last executing test programs:

6m42.276176717s ago: executing program 3 (id=880):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_PMK(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)={0x14, r2, 0xd03, 0x70bd2c, 0x25dfdbff, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x24008001}, 0x800)

6m42.275957233s ago: executing program 3 (id=881):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
socket$vsock_stream(0x28, 0x1, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket(0x10, 0x803, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32=r3, @ANYBLOB="200001"], 0x38}}, 0x0) (fail_nth: 1)

6m42.174641618s ago: executing program 3 (id=882):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) (async)
r0 = socket(0x40000000015, 0x5, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x4000040, &(0x7f0000000000)={0xa, 0x4e20, 0x8, @mcast2, 0x20000092}, 0x1c) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) (async)
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

6m41.927435629s ago: executing program 3 (id=883):
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, &(0x7f0000000000)={'\x00', 0x5, 0x7ffffffe, 0x1, 0xfffffffffffffffd, 0x101, <r0=>0x0})
r1 = syz_open_procfs(r0, &(0x7f0000000040)='net/mcfilter6\x00')
r2 = socket(0x80000000000000a, 0x2, 0x0)
r3 = getpid()
syz_pidfd_open(r3, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={r4, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xd4}, 0x9c)
getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={r4, 0x2}, &(0x7f0000000340)=0x8)
socket$inet_mptcp(0x2, 0x1, 0x106)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={<r5=>0xffffffffffffffff})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4048aecb, &(0x7f0000000080))
sched_setscheduler(r3, 0x1, &(0x7f00000000c0)=0xd)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x5}}, {{0xa, 0x4e1d, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x4e28, 0x0, @mcast2, 0x900}}, {{0xa, 0x4e21, 0x7, @loopback}}}, 0x104)
r9 = syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500)=<r12=>0x0)
io_submit(r12, 0x2, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0, r10}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4, 0x6, r11, &(0x7f0000000440)="5476ba49b852eb582d5b1921b5cf1b6cba43431c1b2a4f1537aba543592bb1e43b573803fd23f1dd54440d070e789f2df7992fba5dbdb5f419e283b0803a8f1212508267c6ed8b1c664df2b906e82802ad289ddf9028934c2717b417dae7ef12e383837d8c8768e211b4c58a662e203c9ad876bebc930daa45c7d315bd1c35302de60ac77fb2513766725d05e7a581345045d74878f972f49d319a56542888015e4c6c2c9b41f6f69993796a88ffe95b631422de", 0xb4, 0x1}])
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r13 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
read$FUSE(r13, &(0x7f0000006180)={0x2020, 0x0, 0x0, <r14=>0x0, <r15=>0x0}, 0x2020)
syz_fuse_handle_req(r13, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0xfffffffffffffffe, 0x9, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x120, 0x2000, 0x0, r14, r15, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
getgroups(0xa, &(0x7f0000000100)=[0xee00, 0x0, <r16=>0xee00, 0xee00, 0xee01, 0xee01, 0x0, 0xee01, 0xffffffffffffffff, 0x0])
setsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000140)={r9, r14, r16}, 0xc)
preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000640)=""/134, 0x86}], 0x1, 0x95, 0x10000)

6m41.677312142s ago: executing program 3 (id=885):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x101800, 0x110)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000000)={0x1, [0xffff]}, 0x6)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
fstat(r0, &(0x7f0000000300))
ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f0000000100)=@arm64_extra={0x603000000013c035, &(0x7f00000000c0)=0x8})
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000000))

6m41.663381885s ago: executing program 3 (id=887):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0xe, 0x9, 0x2036315a, 0x2, 0x5, [{0xbe2, 0x22a4}, {0xff, 0x7}, {0x7, 0x1}, {0x9, 0x10001}, {0x5, 0x3}, {0x1, 0x3}, {0x8, 0xff}, {0x7ff, 0x6}], 0x1, 0x1f, 0x8, 0x2, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRES64], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0)
read$msr(r1, &(0x7f0000019540)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = getegid()
fchown(r1, 0x0, r3)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
syz_open_dev$usbfs(&(0x7f0000000480), 0x10, 0x141341)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
r4 = socket(0x10, 0x80002, 0x0)
connect$inet6(r4, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="440000001300290afffffffffffffffd07000000", @ANYBLOB="159cb077e11b30781c8863c1df01d5bcf5963bbcb2acebff3c995f7bba012779c2eef02f71952806b92af4c21c7ec704a50bcb81e1595713c296a4cbac383795a5e0282dce61f11b82735b238bc4cf6127b7a7d5e99674f1297af857097c0f204ee808ee6e67848ea43482891adfd62c06eb2c1016d15fe0a01f144223db57c6a14a8d9b038ee53eb5cd38df80a20286b5c391685537639741d7d8bd003d19dc8acfaf52344a58e3", @ANYRES8=r4], 0x44}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r5, &(0x7f0000000340)=ANY=[], 0xff2e)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={&(0x7f0000000280)="e8fd532b883d6453eb5d28f6b2ea3723149b193dc83867d43dacc6e667905487fd4ce22ce7eebc62695cf4ac5b9e1bad3e0f38bcccc436757605eab36b197c946d7dcacc8e4de3a8f37c8b2c668e8be7b9860fe847b00eda57ff133181c64ad21b2a35d906ebef73e82d9f95c2c2cb15bd8dfd", &(0x7f0000000380)=""/185, &(0x7f0000000600)="1a2df760c3af87191bfa0394d6eeb33b7721f50ac89edc1889569ffe7ca85fe4619436e88c4a8302b065e82709c3274c3ef24f562fd9d236de57e7778cb318d4539b5fa9f086e7a3327723db80f117a36e51f9dee8e2d50e384c37bc32ac52aab9bce6b11c1d8a03b7d8ffcf74e9c770c8309322b189707bd716cd305c065bf04ad13cd38c50d8d802b545eea0d9ea1e2295dbd317df8dffadccb4523fe43a3d81d11a1f2de38f2d91aa3a8cb0415543a531558a9c13dda1dd230e32d21acd783abcd44d7bb35dd11a67ff5d1652d17905ea286838515b140f80508252df4cfe2adf226d3e66", &(0x7f0000000700)="a0eb721760600fa158f7286a08aaf1bdb1d26ea548b17414a95197339be324e539cc6fac381c4aa840f822913970bc864329e43bee8192f0aa802bb912533c0b373c1080b18e3ef1c50efc209f7f1ab418a6e8889ea4081968be87c610e811e9c04f00b3435b3c5362f6053e481f57922a0ef57260860972fbd1edbf77c1f57573282a3c8ebc35682be56eeb3057a09d6f963b2f5871dcdc2bc776c67ddbca7accef8b870f56af7cef21ee3620c52553c799858e622d0a9fe4f659e74616047a736725e837f10b25f755d92e769940b39e303424af735ed10eb8e938fa6c2c6b6874490de10b47a14bb28059a77ddb816227b019661375", 0xfff}, 0x38)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000300)={'batadv_slave_1\x00'})
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100)=0x80001a)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffb, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r7 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r7, &(0x7f0000000000)={0xa, 0x0, 0x1, @empty, 0x0, 0x3}, 0x20)
connect$l2tp6(r4, &(0x7f0000000f40)={0xa, 0x0, 0x10000, @empty, 0x24c9}, 0x20)

6m26.415995682s ago: executing program 32 (id=887):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0xe, 0x9, 0x2036315a, 0x2, 0x5, [{0xbe2, 0x22a4}, {0xff, 0x7}, {0x7, 0x1}, {0x9, 0x10001}, {0x5, 0x3}, {0x1, 0x3}, {0x8, 0xff}, {0x7ff, 0x6}], 0x1, 0x1f, 0x8, 0x2, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRES64], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0)
read$msr(r1, &(0x7f0000019540)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = getegid()
fchown(r1, 0x0, r3)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
syz_open_dev$usbfs(&(0x7f0000000480), 0x10, 0x141341)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00'})
r4 = socket(0x10, 0x80002, 0x0)
connect$inet6(r4, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="440000001300290afffffffffffffffd07000000", @ANYBLOB="159cb077e11b30781c8863c1df01d5bcf5963bbcb2acebff3c995f7bba012779c2eef02f71952806b92af4c21c7ec704a50bcb81e1595713c296a4cbac383795a5e0282dce61f11b82735b238bc4cf6127b7a7d5e99674f1297af857097c0f204ee808ee6e67848ea43482891adfd62c06eb2c1016d15fe0a01f144223db57c6a14a8d9b038ee53eb5cd38df80a20286b5c391685537639741d7d8bd003d19dc8acfaf52344a58e3", @ANYRES8=r4], 0x44}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r5, &(0x7f0000000340)=ANY=[], 0xff2e)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={&(0x7f0000000280)="e8fd532b883d6453eb5d28f6b2ea3723149b193dc83867d43dacc6e667905487fd4ce22ce7eebc62695cf4ac5b9e1bad3e0f38bcccc436757605eab36b197c946d7dcacc8e4de3a8f37c8b2c668e8be7b9860fe847b00eda57ff133181c64ad21b2a35d906ebef73e82d9f95c2c2cb15bd8dfd", &(0x7f0000000380)=""/185, &(0x7f0000000600)="1a2df760c3af87191bfa0394d6eeb33b7721f50ac89edc1889569ffe7ca85fe4619436e88c4a8302b065e82709c3274c3ef24f562fd9d236de57e7778cb318d4539b5fa9f086e7a3327723db80f117a36e51f9dee8e2d50e384c37bc32ac52aab9bce6b11c1d8a03b7d8ffcf74e9c770c8309322b189707bd716cd305c065bf04ad13cd38c50d8d802b545eea0d9ea1e2295dbd317df8dffadccb4523fe43a3d81d11a1f2de38f2d91aa3a8cb0415543a531558a9c13dda1dd230e32d21acd783abcd44d7bb35dd11a67ff5d1652d17905ea286838515b140f80508252df4cfe2adf226d3e66", &(0x7f0000000700)="a0eb721760600fa158f7286a08aaf1bdb1d26ea548b17414a95197339be324e539cc6fac381c4aa840f822913970bc864329e43bee8192f0aa802bb912533c0b373c1080b18e3ef1c50efc209f7f1ab418a6e8889ea4081968be87c610e811e9c04f00b3435b3c5362f6053e481f57922a0ef57260860972fbd1edbf77c1f57573282a3c8ebc35682be56eeb3057a09d6f963b2f5871dcdc2bc776c67ddbca7accef8b870f56af7cef21ee3620c52553c799858e622d0a9fe4f659e74616047a736725e837f10b25f755d92e769940b39e303424af735ed10eb8e938fa6c2c6b6874490de10b47a14bb28059a77ddb816227b019661375", 0xfff}, 0x38)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000300)={'batadv_slave_1\x00'})
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100)=0x80001a)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffb, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
r7 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r7, &(0x7f0000000000)={0xa, 0x0, 0x1, @empty, 0x0, 0x3}, 0x20)
connect$l2tp6(r4, &(0x7f0000000f40)={0xa, 0x0, 0x10000, @empty, 0x24c9}, 0x20)

4m57.324272239s ago: executing program 4 (id=1633):
syz_emit_ethernet(0x4e, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x67, 0x0, @rand_addr, @broadcast}, @time_exceeded={0x21, 0x0, 0x0, 0x12, 0x0, 0x2802, {0x9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @rand_addr, {[@rr={0x7, 0xf, 0x0, [@loopback, @dev, @rand_addr]}]}}}}}}}, 0x0)

4m57.266268441s ago: executing program 4 (id=1634):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x3, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x18, 0x27}}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x94)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
bpf$ITER_CREATE(0x22, &(0x7f0000000040), 0x8)

4m57.186339365s ago: executing program 4 (id=1637):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newlink={0x40, 0x10, 0x1, 0x70bd29, 0x259fdbfb, {0x0, 0x0, 0x0, 0x0, 0x1438a}, [@IFLA_IFNAME={0x14, 0x3, 'wlan0\x00'}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000884}, 0x0)

4m57.17576405s ago: executing program 4 (id=1639):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000300)='devpts\x00', 0x2, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xa06006, 0x0)

4m57.115829413s ago: executing program 4 (id=1641):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xa0}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[], 0x6c}}, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r1, @ANYBLOB="14000100"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

4m56.836438835s ago: executing program 4 (id=1650):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000040)=ANY=[@ANYBLOB="050000000000000073114a00000000008510000002000000850000009500000095000000000000009500752552ec144aa0a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

4m56.779024681s ago: executing program 33 (id=1650):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000040)=ANY=[@ANYBLOB="050000000000000073114a00000000008510000002000000850000009500000095000000000000009500752552ec144aa0a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

8.793793442s ago: executing program 1 (id=4076):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0xc, 0x8001, 0x0, 0x9, 0x4f, 0x8, 0xfa11, 0x1}, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x50, 0x0, &(0x7f0000000040)=0x54)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x1}, 0x2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
r2 = io_uring_setup(0x76fc, &(0x7f0000000340)={0x0, 0xafd4, 0x1000, 0x5, 0x2d2})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f0000000540)=[{0x0}], 0x1)
r3 = io_uring_setup(0x7625, &(0x7f0000000600)={0x0, 0x653f, 0x10000, 0x0, 0x28e, 0x0, r2})
io_uring_register$IORING_REGISTER_FILES(r3, 0x1e, &(0x7f0000000000)=[r2], 0x1)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006000000000000000000380000000000000000191bda000020"], 0x69)
close(0xffffffffffffffff)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x2000, 0x4, &(0x7f0000636000/0x2000)=nil)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
kexec_load(0x0, 0x0, 0x0, 0x0)
r4 = socket(0x40000000015, 0x5, 0x0)
getsockopt$sock_buf(r4, 0x1, 0x21, 0x0, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00'})
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

7.919900764s ago: executing program 1 (id=4079):
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010026bd7000fbdbdf251900005f338895357ecaa9e789240008000300ef0654e7f137d09422e834120ed68b6f74eadad4f724b7839fa1e25f8ee1c5f69f50af6c1b8805df795d2ebdf81309a30a12fbd8cbe53eafc2e6d0c27618944dc0ee417305516d763981a2bbc66c4455499781191ebc73a4edff5999c1de2d108e244415c991c28ebe00fde884ed9af790ee97b5cb8b", @ANYRES32=r1, @ANYBLOB="06006d0004000000"], 0x24}, 0x1, 0x0, 0x0, 0x60000}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x8abb29e09f442f35, 0xffffffffffffffff, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {0x8000}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200), 0xa2442, 0x0)
ioctl$SNDCTL_DSP_SYNC(r7, 0x5001, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@mask_fadd={0x58, 0x114, 0x8, {{0xf, 0x1}, 0x0, 0x0, 0x5, 0xfffffffffffffffe, 0x7, 0x3, 0x28, 0x5}}], 0x58}, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000200)={0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x3, 0x62})
r8 = socket$netlink(0x10, 0x3, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8b34, &(0x7f0000000000)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000340)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$sock_ifreq(0xffffffffffffffff, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
r9 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r9, &(0x7f00000002c0)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x40)
connect$rose(r9, &(0x7f00000001c0)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x40)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)

6.587378319s ago: executing program 1 (id=4085):
creat(&(0x7f0000000080)='./bus\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mknod$loop(0x0, 0xfff, 0x0)
write$binfmt_register(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x802, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x4, 0x4, 0x221, 0xc1, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000001280), 0xb47, r3}, 0x38)
sendmmsg$inet6(r2, &(0x7f0000002940), 0x40000000000017d, 0x811)

4.633248747s ago: executing program 1 (id=4094):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000140)='X\x00', 0x2}], 0x1)
pselect6(0x40, &(0x7f0000000600)={0x11, 0xfffffffffffffffc, 0x6, 0x0, 0xfffffffffffffffe, 0x0, 0x4, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x4)
splice(r1, 0x0, r3, 0x0, 0x80000001, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="0000000000004a641c0012000c000100626f6e64000000000c"], 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff0000000001000000000000d7", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800a000100767863616e0000000400028008000a00", @ANYRES32=r6, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x1, 0x803, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000030425bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="0005000000000000140012800b00010067726574617000000400028008000a00", @ANYRES32=r9, @ANYBLOB="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"], 0x3c}, 0x1, 0x0, 0x0, 0x24000804}, 0x8000)
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket(0x1, 0x803, 0x0)
getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_BC_QUEUE_LEN={0x8, 0x7, 0xe}]}}}, @IFLA_LINK={0x8, 0x5, r12}, @IFLA_MASTER={0x8, 0xa, r12}]}, 0x4c}}, 0x4000001)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r4, 0x0, 0x41, &(0x7f00000000c0)={'nat\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x74)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="040e060b7c0c"], 0x9)
syz_usb_connect(0x1, 0x3d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x9)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x4, 0x10, 0x0, 0x7fff7ffc}]})

4.293778575s ago: executing program 0 (id=4098):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x5, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffdf}, 0x0)
connect$unix(r2, 0x0, 0xffffffffffffff16)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
write$sndseq(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
r3 = openat$fuse(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f0000002140)={0x2020, 0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x5, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3, 0x6, 0xffff, 0x1000, 0xfffffffffffffffc, 0x0, 0x0, 0x120, 0x2000, 0x0, 0x0, 0x0, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r4, &(0x7f0000000440)={0x50, 0x0, r5, {0x7, 0x29, 0x0, 0x14c0348, 0x40, 0x1, 0xfffffff1, 0x0, 0x0, 0x0, 0x80, 0x7fffffff}}, 0x50)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000d80)=ANY=[])
read$FUSE(r6, &(0x7f000000e280)={0x2020, 0x0, 0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
syz_fuse_handle_req(r6, &(0x7f0000002140)="897c6500ff3035465c7acb4e06980b05687c1480c7aafe631c0543db2bf0d6f539506e8782da06c1ca018774d72e9e5a3418ab66ee78dad68457b17ec9d47bf7d8272d607c1c0a4bd906f0cee7f8451828d2458596bdd6a459ba18ebaf61b38f5d66c27fa8a024ad7832a85e58689a4c254c94cbcf7208fce6e61d9566459789d15a6f91dd7db7c54cc3a94da956fb290a8a15f849270bc459d9d9f47801be86dd5c9d18382081a993b7bfde5c28adca4c71329afd6be743b0e6243b5859891703eb65fa256d6f47450b6edacbd05a9bd8b372e90cfc30f32826566dac6c48e6ef001881cbc30482f9ec469e476a101da496b8c0785eaf875d3608b0c49e9d39baaa1041f903a805f0f24aa63722fa2d87b98595fa5cfaf8b79c458de43ee39904e7cac7540a934b4108957785d58807abff186949f1b94cd21b724aff34ac45c7066dcdbd68ea7b766af9d045cd7fafeafc5c5a0c3400ef4e0c71a6fdd5b8d68a6f317644cda9d2fd2c839a82b97b3d909b54c672227bef573c9de1991d65a63017f724d1f7f1575e69db53318a7fd7065b303e751518c8eef04f642dbd4dfa349040a7b5401050ffc2b4ef62803a7c8eaba99e011dfac24d81b2b61e0b0581e53bf520f623eca17f0545c5e59ff15b527475f970f589894ae589145fa4283f7225088ccfeba1d72e9128f8c223ae1840f2edae3dbcdf7e560d5cdf4f71c9ada1931c0f8312c000101b264aaddb9fab166ba8d8903d6098eca20935ca607ea79e936798b3dfb22a7e159abb234cf21f3733dbf263a8ff116092f251659108892b2e21e1b428fd225096a5040270b2d70347013eaa1fd8e452942200283aab092c4ffc5b8b427b5d691a5a773e09da20539ff0f8214331c5d84107ae8a59aeb58efe22d7a079e446f1dfb07510377799bfdc7ee59cabcd76af0fe8a427ac8258ff33bbad5a8061f1cfdfbf375d73d676cc7916d6658ce46a0b17ad6350150f98e3512b513e25ca73f5f5df0a1fb9582ace7906c493fe1fd2889d9aac0b7c29c2b6c205537627bad64df433336a5ace32ca871e51b4dab0fbb008864efa81a98b74de0a26cebf65723515ebb807fc3c161ed42d1a7b6b55717613577ea437f3a2967c66ce45ff85a6a35b7cd40625fc575b107d7394e3d2db51d58347276c33e21f50b5a6b5672bf9fda63139bb75aead1fe4ee9a4064af5a5958466aa39faa6d821489fa415224c8d69d3b5922236832c2b1e4f6b8863b32f9aea83fb522a2de081d674502b48f73ce6db98d84136059b4a6676bc85ac6b7626329afa9bc7d3f9f2caa3c4d872744e0a8e02d72a75c6c545b8ec8e15b6fb0fe4185bd0d154960e6fef05ba40e5fe2968eb1301dcc52a03337179e74ba1522af93d77827845f8941c69ed8bb84567e3c63f1cc378a542f1de7007b688ff0a9c69d5861f0b85402c30a2fd391c52bafbe65f8e82135fd38361d7c0b43c982b2f3e7cb09c40c7e215114f4243d670cd576bcd93c1e959345170c75d6c3cf89cf8c2c70dc792e646e7c649d4c5f36bb016c7acd466ad58473d40dfef36394e581065a8581ab852250403cf372ac0065bf757fa3f445424ac0d82aec1938a2ea116bdfd306baa1cb06c62a4a97d66ab1b9489469cb8ba842da12e310caed02c5ef05c0be1e1e8c9c8b87d6871c94c57d164d08672b205c948086a06a545b266b7ad902a908681eb188bc51b6190b5cb9d8ca59b8c4c6e7369c00d6f6119fd5d437239e3d3c89cb81e09e560fb817590106015f08e7b09f1e1e65bfab3b8489fa058e24081978b9e25463d9945bfbca81c08885d4b6d4c62e217bd9e19460762f36c66bc948fe31cde089626fbb310e3c78a8d3f2eac21d374d9b58d887235d3a95721168e4b9475849071d60ecfe7ea5d6c4bf60da3747612ef59bb651270f326c0af31bc8c71361f851de34ccb3c8071b96f1128d7ee79b41246e566edd0272dbd3ccfe472b38e5e03d3ef83218bd498e6de8b4d92cb6f82716449ede7ba845028eccdb9137be8a622ac88ac53118fbc39637fa7a93cd3abc6f7671c7804420d66e94720acbcac916950f9baca77fef4217155ccc2cd0507339a0486f9f468eb28772986ee768c63eba671bf8c52e48a2a5dc2cc24fe925368706c2d712dd1064692b0fb2a32ddfbd4a0ffcf9c2abcedaae6e527bc1d42637aff2a275b76a7a7f010e42e1cc1d27141f6c3585a2bf58c6c5789ce61551d10118a000e3764631ec0b7f4b1a6f22a678133a30940b79dc76f863dd9f6e0d7776300898c97cef286c731c2050928c492439256e481652bff0d202db3cfdc54c9816ceea7895357bfa0362fad79afd09ed55189294d6ead7e898ac091cddbe7efcedb314bc02a18dd5bbddc42e089124758bb491fd1536aab27c5c124567bc325e7028bced5a179a011d1cb9a5ffb61d7af863e91ec8e60495561188b74d158ba1418228d44e92915a22eb1c166ef7d6179e84381ed950ffd747f13e24172942d922ca3109fb8b1e4e6264fa4a4eec75ad0d0e22579d90f45d6cd157300e38ae665eb56457202e25a8dd5877ba99725de288660badd2704345d9bad208c903ba27ea167dd45a77f77b6502b525b2973270582858183c784c324c1366fbba8d410c38bf75b41e067f6a9a017c56595161db4fc5639393fdafb1f148d3f416c1adc5fe1ab9cebe4689855c9b4bda6dcba5d5fa858a1b87d2ad23cdf54dbdf4d14aa4462da0b6f1107f4afa0091c2643508861a4d9f133ba77751941bb8fb756abf1a104205b80d47a3b4a59724d959c8b5833da4f56fb6613231f230a9378c9af741e94fd2c7213ac1d7625559b3f032f6c8df3ab441929720fe43d7c548cc661eed5b3c62b3c61f538ea3228376e2a18c6da2ad906322f64fb4865cde8e1889a8e5237fd6a39bbd6662f1dedc22fbd74e4376fa610cd710703dbd3924a38beae69783d1d5abf36122cbb87129ba719042748f060f4303a3199c5891c5040fd8cdb9761b006bf64cdcb65e5cc50a29994b8c1c34b83760ece12ed9ed7c392a7f8911cdf23a1afe0d7db1bf342aa0123dd5cd31339f5c8e160c4efef882602b3eccbe76fb690162b8bfb8a31910bcdf9a4a5dde76c2ac2fcd8678add7a000cfdcab398eb2171c026313eb6eb56b4b87bf8ef93f7f8a1c0bcc3775b681d4229ea561cb52281d8ba4315c3694ed08433596884d5a7ce3a8b1f82359846b7136726e2fe37bf4f7b7e2206cdcdb0705ced9f0dcaaa2ed3a78ea70d2cfeab668eb321400fc955e9aeb7bbcf86cd03f02dd443503a1480d9d9f899f53bd747a95293786798fc59fceb09e686a9328da4f929b6201841bbbefaffcf3386abdf69540e3b46a643ec10f0acf21f27c0053dc13f18485dbc898729dfbeaaa4887b58cd442d7ffa941808cd9658595be8650a815b088621278d89f0d8a4252566b923df3a3cd65c0e4af08fad385927251b31d35f75eaf25e6cf13a579aeeb0bcc0a14ca4a20a6831d532be0b2af3821792a2df95131b7fafef245aa19b214053342aa820c35858d13f84e496294529411015c41ed447b5b51dc44a45d52552a2be1abfc157f3ace7bfa32d5b931421d5a152dd66b7bf549311bff325e5a7201f793037b38990bedeca8a647c08d2478670f8fc2b4e8983ea18bcd514daeeeeb9d7a778f783c76edf01bd4beda4b77b612cd2e865c2e4f58ca7ae06147bf66ae6aee221cf9b9505dc07e6fb6cf4f82dc8c406c78e270210c11cf2531011ed678d9dfe1f49c9a69a95a9f3b0e5b624d9c2664d787ab911b75a4a38d63e9d6c353f8aaf433ff961fe5e34d84936ead0d0bc7954caf84e541f5c6f3f20c9eed21eb0316b82c0dc5182540e63a0af25565496792153d6395adc2b8d68b8bcd93dd110ff5685879db4384ec390d44b89663d43a5de3bdc0e103b7c1b355dc5f6fe3518c93628780ba03f156badea65d1d0af8433c9e8a975fdd19453da662a33fa9f0f5fa15fdb216b483fb48370a967246e0b763df8b3bc7924a6c76c4b114f803dbfa3b312e6815b4eb67be167283a9e482d9a5beac250089d069d4c386b7fda5fc228404a0f58b12ca4dc131c381b49b42b570bc1c2745f5f24afaf65a26a21f6d92f52c9f8de36cb76bacbaa0eef98ba6b7dbbc2629a03bb2b6f83fc5adaf20c217bc8d0f0d2421e01472532bcb546aeb2d483c8f95011a3ba1d2fd8086a717cb015dd53064ef4a80b6d6fdc12d9069223fdf2aa9b192a0e0bdb38436f49d9eedfef3665815633fee4344aff11162526362b70b18e1dbedbb5d8c4698860beccf667851878a25a1e766caae2861f2e23404aac859e62fdfeac06a6057554828d7035806e8ab3ee2fa6d711e5811db61231a22f4672f6a11b27641f350bcab78792362e6ebc1c054a643bbbf2746678c14dc567d1f73e37005c8ab6374c4d8d3106384a2d32c5fcf05cb9ba97cb7fa1aff11505a701bead543e555f3901ef3b693d5b9ebf49518c3509af042b7e84b1b867c22b7e08725220e4338fd074edce428212e6a3563a08e2ccd8ab71910256532904542e93d5c7deb5bf5d49beb3202d4da4f643649e55edbb91188cdcf0883a40c6ed6b8a086fb5c50dc08fee00308420121d4c7431b3cfb80f9c1e099423ac451d67b12e930d9e391d0a799c7d4b54a0d56ea0aae00c1d009e21fb5459416b464b227d66ccc1a68da59d64c1583dee54bbcd7d61ffe541fd0fb7452adba91906918966a7d58019ad1f8fdebeceeed7018837b6e4272eefeec8385abe7207fb2d7061fa6cdc478165a98971f9729b818a73edefed976d5c7c0a651c091cfd1174c020e39330a79144271fe4cbc61ea0ffa274d0d87d06dd08c1d5f8a0364d46ef7b54426bc286330c75fa257afeb2715c2ae511ff53b1189cc59ab80b1325fbdcedfdb8f36ed06000000116e16b52188b794e637755027caac8db8554f8674b844964c710cacd7a9d6b06baf6fef76159a380e639b0d3e66080a7cf7f86baac01dbe47fe687fcef2f3bfbf6f8fba045181dee688360a11ee56e5fc73ed31c0e2924ae57f0cc93c63a30662a65c5d5f17123ae28cc5b74dd13ed81b03dc7fa61dc575668868c0df12d3553269f04ba79084d070abcdbd4745de80e90e4e3e524f27249b5c4a2f2d4c8b331b0cb6d4efe62a298daacc6eacdfe008c1f912795dbdc37098c42db860953120fda709baa6d46f52eaba781505e68561ca0f281e850532ef8e7c779883e312806e1c357bdef8d0dda005e710cfa6eb8686e8bf3bff036b3fcdc4036541d93530ce6f598442c24170b307ef05f23c93aa0ec96831b532d8120402214a940d1fa01ed649061a4a71308be189cffd729a196754fb8a75f23851189589be1b819f0612cad3dc94ccee88f4ab9ef6ac9c7daad8cf94f5ed9496c4c824e5b4f66ce32a80e7a6ef069a32f6812e656aa5f5742bd432afdf026c86e8f28212c1139dad47d7fc07e5c1a83e993daaa4a4bb5f0c9435ccab2a10f867ffe259dba7a1d9168619b1e3048860a5122e4a5d0b00372eaae861a0cc88549852fffa76e6d78739b654d67df15ea97a9a46b7c382d83191a673aa619b4a10ec05bc681379b0d6df824cb6fe158e9d89ae5dd1ef66976f67972b553db52eb6feef836dca6026293f83a61e117754a7424a3da63bd82d017f87f0603e2a9b8fc550aae611681935ae91f7ca2b5341b05a25208bd28f1a202a7f2a213b1d7411ffb557470aec00c4d13c70163f22a038a189710dd19a47e8db4a87c3fd329a63abca172a9810edad2d8e19ef85b57eaa287cfb3d740d7ea3fa9c80d06e1aa84b317f678ddb3c147ba5e0db432125f59ca4944c8e9050281ca82a3ecf67b2a5df678697a52a7297af1ecb03c586af7b91d74e881964ed95f7be12fa07e2a4e71aab8b913a13996fa33e915144bf00e49b8e7adec5b2c4b8165f54ba3155230e241ee023af77a295ab87c40f63f6092ccee05cb08a265abe8f57c9919bf45064b6c2240ba8011db223a283a4e2292d9b59df8c9a4fdc763f0631007db9976f351717db0e6b5f9c6e5f227c2efa1ae5fe0be1af0b22fc164f9f9678a01fe8b059749fe8a2972455732da1989c609d191544ef9fbb3e58da93ec4a582430523f260b776e4d747312747d18a9bae14740f5dcd35fd1072f8a4d81573b5882203be856b62d7e1d87081a9e431872c9d68864197bbc61f15dd8aeae950d34d6ce97182deebd2ad64cabd1c723baf512acfc7e94675b31369bd60e155af79b97bb734312569f736dcd5b5a78223ffaa0f7e93e1a112cb9f6a5b88fe3cf12c30024c16c6b8380fdf086c662665d3751c11617cc4dbd5b8bc7543301a23fbc90ba8d060193cdc2b68c31c734d516707b759f7db009c8f06e69b40154e1cd8ae444afb28134acdf871136b4fd78bd86d7faaaf618afb25e92d1ee37cdff0595278f9565f5eb109e181e9cacec2f22e32e9f34774ee223fdb992febcc5dbc5cceeda16cbcf1434730d859e7e03d36ff17636a7a7e66956b515894da114f3040909f90ce3cfbb2d7d46e37049c0fb124e0683d662eb427cd7b851ada229451e6e3aaee64b9964ced3036bde5d9d80eb062474f96ecfb9b65fcafc719494ac12ab7df245475f2a5e7f85ca4789833ca373e6214d39176c8f51dde87a4cfe5414a20f68bb9f34709979b99533ba3435c4aa56e525195e10ffd00f8e41aee30a909c07b973bbf733d45500b539ebe2206d438216690998d9e256db1b7ac6bef3e810785e1986985c945a2b820323a592721fcfa444934d0faf8aa439d5efca5dcd77b72d1eb91b3790d50d0a7483e354c415f81d99c133d648c1293e795b3c43f9b47e23ef982e10072ea5baafb0df675e69af1807b225afa0cec3eafbde8535d3ecaa0ea6ddbffe4465207425bb003670320324df0aeeb16b38a043f9c0e85673b36def332fd68b2b1e6edda621d0cadebbced8c7fc8f890489115b457249e8d8103676b3207a472804d33e0fe511ac56cd8dc5333b2333892f87b455940ada78fcf5075c358fce990e6f65f095eb416d876ce6f120b8b02cfa6b176ee269c942f881247c3e464cce2aa65c39137607c585aeb4b5f24f5f8e058c9c8b48003c1809da3e8aad1bee7955c3a976d43fe132e2b16f4758a0a9884e51d13b930675a4361ff366b0fed190ad7b2a00385528951e39cd44ea06d8921b9d613d7626221154cf86249a550198fe4e5b05ad3052b474291da0a0a2f701759859bc0392adf243ad5eca89e6d18e28dff99ef95743bcabe75504be8c715cd6360facf3bb06cb97c29989d4f6ff5083573cefe6ef0b39a252a2678112fa88e5b06c9a6bfc9597cc96e5a49710c4fc120fb0da4945b9d94e46de1e9989d0fc3d8d20df23d815b660c799a903f651b0d013f7fe158f1d297f7fcb6a48780ca5525f1d081ada0aafa83552318b848783306549750b6254cf676c7b934cf7fdab992717f0cdc089b34278f3fb151cadde14d0d3250e85a4b0ff2a2778a219aa40563d3ef575285484424b6d0e7cc8392342e4848c6fc8cb20fa1b450cc4c1fea19f3bbdd9e342e6c49cd7ac893b1eda2e93d1d74d20969465946b398fbc733757741ac822c4a118632cd242a439fc37512cf79b7c629504ccc1e7f2f11798955c3262b5e9695625ba74d8050e20f51d4769e1ab938f487f1bc4b55b5abcaa3ec079c2d0972b2ae9bfb7c5423b959119292ea05f1d79d35afe47e49d97c946b193bffc0a8f607f18a6845cecbbdd98cd351db2b2dce05a4848ba84a6a497b4618950130cb7e76c03d0976eb2fb41d3a42a1430063ed8e5b8c67e80fd4fc1148911958babbcbff33a6505de209b0d9320017fd736fd027a16564008ab2e1f48a6dd66c9256730e9fda0a606875d0871b2b9b0bc2ed4e1b696dbf0283c8dc72cf4338e595266f5390bc3a21f988353118f2948fc75d050ea076b73508d9ed89bade0ba305c1f4e5daf9d40d2f5e7ababed8d1b1d919c61a6d3fb149c1a9b44e38585a2fe322f83d73a3aecb44da3f0e82942d75d62ed3f91eb44f3411df014f88839e4cb1e21b9b259d4eb4adaf6b0be433d0ed4c87ec77dde5ee9d566e3dd8d928fc1875c63af26c59daba5ae267d9bd5da72b99a03e6a33cc48ed961ab484ff4a46c2d5fa597e626e00b530d7b9a9705e4e08d03f3a7f2a5a5233ad6340e3b5c89db81ca713b6d7d855c6324955f85109b204566f50178cd88abe3fcba25de905e8ea0b75ad51831761ed9b1af2470f976f05ec73bf74d137c207270cfd614170518cdc449aeeb663e114359c8124eaf2499d8cf5dc84a0872301db2e57b50bd285060ec4390d99d4ae3674ca3bb8679c1b08e566ba4f30daec8684a980055eb43cb5a1306c4b52a154682aa96637e06c869278aa2f74ef7345632c11265ef8ac97e953745302556881ba0cb590fef271c0abb193fb84d18ee3f24d9976ae816b857d6f68d1fdfe10b312c799fe014debf875d04bff8b4f387859e97c6bf13f7083c28a2045a0b5eb09c94e781a165965e8617c0efed1701ea9667aeca26d9577ea7b1242e1d91b25d6a66756cc627648a293b9f4345966bc469fafaeddc1118d0972bd5c7751a1f51e5989fd952f314ae10417c97b41e60ebfbc47e496486fa4a89fd16aea7fa1eabebd26eb2a37a3e2b351e0c9d2f67b2e5be0f921adc9b6045b045948e5103af0e5050b9c0799b513c00865deebda730de538f956ceb6164e08bd6f58655a294b4b44fc65309b30f9c00f92ef5bd5b911a3d830f72c258b19521bb8e80db02129954efb61423f518d2c5f36587303890cad9a93fa4f4bcd0e24c67db679c67ea59c1350b8442577632d5e8735833f3daf5a74bc7bd82659a81beba8c889632efe03cd24187aee856cf659e16e195464f52f2b984fc7a299e7b2aa53979a147ebed35705d5e89691666536f2febacfcef9b32d14952f958b72512869e4f6a0a34176918217888b1eb8b89322ebb6bb1dead2b4744e728479880db70e6147edaff6c3f083f18e0696bdbd78cf0bda14d9f42e5c1077ced00041aadff90470aacec0e48e2a5f2a0ed37818a173b96061e8c5bf24c0bde9e09f9e0ddb8e13306ef1d4eb8043ebadde5d7553e5212ecd4691eb426251f9d6720b8276ac543dde02399a35d974b22c1727d4b6df01957cae47443b706d43165e01d6932b136f561ce837431254cfb2a6e7d8070a2d3805aaa15b3c10ccd0cda2e9b418ce9ef380e5d08217752e12b3b892d03a9495c83d78d674612fde5a67738b2d4649ce44606ecce6bf3bd1293eca246a83643e4f1c7ba362b110e07c8479f216e3d4afc4fcb8d0820c8ab702a66d8183e83174597035e92b9b500dee08c80b927b42c3689c7c9617b4112c9e54cbfa51e989b5fd42b80c595d3edd265f138e8128cfbbb0e4f53aa0aa95a2ecda4518b2e564c42d5de7671560843d08103b9bdceac5fdeb0b1266f72f491265dd2b2b80a225a50955167da1812364ea340d82f61535401bae6f3140a8795d7c318a64cee4676627244930957b2f0b227be21b72d90027e6a5a7af3c59470c74dcdb71d1ef090a0f49c91acd604c792385c8f4e085765292822ee5eca03885fd6bfeaca9b3bbbdeac939f7846a487c5a483ed1e4fbf37c93886ea27bb35c812089b900b77c7c924147e97b6a71533610750bc84921012aa8158b213f7601d934a20bdd1f757b0a33042a683af6b9069f3900059d7f80f9fdcc9f33ece8cf7888dc9e24f1fc6ca0ecccf161c5334c60f440feb3acfc3d115011c176dfa05314c5bcf089e3c82bbe7680a3eefdcdbf3ac27265b779db4f49bade0128eda6e29bc5933ef454601db1b49628fd39ab938794fa46a33937a086ece7050d31a21524e2f0cacb307ed4412a2078636f9cc8e11c5c31cc0f9edd7be6d1e31a1513a58e25215f5a24245cb988589e6d5e5119f4f6557c697fad7d1c3a7e3bae064db4382701e33e48c5b6a52fe9141a385ef2325c6f7781134607e98bfd02c43d6deefaa861700388b40d98e941cfb2ddec209f977e8b9f93d29fdbf85e3010ce7cd622e8c75ce3df535e392052b6d65d5042d2a6e78bbfe5ee146e8b18d4bc7fb024dbba57cbe0402205593766a313950cb719d00c67bb6b3bcaa1015b89e820f11475afce655947113a7c3dcbb52427f090df994fbf076db867e0ab3f6125fb8884c1d13ff3e99fab5fa8b9f0b72cb44db4d0a48d9ec17f9733764e213c40a15ad821ec60e4a88cb2fd9dd9a4f35e6a708f4b74067f4be3f03a95261f6b191df53fa5bb5164e4a164630ad9ce39087aa950ad9e60cd2c44fa2237c49abf858c97737fd21180fd0b9542767150fbed3f39a29e6c3484d9437e15d2439f2a54b2a1ac7e63e6c436658abc3f1dd52d984f6c6901768a8cf2ec98ebf44e90e0fc0c24f8957c62e05d8eacecaf25b178fd710af609a8a1bc4d7955b5f0cb4f48a37685e6304ea5843573a1abff37b5106916c83c8f23f939a0dc43aea8d196191ed6e18dd793990d1f37d7de0bf8fac6f469843724eaab86be8a483be281b8ecf4aa29d9c571951cde8cd8c2aaf4d597ac2cb48f23fad145916920a55d655924940573b64dbd42a280cddc4810434f930183fdbbdc72db1491a4c9d44daf9b1bc2fecd855508648063040faeb125da0e68e6cd2002181118eecff0be1dd8eae726af5d451630cd65119c52abd6dded97f931202f186a18c4ba34bc2c3f6d765e2d8f445e959f26ffb55827cf3ff2cc0289f17b82c8caa5a2d3d54306a300f0ef42bbe4ea9e32c5d4b1173942745cdcfe4f5d1619eefaf8dc600afbc9171d516f7f4b35331d0b9be005132ffad5e9df59710278b842afb626a78b8b8b37fc3a894dc705b2d4e0940cb264e9dc87eaa148e6faf78125462f28a0f1d7b3c65a291b85713fa71ffc478f6601e8716c35489f4a54ed0c70bcfd5502cc91374dc3c982075c5180398bc6b195b36e79dcc4087cb990cc9d964a150e0dcc887d496bdd27c3f298736b9ad8345ba2df46021964cf43c38f9d2e94b77bee2b7bf059e0870ff9f17b9ef1320c0aa88a2fa9781e9017ab64643de9a3df9ed4b8cfd8fa080a2e494409520b795eb1517d224a05e450c4c8ae0e9fd29c0e72d3a592cce55f6dd5107f21214e1a3f9a5448384de06149f959ec0c92790f0ff229ab4971171f1c528ae6d095ec007bf5e7f55d623a68194e9ea8edc3af418075338328f24e7504341c22bef72c2963fc9c3237ba990d29c2c8aa3007395f6d96e95b40ee1b18dbad550bf39d0d98268cb74dde76d987c3169c9067495fb1b88508bbb7e94cbb7dfc15c03b1d5b163132c8a468906f02d422a8cf98d0b432b5779dd962074b72dd27439b2e94312f573435e5aa84664432c1914839cd6e172186ce93eeb1d7cb0659696d9d550eb3b185f8c6ee16e53f78233cbe709f99d2879d63d93f7d0ed133241d2f1ab1eb2c56605ca0f0e01c39ab0ba2370fe5c4e68de0561b517ff9a10023c386236398372c7176e35443e2cf5dd6cbed9f23395f231e6a54f65626cb5860a8b72122c34664119e7c47204ef4a70583a", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x74e, {0x3, 0x0, 0x1ff, 0x400000000000002, 0xfffffffd, 0x0, {0x0, 0x8, 0x0, 0x1, 0xd1, 0x5, 0x6, 0x2, 0x4, 0x1000, 0x0, r7, r8}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
getgid()
write$FUSE_STATX(r3, 0x0, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x119)
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0), 0x185802, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
sendfile(r9, r9, 0x0, 0x200000)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="2c00000040000701feffffff00000000017c0000040042800c00018006001700800a0000080002"], 0x2c}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)

3.603826964s ago: executing program 5 (id=4099):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000100)="2e9b3d0007e03dd65193df163e75963f86dd", 0x12}], 0x1)

3.458647173s ago: executing program 5 (id=4101):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0}, 0x1, 0x0, 0x0, 0xc0c1}, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x80000000000000a, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x8, @remote}, 0x9)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000280)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha512\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
recvmmsg$unix(r4, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500, 0x8d}}], 0x600, 0x0, 0x0)

3.300023153s ago: executing program 0 (id=4102):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mknod$loop(0x0, 0xfff, 0x0)
write$binfmt_register(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x802, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x4, 0x4, 0x221, 0xc1, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000001280), 0xb47, r3}, 0x38)
sendmmsg$inet6(r2, &(0x7f0000002940), 0x40000000000017d, 0x811)

2.551805099s ago: executing program 5 (id=4103):
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000080)={0x0, "69dcaf20127e9a854529f45826cb35be51682e30944313e2ca73845d177d601880221daeccfda56b75cfe2bad94f000066b2ddab614fec2236da7d88ea07c9ee"}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000200)=@chain)
r1 = epoll_create1(0x0)
r2 = fcntl$dupfd(r1, 0x2, 0xffffffffffffffff)
r3 = syz_open_dev$vim2m(&(0x7f0000000100), 0x7, 0x2)
bind$inet6(0xffffffffffffffff, &(0x7f0000000240)={0xa, 0x2, 0x3, @loopback}, 0x1c)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, 0x0, 0x0, 0x2, 0x0)
set_mempolicy(0x3, &(0x7f0000000100)=0x3, 0x9)
setsockopt$packet_tx_ring(r4, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc, 0x2000000}, 0x1c)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0cc5605, &(0x7f0000000180)={0x1, @vbi={0x0, 0x0, 0x32314241}})
fanotify_mark(0xffffffffffffffff, 0x1, 0x100b, r2, 0x0)
fanotify_mark(0xffffffffffffffff, 0x1, 0x800103b, r2, 0x0)

2.551172673s ago: executing program 2 (id=4104):
syz_io_uring_setup(0xac9, &(0x7f00000002c0)={0x0, 0x3594, 0x10, 0x1103, 0x21e}, &(0x7f0000000240)=<r0=>0x0, &(0x7f0000000340)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r0, r1, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, &(0x7f00000000c0)={0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="4008290000002930f144af894808c18f069b739a8f6d07407e10fa6d80340ecd18b539c100"/46], &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000400)={0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="0017250000cf543f2eb40f8d6fa326d2979d77b318f202b1794a7debcbc9a928ccee27e314bb113bee607d"], &(0x7f0000000140)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000180)={0x0, 0x8, 0x1, 0x20}, &(0x7f00000001c0)={0x20, 0x80, 0x1c, {0x0, 0x9, 0x4, 0x3, 0x4, 0x3, 0x0, 0x4532445a, 0x401, 0x9, 0xb, 0x3}}, &(0x7f0000000200)={0x20, 0x85, 0x4, 0x7ff}, &(0x7f0000000280)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000380)={0x20, 0x87, 0x2, 0x4}, &(0x7f00000003c0)={0x20, 0x89, 0x2, 0x1}})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)=ANY=[@ANYBLOB="5c000000090601080000000000000000070000000900020073797a31000000000500010007000000340007801800018014000240fe8000000000000000000000000000bb060004400e1f00cd050007008800000006000540"], 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)

2.34351301s ago: executing program 0 (id=4105):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x40000}, 0x1c)
sendto$inet6(r1, &(0x7f0000000180)="af4fd7", 0x3, 0x840, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000340)=0x20000000, 0x4)
socket$tipc(0x1e, 0x5, 0x0)
close(0xffffffffffffffff)
r2 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
syz_open_dev$hiddev(&(0x7f0000000100), 0x8000000000000001, 0x40)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = fsopen(&(0x7f0000000080)='fusectl\x00', 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0x20801, 0x0)
write$rfkill(r5, &(0x7f0000000100)={0x0, 0x2, 0x3, 0x1}, 0x8)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40040, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
read$char_usb(0xffffffffffffffff, 0x0, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r6=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r6, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
fchdir(r2)
syz_clone3(&(0x7f00000005c0)={0x80000000, 0x0, &(0x7f0000000380), &(0x7f00000003c0), {0x40}, &(0x7f0000000400)=""/71, 0x47, &(0x7f0000000480)=""/233, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x7, {r4}}, 0x58)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000680))
mount_setattr(r0, &(0x7f0000001d80)='.\x00', 0x8000, &(0x7f0000001dc0)={0xb, 0x0, 0x80000}, 0x20)

1.982642141s ago: executing program 2 (id=4106):
r0 = socket(0x200000000000011, 0x2, 0xd)
r1 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x5, 0x6, @random="518440cb7f00"}, 0x14)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_emit_ethernet(0x3a, &(0x7f0000000200)=ANY=[], 0x0)

1.981960973s ago: executing program 2 (id=4107):
userfaultfd(0x80801)
syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000200)}], 0x1, &(0x7f0000000280)=[@ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @rand_addr=0x64010101, @empty}}}], 0x18}, 0x4000000)
socket$rxrpc(0x21, 0x2, 0xa)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
r4 = socket$netlink(0x10, 0x3, 0x10)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe8381, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x3)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r6, 0x4048aec9, &(0x7f0000000980)={0x1, 0x0, @ioapic={0xfee00, 0x296a, 0x4, 0x6, 0x0, [{0x98, 0x37, 0x81, '\x00', 0x7f}, {0x41, 0x8, 0x81, '\x00', 0xf5}, {0xf, 0x5, 0x9, '\x00', 0x13}, {0x7, 0x3e, 0x3, '\x00', 0x8f}, {0x3, 0x7f, 0x91, '\x00', 0xa}, {0xf, 0xe3, 0x8, '\x00', 0xac}, {0x6, 0x8, 0x6, '\x00', 0x8}, {0x1, 0xfa, 0x2, '\x00', 0x67}, {0x2, 0x7, 0x2, '\x00', 0x8}, {0x8, 0x3, 0x43, '\x00', 0x9f}, {0xf, 0x8, 0x6, '\x00', 0x3}, {0x2, 0x4c, 0x3, '\x00', 0xa}, {0x7, 0x6, 0x3, '\x00', 0xa6}, {0x8, 0x0, 0x8, '\x00', 0x9}, {0x2, 0x4c, 0xa2, '\x00', 0x1}, {0x8, 0x5e, 0x4, '\x00', 0x3}, {0x5, 0xa0, 0x47, '\x00', 0x6}, {0x7, 0x3, 0x2, '\x00', 0xa7}, {0x4, 0x7, 0xff, '\x00', 0x7}, {0x5e, 0xa, 0xb, '\x00', 0x3}, {0x7f, 0x6, 0xca, '\x00', 0x4}, {0x93, 0x44, 0x9, '\x00', 0x10}, {0x2, 0x8, 0x0, '\x00', 0xfc}, {0x6, 0xc, 0xc6, '\x00', 0x8}]}})
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.503724897s ago: executing program 1 (id=4108):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x40000}, 0x1c)
sendto$inet6(r1, &(0x7f0000000180)="af4fd7", 0x3, 0x840, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000340)=0x20000000, 0x4)
socket$tipc(0x1e, 0x5, 0x0)
close(0xffffffffffffffff)
r2 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
syz_open_dev$hiddev(&(0x7f0000000100), 0x8000000000000001, 0x40)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = fsopen(&(0x7f0000000080)='fusectl\x00', 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0x20801, 0x0)
write$rfkill(r5, &(0x7f0000000100)={0x0, 0x2, 0x3, 0x1}, 0x8)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40040, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
read$char_usb(0xffffffffffffffff, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
fchdir(r2)
syz_clone3(&(0x7f00000005c0)={0x80000000, 0x0, &(0x7f0000000380), &(0x7f00000003c0), {0x40}, &(0x7f0000000400)=""/71, 0x47, &(0x7f0000000480)=""/233, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff], 0x7, {r4}}, 0x58)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000680))
mount_setattr(r0, &(0x7f0000001d80)='.\x00', 0x8000, &(0x7f0000001dc0)={0xb, 0x0, 0x80000}, 0x20)

1.444628945s ago: executing program 0 (id=4109):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000006100)='cmdline\x00')
r1 = fanotify_init(0x10, 0x80000)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
ioctl$CDROMPLAYTRKIND(r2, 0x5304, &(0x7f0000000280)={0x1, 0x90, 0x1, 0x2})
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000000), 0x2000000, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1.143482714s ago: executing program 5 (id=4110):
r0 = userfaultfd(0x80001)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
pread64(r0, &(0x7f0000000100)=""/78, 0x4e, 0xd761f442)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001340)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x6}, 0x18)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000325000/0x2000)=nil, 0x2000}, 0x2})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
userfaultfd(0x80001) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94) (async)
pread64(r0, &(0x7f0000000100)=""/78, 0x4e, 0xd761f442) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001340)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x6}, 0x18) (async)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0) (async)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x1) (async)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749}) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000325000/0x2000)=nil, 0x2000}, 0x2}) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) (async)

1.093034724s ago: executing program 0 (id=4111):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0}, 0x1, 0x0, 0x0, 0xc0c1}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x80000000000000a, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x8, @remote}, 0x9)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000280)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha512\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
recvmmsg$unix(r4, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500, 0x8d}}], 0x600, 0x0, 0x0)

1.002861025s ago: executing program 5 (id=4112):
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
vmsplice(r0, &(0x7f0000000340)=[{&(0x7f0000000140)="6534977f587a5d7a49de3ff0bd26391ec0174c6d6bdbf3780a76ce71e3df084652f6", 0x22}], 0x1, 0xb)
fcntl$setpipe(r0, 0x407, 0x6)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x0)
r1 = openat$cachefiles(0xffffff9c, 0x0, 0x90200, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, 0x0, 0x24000000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x40800, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
r4 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[], 0x38}}, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f00000000c0), 0x492492492492627, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f0000000880)=ANY=[@ANYBLOB="1800ed000015d500000000000008000188c1180018", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000b609010000000000650000000000000018010000646c6c2500000000002020207d9af8ff00000000cd9100000000000037010000f8ffffffb702000008000000b70300000000000015000000060000003f93000000000000b5030000000000008500000000000000b7"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x94)
chdir(&(0x7f0000000140)='./bus\x00')
r6 = open(&(0x7f0000000580)='./bus\x00', 0x84242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r6, &(0x7f0000000180)={0xa0, 0x600, 0x0, {{0x4, 0x2, 0x5, 0x7, 0x3, 0x1, {0x400000080001, 0xff, 0x20ff, 0x8, 0x10, 0x7, 0x9, 0x3, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x5, 0x6}}, {0x0, 0x13}}}, 0xa0)

184.642132ms ago: executing program 0 (id=4113):
socket$netlink(0x10, 0x3, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000007fc0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_udp_int(r1, 0x11, 0x65, 0x0, &(0x7f0000000080))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x0, 0x3})
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r6 = dup3(r5, r4, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r7, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
r8 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r8, &(0x7f0000000480)={0x2020}, 0x2020)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', 0x0, 0x0, 0x0)

183.771588ms ago: executing program 1 (id=4114):
mknod$loop(&(0x7f00000001c0)='./file0\x00', 0x6000, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x9, 0x1100, 0x40, 0x0, 0x40, 0x0, 0x0, 0x0, 0x40}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x24c01, 0x0)
io_setup(0x202, &(0x7f0000000000)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000480)=[&(0x7f0000000440)={0xfff0, 0x20000000, 0x4, 0x1, 0x0, r2, &(0x7f0000000780)="19", 0x1, 0x0, 0x0, 0x0, r2}])
dup3(r2, r0, 0x0)

147.378548ms ago: executing program 2 (id=4115):
r0 = socket(0x200000000000011, 0x2, 0xd)
r1 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x5, 0x6, @random="518440cb7f00"}, 0x14)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_emit_ethernet(0x3a, &(0x7f0000000200)=ANY=[@ANYBLOB], 0x0)

48.01559ms ago: executing program 2 (id=4116):
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
vmsplice(r0, &(0x7f0000000340)=[{&(0x7f00000004c0)="88", 0x1}, {&(0x7f0000000140)='e4', 0x2}], 0x2, 0xb)
fcntl$setpipe(r0, 0x407, 0x6) (fail_nth: 1)

8.476171ms ago: executing program 5 (id=4117):
r0 = socket(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x4, 0x1, 0xffffffff}]}}, 0x0, 0x26}, 0x28)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x7fff, 0x0, 0x0, 0x2}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x12, 0xa01, 0x0, 0x0, {0x80}}, 0x26}}, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x980)
vmsplice(r1, &(0x7f0000000340)=[{&(0x7f00000004c0)="88", 0x1}, {&(0x7f0000000140)='e4', 0x2}], 0x2, 0xb)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x18, 0x1411, 0x105, 0x70bd2a, 0x0, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8, 0x4b, 0x28}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x0)
fcntl$setpipe(r1, 0x407, 0x6)
openat$mixer(0xffffff9c, &(0x7f0000000040), 0x100, 0x0)

0s ago: executing program 2 (id=4118):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
openat$sw_sync_info(0xffffff9c, &(0x7f0000000200), 0x400100, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200002343ffff0000000000000000850000004100000095"], &(0x7f00000000c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x20}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = openat$vmci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, &(0x7f0000000100)={@local, 0x2})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2, 0x25, 0x4, @void}, 0x10)
syz_emit_ethernet(0xfed7, &(0x7f00000002c0)=ANY=[], 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000140)={0xfff, <r4=>r0, 0x80000})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000005c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r5, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
rmdir(&(0x7f0000000040)='./file0/../file0/file0\x00')
read$FUSE(r5, &(0x7f0000006140)={0x2020, 0x0, <r6=>0x0, 0x0, <r7=>0x0}, 0xfffffe24)
write$FUSE_INIT(r5, &(0x7f0000000100)={0x50, 0x0, r6, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x40, 0x7, 0x10}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f000000c280)="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", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)={0x90, 0x0, 0x3, {0x4, 0x0, 0x1000000, 0x0, 0x1, 0x0, {0x0, 0x0, 0x4, 0x3, 0x0, 0x0, 0xa77c, 0x0, 0x0, 0x4000, 0x0, 0x0, r7}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
socket$netlink(0x10, 0x3, 0x14)
ioctl$SIOCSIFHWADDR(r4, 0x8924, &(0x7f00000001c0)={'pim6reg1\x00'})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000240)="3bfdd7cc35c724490ddd4dfdb41adf05f70c1ab2242a0766aaec975bb1b4762d377f80325a996d35f0b7892bdbf96f72b1a24fa2a97470cfa781732e8be48946ab98a4e737d0b55f66a53783b645b7c60fa81cd00bfb300d0378816d52db4a462ac0", 0x62}], 0x1}, 0x84)
r8 = socket(0x2b, 0x1, 0x0)
r9 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r8, &(0x7f0000000100))
sendmsg$L2TP_CMD_SESSION_DELETE(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x20000001)
setsockopt(r8, 0x1, 0x7, &(0x7f0000001180)="e57ad09c", 0x4)
r10 = userfaultfd(0x801)
ioctl$UFFDIO_API(r10, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4})
futex(&(0x7f00000000c0)=0x2, 0x5, 0x1, &(0x7f00000001c0), &(0x7f0000000200), 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$UFFDIO_CONTINUE(r10, 0xc020aa08, &(0x7f0000000040)={{&(0x7f0000606000/0x2000)=nil, 0x2000}, 0x1})

kernel console output (not intermixed with test programs):

hwframe+0x84/0x8e
[  523.737371][T16414] RIP: 0023:0xf707d579
[  523.737380][T16414] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  523.737392][T16414] RSP: 002b:00000000f542b55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  523.737404][T16414] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000000000
[  523.737411][T16414] RDX: 0000000000000011 RSI: 00000000800002c0 RDI: 00000000000000e8
[  523.737418][T16414] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  523.737424][T16414] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  523.737430][T16414] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  523.737445][T16414]  </TASK>
[  523.975040][T16416] overlayfs: failed to clone upperpath
[  527.002274][T16454] fuse: Unknown parameter 'group_i00000000000000000000'
[  527.418581][T16469] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3337'.
[  529.319192][T16481] netlink: 'syz.5.3339': attribute type 10 has an invalid length.
[  529.326164][T16481] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  529.374947][T16481] lo speed is unknown, defaulting to 1000
[  530.524974][T16495] program syz.0.3342 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  530.648070][T16501] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  530.650415][T16501] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  530.653658][T16501] vhci_hcd vhci_hcd.0: Device attached
[  530.941426][ T6010] usb 40-1: SetAddress Request (14) to port 0
[  530.943851][ T6010] usb 40-1: new SuperSpeed USB device number 14 using vhci_hcd
[  531.112078][T16508] overlayfs: failed to clone upperpath
[  531.209767][T16502] vhci_hcd: connection reset by peer
[  531.212111][ T1141] vhci_hcd: stop threads
[  531.213659][ T1141] vhci_hcd: release socket
[  531.215379][ T1141] vhci_hcd: disconnect device
[  531.686722][T16520] netlink: 108 bytes leftover after parsing attributes in process `syz.5.3348'.
[  531.689902][T16520] netlink: 47515 bytes leftover after parsing attributes in process `syz.5.3348'.
[  532.247848][T16521] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  532.250114][T16521] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  532.373101][T16521] vhci_hcd vhci_hcd.0: Device attached
[  532.750779][   T29] usb 38-1: SetAddress Request (14) to port 0
[  532.752897][   T29] usb 38-1: new SuperSpeed USB device number 14 using vhci_hcd
[  532.782611][T16523] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  532.785955][T16522] vhci_hcd: connection closed
[  532.789307][   T61] vhci_hcd: stop threads
[  532.797639][   T61] vhci_hcd: release socket
[  532.801573][   T61] vhci_hcd: disconnect device
[  532.809434][T16530] netlink: 'syz.2.3352': attribute type 1 has an invalid length.
[  532.848417][T16530] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address
[  532.854565][T16530] bond3: (slave vxcan3): Error -95 calling set_mac_address
[  532.894905][T16537] gretap1: entered promiscuous mode
[  533.191706][T16543] FAULT_INJECTION: forcing a failure.
[  533.191706][T16543] name failslab, interval 1, probability 0, space 0, times 0
[  533.195921][T16543] CPU: 3 UID: 0 PID: 16543 Comm: syz.2.3356 Not tainted syzkaller #0 PREEMPT(full) 
[  533.195937][T16543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  533.195944][T16543] Call Trace:
[  533.195949][T16543]  <TASK>
[  533.195954][T16543]  dump_stack_lvl+0x16c/0x1f0
[  533.195972][T16543]  should_fail_ex+0x512/0x640
[  533.195990][T16543]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  533.196004][T16543]  should_failslab+0xc2/0x120
[  533.196020][T16543]  kmem_cache_alloc_noprof+0x75/0x6e0
[  533.196032][T16543]  ? getname_flags.part.0+0x4c/0x550
[  533.196052][T16543]  ? getname_flags.part.0+0x4c/0x550
[  533.196068][T16543]  getname_flags.part.0+0x4c/0x550
[  533.196086][T16543]  getname_flags+0x93/0xf0
[  533.196097][T16543]  path_setxattrat+0x27a/0x2a0
[  533.196111][T16543]  ? __pfx_path_setxattrat+0x10/0x10
[  533.196125][T16543]  ? ksys_write+0x190/0x250
[  533.196149][T16543]  ? fput+0x9b/0xd0
[  533.196164][T16543]  ? ksys_write+0x1ac/0x250
[  533.196176][T16543]  ? __pfx_ksys_write+0x10/0x10
[  533.196191][T16543]  __ia32_sys_lsetxattr+0xc7/0x140
[  533.196203][T16543]  ? lockdep_hardirqs_on+0x7c/0x110
[  533.196218][T16543]  __do_fast_syscall_32+0x7c/0x300
[  533.196235][T16543]  do_fast_syscall_32+0x32/0x80
[  533.196250][T16543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  533.196264][T16543] RIP: 0023:0xf7f15579
[  533.196273][T16543] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  533.196285][T16543] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 00000000000000e3
[  533.196295][T16543] RAX: ffffffffffffffda RBX: 0000000080000480 RCX: 0000000080000100
[  533.196303][T16543] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  533.196309][T16543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  533.196315][T16543] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  533.196322][T16543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  533.196337][T16543]  </TASK>
[  533.306250][T14747] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  533.308980][T14747] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  535.124500][T16572] random: crng reseeded on system resumption
[  535.747348][   T40] audit: type=1800 audit(1763594532.390:1120): pid=16584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3365" name="bus" dev="overlay" ino=1111 res=0 errno=0
[  536.001395][ T6010] usb 40-1: device descriptor read/8, error -110
[  536.875165][T16596] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3370'.
[  536.888414][T16596] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3370'.
[  536.892103][ T6010] usb usb40-port1: attempt power cycle
[  536.898857][T16596] netlink: 'syz.0.3370': attribute type 14 has an invalid length.
[  536.908680][T16596] netlink: 'syz.0.3370': attribute type 13 has an invalid length.
[  537.452182][ T6010] usb usb40-port1: unable to enumerate USB device
[  537.840977][   T29] usb 38-1: device descriptor read/8, error -110
[  538.219473][T16618] netlink: 'syz.5.3376': attribute type 1 has an invalid length.
[  538.222167][T16618] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3376'.
[  538.264042][   T29] usb usb38-port1: attempt power cycle
[  538.276638][T16621] autofs: Bad value for 'fd'
[  538.327007][T16620] overlayfs: failed to clone upperpath
[  538.751020][T16629] netlink: 'syz.2.3380': attribute type 21 has an invalid length.
[  538.883569][   T29] usb usb38-port1: unable to enumerate USB device
[  538.961047][   T40] audit: type=1800 audit(1763594535.600:1121): pid=16635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3382" name="bus" dev="overlay" ino=1325 res=0 errno=0
[  539.059095][T16638] netlink: 108 bytes leftover after parsing attributes in process `syz.5.3379'.
[  539.066393][T16638] netlink: 47515 bytes leftover after parsing attributes in process `syz.5.3379'.
[  542.716921][T16667] FAULT_INJECTION: forcing a failure.
[  542.716921][T16667] name failslab, interval 1, probability 0, space 0, times 0
[  542.723149][T16667] CPU: 1 UID: 0 PID: 16667 Comm: syz.1.3389 Not tainted syzkaller #0 PREEMPT(full) 
[  542.723178][T16667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  542.723186][T16667] Call Trace:
[  542.723191][T16667]  <TASK>
[  542.723195][T16667]  dump_stack_lvl+0x16c/0x1f0
[  542.723216][T16667]  should_fail_ex+0x512/0x640
[  542.723234][T16667]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  542.723248][T16667]  should_failslab+0xc2/0x120
[  542.723264][T16667]  kmem_cache_alloc_node_noprof+0x78/0x770
[  542.723276][T16667]  ? __alloc_skb+0x2b2/0x380
[  542.723297][T16667]  ? __alloc_skb+0x2b2/0x380
[  542.723313][T16667]  ? __pfx_netlink_insert+0x10/0x10
[  542.723324][T16667]  __alloc_skb+0x2b2/0x380
[  542.723342][T16667]  ? __pfx___alloc_skb+0x10/0x10
[  542.723360][T16667]  ? netlink_autobind.isra.0+0x158/0x370
[  542.723376][T16667]  netlink_alloc_large_skb+0x69/0x140
[  542.723389][T16667]  netlink_sendmsg+0x698/0xdd0
[  542.723404][T16667]  ? __pfx_netlink_sendmsg+0x10/0x10
[  542.723418][T16667]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  542.723438][T16667]  ____sys_sendmsg+0xa98/0xc70
[  542.723454][T16667]  ? __pfx_____sys_sendmsg+0x10/0x10
[  542.723468][T16667]  ? get_compat_msghdr+0x11a/0x170
[  542.723486][T16667]  ___sys_sendmsg+0x134/0x1d0
[  542.723498][T16667]  ? __pfx____sys_sendmsg+0x10/0x10
[  542.723517][T16667]  ? find_held_lock+0x2b/0x80
[  542.723539][T16667]  __sys_sendmsg+0x16d/0x220
[  542.723551][T16667]  ? __pfx___sys_sendmsg+0x10/0x10
[  542.723569][T16667]  ? rcu_is_watching+0x12/0xc0
[  542.723584][T16667]  __do_fast_syscall_32+0x7c/0x300
[  542.723601][T16667]  do_fast_syscall_32+0x32/0x80
[  542.723616][T16667]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  542.723630][T16667] RIP: 0023:0xf7f22579
[  542.723639][T16667] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  542.723650][T16667] RSP: 002b:00000000f53d455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  542.723661][T16667] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000100
[  542.723668][T16667] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  542.723674][T16667] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  542.723681][T16667] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  542.723687][T16667] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  542.723702][T16667]  </TASK>
[  543.093678][T16675] overlayfs: failed to clone upperpath
[  543.204807][   T40] audit: type=1800 audit(1763594539.850:1122): pid=16678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3393" name="bus" dev="overlay" ino=1358 res=0 errno=0
[  544.222157][T16697] FAULT_INJECTION: forcing a failure.
[  544.222157][T16697] name failslab, interval 1, probability 0, space 0, times 0
[  544.226208][T16697] CPU: 3 UID: 0 PID: 16697 Comm: syz.1.3398 Not tainted syzkaller #0 PREEMPT(full) 
[  544.226225][T16697] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  544.226232][T16697] Call Trace:
[  544.226237][T16697]  <TASK>
[  544.226243][T16697]  dump_stack_lvl+0x16c/0x1f0
[  544.226261][T16697]  should_fail_ex+0x512/0x640
[  544.226278][T16697]  ? fs_reclaim_acquire+0xae/0x150
[  544.226296][T16697]  should_failslab+0xc2/0x120
[  544.226312][T16697]  __kmalloc_noprof+0xdd/0x880
[  544.226331][T16697]  ? tomoyo_encode2+0x100/0x3e0
[  544.226347][T16697]  ? tomoyo_encode2+0x100/0x3e0
[  544.226359][T16697]  tomoyo_encode2+0x100/0x3e0
[  544.226373][T16697]  tomoyo_encode+0x29/0x50
[  544.226386][T16697]  tomoyo_realpath_from_path+0x18f/0x6e0
[  544.226401][T16697]  ? tomoyo_profile+0x47/0x60
[  544.226417][T16697]  tomoyo_path_number_perm+0x245/0x580
[  544.226435][T16697]  ? tomoyo_path_number_perm+0x237/0x580
[  544.226455][T16697]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  544.226494][T16697]  ? find_held_lock+0x2b/0x80
[  544.226506][T16697]  ? hook_file_ioctl_common+0x145/0x410
[  544.226522][T16697]  ? __fget_files+0x20e/0x3c0
[  544.226537][T16697]  security_file_ioctl_compat+0x9b/0x240
[  544.226550][T16697]  __ia32_compat_sys_ioctl+0xc3/0x370
[  544.226570][T16697]  __do_fast_syscall_32+0x7c/0x300
[  544.226586][T16697]  do_fast_syscall_32+0x32/0x80
[  544.226601][T16697]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  544.226616][T16697] RIP: 0023:0xf7f22579
[  544.226625][T16697] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  544.226636][T16697] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  544.226646][T16697] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040047452
[  544.226653][T16697] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  544.226660][T16697] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  544.226666][T16697] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  544.226672][T16697] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  544.226687][T16697]  </TASK>
[  544.226698][T16697] ERROR: Out of memory at tomoyo_realpath_from_path.
[  546.994436][T16731] overlayfs: failed to clone upperpath
[  547.048366][T16735] random: crng reseeded on system resumption
[  547.849532][   T40] audit: type=1800 audit(1763594544.490:1123): pid=16752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3415" name="bus" dev="overlay" ino=1568 res=0 errno=0
[  548.762739][T16764] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3418'.
[  548.809776][T16766] fuse: Bad value for 'fd'
[  549.827948][T16785] IPVS: set_ctl: invalid protocol: 0 80.12.8.0:8939
[  549.832687][T16785] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  550.005152][T16794] overlayfs: failed to clone upperpath
[  550.242047][T16802] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3433'.
[  550.263664][T16804] FAULT_INJECTION: forcing a failure.
[  550.263664][T16804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  550.269692][T16804] CPU: 2 UID: 0 PID: 16804 Comm: syz.0.3432 Not tainted syzkaller #0 PREEMPT(full) 
[  550.269739][T16804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  550.269752][T16804] Call Trace:
[  550.269759][T16804]  <TASK>
[  550.269767][T16804]  dump_stack_lvl+0x16c/0x1f0
[  550.269795][T16804]  should_fail_ex+0x512/0x640
[  550.269828][T16804]  _copy_to_user+0x32/0xd0
[  550.269849][T16804]  simple_read_from_buffer+0xcb/0x170
[  550.269880][T16804]  proc_fail_nth_read+0x197/0x240
[  550.269904][T16804]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  550.269926][T16804]  ? rw_verify_area+0xcf/0x6c0
[  550.269946][T16804]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  550.269967][T16804]  vfs_read+0x1e4/0xcf0
[  550.269994][T16804]  ? __pfx_vfs_read+0x10/0x10
[  550.270011][T16804]  ? find_held_lock+0x2b/0x80
[  550.270038][T16804]  ? __fget_files+0x20e/0x3c0
[  550.270065][T16804]  ksys_read+0x12a/0x250
[  550.270086][T16804]  ? __pfx_ksys_read+0x10/0x10
[  550.270108][T16804]  ? rcu_is_watching+0x12/0xc0
[  550.270131][T16804]  __do_fast_syscall_32+0x7c/0x300
[  550.270157][T16804]  do_fast_syscall_32+0x32/0x80
[  550.270182][T16804]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  550.270204][T16804] RIP: 0023:0xf707d579
[  550.270219][T16804] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  550.270237][T16804] RSP: 002b:00000000f544c590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  550.270256][T16804] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f544c620
[  550.270268][T16804] RDX: 000000000000000f RSI: 00000000f7416ff4 RDI: 0000000000000000
[  550.270280][T16804] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  550.270289][T16804] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  550.270299][T16804] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  550.270325][T16804]  </TASK>
[  550.352550][    C2] vkms_vblank_simulate: vblank timer overrun
[  550.632572][   T40] audit: type=1800 audit(1763594547.230:1124): pid=16817 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3435" name="bus" dev="overlay" ino=1608 res=0 errno=0
[  552.380173][   T40] audit: type=1800 audit(1763594549.020:1125): pid=16848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3448" name="bus" dev="overlay" ino=1456 res=0 errno=0
[  553.106736][   T40] audit: type=1800 audit(1763594549.750:1126): pid=16856 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3450" name="bus" dev="overlay" ino=1201 res=0 errno=0
[  553.249043][T16858] bridge0: port 1(bridge_slave_0) entered blocking state
[  553.252313][T16858] bridge0: port 1(bridge_slave_0) entered forwarding state
[  553.260321][T16858] overlayfs: failed to clone upperpath
[  553.271906][T16862] FAULT_INJECTION: forcing a failure.
[  553.271906][T16862] name failslab, interval 1, probability 0, space 0, times 0
[  553.277498][T16862] CPU: 1 UID: 0 PID: 16862 Comm: syz.1.3453 Not tainted syzkaller #0 PREEMPT(full) 
[  553.277548][T16862] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  553.277557][T16862] Call Trace:
[  553.277566][T16862]  <TASK>
[  553.277575][T16862]  dump_stack_lvl+0x16c/0x1f0
[  553.277601][T16862]  should_fail_ex+0x512/0x640
[  553.277625][T16862]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  553.277640][T16862]  should_failslab+0xc2/0x120
[  553.277656][T16862]  kmem_cache_alloc_node_noprof+0x78/0x770
[  553.277668][T16862]  ? __alloc_skb+0x2b2/0x380
[  553.277689][T16862]  ? __alloc_skb+0x2b2/0x380
[  553.277706][T16862]  __alloc_skb+0x2b2/0x380
[  553.277725][T16862]  ? __pfx___alloc_skb+0x10/0x10
[  553.277744][T16862]  ? __kernel_text_address+0xd/0x40
[  553.277755][T16862]  ? __pfx___might_resched+0x10/0x10
[  553.277770][T16862]  netlink_alloc_large_skb+0x69/0x140
[  553.277785][T16862]  netlink_sendmsg+0x698/0xdd0
[  553.277800][T16862]  ? __pfx_netlink_sendmsg+0x10/0x10
[  553.277814][T16862]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  553.277834][T16862]  ____sys_sendmsg+0xa98/0xc70
[  553.277851][T16862]  ? __pfx_____sys_sendmsg+0x10/0x10
[  553.277865][T16862]  ? get_compat_msghdr+0x11a/0x170
[  553.277886][T16862]  ___sys_sendmsg+0x134/0x1d0
[  553.277899][T16862]  ? __pfx____sys_sendmsg+0x10/0x10
[  553.277917][T16862]  ? find_held_lock+0x2b/0x80
[  553.277939][T16862]  __sys_sendmsg+0x16d/0x220
[  553.277950][T16862]  ? __pfx___sys_sendmsg+0x10/0x10
[  553.277968][T16862]  ? rcu_is_watching+0x12/0xc0
[  553.277983][T16862]  __do_fast_syscall_32+0x7c/0x300
[  553.278001][T16862]  do_fast_syscall_32+0x32/0x80
[  553.278015][T16862]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  553.278029][T16862] RIP: 0023:0xf7f22579
[  553.278039][T16862] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  553.278051][T16862] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  553.278067][T16862] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000500
[  553.278077][T16862] RDX: 0000000000004854 RSI: 0000000000000000 RDI: 0000000000000000
[  553.278087][T16862] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  553.278096][T16862] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  553.278106][T16862] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  553.278129][T16862]  </TASK>
[  553.539458][T16866] overlayfs: failed to clone upperpath
[  553.780767][T16876] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3459'.
[  553.823364][T16881] fuse: Bad value for 'group_id'
[  553.825169][T16881] fuse: Bad value for 'group_id'
[  554.105000][T16888] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3463'.
[  554.709673][T16901] bond7: (slave vxcan3): The slave device specified does not support setting the MAC address
[  554.714930][T16901] bond7: (slave vxcan3): Error -95 calling set_mac_address
[  554.871033][T16909] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3470'.
[  555.363822][T16915] netlink: 212368 bytes leftover after parsing attributes in process `syz.5.3472'.
[  555.585260][T16921] FAULT_INJECTION: forcing a failure.
[  555.585260][T16921] name failslab, interval 1, probability 0, space 0, times 0
[  555.591085][T16921] CPU: 3 UID: 0 PID: 16921 Comm: syz.1.3475 Not tainted syzkaller #0 PREEMPT(full) 
[  555.591111][T16921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  555.591122][T16921] Call Trace:
[  555.591129][T16921]  <TASK>
[  555.591136][T16921]  dump_stack_lvl+0x16c/0x1f0
[  555.591165][T16921]  should_fail_ex+0x512/0x640
[  555.591192][T16921]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  555.591216][T16921]  should_failslab+0xc2/0x120
[  555.591240][T16921]  kmem_cache_alloc_node_noprof+0x78/0x770
[  555.591258][T16921]  ? __alloc_skb+0x2b2/0x380
[  555.591292][T16921]  ? __alloc_skb+0x2b2/0x380
[  555.591314][T16921]  ? __pfx_netlink_insert+0x10/0x10
[  555.591331][T16921]  __alloc_skb+0x2b2/0x380
[  555.591354][T16921]  ? __pfx___alloc_skb+0x10/0x10
[  555.591378][T16921]  ? netlink_autobind.isra.0+0x158/0x370
[  555.591402][T16921]  netlink_alloc_large_skb+0x69/0x140
[  555.591419][T16921]  netlink_sendmsg+0x698/0xdd0
[  555.591440][T16921]  ? __pfx_netlink_sendmsg+0x10/0x10
[  555.591463][T16921]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  555.591494][T16921]  ____sys_sendmsg+0xa98/0xc70
[  555.591520][T16921]  ? __pfx_____sys_sendmsg+0x10/0x10
[  555.591540][T16921]  ? get_compat_msghdr+0x11a/0x170
[  555.591569][T16921]  ___sys_sendmsg+0x134/0x1d0
[  555.591590][T16921]  ? __pfx____sys_sendmsg+0x10/0x10
[  555.591620][T16921]  ? find_held_lock+0x2b/0x80
[  555.591657][T16921]  __sys_sendmsg+0x16d/0x220
[  555.591675][T16921]  ? __pfx___sys_sendmsg+0x10/0x10
[  555.591706][T16921]  ? rcu_is_watching+0x12/0xc0
[  555.591751][T16921]  __do_fast_syscall_32+0x7c/0x300
[  555.591777][T16921]  do_fast_syscall_32+0x32/0x80
[  555.591800][T16921]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  555.591821][T16921] RIP: 0023:0xf7f22579
[  555.591836][T16921] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  555.591855][T16921] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  555.591874][T16921] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 0000000080000100
[  555.591886][T16921] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  555.591896][T16921] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  555.591907][T16921] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  555.591918][T16921] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  555.591943][T16921]  </TASK>
[  555.805629][T16924] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  556.053889][T16933] syzkaller0: entered promiscuous mode
[  556.055736][T16933] syzkaller0: entered allmulticast mode
[  556.635423][T16954] syzkaller0: entered promiscuous mode
[  556.637269][T16954] syzkaller0: entered allmulticast mode
[  556.679457][T16957] overlayfs: failed to clone upperpath
[  556.820995][T16961] overlayfs: failed to clone upperpath
[  558.511587][T16987] random: crng reseeded on system resumption
[  558.605355][T16994] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3500'.
[  558.675528][T16998] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3503'.
[  558.797820][T17005] netlink: 51 bytes leftover after parsing attributes in process `syz.0.3506'.
[  558.970551][T17016] 9pnet_fd: Insufficient options for proto=fd
[  559.096720][T17023] random: crng reseeded on system resumption
[  559.176615][T17032] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3512'.
[  560.581005][T17074] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3522'.
[  560.612302][T17076] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  560.615127][T17076] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  560.634497][T17076] vhci_hcd vhci_hcd.0: Device attached
[  560.663943][T17076] netlink: 68 bytes leftover after parsing attributes in process `syz.1.3523'.
[  560.668361][T17076] netlink: 6032 bytes leftover after parsing attributes in process `syz.1.3523'.
[  560.724878][T17079] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3523'.
[  560.819798][T17081] syz.1.3523 (17081): drop_caches: 2
[  560.825160][T17081] syz.1.3523 (17081): drop_caches: 2
[  560.880981][T12963] usb 40-1: SetAddress Request (18) to port 0
[  560.883101][T12963] usb 40-1: new SuperSpeed USB device number 18 using vhci_hcd
[  561.476696][T17077] vhci_hcd: connection closed
[  561.487972][T17078] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  561.502974][T14751] vhci_hcd: stop threads
[  561.504650][T14751] vhci_hcd: release socket
[  561.513101][T14751] vhci_hcd: disconnect device
[  562.096414][T17099] bond6: (slave vxcan3): The slave device specified does not support setting the MAC address
[  562.100154][T17099] bond6: (slave vxcan3): Error -95 calling set_mac_address
[  562.390818][ T9158] usb 6-1: new low-speed USB device number 41 using dummy_hcd
[  562.581166][ T9158] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  562.583779][ T9158] usb 6-1: config 0 has no interface number 0
[  562.585912][ T9158] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  562.589287][ T9158] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  562.592904][ T9158] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  562.596711][ T9158] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  562.600276][ T9158] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  562.605111][ T9158] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  562.609209][ T9158] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  562.612165][ T9158] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  562.616016][ T9158] usb 6-1: config 0 descriptor??
[  562.618327][T17102] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  562.620772][T17102] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  562.625138][ T9158] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  563.779588][T17131] bond8: (slave vxcan3): The slave device specified does not support setting the MAC address
[  563.785220][T17131] bond8: (slave vxcan3): Error -95 calling set_mac_address
[  563.802705][T17134] netlink: 'syz.0.3539': attribute type 4 has an invalid length.
[  563.838540][T17134] netlink: 'syz.0.3539': attribute type 4 has an invalid length.
[  564.565355][T17145] overlayfs: failed to clone upperpath
[  565.023081][ T9158] usb 6-1: USB disconnect, device number 41
[  565.028028][ T9158] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  565.258918][T17162] netlink: 'syz.1.3547': attribute type 1 has an invalid length.
[  565.258923][T17160] netlink: 'syz.1.3547': attribute type 1 has an invalid length.
[  565.282501][T17162] usb usb4: usbfs: process 17162 (syz.1.3547) did not claim interface 0 before use
[  565.390038][T17165] fuse: Unknown parameter 'user_i00000000000000000000'
[  566.466777][T17189] fuse: Unknown parameter 'user_i00000000000000000000'
[  566.560784][T12963] usb 40-1: device descriptor read/8, error -110
[  566.972350][   T40] audit: type=1326 audit(1763594563.610:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[  566.979627][   T40] audit: type=1326 audit(1763594563.610:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[  566.991312][T12963] usb usb40-port1: attempt power cycle
[  566.994477][   T40] audit: type=1326 audit(1763594563.610:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000
[  567.011036][   T40] audit: type=1326 audit(1763594563.610:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000
[  567.029306][   T40] audit: type=1326 audit(1763594563.610:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[  567.036957][   T40] audit: type=1326 audit(1763594563.610:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000
[  567.049166][T17201] smc: net device bond0 applied user defined pnetid SYZ0
[  567.066038][   T40] audit: type=1326 audit(1763594563.610:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[  567.073469][   T40] audit: type=1326 audit(1763594563.610:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[  567.086466][   T40] audit: type=1326 audit(1763594563.610:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000
[  567.095776][   T40] audit: type=1326 audit(1763594563.610:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.2.3559" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000
[  567.490740][T17205] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  567.492893][T17205] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  567.495654][T17205] vhci_hcd vhci_hcd.0: Device attached
[  567.620749][T12963] usb 40-1: SetAddress Request (21) to port 0
[  567.623058][T12963] usb 40-1: new SuperSpeed USB device number 21 using vhci_hcd
[  567.683786][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  567.805651][T17206] vhci_hcd: connection reset by peer
[  567.808171][   T46] vhci_hcd: stop threads
[  567.810038][   T46] vhci_hcd: release socket
[  567.814834][   T46] vhci_hcd: disconnect device
[  568.027444][T17214] fuse: Unknown parameter 'user_id00000000000000000000'
[  569.264363][T17245] fuse: Unknown parameter 'user_id00000000000000000000'
[  569.548733][T17258] fuse: Unknown parameter 'grou00000000000000000000'
[  572.301263][T17314] FAULT_INJECTION: forcing a failure.
[  572.301263][T17314] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  572.305663][T17314] CPU: 3 UID: 0 PID: 17314 Comm: syz.0.3601 Not tainted syzkaller #0 PREEMPT(full) 
[  572.305680][T17314] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  572.305687][T17314] Call Trace:
[  572.305692][T17314]  <TASK>
[  572.305697][T17314]  dump_stack_lvl+0x16c/0x1f0
[  572.305715][T17314]  should_fail_ex+0x512/0x640
[  572.305736][T17314]  _copy_to_user+0x32/0xd0
[  572.305748][T17314]  simple_read_from_buffer+0xcb/0x170
[  572.305768][T17314]  proc_fail_nth_read+0x197/0x240
[  572.305782][T17314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  572.305796][T17314]  ? rw_verify_area+0xcf/0x6c0
[  572.305807][T17314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  572.305819][T17314]  vfs_read+0x1e4/0xcf0
[  572.305835][T17314]  ? __pfx_vfs_read+0x10/0x10
[  572.305846][T17314]  ? find_held_lock+0x2b/0x80
[  572.305862][T17314]  ? __fget_files+0x20e/0x3c0
[  572.305878][T17314]  ksys_read+0x12a/0x250
[  572.305890][T17314]  ? __pfx_ksys_read+0x10/0x10
[  572.305904][T17314]  ? rcu_is_watching+0x12/0xc0
[  572.305919][T17314]  __do_fast_syscall_32+0x7c/0x300
[  572.305936][T17314]  do_fast_syscall_32+0x32/0x80
[  572.305950][T17314]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  572.305965][T17314] RIP: 0023:0xf707d579
[  572.305974][T17314] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  572.305986][T17314] RSP: 002b:00000000f546d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  572.305997][T17314] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f546d620
[  572.306004][T17314] RDX: 000000000000000f RSI: 00000000f7416ff4 RDI: 0000000000000000
[  572.306011][T17314] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  572.306017][T17314] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  572.306024][T17314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  572.306038][T17314]  </TASK>
[  572.373668][    C3] vkms_vblank_simulate: vblank timer overrun
[  572.479003][T17322] tipc: Started in network mode
[  572.483084][T17322] tipc: Node identity 080211, cluster identity 4711
[  572.485499][T17322] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  572.521734][T17327] netlink: 'syz.2.3606': attribute type 17 has an invalid length.
[  572.524296][T17327] netlink: 'syz.2.3606': attribute type 16 has an invalid length.
[  572.527040][T17327] netlink: 152 bytes leftover after parsing attributes in process `syz.2.3606'.
[  572.723762][T12963] usb 40-1: device descriptor read/8, error -110
[  572.830978][T12963] usb usb40-port1: unable to enumerate USB device
[  573.347682][T17359] fuse: Bad value for 'rootmode'
[  573.418503][T17363] fuse: Bad value for 'fd'
[  573.615379][ T9158] tipc: Node number set to 134353152
[  573.621130][T17373] syzkaller0: entered promiscuous mode
[  573.622983][T17373] syzkaller0: entered allmulticast mode
[  573.634602][T17373] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3624'.
[  573.723815][   T40] kauditd_printk_skb: 833 callbacks suppressed
[  573.723833][   T40] audit: type=1800 audit(1763594570.370:1970): pid=17377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3622" name="bus" dev="overlay" ino=1836 res=0 errno=0
[  574.465026][T17388] fuse: Bad value for 'fd'
[  575.506998][T17410] RDS: rds_bind could not find a transport for fc01::1, load rds_tcp or rds_rdma?
[  576.143353][T17426] fuse: Bad value for 'fd'
[  576.561558][ T9158] usb 6-1: new low-speed USB device number 42 using dummy_hcd
[  576.710737][ T9158] usb 6-1: Invalid ep0 maxpacket: 64
[  576.850731][ T9158] usb 6-1: new low-speed USB device number 43 using dummy_hcd
[  577.000746][ T9158] usb 6-1: Invalid ep0 maxpacket: 64
[  577.009775][ T9158] usb usb6-port1: attempt power cycle
[  577.274068][T17435] syz.0.3640: vmalloc error: size 16777216, failed to allocated page array size 32768, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  577.290734][T17435] CPU: 1 UID: 0 PID: 17435 Comm: syz.0.3640 Not tainted syzkaller #0 PREEMPT(full) 
[  577.290751][T17435] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  577.290759][T17435] Call Trace:
[  577.290763][T17435]  <TASK>
[  577.290778][T17435]  dump_stack_lvl+0x16c/0x1f0
[  577.290799][T17435]  warn_alloc+0x248/0x3a0
[  577.290812][T17435]  ? __pfx_warn_alloc+0x10/0x10
[  577.290829][T17435]  ? packet_set_ring+0xb4c/0x17e0
[  577.290847][T17435]  ? __vmalloc_node_noprof+0xad/0xf0
[  577.290866][T17435]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  577.290888][T17435]  ? packet_set_ring+0xb4c/0x17e0
[  577.290908][T17435]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  577.290925][T17435]  ? alloc_pages_mpol+0x25a/0x550
[  577.290942][T17435]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  577.290957][T17435]  ? rcu_is_watching+0x12/0xc0
[  577.290971][T17435]  ? packet_set_ring+0xb4c/0x17e0
[  577.290988][T17435]  __vmalloc_node_noprof+0xad/0xf0
[  577.291004][T17435]  ? packet_set_ring+0xb4c/0x17e0
[  577.291023][T17435]  packet_set_ring+0xb4c/0x17e0
[  577.291045][T17435]  packet_setsockopt+0x121b/0x33c0
[  577.291057][T17435]  ? __pfx___might_resched+0x10/0x10
[  577.291072][T17435]  ? __pfx_packet_setsockopt+0x10/0x10
[  577.291083][T17435]  ? aa_sk_perm+0x2f4/0xb10
[  577.291099][T17435]  ? find_held_lock+0x2b/0x80
[  577.291113][T17435]  ? aa_sock_opt_perm+0xfd/0x1c0
[  577.291130][T17435]  ? __pfx_packet_setsockopt+0x10/0x10
[  577.291142][T17435]  do_sock_setsockopt+0xf3/0x1d0
[  577.291158][T17435]  __sys_setsockopt+0x120/0x1a0
[  577.291172][T17435]  __ia32_sys_setsockopt+0xbc/0x160
[  577.291182][T17435]  ? lockdep_hardirqs_on+0x7c/0x110
[  577.291197][T17435]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  577.291212][T17435]  __do_fast_syscall_32+0x7c/0x300
[  577.291229][T17435]  do_fast_syscall_32+0x32/0x80
[  577.291244][T17435]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  577.291258][T17435] RIP: 0023:0xf707d579
[  577.291267][T17435] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  577.291278][T17435] RSP: 002b:00000000f542b55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  577.291289][T17435] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000000107
[  577.291296][T17435] RDX: 0000000000000005 RSI: 00000000800000c0 RDI: 000000000000001c
[  577.291302][T17435] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  577.291309][T17435] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  577.291315][T17435] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  577.291330][T17435]  </TASK>
[  577.291357][T17435] Mem-Info:
[  577.350756][ T9158] usb 6-1: new low-speed USB device number 44 using dummy_hcd
[  577.421350][ T9158] usb 6-1: Invalid ep0 maxpacket: 64
[  577.440695][T17435] active_anon:10708 inactive_anon:2476 isolated_anon:0
[  577.440695][T17435]  active_file:990 inactive_file:21276 isolated_file:0
[  577.440695][T17435]  unevictable:1769 dirty:160 writeback:0
[  577.440695][T17435]  slab_reclaimable:6322 slab_unreclaimable:59568
[  577.440695][T17435]  mapped:33189 shmem:10934 pagetables:1944
[  577.440695][T17435]  sec_pagetables:332 bounce:0
[  577.440695][T17435]  kernel_misc_reclaimable:0
[  577.440695][T17435]  free:29343 free_pcp:19873 free_cma:0
[  577.481531][T17435] Node 0 active_anon:60kB inactive_anon:416kB active_file:4kB inactive_file:140kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4044kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8720kB pagetables:2320kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  577.515184][T17435] Node 1 active_anon:29208kB inactive_anon:9488kB active_file:3956kB inactive_file:84964kB unevictable:3540kB isolated(anon):0kB isolated(file):0kB mapped:113112kB dirty:640kB writeback:0kB shmem:31500kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5952kB pagetables:5364kB sec_pagetables:176kB all_unreclaimable? no Balloon:0kB
[  577.540691][T17435] Node 0 DMA free:2112kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:8kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:448kB local_pcp:164kB free_cma:0kB
[  577.561969][ T9158] usb 6-1: new low-speed USB device number 45 using dummy_hcd
[  577.570696][T17435] lowmem_reserve[]: 0 294 294 294 294
[  577.572542][T17435] Node 0 DMA32 free:16732kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:60kB inactive_anon:416kB active_file:4kB inactive_file:140kB unevictable:3536kB writepending:0kB zspages:1792kB present:1032196kB managed:301132kB mlocked:0kB bounce:0kB free_pcp:9456kB local_pcp:1736kB free_cma:0kB
[  577.581395][ T9158] usb 6-1: Invalid ep0 maxpacket: 64
[  577.585952][ T9158] usb usb6-port1: unable to enumerate USB device
[  577.590703][T17435] lowmem_reserve[]: 0 0 0 0 0
[  577.592584][T17435] Node 1 DMA32 free:128636kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:17948kB inactive_anon:9488kB active_file:3956kB inactive_file:84964kB unevictable:3540kB writepending:640kB zspages:5000kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:66624kB local_pcp:24284kB free_cma:0kB
[  577.606574][T17435] lowmem_reserve[]: 0 0 0 0 0
[  577.608303][T17435] Node 0 DMA: 40*4kB (U) 10*8kB (U) 3*16kB (UM) 5*32kB (UM) 4*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2112kB
[  577.613632][T17435] Node 0 DMA32: 247*4kB (UM) 402*8kB (UME) 149*16kB (UME) 39*32kB (UME) 47*64kB (UME) 30*128kB (UM) 6*256kB (UM) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 16732kB
[  577.616323][T17442] syzkaller0: entered promiscuous mode
[  577.621931][T17435] Node 1 
[  577.624381][T17442] syzkaller0: entered allmulticast mode
[  577.624387][T17435] DMA32: 329*4kB (UME) 509*8kB (UME) 509*16kB (UME) 205*32kB (UME) 135*64kB (UME) 120*128kB (UME) 19*256kB (UME) 53*512kB (UM) 49*1024kB (UM) 1*2048kB (M) 0*4096kB = 128316kB
[  577.633234][T17435] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  577.636475][T17435] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  577.637177][T17442] FAULT_INJECTION: forcing a failure.
[  577.637177][T17442] name failslab, interval 1, probability 0, space 0, times 0
[  577.639723][T17435] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  577.644749][T17442] CPU: 0 UID: 0 PID: 17442 Comm: syz.2.3644 Not tainted syzkaller #0 PREEMPT(full) 
[  577.644766][T17442] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  577.644773][T17442] Call Trace:
[  577.644776][T17442]  <TASK>
[  577.644781][T17442]  dump_stack_lvl+0x16c/0x1f0
[  577.644799][T17442]  should_fail_ex+0x512/0x640
[  577.644816][T17442]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  577.644831][T17442]  should_failslab+0xc2/0x120
[  577.644847][T17442]  kmem_cache_alloc_node_noprof+0x78/0x770
[  577.644859][T17442]  ? __alloc_skb+0x2b2/0x380
[  577.644880][T17442]  ? __alloc_skb+0x2b2/0x380
[  577.644897][T17442]  __alloc_skb+0x2b2/0x380
[  577.644914][T17442]  ? __pfx___alloc_skb+0x10/0x10
[  577.644933][T17442]  ? find_held_lock+0x2b/0x80
[  577.644949][T17442]  alloc_skb_with_frags+0xe0/0x860
[  577.644965][T17442]  sock_alloc_send_pskb+0x7f9/0x980
[  577.644983][T17442]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  577.644998][T17442]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  577.645016][T17442]  ? find_held_lock+0x2b/0x80
[  577.645027][T17442]  ? dev_get_by_index+0x17c/0x380
[  577.645042][T17442]  packet_sendmsg+0x2054/0x5850
[  577.645060][T17442]  ? __pfx___might_resched+0x10/0x10
[  577.645076][T17442]  ? aa_sk_perm+0x2f4/0xb10
[  577.645089][T17442]  ? __pfx_packet_sendmsg+0x10/0x10
[  577.645098][T17442]  ? __pfx_aa_sk_perm+0x10/0x10
[  577.645108][T17442]  ? __might_fault+0xe3/0x190
[  577.645124][T17442]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  577.645142][T17442]  __sys_sendto+0x4a3/0x520
[  577.645160][T17442]  ? __pfx___sys_sendto+0x10/0x10
[  577.645194][T17442]  ? ksys_write+0x1ac/0x250
[  577.645207][T17442]  ? __pfx_ksys_write+0x10/0x10
[  577.645221][T17442]  __ia32_sys_sendto+0xdd/0x1b0
[  577.645238][T17442]  ? lockdep_hardirqs_on+0x7c/0x110
[  577.645252][T17442]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  577.645268][T17442]  __do_fast_syscall_32+0x7c/0x300
[  577.645309][T17442]  do_fast_syscall_32+0x32/0x80
[  577.645328][T17442]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  577.645344][T17442] RIP: 0023:0xf7f15579
[  577.645355][T17442] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  577.645368][T17442] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  577.645382][T17442] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800005c0
[  577.645390][T17442] RDX: 000000000000000e RSI: 0000000000000040 RDI: 00000000800001c0
[  577.645399][T17442] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000
[  577.645407][T17442] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  577.645416][T17442] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  577.645435][T17442]  </TASK>
[  577.752776][T17435] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  577.756034][T17435] 28901 total pagecache pages
[  577.757767][T17435] 749 pages in swap cache
[  577.759218][T17435] Free swap  = 97476kB
[  577.760474][T17435] Total swap = 124996kB
[  577.761988][T17435] 524155 pages RAM
[  577.763256][T17435] 0 pages HighMem/MovableOnly
[  577.764823][T17435] 207977 pages reserved
[  577.766230][T17435] 0 pages cma reserved
[  577.863272][T17444] FAULT_INJECTION: forcing a failure.
[  577.863272][T17444] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  577.868899][T17444] CPU: 0 UID: 0 PID: 17444 Comm: syz.2.3645 Not tainted syzkaller #0 PREEMPT(full) 
[  577.868920][T17444] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  577.868930][T17444] Call Trace:
[  577.868936][T17444]  <TASK>
[  577.868942][T17444]  dump_stack_lvl+0x16c/0x1f0
[  577.868965][T17444]  should_fail_ex+0x512/0x640
[  577.868990][T17444]  _copy_to_user+0x32/0xd0
[  577.869005][T17444]  simple_read_from_buffer+0xcb/0x170
[  577.869029][T17444]  proc_fail_nth_read+0x197/0x240
[  577.869046][T17444]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  577.869063][T17444]  ? rw_verify_area+0xcf/0x6c0
[  577.869077][T17444]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  577.869092][T17444]  vfs_read+0x1e4/0xcf0
[  577.869112][T17444]  ? __pfx_vfs_read+0x10/0x10
[  577.869126][T17444]  ? find_held_lock+0x2b/0x80
[  577.869146][T17444]  ? __fget_files+0x20e/0x3c0
[  577.869166][T17444]  ksys_read+0x12a/0x250
[  577.869186][T17444]  ? __pfx_ksys_read+0x10/0x10
[  577.869203][T17444]  ? rcu_is_watching+0x12/0xc0
[  577.869222][T17444]  __do_fast_syscall_32+0x7c/0x300
[  577.869242][T17444]  do_fast_syscall_32+0x32/0x80
[  577.869261][T17444]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  577.869299][T17444] RIP: 0023:0xf7f15579
[  577.869312][T17444] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  577.869326][T17444] RSP: 002b:00000000f5406590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  577.869340][T17444] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5406620
[  577.869350][T17444] RDX: 000000000000000f RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  577.869359][T17444] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  577.869368][T17444] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  577.869376][T17444] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  577.869396][T17444]  </TASK>
[  578.195639][T17454] fuse: Unknown parameter '0x0000000000000003'
[  579.353615][T17479] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  579.496966][T17485] fuse: Unknown parameter '0x0000000000000003'
[  579.656128][T17490] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3660'.
[  579.835106][T17505] overlayfs: failed to clone upperpath
[  581.048444][T17518] fuse: Unknown parameter '0x0000000000000003'
[  581.839638][T17533] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.009132][T17533] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.012739][T17537] FAULT_INJECTION: forcing a failure.
[  582.012739][T17537] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  582.017779][T17537] CPU: 3 UID: 0 PID: 17537 Comm: syz.2.3673 Not tainted syzkaller #0 PREEMPT(full) 
[  582.017820][T17537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  582.017832][T17537] Call Trace:
[  582.017839][T17537]  <TASK>
[  582.017847][T17537]  dump_stack_lvl+0x16c/0x1f0
[  582.017873][T17537]  should_fail_ex+0x512/0x640
[  582.017904][T17537]  _copy_from_user+0x2e/0xd0
[  582.017933][T17537]  sctp_setsockopt+0x2045/0xb870
[  582.017960][T17537]  ? ksys_write+0x190/0x250
[  582.017984][T17537]  ? __pfx_sctp_setsockopt+0x10/0x10
[  582.018027][T17537]  ? find_held_lock+0x2b/0x80
[  582.018049][T17537]  ? aa_sock_opt_perm+0xfd/0x1c0
[  582.018072][T17537]  ? sock_common_setsockopt+0x2e/0xf0
[  582.018092][T17537]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  582.018115][T17537]  do_sock_setsockopt+0xf3/0x1d0
[  582.018138][T17537]  __sys_setsockopt+0x120/0x1a0
[  582.018159][T17537]  __ia32_sys_setsockopt+0xbc/0x160
[  582.018174][T17537]  ? lockdep_hardirqs_on+0x7c/0x110
[  582.018194][T17537]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  582.018215][T17537]  __do_fast_syscall_32+0x7c/0x300
[  582.018247][T17537]  do_fast_syscall_32+0x32/0x80
[  582.018270][T17537]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  582.018291][T17537] RIP: 0023:0xf7f15579
[  582.018305][T17537] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  582.018322][T17537] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  582.018340][T17537] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000084
[  582.018352][T17537] RDX: 0000000000000085 RSI: 0000000080000240 RDI: 0000000000000090
[  582.018363][T17537] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  582.018374][T17537] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  582.018384][T17537] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  582.018409][T17537]  </TASK>
[  582.155480][T17533] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.254347][T17533] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.397300][T14752] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  582.400377][T14752] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  582.404178][T14752] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  582.407836][T14752] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  582.537422][T17546] random: crng reseeded on system resumption
[  582.878577][T17555] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3678'.
[  582.883393][T17555] netlink: 47515 bytes leftover after parsing attributes in process `syz.1.3678'.
[  583.491557][T17569] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3683'.
[  584.185015][T17578] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  585.212281][   T46] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  585.301476][   T46] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  585.358318][   T46] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  585.421281][   T46] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  585.669790][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  585.676088][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  585.680180][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  585.684176][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  585.687888][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  585.695679][ T5943] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  585.699229][ T5943] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  585.703284][ T5943] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  585.710447][ T5943] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  585.714353][ T5943] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  585.739200][T17598] lo speed is unknown, defaulting to 1000
[  585.900945][T17604] netlink: 108 bytes leftover after parsing attributes in process `syz.0.3691'.
[  585.904895][T17604] netlink: 47515 bytes leftover after parsing attributes in process `syz.0.3691'.
[  585.912401][T17598] chnl_net:caif_netlink_parms(): no params data found
[  585.980855][T17598] bridge0: port 1(bridge_slave_0) entered blocking state
[  585.983339][T17598] bridge0: port 1(bridge_slave_0) entered disabled state
[  585.985816][T17598] bridge_slave_0: entered allmulticast mode
[  585.988536][T17598] bridge_slave_0: entered promiscuous mode
[  585.993543][T17598] bridge0: port 2(bridge_slave_1) entered blocking state
[  585.996000][T17598] bridge0: port 2(bridge_slave_1) entered disabled state
[  585.998471][T17598] bridge_slave_1: entered allmulticast mode
[  586.001431][T17598] bridge_slave_1: entered promiscuous mode
[  586.035552][T17598] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  586.051519][T17598] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  586.103787][T17598] team0: Port device team_slave_0 added
[  586.111450][T17598] team0: Port device team_slave_1 added
[  586.145519][   T46] bridge_slave_1: left allmulticast mode
[  586.147490][   T46] bridge_slave_1: left promiscuous mode
[  586.149530][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  586.153323][   T46] bridge_slave_0: left allmulticast mode
[  586.155294][   T46] bridge_slave_0: left promiscuous mode
[  586.157363][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  586.212055][   T46] bond5 (unregistering): (slave ip6gretap1): Releasing backup interface
[  586.290578][   T46] dvmrp0 (unregistering): left allmulticast mode
[  586.303303][   T46] dvmrp1 (unregistering): left allmulticast mode
[  586.561287][T17618] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  586.646558][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  586.655558][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  586.665923][   T46] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  586.679869][   T46] bond0 (unregistering): Released all slaves
[  586.699603][   T46] bond1 (unregistering): Released all slaves
[  586.720593][   T46] bond2 (unregistering): Released all slaves
[  586.729326][   T46] bond3 (unregistering): Released all slaves
[  586.735939][   T46] bond4 (unregistering): Released all slaves
[  586.745835][   T46] bond5 (unregistering): Released all slaves
[  586.752753][   T46] bond6 (unregistering): Released all slaves
[  586.759493][   T46] bond7 (unregistering): Released all slaves
[  586.768118][   T46] bond8 (unregistering): Released all slaves
[  586.797776][T17598] batman_adv: batadv0: Adding interface: batadv_slave_0
[  586.800502][T17598] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  586.811575][T17598] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  586.813939][T17598] batman_adv: batadv0: Adding interface: batadv_slave_1
[  586.813952][T17598] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  586.813967][T17598] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  586.964065][   T46] tipc: Disabling bearer <eth:syzkaller0>
[  586.967225][   T46] tipc: Left network mode
[  586.973627][T17598] hsr_slave_0: entered promiscuous mode
[  586.976135][T17598] hsr_slave_1: entered promiscuous mode
[  587.259136][T17614] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  587.262103][T17614] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  587.518236][T17640] bond4: (slave vxcan3): The slave device specified does not support setting the MAC address
[  587.533862][T17640] bond4: (slave vxcan3): Error -95 calling set_mac_address
[  587.693233][   T46] hsr_slave_0: left promiscuous mode
[  587.695690][   T46] hsr_slave_1: left promiscuous mode
[  587.697934][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  587.700580][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  587.729929][   T46] veth1_macvtap: left promiscuous mode
[  587.732089][   T46] veth0_macvtap: left promiscuous mode
[  587.734003][   T46] veth1_vlan: left promiscuous mode
[  587.736002][   T46] veth0_vlan: left promiscuous mode
[  587.813217][T12963] usb 7-1: new low-speed USB device number 41 using dummy_hcd
[  587.962785][T12963] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  587.966484][T12963] usb 7-1: config 0 has no interface number 0
[  587.969228][T12963] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  587.975203][T12963] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  587.979911][T12963] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  587.985236][T12963] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  587.990341][T12963] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  587.999479][T12963] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  588.005430][T12963] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  588.010059][T12963] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  588.021523][T12963] usb 7-1: config 0 descriptor??
[  588.024602][T17645] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  588.027215][T17645] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  588.032516][T12963] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  588.394798][   T46] team0 (unregistering): Port device team_slave_1 removed
[  588.486278][   T46] team0 (unregistering): Port device team_slave_0 removed
[  588.570825][   T40] audit: type=1800 audit(1763594585.210:1971): pid=17672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3701" name="bus" dev="overlay" ino=1728 res=0 errno=0
[  589.144794][T17663] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  589.189403][T17598] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  589.215870][T17598] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  589.227059][T17598] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  589.248850][T17598] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  589.307514][T17598] 8021q: adding VLAN 0 to HW filter on device bond0
[  589.319025][T17598] 8021q: adding VLAN 0 to HW filter on device team0
[  589.324758][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[  589.327519][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  589.343981][ T1141] bridge0: port 2(bridge_slave_1) entered blocking state
[  589.346592][ T1141] bridge0: port 2(bridge_slave_1) entered forwarding state
[  589.419809][T17598] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  589.425165][T17598] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  589.541855][   T40] audit: type=1800 audit(1763594586.190:1972): pid=17688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3703" name="bus" dev="overlay" ino=1742 res=0 errno=0
[  589.564208][T17598] 8021q: adding VLAN 0 to HW filter on device batadv0
[  589.566765][T17689] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  589.569444][T17689] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  589.573104][T17689] vhci_hcd vhci_hcd.0: Device attached
[  589.672332][   T40] audit: type=1804 audit(1763594586.310:1973): pid=17689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3702" name="/newroot/352/file0/file1" dev="overlay" ino=1954 res=1 errno=0
[  589.860887][   T29] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  590.091572][T17690] vhci_hcd: connection reset by peer
[  590.095106][ T1141] vhci_hcd: stop threads
[  590.096595][ T1141] vhci_hcd: release socket
[  590.098537][ T1141] vhci_hcd: disconnect device
[  590.206557][T17598] veth0_vlan: entered promiscuous mode
[  590.217024][T17598] veth1_vlan: entered promiscuous mode
[  590.240963][T17598] veth0_macvtap: entered promiscuous mode
[  590.247067][T17598] veth1_macvtap: entered promiscuous mode
[  590.261368][T17598] batman_adv: batadv0: Interface activated: batadv_slave_0
[  590.269323][T17598] batman_adv: batadv0: Interface activated: batadv_slave_1
[  590.279927][T14751] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  590.283663][T14751] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  590.287394][T14751] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  590.291315][T14751] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  590.352099][T14753] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.355846][T14753] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.373350][T14753] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  590.377956][T14753] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  590.385621][T17698] usb 7-1: USB disconnect, device number 41
[  590.392796][T17698] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  592.698319][T17745] netlink: 'syz.2.3715': attribute type 1 has an invalid length.
[  592.713878][T17745] bond5: entered promiscuous mode
[  592.715873][T17745] 8021q: adding VLAN 0 to HW filter on device bond5
[  592.732810][T17745] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3715'.
[  592.735741][T17745] bond5: entered allmulticast mode
[  592.743751][T17745] bond5: (slave bridge2): making interface the new active one
[  592.746556][T17745] bridge2: entered promiscuous mode
[  592.748376][T17745] bridge2: entered allmulticast mode
[  592.751251][T17745] bond5: (slave bridge2): Enslaving as an active interface with an up link
[  592.777285][T17745] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3715'.
[  592.931995][T17745] bond5 (unregistering): (slave bridge2): Releasing backup interface
[  592.935068][T17745] bridge2: left promiscuous mode
[  592.937817][T17745] bridge2: left allmulticast mode
[  592.942661][T17745] bond5 (unregistering): Released all slaves
[  593.846594][T17782] fuse: Unknown parameter '&d'
[  594.283540][T17791] ptrace attach of "/syz-executor exec"[12873] was attempted by "                                                                ú“\x0c¬¹H;¤'ýëãSde/È�|¥zPüÚиWåÌ\x0b”PŠ<ÇI7ô{‚ŸûWr•×¢Ó‡am�L5Ûï{ô„Þ¶-Ú¨ÜøžØ¸­…›¼»E“fŽYSõ7£?šVê½sˆëŒ\x0b†MÈüÚáÐ÷Æ`ÖÓðg‰ï°Ø±/â—’ýäUéµCŽÎ�öOGËDn›û\x07Âæw™¹m}O²ñq¦ã�¬�p×]ŒðK|I(Ùïó‹9¯/èk¾ìY_¡Ö¤vqyØóÿ×rƲÈ.+/ñnîyŠ]§6ÖB\x5c
*‰ÈõLo§Ÿ× …\x0a ¢BÚ\x0dáÛAnÿë¬õ\x0bptQU�olLê„ÓobBàÀM¦ñÖãóȹ.š»T3#(Dª\x1bªº˜™ä?-íMóŠMÞ\x0dÅ{ÞX¯óâ˜Lhl1G‡J(°ï‰Ÿ™\x0a˜«À¹\x07ê‚b\x0cf¸Û\x5c–L™e#ç½y„wÝO%Ë0õ¥,Ž¨zÇ‚œrÏ\x5cHô\x22ý@)EâlĪoª´=æÉ0}Æ|šö�¶—m ÀÉ~ŽM÷ÏUK\x0býQoDU1h$étïQf‘\x0b½;\x0bvNõT/ñörP£Àx0mþ؇dG>Ît5QêI§¡šÝ0kŸópžì”;†€Èî©tÒ>?7~ðéÕžþç8ç)>‡\x0a.Fâv\x5c0CPª{©\x07Ô­4OT)®¥ü%ù³DkfCkF ç±¥�;¡Ðm\x0c•vä\x0cTʪz5©ñmÖ¢´�—ïvÜÄà‰Ä«'c®üß^ت°g_\x0bÆ��…8±)c,¨(qøáeäB¾ðãã‘»SPt4äo¹ 
¾I„HwL#©–@mU¡pªE¢^aÒÉgh~d¬_ö­9\x07r|ÖçGJj+&Ò½k(‘\x07”êërnéE§4¼(ŸõÇó#ë×\x0b YÅβBÇäˆ\x0aЦ&ÆþRý�`µ?èóL1t¸Ž÷ÎÕ«wËÑ.Mç=3ª|G‹÷ƒ“sùmƒgî4`|\x22{б�춋¬½†1â[{�þȯw/B‹_g»6-òqyk*™o¯’\x0d\x5cc8ÀèÌÿ\x5
[  594.389745][T17795] fuse: Unknown parameter 'fd0x0000000000000003'
[  594.699417][T17810] random: crng reseeded on system resumption
[  594.950936][   T29] vhci_hcd: vhci_device speed not set
[  595.889303][T17845] random: crng reseeded on system resumption
[  595.932622][T17842] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  595.962194][T17848] FAULT_INJECTION: forcing a failure.
[  595.962194][T17848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  595.968141][T17848] CPU: 3 UID: 0 PID: 17848 Comm: syz.2.3741 Not tainted syzkaller #0 PREEMPT(full) 
[  595.968166][T17848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  595.968177][T17848] Call Trace:
[  595.968183][T17848]  <TASK>
[  595.968191][T17848]  dump_stack_lvl+0x16c/0x1f0
[  595.968218][T17848]  should_fail_ex+0x512/0x640
[  595.968249][T17848]  _copy_from_user+0x2e/0xd0
[  595.968279][T17848]  kstrtouint_from_user+0xd6/0x1d0
[  595.968301][T17848]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  595.968323][T17848]  ? __lock_acquire+0xb8a/0x1c90
[  595.968359][T17848]  proc_fail_nth_write+0x83/0x220
[  595.968379][T17848]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  595.968406][T17848]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  595.968424][T17848]  vfs_write+0x2a0/0x11d0
[  595.968451][T17848]  ? __pfx_vfs_write+0x10/0x10
[  595.968469][T17848]  ? find_held_lock+0x2b/0x80
[  595.968494][T17848]  ? __fget_files+0x20e/0x3c0
[  595.968521][T17848]  ksys_write+0x12a/0x250
[  595.968540][T17848]  ? __pfx_ksys_write+0x10/0x10
[  595.968562][T17848]  ? rcu_is_watching+0x12/0xc0
[  595.968585][T17848]  __do_fast_syscall_32+0x7c/0x300
[  595.968611][T17848]  do_fast_syscall_32+0x32/0x80
[  595.968634][T17848]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  595.968656][T17848] RIP: 0023:0xf7f15579
[  595.968671][T17848] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  595.968688][T17848] RSP: 002b:00000000f5406590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  595.968706][T17848] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5406620
[  595.968718][T17848] RDX: 0000000000000001 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  595.968729][T17848] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  595.968739][T17848] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  595.968749][T17848] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  595.968775][T17848]  </TASK>
[  596.274847][T17855] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3743'.
[  597.853292][T17883] fuse: Bad value for 'fd'
[  597.890372][T17885] binder: 17884:17885 ioctl 40182103 80000300 returned -22
[  597.893462][T17885] tipc: Enabling of bearer <udp:z> rejected, failed to enable media
[  597.922059][T17887] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3752'.
[  597.948978][T17889] FAULT_INJECTION: forcing a failure.
[  597.948978][T17889] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  597.954669][T17889] CPU: 0 UID: 0 PID: 17889 Comm: syz.1.3753 Not tainted syzkaller #0 PREEMPT(full) 
[  597.954686][T17889] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  597.954694][T17889] Call Trace:
[  597.954698][T17889]  <TASK>
[  597.954702][T17889]  dump_stack_lvl+0x16c/0x1f0
[  597.954721][T17889]  should_fail_ex+0x512/0x640
[  597.954742][T17889]  _copy_to_user+0x32/0xd0
[  597.954754][T17889]  simple_read_from_buffer+0xcb/0x170
[  597.954778][T17889]  proc_fail_nth_read+0x197/0x240
[  597.954796][T17889]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  597.954813][T17889]  ? rw_verify_area+0xcf/0x6c0
[  597.954828][T17889]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  597.954843][T17889]  vfs_read+0x1e4/0xcf0
[  597.954858][T17889]  ? __pfx_vfs_read+0x10/0x10
[  597.954869][T17889]  ? find_held_lock+0x2b/0x80
[  597.954886][T17889]  ? __fget_files+0x20e/0x3c0
[  597.954903][T17889]  ksys_read+0x12a/0x250
[  597.954914][T17889]  ? __pfx_ksys_read+0x10/0x10
[  597.954928][T17889]  ? rcu_is_watching+0x12/0xc0
[  597.954943][T17889]  __do_fast_syscall_32+0x7c/0x300
[  597.954960][T17889]  do_fast_syscall_32+0x32/0x80
[  597.954974][T17889]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  597.954989][T17889] RIP: 0023:0xf7f22579
[  597.954998][T17889] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  597.955008][T17889] RSP: 002b:00000000f5416590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  597.955019][T17889] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5416620
[  597.955026][T17889] RDX: 000000000000000f RSI: 00000000f73b6ff4 RDI: 0000000000000000
[  597.955033][T17889] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  597.955044][T17889] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  597.955051][T17889] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  597.955068][T17889]  </TASK>
[  599.681163][T17917] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3761'.
[  599.694300][T17919] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3762'.
[  599.733804][T17921] fuse: Bad value for 'fd'
[  599.911607][T17922] netlink: 108 bytes leftover after parsing attributes in process `syz.5.3757'.
[  599.912323][T17922] netlink: 47515 bytes leftover after parsing attributes in process `syz.5.3757'.
[  600.634536][T17943] tmpfs: Bad value for 'mpol'
[  600.666037][T17941] netlink: 108 bytes leftover after parsing attributes in process `syz.0.3766'.
[  600.669591][T17941] netlink: 47515 bytes leftover after parsing attributes in process `syz.0.3766'.
[  601.164353][T17959] fuse: Bad value for 'fd'
[  601.770424][T17979] FAULT_INJECTION: forcing a failure.
[  601.770424][T17979] name fail_futex, interval 1, probability 0, space 0, times 0
[  601.777083][T17979] CPU: 1 UID: 0 PID: 17979 Comm: syz.0.3778 Not tainted syzkaller #0 PREEMPT(full) 
[  601.777107][T17979] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  601.777115][T17979] Call Trace:
[  601.777119][T17979]  <TASK>
[  601.777124][T17979]  dump_stack_lvl+0x16c/0x1f0
[  601.777142][T17979]  should_fail_ex+0x512/0x640
[  601.777162][T17979]  get_futex_key+0x293/0x1560
[  601.777191][T17979]  ? __pfx_get_futex_key+0x10/0x10
[  601.777244][T17979]  ? kasan_save_track+0x14/0x30
[  601.777258][T17979]  ? __kasan_kmalloc+0xaa/0xb0
[  601.777274][T17979]  futex_requeue+0x1f7/0x2020
[  601.777296][T17979]  ? find_held_lock+0x2b/0x80
[  601.777309][T17979]  ? __pfx_futex_requeue+0x10/0x10
[  601.777328][T17979]  ? get_pid_task+0x106/0x250
[  601.777346][T17979]  ? find_held_lock+0x2b/0x80
[  601.777360][T17979]  ? find_held_lock+0x2b/0x80
[  601.777372][T17979]  ? ksys_write+0x190/0x250
[  601.777386][T17979]  do_futex+0x1ad/0x350
[  601.777403][T17979]  ? __pfx_do_futex+0x10/0x10
[  601.777423][T17979]  __ia32_sys_futex_time32+0x1d9/0x460
[  601.777442][T17979]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  601.777459][T17979]  ? ksys_write+0x1ac/0x250
[  601.777487][T17979]  ? __pfx_ksys_write+0x10/0x10
[  601.777501][T17979]  ? rcu_is_watching+0x12/0xc0
[  601.777515][T17979]  __do_fast_syscall_32+0x7c/0x300
[  601.777532][T17979]  do_fast_syscall_32+0x32/0x80
[  601.777547][T17979]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  601.777561][T17979] RIP: 0023:0xf707d579
[  601.777570][T17979] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  601.777582][T17979] RSP: 002b:00000000f542b55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  601.777592][T17979] RAX: ffffffffffffffda RBX: 000000008000cffc RCX: 000000000000000c
[  601.777600][T17979] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000080048000
[  601.777606][T17979] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  601.777612][T17979] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  601.777619][T17979] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  601.777633][T17979]  </TASK>
[  601.838506][   T40] audit: type=1800 audit(1763594598.480:1974): pid=17980 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3779" name="bus" dev="overlay" ino=98 res=0 errno=0
[  602.879342][T17993] fuse: Bad value for 'fd'
[  603.214109][T18006] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  603.216677][T18006] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  603.219584][T18006] vhci_hcd vhci_hcd.0: Device attached
[  603.721460][T18007] vhci_hcd: connection closed
[  603.724137][   T46] vhci_hcd: stop threads
[  603.728440][   T46] vhci_hcd: release socket
[  603.731180][   T46] vhci_hcd: disconnect device
[  604.093931][T18017] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3791'.
[  604.293771][T18027] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  604.346878][T18032] netlink: 108 bytes leftover after parsing attributes in process `syz.2.3790'.
[  604.350302][T18032] netlink: 47515 bytes leftover after parsing attributes in process `syz.2.3790'.
[  604.551227][T18035] fuse: Invalid rootmode
[  605.840227][T18061] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3804'.
[  605.905349][   T40] audit: type=1804 audit(1763594602.550:1975): pid=18069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3808" name="/newroot/302/file0" dev="tmpfs" ino=1710 res=1 errno=0
[  605.907444][T18069] uprobe: syz.2.3808:18069 failed to unregister, leaking uprobe
[  605.971492][T18070] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  606.264500][T18085] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  607.678254][T18109] netlink: 108 bytes leftover after parsing attributes in process `syz.5.3816'.
[  607.683379][T18109] netlink: 47515 bytes leftover after parsing attributes in process `syz.5.3816'.
[  607.702207][T18110] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3817'.
[  607.707881][T18110] tipc: Started in network mode
[  607.709553][T18110] tipc: Node identity ac14140f, cluster identity 4711
[  607.712479][T18110] tipc: New replicast peer: 255.255.255.255
[  607.715019][T18110] tipc: Enabled bearer <udp:syz2>, priority 10
[  608.720824][T12963] tipc: Node number set to 2886997007
[  608.945448][T18134] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3826'.
[  609.069100][   T40] audit: type=1800 audit(1763594605.710:1976): pid=18144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3827" name="bus" dev="overlay" ino=149 res=0 errno=0
[  609.240742][   T53] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  609.390758][   T53] usb 5-1: Using ep0 maxpacket: 8
[  609.394938][   T53] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  609.398906][   T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.408758][   T53] pvrusb2: Hardware description: Terratec Grabster AV400
[  609.411800][   T53] pvrusb2: **********
[  609.413278][   T53] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  609.417536][   T53] pvrusb2: Important functionality might not be entirely working.
[  609.420463][   T53] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  609.425107][   T53] pvrusb2: **********
[  609.611456][ T2485] pvrusb2: Invalid write control endpoint
[  609.653872][ T2485] pvrusb2: Invalid write control endpoint
[  609.656906][ T2485] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  609.661446][ T2485] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  609.664186][ T2485] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  609.669108][ T2485] pvrusb2: Device being rendered inoperable
[  609.675880][ T2485] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  609.679033][ T2485] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  609.687267][ T2485] pvrusb2: Attached sub-driver cx25840
[  609.689429][ T2485] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  609.692941][ T2485] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  609.811205][T18142] pvrusb2: Attempted to execute control transfer when device not ok
[  609.818588][ T5939] usb 5-1: USB disconnect, device number 22
[  610.800906][T18169] netlink: 'syz.5.3833': attribute type 4 has an invalid length.
[  610.852149][T18169] netlink: 'syz.5.3833': attribute type 4 has an invalid length.
[  611.946275][T18186] netlink: 108 bytes leftover after parsing attributes in process `syz.0.3836'.
[  611.949524][T18186] netlink: 47515 bytes leftover after parsing attributes in process `syz.0.3836'.
[  612.689362][T18197] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  612.693506][T18197] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  612.696559][T18197] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  612.770218][T18212] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  612.789275][   T40] audit: type=1804 audit(1763594609.430:1977): pid=18211 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3843" name="/newroot/26/file0" dev="tmpfs" ino=170 res=1 errno=0
[  612.794298][T18211] uprobe: syz.5.3843:18211 failed to unregister, leaking uprobe
[  614.254033][T18246] fuse: Unknown parameter 'grou00000000000000000000'
[  614.483932][T18254] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  615.296974][T18274] FAULT_INJECTION: forcing a failure.
[  615.296974][T18274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  615.302334][T18274] CPU: 1 UID: 0 PID: 18274 Comm: syz.2.3862 Not tainted syzkaller #0 PREEMPT(full) 
[  615.302362][T18274] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  615.302369][T18274] Call Trace:
[  615.302374][T18274]  <TASK>
[  615.302379][T18274]  dump_stack_lvl+0x16c/0x1f0
[  615.302397][T18274]  should_fail_ex+0x512/0x640
[  615.302417][T18274]  _copy_from_user+0x2e/0xd0
[  615.302435][T18274]  get_compat_msghdr+0xa7/0x170
[  615.302447][T18274]  ? __pfx_get_compat_msghdr+0x10/0x10
[  615.302459][T18274]  ? __lock_acquire+0x622/0x1c90
[  615.302478][T18274]  ___sys_sendmsg+0x1ae/0x1d0
[  615.302491][T18274]  ? __pfx____sys_sendmsg+0x10/0x10
[  615.302501][T18274]  ? __lock_acquire+0x622/0x1c90
[  615.302529][T18274]  ? __pfx___might_resched+0x10/0x10
[  615.302545][T18274]  __sys_sendmmsg+0x2f9/0x420
[  615.302558][T18274]  ? __pfx___sys_sendmmsg+0x10/0x10
[  615.302581][T18274]  ? fput+0x9b/0xd0
[  615.302597][T18274]  ? ksys_write+0x1ac/0x250
[  615.302613][T18274]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  615.302624][T18274]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  615.302641][T18274]  __do_fast_syscall_32+0x7c/0x300
[  615.302657][T18274]  do_fast_syscall_32+0x32/0x80
[  615.302672][T18274]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  615.302687][T18274] RIP: 0023:0xf7f15579
[  615.302696][T18274] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  615.302708][T18274] RSP: 002b:00000000f53c455c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  615.302724][T18274] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080002940
[  615.302734][T18274] RDX: 000000000000017d RSI: 0000000000000811 RDI: 0000000000000000
[  615.302746][T18274] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  615.302755][T18274] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  615.302765][T18274] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  615.302790][T18274]  </TASK>
[  615.737993][T18286] fuse: Unknown parameter 'grou00000000000000000000'
[  616.407665][T18298] netlink: 108 bytes leftover after parsing attributes in process `syz.2.3869'.
[  616.410612][T18298] netlink: 47515 bytes leftover after parsing attributes in process `syz.2.3869'.
[  616.956446][T18305] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3870'.
[  616.965564][T18305] netlink: 47515 bytes leftover after parsing attributes in process `syz.1.3870'.
[  617.832170][T18322] fuse: Unknown parameter 'group_i00000000000000000000'
[  618.158874][T18317] syz.2.3874: vmalloc error: size 16777216, failed to allocated page array size 32768, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  618.164993][T18317] CPU: 1 UID: 0 PID: 18317 Comm: syz.2.3874 Not tainted syzkaller #0 PREEMPT(full) 
[  618.165008][T18317] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  618.165016][T18317] Call Trace:
[  618.165020][T18317]  <TASK>
[  618.165024][T18317]  dump_stack_lvl+0x16c/0x1f0
[  618.165042][T18317]  warn_alloc+0x248/0x3a0
[  618.165061][T18317]  ? __pfx_warn_alloc+0x10/0x10
[  618.165078][T18317]  ? packet_set_ring+0xb4c/0x17e0
[  618.165096][T18317]  ? __vmalloc_node_noprof+0xad/0xf0
[  618.165115][T18317]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  618.165137][T18317]  ? packet_set_ring+0xb4c/0x17e0
[  618.165158][T18317]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  618.165174][T18317]  ? alloc_pages_mpol+0x25a/0x550
[  618.165191][T18317]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  618.165206][T18317]  ? rcu_is_watching+0x12/0xc0
[  618.165221][T18317]  ? packet_set_ring+0xb4c/0x17e0
[  618.165237][T18317]  __vmalloc_node_noprof+0xad/0xf0
[  618.165259][T18317]  ? packet_set_ring+0xb4c/0x17e0
[  618.165279][T18317]  packet_set_ring+0xb4c/0x17e0
[  618.165302][T18317]  packet_setsockopt+0x121b/0x33c0
[  618.165314][T18317]  ? __pfx___might_resched+0x10/0x10
[  618.165328][T18317]  ? __pfx_packet_setsockopt+0x10/0x10
[  618.165339][T18317]  ? aa_sk_perm+0x2f4/0xb10
[  618.165356][T18317]  ? find_held_lock+0x2b/0x80
[  618.165369][T18317]  ? aa_sock_opt_perm+0xfd/0x1c0
[  618.165386][T18317]  ? __pfx_packet_setsockopt+0x10/0x10
[  618.165398][T18317]  do_sock_setsockopt+0xf3/0x1d0
[  618.165414][T18317]  __sys_setsockopt+0x120/0x1a0
[  618.165428][T18317]  __ia32_sys_setsockopt+0xbc/0x160
[  618.165438][T18317]  ? lockdep_hardirqs_on+0x7c/0x110
[  618.165451][T18317]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  618.165467][T18317]  __do_fast_syscall_32+0x7c/0x300
[  618.165484][T18317]  do_fast_syscall_32+0x32/0x80
[  618.165498][T18317]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  618.165513][T18317] RIP: 0023:0xf7f15579
[  618.165522][T18317] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  618.165534][T18317] RSP: 002b:00000000f53c455c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  618.165544][T18317] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000000107
[  618.165551][T18317] RDX: 0000000000000005 RSI: 00000000800000c0 RDI: 000000000000001c
[  618.165557][T18317] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  618.165563][T18317] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  618.165570][T18317] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  618.165584][T18317]  </TASK>
[  618.165588][T18317] Mem-Info:
[  618.296630][T18317] active_anon:10447 inactive_anon:464 isolated_anon:0
[  618.296630][T18317]  active_file:986 inactive_file:21022 isolated_file:0
[  618.296630][T18317]  unevictable:1769 dirty:30 writeback:15
[  618.296630][T18317]  slab_reclaimable:6313 slab_unreclaimable:60157
[  618.296630][T18317]  mapped:34587 shmem:10213 pagetables:1855
[  618.296630][T18317]  sec_pagetables:333 bounce:0
[  618.296630][T18317]  kernel_misc_reclaimable:0
[  618.296630][T18317]  free:41347 free_pcp:8097 free_cma:0
[  618.326310][T18317] Node 0 active_anon:1192kB inactive_anon:524kB active_file:0kB inactive_file:208kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:3368kB dirty:0kB writeback:0kB shmem:4680kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8736kB pagetables:2404kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  618.346102][T18317] Node 1 active_anon:40596kB inactive_anon:1332kB active_file:4008kB inactive_file:83880kB unevictable:3540kB isolated(anon):0kB isolated(file):0kB mapped:134980kB dirty:520kB writeback:60kB shmem:36172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5972kB pagetables:5016kB sec_pagetables:180kB all_unreclaimable? no Balloon:0kB
[  618.356798][T18317] Node 0 DMA free:2112kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:8kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:324kB local_pcp:184kB free_cma:0kB
[  618.368637][T18317] lowmem_reserve[]: 0 294 294 294 294
[  618.370785][T18317] Node 0 DMA32 free:15508kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:996kB inactive_anon:632kB active_file:0kB inactive_file:280kB unevictable:3536kB writepending:4kB zspages:1716kB present:1032196kB managed:301132kB mlocked:0kB bounce:0kB free_pcp:3636kB local_pcp:2836kB free_cma:0kB
[  618.381713][T18317] lowmem_reserve[]: 0 0 0 0 0
[  618.383422][T18317] Node 1 DMA32 free:147200kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40632kB inactive_anon:1332kB active_file:4008kB inactive_file:83880kB unevictable:3540kB writepending:588kB zspages:5176kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:28108kB local_pcp:8424kB free_cma:0kB
[  618.395845][T18317] lowmem_reserve[]: 0 0 0 0 0
[  618.397874][T18317] Node 0 DMA: 4*4kB (UM) 2*8kB (UM) 8*16kB (UM) 7*32kB (UM) 3*64kB (U) 0*128kB 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2112kB
[  618.408539][T18317] Node 0 DMA32: 2*4kB (UM) 11*8kB (UME) 69*16kB (ME) 75*32kB (UME) 68*64kB (UME) 31*128kB (UM) 10*256kB (UM) 2*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 15504kB
[  618.414376][T18317] Node 1 DMA32: 38*4kB (ME) 51*8kB (UE) 35*16kB (UME) 11*32kB (E) 63*64kB (UME) 199*128kB (UME) 110*256kB (UME) 54*512kB (UM) 59*1024kB (UM) 0*2048kB 0*4096kB = 147200kB
[  618.421471][T18317] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  618.425334][T18317] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  618.428622][T18317] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  618.431991][T18317] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  618.435502][T18317] 32914 total pagecache pages
[  618.437324][T18317] 656 pages in swap cache
[  618.438913][T18317] Free swap  = 96756kB
[  618.440433][T18317] Total swap = 124996kB
[  618.442044][T18317] 524155 pages RAM
[  618.443472][T18317] 0 pages HighMem/MovableOnly
[  618.445214][T18317] 207977 pages reserved
[  618.447023][T18317] 0 pages cma reserved
[  619.948946][T18353] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3885'.
[  620.145617][   T40] audit: type=1800 audit(1763594616.790:1978): pid=18354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3884" name="bus" dev="overlay" ino=2231 res=0 errno=0
[  620.406395][T18362] fuse: Unknown parameter 'group_i00000000000000000000'
[  621.034096][   T40] audit: type=1800 audit(1763594617.660:1979): pid=18368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3888" name="bus" dev="overlay" ino=2030 res=0 errno=0
[  621.306449][T18373] FAULT_INJECTION: forcing a failure.
[  621.306449][T18373] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  621.315020][T18373] CPU: 1 UID: 0 PID: 18373 Comm: syz.2.3889 Not tainted syzkaller #0 PREEMPT(full) 
[  621.315037][T18373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  621.315044][T18373] Call Trace:
[  621.315048][T18373]  <TASK>
[  621.315065][T18373]  dump_stack_lvl+0x16c/0x1f0
[  621.315084][T18373]  should_fail_ex+0x512/0x640
[  621.315104][T18373]  _copy_from_user+0x2e/0xd0
[  621.315124][T18373]  kstrtouint_from_user+0xd6/0x1d0
[  621.315138][T18373]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  621.315152][T18373]  ? __lock_acquire+0xb8a/0x1c90
[  621.315174][T18373]  proc_fail_nth_write+0x83/0x220
[  621.315189][T18373]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  621.315205][T18373]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  621.315217][T18373]  vfs_write+0x2a0/0x11d0
[  621.315234][T18373]  ? __pfx_vfs_write+0x10/0x10
[  621.315245][T18373]  ? find_held_lock+0x2b/0x80
[  621.315260][T18373]  ? __fget_files+0x20e/0x3c0
[  621.315271][T18373]  ? handle_mm_fault+0x250/0xd10
[  621.315293][T18373]  ksys_write+0x12a/0x250
[  621.315305][T18373]  ? __pfx_ksys_write+0x10/0x10
[  621.315319][T18373]  ? rcu_is_watching+0x12/0xc0
[  621.315334][T18373]  __do_fast_syscall_32+0x7c/0x300
[  621.315351][T18373]  do_fast_syscall_32+0x32/0x80
[  621.315366][T18373]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  621.315380][T18373] RIP: 0023:0xf7f15579
[  621.315390][T18373] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  621.315401][T18373] RSP: 002b:00000000f53c4590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  621.315412][T18373] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f53c4620
[  621.315419][T18373] RDX: 0000000000000001 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  621.315426][T18373] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  621.315432][T18373] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  621.315438][T18373] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  621.315453][T18373]  </TASK>
[  622.240779][ T9158] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  622.390827][ T9158] usb 5-1: Using ep0 maxpacket: 16
[  622.394440][ T9158] usb 5-1: config 0 has an invalid interface number: 145 but max is 0
[  622.397184][ T9158] usb 5-1: config 0 has no interface number 0
[  622.402109][ T9158] usb 5-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  622.406195][ T9158] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  622.413757][ T9158] usb 5-1: Product: syz
[  622.415816][ T9158] usb 5-1: Manufacturer: syz
[  622.417928][ T9158] usb 5-1: SerialNumber: syz
[  622.432611][ T9158] usb 5-1: config 0 descriptor??
[  622.441471][ T9158] hub 5-1:0.145: bad descriptor, ignoring hub
[  622.443680][ T9158] hub 5-1:0.145: probe with driver hub failed with error -5
[  622.449482][ T9158] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.145/input/input17
[  623.134487][   T40] audit: type=1800 audit(1763594619.780:1980): pid=18397 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3897" name="bus" dev="overlay" ino=1824 res=0 errno=0
[  623.511009][T18400] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  624.759498][ T9158] usb 5-1: USB disconnect, device number 23
[  625.914382][   T40] audit: type=1800 audit(1763594622.560:1981): pid=18438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3907" name="bus" dev="overlay" ino=278 res=0 errno=0
[  626.816063][T18448] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  626.968842][T18449] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  627.790216][T18470] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  627.847954][T18470] batman_adv: batadv0: Removing interface: batadv_slave_1
[  628.497106][T18482] netlink: 108 bytes leftover after parsing attributes in process `syz.2.3908'.
[  628.501751][T18482] netlink: 47515 bytes leftover after parsing attributes in process `syz.2.3908'.
[  628.720432][T18480] netlink: 108 bytes leftover after parsing attributes in process `syz.0.3917'.
[  628.731605][T18480] netlink: 47515 bytes leftover after parsing attributes in process `syz.0.3917'.
[  629.124322][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  630.188641][T18506] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  630.757678][T18522] FAULT_INJECTION: forcing a failure.
[  630.757678][T18522] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  630.765305][T18522] CPU: 3 UID: 0 PID: 18522 Comm: syz.1.3926 Not tainted syzkaller #0 PREEMPT(full) 
[  630.765330][T18522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  630.765343][T18522] Call Trace:
[  630.765349][T18522]  <TASK>
[  630.765356][T18522]  dump_stack_lvl+0x16c/0x1f0
[  630.765383][T18522]  should_fail_ex+0x512/0x640
[  630.765414][T18522]  _copy_from_user+0x2e/0xd0
[  630.765444][T18522]  compat_wext_handle_ioctl+0xc0/0x310
[  630.765470][T18522]  ? __pfx_compat_wext_handle_ioctl+0x10/0x10
[  630.765492][T18522]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  630.765524][T18522]  ? __pfx_compat_raw_ioctl+0x10/0x10
[  630.765551][T18522]  ? compat_raw_ioctl+0x4b/0x60
[  630.765580][T18522]  compat_sock_ioctl+0x320/0x730
[  630.765607][T18522]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  630.765630][T18522]  ? hook_file_ioctl_common+0x145/0x410
[  630.765654][T18522]  ? __fget_files+0x20e/0x3c0
[  630.765681][T18522]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  630.765703][T18522]  __ia32_compat_sys_ioctl+0x242/0x370
[  630.765733][T18522]  __do_fast_syscall_32+0x7c/0x300
[  630.765758][T18522]  do_fast_syscall_32+0x32/0x80
[  630.765782][T18522]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  630.765803][T18522] RIP: 0023:0xf7f22579
[  630.765819][T18522] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  630.765835][T18522] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  630.765854][T18522] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008b29
[  630.765866][T18522] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  630.765875][T18522] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  630.765885][T18522] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  630.765896][T18522] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  630.765919][T18522]  </TASK>
[  631.423486][T18536] fuse: Unknown parameter 'user_id00000000000000000000'
[  631.848156][T18541] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3931'.
[  632.521803][T18553] FAULT_INJECTION: forcing a failure.
[  632.521803][T18553] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  632.526623][T18553] CPU: 2 UID: 0 PID: 18553 Comm: syz.0.3933 Not tainted syzkaller #0 PREEMPT(full) 
[  632.526640][T18553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  632.526647][T18553] Call Trace:
[  632.526665][T18553]  <TASK>
[  632.526671][T18553]  dump_stack_lvl+0x16c/0x1f0
[  632.526691][T18553]  should_fail_ex+0x512/0x640
[  632.526728][T18553]  _copy_from_user+0x2e/0xd0
[  632.526758][T18553]  ia32_restore_sigcontext+0xc3/0x630
[  632.526787][T18553]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[  632.526815][T18553]  ? rcu_is_watching+0x12/0xc0
[  632.526835][T18553]  ? _raw_spin_unlock_irq+0x23/0x50
[  632.526852][T18553]  ? lockdep_hardirqs_on+0x7c/0x110
[  632.526875][T18553]  __do_compat_sys_sigreturn+0x1b5/0x280
[  632.526899][T18553]  ? __pfx___do_compat_sys_sigreturn+0x10/0x10
[  632.526925][T18553]  ? rcu_is_watching+0x12/0xc0
[  632.526943][T18553]  do_int80_emulation+0x104/0x3e0
[  632.526968][T18553]  asm_int80_emulation+0x1a/0x20
[  632.526984][T18553] RIP: 0023:0xf707d598
[  632.526998][T18553] Code: 00 00 51 52 55 89 e5 0f 34 cd 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 90 58 b8 77 00 00 00 cd 80 <90> 8d b4 26 00 00 00 00 b8 ad 00 00 00 cd 80 90 90 90 90 90 90 90
[  632.527013][T18553] RSP: 002b:00000000f546c774 EFLAGS: 00000296 ORIG_RAX: 0000000000000077
[  632.527030][T18553] RAX: ffffffffffffffda RBX: 00000000000004ad RCX: 0000000000000000
[  632.527040][T18553] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  632.527050][T18553] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  632.527058][T18553] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  632.527067][T18553] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  632.527088][T18553]  </TASK>
[  632.637160][T18555] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  633.429713][T18567] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3937'.
[  633.625403][T18569] fuse: Unknown parameter 'user_id00000000000000000000'
[  634.056431][T18586] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3940'.
[  634.059510][T18586] netlink: 47515 bytes leftover after parsing attributes in process `syz.1.3940'.
[  634.886741][T18598] FAULT_INJECTION: forcing a failure.
[  634.886741][T18598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  634.893062][T18598] CPU: 2 UID: 0 PID: 18598 Comm: syz.0.3945 Not tainted syzkaller #0 PREEMPT(full) 
[  634.893103][T18598] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  634.893115][T18598] Call Trace:
[  634.893121][T18598]  <TASK>
[  634.893130][T18598]  dump_stack_lvl+0x16c/0x1f0
[  634.893159][T18598]  should_fail_ex+0x512/0x640
[  634.893191][T18598]  _copy_to_user+0x32/0xd0
[  634.893211][T18598]  simple_read_from_buffer+0xcb/0x170
[  634.893242][T18598]  proc_fail_nth_read+0x197/0x240
[  634.893264][T18598]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  634.893287][T18598]  ? rw_verify_area+0xcf/0x6c0
[  634.893304][T18598]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  634.893324][T18598]  vfs_read+0x1e4/0xcf0
[  634.893349][T18598]  ? __pfx_vfs_read+0x10/0x10
[  634.893367][T18598]  ? find_held_lock+0x2b/0x80
[  634.893395][T18598]  ? __fget_files+0x20e/0x3c0
[  634.893412][T18598]  ? __ia32_sys_timer_settime32+0x130/0x2c0
[  634.893449][T18598]  ksys_read+0x12a/0x250
[  634.893469][T18598]  ? __pfx_ksys_read+0x10/0x10
[  634.893491][T18598]  ? rcu_is_watching+0x12/0xc0
[  634.893515][T18598]  __do_fast_syscall_32+0x7c/0x300
[  634.893539][T18598]  do_fast_syscall_32+0x32/0x80
[  634.893563][T18598]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  634.893585][T18598] RIP: 0023:0xf707d579
[  634.893600][T18598] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  634.893617][T18598] RSP: 002b:00000000f546d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  634.893634][T18598] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f546d620
[  634.893646][T18598] RDX: 000000000000000f RSI: 00000000f7416ff4 RDI: 0000000000000000
[  634.893657][T18598] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  634.893668][T18598] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  634.893679][T18598] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  634.893705][T18598]  </TASK>
[  634.990341][    C2] vkms_vblank_simulate: vblank timer overrun
[  635.001077][   T53] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[  635.150996][   T53] usb 6-1: Using ep0 maxpacket: 8
[  635.184041][   T53] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  635.188524][   T53] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  635.206988][   T53] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  635.217269][   T53] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  635.223520][   T53] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  635.229497][   T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  635.257735][   T53] hub 6-1:1.0: bad descriptor, ignoring hub
[  635.260527][   T53] hub 6-1:1.0: probe with driver hub failed with error -5
[  635.265801][   T53] cdc_wdm 6-1:1.0: skipping garbage
[  635.270822][   T53] cdc_wdm 6-1:1.0: skipping garbage
[  635.286299][   T53] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  635.290272][   T53] cdc_wdm 6-1:1.0: Unknown control protocol
[  635.666043][T18613] fuse: Unknown parameter 'user_id00000000000000000000'
[  635.982750][T18621] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  635.985670][T18621] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  636.001212][T18621] vhci_hcd vhci_hcd.0: Device attached
[  636.147773][T18593] usb 6-1: reset high-speed USB device number 46 using dummy_hcd
[  636.156112][T18593] usb 6-1: device reset changed ep0 maxpacket size!
[  636.165750][   T55] usb 6-1: USB disconnect, device number 46
[  636.189118][T18629] FAULT_INJECTION: forcing a failure.
[  636.189118][T18629] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  636.194927][T18629] CPU: 2 UID: 0 PID: 18629 Comm: syz.2.3954 Not tainted syzkaller #0 PREEMPT(full) 
[  636.194944][T18629] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  636.194952][T18629] Call Trace:
[  636.194956][T18629]  <TASK>
[  636.194961][T18629]  dump_stack_lvl+0x16c/0x1f0
[  636.194981][T18629]  should_fail_ex+0x512/0x640
[  636.195003][T18629]  _copy_from_user+0x2e/0xd0
[  636.195023][T18629]  userfaultfd_ioctl+0x28a/0x3930
[  636.195046][T18629]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  636.195065][T18629]  ? do_vfs_ioctl+0x128/0x14f0
[  636.195084][T18629]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  636.195106][T18629]  ? find_held_lock+0x2b/0x80
[  636.195123][T18629]  ? hook_file_ioctl_common+0x145/0x410
[  636.195147][T18629]  ? __fget_files+0x20e/0x3c0
[  636.195166][T18629]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  636.195198][T18629]  ? compat_ptr_ioctl+0x6e/0xa0
[  636.195219][T18629]  compat_ptr_ioctl+0x6e/0xa0
[  636.195235][T18629]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  636.195251][T18629]  __ia32_compat_sys_ioctl+0x242/0x370
[  636.195270][T18629]  __do_fast_syscall_32+0x7c/0x300
[  636.195287][T18629]  do_fast_syscall_32+0x32/0x80
[  636.195302][T18629]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  636.195316][T18629] RIP: 0023:0xf7f15579
[  636.195325][T18629] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  636.195337][T18629] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  636.195353][T18629] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa05
[  636.195363][T18629] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  636.195374][T18629] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  636.195385][T18629] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  636.195396][T18629] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  636.195421][T18629]  </TASK>
[  636.273930][    C2] vkms_vblank_simulate: vblank timer overrun
[  636.281683][   T53] usb 48-1: SetAddress Request (3) to port 0
[  636.291399][   T53] usb 48-1: new SuperSpeed USB device number 3 using vhci_hcd
[  636.295329][T18631] netlink: 108 bytes leftover after parsing attributes in process `syz.0.3952'.
[  636.300775][   T55] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[  636.305582][T18631] netlink: 47515 bytes leftover after parsing attributes in process `syz.0.3952'.
[  636.510873][   T55] usb 6-1: unable to get BOS descriptor or descriptor too short
[  636.532021][   T55] usb 6-1: config 0 interface 0 has no altsetting 0
[  636.542145][   T55] usb 6-1: New USB device found, idVendor=0e41, idProduct=4156, bcdDevice=15.eb
[  636.546584][   T55] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  636.550384][   T55] usb 6-1: Product: syz
[  636.552409][   T55] usb 6-1: Manufacturer: syz
[  636.554483][   T55] usb 6-1: SerialNumber: syz
[  636.560811][   T55] usb 6-1: config 0 descriptor??
[  636.765303][T18622] vhci_hcd: connection reset by peer
[  636.767516][T14753] vhci_hcd: stop threads
[  636.769462][T14753] vhci_hcd: release socket
[  636.771861][T14753] vhci_hcd: disconnect device
[  636.879400][T18645] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  637.027708][T18593] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  637.032191][T18593] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  637.041824][T18593] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  637.051038][T18593] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  637.070184][T18593] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  637.076883][T18593] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  637.117590][   T55] snd_usb_podhd 6-1:0.0: Line 6 POD HDDESKTOP found
[  637.126658][   T55] snd_usb_podhd 6-1:0.0: set_interface failed
[  637.136388][   T55] snd_usb_podhd 6-1:0.0: Line 6 POD HDDESKTOP now disconnected
[  637.149038][   T55] snd_usb_podhd 6-1:0.0: probe with driver snd_usb_podhd failed with error -71
[  637.169430][   T55] usb 6-1: USB disconnect, device number 47
[  637.218166][T18653] fuse: Bad value for 'fd'
[  638.243458][   T40] audit: type=1800 audit(1763594634.890:1982): pid=18671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3966" name="bus" dev="overlay" ino=1923 res=0 errno=0
[  638.701641][T18678] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  639.337013][   T40] audit: type=1800 audit(1763594635.980:1983): pid=18686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3970" name="bus" dev="overlay" ino=2152 res=0 errno=0
[  641.361543][   T53] usb 48-1: device descriptor read/8, error -110
[  641.627316][   T40] audit: type=1800 audit(1763594638.270:1984): pid=18711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3977" name="bus" dev="overlay" ino=2172 res=0 errno=0
[  641.805303][   T53] usb usb48-port1: attempt power cycle
[  642.424525][   T53] usb usb48-port1: unable to enumerate USB device
[  642.710961][ T9158] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  642.860808][ T9158] usb 10-1: Using ep0 maxpacket: 8
[  642.865369][ T9158] usb 10-1: config 0 has no interfaces?
[  642.876635][ T9158] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  642.879886][ T9158] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  642.884991][ T9158] usb 10-1: Product: syz
[  642.889484][ T9158] usb 10-1: Manufacturer: syz
[  642.894437][ T9158] usb 10-1: SerialNumber: syz
[  642.896626][T18736] netlink: 108 bytes leftover after parsing attributes in process `syz.2.3981'.
[  642.901366][ T9158] usb 10-1: config 0 descriptor??
[  642.904444][T18736] netlink: 47515 bytes leftover after parsing attributes in process `syz.2.3981'.
[  643.116486][   T54] usb 10-1: USB disconnect, device number 5
[  643.420431][T18746] netlink: 'syz.1.3986': attribute type 1 has an invalid length.
[  643.481413][ T9158] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  643.641102][ T9158] usb 5-1: Using ep0 maxpacket: 16
[  643.651694][ T9158] usb 5-1: config 0 has an invalid interface number: 132 but max is 0
[  643.656532][ T9158] usb 5-1: config 0 has no interface number 0
[  643.676205][ T9158] usb 5-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  643.680875][ T9158] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  643.684817][ T9158] usb 5-1: Product: syz
[  643.687125][ T9158] usb 5-1: Manufacturer: syz
[  643.689740][ T9158] usb 5-1: SerialNumber: syz
[  643.721945][ T9158] usb 5-1: config 0 descriptor??
[  643.742751][ T9158] hub 5-1:0.132: bad descriptor, ignoring hub
[  643.746186][ T9158] hub 5-1:0.132: probe with driver hub failed with error -5
[  643.783413][ T9158] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.132/input/input19
[  643.906467][T18753] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  644.360967][   T53] usb 5-1: USB disconnect, device number 24
[  644.452796][T18762] fuse: Bad value for 'fd'
[  644.872806][T18771] fuse: Unknown parameter '0x0000000000000003'
[  647.529429][   T40] audit: type=1800 audit(1763594644.170:1985): pid=18810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4002" name="bus" dev="overlay" ino=1997 res=0 errno=0
[  647.715546][T18814] fuse: Unknown parameter '0x0000000000000003'
[  649.381024][T18841] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  649.833038][T18847] IPVS: ip_vs_add_dest(): server weight less than zero
[  649.837077][T18847] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4012'.
[  649.852241][T18849] FAULT_INJECTION: forcing a failure.
[  649.852241][T18849] name fail_futex, interval 1, probability 0, space 0, times 0
[  649.857851][T18849] CPU: 2 UID: 0 PID: 18849 Comm: syz.0.4013 Not tainted syzkaller #0 PREEMPT(full) 
[  649.857868][T18849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  649.857875][T18849] Call Trace:
[  649.857879][T18849]  <TASK>
[  649.857884][T18849]  dump_stack_lvl+0x16c/0x1f0
[  649.857903][T18849]  should_fail_ex+0x512/0x640
[  649.857924][T18849]  get_futex_key+0x1d0/0x1560
[  649.857942][T18849]  ? __pfx_get_futex_key+0x10/0x10
[  649.857957][T18849]  ? futex_private_hash+0x198/0x470
[  649.857971][T18849]  ? futex_private_hash+0x324/0x470
[  649.857987][T18849]  futex_wait_multiple_setup+0x13c/0x7b0
[  649.858014][T18849]  futex_wait_multiple+0xe6/0x480
[  649.858034][T18849]  ? __pfx_futex_wait_multiple+0x10/0x10
[  649.858052][T18849]  ? __do_sys_futex_waitv+0x221/0x2c0
[  649.858071][T18849]  __do_sys_futex_waitv+0x17f/0x2c0
[  649.858088][T18849]  ? __pfx___do_sys_futex_waitv+0x10/0x10
[  649.858110][T18849]  ? rcu_is_watching+0x12/0xc0
[  649.858125][T18849]  __do_fast_syscall_32+0x7c/0x300
[  649.858142][T18849]  do_fast_syscall_32+0x32/0x80
[  649.858156][T18849]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  649.858171][T18849] RIP: 0023:0xf707d579
[  649.858180][T18849] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  649.858191][T18849] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 00000000000001c1
[  649.858202][T18849] RAX: ffffffffffffffda RBX: 00000000800047c0 RCX: 0000000000000001
[  649.858209][T18849] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  649.858215][T18849] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  649.858221][T18849] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  649.858228][T18849] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  649.858242][T18849]  </TASK>
[  650.400521][T18857] fuse: Unknown parameter '0x0000000000000003'
[  651.116396][   T40] audit: type=1800 audit(1763594647.760:1986): pid=18875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4021" name="bus" dev="overlay" ino=2027 res=0 errno=0
[  651.926469][T18888] fuse: Unknown parameter '0x0000000000000003'
[  652.260760][    T9] usb 10-1: new low-speed USB device number 6 using dummy_hcd
[  652.412536][    T9] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  652.415234][    T9] usb 10-1: config 0 has no interface number 0
[  652.420903][    T9] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  652.424606][    T9] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  652.438435][    T9] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  652.448464][    T9] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  652.458579][    T9] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  652.463212][    T9] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  652.468277][    T9] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  652.480963][    T9] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  652.492175][    T9] usb 10-1: config 0 descriptor??
[  652.495186][T18891] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  652.497685][T18891] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  652.511727][    T9] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  654.944370][   T53] usb 10-1: USB disconnect, device number 6
[  654.956270][   T53] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[  655.139215][T18932] netlink: 27 bytes leftover after parsing attributes in process `syz.2.4034'.
[  655.152216][T18934] fuse: Unknown parameter 'fd0x0000000000000003'
[  656.491950][   T40] audit: type=1800 audit(1763594653.130:1987): pid=18949 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.4040" name="bus" dev="overlay" ino=442 res=0 errno=0
[  658.843214][T18987] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  659.534878][   T40] audit: type=1800 audit(1763594656.180:1988): pid=18999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4052" name="bus" dev="overlay" ino=2302 res=0 errno=0
[  660.940858][T19032] netlink: 52 bytes leftover after parsing attributes in process `syz.5.4058'.
[  660.944702][T19032] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4058'.
[  660.948620][T19032] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4058'.
[  660.951726][T19032] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4058'.
[  660.958263][T19032] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  660.962408][T19032] macvlan2: entered allmulticast mode
[  660.965157][T19032] netdevsim netdevsim5 netdevsim0: entered allmulticast mode
[  662.017515][   T40] audit: type=1800 audit(1763594658.660:1989): pid=19046 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4065" name="bus" dev="overlay" ino=2327 res=0 errno=0
[  662.297084][T19051] SQUASHFS error: Failed to read block 0x0: -5
[  662.306852][T19051] unable to read squashfs_super_block
[  663.210886][T12963] usb 5-1: new low-speed USB device number 25 using dummy_hcd
[  663.363908][T12963] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  663.367438][T12963] usb 5-1: config 0 has no interface number 0
[  663.370141][T12963] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  663.375913][T12963] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  663.381041][T12963] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  663.386096][T12963] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  663.391663][T12963] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  663.397536][T12963] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  663.404004][T12963] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  663.408087][T12963] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.418742][T12963] usb 5-1: config 0 descriptor??
[  663.422863][T19065] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  663.426507][T19065] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  663.433051][T12963] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  663.501872][T19073] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4071'.
[  663.505476][T19073] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4071'.
[  664.370212][T19083] fuse: Bad value for 'rootmode'
[  666.403646][ T9158] usb 5-1: USB disconnect, device number 25
[  666.411803][ T9158] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  666.651463][T19120] fuse: Unknown parameter 'use00000000000000000000'
[  666.685529][T19118] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  667.135765][T19131] FAULT_INJECTION: forcing a failure.
[  667.135765][T19131] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  667.149259][T19131] CPU: 3 UID: 0 PID: 19131 Comm: syz.0.4087 Not tainted syzkaller #0 PREEMPT(full) 
[  667.149298][T19131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  667.149308][T19131] Call Trace:
[  667.149315][T19131]  <TASK>
[  667.149323][T19131]  dump_stack_lvl+0x16c/0x1f0
[  667.149351][T19131]  should_fail_ex+0x512/0x640
[  667.149433][T19131]  _copy_from_user+0x2e/0xd0
[  667.149468][T19131]  kvm_vm_compat_ioctl+0x32d/0x3f0
[  667.149491][T19131]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  667.149513][T19131]  ? find_held_lock+0x2b/0x80
[  667.149533][T19131]  ? hook_file_ioctl_common+0x145/0x410
[  667.149558][T19131]  ? __fget_files+0x20e/0x3c0
[  667.149583][T19131]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  667.149604][T19131]  __ia32_compat_sys_ioctl+0x242/0x370
[  667.149644][T19131]  __do_fast_syscall_32+0x7c/0x300
[  667.149670][T19131]  do_fast_syscall_32+0x32/0x80
[  667.149694][T19131]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  667.149716][T19131] RIP: 0023:0xf707d579
[  667.149731][T19131] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  667.149748][T19131] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  667.149766][T19131] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004010ae42
[  667.149779][T19131] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  667.149789][T19131] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  667.149800][T19131] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  667.149811][T19131] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  667.149836][T19131]  </TASK>
[  667.414000][T19136] FAULT_INJECTION: forcing a failure.
[  667.414000][T19136] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  667.418612][T19136] CPU: 3 UID: 0 PID: 19136 Comm: syz.5.4088 Not tainted syzkaller #0 PREEMPT(full) 
[  667.418632][T19136] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  667.418641][T19136] Call Trace:
[  667.418647][T19136]  <TASK>
[  667.418653][T19136]  dump_stack_lvl+0x16c/0x1f0
[  667.418675][T19136]  should_fail_ex+0x512/0x640
[  667.418699][T19136]  _copy_from_user+0x2e/0xd0
[  667.418721][T19136]  userfaultfd_ioctl+0xe13/0x3930
[  667.418746][T19136]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  667.418771][T19136]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  667.418792][T19136]  ? do_vfs_ioctl+0x128/0x14f0
[  667.418813][T19136]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  667.418840][T19136]  ? find_held_lock+0x2b/0x80
[  667.418855][T19136]  ? hook_file_ioctl_common+0x145/0x410
[  667.418874][T19136]  ? __fget_files+0x20e/0x3c0
[  667.418889][T19136]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  667.418912][T19136]  ? compat_ptr_ioctl+0x6e/0xa0
[  667.418930][T19136]  compat_ptr_ioctl+0x6e/0xa0
[  667.418949][T19136]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  667.418968][T19136]  __ia32_compat_sys_ioctl+0x242/0x370
[  667.418991][T19136]  __do_fast_syscall_32+0x7c/0x300
[  667.419012][T19136]  do_fast_syscall_32+0x32/0x80
[  667.419029][T19136]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  667.419047][T19136] RIP: 0023:0xf70ad579
[  667.419057][T19136] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  667.419071][T19136] RSP: 002b:00000000f549d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  667.419084][T19136] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c020aa08
[  667.419093][T19136] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  667.419100][T19136] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  667.419108][T19136] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  667.419116][T19136] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  667.419134][T19136]  </TASK>
[  668.626283][T19154] FAULT_INJECTION: forcing a failure.
[  668.626283][T19154] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  668.633601][T19154] CPU: 3 UID: 0 PID: 19154 Comm: syz.2.4093 Not tainted syzkaller #0 PREEMPT(full) 
[  668.633633][T19154] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  668.633654][T19154] Call Trace:
[  668.633663][T19154]  <TASK>
[  668.633672][T19154]  dump_stack_lvl+0x16c/0x1f0
[  668.633703][T19154]  should_fail_ex+0x512/0x640
[  668.633739][T19154]  _copy_from_iter+0x29f/0x1720
[  668.633777][T19154]  ? __asan_memset+0x23/0x50
[  668.633800][T19154]  ? __pfx__copy_from_iter+0x10/0x10
[  668.633833][T19154]  ? __alloc_skb+0x200/0x380
[  668.633865][T19154]  ? __pfx___alloc_skb+0x10/0x10
[  668.633894][T19154]  ? __pfx___mutex_lock+0x10/0x10
[  668.633921][T19154]  ? trace_mm_page_alloc+0x100/0x1a0
[  668.633956][T19154]  skb_copy_datagram_from_iter+0x124/0x740
[  668.633997][T19154]  tun_get_user+0x1850/0x3cc0
[  668.634037][T19154]  ? __pfx_tun_get_user+0x10/0x10
[  668.634062][T19154]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  668.634094][T19154]  ? find_held_lock+0x2b/0x80
[  668.634118][T19154]  ? tun_get+0x191/0x370
[  668.634146][T19154]  tun_chr_write_iter+0xdc/0x210
[  668.634172][T19154]  do_iter_readv_writev+0x662/0x9e0
[  668.634198][T19154]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  668.634225][T19154]  ? bpf_lsm_file_permission+0x9/0x10
[  668.634250][T19154]  ? security_file_permission+0x71/0x210
[  668.634275][T19154]  ? rw_verify_area+0xcf/0x6c0
[  668.634298][T19154]  vfs_writev+0x35f/0xde0
[  668.634328][T19154]  ? __pfx_vfs_writev+0x10/0x10
[  668.634350][T19154]  ? find_held_lock+0x2b/0x80
[  668.634393][T19154]  ? __fget_files+0x20e/0x3c0
[  668.634412][T19154]  ? __fget_files+0x130/0x3c0
[  668.634440][T19154]  ? do_writev+0x132/0x340
[  668.634460][T19154]  do_writev+0x132/0x340
[  668.634482][T19154]  ? __pfx_do_writev+0x10/0x10
[  668.634505][T19154]  ? rcu_is_watching+0x12/0xc0
[  668.634534][T19154]  __do_fast_syscall_32+0x7c/0x300
[  668.634565][T19154]  do_fast_syscall_32+0x32/0x80
[  668.634592][T19154]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  668.634617][T19154] RIP: 0023:0xf7f15579
[  668.634635][T19154] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  668.634662][T19154] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  668.634684][T19154] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000140
[  668.634698][T19154] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  668.634710][T19154] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  668.634722][T19154] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  668.634735][T19154] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  668.634764][T19154]  </TASK>
[  669.020815][ T9158] usb 6-1: new low-speed USB device number 48 using dummy_hcd
[  669.198888][T19177] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  669.203778][ T9158] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  669.207211][ T9158] usb 6-1: config 0 has no interface number 0
[  669.216320][ T9158] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  669.240883][ T9158] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  669.245396][ T9158] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  669.256670][ T9158] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  669.270729][ T9158] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  669.275230][ T9158] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  669.287854][ T9158] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  669.295808][ T9158] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  669.308799][ T9158] usb 6-1: config 0 descriptor??
[  669.314204][T19156] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  669.318316][T19156] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  669.334564][ T9158] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  671.731670][ T6004] usb 6-1: USB disconnect, device number 48
[  671.748263][ T6004] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  672.047744][T12963] kernel read not supported for file 1368/task/1369/cmdline (pid: 12963 comm: kworker/3:0)
[  672.475329][   T40] audit: type=1800 audit(1763594669.110:1990): pid=19234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.4112" name="bus" dev="overlay" ino=555 res=0 errno=0
[  673.173749][T19239] fuse: Unknown parameter 'fd0x0000000000000003'
[  673.345683][T19253] BUG: Bad page state in process syz.2.4118  pfn:6ab84
[  673.349152][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88804ec6d600 pfn:0x6ab84
[  673.357042][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  673.360137][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  673.364239][T19253] raw: ffff88804ec6d600 3fffffffffffffff 00000000ffffffff 0000000000000000
[  673.367939][T19253] page dumped because: page_pool leak
[  673.371325][T19253] page_owner tracks the page as allocated
[  673.375255][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345558316, free_ts 673331712868
[  673.383040][T19253]  post_alloc_hook+0x1af/0x220
[  673.385143][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  673.387572][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  673.390226][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  673.392741][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  673.395488][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  673.398188][T19253]  page_pool_alloc_frag_netmem+0x219/0x9c0
[  673.401611][T19253]  skb_pp_cow_data+0x584/0xff0
[  673.404222][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  673.406509][T19253]  do_xdp_generic+0x530/0x1320
[  673.408704][T19253]  tun_get_user+0x1d41/0x3cc0
[  673.410857][T19253]  tun_chr_write_iter+0xdc/0x210
[  673.411595][T19257] netlink: 'syz.1.4119': attribute type 33 has an invalid length.
[  673.412997][T19253]  vfs_write+0x7d3/0x11d0
[  673.415669][T19257] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4119'.
[  673.417653][T19253]  ksys_write+0x12a/0x250
[  673.422673][T19253]  __do_fast_syscall_32+0x7c/0x300
[  673.424713][T19253]  do_fast_syscall_32+0x32/0x80
[  673.426810][T19253] page last free pid 19239 tgid 19238 stack trace:
[  673.429733][T19253]  __free_frozen_pages+0x7df/0x1160
[  673.431884][T19253]  tlb_remove_table_rcu+0x121/0x320
[  673.434116][T19253]  rcu_core+0x79c/0x1530
[  673.436000][T19253]  handle_softirqs+0x219/0x8e0
[  673.438216][T19253]  __irq_exit_rcu+0x109/0x170
[  673.440268][T19253]  irq_exit_rcu+0x9/0x30
[  673.442267][T19253]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  673.444718][T19253]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  673.447713][T19253] Modules linked in:
[  673.449720][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Not tainted syzkaller #0 PREEMPT(full) 
[  673.449744][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  673.449757][T19253] Call Trace:
[  673.449765][T19253]  <TASK>
[  673.449772][T19253]  dump_stack_lvl+0x16c/0x1f0
[  673.449800][T19253]  bad_page+0xcf/0x220
[  673.449823][T19253]  ? __pfx_bad_page+0x10/0x10
[  673.449848][T19253]  ? page_bad_reason+0x9d/0x1f0
[  673.449870][T19253]  __free_frozen_pages+0x845/0x1160
[  673.449900][T19253]  ? mark_held_locks+0x49/0x80
[  673.449929][T19253]  page_frag_free+0x27f/0x2e0
[  673.449951][T19253]  __xdp_return+0x3ab/0xab0
[  673.449972][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  673.450002][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  673.450041][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  673.450058][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  673.450099][T19253]  do_xdp_generic+0x8e6/0x1320
[  673.450127][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  673.450180][T19253]  tun_get_user+0x1d41/0x3cc0
[  673.450215][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  673.450236][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  673.450264][T19253]  ? find_held_lock+0x2b/0x80
[  673.450285][T19253]  ? tun_get+0x191/0x370
[  673.450304][T19253]  tun_chr_write_iter+0xdc/0x210
[  673.450327][T19253]  vfs_write+0x7d3/0x11d0
[  673.450347][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  673.450368][T19253]  ? __pfx_vfs_write+0x10/0x10
[  673.450386][T19253]  ? find_held_lock+0x2b/0x80
[  673.450424][T19253]  ksys_write+0x12a/0x250
[  673.450445][T19253]  ? __pfx_ksys_write+0x10/0x10
[  673.450468][T19253]  ? rcu_is_watching+0x12/0xc0
[  673.450492][T19253]  __do_fast_syscall_32+0x7c/0x300
[  673.450519][T19253]  do_fast_syscall_32+0x32/0x80
[  673.450544][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  673.450566][T19253] RIP: 0023:0xf7f15579
[  673.450580][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  673.450607][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  673.450647][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  673.450660][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  673.450673][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  673.450686][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  673.450697][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  673.450723][T19253]  </TASK>
[  673.502380][T19264] fuse: Unknown parameter 'user_i00000000000000000000'
[  673.503519][T19253] Disabling lock debugging due to kernel taint
[  673.533749][T19257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4119'.
[  673.541489][T19253] BUG: Bad page state in process syz.2.4118  pfn:48663
[  673.541511][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48663
[  673.541532][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  673.584810][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  673.589164][T19253] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[  673.593343][T19253] page dumped because: page_pool leak
[  673.595755][T19253] page_owner tracks the page as allocated
[  673.598311][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345545197, free_ts 673331745442
[  673.605622][T19253]  post_alloc_hook+0x1af/0x220
[  673.607842][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  673.610528][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  673.613724][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  673.616524][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  673.619409][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  673.621910][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  673.624028][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  673.626251][T19253]  do_xdp_generic+0x530/0x1320
[  673.628478][T19253]  tun_get_user+0x1d41/0x3cc0
[  673.630906][T19253]  tun_chr_write_iter+0xdc/0x210
[  673.633491][T19253]  vfs_write+0x7d3/0x11d0
[  673.635829][T19253]  ksys_write+0x12a/0x250
[  673.638217][T19253]  __do_fast_syscall_32+0x7c/0x300
[  673.640529][T19253]  do_fast_syscall_32+0x32/0x80
[  673.642783][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  673.645610][T19253] page last free pid 19239 tgid 19238 stack trace:
[  673.648558][T19253]  __free_frozen_pages+0x7df/0x1160
[  673.651025][T19253]  tlb_remove_table_rcu+0x121/0x320
[  673.653479][T19253]  rcu_core+0x79c/0x1530
[  673.655521][T19253]  handle_softirqs+0x219/0x8e0
[  673.657904][T19253]  __irq_exit_rcu+0x109/0x170
[  673.660241][T19253]  irq_exit_rcu+0x9/0x30
[  673.662405][T19253]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  673.664954][T19253]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  673.667638][T19253] Modules linked in:
[  673.669409][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  673.669436][T19253] Tainted: [B]=BAD_PAGE
[  673.669443][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  673.669455][T19253] Call Trace:
[  673.669463][T19253]  <TASK>
[  673.669472][T19253]  dump_stack_lvl+0x16c/0x1f0
[  673.669497][T19253]  bad_page+0xcf/0x220
[  673.669519][T19253]  ? __pfx_bad_page+0x10/0x10
[  673.669539][T19253]  ? page_bad_reason+0x9d/0x1f0
[  673.669559][T19253]  __free_frozen_pages+0x845/0x1160
[  673.669592][T19253]  ? mark_held_locks+0x49/0x80
[  673.669618][T19253]  page_frag_free+0x27f/0x2e0
[  673.669639][T19253]  __xdp_return+0x3ab/0xab0
[  673.669661][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  673.669686][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  673.669715][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  673.669730][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  673.669762][T19253]  do_xdp_generic+0x8e6/0x1320
[  673.669789][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  673.669825][T19253]  tun_get_user+0x1d41/0x3cc0
[  673.669851][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  673.669869][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  673.669891][T19253]  ? find_held_lock+0x2b/0x80
[  673.669910][T19253]  ? tun_get+0x191/0x370
[  673.669928][T19253]  tun_chr_write_iter+0xdc/0x210
[  673.669947][T19253]  vfs_write+0x7d3/0x11d0
[  673.669967][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  673.669988][T19253]  ? __pfx_vfs_write+0x10/0x10
[  673.670005][T19253]  ? find_held_lock+0x2b/0x80
[  673.670030][T19253]  ksys_write+0x12a/0x250
[  673.670050][T19253]  ? __pfx_ksys_write+0x10/0x10
[  673.670070][T19253]  ? rcu_is_watching+0x12/0xc0
[  673.670090][T19253]  __do_fast_syscall_32+0x7c/0x300
[  673.670115][T19253]  do_fast_syscall_32+0x32/0x80
[  673.670138][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  673.670161][T19253] RIP: 0023:0xf7f15579
[  673.670174][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  673.670192][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  673.670210][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  673.670223][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  673.670234][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  673.670245][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  673.670256][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  673.670274][T19253]  </TASK>
[  673.670285][T19253] BUG: Bad page state in process syz.2.4118  pfn:5b515
[  673.787248][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x74c5 pfn:0x5b515
[  673.791275][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  673.794659][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  673.799608][T19253] raw: 00000000000074c5 0000000000000001 00000000ffffffff 0000000000000000
[  673.803653][T19253] page dumped because: page_pool leak
[  673.806020][T19253] page_owner tracks the page as allocated
[  673.808547][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345533486, free_ts 673331760852
[  673.816040][T19253]  post_alloc_hook+0x1af/0x220
[  673.818293][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  673.820990][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  673.823795][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  673.826359][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  673.829218][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  673.831780][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  673.834042][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  673.836441][T19253]  do_xdp_generic+0x530/0x1320
[  673.838792][T19253]  tun_get_user+0x1d41/0x3cc0
[  673.841123][T19253]  tun_chr_write_iter+0xdc/0x210
[  673.843418][T19253]  vfs_write+0x7d3/0x11d0
[  673.845375][T19253]  ksys_write+0x12a/0x250
[  673.847339][T19253]  __do_fast_syscall_32+0x7c/0x300
[  673.849675][T19253]  do_fast_syscall_32+0x32/0x80
[  673.852218][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  673.855325][T19253] page last free pid 19239 tgid 19238 stack trace:
[  673.858386][T19253]  __free_frozen_pages+0x7df/0x1160
[  673.860757][T19253]  tlb_remove_table_rcu+0x121/0x320
[  673.863079][T19253]  rcu_core+0x79c/0x1530
[  673.864988][T19253]  handle_softirqs+0x219/0x8e0
[  673.867292][T19253]  __irq_exit_rcu+0x109/0x170
[  673.869231][T19253]  irq_exit_rcu+0x9/0x30
[  673.871089][T19253]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  673.873175][T19253]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  673.875251][T19253] Modules linked in:
[  673.876651][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  673.876668][T19253] Tainted: [B]=BAD_PAGE
[  673.876672][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  673.876679][T19253] Call Trace:
[  673.876684][T19253]  <TASK>
[  673.876689][T19253]  dump_stack_lvl+0x16c/0x1f0
[  673.876705][T19253]  bad_page+0xcf/0x220
[  673.876719][T19253]  ? __pfx_bad_page+0x10/0x10
[  673.876731][T19253]  ? page_bad_reason+0x9d/0x1f0
[  673.876744][T19253]  __free_frozen_pages+0x845/0x1160
[  673.876761][T19253]  ? mark_held_locks+0x49/0x80
[  673.876777][T19253]  page_frag_free+0x27f/0x2e0
[  673.876790][T19253]  __xdp_return+0x3ab/0xab0
[  673.876804][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  673.876820][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  673.876837][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  673.876847][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  673.876867][T19253]  do_xdp_generic+0x8e6/0x1320
[  673.876884][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  673.876907][T19253]  tun_get_user+0x1d41/0x3cc0
[  673.876922][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  673.876934][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  673.876948][T19253]  ? find_held_lock+0x2b/0x80
[  673.876959][T19253]  ? tun_get+0x191/0x370
[  673.876971][T19253]  tun_chr_write_iter+0xdc/0x210
[  673.876983][T19253]  vfs_write+0x7d3/0x11d0
[  673.876996][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  673.877008][T19253]  ? __pfx_vfs_write+0x10/0x10
[  673.877019][T19253]  ? find_held_lock+0x2b/0x80
[  673.877034][T19253]  ksys_write+0x12a/0x250
[  673.877046][T19253]  ? __pfx_ksys_write+0x10/0x10
[  673.877059][T19253]  ? rcu_is_watching+0x12/0xc0
[  673.877072][T19253]  __do_fast_syscall_32+0x7c/0x300
[  673.877088][T19253]  do_fast_syscall_32+0x32/0x80
[  673.877102][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  673.877117][T19253] RIP: 0023:0xf7f15579
[  673.877126][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  673.877137][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  673.877167][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  673.877174][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  673.877181][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  673.877188][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  673.877194][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  673.877204][T19253]  </TASK>
[  673.877213][T19253] BUG: Bad page state in process syz.2.4118  pfn:4c9a7
[  673.993330][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x34f pfn:0x4c9a7
[  673.997624][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  674.001863][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  674.005970][T19253] raw: 000000000000034f 0000000000000001 00000000ffffffff 0000000000000000
[  674.009790][T19253] page dumped because: page_pool leak
[  674.012273][T19253] page_owner tracks the page as allocated
[  674.014802][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345522608, free_ts 673331794121
[  674.022657][T19253]  post_alloc_hook+0x1af/0x220
[  674.025251][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  674.028059][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  674.030384][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  674.032847][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  674.035475][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  674.038094][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  674.040746][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  674.043485][T19253]  do_xdp_generic+0x530/0x1320
[  674.045941][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.048044][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.050271][T19253]  vfs_write+0x7d3/0x11d0
[  674.052274][T19253]  ksys_write+0x12a/0x250
[  674.054199][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.056486][T19253]  do_fast_syscall_32+0x32/0x80
[  674.058691][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.061660][T19253] page last free pid 19239 tgid 19238 stack trace:
[  674.065499][T19253]  __free_frozen_pages+0x7df/0x1160
[  674.068346][T19253]  tlb_remove_table_rcu+0x121/0x320
[  674.070725][T19253]  rcu_core+0x79c/0x1530
[  674.072735][T19253]  handle_softirqs+0x219/0x8e0
[  674.074950][T19253]  __irq_exit_rcu+0x109/0x170
[  674.077136][T19253]  irq_exit_rcu+0x9/0x30
[  674.079046][T19253]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  674.081630][T19253]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  674.084341][T19253] Modules linked in:
[  674.086293][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  674.086323][T19253] Tainted: [B]=BAD_PAGE
[  674.086329][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  674.086340][T19253] Call Trace:
[  674.086347][T19253]  <TASK>
[  674.086354][T19253]  dump_stack_lvl+0x16c/0x1f0
[  674.086380][T19253]  bad_page+0xcf/0x220
[  674.086402][T19253]  ? __pfx_bad_page+0x10/0x10
[  674.086424][T19253]  ? page_bad_reason+0x9d/0x1f0
[  674.086445][T19253]  __free_frozen_pages+0x845/0x1160
[  674.086472][T19253]  ? mark_held_locks+0x49/0x80
[  674.086499][T19253]  page_frag_free+0x27f/0x2e0
[  674.086520][T19253]  __xdp_return+0x3ab/0xab0
[  674.086543][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  674.086569][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  674.086604][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  674.086620][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  674.086654][T19253]  do_xdp_generic+0x8e6/0x1320
[  674.086682][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  674.086721][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.086747][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  674.086766][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  674.086790][T19253]  ? find_held_lock+0x2b/0x80
[  674.086810][T19253]  ? tun_get+0x191/0x370
[  674.086831][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.086854][T19253]  vfs_write+0x7d3/0x11d0
[  674.086877][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  674.086900][T19253]  ? __pfx_vfs_write+0x10/0x10
[  674.086920][T19253]  ? find_held_lock+0x2b/0x80
[  674.086948][T19253]  ksys_write+0x12a/0x250
[  674.086969][T19253]  ? __pfx_ksys_write+0x10/0x10
[  674.086992][T19253]  ? rcu_is_watching+0x12/0xc0
[  674.087015][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.087043][T19253]  do_fast_syscall_32+0x32/0x80
[  674.087069][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.087095][T19253] RIP: 0023:0xf7f15579
[  674.087109][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  674.087129][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  674.087149][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  674.087162][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  674.087175][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  674.087187][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  674.087199][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  674.087219][T19253]  </TASK>
[  674.087232][T19253] BUG: Bad page state in process syz.2.4118  pfn:477b6
[  674.209672][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x477b6
[  674.214935][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  674.218068][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  674.221773][T19253] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[  674.225429][T19253] page dumped because: page_pool leak
[  674.227862][T19253] page_owner tracks the page as allocated
[  674.230484][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345510524, free_ts 673338107300
[  674.238869][T19253]  post_alloc_hook+0x1af/0x220
[  674.241164][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  674.243563][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  674.246088][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  674.248469][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  674.251267][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  674.253723][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  674.255963][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  674.258370][T19253]  do_xdp_generic+0x530/0x1320
[  674.260554][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.262643][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.264829][T19253]  vfs_write+0x7d3/0x11d0
[  674.266528][T19253]  ksys_write+0x12a/0x250
[  674.268013][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.269783][T19253]  do_fast_syscall_32+0x32/0x80
[  674.271807][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.274558][T19253] page last free pid 19253 tgid 19252 stack trace:
[  674.277060][T19253]  __free_frozen_pages+0x7df/0x1160
[  674.278815][T19253]  kasan_populate_vmalloc+0x1eb/0x2d0
[  674.280605][T19253]  alloc_vmap_area+0x960/0x29e0
[  674.282299][T19253]  __get_vm_area_node+0x1ca/0x330
[  674.284105][T19253]  __vmalloc_node_range_noprof+0x271/0x1480
[  674.286803][T19253]  __vmalloc_node_noprof+0xad/0xf0
[  674.289113][T19253]  bpf_prog_calc_tag+0x67/0x350
[  674.291406][T19253]  bpf_check+0x61fa/0xbdd0
[  674.293724][T19253]  bpf_prog_load+0x112e/0x2850
[  674.296417][T19253]  __sys_bpf+0x3e72/0x4980
[  674.298906][T19253]  __ia32_sys_bpf+0x76/0xe0
[  674.301127][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.303447][T19253]  do_fast_syscall_32+0x32/0x80
[  674.305663][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.308643][T19253] Modules linked in:
[  674.310425][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  674.310452][T19253] Tainted: [B]=BAD_PAGE
[  674.310459][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  674.310471][T19253] Call Trace:
[  674.310480][T19253]  <TASK>
[  674.310488][T19253]  dump_stack_lvl+0x16c/0x1f0
[  674.310514][T19253]  bad_page+0xcf/0x220
[  674.310535][T19253]  ? __pfx_bad_page+0x10/0x10
[  674.310555][T19253]  ? page_bad_reason+0x9d/0x1f0
[  674.310577][T19253]  __free_frozen_pages+0x845/0x1160
[  674.310609][T19253]  ? mark_held_locks+0x49/0x80
[  674.310651][T19253]  page_frag_free+0x27f/0x2e0
[  674.310673][T19253]  __xdp_return+0x3ab/0xab0
[  674.310695][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  674.310720][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  674.310749][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  674.310765][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  674.310799][T19253]  do_xdp_generic+0x8e6/0x1320
[  674.310827][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  674.310864][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.310890][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  674.310909][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  674.310932][T19253]  ? find_held_lock+0x2b/0x80
[  674.310951][T19253]  ? tun_get+0x191/0x370
[  674.310971][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.310991][T19253]  vfs_write+0x7d3/0x11d0
[  674.311012][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  674.311033][T19253]  ? __pfx_vfs_write+0x10/0x10
[  674.311052][T19253]  ? find_held_lock+0x2b/0x80
[  674.311078][T19253]  ksys_write+0x12a/0x250
[  674.311098][T19253]  ? __pfx_ksys_write+0x10/0x10
[  674.311119][T19253]  ? rcu_is_watching+0x12/0xc0
[  674.311141][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.311166][T19253]  do_fast_syscall_32+0x32/0x80
[  674.311190][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.311213][T19253] RIP: 0023:0xf7f15579
[  674.311227][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  674.311245][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  674.311263][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  674.311274][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  674.311286][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  674.311297][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  674.311308][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  674.311326][T19253]  </TASK>
[  674.426813][T19253] BUG: Bad page state in process syz.2.4118  pfn:72ce2
[  674.430367][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x72ce2
[  674.434808][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  674.438021][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  674.441746][T19253] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[  674.445556][T19253] page dumped because: page_pool leak
[  674.448226][T19253] page_owner tracks the page as allocated
[  674.451111][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345496700, free_ts 673338119366
[  674.458497][T19253]  post_alloc_hook+0x1af/0x220
[  674.460818][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  674.463277][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  674.466222][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  674.469113][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  674.472089][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  674.474459][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  674.476499][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  674.478514][T19253]  do_xdp_generic+0x530/0x1320
[  674.480586][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.482596][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.485006][T19253]  vfs_write+0x7d3/0x11d0
[  674.487182][T19253]  ksys_write+0x12a/0x250
[  674.489480][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.491834][T19253]  do_fast_syscall_32+0x32/0x80
[  674.493969][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.496731][T19253] page last free pid 19253 tgid 19252 stack trace:
[  674.499596][T19253]  __free_frozen_pages+0x7df/0x1160
[  674.502119][T19253]  kasan_populate_vmalloc+0x1eb/0x2d0
[  674.504654][T19253]  alloc_vmap_area+0x960/0x29e0
[  674.506955][T19253]  __get_vm_area_node+0x1ca/0x330
[  674.509126][T19253]  __vmalloc_node_range_noprof+0x271/0x1480
[  674.511843][T19253]  __vmalloc_node_noprof+0xad/0xf0
[  674.514216][T19253]  bpf_prog_calc_tag+0x67/0x350
[  674.516672][T19253]  bpf_check+0x61fa/0xbdd0
[  674.518840][T19253]  bpf_prog_load+0x112e/0x2850
[  674.521113][T19253]  __sys_bpf+0x3e72/0x4980
[  674.522885][T19253]  __ia32_sys_bpf+0x76/0xe0
[  674.524528][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.526264][T19253]  do_fast_syscall_32+0x32/0x80
[  674.527878][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.530127][T19253] Modules linked in:
[  674.531803][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  674.531822][T19253] Tainted: [B]=BAD_PAGE
[  674.531826][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  674.531833][T19253] Call Trace:
[  674.531838][T19253]  <TASK>
[  674.531843][T19253]  dump_stack_lvl+0x16c/0x1f0
[  674.531860][T19253]  bad_page+0xcf/0x220
[  674.531874][T19253]  ? __pfx_bad_page+0x10/0x10
[  674.531888][T19253]  ? page_bad_reason+0x9d/0x1f0
[  674.531902][T19253]  __free_frozen_pages+0x845/0x1160
[  674.531920][T19253]  ? mark_held_locks+0x49/0x80
[  674.531938][T19253]  page_frag_free+0x27f/0x2e0
[  674.531951][T19253]  __xdp_return+0x3ab/0xab0
[  674.531966][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  674.531981][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  674.531999][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  674.532008][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  674.532029][T19253]  do_xdp_generic+0x8e6/0x1320
[  674.532045][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  674.532068][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.532084][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  674.532096][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  674.532109][T19253]  ? find_held_lock+0x2b/0x80
[  674.532121][T19253]  ? tun_get+0x191/0x370
[  674.532132][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.532144][T19253]  vfs_write+0x7d3/0x11d0
[  674.532156][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  674.532169][T19253]  ? __pfx_vfs_write+0x10/0x10
[  674.532180][T19253]  ? find_held_lock+0x2b/0x80
[  674.532195][T19253]  ksys_write+0x12a/0x250
[  674.532207][T19253]  ? __pfx_ksys_write+0x10/0x10
[  674.532220][T19253]  ? rcu_is_watching+0x12/0xc0
[  674.532233][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.532249][T19253]  do_fast_syscall_32+0x32/0x80
[  674.532264][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.532278][T19253] RIP: 0023:0xf7f15579
[  674.532286][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  674.532302][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  674.532313][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  674.532321][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  674.532328][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  674.532334][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  674.532340][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  674.532351][T19253]  </TASK>
[  674.532358][T19253] BUG: Bad page state in process syz.2.4118  pfn:4b3dc
[  674.639526][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x4b3dc
[  674.643300][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  674.646394][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  674.650995][T19253] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[  674.654056][T19253] page dumped because: page_pool leak
[  674.655722][T19253] page_owner tracks the page as allocated
[  674.658181][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345483313, free_ts 673338178089
[  674.663747][T19253]  post_alloc_hook+0x1af/0x220
[  674.665357][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  674.667209][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  674.669329][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  674.672313][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  674.675491][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  674.677969][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  674.680161][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  674.682389][T19253]  do_xdp_generic+0x530/0x1320
[  674.684192][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.686322][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.688561][T19253]  vfs_write+0x7d3/0x11d0
[  674.690446][T19253]  ksys_write+0x12a/0x250
[  674.692115][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.693990][T19253]  do_fast_syscall_32+0x32/0x80
[  674.696604][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.700246][T19253] page last free pid 19253 tgid 19252 stack trace:
[  674.703618][T19253]  __free_frozen_pages+0x7df/0x1160
[  674.705853][T19253]  vfree+0x1fd/0xb50
[  674.707577][T19253]  bpf_prog_calc_tag+0x2d3/0x350
[  674.709517][T19253]  bpf_check+0x61fa/0xbdd0
[  674.711165][T19253]  bpf_prog_load+0x112e/0x2850
[  674.712878][T19253]  __sys_bpf+0x3e72/0x4980
[  674.714384][T19253]  __ia32_sys_bpf+0x76/0xe0
[  674.715922][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.717662][T19253]  do_fast_syscall_32+0x32/0x80
[  674.719312][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.721727][T19253] Modules linked in:
[  674.723588][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  674.723619][T19253] Tainted: [B]=BAD_PAGE
[  674.723625][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  674.723637][T19253] Call Trace:
[  674.723646][T19253]  <TASK>
[  674.723653][T19253]  dump_stack_lvl+0x16c/0x1f0
[  674.723678][T19253]  bad_page+0xcf/0x220
[  674.723699][T19253]  ? __pfx_bad_page+0x10/0x10
[  674.723720][T19253]  ? page_bad_reason+0x9d/0x1f0
[  674.723741][T19253]  __free_frozen_pages+0x845/0x1160
[  674.723770][T19253]  ? mark_held_locks+0x49/0x80
[  674.723797][T19253]  page_frag_free+0x27f/0x2e0
[  674.723819][T19253]  __xdp_return+0x3ab/0xab0
[  674.723842][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  674.723867][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  674.723897][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  674.723912][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  674.723946][T19253]  do_xdp_generic+0x8e6/0x1320
[  674.723976][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  674.724013][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.724039][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  674.724058][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  674.724081][T19253]  ? find_held_lock+0x2b/0x80
[  674.724100][T19253]  ? tun_get+0x191/0x370
[  674.724120][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.724141][T19253]  vfs_write+0x7d3/0x11d0
[  674.724163][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  674.724185][T19253]  ? __pfx_vfs_write+0x10/0x10
[  674.724204][T19253]  ? find_held_lock+0x2b/0x80
[  674.724230][T19253]  ksys_write+0x12a/0x250
[  674.724250][T19253]  ? __pfx_ksys_write+0x10/0x10
[  674.724272][T19253]  ? rcu_is_watching+0x12/0xc0
[  674.724297][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.724331][T19253]  do_fast_syscall_32+0x32/0x80
[  674.724356][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.724407][T19253] RIP: 0023:0xf7f15579
[  674.724422][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  674.724445][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  674.724464][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  674.724479][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  674.724492][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  674.724502][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  674.724513][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  674.724532][T19253]  </TASK>
[  674.724544][T19253] BUG: Bad page state in process syz.2.4118  pfn:53219
[  674.844551][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x53219
[  674.848735][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  674.851895][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  674.855662][T19253] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[  674.859460][T19253] page dumped because: page_pool leak
[  674.862019][T19253] page_owner tracks the page as allocated
[  674.864651][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345470744, free_ts 673338663467
[  674.872498][T19253]  post_alloc_hook+0x1af/0x220
[  674.874709][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  674.877422][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  674.880340][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  674.883192][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  674.886106][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  674.888530][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  674.890710][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  674.892929][T19253]  do_xdp_generic+0x530/0x1320
[  674.895124][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.897252][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.899401][T19253]  vfs_write+0x7d3/0x11d0
[  674.901348][T19253]  ksys_write+0x12a/0x250
[  674.903179][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.905568][T19253]  do_fast_syscall_32+0x32/0x80
[  674.907832][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.910942][T19253] page last free pid 19253 tgid 19252 stack trace:
[  674.913697][T19253]  __free_frozen_pages+0x7df/0x1160
[  674.915961][T19253]  vfree+0x1fd/0xb50
[  674.917817][T19253]  bpf_check+0x87d/0xbdd0
[  674.919780][T19253]  bpf_prog_load+0x112e/0x2850
[  674.922145][T19253]  __sys_bpf+0x3e72/0x4980
[  674.924317][T19253]  __ia32_sys_bpf+0x76/0xe0
[  674.926633][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.929024][T19253]  do_fast_syscall_32+0x32/0x80
[  674.931353][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.934161][T19253] Modules linked in:
[  674.935917][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  674.935944][T19253] Tainted: [B]=BAD_PAGE
[  674.935950][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  674.935967][T19253] Call Trace:
[  674.935975][T19253]  <TASK>
[  674.935983][T19253]  dump_stack_lvl+0x16c/0x1f0
[  674.936004][T19253]  bad_page+0xcf/0x220
[  674.936022][T19253]  ? __pfx_bad_page+0x10/0x10
[  674.936040][T19253]  ? page_bad_reason+0x9d/0x1f0
[  674.936062][T19253]  __free_frozen_pages+0x845/0x1160
[  674.936087][T19253]  ? mark_held_locks+0x49/0x80
[  674.936110][T19253]  page_frag_free+0x27f/0x2e0
[  674.936130][T19253]  __xdp_return+0x3ab/0xab0
[  674.936151][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  674.936176][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  674.936214][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  674.936229][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  674.936258][T19253]  do_xdp_generic+0x8e6/0x1320
[  674.936282][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  674.936314][T19253]  tun_get_user+0x1d41/0x3cc0
[  674.936341][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  674.936360][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  674.936401][T19253]  ? find_held_lock+0x2b/0x80
[  674.936418][T19253]  ? tun_get+0x191/0x370
[  674.936435][T19253]  tun_chr_write_iter+0xdc/0x210
[  674.936453][T19253]  vfs_write+0x7d3/0x11d0
[  674.936470][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  674.936488][T19253]  ? __pfx_vfs_write+0x10/0x10
[  674.936507][T19253]  ? find_held_lock+0x2b/0x80
[  674.936530][T19253]  ksys_write+0x12a/0x250
[  674.936549][T19253]  ? __pfx_ksys_write+0x10/0x10
[  674.936567][T19253]  ? rcu_is_watching+0x12/0xc0
[  674.936587][T19253]  __do_fast_syscall_32+0x7c/0x300
[  674.936611][T19253]  do_fast_syscall_32+0x32/0x80
[  674.936633][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  674.936655][T19253] RIP: 0023:0xf7f15579
[  674.936668][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  674.936683][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  674.936698][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  674.936708][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  674.936718][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  674.936730][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  674.936739][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  674.936755][T19253]  </TASK>
[  674.936767][T19253] BUG: Bad page state in process syz.2.4118  pfn:58808
[  675.046306][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58808
[  675.049381][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  675.051803][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  675.055431][T19253] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[  675.058371][T19253] page dumped because: page_pool leak
[  675.060113][T19253] page_owner tracks the page as allocated
[  675.062130][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345458007, free_ts 673341985070
[  675.068309][T19253]  post_alloc_hook+0x1af/0x220
[  675.069976][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  675.072054][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  675.074234][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  675.076132][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  675.078507][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  675.080712][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  675.082622][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  675.084511][T19253]  do_xdp_generic+0x530/0x1320
[  675.086126][T19253]  tun_get_user+0x1d41/0x3cc0
[  675.087758][T19253]  tun_chr_write_iter+0xdc/0x210
[  675.089408][T19253]  vfs_write+0x7d3/0x11d0
[  675.091232][T19253]  ksys_write+0x12a/0x250
[  675.093039][T19253]  __do_fast_syscall_32+0x7c/0x300
[  675.094657][T19253]  do_fast_syscall_32+0x32/0x80
[  675.096223][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  675.098459][T19253] page last free pid 9158 tgid 9158 stack trace:
[  675.100883][T19253]  __free_frozen_pages+0x7df/0x1160
[  675.103200][T19253]  __folio_put+0x329/0x450
[  675.105176][T19253]  aio_free_ring+0x2dd/0x4f0
[  675.107152][T19253]  free_ioctx+0x21/0xa0
[  675.108885][T19253]  process_one_work+0x9cf/0x1b70
[  675.110560][T19253]  worker_thread+0x6c8/0xf10
[  675.112707][T19253]  kthread+0x3c5/0x780
[  675.114077][T19253]  ret_from_fork+0x675/0x7d0
[  675.115629][T19253]  ret_from_fork_asm+0x1a/0x30
[  675.117301][T19253] Modules linked in:
[  675.118667][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  675.118685][T19253] Tainted: [B]=BAD_PAGE
[  675.118690][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  675.118697][T19253] Call Trace:
[  675.118703][T19253]  <TASK>
[  675.118709][T19253]  dump_stack_lvl+0x16c/0x1f0
[  675.118727][T19253]  bad_page+0xcf/0x220
[  675.118740][T19253]  ? __pfx_bad_page+0x10/0x10
[  675.118754][T19253]  ? page_bad_reason+0x9d/0x1f0
[  675.118768][T19253]  __free_frozen_pages+0x845/0x1160
[  675.118786][T19253]  ? mark_held_locks+0x49/0x80
[  675.118803][T19253]  page_frag_free+0x27f/0x2e0
[  675.118817][T19253]  __xdp_return+0x3ab/0xab0
[  675.118832][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  675.118849][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  675.118868][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  675.118878][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  675.118900][T19253]  do_xdp_generic+0x8e6/0x1320
[  675.118918][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  675.118942][T19253]  tun_get_user+0x1d41/0x3cc0
[  675.118959][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  675.118972][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  675.118986][T19253]  ? find_held_lock+0x2b/0x80
[  675.118998][T19253]  ? tun_get+0x191/0x370
[  675.119010][T19253]  tun_chr_write_iter+0xdc/0x210
[  675.119024][T19253]  vfs_write+0x7d3/0x11d0
[  675.119037][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  675.119051][T19253]  ? __pfx_vfs_write+0x10/0x10
[  675.119062][T19253]  ? find_held_lock+0x2b/0x80
[  675.119079][T19253]  ksys_write+0x12a/0x250
[  675.119091][T19253]  ? __pfx_ksys_write+0x10/0x10
[  675.119104][T19253]  ? rcu_is_watching+0x12/0xc0
[  675.119118][T19253]  __do_fast_syscall_32+0x7c/0x300
[  675.119135][T19253]  do_fast_syscall_32+0x32/0x80
[  675.119151][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  675.119166][T19253] RIP: 0023:0xf7f15579
[  675.119175][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  675.119187][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  675.119198][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  675.119206][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  675.119213][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  675.119219][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  675.119226][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  675.119237][T19253]  </TASK>
[  675.119246][T19253] BUG: Bad page state in process syz.2.4118  pfn:59b03
[  675.230431][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x59b03
[  675.234421][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  675.237502][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  675.240310][T19253] raw: 0000000000000001 0000000000000001 00000000ffffffff 0000000000000000
[  675.243188][T19253] page dumped because: page_pool leak
[  675.245003][T19253] page_owner tracks the page as allocated
[  675.247112][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345444171, free_ts 673341999773
[  675.252789][T19253]  post_alloc_hook+0x1af/0x220
[  675.254467][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  675.256333][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  675.258363][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  675.260156][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  675.262177][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  675.263923][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  675.265488][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  675.267124][T19253]  do_xdp_generic+0x530/0x1320
[  675.268723][T19253]  tun_get_user+0x1d41/0x3cc0
[  675.270363][T19253]  tun_chr_write_iter+0xdc/0x210
[  675.272280][T19253]  vfs_write+0x7d3/0x11d0
[  675.274008][T19253]  ksys_write+0x12a/0x250
[  675.275625][T19253]  __do_fast_syscall_32+0x7c/0x300
[  675.277493][T19253]  do_fast_syscall_32+0x32/0x80
[  675.279111][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  675.281473][T19253] page last free pid 9158 tgid 9158 stack trace:
[  675.283874][T19253]  __free_frozen_pages+0x7df/0x1160
[  675.286051][T19253]  __folio_put+0x329/0x450
[  675.287945][T19253]  aio_free_ring+0x2dd/0x4f0
[  675.289874][T19253]  free_ioctx+0x21/0xa0
[  675.291702][T19253]  process_one_work+0x9cf/0x1b70
[  675.293923][T19253]  worker_thread+0x6c8/0xf10
[  675.295995][T19253]  kthread+0x3c5/0x780
[  675.297793][T19253]  ret_from_fork+0x675/0x7d0
[  675.299740][T19253]  ret_from_fork_asm+0x1a/0x30
[  675.301822][T19253] Modules linked in:
[  675.303466][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  675.303491][T19253] Tainted: [B]=BAD_PAGE
[  675.303497][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  675.303505][T19253] Call Trace:
[  675.303510][T19253]  <TASK>
[  675.303517][T19253]  dump_stack_lvl+0x16c/0x1f0
[  675.303540][T19253]  bad_page+0xcf/0x220
[  675.303558][T19253]  ? __pfx_bad_page+0x10/0x10
[  675.303577][T19253]  ? page_bad_reason+0x9d/0x1f0
[  675.303596][T19253]  __free_frozen_pages+0x845/0x1160
[  675.303616][T19253]  ? mark_held_locks+0x49/0x80
[  675.303640][T19253]  page_frag_free+0x27f/0x2e0
[  675.303658][T19253]  __xdp_return+0x3ab/0xab0
[  675.303679][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  675.303701][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  675.303724][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  675.303738][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  675.303767][T19253]  do_xdp_generic+0x8e6/0x1320
[  675.303792][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  675.303822][T19253]  tun_get_user+0x1d41/0x3cc0
[  675.303844][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  675.303862][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  675.303883][T19253]  ? find_held_lock+0x2b/0x80
[  675.303900][T19253]  ? tun_get+0x191/0x370
[  675.303914][T19253]  tun_chr_write_iter+0xdc/0x210
[  675.303930][T19253]  vfs_write+0x7d3/0x11d0
[  675.303949][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  675.303968][T19253]  ? __pfx_vfs_write+0x10/0x10
[  675.303984][T19253]  ? find_held_lock+0x2b/0x80
[  675.304007][T19253]  ksys_write+0x12a/0x250
[  675.304024][T19253]  ? __pfx_ksys_write+0x10/0x10
[  675.304043][T19253]  ? rcu_is_watching+0x12/0xc0
[  675.304059][T19253]  __do_fast_syscall_32+0x7c/0x300
[  675.304081][T19253]  do_fast_syscall_32+0x32/0x80
[  675.304102][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  675.304122][T19253] RIP: 0023:0xf7f15579
[  675.304135][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  675.304150][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  675.304164][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  675.304175][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  675.304185][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  675.304195][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  675.304205][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  675.304221][T19253]  </TASK>
[  675.304231][T19253] BUG: Bad page state in process syz.2.4118  pfn:59b01
[  675.416653][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2 pfn:0x59b01
[  675.420276][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  675.423293][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  675.426867][T19253] raw: 0000000000000002 0000000000000001 00000000ffffffff 0000000000000000
[  675.430775][T19253] page dumped because: page_pool leak
[  675.433341][T19253] page_owner tracks the page as allocated
[  675.436428][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345431157, free_ts 673342012819
[  675.442750][T19253]  post_alloc_hook+0x1af/0x220
[  675.444435][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  675.446879][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  675.449483][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  675.452346][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  675.455753][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  675.458196][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  675.460320][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  675.462674][T19253]  do_xdp_generic+0x530/0x1320
[  675.464800][T19253]  tun_get_user+0x1d41/0x3cc0
[  675.466910][T19253]  tun_chr_write_iter+0xdc/0x210
[  675.468849][T19253]  vfs_write+0x7d3/0x11d0
[  675.470359][T19253]  ksys_write+0x12a/0x250
[  675.471950][T19253]  __do_fast_syscall_32+0x7c/0x300
[  675.473855][T19253]  do_fast_syscall_32+0x32/0x80
[  675.475934][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  675.478471][T19253] page last free pid 9158 tgid 9158 stack trace:
[  675.480963][T19253]  __free_frozen_pages+0x7df/0x1160
[  675.482957][T19253]  __folio_put+0x329/0x450
[  675.484704][T19253]  aio_free_ring+0x2dd/0x4f0
[  675.486568][T19253]  free_ioctx+0x21/0xa0
[  675.488434][T19253]  process_one_work+0x9cf/0x1b70
[  675.491168][T19253]  worker_thread+0x6c8/0xf10
[  675.493156][T19253]  kthread+0x3c5/0x780
[  675.494727][T19253]  ret_from_fork+0x675/0x7d0
[  675.496279][T19253]  ret_from_fork_asm+0x1a/0x30
[  675.497957][T19253] Modules linked in:
[  675.499295][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  675.499312][T19253] Tainted: [B]=BAD_PAGE
[  675.499316][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  675.499323][T19253] Call Trace:
[  675.499328][T19253]  <TASK>
[  675.499333][T19253]  dump_stack_lvl+0x16c/0x1f0
[  675.499349][T19253]  bad_page+0xcf/0x220
[  675.499363][T19253]  ? __pfx_bad_page+0x10/0x10
[  675.499375][T19253]  ? page_bad_reason+0x9d/0x1f0
[  675.499388][T19253]  __free_frozen_pages+0x845/0x1160
[  675.499405][T19253]  ? mark_held_locks+0x49/0x80
[  675.499421][T19253]  page_frag_free+0x27f/0x2e0
[  675.499437][T19253]  __xdp_return+0x3ab/0xab0
[  675.499451][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  675.499467][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  675.499485][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  675.499494][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  675.499515][T19253]  do_xdp_generic+0x8e6/0x1320
[  675.499536][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  675.499559][T19253]  tun_get_user+0x1d41/0x3cc0
[  675.499575][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  675.499586][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  675.499600][T19253]  ? find_held_lock+0x2b/0x80
[  675.499611][T19253]  ? tun_get+0x191/0x370
[  675.499623][T19253]  tun_chr_write_iter+0xdc/0x210
[  675.499635][T19253]  vfs_write+0x7d3/0x11d0
[  675.499647][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  675.499660][T19253]  ? __pfx_vfs_write+0x10/0x10
[  675.499671][T19253]  ? find_held_lock+0x2b/0x80
[  675.499687][T19253]  ksys_write+0x12a/0x250
[  675.499698][T19253]  ? __pfx_ksys_write+0x10/0x10
[  675.499711][T19253]  ? rcu_is_watching+0x12/0xc0
[  675.499724][T19253]  __do_fast_syscall_32+0x7c/0x300
[  675.499740][T19253]  do_fast_syscall_32+0x32/0x80
[  675.499754][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  675.499769][T19253] RIP: 0023:0xf7f15579
[  675.499778][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  675.499789][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  675.499800][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  675.499807][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  675.499814][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  675.499821][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  675.499827][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  675.499837][T19253]  </TASK>
[  675.499846][T19253] BUG: Bad page state in process syz.2.4118  pfn:59b00
[  675.613954][T19253] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3 pfn:0x59b00
[  675.617342][T19253] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  675.619872][T19253] raw: 04fff00000000000 dead000000000040 ffff8880201c5000 0000000000000000
[  675.622818][T19253] raw: 0000000000000003 0000000000000001 00000000ffffffff 0000000000000000
[  675.625779][T19253] page dumped because: page_pool leak
[  675.627705][T19253] page_owner tracks the page as allocated
[  675.629698][T19253] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 19253, tgid 19252 (syz.2.4118), ts 673345418063, free_ts 673342026229
[  675.635343][T19253]  post_alloc_hook+0x1af/0x220
[  675.637078][T19253]  get_page_from_freelist+0x10a3/0x3a30
[  675.639010][T19253]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  675.641885][T19253]  alloc_pages_bulk_noprof+0x77a/0x1410
[  675.644578][T19253]  __page_pool_alloc_netmems_slow+0x1c7/0xca0
[  675.647410][T19253]  page_pool_alloc_netmems+0xc4/0x190
[  675.649655][T19253]  skb_pp_cow_data+0x7c0/0xff0
[  675.651765][T19253]  skb_cow_data_for_xdp+0x88/0xb0
[  675.653872][T19253]  do_xdp_generic+0x530/0x1320
[  675.655987][T19253]  tun_get_user+0x1d41/0x3cc0
[  675.657932][T19253]  tun_chr_write_iter+0xdc/0x210
[  675.659713][T19253]  vfs_write+0x7d3/0x11d0
[  675.661398][T19253]  ksys_write+0x12a/0x250
[  675.663057][T19253]  __do_fast_syscall_32+0x7c/0x300
[  675.665662][T19253]  do_fast_syscall_32+0x32/0x80
[  675.668304][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  675.670675][T19253] page last free pid 9158 tgid 9158 stack trace:
[  675.672762][T19253]  __free_frozen_pages+0x7df/0x1160
[  675.674492][T19253]  __folio_put+0x329/0x450
[  675.675981][T19253]  aio_free_ring+0x2dd/0x4f0
[  675.677547][T19253]  free_ioctx+0x21/0xa0
[  675.678996][T19253]  process_one_work+0x9cf/0x1b70
[  675.680722][T19253]  worker_thread+0x6c8/0xf10
[  675.682258][T19253]  kthread+0x3c5/0x780
[  675.683628][T19253]  ret_from_fork+0x675/0x7d0
[  675.685183][T19253]  ret_from_fork_asm+0x1a/0x30
[  675.686833][T19253] Modules linked in:
[  675.688232][T19253] CPU: 2 UID: 0 PID: 19253 Comm: syz.2.4118 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  675.688250][T19253] Tainted: [B]=BAD_PAGE
[  675.688254][T19253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  675.688261][T19253] Call Trace:
[  675.688266][T19253]  <TASK>
[  675.688271][T19253]  dump_stack_lvl+0x16c/0x1f0
[  675.688287][T19253]  bad_page+0xcf/0x220
[  675.688300][T19253]  ? __pfx_bad_page+0x10/0x10
[  675.688313][T19253]  ? page_bad_reason+0x9d/0x1f0
[  675.688325][T19253]  __free_frozen_pages+0x845/0x1160
[  675.688348][T19253]  ? mark_held_locks+0x49/0x80
[  675.688384][T19253]  page_frag_free+0x27f/0x2e0
[  675.688398][T19253]  __xdp_return+0x3ab/0xab0
[  675.688412][T19253]  ? kfree_skbmem+0x1a4/0x1f0
[  675.688428][T19253]  bpf_xdp_adjust_tail+0x887/0xcb0
[  675.688446][T19253]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  675.688455][T19253]  bpf_prog_run_generic_xdp+0x61f/0x1570
[  675.688476][T19253]  do_xdp_generic+0x8e6/0x1320
[  675.688493][T19253]  ? __pfx_do_xdp_generic+0x10/0x10
[  675.688516][T19253]  tun_get_user+0x1d41/0x3cc0
[  675.688531][T19253]  ? __pfx_tun_get_user+0x10/0x10
[  675.688543][T19253]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  675.688557][T19253]  ? find_held_lock+0x2b/0x80
[  675.688569][T19253]  ? tun_get+0x191/0x370
[  675.688580][T19253]  tun_chr_write_iter+0xdc/0x210
[  675.688592][T19253]  vfs_write+0x7d3/0x11d0
[  675.688605][T19253]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  675.688617][T19253]  ? __pfx_vfs_write+0x10/0x10
[  675.688628][T19253]  ? find_held_lock+0x2b/0x80
[  675.688643][T19253]  ksys_write+0x12a/0x250
[  675.688655][T19253]  ? __pfx_ksys_write+0x10/0x10
[  675.688667][T19253]  ? rcu_is_watching+0x12/0xc0
[  675.688681][T19253]  __do_fast_syscall_32+0x7c/0x300
[  675.688697][T19253]  do_fast_syscall_32+0x32/0x80
[  675.688711][T19253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  675.688726][T19253] RIP: 0023:0xf7f15579
[  675.688735][T19253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  675.688746][T19253] RSP: 002b:00000000f5406520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  675.688757][T19253] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800002c0
[  675.688764][T19253] RDX: 000000000000fed7 RSI: 00000000f73a6ff4 RDI: 0000000000000000
[  675.688771][T19253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  675.688777][T19253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  675.688784][T19253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  675.688795][T19253]  </TASK>
[  676.126663][ T1141] smc: removing ib device syz1
[  676.132876][   T53] syz1: Port: 1 Link DOWN
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  676.661293][   T61] bridge_slave_1: left allmulticast mode
[  676.663049][   T61] bridge_slave_1: left promiscuous mode
[  676.664910][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  676.667808][   T61] bridge_slave_0: left allmulticast mode
[  676.669770][   T61] bridge_slave_0: left promiscuous mode
[  676.671945][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  677.165757][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  677.170822][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  677.175375][   T61] bond0 (unregistering): (slave team0): Releasing backup interface
[  677.179574][   T61] bond0 (unregistering): Released all slaves
[  677.187330][   T61] bond1 (unregistering): Released all slaves
[  677.304043][   T61] bond2 (unregistering): Released all slaves
[  677.310323][   T61] bond3 (unregistering): Released all slaves
[  677.316653][   T61] bond4 (unregistering): Released all slaves
[  677.406479][   T61] tipc: Disabling bearer <udp:syz2>
[  677.409146][   T61] tipc: Left network mode
[  677.651761][   T61] hsr_slave_0: left promiscuous mode
[  677.654235][   T61] hsr_slave_1: left promiscuous mode
[  677.656365][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  677.659686][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  678.314316][   T61] team0 (unregistering): Port device team_slave_1 removed
[  678.416124][   T61] team0 (unregistering): Port device team_slave_0 removed
[  679.586867][   T61] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.663431][   T61] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.714041][   T61] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.793245][   T61] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.860561][   T61] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.935284][   T61] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  679.996052][   T61] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.094947][   T61] netdevsim netdevsim5 netdevsim0 (unregistering): left allmulticast mode
[  680.101438][   T61] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.169900][   T61] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.227385][   T61] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.316377][   T61] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.402915][   T61] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  680.476969][   T61] bridge_slave_1: left allmulticast mode
[  680.479538][   T61] bridge_slave_1: left promiscuous mode
[  680.482487][   T61] bridge0: port 2(bridge_slave_1) entered disabled state
[  680.487773][   T61] bridge_slave_0: left allmulticast mode
[  680.491073][   T61] bridge_slave_0: left promiscuous mode
[  680.493626][   T61] bridge0: port 1(bridge_slave_0) entered disabled state
[  680.872163][   T61] bond0 (unregistering): Released all slaves
[  680.876515][   T61] bond1 (unregistering): Released all slaves
[  680.881277][   T61] bond2 (unregistering): Released all slaves
[  680.886844][   T61] bond3 (unregistering): Released all slaves
[  680.892269][   T61] bond4 (unregistering): Released all slaves
[  680.896980][   T61] bond5 (unregistering): Released all slaves
[  680.901758][   T61] bond6 (unregistering): Released all slaves
[  680.906910][   T61] bond7 (unregistering): Released all slaves
[  680.996726][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  681.001335][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  681.005842][   T61] bond0 (unregistering): Released all slaves
[  681.010239][   T61] bond1 (unregistering): Released all slaves
[  681.033055][   T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  681.037367][   T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  681.041693][   T61] bond0 (unregistering): Released all slaves
[  681.045893][   T61] bond1 (unregistering): Released all slaves
[  681.578972][   T61] hsr_slave_0: left promiscuous mode
[  681.584591][   T61] hsr_slave_1: left promiscuous mode
[  681.589894][   T61] hsr_slave_0: left promiscuous mode
[  681.593674][   T61] hsr_slave_1: left promiscuous mode
[  681.596825][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  681.600879][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  681.604562][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  681.607785][   T61] batman_adv: batadv0: Removing interface: batadv_slave_1
[  681.614040][   T61] hsr_slave_0: left promiscuous mode
[  681.616751][   T61] hsr_slave_1: left promiscuous mode
[  681.619662][   T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  681.623495][   T61] batman_adv: batadv0: Removing interface: batadv_slave_0
[  681.633126][   T61] veth1_macvtap: left promiscuous mode
[  681.635616][   T61] veth0_macvtap: left promiscuous mode
[  681.638449][   T61] veth0_vlan: left promiscuous mode
[  681.643150][   T61] veth1_macvtap: left promiscuous mode
[  681.645784][   T61] veth0_macvtap: left promiscuous mode
[  681.648293][   T61] veth1_vlan: left promiscuous mode
[  681.650887][   T61] veth0_vlan: left promiscuous mode
[  681.654305][   T61] veth1_macvtap: left promiscuous mode
[  681.656862][   T61] veth0_macvtap: left promiscuous mode
[  681.659586][   T61] veth1_vlan: left promiscuous mode
[  681.662397][   T61] veth0_vlan: left promiscuous mode
[  682.930314][   T61] team0 (unregistering): Port device team_slave_1 removed
[  682.980701][   T61] team0 (unregistering): Port device team_slave_0 removed
[  683.265610][   T61] team0 (unregistering): Port device team_slave_1 removed
[  683.318223][   T61] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
23:20:14  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=ffffc9000036b368 RCX=ffffffff823d8ae4 RDX=1ffff9200006d66d
RSI=ffffffff823d8af2 RDI=0000000000000005 RBP=ffffc900036d7b40 RSP=ffffc900036d7910
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=ffffc900036d7b40 R14=ffff888025d9cbc0 R15=ffff88806a141125
RIP=ffffffff823d8b07 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f4a08106c80 ffffffff 00c00000
GS =0000 ffff88809780d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f4a0844137e CR3=0000000053217000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000100000 Opmask01=0000000004008111 Opmask02=00000000fff7ffdf Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000002
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4a08471b20 00007f4a08472050
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c6f7365722f6574 6174732d6b6f6f68 2f6463706368642f 6e75722f7261762f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 72756769666e6f63 5f6669006b6e696c 2e306c732e666e6f 632e766c6f736572
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffffffff8e3c45e0 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8db18ac2 RDI=ffffffff8bf078c0 RBP=0000000000000002 RSP=ffffc9000359f308
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b6087a0 RFL=00000096 [--S-AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809790d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73e0028 CR3=000000006593f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85269d55 RDI=ffffffff9adc5de0 RBP=ffffffff9adc5da0 RSP=ffffc90003a2ef40
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000065 R14=ffffffff9adc5da0 R15=ffffffff85269cf0
RIP=ffffffff85269d7f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097a0d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080010000 CR3=0000000062bf4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffffff9ac93b00 RBX=0000000000000001 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff9ad2e2a0 RBP=ffff888069970000 RSP=ffffc90025cafac8
R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff90824cd7 R11=0000000000000001
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81982dd7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097b0d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000057dc399c CR3=0000000071568000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000018800000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000