last executing test programs:

4m22.749583316s ago: executing program 2 (id=3334):
syz_emit_vhci(0x0, 0x8) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
ioctl$CEC_S_MODE(0xffffffffffffffff, 0x40046109, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=@newtaction={0x70, 0x32, 0x871a15abc695fa3d, 0x2000, 0x25dfdbff, {}, [{0x5c, 0x1, [@m_ctinfo={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x80000000, 0x8, 0x10000000, 0x20001, 0xa}}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0xa}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x1cd}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x4}}}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x8800}, 0x4040000) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000240)={'vxcan0\x00'}) (async)
r3 = socket(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r5) (async)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0xfffffffe, 0x8}}]}}]}, 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@newtfilter={0x24, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0x4}, {0xfff1, 0x4}}}, 0x24}}, 0x0) (async)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4)
ioctl$sock_ifreq(r1, 0x444a, &(0x7f0000000100)={'lo\x00', @ifru_settings={0xa70, 0x5, @raw_hdlc=&(0x7f0000000080)={0x6, 0x24}}})

4m22.50118747s ago: executing program 2 (id=3336):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0xa40, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000040)=0x3)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f0000004440)=0x7ff)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000100)={0x1, [<r1=>0x0]}, &(0x7f0000000140)=0x8)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="000000004080000018001280080001007369746eba6c2180080001003064", @ANYRES32, @ANYRES32=r1, @ANYRESOCT, @ANYRES8], 0x38}}, 0x4000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x18)
syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, 0x0, 0x4000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r6, 0x8914, &(0x7f0000000000))
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e4, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r8 = syz_init_net_socket$ax25(0x3, 0x5, 0x7)
bind$ax25(r8, &(0x7f0000000540)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x8}, [@default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
ioctl$EVIOCGABS0(0xffffffffffffffff, 0x80184540, 0x0)
connect$ax25(r8, &(0x7f00000001c0)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x5}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)
ioctl$sock_ifreq(r7, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r9)

4m22.382293628s ago: executing program 2 (id=3337):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000040000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000008500000008", @ANYRES8=r0], &(0x7f0000000340)='GPL\x00', 0x4e, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r3 = socket$kcm(0x29, 0x5, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r3, 0x119, 0x2, &(0x7f0000000000)=0x3, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
bind$inet(r2, &(0x7f0000000480)={0x2, 0x4e21, @multicast1}, 0x10)
r4 = socket(0xa, 0x3, 0x3a)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000020309000000000000000000000000000800010001000000edb68cf8382b82b422d3332fe7b3ae771dfc79d8392b2dad3be0fe107e1cb4a34efd12e4b09379a21207375e620e68fe8c0f0d7f0fd078397ab4f6e5db89c54f6cf2246da9c2a9eb04cb4af2e1de0c74211f7d864d438e18d9706acf68425f6b5fe594b1f161377e64035ea913946ea8d68d572e1597a3a050e17388c8ec4ce6e5f39b5d1d1e6545ec3c175353450abfbba02f10a4012fa46d7e046ee58820d2d7df95"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x44840)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x2, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
setsockopt$MRT6_ADD_MIF(r4, 0x29, 0xca, &(0x7f0000000000)={0x0, 0x1}, 0xc)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000540)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r9, {0x10, 0xffe0}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x18, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0xae}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0xf7}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)
setsockopt$MRT6_DEL_MIF(r4, 0x29, 0xcb, &(0x7f0000000040), 0xc)
syz_io_uring_setup(0x7ea4, &(0x7f0000000380)={0x0, 0x731e, 0x10100, 0x0, 0xd2, 0x0, r2}, &(0x7f0000000180)=<r10=>0x0, 0x0)
openat$ipvs(0xffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000080))
syz_open_dev$usbmon(&(0x7f00000000c0), 0x9, 0x880)
syz_io_uring_submit(r10, 0x0, 0x0)

4m22.132196116s ago: executing program 2 (id=3338):
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0x1)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1f, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000380)='source\xcf\x87\x86\x1bY\x0f\xde\xd6\xcd\xc0\x01\xd3\x19>K\x04\xfe\x86YG\xa5\x0f\xed\xa0\x9f\x1e\x14R\x9e\x04\xfa\xed\xd0TG&\x88\xeaz\x9aD\xf8Tt\x8c\x00{\x1fm\xfe\x9c\xf6_h\x9e\xfc\'', &(0x7f00000001c0)='sou\x01ce', 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
syz_io_uring_setup(0x76a6, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x1, 0x2d0}, &(0x7f0000000100), &(0x7f0000000200))
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x12, 0xffffffffffffffff, 0xfffff000)
r6 = socket$kcm(0x29, 0x5, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r6, 0x119, 0x1, &(0x7f0000000000)=0x2, 0x4)
setsockopt$kcm_KCM_RECV_DISABLE(r6, 0x119, 0x1, &(0x7f0000000080), 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
r8 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSARP(r8, 0x8955, &(0x7f0000000340)={{0x2, 0x0, @broadcast}, {0x306, @link_local}, 0x4a, {0x2, 0x800, @multicast2}, 'wg0\x00'})
sendmsg$nl_crypto(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80408c4}, 0x24008001)
ioctl$sock_inet_SIOCSARP(r7, 0x8955, &(0x7f00000003c0)={{0x2, 0x4e24, @broadcast}, {0x306, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x6e, {0x2, 0x4c24, @dev={0xac, 0x14, 0x14, 0x23}}, 'hsr0\x00'})
gettid()
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
finit_module(0xffffffffffffffff, 0x0, 0x0)

4m21.222507487s ago: executing program 2 (id=3343):
syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = getuid()
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000901, r1, &(0x7f0000000380))
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x1930bd, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setpgid(r4, 0x0)
setpgid(0x0, r4)
statfs(&(0x7f0000001140)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000180)={0x30}, 0x30)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000e2b60282f9d04724dbdbcb6ea2ec748787"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1f, 0x10, &(0x7f0000000040)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@generic={0x0, 0xf, 0x4, 0x4, 0x7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa108, @void, @value}, 0x94)

4m20.312388722s ago: executing program 2 (id=3345):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000680)={0x0, 0x4c, &(0x7f0000000640)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000000a0a03000000000000899df45d000000002fc002"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40410)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000280)={{0x0, 0x0, 0x0, 0x3}, 'syz1\x00', 0x52})
ioctl$UI_DEV_CREATE(r0, 0x5501)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1a1})
sendto$inet(0xffffffffffffffff, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000180), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x239, &(0x7f00000002c0)={0x0, 0xf2cf, 0x80, 0x2, 0x0, 0x0, r4}, &(0x7f00000000c0)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r4, 0x0, 0x0, 0x0, {0x90c0}, 0x1})
io_uring_enter(r5, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
r9 = openat$cgroup_type(r8, &(0x7f0000000300), 0x2, 0x0)
write$cgroup_type(r9, &(0x7f0000000280), 0x9)
r10 = openat$cgroup_procs(r8, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r10, &(0x7f0000000c40), 0x12)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r4, 0x6, 0x1, &(0x7f0000000240), &(0x7f0000000340)=0xc)
r11 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r12 = openat$cgroup_ro(r11, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r12, &(0x7f0000000200)=0x1, 0x12)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r13 = syz_open_dev$evdev(&(0x7f0000000080), 0x72, 0x0)
readv(r13, &(0x7f0000000040)=[{&(0x7f00000001c0)=""/105, 0x69}], 0x1)

4m5.152077086s ago: executing program 32 (id=3345):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000680)={0x0, 0x4c, &(0x7f0000000640)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000000a0a03000000000000899df45d000000002fc002"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40410)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000280)={{0x0, 0x0, 0x0, 0x3}, 'syz1\x00', 0x52})
ioctl$UI_DEV_CREATE(r0, 0x5501)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1a1})
sendto$inet(0xffffffffffffffff, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000180), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x239, &(0x7f00000002c0)={0x0, 0xf2cf, 0x80, 0x2, 0x0, 0x0, r4}, &(0x7f00000000c0)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r4, 0x0, 0x0, 0x0, {0x90c0}, 0x1})
io_uring_enter(r5, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
r9 = openat$cgroup_type(r8, &(0x7f0000000300), 0x2, 0x0)
write$cgroup_type(r9, &(0x7f0000000280), 0x9)
r10 = openat$cgroup_procs(r8, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r10, &(0x7f0000000c40), 0x12)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r4, 0x6, 0x1, &(0x7f0000000240), &(0x7f0000000340)=0xc)
r11 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r12 = openat$cgroup_ro(r11, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r12, &(0x7f0000000200)=0x1, 0x12)
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r13 = syz_open_dev$evdev(&(0x7f0000000080), 0x72, 0x0)
readv(r13, &(0x7f0000000040)=[{&(0x7f00000001c0)=""/105, 0x69}], 0x1)

5.430837302s ago: executing program 1 (id=4661):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = syz_open_dev$vim2m(&(0x7f0000000080), 0x80020001, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000240)=0x14)
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x28c9, '\x00', r2, r3, 0x3, 0x5, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000340)=0x1)

5.380959701s ago: executing program 4 (id=4663):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x19ff, 0x0, &(0x7f0000000240), 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$video4linux(&(0x7f00000001c0), 0x0, 0x0)
ioctl$VIDIOC_QUERY_EXT_CTRL(r3, 0xc0445624, &(0x7f00000000c0)={0x160980001, 0x0, "bf5dff0f251765c214525a2572ce1ced49e8981e103268fadc1433ae00", 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
request_key(&(0x7f0000000300)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust;De\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
ioctl$UI_SET_ABSBIT(0xffffffffffffffff, 0x40045567, 0x3)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/wireless\x00')
mmap$binder(&(0x7f00005f0000/0x2000)=nil, 0x2000, 0x1, 0x11, r4, 0xfffffffc)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
r5 = fanotify_init(0x79, 0x0)
write$P9_RSYMLINK(r5, &(0x7f0000000480)={0xffffffffffffff25, 0x11, 0x0, {0x80}}, 0x14)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000300)='GPL\x00', 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r6, 0x0, 0x3}, 0x18)
r7 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x20, r7, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x20}}, 0xc800)
openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r9 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r9, 0xc0405602, &(0x7f0000000000)={0x5a, 0x8, 0x1, "05fcff410400001b00", 0x34343452})

5.380673824s ago: executing program 1 (id=4664):
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x910ec27568a00e35, 0x40000002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, &(0x7f0000000f40)=""/4083, 0x0, 0xff32, 0x1, 0x1, 0x0, @void, @value}, 0x28)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r4, 0x34}, 0x10)

5.325364976s ago: executing program 0 (id=4665):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)
getsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, &(0x7f00000002c0), &(0x7f0000000480)=0x6)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @broadcast})
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0x1)
sendmsg$key(0xffffffffffffffff, 0x0, 0x41)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000200)={0x0, 0x1, 0x1, 0x0, 0x4})
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140), 0x106}}, 0x20)
r3 = gettid()
sched_setscheduler(r3, 0x0, &(0x7f0000000580)=0xb2)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0xe8}}, 0x44810)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={r5, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000040)={&(0x7f0000000300)=[0x0, 0x0, 0x0], &(0x7f0000000040), 0x3, r6, 0xcccccccc})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000004c0)=0x8000, 0x4)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x6, 0x10001, 0x34324152, 0x0, 0xb, [{}, {0x10}, {0x2}, {}, {0x0, 0x1}, {}, {0x0, 0x2}], 0x0, 0x0, 0x0, 0x0, 0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_netfilter(0x10, 0x3, 0xc)

4.882901813s ago: executing program 4 (id=4666):
syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = getuid()
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000901, r1, &(0x7f0000000380))
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f00000001c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x1930bd, &(0x7f0000000400)=ANY=[@ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setpgid(r5, 0x0)
setpgid(0x0, r5)
statfs(&(0x7f0000001140)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000180)={0x30}, 0x30)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000e2b60282f9d04724dbdbcb6ea2ec748787"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1f, 0x10, &(0x7f0000000040)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@generic={0x0, 0xf, 0x4, 0x4, 0x7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa108, @void, @value}, 0x94)

4.683640124s ago: executing program 3 (id=4667):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000040000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000800000095", @ANYRES8=r0], &(0x7f0000000340)='GPL\x00', 0x4e, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r3 = socket$kcm(0x29, 0x5, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r3, 0x119, 0x2, &(0x7f0000000000)=0x3, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
bind$inet(r2, &(0x7f0000000480)={0x2, 0x4e21, @multicast1}, 0x10)
r4 = socket(0xa, 0x3, 0x3a)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000020309000000000000000000000000000800010001000000edb68cf8382b82b422d3332fe7b3ae771dfc79d8392b2dad3be0fe107e1cb4a34efd12e4b09379a21207375e620e68fe8c0f0d7f0fd078397ab4f6e5db89c54f6cf2246da9c2a9eb04cb4af2e1de0c74211f7d864d438e18d9706acf68425f6b5fe594b1f161377e64035ea913946ea8d68d572e1597a3a050e17388c8ec4ce6e5f39b5d1d1e6545ec3c175353450abfbba02f10a4012fa46d7e046ee58820d2d7df95"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x44840)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x2, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
setsockopt$MRT6_ADD_MIF(r4, 0x29, 0xca, 0x0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000540)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r9, {0x10, 0xffe0}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x18, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0xae}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0xf7}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)
setsockopt$MRT6_DEL_MIF(r4, 0x29, 0xcb, &(0x7f0000000040), 0xc)
syz_io_uring_setup(0x7ea4, &(0x7f0000000380)={0x0, 0x731e, 0x10100, 0x0, 0xd2, 0x0, r2}, &(0x7f0000000180)=<r10=>0x0, 0x0)
openat$ipvs(0xffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000080))
syz_open_dev$usbmon(&(0x7f00000000c0), 0x9, 0x880)
syz_io_uring_submit(r10, 0x0, 0x0)

4.260735358s ago: executing program 0 (id=4669):
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = io_uring_setup(0x30d5, &(0x7f0000000500)={0x0, 0x3709, 0x20})
r1 = mq_open(&(0x7f00005a1ffb)='Rth0\x00', 0x40, 0x0, 0x0)
r2 = socket$inet6_udp(0x2d, 0x2, 0x0)
accept4(r2, 0x0, 0x0, 0x80000)
mq_timedreceive(r1, &(0x7f0000000000)=""/83, 0x9b0c4f391059f39b, 0x20000000, &(0x7f0000000100)={0x77359400})
write(r0, &(0x7f0000000280)="416650a935c3088c333c3ba0ba4993a9c84f2973c366f160265cf6b15cd896bb9b2ea5a623a92a4a6426d5e2f92c5aff9b7bdc612572bf69960fcc5b2807e70adb7e9c2c6a94f6d3df173e813bc97e65dcb840b6c4932b9298bab6af7ab7a202cf707da3a1c45a1dbfdd1a7d1f58955a0a8d992f308e5a8eb76faf813e9cd8e43ed2812a87d9fd89ad9550299b031ce2fdbc90efd4c0c2afac4e31610d4d87665a4c1e32c16ffbf8598717c976b762400e271f57279a035091446e669a5c6d7eb582c250ac54e6c4617d329d43922e082802a7556aeb8aba356311de68bf9d34e32a", 0xe2)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4e22, 0x4, @mcast2, 0x5}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000000240)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000008c0)="8252f7", 0x3}], 0x1}}], 0x1, 0x4000c000)
sendto$inet6(r3, &(0x7f0000000300), 0x16, 0x0, 0x0, 0xfffffffffffffdfd)
close_range(r0, 0xffffffffffffffff, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)={0x2, 0x14, 0x9, 0x7, 0x2, 0x0, 0x70bd2a, 0x25dfdbfe}, 0x10}}, 0x4000040)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
set_mempolicy_home_node(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
r7 = gettid()
r8 = signalfd4(0xffffffffffffffff, &(0x7f00000008c0), 0x8, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r8}})
r9 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffffffff5]}, 0x8, 0x0)
ppoll(&(0x7f0000000000)=[{r9}, {r9, 0x140}], 0x2, 0x0, 0x0, 0x0)
tkill(r7, 0x7)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, &(0x7f0000000280)={@mcast2, 0x800, 0x0, 0x103, 0x1}, 0x20)
r10 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000080)='iocharset', &(0x7f0000000580)='%\x8bR\xafH\xd6e\x11\'\xec\xbb\xcb\xa0/\x1f\x16\xcf\xe2\xb5\xfc\xeb1\x12\xfdC\xb8\xa0\x01\xa3~\x971W\x96\xec\xaf\x1c\x91\xeb\xa8e\xfe\x17\x02xEA\x0f\x14\r\xae\xc1\xfe\x06\x12\beSb{~R\xf0\x06\xfb\x00\x00\xf92\xce\x81p\x1fC\n\x9f(\x00\xc5\x1d\x9c\xccCq\x06\x1b-\f\xc9\xd9+\xa4\x14\xd8\xf4\xef\xf5^\xbb\x06\xc92\x01\xd92\x14\xb8=\x03\x00\xd5M\x04\xf4{H\xd0\xc8v\x10\xe1R \x9a^\xdfqpc\x00\x00\x00\x00\x00\x00&>\x94\x882\x1c_j\x15{ \xf08\xdf\x84\xe64{4\x81\xba\xfc\x93\xf4\xd8\xb5\x04\xcb\x98\xd1QF\xe5\x1b\xb30x/\x86\x02\x1ct\xc7\x88\xd2\xce\xd5\x9e1\xef`\xad\x05\x11\xc9\xd8<\xc6~\x97\xd5\xde\xe3Eh\\\x84\x14\x9e\b\xe1\x9b\x00\'\xe8!\x8c\xc3\x97\x8a\xcf\xfc\x8fe\xa6\x0f\x8b\x912c\x1b>8\xa3=\xab\xf1\xf5\r\xb6\f\xfcS9\xae.\x8b\xf3\xbc,?\xb2\x9aBDPY=r\xfa8I\x16\xa2\x18\xd4\xa5\x8b\xaf\xd1\x8a\xbb\x0e\x15O\xc9p@\xadaw\x84\xc9\xdd\x87a[\xdf\xc2\xa4\xf9@T/', 0x0)
pread64(r10, &(0x7f0000001600)=""/4103, 0x1007, 0x8)
listen(r5, 0x3)

3.941200563s ago: executing program 4 (id=4670):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x18)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000003, 0x10, 0xffffffffffffffff, 0x1000)
userfaultfd(0x80801)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
syz_open_dev$sndmidi(0x0, 0xd8, 0x1)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r2})
io_uring_enter(r4, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

3.539593595s ago: executing program 3 (id=4671):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x6, 0x0, 0x0)
getsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, &(0x7f00000002c0), &(0x7f0000000480)=0x6)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x3a)
r2 = openat$vim2m(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0x1)
sendmsg$key(0xffffffffffffffff, 0x0, 0x41)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000200)={0x0, 0x1, 0x1, 0x0, 0x4})
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140), 0x106}}, 0x20)
sched_setscheduler(0x0, 0x0, &(0x7f0000000580)=0xb2)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0xe8}}, 0x44810)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r4=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={r4, <r5=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000040)={&(0x7f0000000300)=[0x0, 0x0, 0x0], &(0x7f0000000040), 0x3, r5, 0xcccccccc})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000004c0)=0x8000, 0x4)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x6, 0x10001, 0x34324152, 0x0, 0xb, [{}, {0x10}, {0x2}, {}, {0x0, 0x1}, {}, {0x0, 0x2}], 0x0, 0x0, 0x0, 0x0, 0x6}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

3.539191507s ago: executing program 3 (id=4672):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000580)='tracefs\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000400)=""/132, 0x84)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x622c03, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r7 = add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x2}, 0x0, 0x0, r6)
add_key(&(0x7f0000000340)='dns_resolver\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="fb9c", 0xfffff, r7)
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"])
ioctl$KVM_RUN(r9, 0xae80, 0x0)
socket(0xa, 0x3, 0x3a)

3.211057371s ago: executing program 0 (id=4673):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000580)='tracefs\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000400)=""/132, 0x84)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x622c03, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r7 = add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x2}, 0x0, 0x0, r6)
add_key(&(0x7f0000000340)='dns_resolver\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="fb9c", 0xfffff, r7)
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"])
ioctl$KVM_RUN(r9, 0xae80, 0x0)
socket(0xa, 0x3, 0x3a)

2.981375374s ago: executing program 4 (id=4674):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0x2, 0x2b}, 0xa, @in6=@local, 0x0, 0x4}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
bind$inet(r2, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r2, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r2, &(0x7f0000004d00)=[{{0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00) (fail_nth: 5)

2.980957837s ago: executing program 1 (id=4675):
socket(0xa, 0x801, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4008, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000340)='./file0\x00', 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x11000)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r5, 0x4b72, &(0x7f0000000100)={0x0, 0x0, 0x1, 0x14, 0x200, &(0x7f0000000880)="1ae19337aa151f36ae49bb3f8cb95c5bf840d4f1e55efaaf098d47a70eb36a7309000000000000000f4743f490c585108c1331c7749299a25a705f5096cb268cbc6070d680e1be250700000000000000472471ff550c0010000007f3c7b61abe4162256004ea8ca5e5b5f379c6eb3257eda08f7e6959090000004d13184d382747e035b4722525e00ade86b4c6d1e157c75d15c1f961ebc0a64d7f2a73f8979fcecacaa64f9b9069ebcc1d5b471edbc4f6c7f1b98ae74e909aa6f25b7fa77bf9cd4ed36d5c53dc519d11c3cc1c22a3b86cf3c645413fcea0c99ded703699d2bb6a4a663b99b6069da5aaf64785a5887c31261d4b9e57ee07000000def6f255ca26108f11f02047d47f2d0fec30f7e92482f71496e184214a4e0c5fdc48b0af0c0478940016d8f0990a0e1090fd515380aae83c5eaeed338701574b64200a16ef2811fadcf1e0f49a514df529061e09ce45e3da03a03fe9b4a6bcfa7d04594e4f6d0714a2e14ea127ab37d64a5e0db630cd4f4a2e6c985a542ff20a9b2193f265f93a258a88dd6c9d6a926dd23d32425849c5d9210007660a617f22133b6cb5087f4c6057942aa18193172bd995fa70a1f949e496f2e2a3c175858575713be5ee3f7f4dcecc98123f9ded3afdebe13d79a7f7fcb2469ae0ac503111401612df7ee995f74fb97a63bf62d61f78c062f959119ab50c1f706a930121ebcd53ccb93d158186ed360750ca8e728150d988844b9a5cff46591ccaff4175b86ea6171b046b856168f403b5253a5cc393430a09a4489a0895571e597ac8846f945ffb372a88d3a2b463dc961416c80c55773f917020751ed51cfd73c1e06fbadd156d56bedc117af95d242d6d07002ce34dccd6005e944afa92b22ec9a698469c6edc06caa2cfcd61912607d459b4c28ebea9745bcd4697d75c9601fd333d3cd797963a3c71b7cc5fdc756da8d97207936e5f53b53b732533c2722e03002293517966611602f297de6ff5408777b7a93c45cee3ee5c5601a4e94266b295ea7a86812a7ab8896ec5ea1b12643e1844b185734528399e62bceb8700cc6cd491e4a4430d0a3ba329a5a2fa170fd0b1cc4ba8294de988cd35df00d7963e43b7f9c03bebfb889c02f484f63520cc3466a3c2733d45f176931b2db18dba54991a9553cedb7f585786388d4042dbae1c95b769e3d4e036e8afea0a04c04f542b152ca1fd1f8efee60425c5a122fd1b90e98635284abd9f217d9e19cb2a64b354c9d79509cc47d7305114990148a7291cb0fe2d1c773a6664b66ae04aa62c534d072ae54c2ca0d5962cc58945d8924abfc4d5af922462507430d8f2c17479a6678b0b3700000000000000000000000000000000000000000000f800"})
ptrace(0x10, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3a)

2.299489246s ago: executing program 3 (id=4676):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x3, 0xff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r3, &(0x7f0000000180)=[{&(0x7f0000000040)='v', 0xfdef}], 0x1)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_BLANKSCREEN(r5, 0x541c, &(0x7f0000000340))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x1c)
ioctl$TIOCL_UNBLANKSCREEN(r5, 0x541c, &(0x7f0000000200))

2.120394569s ago: executing program 4 (id=4677):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x6, &(0x7f0000000000)=0x40000000, 0x4)
getsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, &(0x7f00000002c0), &(0x7f0000000480)=0x6)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @broadcast})
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0x1)
sendmsg$key(0xffffffffffffffff, 0x0, 0x41)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000200)={0x0, 0x1, 0x1, 0x0, 0x4})
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140), 0x106}}, 0x20)
r3 = gettid()
sched_setscheduler(r3, 0x0, &(0x7f0000000580)=0xb2)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0xe8}}, 0x44810)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={r5, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000040)={&(0x7f0000000300)=[0x0, 0x0, 0x0], &(0x7f0000000040), 0x3, r6, 0xcccccccc})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000004c0)=0x8000, 0x4)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x6, 0x10001, 0x34324152, 0x0, 0xb, [{}, {0x10}, {0x2}, {}, {0x0, 0x1}, {}, {0x0, 0x2}], 0x0, 0x0, 0x0, 0x0, 0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_netfilter(0x10, 0x3, 0xc)

2.120026988s ago: executing program 3 (id=4678):
socket(0xa, 0x801, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4008, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000340)='./file0\x00', 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x11000)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r5, 0x4b72, &(0x7f0000000100)={0x0, 0x0, 0x1, 0x14, 0x200, &(0x7f0000000880)="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"})
ptrace(0x10, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3a)

2.100116166s ago: executing program 0 (id=4679):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000f400"/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014001100b7030000000000698500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x4, &(0x7f0000000000)=@framed={{0xffffffb4, 0x6, 0x0, 0x0, 0x0, 0x73, 0x11, 0x42}, [@exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x14)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r2, 0x4b47, &(0x7f0000000040)={0x1, 0x0, 0x27f})
r3 = socket$inet6(0xa, 0x3, 0x88)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @empty, 0x6}, 0x1c)
setsockopt$inet6_udp_encap(r3, 0x11, 0x64, &(0x7f0000000140)=0x2, 0x4)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e20004db0"], 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r5 = open(&(0x7f0000000180)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000000680)={{0x1, 0x1, 0x18, r5}, './file0\x00'})
r6 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r6, 0x800442d2, &(0x7f0000000440)={0x1, &(0x7f0000000340)=[{0x0, 0x0, 0x0, @remote}]})
r7 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_SET_MASTER(r7, 0x641e)

1.875601461s ago: executing program 0 (id=4680):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x6, 0x0, 0x0)
getsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, &(0x7f00000002c0), &(0x7f0000000480)=0x6)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x3a)
r2 = openat$vim2m(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0x1)
sendmsg$key(0xffffffffffffffff, 0x0, 0x41)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000200)={0x0, 0x1, 0x1, 0x0, 0x4})
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140), 0x106}}, 0x20)
sched_setscheduler(0x0, 0x0, &(0x7f0000000580)=0xb2)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0xe8}}, 0x44810)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r4=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={r4, <r5=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000040)={&(0x7f0000000300)=[0x0, 0x0, 0x0], &(0x7f0000000040), 0x3, r5, 0xcccccccc})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000004c0)=0x8000, 0x4)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x6, 0x10001, 0x34324152, 0x0, 0xb, [{}, {0x10}, {0x2}, {}, {0x0, 0x1}, {}, {0x0, 0x2}], 0x0, 0x0, 0x0, 0x0, 0x6}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.851321892s ago: executing program 1 (id=4681):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000240), 0xffffffffffffffff)
getpeername$l2tp(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, &(0x7f00000000c0)=0x10)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x300000b, 0x810, r2, 0x0)
ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f00000001c0)={0x1})
quotactl_fd$Q_SETQUOTA(0xffffffffffffffff, 0xffffffff80000800, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000140)=""/32, 0x20, 0x4, 0xffffffff, 0x0, 0x0, 0x6}}, 0x11c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
r3 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r4 = dup(r3)
r5 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r5, &(0x7f0000000200), &(0x7f0000000280)=0x14)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r6, 0x10f, 0x81, &(0x7f0000000080), 0x4)
sendmmsg$inet(r6, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r7)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x1c, r1, 0x1, 0x0, 0x0, {0x4}, [@L2TP_ATTR_CONN_ID={0x8}]}, 0x1c}}, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x63)
mount(&(0x7f0000000080)=@sr0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='ufs\x00', 0x8403, 0x0)

1.730144034s ago: executing program 0 (id=4682):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x18)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000003, 0x10, 0xffffffffffffffff, 0x1000)
userfaultfd(0x80801)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
syz_open_dev$sndmidi(0x0, 0xd8, 0x1)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r2})
io_uring_enter(r4, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

901.408603ms ago: executing program 4 (id=4683):
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x910ec27568a00e35, 0x40000002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, &(0x7f0000000f40)=""/4083, 0x0, 0xff32, 0x1, 0x1, 0x0, @void, @value}, 0x28)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r4, 0x34}, 0x10)

531.075122ms ago: executing program 3 (id=4684):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000580)='tracefs\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000000400)=""/132, 0x84)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x622c03, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r7 = add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x2}, 0x0, 0x0, r6)
add_key(&(0x7f0000000340)='dns_resolver\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="fb9c", 0xfffff, r7)
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"])
ioctl$KVM_RUN(r9, 0xae80, 0x0)
socket(0xa, 0x3, 0x3a)

186.596266ms ago: executing program 1 (id=4685):
r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x109942, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRESOCT=r1, @ANYRESDEC=r0], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8=r1, @ANYRES32, @ANYRESOCT], 0x0, 0x70, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r3, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$SG_SET_RESERVED_SIZE(0xffffffffffffffff, 0x227a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$vimc0(0xffffff9c, 0x0, 0x2, 0x0)
r5 = syz_io_uring_setup(0x48e, &(0x7f0000000640)={0x0, 0x807734, 0x200, 0x2, 0x50a}, &(0x7f00000000c0)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
socket$inet_udplite(0x2, 0x2, 0x88)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
io_uring_enter(r5, 0x803925, 0x3f5e, 0x61, 0x0, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f0000000880)="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", 0x1000)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000002740)={0x53, 0xfffffffffffffffc, 0x24, 0xff, @buffer={0x0, 0x0, 0x0}, &(0x7f00000003c0)="8526b62bd97cb286ba5e98e19f2780c805239ae83c1874a99aae4b44f7ae3f40c833a10e", 0x0, 0x3, 0x0, 0xfffffffd, 0x0})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r2, {0x6}}, './file0\x00'})
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

0s ago: executing program 1 (id=4686):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000007c0))
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = fcntl$dupfd(r0, 0x406, r1)
r3 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r3)
socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000080)={0x0, r3}) (fail_nth: 3)

kernel console output (not intermixed with test programs):

etsockopt+0x640/0x840
[  857.263510][T20960]  ? __pfx_xsk_setsockopt+0x10/0x10
[  857.263531][T20960]  ? __pfx_aa_sk_perm+0x10/0x10
[  857.263556][T20960]  ? errseq_sample+0x53/0x70
[  857.263579][T20960]  ? __pfx_xsk_setsockopt+0x10/0x10
[  857.263601][T20960]  do_sock_setsockopt+0x221/0x470
[  857.263619][T20960]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  857.263656][T20960]  __sys_setsockopt+0x120/0x1a0
[  857.263686][T20960]  __ia32_sys_setsockopt+0xbc/0x160
[  857.263711][T20960]  ? lockdep_hardirqs_on+0x7c/0x110
[  857.263736][T20960]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  857.263765][T20960]  __do_fast_syscall_32+0x7c/0x3a0
[  857.263794][T20960]  do_fast_syscall_32+0x32/0x80
[  857.263827][T20960]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  857.263851][T20960] RIP: 0023:0xf709e579
[  857.263868][T20960] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  857.263888][T20960] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  857.263908][T20960] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  857.263921][T20960] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  857.263933][T20960] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  857.263945][T20960] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  857.263956][T20960] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  857.263982][T20960]  </TASK>
[  857.264032][T20960] Mem-Info:
[  857.670795][T20960] active_anon:5187 inactive_anon:3934 isolated_anon:0
[  857.670795][T20960]  active_file:4817 inactive_file:9388 isolated_file:0
[  857.670795][T20960]  unevictable:1768 dirty:446 writeback:0
[  857.670795][T20960]  slab_reclaimable:7746 slab_unreclaimable:83520
[  857.670795][T20960]  mapped:26630 shmem:7984 pagetables:1939
[  857.670795][T20960]  sec_pagetables:329 bounce:0
[  857.670795][T20960]  kernel_misc_reclaimable:0
[  857.670795][T20960]  free:32069 free_pcp:16404 free_cma:0
[  857.684990][T20960] Node 0 active_anon:4kB inactive_anon:212kB active_file:0kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5396kB dirty:0kB writeback:0kB shmem:3256kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8336kB pagetables:1888kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  857.695554][T20960] Node 1 active_anon:23944kB inactive_anon:15524kB active_file:19268kB inactive_file:37524kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:104424kB dirty:1784kB writeback:0kB shmem:31980kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:5304kB pagetables:5868kB sec_pagetables:164kB all_unreclaimable? no Balloon:0kB
[  857.706915][T20960] Node 0 DMA free:2048kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:660kB local_pcp:172kB free_cma:0kB
[  857.716170][T20960] lowmem_reserve[]: 0 289 289 289 289
[  857.718033][T20960] Node 0 DMA32 free:17224kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:588KB active_anon:4kB inactive_anon:208kB active_file:0kB inactive_file:28kB unevictable:3536kB writepending:0kB present:1032196kB managed:296728kB mlocked:0kB bounce:0kB free_pcp:13224kB local_pcp:2100kB free_cma:0kB
[  857.727941][T20960] lowmem_reserve[]: 0 0 0 0 0
[  857.729540][T20960] Node 1 DMA32 free:101204kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:4096KB active_anon:28744kB inactive_anon:15524kB active_file:19268kB inactive_file:37524kB unevictable:3536kB writepending:1784kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:51496kB local_pcp:10784kB free_cma:0kB
[  857.739808][T20960] lowmem_reserve[]: 0 0 0 0 0
[  857.741367][T20960] Node 0 DMA: 8*4kB (UM) 22*8kB (UM) 15*16kB (UM) 8*32kB (UM) 1*64kB (M) 2*128kB (UM) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2048kB
[  857.750268][T20960] Node 0 DMA32: 280*4kB (UH) 351*8kB (UEH) 73*16kB (UMEH) 103*32kB (UEH) 62*64kB (UME) 20*128kB (UME) 9*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17224kB
[  857.760328][T20960] Node 1 DMA32: 2*4kB (ME) 34*8kB (UME) 3*16kB (UME) 400*32kB (UME) 308*64kB (UME) 91*128kB (UME) 24*256kB (UME) 11*512kB (M) 22*1024kB (UM) 3*2048kB (U) 2*4096kB (MH) = 93128kB
[  857.766328][T20960] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  857.766764][T20970] pim6reg: entered allmulticast mode
[  857.769228][T20960] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  857.773861][T20960] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  857.776818][T20960] Node 1 hugepages_total=8 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  857.779654][T20960] 25608 total pagecache pages
[  857.781125][T20960] 697 pages in swap cache
[  857.782488][T20960] Free swap  = 93804kB
[  857.783876][T20960] Total swap = 124996kB
[  857.785210][T20960] 524155 pages RAM
[  857.786528][T20960] 0 pages HighMem/MovableOnly
[  857.787884][T20970] pim6reg: left allmulticast mode
[  857.787986][T20960] 209066 pages reserved
[  857.787992][T20960] 0 pages cma reserved
[  857.852869][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  858.902857][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  858.951697][T20991] netlink: 'syz.4.4301': attribute type 1 has an invalid length.
[  858.957287][T20991] netlink: 224 bytes leftover after parsing attributes in process `syz.4.4301'.
[  859.006246][T20995] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  859.018444][T20998] loop2: detected capacity change from 0 to 7
[  859.021207][T17864] Dev loop2: unable to read RDB block 7
[  859.024012][T17864]  loop2: AHDI p1 p2 p3
[  859.025229][T17864] loop2: partition table partially beyond EOD, truncated
[  859.028473][T17864] loop2: p1 start 1601398130 is beyond EOD, truncated
[  859.031331][T17864] loop2: p2 start 1702059890 is beyond EOD, truncated
[  859.036316][T20998] Dev loop2: unable to read RDB block 7
[  859.038122][T20998]  loop2: AHDI p1 p2 p3
[  859.039450][T20998] loop2: partition table partially beyond EOD, truncated
[  859.041821][T20998] loop2: p1 start 1601398130 is beyond EOD, truncated
[  859.044648][T20998] loop2: p2 start 1702059890 is beyond EOD, truncated
[  859.822640][T21015] FAULT_INJECTION: forcing a failure.
[  859.822640][T21015] name failslab, interval 1, probability 0, space 0, times 0
[  859.828148][T21015] CPU: 0 UID: 0 PID: 21015 Comm: syz.4.4308 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  859.828175][T21015] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  859.828188][T21015] Call Trace:
[  859.828196][T21015]  <TASK>
[  859.828203][T21015]  dump_stack_lvl+0x16c/0x1f0
[  859.828235][T21015]  should_fail_ex+0x512/0x640
[  859.828262][T21015]  ? __kmalloc_noprof+0xbf/0x510
[  859.828291][T21015]  ? unregister_netdevice_many_notify+0x63b/0x26f0
[  859.828320][T21015]  should_failslab+0xc2/0x120
[  859.828340][T21015]  __kmalloc_noprof+0xd2/0x510
[  859.828372][T21015]  unregister_netdevice_many_notify+0x63b/0x26f0
[  859.828406][T21015]  ? __pfx___mutex_trylock_common+0x10/0x10
[  859.828432][T21015]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  859.828461][T21015]  ? rcu_is_watching+0x12/0xc0
[  859.828482][T21015]  ? __mutex_lock+0x1ca/0xb90
[  859.828507][T21015]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  859.828534][T21015]  ? ppp_release+0x167/0x230
[  859.828561][T21015]  ? __fsnotify_parent+0x24b/0xc40
[  859.828585][T21015]  ? __pfx___mutex_lock+0x10/0x10
[  859.828613][T21015]  unregister_netdevice_queue+0x305/0x3f0
[  859.828641][T21015]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  859.828669][T21015]  ? __pfx_locks_remove_file+0x10/0x10
[  859.828695][T21015]  ? __pfx_ppp_release+0x10/0x10
[  859.828716][T21015]  ppp_release+0x209/0x230
[  859.828739][T21015]  __fput+0x402/0xb70
[  859.828767][T21015]  fput_close_sync+0x118/0x260
[  859.828787][T21015]  ? __pfx_fput_close_sync+0x10/0x10
[  859.828805][T21015]  ? dnotify_flush+0x79/0x4c0
[  859.828838][T21015]  __ia32_sys_close+0x8b/0x120
[  859.828860][T21015]  __do_fast_syscall_32+0x7c/0x3a0
[  859.828887][T21015]  do_fast_syscall_32+0x32/0x80
[  859.828912][T21015]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  859.828935][T21015] RIP: 0023:0xf70be579
[  859.828950][T21015] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  859.828967][T21015] RSP: 002b:00000000f50ae55c EFLAGS: 00000296 ORIG_RAX: 0000000000000006
[  859.828985][T21015] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  859.828996][T21015] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  859.829007][T21015] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  859.829017][T21015] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  859.829028][T21015] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  859.829052][T21015]  </TASK>
[  859.931821][T21017] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4309'.
[  859.932883][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  860.186203][T21031] pim6reg: entered allmulticast mode
[  860.200021][T21031] pim6reg: left allmulticast mode
[  860.972830][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  861.286981][T21043] netlink: 'syz.0.4316': attribute type 1 has an invalid length.
[  861.291886][T21043] netlink: 224 bytes leftover after parsing attributes in process `syz.0.4316'.
[  861.389938][T21043] loop2: detected capacity change from 0 to 7
[  861.403925][T17864] Dev loop2: unable to read RDB block 7
[  861.408868][T17864]  loop2: AHDI p1 p2 p3
[  861.410864][T17864] loop2: partition table partially beyond EOD, truncated
[  861.414246][T17864] loop2: p1 start 1601398130 is beyond EOD, truncated
[  861.417092][T17864] loop2: p2 start 1702059890 is beyond EOD, truncated
[  861.505041][T21043] Dev loop2: unable to read RDB block 7
[  861.507457][T21043]  loop2: AHDI p1 p2 p3
[  861.509184][T21043] loop2: partition table partially beyond EOD, truncated
[  861.512453][T21043] loop2: p1 start 1601398130 is beyond EOD, truncated
[  861.514997][T21043] loop2: p2 start 1702059890 is beyond EOD, truncated
[  862.012852][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  862.436231][T21070] pim6reg: entered allmulticast mode
[  862.462228][T21070] pim6reg: left allmulticast mode
[  862.735792][T21073] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4325'.
[  862.738795][T21073] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4325'.
[  863.052929][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  863.347272][T21082] siw: device registration error -23
[  864.092848][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  864.100645][T21099] binder: 21096:21099 ioctl c0306201 800000c0 returned -14
[  864.256747][T21102] xt_TCPMSS: Only works on TCP SYN packets
[  864.620396][T21111] netlink: 'syz.1.4334': attribute type 27 has an invalid length.
[  864.641557][T21111] syz_tun: left promiscuous mode
[  864.736790][T21111] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  864.739577][T21111] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  864.742687][T21111] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  864.746362][T21111] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  864.810487][T21112] 8021q: adding VLAN 0 to HW filter on device bond0
[  864.813430][T21112] 8021q: adding VLAN 0 to HW filter on device team0
[  864.817297][T21112] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  864.976760][T21122] siw: device registration error -23
[  865.055524][T21124] lo speed is unknown, defaulting to 1000
[  865.058009][T21124] lo speed is unknown, defaulting to 1000
[  865.060436][T21124] lo speed is unknown, defaulting to 1000
[  865.132995][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  866.172834][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  867.168332][T21157] netfs: Couldn't get user pages (rc=-14)
[  867.209250][T21159] netlink: 'syz.1.4345': attribute type 1 has an invalid length.
[  867.212415][T21159] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4345'.
[  867.212833][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  867.222464][T21159] loop2: detected capacity change from 0 to 7
[  867.226508][T21159] Dev loop2: unable to read RDB block 7
[  867.230185][T21159]  loop2: AHDI p1 p2 p3
[  867.231599][T21159] loop2: partition table partially beyond EOD, truncated
[  867.234387][T21159] loop2: p1 start 1601398130 is beyond EOD, truncated
[  867.236636][T21159] loop2: p2 start 1702059890 is beyond EOD, truncated
[  868.252899][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  868.262884][ T3231] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  868.414670][ T3231] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  868.419323][ T3231] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  868.423949][ T3231] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  868.427680][ T3231] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  868.442143][T21173] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  868.447303][ T3231] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  869.292859][    C1] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  869.535140][ T1418] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  869.538508][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  869.540488][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  870.186379][T21187] FAULT_INJECTION: forcing a failure.
[  870.186379][T21187] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  870.206718][T21187] CPU: 0 UID: 0 PID: 21187 Comm: syz.3.4352 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  870.206736][T21187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  870.206743][T21187] Call Trace:
[  870.206748][T21187]  <TASK>
[  870.206753][T21187]  dump_stack_lvl+0x16c/0x1f0
[  870.206773][T21187]  should_fail_ex+0x512/0x640
[  870.206793][T21187]  _copy_from_user+0x2e/0xd0
[  870.206805][T21187]  get_compat_msghdr+0xa7/0x170
[  870.206823][T21187]  ? __pfx_get_compat_msghdr+0x10/0x10
[  870.206858][T21187]  ___sys_sendmsg+0x1ae/0x1d0
[  870.206876][T21187]  ? __pfx____sys_sendmsg+0x10/0x10
[  870.206899][T21187]  ? find_held_lock+0x2b/0x80
[  870.206919][T21187]  __sys_sendmsg+0x16d/0x220
[  870.206936][T21187]  ? __pfx___sys_sendmsg+0x10/0x10
[  870.206958][T21187]  ? rcu_is_watching+0x12/0xc0
[  870.206972][T21187]  __do_fast_syscall_32+0x7c/0x3a0
[  870.206990][T21187]  do_fast_syscall_32+0x32/0x80
[  870.207006][T21187]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  870.207032][T21187] RIP: 0023:0xf710e579
[  870.207042][T21187] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  870.207053][T21187] RSP: 002b:00000000f50dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  870.207063][T21187] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 0000000080000080
[  870.207070][T21187] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  870.207076][T21187] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  870.207083][T21187] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  870.207089][T21187] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  870.207103][T21187]  </TASK>
[  870.332860][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  870.764614][T18351] usb 5-1: USB disconnect, device number 53
[  870.861314][T21198] warn_alloc: 3 callbacks suppressed
[  870.861326][T21198] syz.3.4356: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  870.868868][T21198] CPU: 0 UID: 0 PID: 21198 Comm: syz.3.4356 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  870.868886][T21198] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  870.868895][T21198] Call Trace:
[  870.868900][T21198]  <TASK>
[  870.868906][T21198]  dump_stack_lvl+0x16c/0x1f0
[  870.868927][T21198]  warn_alloc+0x248/0x3a0
[  870.868948][T21198]  ? __pfx_warn_alloc+0x10/0x10
[  870.868966][T21198]  ? __pfx_stack_trace_save+0x10/0x10
[  870.868980][T21198]  ? stack_depot_save_flags+0x28/0xa40
[  870.869004][T21198]  ? kasan_save_stack+0x42/0x60
[  870.869021][T21198]  ? kasan_save_stack+0x33/0x60
[  870.869038][T21198]  ? kasan_save_track+0x14/0x30
[  870.869055][T21198]  ? xskq_create+0x52/0x1d0
[  870.869069][T21198]  ? xsk_setsockopt+0x640/0x840
[  870.869081][T21198]  ? do_sock_setsockopt+0x221/0x470
[  870.869094][T21198]  ? xskq_create+0xfb/0x1d0
[  870.869108][T21198]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  870.869130][T21198]  ? xskq_create+0xfb/0x1d0
[  870.869147][T21198]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  870.869168][T21198]  ? xskq_create+0xfb/0x1d0
[  870.869182][T21198]  vmalloc_user_noprof+0x9e/0xe0
[  870.869197][T21198]  ? xskq_create+0xfb/0x1d0
[  870.869213][T21198]  xskq_create+0xfb/0x1d0
[  870.869228][T21198]  xsk_setsockopt+0x640/0x840
[  870.869242][T21198]  ? __pfx_xsk_setsockopt+0x10/0x10
[  870.869255][T21198]  ? __pfx_aa_sk_perm+0x10/0x10
[  870.869271][T21198]  ? errseq_sample+0x53/0x70
[  870.869285][T21198]  ? __pfx_xsk_setsockopt+0x10/0x10
[  870.869298][T21198]  do_sock_setsockopt+0x221/0x470
[  870.869309][T21198]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  870.869329][T21198]  __sys_setsockopt+0x120/0x1a0
[  870.869348][T21198]  __ia32_sys_setsockopt+0xbc/0x160
[  870.869364][T21198]  ? lockdep_hardirqs_on+0x7c/0x110
[  870.869380][T21198]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  870.869397][T21198]  __do_fast_syscall_32+0x7c/0x3a0
[  870.869416][T21198]  do_fast_syscall_32+0x32/0x80
[  870.869433][T21198]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  870.869448][T21198] RIP: 0023:0xf710e579
[  870.869488][T21198] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  870.869500][T21198] RSP: 002b:00000000f50fe55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  870.869513][T21198] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  870.869521][T21198] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  870.869529][T21198] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  870.869536][T21198] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  870.869544][T21198] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  870.869559][T21198]  </TASK>
[  870.869563][T21198] Mem-Info:
[  870.956132][T21198] active_anon:9135 inactive_anon:2883 isolated_anon:0
[  870.956132][T21198]  active_file:5514 inactive_file:8637 isolated_file:0
[  870.956132][T21198]  unevictable:1768 dirty:246 writeback:0
[  870.956132][T21198]  slab_reclaimable:7738 slab_unreclaimable:83698
[  870.956132][T21198]  mapped:29303 shmem:10813 pagetables:2060
[  870.956132][T21198]  sec_pagetables:330 bounce:0
[  870.956132][T21198]  kernel_misc_reclaimable:0
[  870.956132][T21198]  free:31153 free_pcp:16930 free_cma:0
[  870.970300][T21198] Node 0 active_anon:292kB inactive_anon:208kB active_file:0kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5396kB dirty:0kB writeback:0kB shmem:3256kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8524kB pagetables:2288kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  870.980293][T21198] Node 1 active_anon:39648kB inactive_anon:11324kB active_file:22056kB inactive_file:34520kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:115316kB dirty:984kB writeback:0kB shmem:43396kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:5280kB pagetables:5952kB sec_pagetables:168kB all_unreclaimable? no Balloon:0kB
[  870.991439][T21198] Node 0 DMA free:2048kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:688kB local_pcp:196kB free_cma:0kB
[  871.001057][T21198] lowmem_reserve[]: 0 289 289 289 289
[  871.002966][T21198] Node 0 DMA32 free:17108kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:588KB active_anon:292kB inactive_anon:204kB active_file:0kB inactive_file:28kB unevictable:3536kB writepending:0kB present:1032196kB managed:296728kB mlocked:0kB bounce:0kB free_pcp:12568kB local_pcp:3744kB free_cma:0kB
[  871.043883][T21198] lowmem_reserve[]: 0 0 0 0 0
[  871.045513][T21198] Node 1 DMA32 free:105208kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:4096KB active_anon:43548kB inactive_anon:11324kB active_file:22056kB inactive_file:34520kB unevictable:3536kB writepending:1084kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:47836kB local_pcp:3632kB free_cma:0kB
[  871.056398][T21198] lowmem_reserve[]: 0 0 0 0 0
[  871.058015][T21198] Node 0 DMA: 8*4kB (UM) 22*8kB (UM) 15*16kB (UM) 8*32kB (UM) 1*64kB (M) 2*128kB (UM) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2048kB
[  871.062703][T21198] Node 0 DMA32: 278*4kB (UMH) 380*8kB (UMEH) 90*16kB (UMEH) 119*32kB (UMEH) 52*64kB (UME) 18*128kB (UME) 8*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17080kB
[  871.072888][T21198] Node 1 DMA32: 56*4kB (UME) 312*8kB (UE) 177*16kB (UE) 418*32kB (UME) 218*64kB (UME) 83*128kB (UME) 33*256kB (UME) 10*512kB (UM) 21*1024kB (UM) 7*2048kB (UM) 3*4096kB (MH) = 105200kB
[  871.080408][T21198] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  871.083507][T21198] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  871.087488][T21198] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  871.091133][T21198] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  871.098649][T21198] 27865 total pagecache pages
[  871.100279][T21198] 701 pages in swap cache
[  871.101822][T21198] Free swap  = 93784kB
[  871.103265][T21198] Total swap = 124996kB
[  871.104697][T21198] 524155 pages RAM
[  871.106018][T21198] 0 pages HighMem/MovableOnly
[  871.107594][T21198] 209066 pages reserved
[  871.109035][T21198] 0 pages cma reserved
[  871.372910][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  871.618708][T21214] pim6reg: entered allmulticast mode
[  871.631852][T21214] pim6reg: left allmulticast mode
[  871.736366][T21217] siw: device registration error -23
[  872.412867][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  873.452846][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  874.492977][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  874.885269][T21247] netlink: 'syz.3.4367': attribute type 1 has an invalid length.
[  874.888311][T21247] netlink: 224 bytes leftover after parsing attributes in process `syz.3.4367'.
[  874.914480][T21247] loop2: detected capacity change from 0 to 7
[  874.921709][T21247] Dev loop2: unable to read RDB block 7
[  874.923610][T21247]  loop2: AHDI p1 p2 p3
[  874.924939][T21247] loop2: partition table partially beyond EOD, truncated
[  874.927388][T21247] loop2: p1 start 1601398130 is beyond EOD, truncated
[  874.929485][T21247] loop2: p2 start 1702059890 is beyond EOD, truncated
[  875.063199][ T3231] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  875.214793][ T3231] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  875.219664][ T3231] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  875.224035][ T3231] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  875.226878][ T3231] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  875.265256][T21244] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  875.271945][ T3231] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  875.370533][T21263] pim6reg: entered allmulticast mode
[  875.394172][T21263] pim6reg: left allmulticast mode
[  875.532867][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  876.573117][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  877.612866][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  877.702290][ T1468] usb 9-1: USB disconnect, device number 13
[  878.044273][T21291] pim6reg: entered allmulticast mode
[  878.058415][T21291] pim6reg: left allmulticast mode
[  878.094216][T21284] xt_TCPMSS: Only works on TCP SYN packets
[  878.653042][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  879.046479][T21305] pim6reg: entered allmulticast mode
[  879.692859][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  879.697075][T21305] pim6reg: left allmulticast mode
[  880.289402][T18351] usb 8-1: new high-speed USB device number 51 using dummy_hcd
[  880.444252][T18351] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  880.447859][T18351] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  880.451409][T18351] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  880.454547][T18351] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  880.460633][T21311] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  880.466201][T18351] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  880.742976][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  881.235433][T21346] siw: device registration error -23
[  881.482702][T21351] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  881.486581][T21351] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  881.782925][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  882.277850][T14138] usb 8-1: USB disconnect, device number 51
[  882.812920][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  883.852890][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  884.297807][T21384] pim6reg: entered allmulticast mode
[  884.892903][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  885.932857][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  886.982864][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  887.275831][T21385] pim6reg: left allmulticast mode
[  887.489058][T21397] siw: device registration error -23
[  887.524303][T21394] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  887.527036][T21394] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  887.766401][T21409] netlink: 'syz.0.4415': attribute type 1 has an invalid length.
[  887.769702][T21409] netlink: 224 bytes leftover after parsing attributes in process `syz.0.4415'.
[  887.803886][T21409] loop2: detected capacity change from 0 to 7
[  887.806412][T21409] Dev loop2: unable to read RDB block 7
[  887.808128][T21409]  loop2: AHDI p1 p2 p3
[  887.809426][T21409] loop2: partition table partially beyond EOD, truncated
[  887.811895][T21409] loop2: p1 start 1601398130 is beyond EOD, truncated
[  887.814532][T21409] loop2: p2 start 1702059890 is beyond EOD, truncated
[  888.012875][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  888.577016][T21419] pim6reg: entered allmulticast mode
[  888.586008][T21419] pim6reg: left allmulticast mode
[  888.802031][T21422] syz.0.4419: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  888.808732][T21422] CPU: 0 UID: 0 PID: 21422 Comm: syz.0.4419 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  888.808749][T21422] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  888.808758][T21422] Call Trace:
[  888.808762][T21422]  <TASK>
[  888.808767][T21422]  dump_stack_lvl+0x16c/0x1f0
[  888.808789][T21422]  warn_alloc+0x248/0x3a0
[  888.808809][T21422]  ? __pfx_warn_alloc+0x10/0x10
[  888.808831][T21422]  ? __pfx_stack_trace_save+0x10/0x10
[  888.808845][T21422]  ? stack_depot_save_flags+0x28/0xa40
[  888.808867][T21422]  ? kasan_save_stack+0x42/0x60
[  888.808884][T21422]  ? kasan_save_stack+0x33/0x60
[  888.808901][T21422]  ? kasan_save_track+0x14/0x30
[  888.808917][T21422]  ? xskq_create+0x52/0x1d0
[  888.808931][T21422]  ? xsk_setsockopt+0x640/0x840
[  888.808942][T21422]  ? do_sock_setsockopt+0x221/0x470
[  888.808955][T21422]  ? xskq_create+0xfb/0x1d0
[  888.808968][T21422]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  888.808989][T21422]  ? xskq_create+0xfb/0x1d0
[  888.809005][T21422]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  888.809025][T21422]  ? xskq_create+0xfb/0x1d0
[  888.809038][T21422]  vmalloc_user_noprof+0x9e/0xe0
[  888.809053][T21422]  ? xskq_create+0xfb/0x1d0
[  888.809066][T21422]  xskq_create+0xfb/0x1d0
[  888.809081][T21422]  xsk_setsockopt+0x640/0x840
[  888.809095][T21422]  ? __pfx_xsk_setsockopt+0x10/0x10
[  888.809107][T21422]  ? __pfx_aa_sk_perm+0x10/0x10
[  888.809122][T21422]  ? errseq_sample+0x53/0x70
[  888.809136][T21422]  ? __pfx_xsk_setsockopt+0x10/0x10
[  888.809148][T21422]  do_sock_setsockopt+0x221/0x470
[  888.809159][T21422]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  888.809179][T21422]  __sys_setsockopt+0x120/0x1a0
[  888.809196][T21422]  __ia32_sys_setsockopt+0xbc/0x160
[  888.809211][T21422]  ? lockdep_hardirqs_on+0x7c/0x110
[  888.809240][T21422]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  888.809260][T21422]  __do_fast_syscall_32+0x7c/0x3a0
[  888.809280][T21422]  do_fast_syscall_32+0x32/0x80
[  888.809318][T21422]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  888.809332][T21422] RIP: 0023:0xf7f61579
[  888.809342][T21422] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  888.809354][T21422] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  888.809366][T21422] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  888.809373][T21422] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  888.809380][T21422] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  888.809387][T21422] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  888.809394][T21422] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  888.809408][T21422]  </TASK>
[  888.809426][T21422] Mem-Info:
[  888.896341][T21422] active_anon:9008 inactive_anon:2633 isolated_anon:0
[  888.896341][T21422]  active_file:5609 inactive_file:8643 isolated_file:0
[  888.896341][T21422]  unevictable:1768 dirty:516 writeback:0
[  888.896341][T21422]  slab_reclaimable:7747 slab_unreclaimable:83899
[  888.896341][T21422]  mapped:29821 shmem:10672 pagetables:2113
[  888.896341][T21422]  sec_pagetables:330 bounce:0
[  888.896341][T21422]  kernel_misc_reclaimable:0
[  888.896341][T21422]  free:37550 free_pcp:9347 free_cma:0
[  888.910297][T21422] Node 0 active_anon:3504kB inactive_anon:204kB active_file:0kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:8408kB dirty:0kB writeback:0kB shmem:6272kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8400kB pagetables:2104kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  888.921744][T21422] Node 1 active_anon:32628kB inactive_anon:10328kB active_file:22436kB inactive_file:34544kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:111576kB dirty:2064kB writeback:0kB shmem:36416kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:5412kB pagetables:6248kB sec_pagetables:168kB all_unreclaimable? no Balloon:0kB
[  888.932949][T21422] Node 0 DMA free:2048kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:688kB local_pcp:224kB free_cma:0kB
[  888.945310][T21422] lowmem_reserve[]: 0 289 289 289 289
[  888.947702][T21422] Node 0 DMA32 free:17052kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:588KB active_anon:3504kB inactive_anon:200kB active_file:0kB inactive_file:28kB unevictable:3536kB writepending:0kB present:1032196kB managed:296728kB mlocked:0kB bounce:0kB free_pcp:9944kB local_pcp:3528kB free_cma:0kB
[  888.966133][T21422] lowmem_reserve[]: 0 0 0 0 0
[  888.968361][T21422] Node 1 DMA32 free:130900kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:4096KB active_anon:32828kB inactive_anon:10328kB active_file:22436kB inactive_file:34544kB unevictable:3536kB writepending:2064kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:26880kB local_pcp:768kB free_cma:0kB
[  888.985926][T21422] lowmem_reserve[]: 0 0 0 0 0
[  888.988069][T21422] Node 0 DMA: 8*4kB (UM) 22*8kB (UM) 15*16kB (UM) 8*32kB (UM) 1*64kB (M) 2*128kB (UM) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2048kB
[  888.995985][T21422] Node 0 DMA32: 311*4kB (UMH) 348*8kB (UMEH) 86*16kB (UMEH) 148*32kB (UMEH) 38*64kB (UME) 19*128kB (UME) 8*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17052kB
[  889.003657][T21422] Node 1 DMA32: 889*4kB (UME) 621*8kB (UME) 516*16kB (UME) 327*32kB (UME) 324*64kB (UME) 117*128kB (UME) 33*256kB (UME) 18*512kB (UM) 23*1024kB (UM) 9*2048kB (UM) 2*4096kB (MH) = 130796kB
[  889.011381][T21422] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  889.015442][T21422] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  889.020179][T21422] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  889.024233][T21422] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  889.028036][T21422] 25613 total pagecache pages
[  889.030029][T21422] 692 pages in swap cache
[  889.031887][T21422] Free swap  = 94008kB
[  889.033690][T21422] Total swap = 124996kB
[  889.035466][T21422] 524155 pages RAM
[  889.037059][T21422] 0 pages HighMem/MovableOnly
[  889.038589][T21422] 209066 pages reserved
[  889.039846][T21422] 0 pages cma reserved
[  889.052829][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  889.310658][T21434] pim6reg: entered allmulticast mode
[  889.429190][T21434] pim6reg: left allmulticast mode
[  889.780700][T21435] netlink: 'syz.0.4422': attribute type 1 has an invalid length.
[  889.783125][T21435] netlink: 'syz.0.4422': attribute type 2 has an invalid length.
[  889.936313][T21447] netlink: 'syz.4.4424': attribute type 1 has an invalid length.
[  889.938936][T21447] netlink: 224 bytes leftover after parsing attributes in process `syz.4.4424'.
[  889.996423][T21448] loop2: detected capacity change from 0 to 7
[  889.999424][T21448] Dev loop2: unable to read RDB block 7
[  890.001639][T21448]  loop2: unable to read partition table
[  890.003831][T21448] loop2: partition table beyond EOD, truncated
[  890.006016][T21448] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  890.092845][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  890.277796][T21456] pim6reg: entered allmulticast mode
[  890.287235][T21456] pim6reg: left allmulticast mode
[  891.132900][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  891.742961][T21484] xt_addrtype: ipv6 BLACKHOLE matching not supported
[  891.797115][T21489] FAULT_INJECTION: forcing a failure.
[  891.797115][T21489] name failslab, interval 1, probability 0, space 0, times 0
[  891.801305][T21489] CPU: 2 UID: 0 PID: 21489 Comm: syz.1.4437 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  891.801328][T21489] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  891.801339][T21489] Call Trace:
[  891.801346][T21489]  <TASK>
[  891.801353][T21489]  dump_stack_lvl+0x16c/0x1f0
[  891.801382][T21489]  should_fail_ex+0x512/0x640
[  891.801407][T21489]  ? fs_reclaim_acquire+0xae/0x150
[  891.801431][T21489]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  891.801457][T21489]  should_failslab+0xc2/0x120
[  891.801475][T21489]  __kmalloc_noprof+0xd2/0x510
[  891.801508][T21489]  tomoyo_realpath_from_path+0xc2/0x6e0
[  891.801535][T21489]  ? tomoyo_profile+0x47/0x60
[  891.801553][T21489]  tomoyo_path_number_perm+0x245/0x580
[  891.801573][T21489]  ? tomoyo_path_number_perm+0x237/0x580
[  891.801597][T21489]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  891.801643][T21489]  ? find_held_lock+0x2b/0x80
[  891.801659][T21489]  ? hook_file_ioctl_common+0x145/0x410
[  891.801684][T21489]  ? __fget_files+0x20e/0x3c0
[  891.801707][T21489]  ? __fput_deferred+0x470/0x480
[  891.801730][T21489]  security_file_ioctl_compat+0x9b/0x240
[  891.801755][T21489]  __ia32_compat_sys_ioctl+0xc3/0x370
[  891.801789][T21489]  __do_fast_syscall_32+0x7c/0x3a0
[  891.801818][T21489]  do_fast_syscall_32+0x32/0x80
[  891.801845][T21489]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  891.801867][T21489] RIP: 0023:0xf709e579
[  891.801883][T21489] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  891.801898][T21489] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  891.801911][T21489] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004080aebf
[  891.801917][T21489] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 0000000000000000
[  891.801924][T21489] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  891.801930][T21489] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  891.801936][T21489] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  891.801951][T21489]  </TASK>
[  891.801956][T21489] ERROR: Out of memory at tomoyo_realpath_from_path.
[  892.172840][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  892.209384][T14138] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  892.406897][T14138] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  892.410279][T14138] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  892.422840][T14138] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  892.425624][T14138] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  892.505157][T21490] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  892.518989][T14138] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  892.950045][T21503] pim6reg: entered allmulticast mode
[  892.957180][T21503] pim6reg: left allmulticast mode
[  893.147364][T21514] /dev/sg0: Can't lookup blockdev
[  893.222828][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  893.826659][T21521] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  894.252851][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  894.498626][T21532] pim6reg: entered allmulticast mode
[  894.521039][T21532] pim6reg: left allmulticast mode
[  894.762994][   T10] usb 9-1: USB disconnect, device number 14
[  895.087610][T21539] pim6reg: entered allmulticast mode
[  895.107887][T21539] pim6reg: left allmulticast mode
[  895.292835][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  895.462436][T21547] netlink: 'syz.4.4453': attribute type 1 has an invalid length.
[  895.465565][T21547] netlink: 224 bytes leftover after parsing attributes in process `syz.4.4453'.
[  895.523599][T21548] loop2: detected capacity change from 0 to 7
[  895.528055][T21395] Dev loop2: unable to read RDB block 7
[  895.529880][T21395]  loop2: unable to read partition table
[  895.532316][T21395] loop2: partition table beyond EOD, truncated
[  895.565481][T21548] Dev loop2: unable to read RDB block 7
[  895.567391][T21548]  loop2: unable to read partition table
[  895.570028][T21548] loop2: partition table beyond EOD, truncated
[  895.572889][T21548] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  896.277490][T21559] netlink: 'syz.3.4455': attribute type 1 has an invalid length.
[  896.280643][T21559] netlink: 'syz.3.4455': attribute type 2 has an invalid length.
[  896.332927][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  896.342852][T21566] siw: device registration error -23
[  896.902834][   T10] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  897.336953][   T10] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  897.372826][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  897.451409][T21594] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  897.457817][T21594] Falling back ldisc for ptm0.
[  897.470636][T21596] loop2: detected capacity change from 0 to 7
[  897.476173][T21395] Dev loop2: unable to read RDB block 7
[  897.478006][T21395]  loop2: unable to read partition table
[  897.479887][T21395] loop2: partition table beyond EOD, truncated
[  897.486520][   T10] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  897.489600][   T10] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  897.490211][T21596] Dev loop2: unable to read RDB block 7
[  897.492384][   T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  897.498537][T21596]  loop2: unable to read partition table
[  897.500452][T21596] loop2: partition table beyond EOD, truncated
[  897.502471][T21596] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  897.503079][T21575] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  897.514881][   T10] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  897.741277][T21611] trusted_key: encrypted_key: master key parameter '§­)ò«dFÉI¥Ú}‡�0v‡\)#AGËüÌa`' is invalid
[  898.304916][T21615] netlink: 'syz.1.4472': attribute type 1 has an invalid length.
[  898.307382][T21615] netlink: 'syz.1.4472': attribute type 2 has an invalid length.
[  898.422837][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  898.688876][T21633] loop2: detected capacity change from 0 to 7
[  898.693276][T21599] Dev loop2: unable to read RDB block 7
[  898.695297][T21599]  loop2: unable to read partition table
[  898.697387][T21599] loop2: partition table beyond EOD, truncated
[  898.700836][T21633] Dev loop2: unable to read RDB block 7
[  898.703382][T21633]  loop2: unable to read partition table
[  898.706156][T21633] loop2: partition table beyond EOD, truncated
[  898.708911][T21633] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  899.134447][T21643] warn_alloc: 6 callbacks suppressed
[  899.134458][T21643] syz.1.4480: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  899.140750][T21643] CPU: 2 UID: 0 PID: 21643 Comm: syz.1.4480 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  899.140767][T21643] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  899.140775][T21643] Call Trace:
[  899.140780][T21643]  <TASK>
[  899.140785][T21643]  dump_stack_lvl+0x16c/0x1f0
[  899.140806][T21643]  warn_alloc+0x248/0x3a0
[  899.140825][T21643]  ? __pfx_warn_alloc+0x10/0x10
[  899.140842][T21643]  ? __pfx_stack_trace_save+0x10/0x10
[  899.140856][T21643]  ? stack_depot_save_flags+0x28/0xa40
[  899.140877][T21643]  ? kasan_save_stack+0x42/0x60
[  899.140895][T21643]  ? kasan_save_stack+0x33/0x60
[  899.140911][T21643]  ? kasan_save_track+0x14/0x30
[  899.140927][T21643]  ? xskq_create+0x52/0x1d0
[  899.140940][T21643]  ? xsk_setsockopt+0x640/0x840
[  899.140951][T21643]  ? do_sock_setsockopt+0x221/0x470
[  899.140964][T21643]  ? xskq_create+0xfb/0x1d0
[  899.140978][T21643]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  899.140998][T21643]  ? xskq_create+0xfb/0x1d0
[  899.141015][T21643]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  899.141035][T21643]  ? xskq_create+0xfb/0x1d0
[  899.141048][T21643]  vmalloc_user_noprof+0x9e/0xe0
[  899.141062][T21643]  ? xskq_create+0xfb/0x1d0
[  899.141076][T21643]  xskq_create+0xfb/0x1d0
[  899.141091][T21643]  xsk_setsockopt+0x640/0x840
[  899.141105][T21643]  ? __pfx_xsk_setsockopt+0x10/0x10
[  899.141117][T21643]  ? __pfx_aa_sk_perm+0x10/0x10
[  899.141131][T21643]  ? errseq_sample+0x53/0x70
[  899.141145][T21643]  ? __pfx_xsk_setsockopt+0x10/0x10
[  899.141157][T21643]  do_sock_setsockopt+0x221/0x470
[  899.141169][T21643]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  899.141188][T21643]  __sys_setsockopt+0x120/0x1a0
[  899.141230][T21643]  __ia32_sys_setsockopt+0xbc/0x160
[  899.141245][T21643]  ? lockdep_hardirqs_on+0x7c/0x110
[  899.141261][T21643]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  899.141279][T21643]  __do_fast_syscall_32+0x7c/0x3a0
[  899.141299][T21643]  do_fast_syscall_32+0x32/0x80
[  899.141316][T21643]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  899.141331][T21643] RIP: 0023:0xf709e579
[  899.141341][T21643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  899.141352][T21643] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  899.141363][T21643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  899.141370][T21643] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  899.141377][T21643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  899.141383][T21643] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  899.141390][T21643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  899.141403][T21643]  </TASK>
[  899.141407][T21643] Mem-Info:
[  899.231925][T21643] active_anon:6715 inactive_anon:7681 isolated_anon:0
[  899.231925][T21643]  active_file:7376 inactive_file:7624 isolated_file:0
[  899.231925][T21643]  unevictable:1768 dirty:285 writeback:0
[  899.231925][T21643]  slab_reclaimable:7747 slab_unreclaimable:83742
[  899.231925][T21643]  mapped:31957 shmem:12941 pagetables:2181
[  899.231925][T21643]  sec_pagetables:330 bounce:0
[  899.231925][T21643]  kernel_misc_reclaimable:0
[  899.231925][T21643]  free:28559 free_pcp:15698 free_cma:0
[  899.246794][T21643] Node 0 active_anon:568kB inactive_anon:204kB active_file:1044kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5396kB dirty:0kB writeback:0kB shmem:3256kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8368kB pagetables:2132kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  899.256817][T21643] Node 1 active_anon:26792kB inactive_anon:30520kB active_file:28460kB inactive_file:30468kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:122432kB dirty:1140kB writeback:0kB shmem:48508kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:5400kB pagetables:6592kB sec_pagetables:168kB all_unreclaimable? no Balloon:0kB
[  899.267068][T21643] Node 0 DMA free:2048kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:688kB local_pcp:172kB free_cma:0kB
[  899.276393][T21643] lowmem_reserve[]: 0 289 289 289 289
[  899.278091][T21643] Node 0 DMA32 free:16652kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:592KB active_anon:568kB inactive_anon:200kB active_file:1044kB inactive_file:28kB unevictable:3536kB writepending:0kB present:1032196kB managed:296728kB mlocked:0kB bounce:0kB free_pcp:11556kB local_pcp:3036kB free_cma:0kB
[  899.289170][T21643] lowmem_reserve[]: 0 0 0 0 0
[  899.291092][T21643] Node 1 DMA32 free:95536kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:4096KB active_anon:27292kB inactive_anon:30520kB active_file:28460kB inactive_file:30468kB unevictable:3536kB writepending:1140kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:49960kB local_pcp:12608kB free_cma:0kB
[  899.301567][T21643] lowmem_reserve[]: 0 0 0 0 0
[  899.303272][T21643] Node 0 DMA: 8*4kB (UM) 22*8kB (UM) 15*16kB (UM) 8*32kB (UM) 1*64kB (M) 2*128kB (UM) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2048kB
[  899.307715][T21643] Node 0 DMA32: 11*4kB (UH) 228*8kB (UEH) 66*16kB (UEH) 173*32kB (UMEH) 54*64kB (UME) 21*128kB (UME) 8*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16652kB
[  899.313104][T21643] Node 1 DMA32: 5*4kB (UME) 311*8kB (UME) 204*16kB (UM) 328*32kB (UME) 232*64kB (UME) 85*128kB (UME) 35*256kB (UME) 19*512kB (UM) 18*1024kB (UM) 6*2048kB (UM) 1*4096kB (H) = 95500kB
[  899.318725][T21643] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  899.321634][T21643] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  899.325072][T21643] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  899.328045][T21643] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  899.331093][T21643] 28636 total pagecache pages
[  899.332596][T21643] 718 pages in swap cache
[  899.334222][T21643] Free swap  = 91880kB
[  899.335542][T21643] Total swap = 124996kB
[  899.336841][T21643] 524155 pages RAM
[  899.338014][T21643] 0 pages HighMem/MovableOnly
[  899.339498][T21643] 209066 pages reserved
[  899.340790][T21643] 0 pages cma reserved
[  899.452876][    C2] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  899.523044][ T1468] usb 9-1: USB disconnect, device number 15
[  899.747708][T21655] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  899.750482][T21655] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  900.435235][T21664] loop2: detected capacity change from 0 to 7
[  900.441722][T21599] Dev loop2: unable to read RDB block 7
[  900.444698][T21599]  loop2: unable to read partition table
[  900.447251][T21599] loop2: partition table beyond EOD, truncated
[  900.451809][T21664] Dev loop2: unable to read RDB block 7
[  900.454546][T21664]  loop2: unable to read partition table
[  900.456503][T21664] loop2: partition table beyond EOD, truncated
[  900.459191][T21664] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  900.492883][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  900.651655][T21670] FAULT_INJECTION: forcing a failure.
[  900.651655][T21670] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  900.656663][T21670] CPU: 0 UID: 0 PID: 21670 Comm: syz.4.4487 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  900.656687][T21670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  900.656698][T21670] Call Trace:
[  900.656725][T21670]  <TASK>
[  900.656732][T21670]  dump_stack_lvl+0x16c/0x1f0
[  900.656760][T21670]  should_fail_ex+0x512/0x640
[  900.656788][T21670]  _copy_to_user+0x32/0xd0
[  900.656806][T21670]  simple_read_from_buffer+0xcb/0x170
[  900.656828][T21670]  proc_fail_nth_read+0x197/0x270
[  900.656842][T21670]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  900.656857][T21670]  ? rw_verify_area+0xcf/0x680
[  900.656872][T21670]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  900.656885][T21670]  vfs_read+0x1e1/0xc60
[  900.656901][T21670]  ? fdget_pos+0x2a2/0x370
[  900.656919][T21670]  ? __pfx_vfs_read+0x10/0x10
[  900.656934][T21670]  ? find_held_lock+0x2b/0x80
[  900.656949][T21670]  ? __fget_files+0x20e/0x3c0
[  900.656963][T21670]  ? handle_mm_fault+0x200/0xd10
[  900.656982][T21670]  ksys_read+0x12a/0x250
[  900.657010][T21670]  ? __pfx_ksys_read+0x10/0x10
[  900.657028][T21670]  ? rcu_is_watching+0x12/0xc0
[  900.657041][T21670]  __do_fast_syscall_32+0x7c/0x3a0
[  900.657059][T21670]  do_fast_syscall_32+0x32/0x80
[  900.657082][T21670]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  900.657101][T21670] RIP: 0023:0xf70be579
[  900.657112][T21670] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  900.657128][T21670] RSP: 002b:00000000f50ae590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  900.657143][T21670] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50ae620
[  900.657150][T21670] RDX: 000000000000000f RSI: 00000000f7422ff4 RDI: 0000000000000000
[  900.657161][T21670] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  900.657170][T21670] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  900.657196][T21670] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  900.657223][T21670]  </TASK>
[  900.812535][T21678] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4486'.
[  901.542833][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  901.905099][T21692] FAULT_INJECTION: forcing a failure.
[  901.905099][T21692] name failslab, interval 1, probability 0, space 0, times 0
[  901.910483][T21692] CPU: 3 UID: 0 PID: 21692 Comm: syz.4.4493 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  901.910522][T21692] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  901.910535][T21692] Call Trace:
[  901.910543][T21692]  <TASK>
[  901.910552][T21692]  dump_stack_lvl+0x16c/0x1f0
[  901.910583][T21692]  should_fail_ex+0x512/0x640
[  901.910615][T21692]  should_failslab+0xc2/0x120
[  901.910633][T21692]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  901.910662][T21692]  ? skb_clone+0x190/0x3f0
[  901.910691][T21692]  skb_clone+0x190/0x3f0
[  901.910718][T21692]  netlink_deliver_tap+0xabd/0xd30
[  901.910753][T21692]  netlink_unicast+0x5df/0x7f0
[  901.910775][T21692]  ? __pfx_netlink_unicast+0x10/0x10
[  901.910801][T21692]  netlink_sendmsg+0x8d1/0xdd0
[  901.910824][T21692]  ? __pfx_netlink_sendmsg+0x10/0x10
[  901.910844][T21692]  ? __import_iovec+0x1dd/0x650
[  901.910869][T21692]  ____sys_sendmsg+0xa95/0xc70
[  901.910892][T21692]  ? __pfx_____sys_sendmsg+0x10/0x10
[  901.910910][T21692]  ? get_compat_msghdr+0x11a/0x170
[  901.910949][T21692]  ___sys_sendmsg+0x134/0x1d0
[  901.910976][T21692]  ? __pfx____sys_sendmsg+0x10/0x10
[  901.911015][T21692]  ? find_held_lock+0x2b/0x80
[  901.911051][T21692]  __sys_sendmsg+0x16d/0x220
[  901.911077][T21692]  ? __pfx___sys_sendmsg+0x10/0x10
[  901.911114][T21692]  ? rcu_is_watching+0x12/0xc0
[  901.911137][T21692]  __do_fast_syscall_32+0x7c/0x3a0
[  901.911172][T21692]  do_fast_syscall_32+0x32/0x80
[  901.911203][T21692]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  901.911227][T21692] RIP: 0023:0xf70be579
[  901.911241][T21692] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  901.911258][T21692] RSP: 002b:00000000f50ae55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  901.911276][T21692] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000340
[  901.911288][T21692] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  901.911299][T21692] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  901.911310][T21692] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  901.911320][T21692] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  901.911346][T21692]  </TASK>
[  902.074760][T21696] loop2: detected capacity change from 0 to 7
[  902.077124][T21696] Dev loop2: unable to read RDB block 7
[  902.078736][T21696]  loop2: unable to read partition table
[  902.091271][T21696] loop2: partition table beyond EOD, truncated
[  902.115698][T21696] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  902.572849][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  903.622838][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  903.649560][T21700] befs: (nullb0): No write support. Marking filesystem read-only
[  903.652593][T21700] befs: (nullb0): invalid magic header
[  903.673027][T21701] befs: (nullb0): No write support. Marking filesystem read-only
[  904.045591][T21707] pim6reg: entered allmulticast mode
[  904.052159][T21709] pim6reg: left allmulticast mode
[  904.337753][T21701] befs: (nullb0): invalid magic header
[  904.652859][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  905.330746][T21739] loop2: detected capacity change from 0 to 7
[  905.337527][T21599] Dev loop2: unable to read RDB block 7
[  905.339409][T21599]  loop2: unable to read partition table
[  905.341554][T21599] loop2: partition table beyond EOD, truncated
[  905.388539][T21739] Dev loop2: unable to read RDB block 7
[  905.391057][T21739]  loop2: unable to read partition table
[  905.394803][T21739] loop2: partition table beyond EOD, truncated
[  905.397429][T21739] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  905.702835][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  906.732870][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  907.253037][T21760] CIFS: iocharset name too long
[  907.782829][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  908.738355][T21768] pim6reg: entered allmulticast mode
[  908.749078][T21768] pim6reg: left allmulticast mode
[  908.812830][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  909.277682][T21783] warn_alloc: 3 callbacks suppressed
[  909.277694][T21783] syz.0.4514: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  909.284785][T21783] CPU: 0 UID: 0 PID: 21783 Comm: syz.0.4514 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  909.284803][T21783] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  909.284811][T21783] Call Trace:
[  909.284816][T21783]  <TASK>
[  909.284821][T21783]  dump_stack_lvl+0x16c/0x1f0
[  909.284842][T21783]  warn_alloc+0x248/0x3a0
[  909.284862][T21783]  ? __pfx_warn_alloc+0x10/0x10
[  909.284879][T21783]  ? __pfx_stack_trace_save+0x10/0x10
[  909.284893][T21783]  ? stack_depot_save_flags+0x28/0xa40
[  909.284916][T21783]  ? kasan_save_stack+0x42/0x60
[  909.284932][T21783]  ? kasan_save_stack+0x33/0x60
[  909.284948][T21783]  ? kasan_save_track+0x14/0x30
[  909.284965][T21783]  ? xskq_create+0x52/0x1d0
[  909.284977][T21783]  ? xsk_setsockopt+0x640/0x840
[  909.284988][T21783]  ? do_sock_setsockopt+0x221/0x470
[  909.285001][T21783]  ? xskq_create+0xfb/0x1d0
[  909.285015][T21783]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  909.285035][T21783]  ? xskq_create+0xfb/0x1d0
[  909.285052][T21783]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  909.285071][T21783]  ? xskq_create+0xfb/0x1d0
[  909.285085][T21783]  vmalloc_user_noprof+0x9e/0xe0
[  909.285100][T21783]  ? xskq_create+0xfb/0x1d0
[  909.285140][T21783]  xskq_create+0xfb/0x1d0
[  909.285156][T21783]  xsk_setsockopt+0x640/0x840
[  909.285169][T21783]  ? __pfx_xsk_setsockopt+0x10/0x10
[  909.285182][T21783]  ? __pfx_aa_sk_perm+0x10/0x10
[  909.285197][T21783]  ? errseq_sample+0x53/0x70
[  909.285210][T21783]  ? __pfx_xsk_setsockopt+0x10/0x10
[  909.285223][T21783]  do_sock_setsockopt+0x221/0x470
[  909.285234][T21783]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  909.285253][T21783]  __sys_setsockopt+0x120/0x1a0
[  909.285271][T21783]  __ia32_sys_setsockopt+0xbc/0x160
[  909.285285][T21783]  ? lockdep_hardirqs_on+0x7c/0x110
[  909.285301][T21783]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  909.285317][T21783]  __do_fast_syscall_32+0x7c/0x3a0
[  909.285335][T21783]  do_fast_syscall_32+0x32/0x80
[  909.285354][T21783]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  909.285381][T21783] RIP: 0023:0xf7f61579
[  909.285397][T21783] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  909.285415][T21783] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  909.285435][T21783] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  909.285446][T21783] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  909.285453][T21783] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  909.285459][T21783] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  909.285466][T21783] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  909.285479][T21783]  </TASK>
[  909.285484][T21783] Mem-Info:
[  909.384831][T21783] active_anon:6476 inactive_anon:7680 isolated_anon:0
[  909.384831][T21783]  active_file:7380 inactive_file:7629 isolated_file:0
[  909.384831][T21783]  unevictable:1768 dirty:319 writeback:0
[  909.384831][T21783]  slab_reclaimable:7731 slab_unreclaimable:83924
[  909.384831][T21783]  mapped:34779 shmem:12916 pagetables:2165
[  909.384831][T21783]  sec_pagetables:330 bounce:0
[  909.384831][T21783]  kernel_misc_reclaimable:0
[  909.384831][T21783]  free:28815 free_pcp:14324 free_cma:0
[  909.399685][T21783] Node 0 active_anon:572kB inactive_anon:204kB active_file:1064kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5404kB dirty:0kB writeback:0kB shmem:3256kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8368kB pagetables:2132kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  909.409794][T21783] Node 1 active_anon:25332kB inactive_anon:30516kB active_file:28456kB inactive_file:30488kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:133712kB dirty:1276kB writeback:0kB shmem:48408kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:5704kB pagetables:6528kB sec_pagetables:168kB all_unreclaimable? no Balloon:0kB
[  909.420596][T21783] Node 0 DMA free:2048kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:688kB local_pcp:196kB free_cma:0kB
[  909.429493][T21783] lowmem_reserve[]: 0 289 289 289 289
[  909.431586][T21783] Node 0 DMA32 free:17088kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:592KB active_anon:572kB inactive_anon:200kB active_file:1064kB inactive_file:28kB unevictable:3536kB writepending:0kB present:1032196kB managed:296728kB mlocked:0kB bounce:0kB free_pcp:11676kB local_pcp:2624kB free_cma:0kB
[  909.441300][T21783] lowmem_reserve[]: 0 0 0 0 0
[  909.443170][T21783] Node 1 DMA32 free:96124kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:4096KB active_anon:25332kB inactive_anon:30516kB active_file:28456kB inactive_file:30488kB unevictable:3536kB writepending:1276kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:45052kB local_pcp:10368kB free_cma:0kB
[  909.453774][T21783] lowmem_reserve[]: 0 0 0 0 0
[  909.456866][T21783] Node 0 DMA: 8*4kB (UM) 22*8kB (UM) 15*16kB (UM) 8*32kB (UM) 1*64kB (M) 2*128kB (UM) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2048kB
[  909.462614][T21783] Node 0 DMA32: 64*4kB (UMH) 286*8kB (UMEH) 77*16kB (UMEH) 156*32kB (UMEH) 64*64kB (UME) 19*128kB (UME) 7*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17088kB
[  909.468752][T21783] Node 1 DMA32: 1*4kB (E) 65*8kB (UE) 1*16kB (U) 255*32kB (UME) 350*64kB (UME) 82*128kB (UME) 39*256kB (UME) 19*512kB (UM) 18*1024kB (UM) 6*2048kB (UM) 1*4096kB (H) = 96124kB
[  909.475438][T21783] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  909.478383][T21783] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  909.481294][T21783] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  909.484406][T21783] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  909.487369][T21783] 28671 total pagecache pages
[  909.488878][T21783] 749 pages in swap cache
[  909.490275][T21783] Free swap  = 91880kB
[  909.491635][T21783] Total swap = 124996kB
[  909.493015][T21783] 524155 pages RAM
[  909.494268][T21783] 0 pages HighMem/MovableOnly
[  909.495802][T21783] 209066 pages reserved
[  909.497191][T21783] 0 pages cma reserved
[  909.852832][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  910.892890][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  911.277082][T21820] pim6reg: entered allmulticast mode
[  911.286220][T21820] pim6reg: left allmulticast mode
[  911.490992][T21826] FAULT_INJECTION: forcing a failure.
[  911.490992][T21826] name failslab, interval 1, probability 0, space 0, times 0
[  911.495903][T21826] CPU: 2 UID: 0 PID: 21826 Comm: syz.1.4525 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  911.495921][T21826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  911.495928][T21826] Call Trace:
[  911.495932][T21826]  <TASK>
[  911.495937][T21826]  dump_stack_lvl+0x16c/0x1f0
[  911.495957][T21826]  should_fail_ex+0x512/0x640
[  911.495975][T21826]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  911.495993][T21826]  should_failslab+0xc2/0x120
[  911.496004][T21826]  __kmalloc_cache_noprof+0x6a/0x3e0
[  911.496020][T21826]  ? __alloc_workqueue+0xda2/0x1810
[  911.496036][T21826]  __alloc_workqueue+0xda2/0x1810
[  911.496051][T21826]  ? loop_global_lock_killable+0x30/0xb0
[  911.496067][T21826]  alloc_workqueue+0xd2/0x200
[  911.496081][T21826]  ? __pfx_alloc_workqueue+0x10/0x10
[  911.496095][T21826]  ? __fget_files+0x204/0x3c0
[  911.496117][T21826]  loop_configure+0x1072/0x1720
[  911.496134][T21826]  ? __lock_acquire+0x622/0x1c90
[  911.496155][T21826]  ? __lock_acquire+0xb8a/0x1c90
[  911.496170][T21826]  ? __pfx_loop_configure+0x10/0x10
[  911.496198][T21826]  lo_ioctl+0x1295/0x2760
[  911.496212][T21826]  ? __pfx_stack_trace_save+0x10/0x10
[  911.496224][T21826]  ? stack_depot_save_flags+0x28/0xa40
[  911.496243][T21826]  ? __lock_acquire+0xb8a/0x1c90
[  911.496258][T21826]  ? kasan_save_stack+0x42/0x60
[  911.496280][T21826]  ? kasan_save_stack+0x33/0x60
[  911.496300][T21826]  ? kasan_save_track+0x14/0x30
[  911.496327][T21826]  ? kasan_save_free_info+0x3b/0x60
[  911.496345][T21826]  ? __kasan_slab_free+0x51/0x70
[  911.496368][T21826]  ? kfree+0x2b4/0x4d0
[  911.496388][T21826]  ? tomoyo_path_number_perm+0x470/0x580
[  911.496408][T21826]  ? security_file_ioctl_compat+0x9b/0x240
[  911.496423][T21826]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  911.496436][T21826]  ? __do_fast_syscall_32+0x7c/0x3a0
[  911.496451][T21826]  ? do_fast_syscall_32+0x32/0x80
[  911.496466][T21826]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  911.496482][T21826]  ? __pfx_lo_ioctl+0x10/0x10
[  911.496511][T21826]  ? kasan_quarantine_put+0x10a/0x240
[  911.496527][T21826]  ? lockdep_hardirqs_on+0x7c/0x110
[  911.496543][T21826]  ? find_held_lock+0x2b/0x80
[  911.496556][T21826]  ? tomoyo_path_number_perm+0x295/0x580
[  911.496572][T21826]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  911.496607][T21826]  lo_compat_ioctl+0xb9/0x170
[  911.496623][T21826]  ? __pfx_lo_compat_ioctl+0x10/0x10
[  911.496637][T21826]  compat_blkdev_ioctl+0x2eb/0x7a0
[  911.496653][T21826]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  911.496666][T21826]  ? __fput_deferred+0x470/0x480
[  911.496680][T21826]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  911.496695][T21826]  __ia32_compat_sys_ioctl+0x242/0x370
[  911.496710][T21826]  __do_fast_syscall_32+0x7c/0x3a0
[  911.496727][T21826]  do_fast_syscall_32+0x32/0x80
[  911.496743][T21826]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  911.496757][T21826] RIP: 0023:0xf709e579
[  911.496767][T21826] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  911.496777][T21826] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  911.496788][T21826] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000004c0a
[  911.496795][T21826] RDX: 0000000080000400 RSI: 0000000000000000 RDI: 0000000000000000
[  911.496801][T21826] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  911.496808][T21826] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  911.496814][T21826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  911.496827][T21826]  </TASK>
[  911.892852][T13069] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  911.932856][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  911.977816][T21831] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  911.982015][T21831] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  911.990922][T21836] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4528'.
[  912.094586][T13069] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  912.098042][T13069] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  912.101128][T13069] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  912.103967][T13069] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  912.113812][T21821] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  912.118172][T13069] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  912.152956][   T61] usb 8-1: new high-speed USB device number 52 using dummy_hcd
[  912.292842][   T61] usb 8-1: device descriptor read/64, error -71
[  912.533038][   T61] usb 8-1: new high-speed USB device number 53 using dummy_hcd
[  912.662905][   T61] usb 8-1: device descriptor read/64, error -71
[  912.773178][   T61] usb usb8-port1: attempt power cycle
[  912.972886][    C2] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  913.122888][   T61] usb 8-1: new high-speed USB device number 54 using dummy_hcd
[  913.154993][   T61] usb 8-1: device descriptor read/8, error -71
[  913.283694][T21846] CIFS: iocharset name too long
[  913.402892][   T61] usb 8-1: new high-speed USB device number 55 using dummy_hcd
[  913.423542][   T61] usb 8-1: device descriptor read/8, error -71
[  913.543321][   T61] usb usb8-port1: unable to enumerate USB device
[  913.992199][T13069] usb 9-1: USB disconnect, device number 16
[  914.022839][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  915.052865][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  915.059811][T21865] netlink: 'syz.4.4535': attribute type 12 has an invalid length.
[  915.062578][T21865] netlink: 'syz.4.4535': attribute type 29 has an invalid length.
[  915.067179][T21865] netlink: 148 bytes leftover after parsing attributes in process `syz.4.4535'.
[  915.070061][T21865] netlink: 'syz.4.4535': attribute type 1 has an invalid length.
[  915.072480][T21865] netlink: 'syz.4.4535': attribute type 2 has an invalid length.
[  915.075025][T21865] netlink: 39 bytes leftover after parsing attributes in process `syz.4.4535'.
[  915.487425][T21870] pim6reg: entered allmulticast mode
[  915.601762][T21870] pim6reg: left allmulticast mode
[  916.092864][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  917.132841][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  918.172826][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  918.984282][T21903] lo speed is unknown, defaulting to 1000
[  918.984947][T21903] lo speed is unknown, defaulting to 1000
[  918.985688][T21903] lo speed is unknown, defaulting to 1000
[  919.212822][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  919.728384][T21927] netlink: 'syz.4.4552': attribute type 1 has an invalid length.
[  919.728400][T21927] netlink: 'syz.4.4552': attribute type 2 has an invalid length.
[  919.901282][T21932] FAULT_INJECTION: forcing a failure.
[  919.901282][T21932] name failslab, interval 1, probability 0, space 0, times 0
[  919.907524][T21932] CPU: 2 UID: 0 PID: 21932 Comm: syz.1.4555 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  919.907540][T21932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  919.907547][T21932] Call Trace:
[  919.907551][T21932]  <TASK>
[  919.907555][T21932]  dump_stack_lvl+0x16c/0x1f0
[  919.907576][T21932]  should_fail_ex+0x512/0x640
[  919.907593][T21932]  ? fs_reclaim_acquire+0xae/0x150
[  919.907607][T21932]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  919.907624][T21932]  should_failslab+0xc2/0x120
[  919.907635][T21932]  __kmalloc_noprof+0xd2/0x510
[  919.907655][T21932]  tomoyo_realpath_from_path+0xc2/0x6e0
[  919.907672][T21932]  ? tomoyo_profile+0x47/0x60
[  919.907684][T21932]  tomoyo_path_number_perm+0x245/0x580
[  919.907697][T21932]  ? tomoyo_path_number_perm+0x237/0x580
[  919.907711][T21932]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  919.907739][T21932]  ? find_held_lock+0x2b/0x80
[  919.907751][T21932]  ? hook_file_ioctl_common+0x145/0x410
[  919.907767][T21932]  ? __fget_files+0x20e/0x3c0
[  919.907782][T21932]  ? __fput_deferred+0x470/0x480
[  919.907796][T21932]  security_file_ioctl_compat+0x9b/0x240
[  919.907812][T21932]  __ia32_compat_sys_ioctl+0xc3/0x370
[  919.907828][T21932]  __do_fast_syscall_32+0x7c/0x3a0
[  919.907845][T21932]  do_fast_syscall_32+0x32/0x80
[  919.907862][T21932]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  919.907876][T21932] RIP: 0023:0xf709e579
[  919.907886][T21932] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  919.907897][T21932] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  919.907907][T21932] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004604
[  919.907914][T21932] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  919.907921][T21932] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  919.907927][T21932] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  919.907933][T21932] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  919.907947][T21932]  </TASK>
[  919.907952][T21932] ERROR: Out of memory at tomoyo_realpath_from_path.
[  920.053057][ T3231] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[  920.174576][T21941] warn_alloc: 4 callbacks suppressed
[  920.174590][T21941] syz.4.4558: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  920.184878][T21941] CPU: 3 UID: 0 PID: 21941 Comm: syz.4.4558 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  920.184906][T21941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  920.184919][T21941] Call Trace:
[  920.184926][T21941]  <TASK>
[  920.184935][T21941]  dump_stack_lvl+0x16c/0x1f0
[  920.184967][T21941]  warn_alloc+0x248/0x3a0
[  920.185000][T21941]  ? __pfx_warn_alloc+0x10/0x10
[  920.185054][T21941]  ? __pfx_stack_trace_save+0x10/0x10
[  920.185076][T21941]  ? stack_depot_save_flags+0x28/0xa40
[  920.185113][T21941]  ? kasan_save_stack+0x42/0x60
[  920.185140][T21941]  ? kasan_save_stack+0x33/0x60
[  920.185165][T21941]  ? kasan_save_track+0x14/0x30
[  920.185205][T21941]  ? xskq_create+0x52/0x1d0
[  920.185227][T21941]  ? xsk_setsockopt+0x640/0x840
[  920.185244][T21941]  ? do_sock_setsockopt+0x221/0x470
[  920.185266][T21941]  ? xskq_create+0xfb/0x1d0
[  920.185290][T21941]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  920.185324][T21941]  ? xskq_create+0xfb/0x1d0
[  920.185353][T21941]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  920.185387][T21941]  ? xskq_create+0xfb/0x1d0
[  920.185410][T21941]  vmalloc_user_noprof+0x9e/0xe0
[  920.185433][T21941]  ? xskq_create+0xfb/0x1d0
[  920.185455][T21941]  xskq_create+0xfb/0x1d0
[  920.185480][T21941]  xsk_setsockopt+0x640/0x840
[  920.185507][T21941]  ? __pfx_xsk_setsockopt+0x10/0x10
[  920.185529][T21941]  ? __pfx_aa_sk_perm+0x10/0x10
[  920.185555][T21941]  ? errseq_sample+0x53/0x70
[  920.185578][T21941]  ? __pfx_xsk_setsockopt+0x10/0x10
[  920.185599][T21941]  do_sock_setsockopt+0x221/0x470
[  920.185618][T21941]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  920.185652][T21941]  __sys_setsockopt+0x120/0x1a0
[  920.185684][T21941]  __ia32_sys_setsockopt+0xbc/0x160
[  920.185708][T21941]  ? lockdep_hardirqs_on+0x7c/0x110
[  920.185734][T21941]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  920.185761][T21941]  __do_fast_syscall_32+0x7c/0x3a0
[  920.185791][T21941]  do_fast_syscall_32+0x32/0x80
[  920.185818][T21941]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  920.185842][T21941] RIP: 0023:0xf70be579
[  920.185858][T21941] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  920.185876][T21941] RSP: 002b:00000000f50ae55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  920.185895][T21941] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  920.185907][T21941] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  920.185919][T21941] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  920.185930][T21941] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  920.185941][T21941] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  920.185968][T21941]  </TASK>
[  920.187382][T21941] Mem-Info:
[  920.252836][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  920.254063][T21941] active_anon:6801 inactive_anon:6968 isolated_anon:0
[  920.254063][T21941]  active_file:7380 inactive_file:7633 isolated_file:0
[  920.254063][T21941]  unevictable:1768 dirty:363 writeback:0
[  920.254063][T21941]  slab_reclaimable:7740 slab_unreclaimable:83867
[  920.254063][T21941]  mapped:31755 shmem:12547 pagetables:2133
[  920.254063][T21941]  sec_pagetables:330 bounce:0
[  920.254063][T21941]  kernel_misc_reclaimable:0
[  920.254063][T21941]  free:29950 free_pcp:12723 free_cma:0
[  920.296597][T21941] Node 0 active_anon:592kB inactive_anon:204kB active_file:1064kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5404kB dirty:0kB writeback:0kB shmem:3256kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8368kB pagetables:2164kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  920.319190][ T3231] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  920.319212][T21941] Node 1 active_anon:27512kB inactive_anon:27668kB active_file:28456kB inactive_file:30504kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:122516kB dirty:1452kB writeback:0kB shmem:47832kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:5512kB pagetables:6368kB sec_pagetables:168kB all_unreclaimable? no Balloon:0kB
[  920.322696][ T3231] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  920.333209][T21941] Node 0 DMA free:2100kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:20kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:544kB local_pcp:104kB free_cma:0kB
[  920.342366][ T3231] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  920.363515][T21941] lowmem_reserve[]: 0 289 289 289 289
[  920.365359][T21941] Node 0 DMA32 free:20320kB boost:4096kB min:17428kB low:20760kB high:24092kB reserved_highatomic:2048KB free_highatomic:432KB active_anon:572kB inactive_anon:200kB active_file:1064kB inactive_file:28kB unevictable:3536kB writepending:0kB present:1032196kB managed:296728kB mlocked:0kB bounce:0kB free_pcp:9584kB local_pcp:1368kB free_cma:0kB
[  920.365894][ T3231] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  920.389994][T21941] lowmem_reserve[]: 0 0 0 0 0
[  920.392973][T21941] Node 1 DMA32 free:93508kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:4096KB active_anon:28112kB inactive_anon:27668kB active_file:28456kB inactive_file:30504kB unevictable:3536kB writepending:1452kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:43496kB local_pcp:5804kB free_cma:0kB
[  920.412907][T21941] lowmem_reserve[]: 0 0 0 0 0
[  920.414570][T21941] Node 0 DMA: 5*4kB (UM) 12*8kB (UM) 14*16kB (UM) 3*32kB (M) 4*64kB (UM) 3*128kB (UM) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2100kB
[  920.419202][T21941] Node 0 DMA32: 4*4kB (H) 428*8kB (UMEH) 135*16kB (UMEH) 230*32kB (UMEH) 67*64kB (UME) 14*128kB (UE) 3*256kB (UM) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 20320kB
[  920.428285][T21941] Node 1 DMA32: 21*4kB (UM) 390*8kB (UE) 214*16kB (UE) 230*32kB (UE) 182*64kB (UE) 50*128kB (UME) 10*256kB (UE) 25*512kB (M) 27*1024kB (UM) 5*2048kB (UM) 2*4096kB (UH) = 93476kB
[  920.434799][T21941] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  920.438484][T21941] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  920.442664][T21941] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  920.448988][T21941] Node 1 hugepages_total=8 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  920.452006][T21941] 28674 total pagecache pages
[  920.464806][T21941] 767 pages in swap cache
[  920.466356][T21941] Free swap  = 91880kB
[  920.467778][T21941] Total swap = 124996kB
[  920.469189][T21941] 524155 pages RAM
[  920.470463][T21941] 0 pages HighMem/MovableOnly
[  920.471966][T21941] 209066 pages reserved
[  920.475461][T21941] 0 pages cma reserved
[  920.508044][T21926] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  920.516466][ T3231] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  921.302887][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  921.717695][T21961] netlink: 'syz.4.4564': attribute type 1 has an invalid length.
[  921.720119][T21961] netlink: 'syz.4.4564': attribute type 2 has an invalid length.
[  922.164783][T21967] kvm: pic: non byte read
[  922.167865][T21967] kvm: pic: level sensitive irq not supported
[  922.168164][T21967] kvm: pic: non byte read
[  922.257162][T21976] FAULT_INJECTION: forcing a failure.
[  922.257162][T21976] name failslab, interval 1, probability 0, space 0, times 0
[  922.261151][T21976] CPU: 2 UID: 0 PID: 21976 Comm: syz.4.4566 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  922.261167][T21976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  922.261174][T21976] Call Trace:
[  922.261179][T21976]  <TASK>
[  922.261185][T21976]  dump_stack_lvl+0x16c/0x1f0
[  922.261205][T21976]  should_fail_ex+0x512/0x640
[  922.261222][T21976]  ? __kmalloc_noprof+0xbf/0x510
[  922.261241][T21976]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  922.261255][T21976]  should_failslab+0xc2/0x120
[  922.261267][T21976]  __kmalloc_noprof+0xd2/0x510
[  922.261283][T21976]  ? __pfx___mutex_trylock_common+0x10/0x10
[  922.261302][T21976]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  922.261319][T21976]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  922.261334][T21976]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  922.261347][T21976]  ? genl_get_cmd+0x194/0x580
[  922.261363][T21976]  ? __radix_tree_lookup+0x21f/0x2c0
[  922.261379][T21976]  genl_rcv_msg+0x55c/0x800
[  922.261394][T21976]  ? __pfx_genl_rcv_msg+0x10/0x10
[  922.261407][T21976]  ? __pfx_tipc_nl_bearer_add+0x10/0x10
[  922.261428][T21976]  netlink_rcv_skb+0x155/0x420
[  922.261439][T21976]  ? __pfx_genl_rcv_msg+0x10/0x10
[  922.261453][T21976]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  922.261469][T21976]  ? netlink_deliver_tap+0x1ae/0xd30
[  922.261489][T21976]  genl_rcv+0x28/0x40
[  922.261500][T21976]  netlink_unicast+0x53a/0x7f0
[  922.261512][T21976]  ? __pfx_netlink_unicast+0x10/0x10
[  922.261532][T21976]  netlink_sendmsg+0x8d1/0xdd0
[  922.261545][T21976]  ? __pfx_netlink_sendmsg+0x10/0x10
[  922.261557][T21976]  ? __import_iovec+0x1dd/0x650
[  922.261572][T21976]  ____sys_sendmsg+0xa95/0xc70
[  922.261586][T21976]  ? __pfx_____sys_sendmsg+0x10/0x10
[  922.261597][T21976]  ? get_compat_msghdr+0x11a/0x170
[  922.261620][T21976]  ___sys_sendmsg+0x134/0x1d0
[  922.261637][T21976]  ? __pfx____sys_sendmsg+0x10/0x10
[  922.261660][T21976]  ? find_held_lock+0x2b/0x80
[  922.261679][T21976]  __sys_sendmsg+0x16d/0x220
[  922.261695][T21976]  ? __pfx___sys_sendmsg+0x10/0x10
[  922.261717][T21976]  ? rcu_is_watching+0x12/0xc0
[  922.261731][T21976]  __do_fast_syscall_32+0x7c/0x3a0
[  922.261749][T21976]  do_fast_syscall_32+0x32/0x80
[  922.261766][T21976]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  922.261780][T21976] RIP: 0023:0xf70be579
[  922.261789][T21976] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  922.261800][T21976] RSP: 002b:00000000f50ae55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  922.261811][T21976] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800003c0
[  922.261818][T21976] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  922.261824][T21976] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  922.261831][T21976] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  922.261837][T21976] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  922.261851][T21976]  </TASK>
[  922.332865][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  923.014947][T21982] netlink: 'syz.3.4567': attribute type 1 has an invalid length.
[  923.017730][T21982] netlink: 'syz.3.4567': attribute type 2 has an invalid length.
[  923.367676][T21992] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4568'.
[  923.372796][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  923.467601][T21996] FAULT_INJECTION: forcing a failure.
[  923.467601][T21996] name failslab, interval 1, probability 0, space 0, times 0
[  923.474097][T21996] CPU: 2 UID: 0 PID: 21996 Comm: syz.4.4571 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  923.474139][T21996] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  923.474151][T21996] Call Trace:
[  923.474158][T21996]  <TASK>
[  923.474166][T21996]  dump_stack_lvl+0x16c/0x1f0
[  923.474195][T21996]  should_fail_ex+0x512/0x640
[  923.474228][T21996]  ? fs_reclaim_acquire+0xae/0x150
[  923.474252][T21996]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  923.474278][T21996]  should_failslab+0xc2/0x120
[  923.474297][T21996]  __kmalloc_noprof+0xd2/0x510
[  923.474331][T21996]  tomoyo_realpath_from_path+0xc2/0x6e0
[  923.474364][T21996]  tomoyo_check_open_permission+0x2ab/0x3c0
[  923.474388][T21996]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  923.474438][T21996]  ? do_raw_spin_lock+0x12c/0x2b0
[  923.474472][T21996]  tomoyo_file_open+0x6b/0x90
[  923.474491][T21996]  security_file_open+0x84/0x1e0
[  923.474517][T21996]  do_dentry_open+0x596/0x1c10
[  923.474552][T21996]  vfs_open+0x82/0x3f0
[  923.474577][T21996]  path_openat+0x1de4/0x2cb0
[  923.474612][T21996]  ? __pfx_path_openat+0x10/0x10
[  923.474646][T21996]  do_filp_open+0x20b/0x470
[  923.474673][T21996]  ? __pfx_do_filp_open+0x10/0x10
[  923.474718][T21996]  ? _raw_spin_unlock+0x28/0x50
[  923.474741][T21996]  ? alloc_fd+0x471/0x7d0
[  923.474774][T21996]  do_sys_openat2+0x11b/0x1d0
[  923.474796][T21996]  ? __pfx_do_sys_openat2+0x10/0x10
[  923.474819][T21996]  ? __fget_files+0x20e/0x3c0
[  923.474842][T21996]  ? handle_mm_fault+0x200/0xd10
[  923.474871][T21996]  __ia32_compat_sys_openat+0x16d/0x210
[  923.474894][T21996]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  923.474915][T21996]  ? ksys_write+0x1ac/0x250
[  923.474945][T21996]  ? rcu_is_watching+0x12/0xc0
[  923.474968][T21996]  __do_fast_syscall_32+0x7c/0x3a0
[  923.474997][T21996]  do_fast_syscall_32+0x32/0x80
[  923.475023][T21996]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  923.475045][T21996] RIP: 0023:0xf70be579
[  923.475060][T21996] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  923.475079][T21996] RSP: 002b:00000000f50ae100 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  923.475097][T21996] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f50ae150
[  923.475108][T21996] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7422ff4
[  923.475133][T21996] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  923.475144][T21996] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  923.475155][T21996] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  923.475179][T21996]  </TASK>
[  923.475319][T21996] ERROR: Out of memory at tomoyo_realpath_from_path.
[  923.567359][ T1468] usb 5-1: USB disconnect, device number 54
[  923.663231][   T40] kauditd_printk_skb: 1192 callbacks suppressed
[  923.663242][   T40] audit: type=1326 audit(1749146960.472:10053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  923.672448][   T40] audit: type=1326 audit(1749146960.472:10054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  923.681622][   T40] audit: type=1326 audit(1749146960.472:10055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  923.690295][   T40] audit: type=1326 audit(1749146960.472:10056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  923.697439][   T40] audit: type=1326 audit(1749146960.472:10057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  923.704536][   T40] audit: type=1326 audit(1749146960.472:10058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  923.711369][   T40] audit: type=1326 audit(1749146960.472:10059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f61598 code=0x7ffc0000
[  923.718322][   T40] audit: type=1326 audit(1749146960.472:10060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f61598 code=0x7ffc0000
[  923.725043][   T40] audit: type=1326 audit(1749146960.472:10061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f61598 code=0x7ffc0000
[  923.731734][   T40] audit: type=1326 audit(1749146960.472:10062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22003 comm="syz.0.4574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f61598 code=0x7ffc0000
[  923.924768][T22004] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4574'.
[  923.957485][T22004] input: syz0 as /devices/virtual/input/input109
[  924.412748][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  924.855032][T22024] CIFS: iocharset name too long
[  925.452716][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  926.059546][T22034] netlink: 'syz.1.4584': attribute type 1 has an invalid length.
[  926.062781][T22034] netlink: 'syz.1.4584': attribute type 2 has an invalid length.
[  926.492597][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  926.716872][T22051] FAULT_INJECTION: forcing a failure.
[  926.716872][T22051] name failslab, interval 1, probability 0, space 0, times 0
[  926.724290][T22051] CPU: 1 UID: 0 PID: 22051 Comm: syz.1.4586 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  926.724318][T22051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  926.724327][T22051] Call Trace:
[  926.724331][T22051]  <TASK>
[  926.724336][T22051]  dump_stack_lvl+0x16c/0x1f0
[  926.724356][T22051]  should_fail_ex+0x512/0x640
[  926.724374][T22051]  ? __kmalloc_noprof+0xbf/0x510
[  926.724393][T22051]  ? copy_splice_read+0x1a8/0xba0
[  926.724406][T22051]  should_failslab+0xc2/0x120
[  926.724418][T22051]  __kmalloc_noprof+0xd2/0x510
[  926.724438][T22051]  copy_splice_read+0x1a8/0xba0
[  926.724454][T22051]  ? rcu_is_watching+0x12/0xc0
[  926.724466][T22051]  ? __pfx_copy_splice_read+0x10/0x10
[  926.724482][T22051]  ? __pfx_aa_file_perm+0x10/0x10
[  926.724497][T22051]  ? pipe_lock+0x64/0x80
[  926.724520][T22051]  sock_splice_read+0xe9/0x110
[  926.724539][T22051]  ? __pfx_sock_splice_read+0x10/0x10
[  926.724555][T22051]  do_splice_read+0x282/0x370
[  926.724571][T22051]  splice_file_to_pipe+0x109/0x120
[  926.724588][T22051]  do_sendfile+0x400/0xe50
[  926.724606][T22051]  ? __pfx_do_sendfile+0x10/0x10
[  926.724621][T22051]  ? __pfx___schedule+0x10/0x10
[  926.724635][T22051]  ? __fget_files+0x20e/0x3c0
[  926.724654][T22051]  __ia32_compat_sys_sendfile+0x1e5/0x220
[  926.724666][T22051]  ? ksys_write+0x1ac/0x250
[  926.724682][T22051]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  926.724695][T22051]  ? rcu_is_watching+0x12/0xc0
[  926.724708][T22051]  __do_fast_syscall_32+0x7c/0x3a0
[  926.724726][T22051]  do_fast_syscall_32+0x32/0x80
[  926.724742][T22051]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  926.724756][T22051] RIP: 0023:0xf709e579
[  926.724765][T22051] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  926.724776][T22051] RSP: 002b:00000000f504c55c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  926.724787][T22051] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000000008
[  926.724794][T22051] RDX: 0000000000000000 RSI: 000000000010ffff RDI: 0000000000000000
[  926.724800][T22051] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  926.724807][T22051] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  926.724813][T22051] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  926.724826][T22051]  </TASK>
[  927.466543][T22061] autofs: Bad value for 'fd'
[  927.532572][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  927.863894][T22076] CIFS: iocharset name too long
[  928.222550][  T835] usb 5-1: new low-speed USB device number 55 using dummy_hcd
[  928.394835][  T835] usb 5-1: config 0 has an invalid interface number: 198 but max is 0
[  928.397607][  T835] usb 5-1: config 0 has no interface number 0
[  928.399628][  T835] usb 5-1: config 0 interface 198 has no altsetting 0
[  928.401849][  T835] usb 5-1: New USB device found, idVendor=1b3d, idProduct=0138, bcdDevice=74.e6
[  928.406028][  T835] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  928.410516][  T835] usb 5-1: config 0 descriptor??
[  928.572481][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  928.621925][  T835] usb 5-1: string descriptor 0 read error: -71
[  928.625904][  T835] ftdi_sio 5-1:0.198: FTDI USB Serial Device converter detected
[  928.629172][  T835] ftdi_sio ttyUSB0: unknown device type: 0x74e6
[  928.634635][  T835] usb 5-1: USB disconnect, device number 55
[  928.637129][  T835] ftdi_sio 5-1:0.198: device disconnected
[  928.680458][T22086] netlink: 'syz.3.4596': attribute type 1 has an invalid length.
[  928.683500][T22086] netlink: 'syz.3.4596': attribute type 2 has an invalid length.
[  929.109778][T22091] netlink: 'syz.1.4597': attribute type 1 has an invalid length.
[  929.112000][T22091] netlink: 'syz.1.4597': attribute type 2 has an invalid length.
[  929.307172][T22103] pim6reg: entered allmulticast mode
[  929.536307][T22114] loop2: detected capacity change from 0 to 7
[  929.552674][T21599] Dev loop2: unable to read RDB block 7
[  929.557934][T21599]  loop2: unable to read partition table
[  929.562969][T21599] loop2: partition table beyond EOD, truncated
[  929.612434][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  929.641236][T22109] pim6reg: left allmulticast mode
[  929.666180][T22114] Dev loop2: unable to read RDB block 7
[  929.668797][T22114]  loop2: unable to read partition table
[  929.671531][T22114] loop2: partition table beyond EOD, truncated
[  929.675323][T22114] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  929.921213][T22123] autofs: Bad value for 'fd'
[  930.055684][T22119] loop2: detected capacity change from 0 to 7
[  930.058681][T22119] Dev loop2: unable to read RDB block 7
[  930.060493][T22119]  loop2: unable to read partition table
[  930.062478][T22119] loop2: partition table beyond EOD, truncated
[  930.064465][T22119] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  930.186116][T22133] warn_alloc: 4 callbacks suppressed
[  930.186128][T22133] syz.3.4607: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  930.195560][T22133] CPU: 3 UID: 0 PID: 22133 Comm: syz.3.4607 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  930.195587][T22133] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  930.195599][T22133] Call Trace:
[  930.195605][T22133]  <TASK>
[  930.195613][T22133]  dump_stack_lvl+0x16c/0x1f0
[  930.195641][T22133]  warn_alloc+0x248/0x3a0
[  930.195669][T22133]  ? __pfx_warn_alloc+0x10/0x10
[  930.195698][T22133]  ? __pfx_stack_trace_save+0x10/0x10
[  930.195717][T22133]  ? stack_depot_save_flags+0x28/0xa40
[  930.195751][T22133]  ? kasan_save_stack+0x42/0x60
[  930.195777][T22133]  ? kasan_save_stack+0x33/0x60
[  930.195800][T22133]  ? kasan_save_track+0x14/0x30
[  930.195824][T22133]  ? xskq_create+0x52/0x1d0
[  930.195843][T22133]  ? xsk_setsockopt+0x640/0x840
[  930.195859][T22133]  ? do_sock_setsockopt+0x221/0x470
[  930.195878][T22133]  ? xskq_create+0xfb/0x1d0
[  930.195899][T22133]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  930.195931][T22133]  ? xskq_create+0xfb/0x1d0
[  930.195957][T22133]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  930.195986][T22133]  ? xskq_create+0xfb/0x1d0
[  930.196007][T22133]  vmalloc_user_noprof+0x9e/0xe0
[  930.196029][T22133]  ? xskq_create+0xfb/0x1d0
[  930.196050][T22133]  xskq_create+0xfb/0x1d0
[  930.196072][T22133]  xsk_setsockopt+0x640/0x840
[  930.196093][T22133]  ? __pfx_xsk_setsockopt+0x10/0x10
[  930.196111][T22133]  ? __pfx_aa_sk_perm+0x10/0x10
[  930.196133][T22133]  ? errseq_sample+0x53/0x70
[  930.196154][T22133]  ? __pfx_xsk_setsockopt+0x10/0x10
[  930.196174][T22133]  do_sock_setsockopt+0x221/0x470
[  930.196190][T22133]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  930.196223][T22133]  __sys_setsockopt+0x120/0x1a0
[  930.196249][T22133]  __ia32_sys_setsockopt+0xbc/0x160
[  930.196271][T22133]  ? lockdep_hardirqs_on+0x7c/0x110
[  930.196294][T22133]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  930.196318][T22133]  __do_fast_syscall_32+0x7c/0x3a0
[  930.196345][T22133]  do_fast_syscall_32+0x32/0x80
[  930.196375][T22133]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  930.196396][T22133] RIP: 0023:0xf710e579
[  930.196410][T22133] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  930.196428][T22133] RSP: 002b:00000000f50fe55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  930.196445][T22133] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  930.196455][T22133] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  930.196466][T22133] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  930.196476][T22133] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  930.196486][T22133] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  930.196508][T22133]  </TASK>
[  930.196532][T22133] Mem-Info:
[  930.294270][T22133] active_anon:4428 inactive_anon:6968 isolated_anon:0
[  930.294270][T22133]  active_file:7481 inactive_file:7573 isolated_file:0
[  930.294270][T22133]  unevictable:1768 dirty:283 writeback:0
[  930.294270][T22133]  slab_reclaimable:7760 slab_unreclaimable:83623
[  930.294270][T22133]  mapped:29162 shmem:10057 pagetables:2169
[  930.294270][T22133]  sec_pagetables:331 bounce:0
[  930.294270][T22133]  kernel_misc_reclaimable:0
[  930.294270][T22133]  free:34098 free_pcp:12954 free_cma:0
[  930.294304][T22133] Node 0 active_anon:1100kB inactive_anon:204kB active_file:1268kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5552kB dirty:0kB writeback:0kB shmem:3268kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8484kB pagetables:2412kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  930.294336][T22133] Node 1 active_anon:16612kB inactive_anon:27668kB active_file:28656kB inactive_file:30264kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:111096kB dirty:1132kB writeback:0kB shmem:36960kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:5500kB pagetables:6264kB sec_pagetables:172kB all_unreclaimable? no Balloon:0kB
[  930.294367][T22133] Node 0 DMA free:2080kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:644kB local_pcp:220kB free_cma:0kB
[  930.339427][T22133] lowmem_reserve[]: 0 289 289 289 289
[  930.341203][T22133] Node 0 DMA32 free:21132kB boost:4096kB min:17428kB low:20760kB high:24092kB reserved_highatomic:4096KB free_highatomic:432KB active_anon:864kB inactive_anon:200kB active_file:1264kB inactive_file:28kB unevictable:3536kB writepending:0kB present:1032196kB managed:296728kB mlocked:0kB bounce:0kB free_pcp:9332kB local_pcp:2264kB free_cma:0kB
[  930.350966][T22133] lowmem_reserve[]: 0 0 0 0 0
[  930.352564][T22133] Node 1 DMA32 free:113116kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:4096KB active_anon:16576kB inactive_anon:27668kB active_file:28656kB inactive_file:30264kB unevictable:3536kB writepending:1132kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:41600kB local_pcp:4220kB free_cma:0kB
[  930.362794][T22133] lowmem_reserve[]: 0 0 0 0 0
[  930.364300][T22133] Node 0 DMA: 8*4kB (U) 6*8kB (U) 13*16kB (UM) 4*32kB (M) 4*64kB (M) 3*128kB (UM) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2080kB
[  930.368642][T22133] Node 0 DMA32: 5*4kB (UH) 71*8kB (UMEH) 78*16kB (UMEH) 187*32kB (UMEH) 108*64kB (UME) 26*128kB (UME) 6*256kB (UM) 3*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 21132kB
[  930.373879][T22133] Node 1 DMA32: 829*4kB (UM) 361*8kB (UME) 170*16kB (UME) 374*32kB (UME) 167*64kB (UME) 81*128kB (UME) 32*256kB (UME) 13*512kB (UM) 27*1024kB (UM) 8*2048kB (UM) 3*4096kB (UH) = 113116kB
[  930.379543][T22133] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  930.382569][T22133] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  930.385449][T22133] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  930.388387][T22133] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  930.391279][T22133] 25915 total pagecache pages
[  930.392867][T22133] 792 pages in swap cache
[  930.394244][T22133] Free swap  = 91884kB
[  930.395529][T22133] Total swap = 124996kB
[  930.396840][T22133] 524155 pages RAM
[  930.398048][T22133] 0 pages HighMem/MovableOnly
[  930.399519][T22133] 209066 pages reserved
[  930.400839][T22133] 0 pages cma reserved
[  930.472103][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.475633][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.478396][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.480875][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.483507][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.485954][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.488438][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.491305][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.494334][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.496772][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.499220][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.501659][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.504325][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.506721][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.509144][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.511549][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.514221][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.516610][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.519056][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.521511][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.524150][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.526577][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.529053][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.531558][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.535863][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.538374][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.540867][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.544130][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.546620][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.549133][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.551690][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.554736][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.557234][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.560347][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.563983][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.567145][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.570320][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.573619][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.576800][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.579912][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.583139][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.585663][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.588137][  T835] hid-generic 0000:007F:FFFFFFFE.005D: unknown main item tag 0x0
[  930.592226][  T835] hid-generic 0000:007F:FFFFFFFE.005D: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  930.652432][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  930.695936][T22145] fido_id[22145]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  930.710503][T22149] loop2: detected capacity change from 0 to 7
[  930.857715][T22149] Dev loop2: unable to read RDB block 7
[  930.860159][T22149]  loop2: unable to read partition table
[  930.865195][T22149] loop2: partition table beyond EOD, truncated
[  930.867156][T22149] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  930.974084][ T1418] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  930.977272][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  930.979339][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  931.021514][T22160] pim6reg: entered allmulticast mode
[  931.050459][T22160] pim6reg: left allmulticast mode
[  931.064024][T22163] loop2: detected capacity change from 0 to 7
[  931.067736][T21599] Dev loop2: unable to read RDB block 7
[  931.070636][T21599]  loop2: unable to read partition table
[  931.074444][T21599] loop2: partition table beyond EOD, truncated
[  931.080099][T22163] Dev loop2: unable to read RDB block 7
[  931.081993][T22163]  loop2: unable to read partition table
[  931.085219][T22163] loop2: partition table beyond EOD, truncated
[  931.088053][T22163] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  931.200594][T22168] lo speed is unknown, defaulting to 1000
[  931.204225][T22168] lo speed is unknown, defaulting to 1000
[  931.206825][T22168] lo speed is unknown, defaulting to 1000
[  931.455411][T22183] loop2: detected capacity change from 0 to 7
[  931.458681][T21599] Dev loop2: unable to read RDB block 7
[  931.460490][T21599]  loop2: unable to read partition table
[  931.462691][T21599] loop2: partition table beyond EOD, truncated
[  931.536501][T22183] Dev loop2: unable to read RDB block 7
[  931.539776][T22183]  loop2: unable to read partition table
[  931.542707][T22183] loop2: partition table beyond EOD, truncated
[  931.544841][T22183] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  931.702306][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  931.834862][T22184] netlink: 'syz.0.4623': attribute type 1 has an invalid length.
[  931.838144][T22184] netlink: 'syz.0.4623': attribute type 2 has an invalid length.
[  931.868786][T22194] lo speed is unknown, defaulting to 1000
[  931.872738][T22194] lo speed is unknown, defaulting to 1000
[  931.876642][T22194] lo speed is unknown, defaulting to 1000
[  932.326383][T22211] pim6reg: entered allmulticast mode
[  932.330872][T22211] pim6reg: left allmulticast mode
[  932.742251][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  933.772214][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  934.812173][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  934.822210][ T3231] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  934.974435][ T3231] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  934.979158][ T3231] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  934.984665][ T3231] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  934.987521][ T3231] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  935.004347][T22243] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  935.008629][ T3231] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  935.020323][T22252] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  935.022555][T22252] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  935.027430][T22252] vhci_hcd vhci_hcd.0: Device attached
[  935.031525][T22252] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  935.035292][T22252] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  935.041977][T22254] vhci_hcd: connection closed
[  935.042156][  T101] vhci_hcd: stop threads
[  935.045001][  T101] vhci_hcd: release socket
[  935.046661][  T101] vhci_hcd: disconnect device
[  935.252150][T22258] autofs: Bad value for 'fd'
[  935.851083][T22269] autofs: Bad value for 'fd'
[  935.862079][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  936.345304][T22280] could not allocate digest TFM handle sha224-ssse3
[  936.704699][T22296] autofs: Unknown parameter '0x0000000000000000'
[  936.892431][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  937.152204][ T3231] usb 9-1: USB disconnect, device number 17
[  937.164887][T22302] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  937.505810][T22314] autofs: Bad value for 'fd'
[  937.931945][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  938.210913][T22328] siw: device registration error -23
[  938.971932][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  939.033268][T22347] autofs: Unknown parameter '0x0000000000000000'
[  940.011836][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  940.709739][T22373] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4674'.
[  940.716030][T22373] FAULT_INJECTION: forcing a failure.
[  940.716030][T22373] name failslab, interval 1, probability 0, space 0, times 0
[  940.720417][T22373] CPU: 2 UID: 0 PID: 22373 Comm: syz.4.4674 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  940.720440][T22373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  940.720450][T22373] Call Trace:
[  940.720456][T22373]  <TASK>
[  940.720462][T22373]  dump_stack_lvl+0x16c/0x1f0
[  940.720487][T22373]  should_fail_ex+0x512/0x640
[  940.720511][T22373]  should_failslab+0xc2/0x120
[  940.720526][T22373]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  940.720549][T22373]  ? dst_alloc+0x99/0x1a0
[  940.720569][T22373]  dst_alloc+0x99/0x1a0
[  940.720588][T22373]  ipv4_blackhole_route+0x35/0x860
[  940.720611][T22373]  xfrm_lookup_route+0x10b/0x200
[  940.720636][T22373]  ip_route_output_flow+0x11e/0x150
[  940.720658][T22373]  udp_sendmsg+0x1bdd/0x29f0
[  940.720675][T22373]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  940.720692][T22373]  ? __pfx_udp_sendmsg+0x10/0x10
[  940.720718][T22373]  ? __pfx___might_resched+0x10/0x10
[  940.720733][T22373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  940.720757][T22373]  ? aa_sk_perm+0x2f4/0xb10
[  940.720781][T22373]  ? __import_iovec+0x1dd/0x650
[  940.720796][T22373]  ? __pfx_udp_sendmsg+0x10/0x10
[  940.720813][T22373]  inet_sendmsg+0x105/0x140
[  940.720856][T22373]  ____sys_sendmsg+0x973/0xc70
[  940.720876][T22373]  ? __pfx_____sys_sendmsg+0x10/0x10
[  940.720894][T22373]  ? get_compat_msghdr+0x11a/0x170
[  940.720924][T22373]  ? __pfx__kstrtoull+0x10/0x10
[  940.720956][T22373]  ___sys_sendmsg+0x134/0x1d0
[  940.720981][T22373]  ? __pfx____sys_sendmsg+0x10/0x10
[  940.721004][T22373]  ? __lock_acquire+0x622/0x1c90
[  940.721061][T22373]  __sys_sendmmsg+0x2f9/0x420
[  940.721088][T22373]  ? __pfx___sys_sendmmsg+0x10/0x10
[  940.721119][T22373]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  940.721144][T22373]  ? fput+0x70/0xf0
[  940.721156][T22373]  ? ksys_write+0x1ac/0x250
[  940.721173][T22373]  ? __pfx_ksys_write+0x10/0x10
[  940.721192][T22373]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  940.721211][T22373]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  940.721228][T22373]  __do_fast_syscall_32+0x7c/0x3a0
[  940.721247][T22373]  do_fast_syscall_32+0x32/0x80
[  940.721264][T22373]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  940.721280][T22373] RIP: 0023:0xf70be579
[  940.721290][T22373] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  940.721302][T22373] RSP: 002b:00000000f508d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  940.721313][T22373] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080004d00
[  940.721326][T22373] RDX: 0000000000000300 RSI: 0000000000000f00 RDI: 0000000000000000
[  940.721333][T22373] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  940.721340][T22373] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  940.721346][T22373] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  940.721361][T22373]  </TASK>
[  941.051795][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  941.506187][T22383] warn_alloc: 4 callbacks suppressed
[  941.506199][T22383] syz.4.4677: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  941.512851][T22383] CPU: 1 UID: 0 PID: 22383 Comm: syz.4.4677 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  941.512870][T22383] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  941.512878][T22383] Call Trace:
[  941.512882][T22383]  <TASK>
[  941.512888][T22383]  dump_stack_lvl+0x16c/0x1f0
[  941.512909][T22383]  warn_alloc+0x248/0x3a0
[  941.512930][T22383]  ? __pfx_warn_alloc+0x10/0x10
[  941.512948][T22383]  ? __pfx_stack_trace_save+0x10/0x10
[  941.512962][T22383]  ? stack_depot_save_flags+0x28/0xa40
[  941.512984][T22383]  ? kasan_save_stack+0x42/0x60
[  941.513001][T22383]  ? kasan_save_stack+0x33/0x60
[  941.513018][T22383]  ? kasan_save_track+0x14/0x30
[  941.513035][T22383]  ? xskq_create+0x52/0x1d0
[  941.513047][T22383]  ? xsk_setsockopt+0x640/0x840
[  941.513059][T22383]  ? do_sock_setsockopt+0x221/0x470
[  941.513086][T22383]  ? xskq_create+0xfb/0x1d0
[  941.513102][T22383]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  941.513125][T22383]  ? xskq_create+0xfb/0x1d0
[  941.513143][T22383]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  941.513164][T22383]  ? xskq_create+0xfb/0x1d0
[  941.513178][T22383]  vmalloc_user_noprof+0x9e/0xe0
[  941.513193][T22383]  ? xskq_create+0xfb/0x1d0
[  941.513208][T22383]  xskq_create+0xfb/0x1d0
[  941.513224][T22383]  xsk_setsockopt+0x640/0x840
[  941.513237][T22383]  ? __pfx_xsk_setsockopt+0x10/0x10
[  941.513250][T22383]  ? __pfx_aa_sk_perm+0x10/0x10
[  941.513264][T22383]  ? errseq_sample+0x53/0x70
[  941.513278][T22383]  ? __pfx_xsk_setsockopt+0x10/0x10
[  941.513290][T22383]  do_sock_setsockopt+0x221/0x470
[  941.513301][T22383]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  941.513321][T22383]  __sys_setsockopt+0x120/0x1a0
[  941.513338][T22383]  __ia32_sys_setsockopt+0xbc/0x160
[  941.513353][T22383]  ? lockdep_hardirqs_on+0x7c/0x110
[  941.513368][T22383]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  941.513384][T22383]  __do_fast_syscall_32+0x7c/0x3a0
[  941.513402][T22383]  do_fast_syscall_32+0x32/0x80
[  941.513418][T22383]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  941.513433][T22383] RIP: 0023:0xf70be579
[  941.513442][T22383] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  941.513453][T22383] RSP: 002b:00000000f50ae55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  941.513464][T22383] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  941.513471][T22383] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  941.513478][T22383] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  941.513484][T22383] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  941.513491][T22383] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  941.513504][T22383]  </TASK>
[  941.513540][T22383] Mem-Info:
[  941.605857][T22383] active_anon:4901 inactive_anon:6968 isolated_anon:0
[  941.605857][T22383]  active_file:8033 inactive_file:7631 isolated_file:0
[  941.605857][T22383]  unevictable:1768 dirty:343 writeback:0
[  941.605857][T22383]  slab_reclaimable:7764 slab_unreclaimable:84270
[  941.605857][T22383]  mapped:30674 shmem:10607 pagetables:2190
[  941.605857][T22383]  sec_pagetables:334 bounce:0
[  941.605857][T22383]  kernel_misc_reclaimable:0
[  941.605857][T22383]  free:28560 free_pcp:16268 free_cma:0
[  941.619932][T22383] Node 0 active_anon:600kB inactive_anon:204kB active_file:1264kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5552kB dirty:0kB writeback:0kB shmem:3256kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8368kB pagetables:2140kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  941.630439][T22383] Node 1 active_anon:22004kB inactive_anon:27668kB active_file:30868kB inactive_file:30496kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:120144kB dirty:1372kB writeback:0kB shmem:42172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:5624kB pagetables:6620kB sec_pagetables:184kB all_unreclaimable? no Balloon:0kB
[  941.641821][T22383] Node 0 DMA free:2080kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:644kB local_pcp:216kB free_cma:0kB
[  941.650803][T22383] lowmem_reserve[]: 0 289 289 289 289
[  941.772301][T22383] Node 0 DMA32 free:19684kB boost:4096kB min:17428kB low:20760kB high:24092kB reserved_highatomic:4096KB free_highatomic:432KB active_anon:600kB inactive_anon:200kB active_file:1264kB inactive_file:28kB unevictable:3536kB writepending:0kB present:1032196kB managed:296728kB mlocked:0kB bounce:0kB free_pcp:13072kB local_pcp:2880kB free_cma:0kB
[  941.784678][T22383] lowmem_reserve[]: 0 0 0 0 0
[  941.786701][T22383] Node 1 DMA32 free:96048kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:4096KB free_highatomic:4096KB active_anon:16808kB inactive_anon:27668kB active_file:30868kB inactive_file:30496kB unevictable:3536kB writepending:1372kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:52944kB local_pcp:12180kB free_cma:0kB
[  941.805429][T22383] lowmem_reserve[]: 0 0 0 0 0
[  941.807608][T22383] Node 0 DMA: 8*4kB (U) 6*8kB (U) 13*16kB (UM) 4*32kB (M) 4*64kB (M) 3*128kB (UM) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2080kB
[  941.812775][T22383] Node 0 DMA32: 5*4kB (UH) 64*8kB (UMEH) 75*16kB (UMEH) 183*32kB (UMEH) 105*64kB (UME) 26*128kB (UME) 6*256kB (UM) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 19684kB
[  941.817766][T22383] Node 1 DMA32: 156*4kB (M) 477*8kB (ME) 60*16kB (UME) 175*32kB (UME) 127*64kB (UME) 97*128kB (UME) 28*256kB (UME) 8*512kB (UM) 24*1024kB (UM) 10*2048kB (UM) 2*4096kB (UH) = 96056kB
[  941.823419][T22383] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  941.826266][T22383] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  941.829377][T22383] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  941.832518][T22383] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  941.835406][T22383] 26511 total pagecache pages
[  941.837515][T22383] 801 pages in swap cache
[  941.838876][T22383] Free swap  = 91884kB
[  941.840210][T22383] Total swap = 124996kB
[  941.841715][T22383] 524155 pages RAM
[  941.842911][T22383] 0 pages HighMem/MovableOnly
[  941.844375][T22383] 209066 pages reserved
[  941.845661][T22383] 0 pages cma reserved
[  942.101726][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  942.838777][T22406] ufs: failed to set blocksize
[  943.141667][    C0] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  943.612444][T13730] bridge_slave_1: left allmulticast mode
[  943.614844][T13730] bridge_slave_1: left promiscuous mode
[  943.624365][T13730] bridge0: port 2(bridge_slave_1) entered disabled state
[  943.632874][T13730] bridge_slave_0: left allmulticast mode
[  943.634636][T13730] bridge_slave_0: left promiscuous mode
[  943.636439][T13730] bridge0: port 1(bridge_slave_0) entered disabled state
[  943.645283][T22417] FAULT_INJECTION: forcing a failure.
[  943.645283][T22417] name failslab, interval 1, probability 0, space 0, times 0
[  943.649252][T22417] CPU: 3 UID: 0 PID: 22417 Comm: syz.1.4686 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  943.649274][T22417] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  943.649281][T22417] Call Trace:
[  943.649286][T22417]  <TASK>
[  943.649291][T22417]  dump_stack_lvl+0x16c/0x1f0
[  943.649323][T22417]  should_fail_ex+0x512/0x640
[  943.649341][T22417]  ? fs_reclaim_acquire+0xae/0x150
[  943.649356][T22417]  ? tomoyo_encode2+0x100/0x3e0
[  943.649371][T22417]  should_failslab+0xc2/0x120
[  943.649383][T22417]  __kmalloc_noprof+0xd2/0x510
[  943.649400][T22417]  ? d_absolute_path+0x136/0x1a0
[  943.649414][T22417]  tomoyo_encode2+0x100/0x3e0
[  943.649432][T22417]  tomoyo_encode+0x29/0x50
[  943.649446][T22417]  tomoyo_realpath_from_path+0x18f/0x6e0
[  943.649467][T22417]  tomoyo_path_number_perm+0x245/0x580
[  943.649479][T22417]  ? tomoyo_path_number_perm+0x237/0x580
[  943.649494][T22417]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  943.649523][T22417]  ? find_held_lock+0x2b/0x80
[  943.649534][T22417]  ? hook_file_ioctl_common+0x145/0x410
[  943.649550][T22417]  ? __fget_files+0x20e/0x3c0
[  943.649565][T22417]  ? __fput_deferred+0x470/0x480
[  943.649579][T22417]  security_file_ioctl_compat+0x9b/0x240
[  943.649596][T22417]  __ia32_compat_sys_ioctl+0xc3/0x370
[  943.649612][T22417]  __do_fast_syscall_32+0x7c/0x3a0
[  943.649629][T22417]  do_fast_syscall_32+0x32/0x80
[  943.649646][T22417]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  943.649660][T22417] RIP: 0023:0xf709e579
[  943.649669][T22417] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  943.649680][T22417] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  943.649690][T22417] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008af30
[  943.649697][T22417] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  943.649704][T22417] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  943.649710][T22417] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  943.649716][T22417] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  943.649730][T22417]  </TASK>
[  943.649781][T22417] ERROR: Out of memory at tomoyo_realpath_from_path.
[  943.691811][    C1] ------------[ cut here ]------------
[  943.733390][    C1] refcount_t: addition on 0; use-after-free.
[  943.736439][    C1] WARNING: CPU: 1 PID: 0 at lib/refcount.c:25 refcount_warn_saturate+0x1ca/0x210
[  943.740436][    C1] Modules linked in:
[  943.742805][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  943.748483][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  943.753099][    C1] RIP: 0010:refcount_warn_saturate+0x1ca/0x210
[  943.755651][    C1] Code: ff 89 de e8 18 39 e3 fc 84 db 0f 85 e6 fe ff ff e8 2b 3e e3 fc c6 05 4f 34 98 0b 01 90 48 c7 c7 c0 05 f5 8b e8 97 5c a2 fc 90 <0f> 0b 90 90 e9 c3 fe ff ff e8 08 3e e3 fc c6 05 2a 34 98 0b 01 90
[  943.763651][    C1] RSP: 0000:ffffc900005908b0 EFLAGS: 00010286
[  943.766224][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817aa2c8
[  943.769590][    C1] RDX: ffff88801dad2440 RSI: ffffffff817aa2d5 RDI: 0000000000000001
[  943.772934][    C1] RBP: ffff88804a3921ec R08: 0000000000000001 R09: 0000000000000000
[  943.776364][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88804a3921ec
[  943.779756][    C1] R13: ffff88804a392080 R14: ffff88802aaf3c00 R15: ffff88806f095200
[  943.783002][    C1] FS:  0000000000000000(0000) GS:ffff888097865000(0000) knlGS:0000000000000000
[  943.785886][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  943.788049][    C1] CR2: 0000000000000040 CR3: 000000004e0b6000 CR4: 0000000000352ef0
[  943.790622][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  943.793783][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  943.797119][    C1] Call Trace:
[  943.798261][    C1]  <IRQ>
[  943.799239][    C1]  tipc_crypto_xmit+0x20c1/0x2550
[  943.800990][    C1]  ? __pfx_tipc_crypto_xmit+0x10/0x10
[  943.803320][    C1]  ? lock_acquire+0x179/0x350
[  943.805426][    C1]  ? find_held_lock+0x2b/0x80
[  943.807505][    C1]  ? net_generic+0xea/0x2a0
[  943.809538][    C1]  tipc_bearer_xmit_skb+0x15f/0x430
[  943.811693][    C1]  ? __pfx_tipc_bearer_xmit_skb+0x10/0x10
[  943.813572][    C1]  ? mark_held_locks+0x49/0x80
[  943.815164][    C1]  ? __local_bh_enable_ip+0xa4/0x120
[  943.816932][    C1]  tipc_disc_timeout+0x5b2/0x850
[  943.818597][    C1]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  943.820400][    C1]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  943.822623][    C1]  call_timer_fn+0x19a/0x620
[  943.824719][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  943.826562][    C1]  ? rcu_is_watching+0x12/0xc0
[  943.828121][    C1]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  943.829877][    C1]  __run_timers+0x6ef/0x960
[  943.831363][    C1]  ? __pfx___run_timers+0x10/0x10
[  943.833055][    C1]  run_timer_base+0x114/0x190
[  943.834587][    C1]  ? __pfx_run_timer_base+0x10/0x10
[  943.836268][    C1]  ? rcu_is_watching+0x12/0xc0
[  943.837820][    C1]  run_timer_softirq+0x1a/0x40
[  943.839384][    C1]  handle_softirqs+0x219/0x8e0
[  943.840986][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  943.842705][    C1]  __irq_exit_rcu+0x109/0x170
[  943.844232][    C1]  irq_exit_rcu+0x9/0x30
[  943.845643][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  943.847444][    C1]  </IRQ>
[  943.848428][    C1]  <TASK>
[  943.849420][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  943.851359][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  943.853123][    C1] Code: 5b 56 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d b3 be 0e 00 fb f4 <e9> 0c fb 02 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  943.859080][    C1] RSP: 0000:ffffc9000046fdf8 EFLAGS: 00000286
[  943.861037][    C1] RAX: 0000000002cd1141 RBX: 0000000000000001 RCX: ffffffff8b7b4c69
[  943.863552][    C1] RDX: 0000000000000000 RSI: ffffffff8dc0ea98 RDI: ffffffff8bf55a60
[  943.866059][    C1] RBP: ffffed1003b5a488 R08: 0000000000000001 R09: ffffed1005666645
[  943.868563][    C1] R10: ffff88802b33322b R11: 0000000000000001 R12: 0000000000000001
[  943.871071][    C1] R13: ffff88801dad2440 R14: ffffffff90881950 R15: 0000000000000000
[  943.873591][    C1]  ? ct_kernel_exit+0x139/0x190
[  943.875181][    C1]  default_idle+0x13/0x20
[  943.876586][    C1]  default_idle_call+0x6d/0xb0
[  943.878147][    C1]  do_idle+0x391/0x510
[  943.879477][    C1]  ? __pfx_do_idle+0x10/0x10
[  943.881009][    C1]  ? trace_sched_exit_tp+0x31/0x130
[  943.882697][    C1]  cpu_startup_entry+0x4f/0x60
[  943.884244][    C1]  start_secondary+0x21d/0x2b0
[  943.885800][    C1]  ? __pfx_start_secondary+0x10/0x10
[  943.887491][    C1]  common_startup_64+0x13e/0x148
[  943.889113][    C1]  </TASK>
[  943.890233][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  943.892914][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-syzkaller-12141-gec7714e49479 #0 PREEMPT(full) 
[  943.896720][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  943.900086][    C1] Call Trace:
[  943.901227][    C1]  <IRQ>
[  943.902209][    C1]  dump_stack_lvl+0x3d/0x1f0
[  943.903696][    C1]  panic+0x71c/0x800
[  943.904963][    C1]  ? __pfx_panic+0x10/0x10
[  943.906417][    C1]  ? show_trace_log_lvl+0x29b/0x3e0
[  943.908068][    C1]  ? check_panic_on_warn+0x1f/0xb0
[  943.909744][    C1]  ? refcount_warn_saturate+0x1ca/0x210
[  943.911519][    C1]  check_panic_on_warn+0xab/0xb0
[  943.913489][    C1]  __warn+0xf6/0x3c0
[  943.914842][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  943.916470][    C1]  ? refcount_warn_saturate+0x1ca/0x210
[  943.918244][    C1]  report_bug+0x3c3/0x580
[  943.919624][    C1]  ? refcount_warn_saturate+0x1ca/0x210
[  943.921484][    C1]  handle_bug+0x184/0x210
[  943.923283][    C1]  exc_invalid_op+0x17/0x50
[  943.924819][    C1]  asm_exc_invalid_op+0x1a/0x20
[  943.926348][    C1] RIP: 0010:refcount_warn_saturate+0x1ca/0x210
[  943.928231][    C1] Code: ff 89 de e8 18 39 e3 fc 84 db 0f 85 e6 fe ff ff e8 2b 3e e3 fc c6 05 4f 34 98 0b 01 90 48 c7 c7 c0 05 f5 8b e8 97 5c a2 fc 90 <0f> 0b 90 90 e9 c3 fe ff ff e8 08 3e e3 fc c6 05 2a 34 98 0b 01 90
[  943.934408][    C1] RSP: 0000:ffffc900005908b0 EFLAGS: 00010286
[  943.936564][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817aa2c8
[  943.939148][    C1] RDX: ffff88801dad2440 RSI: ffffffff817aa2d5 RDI: 0000000000000001
[  943.942044][    C1] RBP: ffff88804a3921ec R08: 0000000000000001 R09: 0000000000000000
[  943.945150][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88804a3921ec
[  943.947599][    C1] R13: ffff88804a392080 R14: ffff88802aaf3c00 R15: ffff88806f095200
[  943.950036][    C1]  ? __warn_printk+0x198/0x350
[  943.951631][    C1]  ? __warn_printk+0x1a5/0x350
[  943.953548][    C1]  tipc_crypto_xmit+0x20c1/0x2550
[  943.955474][    C1]  ? __pfx_tipc_crypto_xmit+0x10/0x10
[  943.957368][    C1]  ? lock_acquire+0x179/0x350
[  943.959363][    C1]  ? find_held_lock+0x2b/0x80
[  943.961369][    C1]  ? net_generic+0xea/0x2a0
[  943.963317][    C1]  tipc_bearer_xmit_skb+0x15f/0x430
[  943.965309][    C1]  ? __pfx_tipc_bearer_xmit_skb+0x10/0x10
[  943.967097][    C1]  ? mark_held_locks+0x49/0x80
[  943.968612][    C1]  ? __local_bh_enable_ip+0xa4/0x120
[  943.970315][    C1]  tipc_disc_timeout+0x5b2/0x850
[  943.972131][    C1]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  943.974502][    C1]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  943.976878][    C1]  call_timer_fn+0x19a/0x620
[  943.978892][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  943.980755][    C1]  ? rcu_is_watching+0x12/0xc0
[  943.982811][    C1]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  943.985104][    C1]  __run_timers+0x6ef/0x960
[  943.986841][    C1]  ? __pfx___run_timers+0x10/0x10
[  943.988513][    C1]  run_timer_base+0x114/0x190
[  943.990345][    C1]  ? __pfx_run_timer_base+0x10/0x10
[  943.992036][    C1]  ? rcu_is_watching+0x12/0xc0
[  943.993594][    C1]  run_timer_softirq+0x1a/0x40
[  943.995133][    C1]  handle_softirqs+0x219/0x8e0
[  943.996701][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  943.998406][    C1]  __irq_exit_rcu+0x109/0x170
[  943.999905][    C1]  irq_exit_rcu+0x9/0x30
[  944.001354][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  944.003732][    C1]  </IRQ>
[  944.005031][    C1]  <TASK>
[  944.006272][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  944.008665][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  944.010484][    C1] Code: 5b 56 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d b3 be 0e 00 fb f4 <e9> 0c fb 02 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  944.017393][    C1] RSP: 0000:ffffc9000046fdf8 EFLAGS: 00000286
[  944.019438][    C1] RAX: 0000000002cd1141 RBX: 0000000000000001 RCX: ffffffff8b7b4c69
[  944.022176][    C1] RDX: 0000000000000000 RSI: ffffffff8dc0ea98 RDI: ffffffff8bf55a60
[  944.025485][    C1] RBP: ffffed1003b5a488 R08: 0000000000000001 R09: ffffed1005666645
[  944.027991][    C1] R10: ffff88802b33322b R11: 0000000000000001 R12: 0000000000000001
[  944.030511][    C1] R13: ffff88801dad2440 R14: ffffffff90881950 R15: 0000000000000000
[  944.033528][    C1]  ? ct_kernel_exit+0x139/0x190
[  944.035591][    C1]  default_idle+0x13/0x20
[  944.037403][    C1]  default_idle_call+0x6d/0xb0
[  944.039346][    C1]  do_idle+0x391/0x510
[  944.041092][    C1]  ? __pfx_do_idle+0x10/0x10
[  944.042639][    C1]  ? trace_sched_exit_tp+0x31/0x130
[  944.044294][    C1]  cpu_startup_entry+0x4f/0x60
[  944.045830][    C1]  start_secondary+0x21d/0x2b0
[  944.047351][    C1]  ? __pfx_start_secondary+0x10/0x10
[  944.049024][    C1]  common_startup_64+0x13e/0x148
[  944.050643][    C1]  </TASK>
[  944.052366][    C1] Kernel Offset: disabled
[  944.053763][    C1] Rebooting in 86400 seconds..

VM DIAGNOSIS:
18:05:24  Registers:
info registers vcpu 0

CPU#0
RAX=ffff88804a6d0000 RBX=ffff8880246d7028 RCX=ffffffff891b14a4 RDX=ffff8880272c2440
RSI=0000000000000001 RDI=ffff88804a6d0080 RBP=0000000000000001 RSP=ffffc9000db2fa38
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88804a6d0000 R13=dffffc0000000000 R14=ffffc9000db2fad0 R15=1ffff92001b65f56
RIP=ffffffff819761e7 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097765000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5044da4 CR3=000000004e0b6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=eb664091e9d3fe91 570a24231e615653 eb664091e9d3fe91 570a24231e615653 eb664091e9d3fe91 570a24231e615653 eb664091e9d3fe91 570a24231e615653
ZMM18=74858c0a0fc40c31 8fea4241fd2c7994 74858c0a0fc40c31 8fea4241fd2c7994 74858c0a0fc40c31 8fea4241fd2c7994 74858c0a0fc40c31 8fea4241fd2c7994
ZMM19=2035000000000000 0000000000000005 2035000000000000 0000000000000004 2035000000000000 0000000000000003 2035000000000000 0000000000000002
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 156c000015800000 1594000000440000 15b0000015c80000 15e0000015f80000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1610000016240000 163c000016540000 16680000167c0000 1694000016ac0000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 16c4000016dc0000 16f0000017080000 17280000157c0000 17500000001b0000
ZMM24=fd2c7994fd2c7994 fd2c7994fd2c7994 fd2c7994fd2c7994 fd2c7994fd2c7994 fd2c7994fd2c7994 fd2c7994fd2c7994 fd2c7994fd2c7994 fd2c7994fd2c7994
ZMM25=8fea42418fea4241 8fea42418fea4241 8fea42418fea4241 8fea42418fea4241 8fea42418fea4241 8fea42418fea4241 8fea42418fea4241 8fea42418fea4241
ZMM26=0fc40c310fc40c31 0fc40c310fc40c31 0fc40c310fc40c31 0fc40c310fc40c31 0fc40c310fc40c31 0fc40c310fc40c31 0fc40c310fc40c31 0fc40c310fc40c31
ZMM27=74858c0a74858c0a 74858c0a74858c0a 74858c0a74858c0a 74858c0a74858c0a 74858c0a74858c0a 74858c0a74858c0a 74858c0a74858c0a 74858c0a74858c0a
ZMM28=000000600000005f 0000005e0000005d 0000005c0000005b 0000005a00000059 0000005800000057 0000005600000055 0000005400000053 0000005200000051
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=1f3500001f350000 1f3500001f350000 1f3500001f350000 1f3500001f350000 1f3500001f350000 1f3500001f350000 1f3500001f350000 1f3500001f350000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff8557aa85 RDI=ffffffff9ae69a00 RBP=ffffffff9ae699c0 RSP=ffffc90000590200
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=ffffffff9ae699c0 R15=ffffffff9ae69c80
RIP=ffffffff8557aaaf RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097865000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000040 CR3=000000004e0b6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=ffffc9000378f330 RCX=ffffffff84def4f3 RDX=1ffff920006f1e69
RSI=ffffffff84def521 RDI=0000000000000001 RBP=0000000000000004 RSP=ffffc9000378f128
R8 =0000000000000001 R9 =0000000000000008 R10=0000000000000004 R11=0000000000000001
R12=0000000000000004 R13=0000000000000004 R14=0000000000000c84 R15=0000000000000c88
RIP=ffffffff84def537 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007efd4f18a300 ffffffff 00c00000
GS =0000 ffff888097965000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005616cdf6c000 CR3=000000004be71000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000002c00000012 0004000000080024 0000000000280030
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001256 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800118003000800 2086080020080006 006fa22e0000074b 0000000400000001
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001ffffffffff ffffffdf0811e003 00080011d8030008 0011d0030fffffff
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff0411c003000800 11b8030e080011b0 030fffffffff0411 a00300000002b700
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000014000002b700 000000000000002a 0808b00301080008 a803000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000e92834 b680800000182808 0880030880041190 031e080011880310
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1690030008001688 030fffffffff0216 80030fffffffff02 0a80020008000008
ZMM25=4da06b7f4da06b7f 4da06b7f4da06b7f 4da06b7f4da06b7f 4da06b7f4da06b7f 4da06b7f4da06b7f 4da06b7f4da06b7f 4da06b7f4da06b7f 4da06b7f4da06b7f
ZMM26=f40b60a5f40b60a5 f40b60a5f40b60a5 f40b60a5f40b60a5 f40b60a5f40b60a5 f40b60a5f40b60a5 f40b60a5f40b60a5 f40b60a5f40b60a5 f40b60a5f40b60a5
ZMM27=595e443d595e443d 595e443d595e443d 595e443d595e443d 595e443d595e443d 595e443d595e443d 595e443d595e443d 595e443d595e443d 595e443d595e443d
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=bf210000bf210000 bf210000bf210000 bf210000bf210000 bf210000bf210000 bf210000bf210000 bf210000bf210000 bf210000bf210000 bf210000bf210000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=ffff88802b533228 RCX=00000000ec1ad993 RDX=0000000000000000
RSI=ffffffff8bf559e0 RDI=ffffffff8dd18db8 RBP=0000000000000003 RSP=ffffc9000e38f5a0
R8 =6d5cf6dcdbc5e3e1 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffffffff81a70340 R13=ffffc9000e38f6d8 R14=0000000000000000 R15=ffff888024338000
RIP=ffffffff81a0e700 RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fdf4bd4ec80 ffffffff 00c00000
GS =0000 ffff888097a65000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f508dfac CR3=000000002752b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000