limit=0
[  297.437082][T11862] gfs2: error -5 reading superblock
[  297.505515][T11864] overlayfs: failed to resolve './file1': -2
[  297.533496][   T10] usb 5-1: new low-speed USB device number 37 using dummy_hcd
[  297.554248][   T10] usb 5-1: device descriptor read/8, error -71
[  297.675494][   T10] usb usb5-port1: unable to enumerate USB device
[  298.134258][ T6008] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.473852][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.693571][T11881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.696035][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.698656][T11881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.702824][  T104] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.785722][T11881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.788047][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.799954][T11881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.947573][T11887] ubi31: attaching mtd0
[  298.951849][T11887] ubi31: scanning is finished
[  298.953286][T11887] ubi31: empty MTD device detected
[  299.057227][T11887] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  299.059498][T11887] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  299.061596][T11887] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  299.064441][T11887] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  299.066597][T11887] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  299.068562][T11887] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  299.070882][T11887] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2046242968
[  299.075870][T11887] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  299.080712][T11892] ubi31: background thread "ubi_bgt31d" started, PID 11892
[  299.379214][T11902] overlayfs: conflicting lowerdir path
[  300.319303][T11915] lo speed is unknown, defaulting to 1000
[  300.322204][T11915] lo speed is unknown, defaulting to 1000
[  300.357621][T11915] lo speed is unknown, defaulting to 1000
[  300.363193][T11915] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  300.421906][T11915] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  300.472870][T11915] lo speed is unknown, defaulting to 1000
[  300.486425][T11915] lo speed is unknown, defaulting to 1000
[  300.492274][T11915] lo speed is unknown, defaulting to 1000
[  300.500213][T11915] lo speed is unknown, defaulting to 1000
[  300.502676][T11915] lo speed is unknown, defaulting to 1000
[  300.505088][T11915] lo speed is unknown, defaulting to 1000
[  300.507429][T11915] lo speed is unknown, defaulting to 1000
[  300.509828][T11915] lo speed is unknown, defaulting to 1000
[  302.149688][T11947] x_tables: duplicate underflow at hook 2
[  302.365887][T11945] net_ratelimit: 12 callbacks suppressed
[  302.365898][T11945] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  302.613695][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  302.971108][T11956] FAULT_INJECTION: forcing a failure.
[  302.971108][T11956] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  303.060510][T11956] CPU: 1 UID: 0 PID: 11956 Comm: syz.3.1698 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  303.060537][T11956] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  303.060544][T11956] Call Trace:
[  303.060548][T11956]  <TASK>
[  303.060553][T11956]  dump_stack_lvl+0x16c/0x1f0
[  303.060590][T11956]  should_fail_ex+0x512/0x640
[  303.060611][T11956]  _copy_to_user+0x32/0xd0
[  303.060625][T11956]  inet_gifconf+0x2bc/0x5b0
[  303.060641][T11956]  ? __pfx_inet_gifconf+0x10/0x10
[  303.060654][T11956]  ? __might_fault+0xe3/0x190
[  303.060676][T11956]  dev_ifconf+0x1f7/0x390
[  303.060689][T11956]  ? __pfx_dev_ifconf+0x10/0x10
[  303.060701][T11956]  ? tomoyo_path_number_perm+0x18d/0x580
[  303.060713][T11956]  ? finish_task_switch.isra.0+0x204/0xc10
[  303.060730][T11956]  sock_ioctl+0x388/0x6b0
[  303.060741][T11956]  ? __pfx_sock_ioctl+0x10/0x10
[  303.060749][T11956]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  303.060762][T11956]  ? unix_ioctl+0xf0/0x5e0
[  303.060777][T11956]  ? __pfx_unix_ioctl+0x10/0x10
[  303.060794][T11956]  compat_sock_ioctl+0x4e3/0x7c0
[  303.060805][T11956]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  303.060814][T11956]  ? hook_file_ioctl_common+0x145/0x410
[  303.060829][T11956]  ? __fget_files+0x20e/0x3c0
[  303.060846][T11956]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  303.060857][T11956]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  303.060871][T11956]  __do_fast_syscall_32+0x73/0x120
[  303.060886][T11956]  do_fast_syscall_32+0x32/0x80
[  303.060901][T11956]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.060914][T11956] RIP: 0023:0xf7fd2579
[  303.060926][T11956] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  303.060936][T11956] RSP: 002b:00000000f50b455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  303.060946][T11956] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008912
[  303.060952][T11956] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  303.060958][T11956] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  303.060964][T11956] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  303.060970][T11956] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  303.060983][T11956]  </TASK>
[  303.398869][T11963] capability: warning: `syz.5.1700' uses 32-bit capabilities (legacy support in use)
[  303.500319][T11974] FAULT_INJECTION: forcing a failure.
[  303.500319][T11974] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  303.504067][T11974] CPU: 2 UID: 0 PID: 11974 Comm: syz.5.1704 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  303.504083][T11974] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  303.504089][T11974] Call Trace:
[  303.504094][T11974]  <TASK>
[  303.504098][T11974]  dump_stack_lvl+0x16c/0x1f0
[  303.504116][T11974]  should_fail_ex+0x512/0x640
[  303.504131][T11974]  _copy_from_user+0x2e/0xd0
[  303.504144][T11974]  ucma_write+0x128/0x330
[  303.504160][T11974]  ? __pfx_ucma_write+0x10/0x10
[  303.504175][T11974]  ? bpf_lsm_file_permission+0x9/0x10
[  303.504189][T11974]  ? security_file_permission+0x71/0x210
[  303.504203][T11974]  ? rw_verify_area+0xcf/0x680
[  303.504217][T11974]  vfs_write+0x25c/0x1180
[  303.504229][T11974]  ? __pfx_ucma_write+0x10/0x10
[  303.504247][T11974]  ? __pfx_vfs_write+0x10/0x10
[  303.504259][T11974]  ? find_held_lock+0x2b/0x80
[  303.504272][T11974]  ? __fget_files+0x204/0x3c0
[  303.504289][T11974]  ? __fget_files+0x20e/0x3c0
[  303.504306][T11974]  ksys_write+0x205/0x240
[  303.504320][T11974]  ? __pfx_ksys_write+0x10/0x10
[  303.504334][T11974]  ? rcu_is_watching+0x12/0xc0
[  303.504348][T11974]  __do_fast_syscall_32+0x73/0x120
[  303.504364][T11974]  do_fast_syscall_32+0x32/0x80
[  303.504379][T11974]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.504391][T11974] RIP: 0023:0xf73ce579
[  303.504400][T11974] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  303.504409][T11974] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  303.504419][T11974] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800000c0
[  303.504426][T11974] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[  303.504432][T11974] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  303.504437][T11974] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  303.504443][T11974] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  303.504455][T11974]  </TASK>
[  303.506172][T11958] netlink: 'syz.2.1699': attribute type 10 has an invalid length.
[  303.567191][T11958] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1699'.
[  303.580081][T11958] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  303.583860][T11958] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  303.586460][T11958] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  303.588976][T11958] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  303.621680][T11958] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  303.656877][ T5297] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.700066][T11995] overlayfs: failed to resolve './file0': -2
[  303.821435][T12006] 9pnet_fd: Insufficient options for proto=fd
[  303.858928][T12010] FAULT_INJECTION: forcing a failure.
[  303.858928][T12010] name failslab, interval 1, probability 0, space 0, times 0
[  303.864445][T12010] CPU: 2 UID: 0 PID: 12010 Comm: syz.3.1713 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  303.864470][T12010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  303.864481][T12010] Call Trace:
[  303.864488][T12010]  <TASK>
[  303.864495][T12010]  dump_stack_lvl+0x16c/0x1f0
[  303.864523][T12010]  should_fail_ex+0x512/0x640
[  303.864542][T12010]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  303.864566][T12010]  should_failslab+0xc2/0x120
[  303.864583][T12010]  __kmalloc_cache_noprof+0x6a/0x3e0
[  303.864603][T12010]  ? get_mm_exe_file+0x8a/0x1a0
[  303.864626][T12010]  ? landlock_init_hierarchy_log+0xa7/0x870
[  303.864652][T12010]  landlock_init_hierarchy_log+0xa7/0x870
[  303.864678][T12010]  landlock_merge_ruleset+0x6e1/0x870
[  303.864697][T12010]  ? prepare_creds+0x583/0x7d0
[  303.864714][T12010]  __do_sys_landlock_restrict_self+0x2a2/0x910
[  303.864743][T12010]  __do_fast_syscall_32+0x73/0x120
[  303.864769][T12010]  do_fast_syscall_32+0x32/0x80
[  303.864793][T12010]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.864814][T12010] RIP: 0023:0xf7fd2579
[  303.864828][T12010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  303.864844][T12010] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 00000000000001be
[  303.864861][T12010] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  303.864872][T12010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  303.864881][T12010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  303.864890][T12010] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  303.864900][T12010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  303.864914][T12012] netlink: 'syz.0.1714': attribute type 8 has an invalid length.
[  303.864922][T12010]  </TASK>
[  303.865288][T12010] ------------[ cut here ]------------
[  303.926210][T12010] WARNING: CPU: 2 PID: 12010 at security/landlock/domain.h:133 free_ruleset+0x226/0x270
[  303.929235][T12010] Modules linked in:
[  303.931003][T12010] CPU: 2 UID: 0 PID: 12010 Comm: syz.3.1713 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  303.935056][T12010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  303.938118][T12010] RIP: 0010:free_ruleset+0x226/0x270
[  303.940216][T12010] Code: 84 61 ff ff ff 48 89 eb e9 12 ff ff ff e8 92 d5 2c fd be 03 00 00 00 4c 89 f7 e8 a5 f7 3e 00 e9 42 ff ff ff e8 7b d5 2c fd 90 <0f> 0b 90 eb af e8 40 46 91 fd e9 4a fe ff ff 48 89 df e8 33 46 91
[  303.945609][T12010] RSP: 0018:ffffc9000602fe28 EFLAGS: 00010293
[  303.947301][T12010] RAX: 0000000000000000 RBX: ffff88806fc7cd00 RCX: ffffffff848f5eaf
[  303.949634][T12010] RDX: ffff88806edcc880 RSI: ffffffff848e6795 RDI: 0000000000000005
[  303.951826][T12010] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  303.954069][T12010] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88804e1f7200
[  303.956248][T12010] R13: dffffc0000000000 R14: ffff88806fc7cd20 R15: fffffffffffffff4
[  303.958665][T12010] FS:  0000000000000000(0000) GS:ffff8880979b9000(0063) knlGS:00000000f50f6b40
[  303.961444][T12010] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  303.963386][T12010] CR2: 00000000f50f5fac CR3: 0000000066334000 CR4: 0000000000352ef0
[  303.965599][T12010] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  303.967794][T12010] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  303.969995][T12010] Call Trace:
[  303.970932][T12010]  <TASK>
[  303.971782][T12010]  landlock_put_ruleset+0xa5/0xb0
[  303.973194][T12010]  landlock_merge_ruleset+0x218/0x870
[  303.975033][T12010]  ? prepare_creds+0x583/0x7d0
[  303.976379][T12010]  __do_sys_landlock_restrict_self+0x2a2/0x910
[  303.980464][T12010]  __do_fast_syscall_32+0x73/0x120
[  303.982007][T12010]  do_fast_syscall_32+0x32/0x80
[  303.983642][T12010]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.985577][T12010] RIP: 0023:0xf7fd2579
[  303.986878][T12010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  303.992757][T12010] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 00000000000001be
[  303.995623][T12010] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  303.998337][T12010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  304.002098][T12010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  304.005041][T12010] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  304.007335][T12010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  304.009978][T12010]  </TASK>
[  304.011062][T12010] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  304.013055][T12010] CPU: 2 UID: 0 PID: 12010 Comm: syz.3.1713 Not tainted 6.15.0-rc1-syzkaller #0 PREEMPT(full) 
[  304.015860][T12010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  304.019133][T12010] Call Trace:
[  304.020084][T12010]  <TASK>
[  304.020918][T12010]  dump_stack_lvl+0x3d/0x1f0
[  304.022225][T12010]  panic+0x71c/0x800
[  304.023325][T12010]  ? __pfx_panic+0x10/0x10
[  304.024578][T12010]  ? show_trace_log_lvl+0x29b/0x3e0
[  304.026028][T12010]  ? check_panic_on_warn+0x1f/0xb0
[  304.027445][T12010]  ? free_ruleset+0x226/0x270
[  304.028833][T12010]  check_panic_on_warn+0xab/0xb0
[  304.030228][T12010]  __warn+0xf6/0x3c0
[  304.031326][T12010]  ? free_ruleset+0x226/0x270
[  304.032578][T12010]  report_bug+0x3c3/0x580
[  304.033781][T12010]  ? free_ruleset+0x226/0x270
[  304.035084][T12010]  handle_bug+0x184/0x210
[  304.036295][T12010]  exc_invalid_op+0x17/0x50
[  304.037579][T12010]  asm_exc_invalid_op+0x1a/0x20
[  304.039316][T12010] RIP: 0010:free_ruleset+0x226/0x270
[  304.041130][T12010] Code: 84 61 ff ff ff 48 89 eb e9 12 ff ff ff e8 92 d5 2c fd be 03 00 00 00 4c 89 f7 e8 a5 f7 3e 00 e9 42 ff ff ff e8 7b d5 2c fd 90 <0f> 0b 90 eb af e8 40 46 91 fd e9 4a fe ff ff 48 89 df e8 33 46 91
[  304.046298][T12010] RSP: 0018:ffffc9000602fe28 EFLAGS: 00010293
[  304.048004][T12010] RAX: 0000000000000000 RBX: ffff88806fc7cd00 RCX: ffffffff848f5eaf
[  304.050381][T12010] RDX: ffff88806edcc880 RSI: ffffffff848e6795 RDI: 0000000000000005
[  304.052528][T12010] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  304.054687][T12010] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88804e1f7200
[  304.056864][T12010] R13: dffffc0000000000 R14: ffff88806fc7cd20 R15: fffffffffffffff4
[  304.059511][T12010]  ? landlock_log_drop_domain+0x5f/0x1e0
[  304.061126][T12010]  ? free_ruleset+0x225/0x270
[  304.062441][T12010]  ? free_ruleset+0x225/0x270
[  304.063741][T12010]  landlock_put_ruleset+0xa5/0xb0
[  304.065126][T12010]  landlock_merge_ruleset+0x218/0x870
[  304.066640][T12010]  ? prepare_creds+0x583/0x7d0
[  304.068078][T12010]  __do_sys_landlock_restrict_self+0x2a2/0x910
[  304.070150][T12010]  __do_fast_syscall_32+0x73/0x120
[  304.071598][T12010]  do_fast_syscall_32+0x32/0x80
[  304.072944][T12010]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  304.074689][T12010] RIP: 0023:0xf7fd2579
[  304.075823][T12010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  304.081566][T12010] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 00000000000001be
[  304.083820][T12010] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  304.085983][T12010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  304.088240][T12010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  304.090466][T12010] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  304.092633][T12010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  304.095214][T12010]  </TASK>
[  304.096541][T12010] Kernel Offset: disabled
[  304.097798][T12010] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:40:00  Registers:
info registers vcpu 0

CPU#0
RAX=00000000005cb799 RBX=0000000000000000 RCX=ffffffff8b6ff439 RDX=0000000000000000
RSI=ffffffff8dbeaac6 RDI=ffffffff8bf45100 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10
R8 =0000000000000001 R9 =ffffed10056465bd R10=ffff88802b232deb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90867310 R15=0000000000000000
RIP=ffffffff8b6fdccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c402377 CR3=000000006736c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000000001c1 RBX=ffff88806f1b8b18 RCX=000000001f78ec19 RDX=0000000000000000
RSI=ffff88806f1b8b18 RDI=ffff88806f1b8af0 RBP=ffff88806f1b8af0 RSP=ffffc90004636b80
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000007 R13=0000000000000001 R14=ffff88806f1b8000 R15=0000000000000000
RIP=ffffffff8197ace3 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f74335f8 CR3=00000000626e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000049 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854bd145 RDI=ffffffff9ae12bc0 RBP=ffffffff9ae12b80 RSP=ffffc9000602f790
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000049 R14=ffffffff9ae12b80 R15=ffffffff854bd0e0
RIP=ffffffff854bd16f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50f5fac CR3=0000000066334000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000080000 RBX=0000000080143bc0 RCX=ffffc9003740b000 RDX=0000000000080000
RSI=ffffffff84cd69f9 RDI=ffffffff8bf45100 RBP=000000000000001c RSP=ffffc90006217a40
R8 =1525ca5b0a5321be R9 =0000000000000001 R10=0000000000000000 R11=0000000000000000
R12=ffffc90006217d60 R13=ffffc90006217a90 R14=ffffc90006217b50 R15=0000000080143bc0
RIP=ffffffff84fd7584 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097ab9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080001000 CR3=0000000060e8a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000