last executing test programs:

52.141999585s ago: executing program 1 (id=1123):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x40, 0x24, 0x400, 0x70bd28, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0x8}}]}, 0x40}}, 0x40040)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_pid(r6, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007800c00018008000140e00000020c00028008000140e0004001888d028aac84c857465dff5fc1639fa5acec725a4c546b42b67ad08b43312f84c45aa0503f77e6f1c40477d34c4356bc812074580976a21a53f4e9d795a9be58b892b292150f025895870ab529ee34070f"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x3d, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {0x2, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_TYPENAME={0x58, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008001}, 0x0)

52.099054035s ago: executing program 1 (id=1124):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x2)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000480)={{0x0, 0x3, 0x1, 0xa71}, 'syz0\x00', 0x2})
openat(0xffffffffffffff9c, 0x0, 0x140, 0x0)
syz_io_uring_setup(0x2432, &(0x7f0000000380)={0x0, 0x17a3, 0x13090, 0x0, 0x3e4}, 0x0, &(0x7f00000002c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="a463e714e3a827e7b4f58a83c475f451c996aa8d9c0884714117a88b", @ANYRESHEX, @ANYBLOB="020029bd7000fbdbdf254b0000000400870008009e00000000000a00f50050505050505000000500f600000000000a000600ffffffffffff0000040087004d022a00dd904ece2b7f143b425c138d323babedf2aa75dcd4a0f386dae12b18bb256e738f4df5c6c87db2453b9410ab9390795a0b17d6b7429a6b2ab9fd402e5ad8953f9acbca06431098f37548fc929b8ffe06240d5966b97727c4aef4b48e92304909cfd0fafd5add8999ef32275e2119c153b1487be961127b99aceb3ea2feadc94b81339574425df72b7dea80a59b2f20d6d7908c10000067c8e0211a32b864b6df8f487b3484ce000c40ffffffffffff00000000ffffffffffff0e004008021100000000000000ffffffffffff0c0000080211000001000000003a0000080211000000000000002b004008021100000100000000080211000000000000ffffffffffff00000000000000ffffffffffff0000000000004008021100000000000000080211000001220040080211000000ffffff7f0802110000011c00400802110000000900000008021100000101004008021100000100000000080211000001000040ffffffffffff050000000802110000010500100163bd06080211000000dd490464c974589012e356b87cf5c3d83a20ec83fadecc0582072e7571bcce15e74af95e967d1b7f060a5e19bd31ce75b7a6d13babe82906d86eff40e082f796751780e97f2f289b1598f3afd00006020202020202847581074008021100000100000080ffffffffffff0d0040ffffffffffff08000000ffffffffffff04000008021100000005000000220000080211000000070000003b0040ffffffffffff03000000ffffffffffff390040ffffffffffff430000000802110000001b0000ff"], 0x2a4}}, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000100), 0x1, 0x822b01)
write$char_usb(r4, &(0x7f0000000040)="e2", 0x1068)
ioctl$KVM_SET_CLOCK(r3, 0xc048aec8, &(0x7f0000000100)={0xd6, 0x0, 0x1})
r5 = dup(r1)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_OPENAT={0x12, 0x10, 0x0, r5, 0x0, &(0x7f0000000100)='./file0\x00', 0x204, 0x42, 0x12345})
syz_open_dev$vbi(&(0x7f00000000c0), 0x3, 0x2)
r6 = socket(0x1e, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=<r8=>0x0, &(0x7f0000000000)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x28, 0x3, r7, 0x0, 0x0, 0x0, 0x0, 0x1, {0x4}})
io_uring_enter(r7, 0x47ff, 0xd377, 0x5, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x12, r6, 0x0, 0x0, 0x0, 0x10021, 0x1, {0x3}})
ioctl$AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, 0x0)
ioctl$UI_DEV_CREATE(r0, 0x5501)

51.314666797s ago: executing program 1 (id=1131):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="7b904e03e909bd32d461a172588c957f6d41955b694f4cdd39ba4af400c20237c86598f3b61dcb7d96d425cf13b743110715eda1"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='contention_end\x00', r0, 0x0, 0x8000000002}, 0x18)
openat$pfkey(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x180)
r5 = dup(r4)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r6, 0xc0045516, &(0x7f0000000080)=0x5)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00001700000000001c0037800b0001006970768a616e00000c0002"], 0x44}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000a000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN_LIVE(0xa, &(0x7f0000000080)={r7, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4}, 0x4c)
r8 = userfaultfd(0x801)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xa0090199)
ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
ioctl$UFFDIO_REGISTER(r8, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r8, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
ioctl$BLKPG(r9, 0x1269, &(0x7f0000000100)={0x2, 0x0, 0x98, &(0x7f0000000000)={0x0, 0x0, 0x11}})
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
pwritev(r10, &(0x7f0000000500)=[{&(0x7f0000000000)='0', 0x1}], 0x1, 0x0, 0x0)

50.366079343s ago: executing program 1 (id=1136):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) (fail_nth: 3)

50.302453955s ago: executing program 1 (id=1137):
r0 = creat(0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="17000000f800000878261e9a0b12b531a705ec978547000000003e5da6e4f1b0da8ebca4f3bc41a512620eaa4cb7eecea08c4b9a9935459381dddf19a7a00204"], 0x702a1)

50.182378053s ago: executing program 1 (id=1138):
r0 = syz_io_uring_setup(0x110, &(0x7f0000000340)={0x0, 0x6d89, 0x8, 0x40000, 0x100000f0}, &(0x7f0000000400)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_WRITE={0x17, 0x40, 0x4007, @fd_index=0x1, 0x6, &(0x7f0000000600)="0f1dedc4881a37daf62bfa9f09bdaca9aca1a9f8351eeb735ea9a6c53f82068492707fb83463d8b2e1b8e2606d698cd24388044300ba0776b0bcc6d990fa5e1f53003c92da3c13fd1771c22ae9339c0b7edc1f04c9461cb6e9256eccf62034315470ee346af8234e4f577f0abaa54f9a677879108d64ce74ad5e05e1a93f4c9db070570f4a7d55e77f7925afe3c225f6891b9922d678219f0bc5aff7fb04452c0e41de394d78bdab34c31b466046c990a63ac78b62e9de2187b6410f7192635dd8745cb0aceadf8caa2b82d6ce626fb31350df0c", 0xd4, 0x1})
io_uring_enter(r0, 0x8aa, 0x0, 0x0, 0x0, 0x0)

50.147530478s ago: executing program 32 (id=1138):
r0 = syz_io_uring_setup(0x110, &(0x7f0000000340)={0x0, 0x6d89, 0x8, 0x40000, 0x100000f0}, &(0x7f0000000400)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_WRITE={0x17, 0x40, 0x4007, @fd_index=0x1, 0x6, &(0x7f0000000600)="0f1dedc4881a37daf62bfa9f09bdaca9aca1a9f8351eeb735ea9a6c53f82068492707fb83463d8b2e1b8e2606d698cd24388044300ba0776b0bcc6d990fa5e1f53003c92da3c13fd1771c22ae9339c0b7edc1f04c9461cb6e9256eccf62034315470ee346af8234e4f577f0abaa54f9a677879108d64ce74ad5e05e1a93f4c9db070570f4a7d55e77f7925afe3c225f6891b9922d678219f0bc5aff7fb04452c0e41de394d78bdab34c31b466046c990a63ac78b62e9de2187b6410f7192635dd8745cb0aceadf8caa2b82d6ce626fb31350df0c", 0xd4, 0x1})
io_uring_enter(r0, 0x8aa, 0x0, 0x0, 0x0, 0x0)

3.001579644s ago: executing program 3 (id=1450):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x40, 0x24, 0x400, 0x70bd28, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0x8}}]}, 0x40}}, 0x40040)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007800c00018008000140e00000020c00028008000140e0004001888d028aac84c857465dff5fc1639fa5acec725a4c546b42b67ad08b43312f84c45aa0503f77e6f1c40477d34c4356bc812074580976a21a53f4e9d795a9be58b892b292150f025895870ab529ee34070f"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

2.921546337s ago: executing program 3 (id=1451):
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x200000006c832, 0xffffffffffffffff, 0x200000)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000d40)={'wpan0\x00'})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r1, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00NQ', @ANYRES16=r0, @ANYBLOB="020025bd7000fedbdf25150000000c00060000000000000000000c0006000000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x1)
r2 = openat$audio1(0xffffff9c, &(0x7f0000000d00), 0x20802, 0x0)
ioctl$SNDCTL_DSP_NONBLOCK(r2, 0x500e, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, &(0x7f0000000140)={@multicast2, @multicast1, 0x0, "aaa517d60f2811d48c8a2cc60c4380bc23b510d442ff13482864280a9c0f4eb5"}, 0x3c)
setsockopt$MRT_DEL_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd3, &(0x7f00000000c0)={@multicast2, @multicast1, 0x0, "c6c0e6ec8755b5dc4e305886d95f086707764f8d0e5a0358ea21274f844a69e9"}, 0x3c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000190c0)=ANY=[@ANYRES8, @ANYRES32, @ANYRES8, @ANYBLOB="2fce590e"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='net/if_inet6\x00')
pread64(r6, &(0x7f0000000080)=""/102356, 0x18fd4, 0xc2a)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000192c0)=@newtaction={0x70, 0x30, 0xcac229faa96ee7df, 0xffffffff, 0xfffffffd, {}, [{0x5c, 0x1, [@m_ife={0x58, 0x1, 0x0, 0x0, {{0x8}, {0x30, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x4000, 0xffffffff}}}, @TCA_IFE_METALST={0x10, 0x6, [@IFE_META_TCINDEX={0x6, 0x5, @val=0x3}, @IFE_META_TCINDEX={0x4, 0x5, @void}]}]}, {0x4}, {0xc, 0x4}, {0xc}}}]}]}, 0x70}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$kcm(0x29, 0x0, 0x0)
ioctl$sock_inet6_SIOCDELRT(r6, 0x890c, &(0x7f0000019400)={@loopback, @loopback, @private0={0xfc, 0x0, '\x00', 0x1}, 0x3, 0x6, 0x0, 0x0, 0x6, 0x105090100})

2.851660844s ago: executing program 0 (id=1452):
socket(0x23, 0x5, 0x5)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000100)={0x2c, &(0x7f0000000280)=ANY=[@ANYBLOB="200617"], 0x0, 0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0xaf}, [@ldst={0x6, 0x0, 0x3}]}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001400010000000000000000c903000080080002"], 0x1c}], 0x1, 0x0, 0x0, 0x100}, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r3, 0x40085112, &(0x7f0000000040)=@t={0x81, 0x6, 0xf5, 0x1})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000001a001fffffffff7f0000000080000000", @ANYBLOB="84b15b845e5a"], 0x24}}, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040f"], 0x7)

2.735735285s ago: executing program 2 (id=1453):
socket$packet(0x11, 0x2, 0x300)
socket(0x9, 0x800, 0x5)
r0 = socket$inet(0x2, 0x80001, 0x84)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000001480)=""/4094)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0xce20, @local}, 0x10)
fchown(r0, 0xee01, 0x0)
listen(r0, 0x1)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000500)=ANY=[@ANYRES64=r2], &(0x7f0000000040)='syzkaller\x00', 0xb, 0xa2, &(0x7f0000000140)=""/162, 0x41100, 0x82, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000300)=[{0x2, 0x1, 0xa, 0xb}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x82000)
r6 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r7, &(0x7f0000000200)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x20, 0x0)
pread64(r6, &(0x7f0000002240)=""/237, 0xed, 0x619)
ioctl$I2C_SMBUS(r5, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x6, &(0x7f0000000240)=[{0x7, 0x6, 0x0, 0x7fe00002}, {0xf, 0x3, 0x7, 0x2cfe218f}, {0xa, 0x1, 0x8, 0x9}, {0x9, 0x2, 0x9, 0xa}, {0xb1d, 0xfd, 0x5, 0x9}, {0x3, 0x6, 0x2, 0x6}]})

2.051960213s ago: executing program 3 (id=1456):
r0 = fsopen(&(0x7f00000000c0)='configfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
openat(r1, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
r2 = socket(0x40000000015, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
read$FUSE(r5, &(0x7f0000000900)={0x2020}, 0x2020)
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0xffffffff}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000000000)={0x2, 'vxcan1\x00', {0x3ff}, 0x3})
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f00000004c0)=@filter={'filter\x00', 0xe, 0x4, 0x474, 0xffffffff, 0x21c, 0x21c, 0x0, 0xffffffff, 0xffffffff, 0x468, 0x468, 0x468, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x1f8, 0x21c, 0x0, {}, [@common=@unspec=@comment={{0x120}}, @common=@unspec=@owner={{0x34}, {0x0, 0x0, 0x0, 0x0, 0x4, 0x4}}]}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x8}}}, {{@uncond, 0x0, 0xa4, 0xc8}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x1}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @local}, @private1, [0xff000000, 0xffffffff, 0xff000000], [0xff, 0x0, 0xffffff00], 'wg0\x00', 'macvlan0\x00', {0xff}, {0xff}, 0xbe, 0x1, 0x2}, 0x0, 0xa4, 0xc8}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x5}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x4d0)
io_uring_enter(r1, 0x2c0b, 0x1d8, 0x59, &(0x7f0000000100)={[0x80, 0x5]}, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r8 = openat$full(0xffffff9c, &(0x7f0000000e80), 0x28d00, 0x0)
read$FUSE(r8, 0x0, 0x0)
ioctl$SNDCTL_SEQ_NRMIDIS(r7, 0x8004510b, &(0x7f00000002c0))
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=@newtaction={0x134, 0x30, 0xb, 0x0, 0x0, {}, [{0x120, 0x1, [@m_simple={0x11c, 0x1f, 0x0, 0x0, {{0xb}, {0x54, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x9, 0x3, '^+@,\x00'}, @TCA_DEF_DATA={0x5, 0x3, '\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x3, 0xffffffffffffffff, 0x7fffffff, 0xfffffffd}}, @TCA_DEF_DATA={0x9, 0x3, '\\@(]\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x3, 0xe, 0x10000000, 0x189, 0x6}}]}, {0xa0, 0x6, "015e1166824d69afa2dee3a85b6ece940218ccfbf0990b73b38656f6b913069867493f51a95300a1d1513cb1ae2bc80e17658770fd670294be32c2894da0fc77a308c93debb02f0799a6aebf31067014f322c099f265df1073290480e5fc65ed5585538c36107b2d37e09999ce03f76362ae0d1d7cba75251cef97233ec7c5b4eb17aad37071ecb4cd53bc7f487a2b1529438f0e9007e4f3bbd6fb00"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x134}}, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, 0x0, 0x0)

1.765097143s ago: executing program 2 (id=1458):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(r2, &(0x7f0000000040), 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000800000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
creat(0x0, 0x50)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x1ff, 0x1501)
ioctl$USBDEVFS_CLAIM_PORT(r7, 0x80045518, &(0x7f0000000080)=0x548)
pread64(r6, &(0x7f0000000080)=""/75, 0x8e, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0)
r8 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$vhost_msg_v2(r8, &(0x7f0000000980)={0x2, 0x0, {0x0, 0x4b, 0x0, 0x0, 0x2}}, 0x48)
r9 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$EBT_SO_SET_COUNTERS(r9, 0x0, 0x81, &(0x7f0000000740)={'nat\x00', 0x0, 0x0, 0x0, [0x400009, 0xeacc, 0x8, 0x1, 0xc2, 0xb], 0x1, &(0x7f0000000440)=[{}, {}]}, 0xffffff3d)
write$vhost_msg_v2(r8, &(0x7f0000000040)={0x2, 0x0, {&(0x7f0000000b40)=""/263, 0x107, 0x0, 0x3, 0x1}}, 0x48)
write$vhost_msg_v2(r8, &(0x7f0000000340)={0x2, 0x0, {&(0x7f0000000640)=""/201, 0xc9, 0x0, 0x2, 0x2}}, 0x48)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000020301020000000000000000000000100800010001"], 0x1c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000058000000030a0102000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a3000"], 0x122}}, 0x0)

1.746207475s ago: executing program 2 (id=1459):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000380)=[@in6={0xa, 0x4f22, 0x2, @remote, 0xbf24}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x3d}}, @in6={0xa, 0x4e23, 0x800, @loopback, 0x6}, @in6={0xa, 0x4e21, 0x3, @mcast1, 0x8d7}, @in6={0xa, 0x4e22, 0xe, @loopback, 0x81}], 0x80)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, &(0x7f0000000100))
fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x9, 0x2, 0x0, 0x0, 0x0, 0xb, 0x7}, 0xe)
socket$kcm(0x10, 0x400000002, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000002500), 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r4, 0x6804, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd}, 0x0, &(0x7f0000000080)={0x3ff}, 0x0, 0x0)
write$binfmt_script(r3, &(0x7f00000000c0)={'#! ', './file0'}, 0xf000)
sendmmsg$inet6(r2, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000340)="b2", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000540)="56f9596d1f5982a7b3bd96", 0xb}], 0x1}}], 0x2, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
close_range(r1, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f0000000040), &(0x7f0000000200)=0x4)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x4, 0xb007}, 0x4)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0x7, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000980)={'wg2\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000180)="0b031407e0ff640f0200475400f6a13bb1000e00080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14)

1.720856262s ago: executing program 2 (id=1460):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket(0x2000000000000021, 0x2, 0x10000000000002)
r2 = syz_open_dev$I2C(&(0x7f0000000000), 0x51, 0x68e03)
ioctl$I2C_RDWR(r2, 0x707, &(0x7f00000004c0)={&(0x7f0000000480)=[{0xa, 0xf5ff, 0x0, 0x0}], 0x1})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0xe0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000000)=[0x0], ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x2, 0x3, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xc3, &(0x7f0000000240), 0x30, 0x10, &(0x7f0000000300), &(0x7f0000000340), 0x8, 0x11, 0x8, 0x17, &(0x7f0000000380)}}, 0x10)
getsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000580)={@remote, <r5=>0x0}, &(0x7f00000005c0)=0x14)
fstat(r3, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000001"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000026000000850000000700000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r8, 0x0, 0xe, 0x0, &(0x7f0000000640)="d9b9547ed3c0021a6fd6a67ab922", 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@allocspi={0x22c, 0x16, 0x400, 0x70bd29, 0x25dfdbfb, {{{@in=@local, @in6=@rand_addr=' \x01\x00', 0x4e20, 0xbcf, 0x4e21, 0x6, 0xa, 0x90, 0x0, 0x3b, r4}, {@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4d5, 0x33}, @in6=@ipv4={'\x00', '\xff\xff', @empty}, {0x3, 0x3, 0x1, 0x100, 0x9, 0x4, 0x8, 0x6}, {0xd6, 0x2, 0xfff, 0x8}, {0xfffffffd, 0x3, 0x8000}, 0x70bd28, 0x0, 0xa, 0x4, 0x0, 0x40}, 0xd, 0x7}, [@policy_type={0xa, 0x10, {0x1}}, @tfcpad={0x8, 0x16, 0x5}, @sa={0xe0, 0x6, {{@in=@multicast1, @in6=@mcast2, 0x6, 0x0, 0x4e24, 0x0, 0xa, 0xa0, 0x140, 0x5e, r5, r6}, {@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4d5, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0x43}, {0x9, 0x7, 0x2, 0x5, 0x37d, 0xd1d8, 0x3, 0x4}, {0x7, 0x7f, 0x5, 0x32}, {0x4, 0x5, 0x5}, 0x70bd2d, 0x1, 0xa, 0x1, 0x0, 0x5c}}, @lastused={0xc, 0xf, 0xffffffffffffffff}, @proto={0x5, 0x19, 0xff}, @address_filter={0x28, 0x1a, {@in6=@loopback, @in=@loopback, 0xa, 0x81, 0xd}}, @proto={0x5, 0x19, 0x2b}]}, 0x22c}}, 0x0)
openat$ttynull(0xffffffffffffff9c, 0x0, 0x14800, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[], 0x0, 0x2a, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x14d802, 0x0)
r10 = dup(r9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r10, 0x63)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

1.637802897s ago: executing program 2 (id=1461):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f0000000180)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000240)="27050200340f14000600002fb96dbcf706060000170000005f45f491bdd54ec5ff1144ee162fd4000000010000570000000600000000000000805d918fc0830900"/79, 0x4f}, {&(0x7f0000002180)="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", 0xefb}, {&(0x7f0000000080)="bce217fab8bcdfe60af34b1da79e113edb", 0x11}], 0x3}, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000040)=0x3, 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x6, 0x1, 0x4}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x42, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11641e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x20, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x647b}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x3a6}, &(0x7f0000000000), &(0x7f0000000200))
inotify_init1(0x0)
r6 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x10}, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000080)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r6, 0x47ba, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)

1.233849401s ago: executing program 0 (id=1462):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x143082, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000002c0)={0x0, 0xa1, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)

1.199418193s ago: executing program 3 (id=1463):
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xa, &(0x7f0000000180)=0x67e, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000002000000000000000000000a00000000000000000000000d"], &(0x7f00000002c0)=""/193, 0x32, 0xc1, 0x1, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f000000b5c0)={0x8, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000080)='syzkaller\x00', 0x7, 0x94, &(0x7f00000000c0)=""/148, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10)
getsockopt$TIPC_IMPORTANCE(r1, 0x10f, 0x7f, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x6)
r3 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000600)={'team0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0x100, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0xfcca]}}}}]}, 0x88}}, 0x20000000)
r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x3, 0x0)
sync()
ioctl$EVIOCGABS20(r5, 0x80184560, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x44040}, 0x4804)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000039c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000001c0)}}], 0x2, 0x2000c044)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000140)=0x4, 0x4)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r7, 0x0, 0x0)

1.111964967s ago: executing program 0 (id=1464):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f0000000340), &(0x7f0000000480)='./file0\x00', &(0x7f0000000300), 0x3210420, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000240)='f2fs_lookup_extent_tree_start\x00', r0}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000000800), 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeeb, 0x8031, r1, 0x9609a000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000480)=""/135)
ioctl$TIOCNXCL(0xffffffffffffffff, 0x540d)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
sendfile(0xffffffffffffffff, r5, 0x0, 0x10000)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
r7 = syz_open_dev$video(&(0x7f00000002c0), 0x1, 0x0)
ioctl$VIDIOC_S_FMT(r7, 0xc0cc5605, &(0x7f0000000540)={0x1, @pix_mp={0x0, 0x0, 0xb5315258}})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00'})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f00000000c0), 0xfea7)
copy_file_range(r9, &(0x7f00000001c0), r8, 0x0, 0xfffffff7a003e45c, 0x10000000000000)

741.672774ms ago: executing program 4 (id=1467):
r0 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000100)={@remote, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x4380000, @private2}, 0x1c)
sendmmsg$alg(r0, &(0x7f00000010c0)=[{0x20000000, 0xff00, 0x0, 0x0, &(0x7f0000000140)=[@iv={0x10, 0x29}], 0x10, 0x20040000}], 0x1, 0x8850)
ioprio_set$pid(0x2, 0x0, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
sendfile(r1, r1, 0x0, 0x40008)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="39ea90b6daa53003298fd8316c31b540bd0cc99cd042f238f6783b0ce30b5655b1b62b05292e0f908369d445385d29b53483dacca04cc0fc3044b24fc9b25a8aff2b5b13bf23eb97df1c47b22c242f058c6db7d1f7bc717f2bfcbb0946fd37294f2f9b269d1fb1258a9f2297cf96ec6e4a2d3016f279d318170cca0662602399e3f450b4ccbf0100000000000000363f30e007c474263e5e4b9b771b00f5a2d9ca9673dd8c4d2a9ca619"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
iopl(0x3)
prctl$PR_SCHED_CORE(0x1f, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000005c0)={'wlan0\x00', <r5=>0x0})
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="020500021f000000000000000000000005000600000000000a004e2400000005200100000039fd143bf8300ee87a6a2a01ce0000000000000000000000080000000000000002000100000000000000fb0000000000160018000307a200ba2b1b57e8da33dd57b2c507a0f06644622c7a0702dfdbc9abaff57a321467c1cc34a2e3c18b13b75ca95079d5c0d218b3c809496d1acf7203b49885a5563b7051c5626625b64a18b8b1c4524eeb46d80f676f212aeb9f5271c29137088ad2dbe8113dbef606c45785fa358a8142bac0ee691a52471eb0674bed6b88eef60acd2d3e782b4ad2e16fd462e6361415ec3eba37f2b85410000000000000"], 0xf8}, 0x1, 0x7}, 0x40000)
sendmsg$NL80211_CMD_DEL_STATION(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="99c7be8ef276d4f857be69c24ebe564e52bde3f1667daceb67fbb8e9c014e7dd5c1d8a7630da1f25845d2899c0b002835609824c27b97daa924f8251b078557336b5b1a8ed9eedf0e041cf712d00000000000000001167442e72999e35b77c09130010c5e6a220cda0bbb420a19f93acd28a8950381d3b94c4c60cedf2b206ca22e2937b08a8af164b8e", @ANYRES16=r3, @ANYBLOB="210127bd7002e5d0be90999c000000000014", @ANYRES32=r5, @ANYBLOB="0600360002000000"], 0x24}}, 0x8080)
r7 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
quotactl$Q_GETFMT(0xffffffff80000402, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000240))
quotactl_fd$Q_GETINFO(r2, 0x0, 0x0, &(0x7f00000001c0))
ioctl$CDROMPLAYMSF(r7, 0x5303, 0x0)

671.424039ms ago: executing program 2 (id=1468):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x7, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9c, 0x11e41e7a, 0x7, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000400)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
tee(r2, r1, 0x80000001, 0x0)
vmsplice(r3, &(0x7f0000000380)=[{&(0x7f0000013580)='\r', 0x1}], 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
timerfd_create(0x9, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r4, &(0x7f0000000640)=[{&(0x7f0000000140)=""/134, 0x86}], 0x1, 0x0, 0x0)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x3)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, &(0x7f0000000040), 0x6)
ioctl$sock_bt_hci(r8, 0x400448e6, 0x0)
ioctl$sock_bt_hci(r8, 0x400448e6, &(0x7f0000000500))
ioctl$sock_bt_hci(r3, 0x400448df, &(0x7f0000000680)="11111dc274df5d156267560e6253951ee7c664c063d62f6cef5936e1a24402871e969a0b31419abd9972f9d9e598acf0f51d12c5c218109df35ac0c9b015afce72042218273b2cf33f30ec0ef45ef0bf7685c3bae76fde9613bcd2f8a8de917c0faf301c5f1db36f30d53acdb0363115128427331da6fa506e4c2369093e8471b06981c5241524e2eae164b02e211569510cfd08b293e969e155ad3fa66b04b443353540b5f80e8331bb5b895e634b26a97c3c3d06f7eeab1576278356ad851680b520288b0432b3ff42ec2e16d931812c9e5572f5f644a5085b9799c9db04cf01f1fb3b022366d349e189b71fb2be3cdceeb39c49579da65f27edcce2bcf52e994f7ff14335eee6f0614ba68d358231a2ff9359b1350ce2ec4876c36f8bf1ab4c11ac0386b93e6d17638685e6b07ca95c884c9068228bf9de8c9bac0c881c57648f8c8d5bc71b7c06e3f1e84546dfaa567bdab26d2eb5602a1bc3b124dd30c20d1743d0308b321aacb59de30992fd5226c4aa1461f5f16ec78dff2dc723ecf16f5514ccb95648f6cdc11fc9320120e63a560d787e5975570b470008db57c4bd0c24da9179c44d448c9ff43a2faa8aa46412e65647ecdb5b04faf190874da375e9eb65a948f7da6858ec78d0fb2a99bcce9a4654bd09cf22d11f8be3d3603e81a71b7f3461281ff15dae59caac363d126396e4738042feb0a0d7c5c245d66954745753666a4a874b5258b09d70019bccd9908077f5f21d310b0bc4f0fa9df1dbe809e77e41e84f3c1fad6908955035017dd79704bb8a6d07609efedf2f21ae0abc67989c274d8ccbc29271d21377734eaad47b043406ba9e0a05eb7f854d942d898c975d580644")
setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x4, &(0x7f0000000000)=0xfffffffc, 0x4)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r9, &(0x7f00000000c0), 0x12)

638.388201ms ago: executing program 4 (id=1469):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb8908aa6c9b953f40000000e3bd6efb010511000b000a000d000000ba800000", 0x2c}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)

518.552316ms ago: executing program 3 (id=1470):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(r2, &(0x7f0000000040), 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000800000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
creat(0x0, 0x50)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x1ff, 0x1501)
ioctl$USBDEVFS_CLAIM_PORT(r7, 0x80045518, &(0x7f0000000080)=0x548)
pread64(r6, &(0x7f0000000080)=""/75, 0x8e, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0)
r8 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$vhost_msg_v2(r8, &(0x7f0000000980)={0x2, 0x0, {0x0, 0x4b, 0x0, 0x0, 0x2}}, 0x48)
r9 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$EBT_SO_SET_COUNTERS(r9, 0x0, 0x81, &(0x7f0000000740)={'nat\x00', 0x0, 0x0, 0x0, [0x400009, 0xeacc, 0x8, 0x1, 0xc2, 0xb], 0x1, &(0x7f0000000440)=[{}, {}]}, 0xffffff3d)
write$vhost_msg_v2(r8, &(0x7f0000000040)={0x2, 0x0, {&(0x7f0000000b40)=""/263, 0x107, 0x0, 0x3, 0x1}}, 0x48)
write$vhost_msg_v2(r8, &(0x7f0000000340)={0x2, 0x0, {&(0x7f0000000640)=""/201, 0xc9, 0x0, 0x2, 0x2}}, 0x48)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000020301020000000000000000000000100800010001"], 0x1c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000058000000030a0102000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a3000"], 0x122}}, 0x0)

512.355853ms ago: executing program 4 (id=1471):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r0}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x13, 0x10, 0x8, 0x0, 0x0, 0x1, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x8, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000005000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4d, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000240)={@cgroup=r3, r5, 0x1, 0x0, 0xffffffffffffffff, @void, @value=r2}, 0x20) (fail_nth: 6)

411.674113ms ago: executing program 4 (id=1472):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
ioctl$FS_IOC_READ_VERITY_METADATA(r1, 0xc0286687, &(0x7f0000000180)={0x1, 0x6, 0xa6, &(0x7f0000000300)=""/166})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c00000018400900fcffffff000000001c1459fbbdac000100000000"], 0x1c}}, 0x20000084)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000600)="9d8d64c117", 0x5)
truncate(&(0x7f00000001c0)='./file0\x00', 0x4)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x2], 0x0, 0x0, 0x1, 0x1}}, 0x40)
creat(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) (async)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) (async)
ioctl$FS_IOC_READ_VERITY_METADATA(r1, 0xc0286687, &(0x7f0000000180)={0x1, 0x6, 0xa6, &(0x7f0000000300)=""/166}) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c00000018400900fcffffff000000001c1459fbbdac000100000000"], 0x1c}}, 0x20000084) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
write$qrtrtun(r0, &(0x7f0000000600)="9d8d64c117", 0x5) (async)
truncate(&(0x7f00000001c0)='./file0\x00', 0x4) (async)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x2], 0x0, 0x0, 0x1, 0x1}}, 0x40) (async)

257.747139ms ago: executing program 3 (id=1473):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f0000000180)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000240)="27050200340f14000600002fb96dbcf706060000170000005f45f491bdd54ec5ff1144ee162fd4000000010000570000000600000000000000805d918fc0830900"/79, 0x4f}, {&(0x7f0000002180)="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", 0xefb}, {&(0x7f0000000080)="bce217fab8bcdfe60af34b1da79e113edb", 0x11}], 0x3}, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000040)=0x3, 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x6, 0x1, 0x4}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x42, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11641e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x20, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x647b}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x10}, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)

251.623096ms ago: executing program 0 (id=1474):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@newtaction={0x2bc, 0x30, 0x800, 0x70b52d, 0x25dfdbff, {}, [{0x2a8, 0x1, [@m_skbmod={0xb4, 0x1f, 0x0, 0x0, {{0xb}, {0x88, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x20, 0x2, {{0x9, 0x4, 0x8, 0x7fff, 0x8}, 0x8}}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x10000, 0x10001, 0x20000000, 0x1, 0x7f}, 0xe}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x0, 0x0, 0xffffffffffffffff, 0x6, 0x10}, 0x7}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x34}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @remote}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}, @m_skbedit={0x138, 0x11, 0x0, 0x0, {{0xc}, {0xc, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x4}]}, {0x102, 0x6, "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"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_nat={0x88, 0x2001, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x1, 0x80, 0x20000000, 0x3, 0x7}, @local, @rand_addr=0x64010100, 0xffffffff}}]}, {0x35, 0x6, "507e1baf70350ba63c9fdba3ace3ff69773db861d8a2e332d6b16db257bc0277a998c2a2037a7e3928486948fe0d47d2df"}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_sample={0x30, 0xf, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x2bc}}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41, 0x20}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

251.396172ms ago: executing program 4 (id=1475):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000c80)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0x1c, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='ext4_writepages_result\x00', r2}, 0x10)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
close(r4)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r1, 0x0, 0x0}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x4c, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x4, 0x5, 0xc2}}}}}}}, 0x0)

171.440535ms ago: executing program 4 (id=1476):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f0000000180)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000240)="27050200340f14000600002fb96dbcf706060000170000005f45f491bdd54ec5ff1144ee162fd4000000010000570000000600000000000000805d918fc0830900"/79, 0x4f}, {&(0x7f0000002180)="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", 0xefb}, {&(0x7f0000000080)="bce217fab8bcdfe60af34b1da79e113edb", 0x11}], 0x3}, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000040)=0x3, 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x6, 0x1, 0x4}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan1\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x42, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11641e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x20, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x647b}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
inotify_init1(0x0)
r6 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x10}, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000080)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r6, 0x47ba, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)

171.017651ms ago: executing program 0 (id=1477):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_open_dev$evdev(&(0x7f0000000740), 0x0, 0x40001)
ioctl$EVIOCGBITKEY(r4, 0x80404521, &(0x7f0000000780)=""/41)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000240), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r6, 0xc25c4110, &(0x7f0000000980)={0x0, [[0x5, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x4000], [0x2, 0x0, 0x0, 0x0, 0x0, 0x2], [0x2, 0xfffffff5, 0x0, 0x6]], '\x00', [{0x0, 0x5}, {}, {0x10000, 0x3}, {}, {0x100000, 0x1}, {0x400000}, {}, {0x0, 0x1}, {}, {0x7, 0xfffffffc}], '\x00', 0x1, 0x0, 0x0, 0x2})
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)) (async)
syz_open_dev$evdev(&(0x7f0000000740), 0x0, 0x40001) (async)
ioctl$EVIOCGBITKEY(r4, 0x80404521, &(0x7f0000000780)=""/41) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4) (async)
syz_open_dev$sndpcmp(&(0x7f0000000240), 0x0, 0x0) (async)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r6, 0xc25c4110, &(0x7f0000000980)={0x0, [[0x5, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x4000], [0x2, 0x0, 0x0, 0x0, 0x0, 0x2], [0x2, 0xfffffff5, 0x0, 0x6]], '\x00', [{0x0, 0x5}, {}, {0x10000, 0x3}, {}, {0x100000, 0x1}, {0x400000}, {}, {0x0, 0x1}, {}, {0x7, 0xfffffffc}], '\x00', 0x1, 0x0, 0x0, 0x2}) (async)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0) (async)

0s ago: executing program 0 (id=1478):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000640)=ANY=[@ANYBLOB="1201000000000010d21f076000000000000109"], 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x80000)
syz_usb_disconnect(r0)
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f00000006c0)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r0, 0x5509, 0x0)

kernel console output (not intermixed with test programs):

ULT_INJECTION: forcing a failure.
[  166.985282][ T8951] name failslab, interval 1, probability 0, space 0, times 0
[  166.989412][ T8951] CPU: 2 UID: 0 PID: 8951 Comm: syz.3.894 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  166.992461][ T8951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.995545][ T8951] Call Trace:
[  166.996442][ T8951]  <TASK>
[  166.997303][ T8951]  dump_stack_lvl+0x16c/0x1f0
[  166.998659][ T8951]  should_fail_ex+0x497/0x5b0
[  166.999992][ T8951]  should_failslab+0xc2/0x120
[  167.001351][ T8951]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  167.002906][ T8951]  ? trace_lock_acquire+0x14e/0x1f0
[  167.004405][ T8951]  ? skb_clone+0x190/0x3f0
[  167.005715][ T8951]  skb_clone+0x190/0x3f0
[  167.006997][ T8951]  dev_queue_xmit_nit+0x38f/0xbc0
[  167.008447][ T8951]  dev_hard_start_xmit+0x283/0x7b0
[  167.009930][ T8951]  __dev_queue_xmit+0x7f0/0x43e0
[  167.011384][ T8951]  ? __pfx___dev_queue_xmit+0x10/0x10
[  167.012914][ T8951]  ? rcu_is_watching+0x12/0xc0
[  167.014255][ T8951]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  167.015796][ T8951]  ? __copy_skb_header+0x2e8/0x5b0
[  167.017211][ T8951]  ? __skb_clone+0x570/0x760
[  167.018488][ T8951]  netlink_deliver_tap+0xa61/0xca0
[  167.019885][ T8951]  netlink_unicast+0x5e1/0x7f0
[  167.021204][ T8951]  ? __pfx_netlink_unicast+0x10/0x10
[  167.022668][ T8951]  ? __phys_addr_symbol+0x30/0x80
[  167.024113][ T8951]  ? __check_object_size+0x488/0x710
[  167.025617][ T8951]  netlink_sendmsg+0x8b8/0xd70
[  167.027002][ T8951]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.028527][ T8951]  ____sys_sendmsg+0x9ae/0xb40
[  167.029904][ T8951]  ? __pfx_____sys_sendmsg+0x10/0x10
[  167.031417][ T8951]  ? get_compat_msghdr+0x11b/0x170
[  167.032864][ T8951]  ___sys_sendmsg+0x135/0x1e0
[  167.034218][ T8951]  ? __pfx____sys_sendmsg+0x10/0x10
[  167.035745][ T8951]  ? __pfx_lock_release+0x10/0x10
[  167.037190][ T8951]  ? trace_lock_acquire+0x14e/0x1f0
[  167.038684][ T8951]  ? __fget_files+0x206/0x3a0
[  167.040092][ T8951]  __sys_sendmsg+0x16e/0x220
[  167.041434][ T8951]  ? __pfx___sys_sendmsg+0x10/0x10
[  167.042929][ T8951]  __do_fast_syscall_32+0x73/0x120
[  167.044406][ T8951]  do_fast_syscall_32+0x32/0x80
[  167.045836][ T8951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.047652][ T8951] RIP: 0023:0xf714e579
[  167.048831][ T8951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.054285][ T8951] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  167.056730][ T8951] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000380
[  167.059020][ T8951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  167.061305][ T8951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.063578][ T8951] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.065869][ T8951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.068213][ T8951]  </TASK>
[  167.069235][    C2] vkms_vblank_simulate: vblank timer overrun
[  167.073213][ T8953] netlink: 1148 bytes leftover after parsing attributes in process `syz.1.892'.
[  167.074489][ T8947] overlayfs: failed to resolve './file0': -2
[  167.162643][ T8963] »»»»»»7 speed is unknown, defaulting to 1000
[  167.277506][ T8969] »»»»»»7 speed is unknown, defaulting to 1000
[  167.500820][ T8987] FAULT_INJECTION: forcing a failure.
[  167.500820][ T8987] name failslab, interval 1, probability 0, space 0, times 0
[  167.505568][ T8987] CPU: 3 UID: 0 PID: 8987 Comm: syz.1.905 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  167.508624][ T8987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.511684][ T8987] Call Trace:
[  167.512629][ T8987]  <TASK>
[  167.513479][ T8987]  dump_stack_lvl+0x16c/0x1f0
[  167.514846][ T8987]  should_fail_ex+0x497/0x5b0
[  167.516231][ T8987]  ? fs_reclaim_acquire+0xae/0x150
[  167.517895][ T8987]  should_failslab+0xc2/0x120
[  167.519252][ T8987]  __kmalloc_noprof+0xce/0x4f0
[  167.521164][ T8987]  ? __pfx___mutex_lock+0x10/0x10
[  167.522941][ T8987]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  167.525065][ T8987]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  167.527397][ T8987]  genl_start+0x18e/0x960
[  167.529063][ T8987]  __netlink_dump_start+0x615/0x980
[  167.531077][ T8987]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[  167.533216][ T8987]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  167.535448][ T8987]  ? __pfx_genl_get_cmd+0x10/0x10
[  167.537002][ T8987]  ? __pfx_genl_start+0x10/0x10
[  167.537214][ T8989] veth0_to_bridge: entered promiscuous mode
[  167.538898][ T8987]  ? __pfx_genl_dumpit+0x10/0x10
[  167.542205][ T8988] veth0_to_bridge: left promiscuous mode
[  167.542412][ T8987]  ? __pfx_genl_done+0x10/0x10
[  167.546031][ T8987]  ? __radix_tree_lookup+0x21f/0x2c0
[  167.548012][ T8987]  genl_rcv_msg+0x470/0x800
[  167.549689][ T8987]  ? __pfx_genl_rcv_msg+0x10/0x10
[  167.551330][ T8987]  ? __pfx_devlink_nl_rate_get_dumpit+0x10/0x10
[  167.553757][ T8987]  netlink_rcv_skb+0x165/0x410
[  167.555635][ T8987]  ? __pfx_genl_rcv_msg+0x10/0x10
[  167.557640][ T8987]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  167.559722][ T8987]  ? down_read+0xc9/0x330
[  167.561453][ T8987]  ? __pfx_down_read+0x10/0x10
[  167.563449][ T8987]  ? netlink_deliver_tap+0x1ae/0xca0
[  167.565533][ T8987]  genl_rcv+0x28/0x40
[  167.567050][ T8987]  netlink_unicast+0x53c/0x7f0
[  167.568851][ T8987]  ? __pfx_netlink_unicast+0x10/0x10
[  167.570936][ T8987]  ? __phys_addr_symbol+0x30/0x80
[  167.572917][ T8987]  ? __check_object_size+0x488/0x710
[  167.575011][ T8987]  netlink_sendmsg+0x8b8/0xd70
[  167.576780][ T8987]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.578845][ T8987]  ____sys_sendmsg+0x9ae/0xb40
[  167.580766][ T8987]  ? __pfx_____sys_sendmsg+0x10/0x10
[  167.582580][ T8987]  ? get_compat_msghdr+0x11b/0x170
[  167.584345][ T8987]  ___sys_sendmsg+0x135/0x1e0
[  167.586150][ T8987]  ? __pfx____sys_sendmsg+0x10/0x10
[  167.587995][ T8987]  ? __pfx_lock_release+0x10/0x10
[  167.589804][ T8987]  ? trace_lock_acquire+0x14e/0x1f0
[  167.591481][ T8987]  ? __fget_files+0x206/0x3a0
[  167.593349][ T8987]  __sys_sendmsg+0x16e/0x220
[  167.595139][ T8987]  ? __pfx___sys_sendmsg+0x10/0x10
[  167.596992][ T8987]  __do_fast_syscall_32+0x73/0x120
[  167.598857][ T8987]  do_fast_syscall_32+0x32/0x80
[  167.600639][ T8987]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.602431][ T8987] RIP: 0023:0xf7f82579
[  167.604013][ T8987] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.610134][ T8987] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  167.613203][ T8987] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020004c40
[  167.616123][ T8987] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  167.619061][ T8987] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.621530][ T8987] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.624534][ T8987] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.627657][ T8987]  </TASK>
[  167.693089][ T9000] FAULT_INJECTION: forcing a failure.
[  167.693089][ T9000] name failslab, interval 1, probability 0, space 0, times 0
[  167.696837][ T9000] CPU: 0 UID: 0 PID: 9000 Comm: syz.0.910 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  167.700495][ T9000] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.703585][ T9000] Call Trace:
[  167.704556][ T9000]  <TASK>
[  167.705429][ T9000]  dump_stack_lvl+0x16c/0x1f0
[  167.706804][ T9000]  should_fail_ex+0x497/0x5b0
[  167.708237][ T9000]  ? fs_reclaim_acquire+0xae/0x150
[  167.709731][ T9000]  should_failslab+0xc2/0x120
[  167.711100][ T9000]  __kmalloc_node_noprof+0xd1/0x520
[  167.712572][ T9000]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  167.714154][ T9000]  __kvmalloc_node_noprof+0xad/0x1a0
[  167.715720][ T9000]  io_uring_setup+0x642/0x3230
[  167.717095][ T9000]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  167.718798][ T9000]  ? __pfx_io_uring_setup+0x10/0x10
[  167.720289][ T9000]  ? __fget_files+0x206/0x3a0
[  167.721894][ T9000]  ? ksys_write+0x1ba/0x250
[  167.723641][ T9000]  ? __pfx_ksys_write+0x10/0x10
[  167.725527][ T9000]  __ia32_sys_io_uring_setup+0x97/0x140
[  167.727635][ T9000]  __do_fast_syscall_32+0x73/0x120
[  167.729596][ T9000]  do_fast_syscall_32+0x32/0x80
[  167.731470][ T9000]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.733873][ T9000] RIP: 0023:0xf7fcf579
[  167.735459][ T9000] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.742668][ T9000] RSP: 002b:00000000f512650c EFLAGS: 00000206 ORIG_RAX: 00000000000001a9
[  167.745757][ T9000] RAX: ffffffffffffffda RBX: 00000000000047fd RCX: 0000000020000480
[  167.748748][ T9000] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  167.751759][ T9000] RBP: 0000000020000180 R08: 0000000000000000 R09: 0000000000000000
[  167.754752][ T9000] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.757539][ T9000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.759835][ T9000]  </TASK>
[  167.891106][ T9014] netlink: 'syz.1.915': attribute type 7 has an invalid length.
[  167.893828][ T9014] netlink: 140 bytes leftover after parsing attributes in process `syz.1.915'.
[  168.034222][ T9022] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  168.037584][ T9022] batman_adv: batadv0: Adding interface: ip6gretap1
[  168.039507][ T9022] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.057848][ T9022] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[  168.123177][ T9028] can0: slcan on ttyS3.
[  168.230273][ T9037] FAULT_INJECTION: forcing a failure.
[  168.230273][ T9037] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.234161][ T9037] CPU: 1 UID: 0 PID: 9037 Comm: syz.1.917 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  168.237232][ T9037] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.240410][ T9037] Call Trace:
[  168.241382][ T9037]  <TASK>
[  168.242250][ T9037]  dump_stack_lvl+0x16c/0x1f0
[  168.243614][ T9037]  should_fail_ex+0x497/0x5b0
[  168.244981][ T9037]  _copy_from_user+0x2e/0xd0
[  168.246330][ T9037]  get_compat_msghdr+0xa8/0x170
[  168.247748][ T9037]  ? __pfx_get_compat_msghdr+0x10/0x10
[  168.249329][ T9037]  ___sys_sendmsg+0x1b0/0x1e0
[  168.250707][ T9037]  ? __pfx____sys_sendmsg+0x10/0x10
[  168.252223][ T9037]  ? __pfx_lock_release+0x10/0x10
[  168.253666][ T9037]  ? trace_lock_acquire+0x14e/0x1f0
[  168.255174][ T9037]  ? __fget_files+0x206/0x3a0
[  168.256529][ T9037]  __sys_sendmsg+0x16e/0x220
[  168.257864][ T9037]  ? __pfx___sys_sendmsg+0x10/0x10
[  168.259345][ T9037]  __do_fast_syscall_32+0x73/0x120
[  168.260833][ T9037]  do_fast_syscall_32+0x32/0x80
[  168.262207][ T9037]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  168.264074][ T9037] RIP: 0023:0xf7f82579
[  168.265275][ T9037] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  168.270927][ T9037] RSP: 002b:00000000f509455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  168.273437][ T9037] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000240
[  168.275755][ T9037] RDX: 0000000000000c40 RSI: 0000000000000000 RDI: 0000000000000000
[  168.278026][ T9037] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  168.280356][ T9037] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  168.282619][ T9037] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  168.284952][ T9037]  </TASK>
[  168.902851][ T9049] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  168.944523][ T9052] netlink: 10 bytes leftover after parsing attributes in process `syz.1.926'.
[  169.012773][ T9027] can0 (unregistered): slcan off ttyS3.
[  169.026334][ T9060] FAULT_INJECTION: forcing a failure.
[  169.026334][ T9060] name failslab, interval 1, probability 0, space 0, times 0
[  169.029939][ T9060] CPU: 2 UID: 0 PID: 9060 Comm: syz.1.928 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  169.033037][ T9060] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.036179][ T9060] Call Trace:
[  169.037143][ T9060]  <TASK>
[  169.038019][ T9060]  dump_stack_lvl+0x16c/0x1f0
[  169.039393][ T9060]  should_fail_ex+0x497/0x5b0
[  169.040756][ T9060]  ? fs_reclaim_acquire+0xae/0x150
[  169.042231][ T9060]  should_failslab+0xc2/0x120
[  169.043602][ T9060]  __kmalloc_cache_noprof+0x68/0x420
[  169.045126][ T9060]  kvm_arch_vcpu_create+0x30c/0xae0
[  169.046653][ T9060]  kvm_vm_ioctl+0xf93/0x3df0
[  169.048001][ T9060]  ? stack_trace_save+0x95/0xd0
[  169.049547][ T9060]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  169.051010][ T9060]  ? __pfx_mark_lock+0x10/0x10
[  169.052343][ T9060]  ? stack_depot_save_flags+0x28/0x9e0
[  169.053854][ T9060]  ? kasan_save_stack+0x42/0x60
[  169.055256][ T9060]  ? kasan_save_stack+0x33/0x60
[  169.056677][ T9060]  ? kasan_save_track+0x14/0x30
[  169.058213][ T9060]  ? kasan_save_free_info+0x3b/0x60
[  169.059741][ T9060]  ? __kasan_slab_free+0x51/0x70
[  169.061162][ T9060]  ? kfree+0x14f/0x4b0
[  169.062336][ T9060]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  169.063957][ T9060]  ? security_file_ioctl_compat+0x9b/0x240
[  169.065670][ T9060]  ? __do_compat_sys_ioctl+0x4e/0x2c0
[  169.067229][ T9060]  ? __do_fast_syscall_32+0x73/0x120
[  169.069211][ T9060]  ? do_fast_syscall_32+0x32/0x80
[  169.071146][ T9060]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.073027][ T9060]  ? kvm_arch_vm_compat_ioctl+0x2d1/0x480
[  169.074663][ T9060]  ? hlock_class+0x4e/0x130
[  169.076041][ T9060]  ? mark_lock+0xb5/0xc60
[  169.077296][ T9060]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  169.079051][ T9060]  ? __pfx_mark_lock+0x10/0x10
[  169.080441][ T9060]  ? find_held_lock+0x2d/0x110
[  169.081827][ T9060]  ? tomoyo_path_number_perm+0x298/0x5b0
[  169.083443][ T9060]  ? __pfx_lock_release+0x10/0x10
[  169.084897][ T9060]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  169.086573][ T9060]  ? tomoyo_path_number_perm+0x190/0x5b0
[  169.088367][ T9060]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  169.090748][ T9060]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  169.092517][ T9060]  ? do_vfs_ioctl+0x513/0x1950
[  169.093934][ T9060]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  169.095440][ T9060]  kvm_vm_compat_ioctl+0x399/0x440
[  169.096926][ T9060]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  169.098519][ T9060]  ? __pfx_lock_release+0x10/0x10
[  169.099976][ T9060]  ? trace_lock_acquire+0x14e/0x1f0
[  169.101465][ T9060]  ? __fget_files+0x206/0x3a0
[  169.102828][ T9060]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  169.104423][ T9060]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  169.105961][ T9060]  __do_fast_syscall_32+0x73/0x120
[  169.107449][ T9060]  do_fast_syscall_32+0x32/0x80
[  169.109070][ T9060]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.110899][ T9060] RIP: 0023:0xf7f82579
[  169.112075][ T9060] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.117559][ T9060] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  169.119938][ T9060] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000ae41
[  169.122172][ T9060] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  169.124421][ T9060] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.126698][ T9060] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.129018][ T9060] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.131297][ T9060]  </TASK>
[  169.132299][    C2] vkms_vblank_simulate: vblank timer overrun
[  169.206916][ T9070] FAULT_INJECTION: forcing a failure.
[  169.206916][ T9070] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.211046][ T9070] CPU: 0 UID: 0 PID: 9070 Comm: syz.0.931 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  169.215210][ T9070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.217568][ T9072] rdma_rxe: rxe_newlink: failed to add lo
[  169.218767][ T9070] Call Trace:
[  169.218774][ T9070]  <TASK>
[  169.222429][ T9070]  dump_stack_lvl+0x16c/0x1f0
[  169.222911][ T9072] netlink: 'syz.3.932': attribute type 1 has an invalid length.
[  169.223852][ T9070]  should_fail_ex+0x497/0x5b0
[  169.226074][ T9072] netlink: 'syz.3.932': attribute type 3 has an invalid length.
[  169.227694][ T9070]  _copy_from_user+0x2e/0xd0
[  169.230677][ T9072] netlink: 224 bytes leftover after parsing attributes in process `syz.3.932'.
[  169.232556][ T9070]  get_compat_msghdr+0xa8/0x170
[  169.232581][ T9070]  ? __pfx_get_compat_msghdr+0x10/0x10
[  169.232611][ T9070]  ___sys_sendmsg+0x1b0/0x1e0
[  169.239985][ T9070]  ? __pfx____sys_sendmsg+0x10/0x10
[  169.241792][ T9070]  ? __pfx_lock_release+0x10/0x10
[  169.243346][ T9070]  ? trace_lock_acquire+0x14e/0x1f0
[  169.244896][ T9070]  ? __fget_files+0x206/0x3a0
[  169.246368][ T9070]  __sys_sendmsg+0x16e/0x220
[  169.247800][ T9070]  ? __pfx___sys_sendmsg+0x10/0x10
[  169.249369][ T9070]  __do_fast_syscall_32+0x73/0x120
[  169.251149][ T9070]  do_fast_syscall_32+0x32/0x80
[  169.253049][ T9070]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.255610][ T9070] RIP: 0023:0xf7fcf579
[  169.257082][ T9070] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.262727][ T9070] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  169.265243][ T9070] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000200001c0
[  169.267650][ T9070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  169.270008][ T9070] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.273062][ T9070] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.276217][ T9070] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.278769][ T9070]  </TASK>
[  169.287560][ T9072] »»»»»»7: renamed from lo (while UP)
[  169.411511][ T9085] netlink: 4 bytes leftover after parsing attributes in process `syz.0.935'.
[  169.448451][ T9083] netlink: 'syz.3.936': attribute type 10 has an invalid length.
[  169.451376][ T9083] netlink: 1268 bytes leftover after parsing attributes in process `syz.3.936'.
[  169.457579][ T9083] openvswitch: netlink: Message has 7 unknown bytes.
[  169.617662][ T9091] »»»»»»7 speed is unknown, defaulting to 1000
[  169.809086][ T9102] »»»»»»7 speed is unknown, defaulting to 1000
[  170.069261][ T9110] FAULT_INJECTION: forcing a failure.
[  170.069261][ T9110] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.077711][ T9110] CPU: 2 UID: 0 PID: 9110 Comm: syz.3.943 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  170.080769][ T9110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.083836][ T9110] Call Trace:
[  170.084803][ T9110]  <TASK>
[  170.085673][ T9110]  dump_stack_lvl+0x16c/0x1f0
[  170.087069][ T9110]  should_fail_ex+0x497/0x5b0
[  170.088428][ T9110]  _copy_from_user+0x2e/0xd0
[  170.089787][ T9110]  snd_rawmidi_kernel_write1+0x35e/0x860
[  170.091865][ T9110]  ? _raw_spin_unlock_irq+0x23/0x50
[  170.093873][ T9110]  snd_rawmidi_write+0x267/0xbe0
[  170.095820][ T9110]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  170.097815][ T9110]  ? __pfx_default_wake_function+0x10/0x10
[  170.099502][ T9110]  ? bpf_lsm_file_permission+0x9/0x10
[  170.101056][ T9110]  ? security_file_permission+0x71/0x210
[  170.102671][ T9110]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  170.104255][ T9110]  vfs_writev+0x6da/0xdd0
[  170.105521][ T9110]  ? find_held_lock+0x2d/0x110
[  170.106923][ T9110]  ? __pfx_vfs_writev+0x10/0x10
[  170.108331][ T9110]  ? find_held_lock+0x2d/0x110
[  170.109732][ T9110]  ? __pfx_lock_release+0x10/0x10
[  170.111196][ T9110]  ? trace_lock_acquire+0x14e/0x1f0
[  170.112742][ T9110]  ? __fget_files+0x206/0x3a0
[  170.114110][ T9110]  ? do_writev+0x297/0x340
[  170.115409][ T9110]  do_writev+0x297/0x340
[  170.116636][ T9110]  ? __pfx_do_writev+0x10/0x10
[  170.118032][ T9110]  __do_fast_syscall_32+0x73/0x120
[  170.119516][ T9110]  do_fast_syscall_32+0x32/0x80
[  170.120928][ T9110]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  170.122757][ T9110] RIP: 0023:0xf714e579
[  170.123945][ T9110] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  170.129477][ T9110] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  170.131864][ T9110] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000840
[  170.134102][ T9110] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  170.136373][ T9110] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  170.138624][ T9110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  170.140886][ T9110] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  170.143441][ T9110]  </TASK>
[  170.144417][    C2] vkms_vblank_simulate: vblank timer overrun
[  170.147854][   T39] kauditd_printk_skb: 71 callbacks suppressed
[  170.147862][   T39] audit: type=1326 audit(1737169060.627:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.156885][   T39] audit: type=1326 audit(1737169060.627:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.164228][   T39] audit: type=1326 audit(1737169060.627:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.169859][ T9079] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  170.172241][   T39] audit: type=1326 audit(1737169060.627:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.183092][   T39] audit: type=1326 audit(1737169060.627:1166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.189350][   T39] audit: type=1326 audit(1737169060.627:1167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.195539][   T39] audit: type=1326 audit(1737169060.627:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.202668][   T39] audit: type=1326 audit(1737169060.627:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.210747][   T39] audit: type=1326 audit(1737169060.627:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.218941][   T39] audit: type=1326 audit(1737169060.627:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9075 comm="syz.1.933" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7fc00000
[  170.822776][ T9130] »»»»»»7 speed is unknown, defaulting to 1000
[  171.202163][ T9144] netlink: 36 bytes leftover after parsing attributes in process `syz.3.952'.
[  171.452835][ T9159] FAULT_INJECTION: forcing a failure.
[  171.452835][ T9159] name failslab, interval 1, probability 0, space 0, times 0
[  171.461996][ T9159] CPU: 2 UID: 0 PID: 9159 Comm: syz.1.955 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  171.465040][ T9159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  171.468089][ T9159] Call Trace:
[  171.469053][ T9159]  <TASK>
[  171.469921][ T9159]  dump_stack_lvl+0x16c/0x1f0
[  171.471282][ T9159]  should_fail_ex+0x497/0x5b0
[  171.472632][ T9159]  ? fs_reclaim_acquire+0xae/0x150
[  171.474097][ T9159]  should_failslab+0xc2/0x120
[  171.475483][ T9159]  __kmalloc_noprof+0xce/0x4f0
[  171.476870][ T9159]  ? drm_atomic_state_init+0x17e/0x320
[  171.478438][ T9159]  drm_atomic_state_init+0x17e/0x320
[  171.479959][ T9159]  ? __kasan_kmalloc+0xaa/0xb0
[  171.481336][ T9159]  drm_atomic_state_alloc+0xd3/0x120
[  171.482860][ T9159]  drm_mode_atomic_ioctl+0x395/0x2520
[  171.484402][ T9159]  ? __pfx___lock_acquire+0x10/0x10
[  171.485888][ T9159]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  171.487595][ T9159]  ? do_raw_spin_unlock+0x172/0x230
[  171.489084][ T9159]  drm_ioctl_kernel+0x1e6/0x3d0
[  171.490493][ T9159]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  171.492165][ T9159]  ? __might_fault+0x41/0x190
[  171.493555][ T9159]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  171.494998][ T9159]  ? __might_fault+0xe3/0x190
[  171.496360][ T9159]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  171.498035][ T9159]  drm_ioctl+0x57e/0xba0
[  171.499270][ T9159]  ? __pfx_drm_ioctl+0x10/0x10
[  171.500664][ T9159]  drm_compat_ioctl+0x327/0x460
[  171.502074][ T9159]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  171.503621][ T9159]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  171.505133][ T9159]  __do_fast_syscall_32+0x73/0x120
[  171.506633][ T9159]  do_fast_syscall_32+0x32/0x80
[  171.508047][ T9159]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.509872][ T9159] RIP: 0023:0xf7f82579
[  171.511049][ T9159] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.516520][ T9159] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  171.518900][ T9159] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c03864bc
[  171.521151][ T9159] RDX: 0000000020000380 RSI: 0000000000000000 RDI: 0000000000000000
[  171.523452][ T9159] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.525717][ T9159] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  171.528002][ T9159] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.530280][ T9159]  </TASK>
[  171.531268][    C2] vkms_vblank_simulate: vblank timer overrun
[  171.728962][ T9174] FAULT_INJECTION: forcing a failure.
[  171.728962][ T9174] name failslab, interval 1, probability 0, space 0, times 0
[  171.734135][ T9174] CPU: 0 UID: 0 PID: 9174 Comm: syz.0.960 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  171.738049][ T9174] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  171.742020][ T9174] Call Trace:
[  171.743273][ T9174]  <TASK>
[  171.744383][ T9174]  dump_stack_lvl+0x16c/0x1f0
[  171.746138][ T9174]  should_fail_ex+0x497/0x5b0
[  171.747919][ T9174]  should_failslab+0xc2/0x120
[  171.749709][ T9174]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  171.751718][ T9174]  ? skb_clone+0x190/0x3f0
[  171.753390][ T9174]  skb_clone+0x190/0x3f0
[  171.754987][ T9174]  netlink_deliver_tap+0xafd/0xca0
[  171.756913][ T9174]  netlink_unicast+0x5e1/0x7f0
[  171.758709][ T9174]  ? __pfx_netlink_unicast+0x10/0x10
[  171.760710][ T9174]  ? __phys_addr_symbol+0x30/0x80
[  171.762587][ T9174]  ? __check_object_size+0x488/0x710
[  171.764585][ T9174]  netlink_sendmsg+0x8b8/0xd70
[  171.766397][ T9174]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.768414][ T9174]  ____sys_sendmsg+0x9ae/0xb40
[  171.770238][ T9174]  ? __pfx_____sys_sendmsg+0x10/0x10
[  171.772199][ T9174]  ? get_compat_msghdr+0x11b/0x170
[  171.774094][ T9174]  ___sys_sendmsg+0x135/0x1e0
[  171.775880][ T9174]  ? __pfx____sys_sendmsg+0x10/0x10
[  171.777829][ T9174]  ? __pfx_lock_release+0x10/0x10
[  171.779699][ T9174]  ? trace_lock_acquire+0x14e/0x1f0
[  171.781637][ T9174]  ? bpf_send_signal_common+0x3b0/0x520
[  171.783620][ T9174]  ? __fget_files+0x206/0x3a0
[  171.785392][ T9174]  __sys_sendmsg+0x16e/0x220
[  171.787162][ T9174]  ? __pfx___sys_sendmsg+0x10/0x10
[  171.789090][ T9174]  ? rcu_is_watching+0x12/0xc0
[  171.790885][ T9174]  __do_fast_syscall_32+0x73/0x120
[  171.792814][ T9174]  do_fast_syscall_32+0x32/0x80
[  171.794668][ T9174]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.797006][ T9174] RIP: 0023:0xf7fcf579
[  171.798546][ T9174] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.805659][ T9174] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  171.808752][ T9174] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180
[  171.811705][ T9174] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  171.814628][ T9174] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.817563][ T9174] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  171.820482][ T9174] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.823417][ T9174]  </TASK>
[  172.016845][ T9186] program syz.3.965 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  172.118811][ T9192] FAULT_INJECTION: forcing a failure.
[  172.118811][ T9192] name failslab, interval 1, probability 0, space 0, times 0
[  172.132045][ T9192] CPU: 3 UID: 0 PID: 9192 Comm: syz.3.966 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  172.134999][ T9192] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.137992][ T9192] Call Trace:
[  172.138961][ T9192]  <TASK>
[  172.139793][ T9192]  dump_stack_lvl+0x16c/0x1f0
[  172.141113][ T9192]  should_fail_ex+0x497/0x5b0
[  172.142424][ T9192]  ? fs_reclaim_acquire+0xae/0x150
[  172.143820][ T9192]  should_failslab+0xc2/0x120
[  172.145127][ T9192]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  172.146594][ T9192]  ? vma_merge_new_range+0x3f0/0xb70
[  172.148082][ T9192]  ? vm_area_alloc+0x1f/0x1c0
[  172.149442][ T9192]  vm_area_alloc+0x1f/0x1c0
[  172.150812][ T9192]  __mmap_region+0x1091/0x2760
[  172.152199][ T9192]  ? __pfx___mmap_region+0x10/0x10
[  172.153635][ T9192]  ? hlock_class+0x4e/0x130
[  172.154939][ T9192]  ? mark_lock+0xb5/0xc60
[  172.156188][ T9192]  ? hlock_class+0x4e/0x130
[  172.157471][ T9192]  ? __lock_acquire+0xcc5/0x3c40
[  172.158888][ T9192]  ? __pfx___lock_acquire+0x10/0x10
[  172.160392][ T9192]  ? mm_get_unmapped_area+0x95/0xe0
[  172.161857][ T9192]  ? shmem_get_unmapped_area+0x183/0xa20
[  172.163436][ T9192]  ? cap_mmap_addr+0x53/0x320
[  172.164762][ T9192]  mmap_region+0x127/0x320
[  172.166011][ T9192]  do_mmap+0xa09/0x1050
[  172.167236][ T9192]  vm_mmap_pgoff+0x1ba/0x360
[  172.168545][ T9192]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  172.169979][ T9192]  ? ksys_write+0x1ba/0x250
[  172.171240][ T9192]  ksys_mmap_pgoff+0x7d/0x5c0
[  172.172563][ T9192]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  172.174053][ T9192]  __do_fast_syscall_32+0x73/0x120
[  172.175456][ T9192]  do_fast_syscall_32+0x32/0x80
[  172.176759][ T9192]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  172.178504][ T9192] RIP: 0023:0xf714e579
[  172.179657][ T9192] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  172.185147][ T9192] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  172.187484][ T9192] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[  172.189722][ T9192] RDX: 0000000000000002 RSI: 0000000000008031 RDI: 00000000ffffffff
[  172.191928][ T9192] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  172.194137][ T9192] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  172.196362][ T9192] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  172.198524][ T9192]  </TASK>
[  173.509065][ T9216] netlink: 4 bytes leftover after parsing attributes in process `syz.2.972'.
[  173.548906][ T9221] FAULT_INJECTION: forcing a failure.
[  173.548906][ T9221] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.554037][ T9221] CPU: 3 UID: 0 PID: 9221 Comm: syz.1.973 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  173.557075][ T9221] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.560576][ T9221] Call Trace:
[  173.561971][ T9221]  <TASK>
[  173.562885][ T9221]  dump_stack_lvl+0x16c/0x1f0
[  173.564249][ T9221]  should_fail_ex+0x497/0x5b0
[  173.565663][ T9221]  strncpy_from_user+0x3b/0x2d0
[  173.567077][ T9221]  getname_flags.part.0+0x8f/0x550
[  173.568548][ T9221]  getname_flags+0x93/0xf0
[  173.569894][ T9221]  __ia32_sys_mknod+0x72/0xb0
[  173.571274][ T9221]  __do_fast_syscall_32+0x73/0x120
[  173.572763][ T9221]  do_fast_syscall_32+0x32/0x80
[  173.574209][ T9221]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.576214][ T9221] RIP: 0023:0xf7f82579
[  173.577387][ T9221] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.584384][ T9221] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 000000000000000e
[  173.587090][ T9221] RAX: ffffffffffffffda RBX: 00000000200002c0 RCX: 0000000000000000
[  173.589391][ T9221] RDX: 0000000000000702 RSI: 0000000000000000 RDI: 0000000000000000
[  173.591645][ T9221] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  173.593943][ T9221] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  173.596230][ T9221] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.598472][ T9221]  </TASK>
[  173.631248][ T9228] »»»»»»7 speed is unknown, defaulting to 1000
[  173.654520][ T9231] overlayfs: failed to clone upperpath
[  173.839681][ T9241] netlink: 56 bytes leftover after parsing attributes in process `syz.2.978'.
[  174.044555][ T9246] FAULT_INJECTION: forcing a failure.
[  174.044555][ T9246] name failslab, interval 1, probability 0, space 0, times 0
[  174.050105][ T9246] CPU: 1 UID: 0 PID: 9246 Comm: syz.0.980 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  174.054039][ T9246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.057995][ T9246] Call Trace:
[  174.059267][ T9246]  <TASK>
[  174.060383][ T9246]  dump_stack_lvl+0x16c/0x1f0
[  174.062176][ T9246]  should_fail_ex+0x497/0x5b0
[  174.063954][ T9246]  ? fs_reclaim_acquire+0xae/0x150
[  174.065882][ T9246]  should_failslab+0xc2/0x120
[  174.067665][ T9246]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  174.069674][ T9246]  ? preempt_schedule_thunk+0x1a/0x30
[  174.071683][ T9246]  ? alloc_empty_file+0x73/0x1e0
[  174.073550][ T9246]  alloc_empty_file+0x73/0x1e0
[  174.075354][ T9246]  alloc_file_pseudo+0x13d/0x200
[  174.077203][ T9246]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  174.079235][ T9246]  ? alloc_fd+0x41f/0x760
[  174.080860][ T9246]  sock_alloc_file+0x50/0x1d0
[  174.082616][ T9246]  __sys_socket+0x1c2/0x260
[  174.084330][ T9246]  ? __pfx___sys_socket+0x10/0x10
[  174.086224][ T9246]  ? ksys_write+0x1ba/0x250
[  174.087944][ T9246]  __ia32_sys_socket+0x72/0xb0
[  174.089742][ T9246]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  174.092181][ T9246]  __do_fast_syscall_32+0x73/0x120
[  174.093956][ T9246]  do_fast_syscall_32+0x32/0x80
[  174.095746][ T9246]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  174.098098][ T9246] RIP: 0023:0xf7fcf579
[  174.099627][ T9246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  174.106750][ T9246] RSP: 002b:00000000f50e455c EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[  174.109906][ T9246] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000000003
[  174.112833][ T9246] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  174.115799][ T9246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  174.118712][ T9246] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  174.121636][ T9246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  174.124571][ T9246]  </TASK>
[  174.375140][ T9251] syz_tun: entered allmulticast mode
[  174.379237][ T9250] syz_tun: left allmulticast mode
[  174.456463][ T9256] FAULT_INJECTION: forcing a failure.
[  174.456463][ T9256] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  174.461729][ T9256] CPU: 2 UID: 0 PID: 9256 Comm: syz.1.984 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  174.465935][ T9256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.470240][ T9256] Call Trace:
[  174.471646][ T9256]  <TASK>
[  174.472850][ T9256]  dump_stack_lvl+0x16c/0x1f0
[  174.474773][ T9256]  should_fail_ex+0x497/0x5b0
[  174.476684][ T9256]  _copy_to_user+0x32/0xd0
[  174.478481][ T9256]  simple_read_from_buffer+0xd0/0x160
[  174.480633][ T9256]  proc_fail_nth_read+0x198/0x270
[  174.482569][ T9256]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  174.484705][ T9256]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  174.486916][ T9256]  vfs_read+0x1df/0xbe0
[  174.488527][ T9256]  ? __fget_files+0x1fc/0x3a0
[  174.490391][ T9256]  ? __pfx___mutex_lock+0x10/0x10
[  174.492351][ T9256]  ? __pfx_vfs_read+0x10/0x10
[  174.494315][ T9256]  ? __fget_files+0x206/0x3a0
[  174.496225][ T9256]  ksys_read+0x12b/0x250
[  174.497926][ T9256]  ? __pfx_ksys_read+0x10/0x10
[  174.499854][ T9256]  __do_fast_syscall_32+0x73/0x120
[  174.501918][ T9256]  do_fast_syscall_32+0x32/0x80
[  174.503800][ T9256]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  174.505890][ T9256] RIP: 0023:0xf7f82579
[  174.507044][ T9256] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  174.512241][ T9256] RSP: 002b:00000000f50d6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  174.514597][ T9256] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50d6620
[  174.516793][ T9256] RDX: 000000000000000f RSI: 00000000f7413ff4 RDI: 0000000000000000
[  174.518972][ T9256] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  174.521097][ T9256] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  174.523368][ T9256] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  174.525556][ T9256]  </TASK>
[  174.526452][    C2] vkms_vblank_simulate: vblank timer overrun
[  174.683134][ T9263] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  174.685564][ T9263] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  174.688568][ T9263] vhci_hcd vhci_hcd.0: Device attached
[  175.248088][ T5987] vhci_hcd: vhci_device speed not set
[  175.321868][ T5987] usb 43-1: new full-speed USB device number 5 using vhci_hcd
[  175.700318][ T9277] FAULT_INJECTION: forcing a failure.
[  175.700318][ T9277] name failslab, interval 1, probability 0, space 0, times 0
[  175.706855][ T9277] CPU: 3 UID: 0 PID: 9277 Comm: syz.0.989 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  175.711000][ T9277] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.715109][ T9277] Call Trace:
[  175.716394][ T9277]  <TASK>
[  175.717576][ T9277]  dump_stack_lvl+0x16c/0x1f0
[  175.719425][ T9277]  should_fail_ex+0x497/0x5b0
[  175.721278][ T9277]  ? fs_reclaim_acquire+0xae/0x150
[  175.723293][ T9277]  should_failslab+0xc2/0x120
[  175.725169][ T9277]  __kmalloc_noprof+0xce/0x4f0
[  175.727031][ T9277]  ? tomoyo_encode2+0x100/0x3e0
[  175.728947][ T9277]  tomoyo_encode2+0x100/0x3e0
[  175.730823][ T9277]  tomoyo_realpath_from_path+0x1a7/0x710
[  175.733050][ T9277]  ? tomoyo_path_number_perm+0x235/0x5b0
[  175.735266][ T9277]  tomoyo_path_number_perm+0x248/0x5b0
[  175.737386][ T9277]  ? tomoyo_path_number_perm+0x235/0x5b0
[  175.739575][ T9277]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  175.741942][ T9277]  ? __pfx_lock_release+0x10/0x10
[  175.743949][ T9277]  ? trace_lock_acquire+0x14e/0x1f0
[  175.746048][ T9277]  ? lock_acquire+0x2f/0xb0
[  175.747824][ T9277]  ? __fget_files+0x40/0x3a0
[  175.749639][ T9277]  ? __fget_files+0x206/0x3a0
[  175.751487][ T9277]  security_file_ioctl_compat+0x9b/0x240
[  175.753702][ T9277]  __do_compat_sys_ioctl+0x4e/0x2c0
[  175.755788][ T9277]  __do_fast_syscall_32+0x73/0x120
[  175.757828][ T9277]  do_fast_syscall_32+0x32/0x80
[  175.759730][ T9277]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  175.762061][ T9277] RIP: 0023:0xf7fcf579
[  175.763469][ T9277] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  175.769388][ T9277] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  175.772175][ T9277] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa03
[  175.774559][ T9277] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  175.776718][ T9277] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  175.778943][ T9277] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  175.781814][ T9277] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  175.784964][ T9277]  </TASK>
[  175.790028][ T9277] ERROR: Out of memory at tomoyo_realpath_from_path.
[  175.820182][ T9265] vhci_hcd: connection reset by peer
[  175.822687][ T1132] vhci_hcd: stop threads
[  175.824408][ T1132] vhci_hcd: release socket
[  175.826848][ T1132] vhci_hcd: disconnect device
[  175.848846][ T9281] netlink: 4 bytes leftover after parsing attributes in process `syz.3.992'.
[  176.095744][ T9298] : renamed from ip_vti0
[  176.097581][ T9296] netlink: 4 bytes leftover after parsing attributes in process `syz.3.992'.
[  176.359886][ T9301] input: syz1 as /devices/virtual/input/input18
[  177.103679][ T9313] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  177.105623][ T9313] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  177.107928][ T9313] vhci_hcd vhci_hcd.0: Device attached
[  177.393323][ T9307] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  177.412031][    T8] vhci_hcd: vhci_device speed not set
[  177.471745][    T8] usb 37-1: new full-speed USB device number 7 using vhci_hcd
[  177.713401][ T9328] netlink: 'syz.2.1005': attribute type 9 has an invalid length.
[  177.950524][ T9314] vhci_hcd: connection reset by peer
[  177.954798][ T1234] vhci_hcd: stop threads
[  177.956124][ T1234] vhci_hcd: release socket
[  177.957572][ T1234] vhci_hcd: disconnect device
[  178.147925][ T9338] trusted_key: encrypted_key: insufficient parameters specified
[  178.187159][ T9341] FAULT_INJECTION: forcing a failure.
[  178.187159][ T9341] name failslab, interval 1, probability 0, space 0, times 0
[  178.190665][ T9341] CPU: 2 UID: 0 PID: 9341 Comm: syz.0.1009 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  178.193574][ T9341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.196534][ T9341] Call Trace:
[  178.197491][ T9341]  <TASK>
[  178.198329][ T9341]  dump_stack_lvl+0x16c/0x1f0
[  178.199657][ T9341]  should_fail_ex+0x497/0x5b0
[  178.200978][ T9341]  ? fs_reclaim_acquire+0xae/0x150
[  178.202419][ T9341]  should_failslab+0xc2/0x120
[  178.203715][ T9341]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  178.205395][ T9341]  ? __alloc_skb+0x2b3/0x380
[  178.206743][ T9341]  __alloc_skb+0x2b3/0x380
[  178.208037][ T9341]  ? __pfx___alloc_skb+0x10/0x10
[  178.209488][ T9341]  netlink_ack+0x164/0xb20
[  178.210790][ T9341]  netlink_rcv_skb+0x327/0x410
[  178.212159][ T9341]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  178.213713][ T9341]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  178.215226][ T9341]  ? __pfx_aa_get_newest_label+0x10/0x10
[  178.216849][ T9341]  ? bpf_lsm_capable+0x9/0x10
[  178.218209][ T9341]  ? security_capable+0x7e/0x260
[  178.219670][ T9341]  ? ns_capable+0xd7/0x110
[  178.220955][ T9341]  nfnetlink_rcv+0x1b4/0x430
[  178.222286][ T9341]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  178.223759][ T9341]  ? netlink_deliver_tap+0x1ae/0xca0
[  178.225280][ T9341]  netlink_unicast+0x53c/0x7f0
[  178.226643][ T9341]  ? __pfx_netlink_unicast+0x10/0x10
[  178.228149][ T9341]  ? __phys_addr_symbol+0x30/0x80
[  178.229590][ T9341]  ? __check_object_size+0x488/0x710
[  178.231107][ T9341]  netlink_sendmsg+0x8b8/0xd70
[  178.232506][ T9341]  ? __pfx_netlink_sendmsg+0x10/0x10
[  178.234051][ T9341]  ____sys_sendmsg+0x9ae/0xb40
[  178.235450][ T9341]  ? __pfx_____sys_sendmsg+0x10/0x10
[  178.236966][ T9341]  ? get_compat_msghdr+0x11b/0x170
[  178.238434][ T9341]  ___sys_sendmsg+0x135/0x1e0
[  178.239811][ T9341]  ? __pfx____sys_sendmsg+0x10/0x10
[  178.241310][ T9341]  ? __pfx_lock_release+0x10/0x10
[  178.242750][ T9341]  ? trace_lock_acquire+0x14e/0x1f0
[  178.244236][ T9341]  ? __fget_files+0x206/0x3a0
[  178.245621][ T9341]  __sys_sendmsg+0x16e/0x220
[  178.246971][ T9341]  ? __pfx___sys_sendmsg+0x10/0x10
[  178.248452][ T9341]  __do_fast_syscall_32+0x73/0x120
[  178.249924][ T9341]  do_fast_syscall_32+0x32/0x80
[  178.251256][ T9341]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.253117][ T9341] RIP: 0023:0xf7fcf579
[  178.254308][ T9341] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.259831][ T9341] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  178.262219][ T9341] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0
[  178.264485][ T9341] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000000
[  178.266761][ T9341] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.269025][ T9341] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.271308][ T9341] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.273567][ T9341]  </TASK>
[  178.623909][ T9354] misc userio: Invalid payload size
[  178.629118][ T9354] misc userio: Invalid payload size
[  179.303614][ T9374] »»»»»»7 speed is unknown, defaulting to 1000
[  179.362277][ T9376] netlink: 'syz.1.1017': attribute type 9 has an invalid length.
[  179.769105][ T9383] netlink: 'syz.3.1021': attribute type 21 has an invalid length.
[  179.773862][ T9383] netlink: 'syz.3.1021': attribute type 1 has an invalid length.
[  180.130264][ T9388] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  180.192552][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  180.192614][   T39] audit: type=1326 audit(1737169070.677:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9393 comm="syz.0.1024" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fcf579 code=0x0
[  180.230549][ T9401] cgroup: Name too long
[  180.237602][ T9403] »»»»»»7 speed is unknown, defaulting to 1000
[  180.323788][ T9407] futex_wake_op: syz.1.1028 tries to shift op by 144; fix this program
[  180.337734][   T39] audit: type=1326 audit(1737169070.807:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9404 comm="syz.1.1028" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f82579 code=0x0
[  180.444465][ T5987] vhci_hcd: vhci_device speed not set
[  180.451312][ T9418] »»»»»»7 speed is unknown, defaulting to 1000
[  181.114246][ T9425] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  181.149987][ T9429] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.300618][ T9429] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.315135][ T9429] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  181.340944][ T9429] hsr0: left promiscuous mode
[  181.573779][ T9429] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  181.576425][ T9429] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  181.579043][ T9429] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  181.581778][ T9429] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  181.615590][ T9430] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1034'.
[  181.681731][ T1320] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  181.812925][ T1320] usb 6-1: device descriptor read/64, error -71
[  182.138360][ T9456] overlayfs: failed to resolve './file0': -2
[  182.231748][ T1320] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  182.361747][ T1320] usb 6-1: device descriptor read/64, error -71
[  182.472130][ T1320] usb usb6-port1: attempt power cycle
[  182.486810][ T9467] Process accounting resumed
[  182.604235][    T8] vhci_hcd: vhci_device speed not set
[  182.714442][ T9479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1049'.
[  182.818638][ T9479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1049'.
[  182.818771][ T1320] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  182.846507][ T1320] usb 6-1: device descriptor read/8, error -71
[  182.907879][ T9486] overlayfs: failed to resolve './file0': -2
[  183.101747][ T1320] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  183.133408][ T1320] usb 6-1: device descriptor read/8, error -71
[  183.242256][ T1320] usb usb6-port1: unable to enumerate USB device
[  184.268380][ T9511] overlayfs: workdir and upperdir must be separate subtrees
[  184.307032][ T9514] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1064'.
[  184.312728][   T39] audit: type=1326 audit(1737169074.797:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9513 comm="syz.1.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7ffc0000
[  184.318960][   T39] audit: type=1326 audit(1737169074.797:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9513 comm="syz.1.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7ffc0000
[  184.322385][   T62] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  184.329262][   T39] audit: type=1326 audit(1737169074.797:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9513 comm="syz.1.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=39 compat=1 ip=0xf7f82579 code=0x7ffc0000
[  184.336889][   T39] audit: type=1326 audit(1737169074.797:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9513 comm="syz.1.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7ffc0000
[  184.343536][   T39] audit: type=1326 audit(1737169074.797:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9513 comm="syz.1.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7ffc0000
[  184.349897][   T39] audit: type=1326 audit(1737169074.797:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9513 comm="syz.1.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f82579 code=0x7ffc0000
[  184.357244][   T39] audit: type=1326 audit(1737169074.797:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9513 comm="syz.1.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7ffc0000
[  184.365750][   T39] audit: type=1326 audit(1737169074.797:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9513 comm="syz.1.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82579 code=0x7ffc0000
[  184.451817][   T62] usb 5-1: device descriptor read/64, error -71
[  184.648361][ T9523] tmpfs: Bad value for 'mpol'
[  184.712117][   T62] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  184.842005][   T62] usb 5-1: device descriptor read/64, error -71
[  184.962228][   T62] usb usb5-port1: attempt power cycle
[  185.024684][ T9541] FAULT_INJECTION: forcing a failure.
[  185.024684][ T9541] name failslab, interval 1, probability 0, space 0, times 0
[  185.028678][ T9541] CPU: 2 UID: 0 PID: 9541 Comm: syz.3.1073 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  185.031780][ T9541] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.035016][ T9541] Call Trace:
[  185.036016][ T9541]  <TASK>
[  185.036889][ T9541]  dump_stack_lvl+0x16c/0x1f0
[  185.038263][ T9541]  should_fail_ex+0x497/0x5b0
[  185.039653][ T9541]  ? fs_reclaim_acquire+0xae/0x150
[  185.041148][ T9541]  should_failslab+0xc2/0x120
[  185.042520][ T9541]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  185.044183][ T9541]  ? __d_alloc+0x35/0x8c0
[  185.045466][ T9541]  __d_alloc+0x35/0x8c0
[  185.046713][ T9541]  d_alloc+0x4a/0x1e0
[  185.047893][ T9541]  d_alloc_parallel+0xe9/0x12b0
[  185.049328][ T9541]  ? __d_lookup+0x25c/0x4a0
[  185.050679][ T9541]  ? trace_lock_acquire+0x14e/0x1f0
[  185.052205][ T9541]  ? lookup_open.isra.0+0x229/0x14c0
[  185.053741][ T9541]  ? __pfx_d_alloc_parallel+0x10/0x10
[  185.055293][ T9541]  ? __d_lookup+0x266/0x4a0
[  185.056627][ T9541]  lookup_open.isra.0+0xab5/0x14c0
[  185.058126][ T9541]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  185.059744][ T9541]  ? path_openat+0x88a/0x2d60
[  185.061110][ T9541]  ? mnt_get_write_access+0x20c/0x300
[  185.062687][ T9541]  path_openat+0x904/0x2d60
[  185.064018][ T9541]  ? __pfx_path_openat+0x10/0x10
[  185.065538][ T9541]  ? __pfx___lock_acquire+0x10/0x10
[  185.067067][ T9541]  ? lock_acquire.part.0+0x11b/0x380
[  185.068612][ T9541]  ? find_held_lock+0x2d/0x110
[  185.069983][ T9541]  do_filp_open+0x20c/0x470
[  185.071265][ T9541]  ? __pfx_do_filp_open+0x10/0x10
[  185.072735][ T9541]  ? find_held_lock+0x2d/0x110
[  185.074144][ T9541]  ? __pfx_kfree_link+0x10/0x10
[  185.075625][ T9541]  ? alloc_fd+0x41f/0x760
[  185.076859][ T9541]  do_sys_openat2+0x17a/0x1e0
[  185.078238][ T9541]  ? __pfx_do_sys_openat2+0x10/0x10
[  185.079794][ T9541]  ? __fget_files+0x206/0x3a0
[  185.081170][ T9541]  __ia32_compat_sys_openat+0x16e/0x210
[  185.082800][ T9541]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  185.084570][ T9541]  ? ksys_write+0x1ba/0x250
[  185.085943][ T9541]  __do_fast_syscall_32+0x73/0x120
[  185.087422][ T9541]  do_fast_syscall_32+0x32/0x80
[  185.088827][ T9541]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.090681][ T9541] RIP: 0023:0xf714e579
[  185.091861][ T9541] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.097529][ T9541] RSP: 002b:00000000f511f490 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  185.099932][ T9541] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f511f4e0
[  185.102217][ T9541] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 00000000f7483ff4
[  185.104508][ T9541] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  185.106822][ T9541] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.109110][ T9541] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.111416][ T9541]  </TASK>
[  185.371883][   T62] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  185.392165][   T62] usb 5-1: device descriptor read/8, error -71
[  185.631740][   T62] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  185.652090][   T62] usb 5-1: device descriptor read/8, error -71
[  185.821161][   T62] usb usb5-port1: unable to enumerate USB device
[  185.851853][ T9562] lo: entered promiscuous mode
[  185.854100][ T9562] lo: left promiscuous mode
[  187.021773][ T9589] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  187.023855][ T9589] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  187.026001][ T9589] vhci_hcd vhci_hcd.0: Device attached
[  187.178291][ T9595] infiniband s
z1: set down
[  187.183129][ T1320] »»»»»»7 speed is unknown, defaulting to 1000
[  187.186033][ T1320] »»»»»»7 speed is unknown, defaulting to 1000
[  187.221721][   T56] vhci_hcd: vhci_device speed not set
[  187.281699][   T56] usb 43-1: new full-speed USB device number 6 using vhci_hcd
[  187.581699][ T9592] vhci_hcd: connection reset by peer
[  187.601944][   T12] vhci_hcd: stop threads
[  187.603225][   T12] vhci_hcd: release socket
[  187.606898][   T12] vhci_hcd: disconnect device
[  188.245099][ T9627] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1102'.
[  188.988366][ T9631] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  188.990274][ T9631] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  188.992509][ T9631] vhci_hcd vhci_hcd.0: Device attached
[  189.181769][ T1013] vhci_hcd: vhci_device speed not set
[  189.241872][ T1013] usb 39-1: new full-speed USB device number 4 using vhci_hcd
[  189.536224][ T9637] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1104'.
[  189.566420][ T9625] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  189.657341][ T9637] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  189.846331][ T9654] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1107'.
[  190.321786][ T9632] vhci_hcd: connection reset by peer
[  190.323650][ T1132] vhci_hcd: stop threads
[  190.324994][ T1132] vhci_hcd: release socket
[  190.326287][ T1132] vhci_hcd: disconnect device
[  190.588986][ T9661] vlan0: entered allmulticast mode
[  190.616868][ T9666] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  190.633122][ T9668] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1114'.
[  191.591502][ T9679] »»»»»»7 speed is unknown, defaulting to 1000
[  191.731457][ T9683] futex_wake_op: syz.1.1118 tries to shift op by 144; fix this program
[  191.735745][   T39] kauditd_printk_skb: 37 callbacks suppressed
[  191.735760][   T39] audit: type=1326 audit(1737169082.217:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9682 comm="syz.1.1118" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f82579 code=0x0
[  192.431929][   T56] vhci_hcd: vhci_device speed not set
[  192.634959][ T9698] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1123'.
[  192.817570][ T9704] input: syz0 as /devices/virtual/input/input23
[  193.223638][ T9720] overlayfs: missing 'lowerdir'
[  193.477176][ T9726] futex_wake_op: syz.1.1131 tries to shift op by 144; fix this program
[  193.483409][   T39] audit: type=1326 audit(1737169083.967:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1131" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f82579 code=0x0
[  193.652973][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  193.655056][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  194.327757][ T9745] FAULT_INJECTION: forcing a failure.
[  194.327757][ T9745] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.331586][ T9745] CPU: 3 UID: 0 PID: 9745 Comm: syz.1.1136 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  194.334598][ T9745] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  194.337648][ T9745] Call Trace:
[  194.338628][ T9745]  <TASK>
[  194.339487][ T9745]  dump_stack_lvl+0x16c/0x1f0
[  194.340847][ T9745]  should_fail_ex+0x497/0x5b0
[  194.342386][ T9745]  _copy_from_user+0x2e/0xd0
[  194.344205][ T9745]  __tun_chr_ioctl+0x4b4/0x4960
[  194.346027][ T9745]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  194.347500][ T9745]  ? __fget_files+0x206/0x3a0
[  194.348870][ T9745]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  194.350500][ T9745]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  194.352276][ T9745]  __do_fast_syscall_32+0x73/0x120
[  194.353841][ T9745]  do_fast_syscall_32+0x32/0x80
[  194.355254][ T9745]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  194.357063][ T9745] RIP: 0023:0xf7f82579
[  194.358261][ T9745] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  194.361802][ T1013] vhci_hcd: vhci_device speed not set
[  194.364685][ T9745] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  194.369459][ T9745] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400454ca
[  194.372500][ T9745] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  194.375573][ T9745] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  194.378653][ T9745] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  194.381728][ T9745] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  194.384824][ T9745]  </TASK>
[  194.938532][ T5948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  194.942885][ T5948] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  194.947476][ T5948] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  194.949934][ T5948] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  194.952532][ T5948] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  194.954716][ T5948] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  194.960937][   T65] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  194.963262][   T65] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  194.966041][   T65] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  194.968930][   T65] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  194.971298][   T65] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  194.975732][   T65] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  194.990521][ T9756] »»»»»»7 speed is unknown, defaulting to 1000
[  195.077579][ T9756] chnl_net:caif_netlink_parms(): no params data found
[  195.149746][ T9756] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.154255][ T9756] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.156937][ T9756] bridge_slave_0: entered allmulticast mode
[  195.159857][ T9756] bridge_slave_0: entered promiscuous mode
[  195.165001][ T9756] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.168762][ T9756] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.185290][ T9756] bridge_slave_1: entered allmulticast mode
[  195.188521][ T9756] bridge_slave_1: entered promiscuous mode
[  195.217729][ T9756] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  195.222772][ T9756] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  195.309072][ T9756] team0: Port device team_slave_0 added
[  195.314700][ T9756] team0: Port device team_slave_1 added
[  195.346216][ T9756] batman_adv: batadv0: Adding interface: batadv_slave_0
[  195.349035][ T9756] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.359424][ T9756] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  195.365453][ T9756] batman_adv: batadv0: Adding interface: batadv_slave_1
[  195.368332][ T9756] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.378531][ T9756] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  195.422411][ T9756] hsr_slave_0: entered promiscuous mode
[  195.425430][ T9756] hsr_slave_1: entered promiscuous mode
[  195.428181][ T9756] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  195.432813][ T9756] Cannot create hsr debugfs directory
[  195.536169][ T9756] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  195.539875][ T9756] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  195.546043][ T9756] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  195.549371][ T9756] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  195.560570][ T9756] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.562803][ T9756] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.565148][ T9756] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.567345][ T9756] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.589602][ T9756] 8021q: adding VLAN 0 to HW filter on device bond0
[  195.597586][ T1234] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.600816][ T1234] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.618705][ T9756] 8021q: adding VLAN 0 to HW filter on device team0
[  195.629034][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.631717][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.637000][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.639445][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.739738][ T9756] 8021q: adding VLAN 0 to HW filter on device batadv0
[  195.842729][ T9756] veth0_vlan: entered promiscuous mode
[  195.846747][ T9756] veth1_vlan: entered promiscuous mode
[  195.859340][ T9756] veth0_macvtap: entered promiscuous mode
[  195.862353][ T9756] veth1_macvtap: entered promiscuous mode
[  195.872394][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  195.875590][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.878665][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  195.882383][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.886836][ T9756] batman_adv: batadv0: Interface activated: batadv_slave_0
[  195.896602][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  195.900649][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.904677][ T9756] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  195.907820][ T9756] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.911744][ T9756] batman_adv: batadv0: Interface activated: batadv_slave_1
[  195.915893][ T9756] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  195.918482][ T9756] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  195.921045][ T9756] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  195.924939][ T9756] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  195.984928][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.987786][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.996843][ T1234] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.000560][ T1234] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.067341][ T9804] netlink: 1256 bytes leftover after parsing attributes in process `syz.4.1139'.
[  196.070475][ T9804] openvswitch: netlink: Unexpected mask (mask=4, allowed=10048)
[  196.380754][ T9812] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1148'.
[  196.383850][ T9812] batman_adv: batadv0: Removing interface: batadv_slave_0
[  196.389570][ T9812] batman_adv: batadv0: Removing interface: batadv_slave_1
[  196.393523][ T9812] batman_adv: batadv0: Removing interface: ip6gretap1
[  196.469662][ T9815] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  197.021889][   T65] Bluetooth: hci3: command tx timeout
[  197.375453][   T39] audit: type=1326 audit(1737169087.857:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.384476][   T39] audit: type=1326 audit(1737169087.857:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.387181][ T9845] devpts: called with bogus options
[  197.394446][   T39] audit: type=1326 audit(1737169087.857:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=133 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.404277][   T39] audit: type=1326 audit(1737169087.857:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.418228][   T39] audit: type=1326 audit(1737169087.857:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.427410][   T39] audit: type=1326 audit(1737169087.857:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.441691][   T39] audit: type=1326 audit(1737169087.867:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.450121][   T39] audit: type=1326 audit(1737169087.867:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.463380][   T39] audit: type=1326 audit(1737169087.867:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=350 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.469533][   T39] audit: type=1326 audit(1737169087.867:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9844 comm="syz.3.1159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[  197.519848][ T9854] »»»»»»7 speed is unknown, defaulting to 1000
[  197.594054][ T9855] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1160'.
[  198.101904][ T1320] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  198.199508][ T9896] »»»»»»7 speed is unknown, defaulting to 1000
[  198.252844][ T1320] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  198.256314][ T1320] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  198.259516][ T1320] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  198.262507][ T1320] usb 9-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  198.265914][ T1320] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  198.270370][ T1320] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  198.277118][ T1320] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  198.280247][ T1320] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  198.282986][ T1320] usb 9-1: Product: syz
[  198.284213][ T1320] usb 9-1: Manufacturer: syz
[  198.288968][ T9871] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  198.294265][ T1320] cdc_wdm 9-1:1.0: skipping garbage
[  198.295821][ T1320] cdc_wdm 9-1:1.0: skipping garbage
[  198.298866][ T1320] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  198.301158][ T1320] cdc_wdm 9-1:1.0: Unknown control protocol
[  198.503688][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.506126][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.508592][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.511043][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.513394][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.515781][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.518250][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.520661][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.523425][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.525871][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.532244][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.534818][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.537438][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.539887][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.542586][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.545036][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.547688][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.550011][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.552025][    C2] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  198.553962][    C2] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  198.605065][   T70] usb 9-1: USB disconnect, device number 2
[  199.091766][   T65] Bluetooth: hci3: command tx timeout
[  199.259484][ T9929] Driver unsupported XDP return value 0 on prog  (id 228) dev N/A, expect packet loss!
[  199.291795][ T5987] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  199.862944][ T5987] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  199.865477][ T5987] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  199.869479][ T5987] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  199.872079][ T5987] usb 5-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  199.875368][ T5987] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  199.878443][ T5987] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  199.882828][ T5987] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  199.885458][ T5987] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  199.887734][ T5987] usb 5-1: Product: syz
[  199.888996][ T5987] usb 5-1: Manufacturer: syz
[  199.894795][ T9916] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  199.897596][ T5987] cdc_wdm 5-1:1.0: skipping garbage
[  199.899113][ T5987] cdc_wdm 5-1:1.0: skipping garbage
[  199.903067][ T5987] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  199.904799][ T5987] cdc_wdm 5-1:1.0: Unknown control protocol
[  200.061580][ T9935] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1187'.
[  200.099906][ T9916] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  200.102974][ T9923] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  200.106305][ T9916] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  200.212871][ T1320] usb 5-1: USB disconnect, device number 27
[  200.360793][ T9956] »»»»»»7 speed is unknown, defaulting to 1000
[  200.443328][ T9963] futex_wake_op: syz.2.1198 tries to shift op by 144; fix this program
[  200.544684][ T9973] FAULT_INJECTION: forcing a failure.
[  200.544684][ T9973] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.550036][ T9973] CPU: 0 UID: 0 PID: 9973 Comm: syz.3.1201 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  200.554370][ T9973] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.558719][ T9973] Call Trace:
[  200.560075][ T9973]  <TASK>
[  200.561274][ T9973]  dump_stack_lvl+0x16c/0x1f0
[  200.562840][ T9973]  should_fail_ex+0x497/0x5b0
[  200.564315][ T9973]  _copy_to_user+0x32/0xd0
[  200.565664][ T9973]  simple_read_from_buffer+0xd0/0x160
[  200.567364][ T9973]  proc_fail_nth_read+0x198/0x270
[  200.568851][ T9973]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.570554][ T9973]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.572224][ T9973]  vfs_read+0x1df/0xbe0
[  200.573467][ T9973]  ? __fget_files+0x1fc/0x3a0
[  200.574892][ T9973]  ? __pfx___mutex_lock+0x10/0x10
[  200.576657][ T9973]  ? __pfx_vfs_read+0x10/0x10
[  200.578584][ T9973]  ? __fget_files+0x206/0x3a0
[  200.580508][ T9973]  ksys_read+0x12b/0x250
[  200.581953][ T9973]  ? __pfx_ksys_read+0x10/0x10
[  200.583694][ T9973]  __do_fast_syscall_32+0x73/0x120
[  200.585369][ T9973]  do_fast_syscall_32+0x32/0x80
[  200.586992][ T9973]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.589065][ T9973] RIP: 0023:0xf714e579
[  200.590707][ T9973] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  200.598348][ T9973] RSP: 002b:00000000f5140590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  200.601656][ T9973] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5140620
[  200.604857][ T9973] RDX: 000000000000000f RSI: 00000000f7483ff4 RDI: 0000000000000000
[  200.607898][ T9973] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  200.611095][ T9973] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  200.614176][ T9973] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  200.616772][ T9973]  </TASK>
[  200.618021][    C0] vkms_vblank_simulate: vblank timer overrun
[  200.782888][ T9982] netlink: 'syz.3.1202': attribute type 10 has an invalid length.
[  200.782903][ T9982] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1202'.
[  200.857222][ T9975] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[  200.859253][ T9975] PKCS7: Only support pkcs7_signedData type
[  201.038264][ T9990] rtc_cmos 00:05: Alarms can be up to one day in the future
[  201.167417][ T9998] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1206'.
[  201.172105][   T65] Bluetooth: hci3: command tx timeout
[  201.232241][ T5957] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  201.277077][T10002] »»»»»»7 speed is unknown, defaulting to 1000
[  201.578737][T10019] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1211'.
[  201.861231][ T9989] rtc_cmos 00:05: Alarms can be up to one day in the future
[  202.161423][ T5957] rtc_cmos 00:05: Alarms can be up to one day in the future
[  202.165457][ T5957] rtc_cmos 00:05: Alarms can be up to one day in the future
[  202.168937][ T5957] rtc_cmos 00:05: Alarms can be up to one day in the future
[  202.172394][ T5957] rtc_cmos 00:05: Alarms can be up to one day in the future
[  202.175021][ T5957] rtc rtc0: __rtc_set_alarm: err=-22
[  203.251816][   T65] Bluetooth: hci3: command tx timeout
[  212.050700][T10053] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1216'.
[  212.053352][T10053] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1216'.
[  212.055838][T10053] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1216'.
[  212.065046][T10053] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1216'.
[  212.069392][T10060] netlink: 'syz.4.1217': attribute type 10 has an invalid length.
[  212.106683][T10058] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1219'.
[  212.524829][T10069] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1220'.
[  212.724250][T10071] »»»»»»7 speed is unknown, defaulting to 1000
[  212.863360][T10085] FAULT_INJECTION: forcing a failure.
[  212.863360][T10085] name failslab, interval 1, probability 0, space 0, times 0
[  212.870747][T10085] CPU: 3 UID: 0 PID: 10085 Comm: syz.4.1227 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  212.873863][T10085] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.877129][T10085] Call Trace:
[  212.878104][T10085]  <TASK>
[  212.878981][T10085]  dump_stack_lvl+0x16c/0x1f0
[  212.880355][T10085]  should_fail_ex+0x497/0x5b0
[  212.881765][T10085]  ? fs_reclaim_acquire+0xae/0x150
[  212.883263][T10085]  should_failslab+0xc2/0x120
[  212.884644][T10085]  __kmalloc_cache_noprof+0x68/0x420
[  212.886517][T10085]  rtnl_newlink+0x108/0x1d70
[  212.887881][T10085]  ? hlock_class+0x4e/0x130
[  212.889270][T10085]  ? __lock_acquire+0xcc5/0x3c40
[  212.890753][T10085]  ? __pfx_rtnl_newlink+0x10/0x10
[  212.892313][T10085]  ? __pfx___lock_acquire+0x10/0x10
[  212.893833][T10085]  ? kmem_cache_free+0x152/0x4c0
[  212.895298][T10085]  ? aa_get_newest_label+0x376/0x680
[  212.896844][T10085]  ? find_held_lock+0x2d/0x110
[  212.898247][T10085]  ? find_held_lock+0x2d/0x110
[  212.899673][T10085]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  212.901177][T10085]  ? __pfx_lock_release+0x10/0x10
[  212.902645][T10085]  ? trace_lock_acquire+0x14e/0x1f0
[  212.904178][T10085]  ? __pfx_rtnl_newlink+0x10/0x10
[  212.905703][T10085]  rtnetlink_rcv_msg+0x95b/0xea0
[  212.907179][T10085]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  212.908767][T10085]  ? __pfx___dev_queue_xmit+0x10/0x10
[  212.910353][T10085]  netlink_rcv_skb+0x165/0x410
[  212.911760][T10085]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  212.913342][T10085]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  212.914918][T10085]  ? netlink_deliver_tap+0x1ae/0xca0
[  212.916462][T10085]  netlink_unicast+0x53c/0x7f0
[  212.917886][T10085]  ? __pfx_netlink_unicast+0x10/0x10
[  212.919469][T10085]  ? __phys_addr_symbol+0x30/0x80
[  212.920935][T10085]  ? __check_object_size+0x488/0x710
[  212.922492][T10085]  netlink_sendmsg+0x8b8/0xd70
[  212.923932][T10085]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.925504][T10085]  ____sys_sendmsg+0x9ae/0xb40
[  212.927055][T10085]  ? __pfx_____sys_sendmsg+0x10/0x10
[  212.929030][T10085]  ? get_compat_msghdr+0x11b/0x170
[  212.930498][T10085]  ___sys_sendmsg+0x135/0x1e0
[  212.931871][T10085]  ? __pfx____sys_sendmsg+0x10/0x10
[  212.933396][T10085]  ? __pfx_lock_release+0x10/0x10
[  212.934889][T10085]  ? trace_lock_acquire+0x14e/0x1f0
[  212.936426][T10085]  ? __fget_files+0x206/0x3a0
[  212.937798][T10085]  __sys_sendmsg+0x16e/0x220
[  212.939153][T10085]  ? __pfx___sys_sendmsg+0x10/0x10
[  212.940642][T10085]  __do_fast_syscall_32+0x73/0x120
[  212.942131][T10085]  do_fast_syscall_32+0x32/0x80
[  212.943652][T10085]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.945828][T10085] RIP: 0023:0xf70ce579
[  212.947005][T10085] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.952841][T10085] RSP: 002b:00000000f50c055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  212.956066][T10085] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000340
[  212.958992][T10085] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  212.961263][T10085] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.963656][T10085] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.966129][T10085] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.968600][T10085]  </TASK>
[  213.640424][T10100] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  213.652042][T10100] virtio-fs: tag <(null)> not found
[  214.019524][T10136] binder: 10135:10136 ioctl c0306201 20000580 returned -22
[  215.098168][T10142] block nbd0: shutting down sockets
[  215.368465][   T39] kauditd_printk_skb: 8 callbacks suppressed
[  215.368509][   T39] audit: type=1326 audit(1737169105.847:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.0.1242" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fcf579 code=0x0
[  215.383111][T10156] 9pnet_fd: Insufficient options for proto=fd
[  215.419782][   T39] audit: type=1326 audit(1737169105.897:1245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.0.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  215.427646][   T39] audit: type=1326 audit(1737169105.897:1246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.0.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  216.109280][T10179] binder: 10178:10179 ioctl c0306201 20000580 returned -22
[  216.197580][T10187] openvswitch: netlink: EtherType 50a is less than min 600
[  216.206108][T10187] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1251'.
[  216.214672][T10188] netlink: 'syz.0.1249': attribute type 10 has an invalid length.
[  216.217185][T10188] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1249'.
[  216.220049][T10188] bridge0: port 1(macsec0) entered blocking state
[  216.222732][T10188] bridge0: port 1(macsec0) entered disabled state
[  216.224677][T10188] macsec0: entered allmulticast mode
[  216.226205][T10188] veth1_macvtap: entered allmulticast mode
[  216.229714][T10188] macsec0: left allmulticast mode
[  216.231892][T10188] veth1_macvtap: left allmulticast mode
[  216.282430][T10186] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  216.711805][   T70] usb 8-1: new full-speed USB device number 17 using dummy_hcd
[  217.113371][   T70] usb 8-1: not running at top speed; connect to a high speed hub
[  217.116439][   T70] usb 8-1: config 1 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 911, setting to 64
[  217.119536][   T70] usb 8-1: config 1 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  217.123300][   T70] usb 8-1: config 1 interface 0 has no altsetting 0
[  217.126864][   T70] usb 8-1: New USB device found, idVendor=056a, idProduct=010f, bcdDevice= 0.40
[  217.129450][   T70] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.131788][   T70] usb 8-1: Product: syz
[  217.133010][   T70] usb 8-1: Manufacturer: à Š
[  217.134334][   T70] usb 8-1: SerialNumber: syz
[  217.137071][T10208] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  217.493560][T10221] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1262'.
[  217.498869][T10221] netlink: 59 bytes leftover after parsing attributes in process `syz.4.1262'.
[  217.586003][T10223] FAULT_INJECTION: forcing a failure.
[  217.586003][T10223] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  217.590438][T10223] CPU: 2 UID: 0 PID: 10223 Comm: syz.0.1263 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  217.593592][T10223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  217.596719][T10223] Call Trace:
[  217.597694][T10223]  <TASK>
[  217.598559][T10223]  dump_stack_lvl+0x16c/0x1f0
[  217.599888][T10223]  should_fail_ex+0x497/0x5b0
[  217.601262][T10223]  strncpy_from_user+0x3b/0x2d0
[  217.602681][T10223]  getname_flags.part.0+0x8f/0x550
[  217.604160][T10223]  getname_flags+0x93/0xf0
[  217.605467][T10223]  user_path_at+0x24/0x60
[  217.606745][T10223]  __ia32_sys_mount+0x1fb/0x310
[  217.608161][T10223]  ? __pfx___ia32_sys_mount+0x10/0x10
[  217.609715][T10223]  __do_fast_syscall_32+0x73/0x120
[  217.611194][T10223]  do_fast_syscall_32+0x32/0x80
[  217.612595][T10223]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  217.614416][T10223] RIP: 0023:0xf7fcf579
[  217.615621][T10223] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  217.621102][T10223] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  217.623489][T10223] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000080
[  217.625761][T10223] RDX: 0000000020000240 RSI: 0000000000000600 RDI: 0000000020000180
[  217.627986][T10223] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  217.630192][T10223] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  217.632488][T10223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  217.634764][T10223]  </TASK>
[  218.061905][ T5987] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  218.211795][ T5987] usb 5-1: Using ep0 maxpacket: 16
[  218.214822][ T5987] usb 5-1: no configurations
[  218.216922][ T5987] usb 5-1: can't read configurations, error -22
[  218.341754][ T5987] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  218.491682][ T5987] usb 5-1: Using ep0 maxpacket: 16
[  218.501513][ T5987] usb 5-1: no configurations
[  218.506675][ T5987] usb 5-1: can't read configurations, error -22
[  218.511807][ T5987] usb usb5-port1: attempt power cycle
[  218.871766][ T5987] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  218.892231][ T5987] usb 5-1: Using ep0 maxpacket: 16
[  218.899869][ T5987] usb 5-1: no configurations
[  218.901351][ T5987] usb 5-1: can't read configurations, error -22
[  219.041715][ T5987] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  219.069233][ T5987] usb 5-1: Using ep0 maxpacket: 16
[  219.079257][ T5987] usb 5-1: no configurations
[  219.080669][ T5987] usb 5-1: can't read configurations, error -22
[  219.085915][ T5987] usb usb5-port1: unable to enumerate USB device
[  219.089081][T10241] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1269'.
[  219.213270][   T70] usbhid 8-1:1.0: can't add hid device: -71
[  219.215134][   T70] usbhid 8-1:1.0: probe with driver usbhid failed with error -71
[  219.218189][   T70] usb 8-1: USB disconnect, device number 17
[  219.427605][T10249] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1272'.
[  219.685834][T10256] netlink: 456 bytes leftover after parsing attributes in process `syz.3.1273'.
[  220.612720][T10265] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1276'.
[  220.842169][T10267] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1276'.
[  221.241958][T10286] FAULT_INJECTION: forcing a failure.
[  221.241958][T10286] name failslab, interval 1, probability 0, space 0, times 0
[  221.245603][T10286] CPU: 1 UID: 0 PID: 10286 Comm: syz.3.1281 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  221.248654][T10286] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.251724][T10286] Call Trace:
[  221.252688][T10286]  <TASK>
[  221.253542][T10286]  dump_stack_lvl+0x16c/0x1f0
[  221.254924][T10286]  should_fail_ex+0x497/0x5b0
[  221.256294][T10286]  ? fs_reclaim_acquire+0xae/0x150
[  221.257849][T10286]  should_failslab+0xc2/0x120
[  221.259221][T10286]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[  221.260798][T10286]  ? trace_kmalloc+0x2d/0xd0
[  221.262050][T10286]  ? page_pool_create_percpu+0x7a/0xac0
[  221.263637][T10286]  ? __kmalloc_node_noprof+0x23d/0x520
[  221.265218][T10286]  ? reacquire_held_locks+0x491/0x4c0
[  221.266774][T10286]  page_pool_create_percpu+0x7a/0xac0
[  221.268316][T10286]  bpf_test_run_xdp_live+0x193/0x500
[  221.269828][T10286]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  221.271843][T10286]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  221.273898][T10286]  ? __pfx_lock_release+0x10/0x10
[  221.275680][T10286]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  221.277682][T10286]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  221.279495][T10286]  ? 0xffffffffa0004340
[  221.280673][T10286]  ? 0xffffffffa0004340
[  221.281989][T10286]  ? 0xffffffffa0004340
[  221.283200][T10286]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  221.284914][T10286]  bpf_prog_test_run_xdp+0x81f/0x1570
[  221.286471][T10286]  ? lock_acquire+0x2f/0xb0
[  221.287782][T10286]  ? __fget_files+0x40/0x3a0
[  221.289132][T10286]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  221.290806][T10286]  ? __fget_files+0x206/0x3a0
[  221.292168][T10286]  ? fput+0x67/0x440
[  221.293306][T10286]  ? __bpf_prog_get+0xa0/0x290
[  221.294975][T10286]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  221.296655][T10286]  __sys_bpf+0x1921/0x57a0
[  221.297940][T10286]  ? __pfx___sys_bpf+0x10/0x10
[  221.299321][T10286]  ? bpf_trace_run2+0x266/0x590
[  221.300709][T10286]  ? __pfx_lock_release+0x10/0x10
[  221.302153][T10286]  ? trace_lock_acquire+0x14e/0x1f0
[  221.303655][T10286]  ? __pfx_lock_release+0x10/0x10
[  221.305126][T10286]  __ia32_sys_bpf+0x76/0xe0
[  221.306461][T10286]  __do_fast_syscall_32+0x73/0x120
[  221.307949][T10286]  do_fast_syscall_32+0x32/0x80
[  221.309371][T10286]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  221.311197][T10286] RIP: 0023:0xf714e579
[  221.312401][T10286] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  221.317731][T10286] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  221.320078][T10286] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000600
[  221.322293][T10286] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  221.324592][T10286] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  221.326907][T10286] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  221.329179][T10286] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  221.331447][T10286]  </TASK>
[  222.136458][T10301] »»»»»»7 speed is unknown, defaulting to 1000
[  222.664934][T10314] FAULT_INJECTION: forcing a failure.
[  222.664934][T10314] name failslab, interval 1, probability 0, space 0, times 0
[  222.669619][T10314] CPU: 3 UID: 0 PID: 10314 Comm: syz.4.1291 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  222.673564][T10314] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  222.677568][T10314] Call Trace:
[  222.678842][T10314]  <TASK>
[  222.679954][T10314]  dump_stack_lvl+0x16c/0x1f0
[  222.681722][T10314]  should_fail_ex+0x497/0x5b0
[  222.683506][T10314]  ? fs_reclaim_acquire+0xae/0x150
[  222.685420][T10314]  should_failslab+0xc2/0x120
[  222.687210][T10314]  __kmalloc_noprof+0xce/0x4f0
[  222.688992][T10314]  ? d_absolute_path+0x137/0x1b0
[  222.690506][T10314]  ? tomoyo_encode2+0x100/0x3e0
[  222.691928][T10314]  tomoyo_encode2+0x100/0x3e0
[  222.693301][T10314]  tomoyo_realpath_from_path+0x1a7/0x710
[  222.695026][T10314]  tomoyo_path_number_perm+0x248/0x5b0
[  222.696899][T10314]  ? tomoyo_path_number_perm+0x235/0x5b0
[  222.699009][T10314]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  222.701255][T10314]  ? find_held_lock+0x2d/0x110
[  222.703090][T10314]  ? __pfx_lock_release+0x10/0x10
[  222.704977][T10314]  ? trace_lock_acquire+0x14e/0x1f0
[  222.706499][T10314]  ? find_held_lock+0x2d/0x110
[  222.708400][T10314]  ? lock_acquire+0x2f/0xb0
[  222.710110][T10314]  ? __fget_files+0x40/0x3a0
[  222.711868][T10314]  ? __fget_files+0x206/0x3a0
[  222.713628][T10314]  security_file_ioctl_compat+0x9b/0x240
[  222.715701][T10314]  __do_compat_sys_ioctl+0x4e/0x2c0
[  222.717332][T10314]  __do_fast_syscall_32+0x73/0x120
[  222.719176][T10314]  do_fast_syscall_32+0x32/0x80
[  222.720828][T10314]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  222.722850][T10314] RIP: 0023:0xf70ce579
[  222.724209][T10314] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  222.729781][T10314] RSP: 002b:00000000f50c055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  222.732189][T10314] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004601
[  222.734458][T10314] RDX: 0000000020000940 RSI: 0000000000000000 RDI: 0000000000000000
[  222.737194][T10314] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  222.740168][T10314] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  222.743119][T10314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  222.746092][T10314]  </TASK>
[  222.886473][T10314] ERROR: Out of memory at tomoyo_realpath_from_path.
[  223.551703][ T5987] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  223.725508][ T5987] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  223.728088][ T5987] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  223.730998][ T5987] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  223.734442][ T5987] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  223.741834][ T5987] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  223.746167][ T5987] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  223.748902][ T5987] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  223.751200][ T5987] usb 9-1: Product: syz
[  223.758958][ T5987] usb 9-1: Manufacturer: syz
[  223.762507][ T5987] cdc_wdm 9-1:1.0: skipping garbage
[  223.764041][ T5987] cdc_wdm 9-1:1.0: skipping garbage
[  223.767509][ T5987] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  223.769179][ T5987] cdc_wdm 9-1:1.0: Unknown control protocol
[  223.955540][T10351] futex_wake_op: syz.0.1302 tries to shift op by 144; fix this program
[  223.959322][   T39] audit: type=1326 audit(1737169114.437:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10350 comm="syz.0.1302" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fcf579 code=0x0
[  224.093271][    C0] wdm_int_callback: 761 callbacks suppressed
[  224.093284][    C0] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  224.097030][    C0] wdm_int_callback: 761 callbacks suppressed
[  224.097038][    C0] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  224.100621][    C0] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  224.102528][    C0] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  224.105618][    C0] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  224.107529][    C0] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  224.109695][    C0] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  224.111501][    C0] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  224.113405][ T5987] usb 9-1: USB disconnect, device number 3
[  224.115568][T10356] cdc_wdm 9-1:1.0: Tx URB error: -19
[  224.421734][   T56] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  224.592863][   T56] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  224.595417][   T56] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  224.598402][   T56] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  224.600957][   T56] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  224.604449][   T56] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  224.608655][   T56] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  224.612100][   T56] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  224.614357][   T56] usb 8-1: Product: syz
[  224.615542][   T56] usb 8-1: Manufacturer: syz
[  224.618869][   T56] cdc_wdm 8-1:1.0: skipping garbage
[  224.620356][   T56] cdc_wdm 8-1:1.0: skipping garbage
[  224.623093][   T56] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  224.625104][   T56] cdc_wdm 8-1:1.0: Unknown control protocol
[  225.007554][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  225.007653][ T5957] usb 8-1: USB disconnect, device number 18
[  225.009423][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  225.013351][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  225.015803][T10377] cdc_wdm 8-1:1.0: Tx URB error: -19
[  225.017506][T10380] cdc_wdm 8-1:1.0: Tx URB error: -19
[  225.082173][   T70] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  225.233290][   T70] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  225.237621][   T70] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  225.242141][   T70] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  225.245143][   T70] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.266534][T10370] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  225.273881][   T70] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  225.485974][ T5987] usb 5-1: USB disconnect, device number 32
[  226.746121][T10411] futex_wake_op: syz.4.1318 tries to shift op by 144; fix this program
[  226.758891][   T39] audit: type=1326 audit(1737169117.237:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10410 comm="syz.4.1318" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ce579 code=0x0
[  227.919875][T10443] futex_wake_op: syz.2.1327 tries to shift op by 144; fix this program
[  227.926892][   T39] audit: type=1326 audit(1737169118.407:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.2.1327" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f47579 code=0x0
[  227.940015][T10444] bridge_slave_0: left allmulticast mode
[  227.941992][T10444] bridge_slave_0: left promiscuous mode
[  227.943806][T10444] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.947353][T10444] bridge_slave_1: left allmulticast mode
[  227.949133][T10444] bridge_slave_1: left promiscuous mode
[  227.952025][T10444] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.960526][T10444] bond0: (slave bond_slave_0): Releasing backup interface
[  227.968878][T10444] bond0: (slave bond_slave_1): Releasing backup interface
[  228.214789][T10444] team0: Port device team_slave_0 removed
[  228.276113][T10444] team0: Port device team_slave_1 removed
[  228.284425][T10444] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  228.286934][T10444] batman_adv: batadv0: Removing interface: batadv_slave_0
[  228.311968][T10444] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  228.314711][T10444] batman_adv: batadv0: Removing interface: batadv_slave_1
[  229.057503][T10466] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  229.089775][T10466] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  229.735510][T10481] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  229.748048][T10483] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1337'.
[  229.786807][T10485] syz.2.1338[10485] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.786869][T10485] syz.2.1338[10485] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.790290][T10485] syz.2.1338[10485] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.798666][T10485] netlink: 'syz.2.1338': attribute type 10 has an invalid length.
[  229.809270][T10485] team0: Device ipvlan1 failed to enter team mode
[  229.811303][T10485] team0: Device ipvlan1 failed to enter team mode
[  229.851325][T10487] openvswitch: netlink: EtherType 50a is less than min 600
[  229.940011][T10489] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1340'.
[  230.156893][T10513] fuse: Bad value for 'user_id'
[  230.158430][T10513] fuse: Bad value for 'user_id'
[  230.202737][T10510] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  230.252642][T10521] rtc_cmos 00:05: Alarms can be up to one day in the future
[  230.262014][T10525] futex_wake_op: syz.0.1355 tries to shift op by 144; fix this program
[  230.267813][   T39] audit: type=1326 audit(1737169120.747:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10524 comm="syz.0.1355" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fcf579 code=0x0
[  230.414517][T10533] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1353'.
[  231.062098][T10520] rtc_cmos 00:05: Alarms can be up to one day in the future
[  231.169530][   T25] rtc_cmos 00:05: Alarms can be up to one day in the future
[  231.179606][   T25] rtc_cmos 00:05: Alarms can be up to one day in the future
[  231.189758][   T25] rtc_cmos 00:05: Alarms can be up to one day in the future
[  231.193909][   T25] rtc_cmos 00:05: Alarms can be up to one day in the future
[  231.199726][   T25] rtc rtc0: __rtc_set_alarm: err=-22
[  231.297546][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  231.300196][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  231.581864][ T5987] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  231.753564][ T5987] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  231.756833][ T5987] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  231.759946][ T5987] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  231.763237][ T5987] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.778436][T10559] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  231.790414][ T5987] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  231.988307][ T5987] usb 8-1: USB disconnect, device number 19
[  232.115912][T10568] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1366'.
[  232.193676][T10559] binder: 10558:10559 ioctl c0306201 20000580 returned -22
[  232.433279][T10572] input: syz0 as /devices/virtual/input/input26
[  232.570935][T10579] FAULT_INJECTION: forcing a failure.
[  232.570935][T10579] name failslab, interval 1, probability 0, space 0, times 0
[  232.575751][T10579] CPU: 3 UID: 0 PID: 10579 Comm: syz.0.1370 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  232.579702][T10579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  232.583612][T10579] Call Trace:
[  232.584862][T10579]  <TASK>
[  232.585972][T10579]  dump_stack_lvl+0x16c/0x1f0
[  232.587735][T10579]  should_fail_ex+0x497/0x5b0
[  232.589494][T10579]  ? fs_reclaim_acquire+0xae/0x150
[  232.591415][T10579]  should_failslab+0xc2/0x120
[  232.593399][T10579]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  232.595578][T10579]  ? __alloc_skb+0x2b3/0x380
[  232.597321][T10579]  __alloc_skb+0x2b3/0x380
[  232.598994][T10579]  ? __pfx___alloc_skb+0x10/0x10
[  232.600833][T10579]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[  232.602743][T10579]  netlink_ack+0x164/0xb20
[  232.604424][T10579]  netlink_rcv_skb+0x327/0x410
[  232.606177][T10579]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  232.608214][T10579]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  232.610218][T10579]  ? netlink_deliver_tap+0x1ae/0xca0
[  232.612286][T10579]  netlink_unicast+0x53c/0x7f0
[  232.614110][T10579]  ? __pfx_netlink_unicast+0x10/0x10
[  232.616128][T10579]  ? __phys_addr_symbol+0x30/0x80
[  232.618044][T10579]  ? __check_object_size+0x488/0x710
[  232.620065][T10579]  netlink_sendmsg+0x8b8/0xd70
[  232.621894][T10579]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.623900][T10579]  ____sys_sendmsg+0x9ae/0xb40
[  232.625724][T10579]  ? __pfx_____sys_sendmsg+0x10/0x10
[  232.627737][T10579]  ? get_compat_msghdr+0x11b/0x170
[  232.629655][T10579]  ___sys_sendmsg+0x135/0x1e0
[  232.631467][T10579]  ? __pfx____sys_sendmsg+0x10/0x10
[  232.633455][T10579]  ? __pfx_lock_release+0x10/0x10
[  232.635332][T10579]  ? trace_lock_acquire+0x14e/0x1f0
[  232.637309][T10579]  ? __fget_files+0x206/0x3a0
[  232.639112][T10579]  __sys_sendmsg+0x16e/0x220
[  232.640877][T10579]  ? __pfx___sys_sendmsg+0x10/0x10
[  232.642857][T10579]  __do_fast_syscall_32+0x73/0x120
[  232.644802][T10579]  do_fast_syscall_32+0x32/0x80
[  232.646665][T10579]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  232.649073][T10579] RIP: 0023:0xf7fcf579
[  232.650641][T10579] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  232.657632][T10579] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  232.660759][T10579] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200003c0
[  232.663770][T10579] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  232.666770][T10579] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  232.669763][T10579] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  232.672754][T10579] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  232.675706][T10579]  </TASK>
[  232.723448][T10581] bridge_slave_0: default FDB implementation only supports local addresses
[  233.331806][ T5948] Bluetooth: hci4: command 0xfc11 tx timeout
[  233.331868][   T65] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  233.555873][T10614] futex_wake_op: syz.4.1382 tries to shift op by 144; fix this program
[  233.560251][   T39] audit: type=1326 audit(1737169124.037:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10613 comm="syz.4.1382" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ce579 code=0x0
[  233.787403][T10619] --map-set only usable from mangle table
[  233.832476][T10621] ip6t_REJECT: ECHOREPLY is not supported
[  233.941141][T10624] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  233.970980][T10626] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1386'.
[  233.974408][T10626] netlink: 'syz.3.1386': attribute type 22 has an invalid length.
[  233.976810][T10626] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1386'.
[  234.008709][T10630] »»»»»»7 speed is unknown, defaulting to 1000
[  234.048559][T10633] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1387'.
[  234.052384][T10633] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1387'.
[  234.311872][   T39] audit: type=1326 audit(1737169124.777:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.0.1392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  234.320080][   T39] audit: type=1326 audit(1737169124.777:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.0.1392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  234.329161][   T39] audit: type=1326 audit(1737169124.787:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.0.1392" exe="/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  234.337700][   T39] audit: type=1326 audit(1737169124.787:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.0.1392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  234.346247][   T39] audit: type=1326 audit(1737169124.787:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.0.1392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  234.354617][   T39] audit: type=1326 audit(1737169124.787:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.0.1392" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  234.362868][   T39] audit: type=1326 audit(1737169124.787:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.0.1392" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  234.369282][   T39] audit: type=1326 audit(1737169124.787:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10645 comm="syz.0.1392" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fcf579 code=0x7ffc0000
[  234.553193][ T5947] usb 5-1: new low-speed USB device number 33 using dummy_hcd
[  234.646998][T10657] program syz.4.1394 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  234.724115][ T5947] usb 5-1: config index 0 descriptor too short (expected 5924, got 36)
[  234.726561][ T5947] usb 5-1: config 250 has an invalid interface number: 228 but max is -1
[  234.729256][ T5947] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0
[  234.732991][ T5947] usb 5-1: config 250 has no interface number 0
[  234.734923][ T5947] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 is Bulk; changing to Interrupt
[  234.738005][ T5947] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 is Bulk; changing to Interrupt
[  234.741369][ T5947] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  234.746032][ T5947] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  234.750006][ T5947] usb 5-1: config 250 interface 228 has no altsetting 0
[  234.767179][T10661] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1395'.
[  235.298276][T10678] futex_wake_op: syz.3.1401 tries to shift op by 144; fix this program
[  235.312876][   T39] kauditd_printk_skb: 18 callbacks suppressed
[  235.312894][   T39] audit: type=1326 audit(1737169125.787:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.3.1401" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf714e579 code=0x0
[  235.335354][T10680] FAULT_INJECTION: forcing a failure.
[  235.335354][T10680] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  235.340267][T10680] CPU: 3 UID: 0 PID: 10680 Comm: syz.4.1402 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  235.343384][T10680] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  235.346631][T10680] Call Trace:
[  235.347621][T10680]  <TASK>
[  235.348497][T10680]  dump_stack_lvl+0x16c/0x1f0
[  235.350214][T10680]  should_fail_ex+0x497/0x5b0
[  235.352180][T10680]  _copy_from_user+0x2e/0xd0
[  235.353714][T10680]  kvm_arch_vcpu_ioctl+0x3cd/0x5070
[  235.355322][T10680]  ? is_bpf_text_address+0x94/0x1a0
[  235.357274][T10680]  ? hlock_class+0x4e/0x130
[  235.359025][T10680]  ? __lock_acquire+0x15a9/0x3c40
[  235.360989][T10680]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  235.363080][T10680]  ? __pfx___lock_acquire+0x10/0x10
[  235.365032][T10680]  ? stack_trace_save+0x95/0xd0
[  235.366810][T10680]  ? __pfx_stack_trace_save+0x10/0x10
[  235.368843][T10680]  ? __pfx_mark_lock+0x10/0x10
[  235.370787][T10680]  ? stack_depot_save_flags+0x28/0x9e0
[  235.373013][T10680]  ? lock_acquire.part.0+0x11b/0x380
[  235.375089][T10680]  ? __mutex_trylock_common+0xea/0x250
[  235.377171][T10680]  ? rcu_is_watching+0x12/0xc0
[  235.379008][T10680]  ? trace_contention_end+0xee/0x140
[  235.380649][T10680]  ? __mutex_lock+0x1cc/0xa60
[  235.382037][T10680]  ? kvm_vcpu_ioctl+0x1de/0x1520
[  235.383494][T10680]  ? __pfx___mutex_lock+0x10/0x10
[  235.384984][T10680]  ? find_held_lock+0x2d/0x110
[  235.386404][T10680]  ? kvm_vcpu_ioctl+0x9e6/0x1520
[  235.387861][T10680]  kvm_vcpu_ioctl+0x9e6/0x1520
[  235.389336][T10680]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  235.391642][T10680]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  235.393767][T10680]  ? tomoyo_path_number_perm+0x190/0x5b0
[  235.396057][T10680]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  235.398505][T10680]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  235.400929][T10680]  ? do_vfs_ioctl+0x513/0x1950
[  235.402930][T10680]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  235.405016][T10680]  ? __pfx_lock_release+0x10/0x10
[  235.407104][T10680]  ? trace_lock_acquire+0x14e/0x1f0
[  235.409231][T10680]  kvm_vcpu_compat_ioctl+0x210/0x3f0
[  235.411390][T10680]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  235.413752][T10680]  ? __fget_files+0x206/0x3a0
[  235.415510][T10680]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  235.417210][T10680]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  235.418763][T10680]  __do_fast_syscall_32+0x73/0x120
[  235.420343][T10680]  do_fast_syscall_32+0x32/0x80
[  235.421778][T10680]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  235.423654][T10680] RIP: 0023:0xf70ce579
[  235.424868][T10680] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  235.430647][T10680] RSP: 002b:00000000f50c055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  235.433027][T10680] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000004048aecb
[  235.435339][T10680] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[  235.437634][T10680] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  235.440194][T10680] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  235.442512][T10680] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  235.444846][T10680]  </TASK>
[  235.807428][T10689] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1404'.
[  235.983311][T10695] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1407'.
[  236.607608][T10718] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1412'.
[  236.619395][T10719] adfs: Unknown parameter '/dev/net/tun'
[  237.309416][ T5947] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  237.332534][ T5947] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  237.339083][ T5947] usb 5-1: can't set config #250, error -71
[  237.348004][ T5947] usb 5-1: USB disconnect, device number 33
[  237.397975][T10736] futex_wake_op: syz.3.1418 tries to shift op by 144; fix this program
[  237.404366][   T39] audit: type=1326 audit(1737169127.877:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10735 comm="syz.3.1418" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf714e579 code=0x0
[  237.457664][T10734] rtc_cmos 00:05: Alarms can be up to one day in the future
[  237.460935][   T56] rtc_cmos 00:05: Alarms can be up to one day in the future
[  237.463671][   T56] rtc_cmos 00:05: Alarms can be up to one day in the future
[  237.466342][   T56] rtc_cmos 00:05: Alarms can be up to one day in the future
[  237.469166][   T56] rtc_cmos 00:05: Alarms can be up to one day in the future
[  237.471289][   T56] rtc rtc0: __rtc_set_alarm: err=-22
[  237.621393][T10745] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1417'.
[  238.242860][T10753] netlink: 'syz.2.1421': attribute type 10 has an invalid length.
[  238.251381][T10753] team0: Port device netdevsim0 added
[  238.318228][T10755] openvswitch: netlink: EtherType 50a is less than min 600
[  238.323330][T10757] netlink: 'syz.0.1423': attribute type 1 has an invalid length.
[  238.326429][T10757] netlink: 'syz.0.1423': attribute type 3 has an invalid length.
[  238.328834][T10757] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1423'.
[  238.375345][T10761] netlink: 'syz.4.1425': attribute type 1 has an invalid length.
[  238.377574][T10761] netlink: 'syz.4.1425': attribute type 3 has an invalid length.
[  238.380053][T10761] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1425'.
[  238.382405][T10754] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  238.610502][T10768] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1427'.
[  238.768712][T10775] »»»»»»7 speed is unknown, defaulting to 1000
[  238.916134][T10778] xt_connbytes: Forcing CT accounting to be enabled
[  238.919184][T10778] xt_CT: You must specify a L4 protocol and not use inversions on it
[  239.524966][T10793] overlayfs: disabling nfs_export due to verity=on
[  239.527297][T10793] overlayfs: missing 'lowerdir'
[  239.546341][T10797] FAULT_INJECTION: forcing a failure.
[  239.546341][T10797] name failslab, interval 1, probability 0, space 0, times 0
[  239.554770][T10797] CPU: 3 UID: 0 PID: 10797 Comm: syz.0.1436 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  239.557853][T10797] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  239.560881][T10797] Call Trace:
[  239.561797][T10797]  <TASK>
[  239.562754][T10797]  dump_stack_lvl+0x16c/0x1f0
[  239.564122][T10797]  should_fail_ex+0x497/0x5b0
[  239.565492][T10797]  ? fs_reclaim_acquire+0xae/0x150
[  239.566973][T10797]  should_failslab+0xc2/0x120
[  239.568335][T10797]  __kmalloc_noprof+0xce/0x4f0
[  239.569728][T10797]  ? trace_lock_acquire+0x14e/0x1f0
[  239.571226][T10797]  ? ovl_cache_entry_new+0x38/0x700
[  239.572720][T10797]  ovl_cache_entry_new+0x38/0x700
[  239.574175][T10797]  ovl_fill_merge+0x5ee/0xa80
[  239.575565][T10797]  offset_readdir+0x6df/0xaa0
[  239.576928][T10797]  ? rwsem_read_trylock+0x12d/0x250
[  239.578437][T10797]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  239.579995][T10797]  ? iterate_dir+0x424/0xb40
[  239.581328][T10797]  ? __pfx_offset_readdir+0x10/0x10
[  239.582827][T10797]  ? down_read_killable+0xcc/0x380
[  239.584295][T10797]  ? __pfx_down_read_killable+0x10/0x10
[  239.585895][T10797]  ? apparmor_file_permission+0x251/0x400
[  239.587513][T10797]  iterate_dir+0x52f/0xb40
[  239.588808][T10797]  ovl_dir_read_merged+0x21d/0x5d0
[  239.590315][T10797]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[  239.591900][T10797]  ? __pfx_ovl_fill_merge+0x10/0x10
[  239.593393][T10797]  ? kasan_save_track+0x14/0x30
[  239.594822][T10797]  ovl_iterate+0x865/0xe40
[  239.596107][T10797]  ? down_read_killable+0xcc/0x380
[  239.597604][T10797]  ? __pfx_down_read_killable+0x10/0x10
[  239.599203][T10797]  ? __pfx_ovl_iterate+0x10/0x10
[  239.600623][T10797]  wrap_directory_iterator+0x9f/0xe0
[  239.602132][T10797]  iterate_dir+0x52f/0xb40
[  239.603430][T10797]  __ia32_compat_sys_getdents+0x148/0x2c0
[  239.605075][T10797]  ? __pfx___ia32_compat_sys_getdents+0x10/0x10
[  239.606864][T10797]  ? __pfx_compat_filldir+0x10/0x10
[  239.608350][T10797]  __do_fast_syscall_32+0x73/0x120
[  239.609833][T10797]  do_fast_syscall_32+0x32/0x80
[  239.611242][T10797]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  239.613058][T10797] RIP: 0023:0xf7fcf579
[  239.614243][T10797] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  239.619752][T10797] RSP: 002b:00000000f512655c EFLAGS: 00000296 ORIG_RAX: 000000000000008d
[  239.622112][T10797] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000100
[  239.624364][T10797] RDX: 00000000000000d4 RSI: 0000000000000000 RDI: 0000000000000000
[  239.626649][T10797] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  239.629069][T10797] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  239.631337][T10797] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  239.633619][T10797]  </TASK>
[  239.639065][T10800] bond2: entered promiscuous mode
[  239.640920][T10800] bond2: entered allmulticast mode
[  239.644973][T10800] 8021q: adding VLAN 0 to HW filter on device bond2
[  239.726629][T10804] rtc_cmos 00:05: Alarms can be up to one day in the future
[  239.778610][T10800] bond2 (unregistering): Released all slaves
[  239.877453][T10811] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1437'.
[  240.505803][T10803] rtc_cmos 00:05: Alarms can be up to one day in the future
[  240.940703][T10834] netlink: 'syz.0.1443': attribute type 1 has an invalid length.
[  240.954629][T10834] bond1: (slave geneve2): making interface the new active one
[  240.957184][T10834] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  241.089098][T10844] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1446'.
[  241.162114][   T25] rtc_cmos 00:05: Alarms can be up to one day in the future
[  241.165943][   T25] rtc_cmos 00:05: Alarms can be up to one day in the future
[  241.169822][   T25] rtc_cmos 00:05: Alarms can be up to one day in the future
[  241.174371][   T25] rtc_cmos 00:05: Alarms can be up to one day in the future
[  241.177211][   T25] rtc rtc0: __rtc_set_alarm: err=-22
[  242.161719][ T5947] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  242.321695][ T5947] usb 5-1: Using ep0 maxpacket: 16
[  242.333018][ T5947] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  242.336639][ T5947] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  242.339400][ T5947] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  242.351734][ T5947] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  242.354766][ T5947] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  242.359573][ T5947] usb 5-1: config 0 descriptor??
[  242.597409][T10879] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1455'.
[  242.768717][ T5947] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  242.770799][ T5947] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  242.775362][ T5947] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  242.777374][ T5947] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  242.779365][ T5947] shield 0003:0955:7214.0004: unknown main item tag 0x0
[  242.783117][ T5947] input: HID 0955:7214 Haptics as /devices/virtual/input/input27
[  242.805773][ T5947] shield 0003:0955:7214.0004: Registered Thunderstrike controller
[  242.808650][ T5947] shield 0003:0955:7214.0004: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.0-1/input0
[  242.953668][T10888] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1458'.
[  242.968949][    T9] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  242.969035][ T6549] usb 5-1: USB disconnect, device number 34
[  242.972879][    T9] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  242.972942][    T9] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  242.972963][    T9] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  243.514127][T10900] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  243.517193][T10899] tipc: Disabling bearer <eth:syzkaller0>
[  244.093681][T10916] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  244.396601][T10925] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1470'.
[  244.952487][T10952] 
[  244.953232][T10952] =============================
[  244.954650][T10952] [ BUG: Invalid wait context ]
[  244.956059][T10952] 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0 Not tainted
[  244.959434][T10952] -----------------------------
[  244.961826][T10952] syz.3.1473/10952 is trying to lock:
[  244.963363][T10952] ffff888024ea2e58 (&sighand->siglock){-.-.}-{3:3}, at: __lock_task_sighand+0xc2/0x340
[  244.966067][T10952] other info that might help us debug this:
[  244.967758][T10952] context-{5:5}
[  244.968775][T10952] 4 locks held by syz.3.1473/10952:
[  244.970222][T10952]  #0: ffff8880615fc0a8 (&ctx->uring_lock){+.+.}-{4:4}, at: io_handle_tw_list+0x27c/0x540
[  244.973007][T10952]  #1: ffff8880119628c0 (&acct->lock){+.+.}-{2:2}, at: io_wq_enqueue+0x20a/0xb30
[  244.975615][T10952]  #2: ffffffff8ddbad40 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1c2/0x590
[  244.978271][T10952]  #3: ffffffff8ddbad40 (rcu_read_lock){....}-{1:3}, at: __lock_task_sighand+0x3f/0x340
[  244.981009][T10952] stack backtrace:
[  244.982080][T10952] CPU: 2 UID: 0 PID: 10952 Comm: syz.3.1473 Not tainted 6.13.0-rc7-syzkaller-00160-gad26fc09dabf #0
[  244.985095][T10952] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  244.988111][T10952] Call Trace:
[  244.989077][T10952]  <TASK>
[  244.989931][T10952]  dump_stack_lvl+0x116/0x1f0
[  244.991293][T10952]  __lock_acquire+0x878/0x3c40
[  244.992654][T10952]  ? __pfx___lock_acquire+0x10/0x10
[  244.994149][T10952]  ? __pfx___lock_acquire+0x10/0x10
[  244.995611][T10952]  ? hlock_class+0x4e/0x130
[  244.996921][T10952]  ? mark_lock+0xb5/0xc60
[  244.998167][T10952]  lock_acquire.part.0+0x11b/0x380
[  244.999630][T10952]  ? __lock_task_sighand+0xc2/0x340
[  245.001118][T10952]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  245.002731][T10952]  ? rcu_is_watching+0x12/0xc0
[  245.004124][T10952]  ? trace_lock_acquire+0x14e/0x1f0
[  245.005609][T10952]  ? trace_lock_acquire+0x14e/0x1f0
[  245.007112][T10952]  ? __lock_task_sighand+0xc2/0x340
[  245.008615][T10952]  ? lock_acquire+0x2f/0xb0
[  245.009924][T10952]  ? __lock_task_sighand+0xc2/0x340
[  245.011428][T10952]  _raw_spin_lock_irqsave+0x3a/0x60
[  245.012930][T10952]  ? __lock_task_sighand+0xc2/0x340
[  245.014461][T10952]  __lock_task_sighand+0xc2/0x340
[  245.015886][T10952]  group_send_sig_info+0x290/0x300
[  245.017302][T10952]  ? __pfx_group_send_sig_info+0x10/0x10
[  245.018844][T10952]  ? __pfx___lock_acquire+0x10/0x10
[  245.020255][T10952]  ? mark_lock+0xb5/0xc60
[  245.021448][T10952]  bpf_send_signal_common+0x415/0x520
[  245.022955][T10952]  ? __pfx_bpf_send_signal_common+0x10/0x10
[  245.024579][T10952]  ? trace_lock_acquire+0x14e/0x1f0
[  245.026057][T10952]  ? find_held_lock+0x2d/0x110
[  245.027437][T10952]  ? bpf_trace_run2+0x1c2/0x590
[  245.028853][T10952]  bpf_send_signal+0x1d/0x30
[  245.030161][T10952]  bpf_prog_631417f49dd64198+0x25/0x48
[  245.031683][T10952]  bpf_trace_run2+0x231/0x590
[  245.033000][T10952]  ? __pfx_bpf_trace_run2+0x10/0x10
[  245.034455][T10952]  ? hlock_class+0x4e/0x130
[  245.035770][T10952]  trace_contention_end.constprop.0+0xf0/0x170
[  245.037524][T10952]  __pv_queued_spin_lock_slowpath+0x27e/0xc90
[  245.039271][T10952]  ? mark_lock+0xa70/0xc60
[  245.040512][T10952]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  245.042369][T10952]  ? lock_acquire.part.0+0x11b/0x380
[  245.043776][T10952]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  245.045312][T10952]  do_raw_spin_lock+0x210/0x2c0
[  245.046684][T10952]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  245.048181][T10952]  ? lock_acquire+0x2f/0xb0
[  245.049473][T10952]  ? io_wq_enqueue+0x20a/0xb30
[  245.050816][T10952]  io_wq_enqueue+0x20a/0xb30
[  245.052137][T10952]  ? io_arm_poll_handler+0x133/0xc60
[  245.053602][T10952]  ? __pfx_io_wq_enqueue+0x10/0x10
[  245.055087][T10952]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  245.056739][T10952]  ? io_prep_async_work+0x50e/0x770
[  245.058215][T10952]  io_queue_iowq+0x28b/0x5c0
[  245.059477][T10952]  io_queue_async+0x1e7/0x420
[  245.060795][T10952]  io_req_task_submit+0x1c8/0x1f0
[  245.062246][T10952]  ? __pfx_io_req_task_submit+0x10/0x10
[  245.063833][T10952]  io_handle_tw_list+0x4c3/0x540
[  245.065249][T10952]  ? __pfx_io_handle_tw_list+0x10/0x10
[  245.066810][T10952]  ? lock_acquire.part.0+0x11b/0x380
[  245.068318][T10952]  ? find_held_lock+0x2d/0x110
[  245.069700][T10952]  tctx_task_work_run+0xac/0x390
[  245.071133][T10952]  tctx_task_work+0x7b/0xd0
[  245.072439][T10952]  ? __pfx_tctx_task_work+0x10/0x10
[  245.073929][T10952]  ? _raw_spin_unlock_irq+0x23/0x50
[  245.075444][T10952]  ? lockdep_hardirqs_on+0x7c/0x110
[  245.076929][T10952]  task_work_run+0x14e/0x250
[  245.078270][T10952]  ? __pfx_task_work_run+0x10/0x10
[  245.079750][T10952]  get_signal+0x1d3/0x2610
[  245.081039][T10952]  ? __pfx_get_signal+0x10/0x10
[  245.082445][T10952]  ? fput+0x67/0x440
[  245.083577][T10952]  ? __do_sys_io_uring_enter+0x5fb/0x1620
[  245.085225][T10952]  arch_do_signal_or_restart+0x90/0x7e0
[  245.086818][T10952]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  245.088586][T10952]  ? fput+0x67/0x440
[  245.089717][T10952]  syscall_exit_to_user_mode+0x150/0x2a0
[  245.091347][T10952]  __do_fast_syscall_32+0x80/0x120
[  245.092821][T10952]  do_fast_syscall_32+0x32/0x80
[  245.094228][T10952]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  245.096064][T10952] RIP: 0023:0xf714e579
[  245.097234][T10952] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  245.102649][T10952] RSP: 002b:00000000f511f55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  245.105057][T10952] RAX: 0000000000000100 RBX: 0000000000000009 RCX: 00000000000047ba
[  245.107348][T10952] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  245.109597][T10952] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  245.111859][T10952] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  245.114102][T10952] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  245.116380][T10952]  </TASK>
[  245.241726][   T25] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  245.401734][   T25] usb 5-1: Using ep0 maxpacket: 16
[  245.404659][   T25] usb 5-1: unable to read config index 0 descriptor/start: -61
[  245.406917][   T25] usb 5-1: can't read configurations, error -61
[  245.541749][   T25] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  245.701756][   T25] usb 5-1: Using ep0 maxpacket: 16
[  245.704757][   T25] usb 5-1: unable to read config index 0 descriptor/start: -61
[  245.706949][   T25] usb 5-1: can't read configurations, error -61
[  245.708875][   T25] usb usb5-port1: attempt power cycle
[  246.041745][   T25] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  246.062166][   T25] usb 5-1: Using ep0 maxpacket: 16
[  246.065634][   T25] usb 5-1: unable to read config index 0 descriptor/start: -61
[  246.068598][   T25] usb 5-1: can't read configurations, error -61
[  246.191781][   T25] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  246.212227][   T25] usb 5-1: Using ep0 maxpacket: 16
[  246.215913][   T25] usb 5-1: unable to read config index 0 descriptor/start: -61
[  246.218957][   T25] usb 5-1: can't read configurations, error -61
[  246.221668][   T25] usb usb5-port1: unable to enumerate USB device

VM DIAGNOSIS:
02:58:55  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080000000 RBX=ffffc900298efe90 RCX=ffffffff822404b2 RDX=ffff88802116a440
RSI=ffffffff822404f6 RDI=0000000000000005 RBP=00007ffec7945e18 RSP=ffffc900298efc50
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=000000000000000b R13=00007ffffffff000 R14=00007ffec7945db8 R15=ffff88802276ec40
RIP=ffffffff81994e53 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f7f62a92280 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f509fda4 CR3=0000000027ee2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000004080 Opmask01=0000000000000000 Opmask02=000000000000ffdf Opmask03=0840000404420020
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffec7945c40 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 346647fd0ad43a7c 73732525209a6d78
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373e2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000031 0000000000000000 44455a494c414954 494e495f43455355
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000231 00000000302e7465 676461672d776172 2f73726576697264
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4715348e79a7490f 0000000565336dab 00000000000000b1 000000000000302e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000245c1 0000565600305f65 6b69727473726564 6e7568742f796c70
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000007ff0 000000000000007c 43052f5d76257ffe 2c3d565f3fde73fd
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a263b383a3a263a 383a3a26493b3a3a 26483b3a3a264b3b 3a0a00307f617930
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000030 0000000000000030 47152f30004e490f 000052454c411e0b
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000030 0000000000000030 00002f30004e490f 000052454c411e0b
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88802b646720 RCX=ffffffff818d54cc RDX=ffff888024fa8000
RSI=ffffffff818d54a6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc900282f7a40
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffed10056c8ce5 R13=0000000000000001 R14=ffff88802b646728 R15=ffff88802b53ff80
RIP=ffffffff818d54ad RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2abcad CR3=0000000067430000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85146355 RDI=ffffffff9a66a200 RBP=ffffffff9a66a1c0 RSP=ffffc90029626dd8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002e R14=ffffffff851462f0 R15=0000000000000000
RIP=ffffffff8514637f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f511fda4 CR3=0000000072816000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e9cbae650cc95630 8ec07015ace072d0
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 563563867790f31a ef192d05e3e4894a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 590facfbae230bbb 7e2cab4df12d3c25
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f739442dead74d3 05b8730110d0c975
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000006bc0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000076009549cf aaf40000d48c0000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 009546c100954afe e7d73493346f4ea1
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000060684e0000 bf3f00008f740000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 410d0000d6e3120f 00954fe399620000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 192643851ebe373a 82bf7fefa80cdec2
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 997a079f13cbc9b2 3345c86d76263f06
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000003 RCX=1ffffffff203a56a RDX=ffff8880215da440
RSI=ffffffff81484a84 RDI=ffffffff81484a71 RBP=ffff8880119628a8 RSP=ffffc90026ac7be8
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff901cf857 R11=0000000000000b8f
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b73fc40 R15=ffffed100232c515
RIP=ffffffff81484a86 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7496188 CR3=0000000072816000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000081ff9000 Opmask01=000000000000003f Opmask02=000000000037ffbf Opmask03=2040000404420020
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffec7945200 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffff0f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00204b4e494c0020
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff000000ff000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff00000000 ffffffff00000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff000000ff000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffff000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a2a2a2a 2a2a2a2a2a2a2a2a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a5e444f 5c4f5f0504040519
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000565300302e74 65676461672d7761 7200524556495244
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000565300302e74 65676461672d7761 723d524556495244
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005653000d1349 585a595c5a104a5c 4f00524556495244
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 000000000000302e 7465676461672f30
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7075735f7265776f 702f343030302e34 3132373a35353930 3a333030302f302e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000560031327075 656b61772f305f65 6b69727473726564 6e7568742f796c70
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000565336daa350 0000565336daa2d0 0000565336dbcba0 0000565336dbcb20
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a263b383a3a263a 383a3a26493b3a3a 26483b3a3a264b3b 3a0a00307f617930
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000