last executing test programs:

1m22.289197881s ago: executing program 1 (id=2465):
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040504416617bd7835430826edce030100f0"], 0x7)
timer_settime(0x0, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f00000000c0)=0x3, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2c, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
syz_open_dev$vim2m(&(0x7f0000000180), 0x9, 0x2)
r1 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000040))
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c67)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r2, 0xc06c4124, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000800)='cpu.stat\x00', 0x275a, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=@deltaction={0x1b0, 0x31, 0x20, 0x70bd26, 0x25dfdbfd, {}, [@TCA_ACT_TAB={0x28, 0x1, [{0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x200}}, {0xc, 0x20, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2b}}, {0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}]}, @TCA_ACT_TAB={0x2c, 0x1, [{0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7fffffff}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}]}, @TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1e, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xff}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3c7}}]}, @TCA_ACT_TAB={0x4c, 0x1, [{0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xa}}, {0xc, 0x3, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9e}}, {0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xf}}, {0xc, 0x3, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x3, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0xc, 0x1f, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}]}, @TCA_ACT_TAB={0x48, 0x1, [{0x10, 0x18, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xffffffff}}, {0xc, 0x7, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}, {0xc, 0xe, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}]}, @TCA_ACT_TAB={0x98, 0x1, [{0xc, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0xc, 0x1e, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0x14, 0x7, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0x14, 0x12, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0xc, 0xc, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0x10, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0x10, 0xc, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x1e, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}]}, 0x1b0}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x30, 0x2c, 0xd2b, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0x1, 0x4}, {}, {0xe, 0x1}}, [@filter_kind_options=@f_fw={{0x7}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x893}, 0x20040084)
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000011100)=@newtfilter={0x38, 0x2c, 0xd2b, 0x70bd2d, 0x25df9bfd, {0x0, 0x0, 0x0, r11, {0x9, 0xfff1}, {}, {0xe, 0x1}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0x15ac}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x80020)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000100)={0x0, 0x0}, 0x8)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)

1m21.340481627s ago: executing program 1 (id=2468):
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="180000000000000000000095000000000010009c07b346cb5e13f8772644f4971e732de04fedad572bac3404f614c6921cc6566233111a04388a1dd9abd53082a556d3870cc36484b7afd31929aee457d4af6b6ec2d0aec2be5822d676d4d9c11f086b9ee55435fa635bf655e9a79e6ef3c3e8ad04cf1da9c1a928f766b975a31f0c49d8b56581c9304a570a7c27812e5da8d9143ea1ecc8e0f700befc1d70bf4fa9b153672e1e6924fddc5f747e8013"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
rseq(&(0x7f0000000400)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000020303000000000000000000000000000842860001000000"], 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="1cff00000203030000004c000000000000000000100800010001000000"], 0x1c}}, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0xf, 0x491, 0x3, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xb, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x6}}}]}, {0x4}, {0x24, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000004340), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000004b40)={0x0, 0x0, &(0x7f0000004b00)={&(0x7f0000000280)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002ae6bef2d711fe4df5b953bd7000df25190000001800018014000200776c616a3100"/48], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)

1m20.151034161s ago: executing program 1 (id=2473):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x6, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x12e}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f0000000200)="449d060721b9e6bb51f2f6f20504", 0x0, 0x100c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

1m20.150681975s ago: executing program 1 (id=2474):
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ppoll(&(0x7f0000000500)=[{r0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x1843}, 0x18)
sendmsg$NL80211_CMD_AUTHENTICATE(0xffffffffffffffff, 0x0, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e000000080000000000180003801400038010"], 0x44}}, 0x20008000)

1m19.05741609s ago: executing program 1 (id=2476):
socket$nl_generic(0x10, 0x3, 0x10) (async)
prctl$PR_SCHED_CORE(0x3e, 0x4, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@newtaction={0x14, 0x30, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpgid(0x0)
ptrace$ARCH_SET_GS(0x1e, r0, &(0x7f0000000280), 0x1001)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) (async)
creat(&(0x7f0000000100)='./file0\x00', 0x104)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
openat$ttynull(0xffffff9c, &(0x7f00000001c0), 0x24800, 0x0) (async)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x3)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x4001, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) (async)
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$inet6(r7, &(0x7f0000000000)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x4, @empty, 0x4}, 0x1c, 0x0}}], 0x1, 0x20040005) (async)
pwrite64(r6, 0x0, 0x0, 0x0) (async)
r8 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r8, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x2}, 0x8)

1m18.639997399s ago: executing program 1 (id=2483):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10c) (async, rerun: 32)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"}) (async, rerun: 32)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 32)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) (rerun: 32)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[], 0x20}}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000500)=ANY=[@ANYRES8, @ANYRES32=0x0, @ANYRESOCT=0x0, @ANYBLOB="5f3aed75683366151c3bc4637ad773a97eb210db181830115b", @ANYRES8, @ANYRESDEC], 0x114}], 0x1}, 0x20000041) (async)
sched_setaffinity(0x0, 0xffffffffffffff0c, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102377, 0xfffffffffffffef5) (async, rerun: 32)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x1) (async, rerun: 32)
socket(0x18, 0x0, 0x1)
socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r2, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r3, @ANYBLOB="2d000e0080000000ffffffffffff08021100000008021100000000000000000000000000640000002503000000000000080026006c09"], 0x80}}, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000094}, 0xc800) (async)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x10ce488, 0x0) (async, rerun: 32)
chdir(0x0) (async, rerun: 32)
socket(0x2b, 0xa, 0x1)
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
lseek(0xffffffffffffffff, 0x101, 0x1) (async)
openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, 0x0, 0x0) (async)
recvmmsg(r5, 0x0, 0x0, 0x2, 0x0) (async)
fsopen(&(0x7f00000000c0)='jffs2\x00', 0x1)

1m3.510229418s ago: executing program 32 (id=2483):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10c) (async, rerun: 32)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"}) (async, rerun: 32)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 32)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) (rerun: 32)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[], 0x20}}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000500)=ANY=[@ANYRES8, @ANYRES32=0x0, @ANYRESOCT=0x0, @ANYBLOB="5f3aed75683366151c3bc4637ad773a97eb210db181830115b", @ANYRES8, @ANYRESDEC], 0x114}], 0x1}, 0x20000041) (async)
sched_setaffinity(0x0, 0xffffffffffffff0c, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102377, 0xfffffffffffffef5) (async, rerun: 32)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x1) (async, rerun: 32)
socket(0x18, 0x0, 0x1)
socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r2, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r3, @ANYBLOB="2d000e0080000000ffffffffffff08021100000008021100000000000000000000000000640000002503000000000000080026006c09"], 0x80}}, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000094}, 0xc800) (async)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x10ce488, 0x0) (async, rerun: 32)
chdir(0x0) (async, rerun: 32)
socket(0x2b, 0xa, 0x1)
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
lseek(0xffffffffffffffff, 0x101, 0x1) (async)
openat$ppp(0xffffffffffffff9c, 0x0, 0xc0802, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, 0x0, 0x0) (async)
recvmmsg(r5, 0x0, 0x0, 0x2, 0x0) (async)
fsopen(&(0x7f00000000c0)='jffs2\x00', 0x1)

7.550349681s ago: executing program 0 (id=2896):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x0, 0x556, 0x0, 0xa, 0x4db, 0x3e, 0xffffffff, {0x4, 0x40}, {0xfffffffd, 0x1}, {0x2}, {0x1000, 0x0, 0x1}, 0x0, 0x0, 0x40, 0x0, 0x0, 0x1, 0x0, 0xfffffc00, 0x0, 0x400, 0x0, 0x0, 0x21, 0x4, 0x0, 0x7})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x17}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x2c, &(0x7f00000003c0)=[@in6={0xa, 0x4e24, 0xffffffff, @ipv4={'\x00', '\xff\xff', @private=0xa010100}, 0xfffffffe}, @in={0x2, 0x4e24, @broadcast}]}, &(0x7f0000000280)=0xc)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f0000001f00)="de4dc043102f0e202515a02eac23", 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r3 = openat$nvme_fabrics(0xffffff9c, &(0x7f0000000100), 0x50000, 0x0)
ioctl$IOC_PR_RELEASE(r3, 0x401070ca, &(0x7f0000000140)={0x2, 0x800, 0x1})

7.486178905s ago: executing program 0 (id=2898):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0xc8000)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$binderfs_ctrl(0xffffff9c, &(0x7f0000000300)='./binderfs/binder-control\x00', 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x24004080)
socket(0x1a, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r2 = open(&(0x7f0000000040)='./file0\x00', 0x80242, 0x1df2a23c5997fa7b)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000500)={0xa0, 0x0, 0x0, {{0x0, 0x3, 0x5, 0x432c, 0x3, 0x1, {0xfffffffffffbffff, 0x4, 0x20ff, 0x7ff, 0x200000000f7c, 0x800000000000d611, 0x5, 0x81, 0x9, 0x1000, 0xa, 0x0, 0x0, 0x3ff}}, {0x0, 0xa}}}, 0xa0)
ptrace$ARCH_SHSTK_LOCK(0x1e, 0x0, 0x2, 0x5003)
sendfile(r2, r2, &(0x7f0000000080), 0x7f04)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000000)=ANY=[], &(0x7f0000000480)='syzkaller\x00'}, 0x94)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x5, &(0x7f00000005c0)=ANY=[@ANYRESOCT=r3], &(0x7f0000000080)='GPL\x00', 0x8, 0xfffffee2, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000800)='kfree\x00', r4}, 0x18)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000ac0)="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", 0x19e}, {&(0x7f0000000340)="a6c125c2071c4b271f8e0f4dc1354259b6f24e0f99cb1d98a6eac997be7fe9d08c0785b4fbfd46341d5989d28c676308cd2e3d48c4a8ebd28e136b2de01029dbf0a4536aca281495caf78410c61b9f16c97464439dc58af41706a3041dff8a477dec65fae79a0acd384932c4f96c5af3f059e02d6e278ca25b6b3d9fe63d4a0115a074da6323f4110c3cd471d4ce50630b9f94de4ed7034fc1ec686bd29d15b39b293446e37ddc0edeac8f4247704c328344955bef", 0xb5}, {&(0x7f0000000400)="591348effdd38094cc01d9ce399cdb67141abc848798d3050e55ed08290a7615bdaa33354ca6ce545faa", 0x2a}, {&(0x7f0000000980)="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", 0x108}], 0x4}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'veth0_vlan\x00', 0x7101})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})

5.909942737s ago: executing program 4 (id=2906):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x18) (fail_nth: 6)

5.802904174s ago: executing program 4 (id=2907):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
shutdown(r0, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (fail_nth: 7)

5.601905815s ago: executing program 4 (id=2909):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22, @multicast1}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x800000000f, &(0x7f0000000080)=0x7, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1a, &(0x7f0000000100)=0x401, 0x4)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
listen(r0, 0xb5d6)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x3f)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x1c1840, 0x92)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r4, &(0x7f00000001c0)="f1", 0x1)
sendfile(r4, r3, 0x0, 0x40001)
sendfile(r4, 0xffffffffffffffff, 0x0, 0x7ffff000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x1f, &(0x7f00000004c0)={0x0}, 0x1)
ioctl$KVM_CAP_HYPERV_SYNIC2(r7, 0x4068aea3, 0x0)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000980), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICLIST(0xffffffffffffffff, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000080)=ANY=[@ANYBLOB="163975000000", @ANYBLOB="050329bd7000fe"], 0x14}, 0x1, 0x0, 0x0, 0x4081}, 0xc4)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x400000b0, 0x0, 0x160f}, {0x400000b1, 0x0, 0x8000000000000001}]})
ioctl$KVM_RUN(r7, 0xae80, 0x0)

5.587149233s ago: executing program 0 (id=2910):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xc, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5ba}}, &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5.235116527s ago: executing program 0 (id=2920):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x1f0, 0x30, 0x4, 0x70bd25, 0x0, {}, [{0x1dc, 0x1, [@m_ct={0xf0, 0x10, 0x0, 0x0, {{0x7}, {0xc, 0x2, 0x0, 0x1, [@TCA_CT_NAT_IPV4_MAX={0x8, 0xa, @multicast2}]}, {0xbf, 0x6, "857e8bf438503d68a5efbef581e6b617c95084732368e39ab11c5837cdc52c3999f35f74aded4f828de4dcd7edb12cae9da1ab96f7284c5ff06eabbd48130e5fa1eb0112cf6140e0109bc3d160a41a20e281dacdf7ffaa7236043f87c2def8a30568066636bb0a140a6fc8075e6d757ed6782136dd102277972644198184d6eb3282188fc2c63b630820a215b40975655cd65e5805d64d9425516160cf86f8285d0699034d74507176a924fcc761563d7ee7500000000000000000"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}, @m_gact={0x0, 0x8, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x0, 0x2, {0x3, 0x3, 0x6, 0x34, 0x1ff}}]}, {0x0, 0x6, "6a5004df179249151e5e695c6574ad56a77557f6315ba4c1157e804fff705a810edcaa1b37c9c3bfadd9652a46406956a23793eeafbed2cdc655cf06e6b80a204943aa8fd56483f94e527b647de34124bb58880442143e411cad0d0b1ceccf0d5148ad50f74ba0c8f534d9d84cc77e557649215331b1458ebd873bee6bbd12d081ebc3e5d83c69c762144b2346bb6252cc9aa503e30062c1a657612b22c0fdae5a751bd9dd76818659e3c3685987c5248c6bcb823dd20c654f0777c5a1c476d2b79831485edb5208f7947d78aef9fd3d0ba4619943c9d135189d8575ff6cdd882a0d31d2b0558408547e77a79a38"}, {0x0, 0x7, {0x1}}, {0x0, 0x8, {0x2}}}}, @m_skbedit={0xb0, 0x8, 0x0, 0x0, {{0xc}, {0x14, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x2}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0xfffffff7}]}, {0x72, 0x6, "2aac0ee258fc2531137a20e605c831c3caa3601a9d5e6ef0fa07471a9d6e93e79b20525082249f970ea8e0fd92186805d816de7bf8c7fb9dca71a54b7d2cb945e5ef264cfc3a1a5477f090312942c7883982926eb348ffb905cac1fe090f45d0a6d2c307ec62e9df23da974cd588"}, {0xfffffffffffffe95, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x1f0}, 0x1, 0x0, 0x0, 0x4000804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x10000034)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f00000001c0), 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setrlimit(0x6, &(0x7f0000000100)={0x9, 0x2})
pipe(0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(r3, 0x5608)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x4d, 0x0, &(0x7f0000000080))
mkdir(&(0x7f0000000300)='./bus\x00', 0x40)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00')
rename(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='./bus\x00')
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x34, &(0x7f00000000c0)=0x40, 0x4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x30, r3, 0x33c5f000)

2.798803254s ago: executing program 4 (id=2918):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
r3 = socket(0x22, 0x1, 0x2002)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000080)={0x3, 'bridge_slave_1\x00'})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x1, [], 0x0, [0x1, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x8000, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
close(0x3)

2.618246441s ago: executing program 2 (id=2919):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f0000000100)={0x0, 0xfffffd82, &(0x7f0000001200)={&(0x7f0000000340)={0x44, r1, 0x607, 0x70bd2a, 0x0, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x460769a9}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x7}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x44}}, 0x0) (fail_nth: 5)

2.55967301s ago: executing program 4 (id=2921):
userfaultfd(0x801)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x13)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r1, &(0x7f0000000500)='O', 0xfe6a, 0x80, &(0x7f0000000280)={0xa, 0x0, 0xfffffffe, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1}, 0x1c)
shutdown(r1, 0x1)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x3}, 0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0xffffffbe}, &(0x7f00000003c0)=0x8)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r3 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="16400000000000000084000001000000b7d96792", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000018c0)={r4, 0x0, 0x0, 0x4}, 0x20)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r3, 0x0, 0x0)
fchdir(r5)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000440)=[{0x20, 0x0, 0x0, 0xffeff00c}, {0x6}]}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0xc7, &(0x7f0000000680)=""/199, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x3, &(0x7f0000000200)=0xfffffffb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)

2.559438127s ago: executing program 2 (id=2922):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6362, 0x7, 0xffffffdf, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x4000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
r5 = socket$kcm(0x11, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$kcm(r5, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x4, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000440)="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", 0x105}], 0x1}, 0x0)

2.298526697s ago: executing program 2 (id=2923):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xc, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5ba}}, &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.199988702s ago: executing program 2 (id=2924):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="6a798deadd219a60cb249bb679c3cf3150866c0bc9cbbac37ac4fe75dc772934550f3bbd402e13abfcb594b38fea475a223f15f2125807eea2c6f82b8166ec84eaf6f29d0cb0a16e4b2dd86e160f76dab3dec6180e5e2601dde22ac80018e85c2435767a35cb02cb55f89838aa930aaee593b700f5327bf1ffa3bdc8cd27f9f8dc2a716955e5aa006167898b42616658c4e4a1da98d59f619f63a266a40172cc774f128fe3dc4c0abd2fa324f94e167f9a10fcfcb116c324184d"], &(0x7f0000000280)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x3, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180200000200000000000000000000008500000029000000850000002a00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000380)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
socket(0xa, 0x3, 0x3a)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, &(0x7f0000000400)=ANY=[])
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000200)={0xfffffffc, 0x0, 0x6, 0x0, 0xff, "db8f2d2b3b7596160c6981acf8805944823a7f"})
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f00000004c0)=ANY=[@ANYRES64=r4, @ANYRESDEC=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000006840)={0x2020, 0x0, <r6=>0x0}, 0x2020)
syz_fuse_handle_req(r5, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r5, &(0x7f0000004200)={0x50, 0x0, r6}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x47f2, 0x1})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
lseek(r7, 0x0, 0x2)

1.250055937s ago: executing program 2 (id=2925):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x36}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x3)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r2, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r2, 0x8949, &(0x7f0000000000))
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000000b80)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="c8080000", @ANYRES16=r4, @ANYRES64=r0], 0x8c8}}, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r5, &(0x7f00000029c0)={0x2020}, 0x2020)
timer_create(0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r6 = socket$netlink(0x10, 0x3, 0x10)
fsetxattr$trusted_overlay_origin(r6, &(0x7f0000000100), &(0x7f0000000300), 0x2, 0x2)
r7 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r7, &(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)

1.009185162s ago: executing program 3 (id=2926):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x801, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0xb029}, [@IFLA_GROUP={0x8}, @IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_RSS_QUERY_EN={0xc, 0x7, {0x1000, 0x401}}]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20048054}, 0x40) (fail_nth: 7)

23.401672ms ago: executing program 3 (id=2927):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="020000000400000005000000aa"], 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r0}, 0x38)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22041000f3fe80000000000000110880febb0007aafe8000000000000027bfa7b09303960e2b80"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

23.032791ms ago: executing program 4 (id=2928):
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x14, 0x2, 0x6, 0x701}, 0x14}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
sendmsg$IPSET_CMD_LIST(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000070601080005000000000000000000000500010006"], 0x1c}, 0x1, 0x0, 0x0, 0x20048005}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000f2303920422c0212408501020301090212000100001000098b1d24dbc17f0c00"], 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

20.061175ms ago: executing program 3 (id=2929):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a50000000090a010400000000000000000a0000040900010073797a31000000000800054000000002097a310000000016000a40fffffffc08000340000001300c000b400000000000000006400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a14d7207d89310000000014000380100000800c00018006000100d103000014000000110001"], 0xb8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c0800002c0007012bbd7000000000e5087c00000c00018006000600843b000009000280040071008c0000000800e400", @ANYRES32, @ANYBLOB="2d0529800c00f800030000000000000004006080fa003b800400df00c1becb03dbe55b6c782cebd6a7bc78a21d1bc9f3c1bd441ada5266780599eaf18965bbfcc07c2037129672275c399e1e03f8a0664d807385cc4d566f230400db800400498096d9641e8b1887b25501b11ecd71313a47df368b078d7b825bff33b9eab3964d7b2394b1950c7aeaba6014fe2cd33c89fd070ce0f1f306494a44adf6609d8ad55a5080b36b05cb0b9a57833b14fcd62c0aba0ac67f03b20e87ba6f3610a5bd1d3369ae014c8036c1e596b800991698810ff706e98871c17ad581b0695476273ac6c33a7a51d4a44a5b95684befe95ef49b03458bce89d87355f35b766b242b9f98b661269bb9255d836fb4e30d0000c72ec5561adf6112ca278273b4af42597e7bfa1f5c228f13161b34517c92bc352c017afac22d14047e6fbdc61536f9e51738ea935cb2a577ec2b788433bc13a9e976cfee267f36d988b766a29632c84c94d4cf31d780ef683293d7eacfc93f248d137affcae7cffa699237ea9c7491", @ANYRES32, @ANYBLOB="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"], 0x85c}, 0x1, 0x0, 0x0, 0x24048011}, 0xc000)

19.379942ms ago: executing program 3 (id=2930):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
r2 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r3, 0x0)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00')
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = socket$inet6(0xa, 0x1, 0x796d5bd9)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMP(r6, 0x1, 0x52, &(0x7f0000000040)=0x2, 0x4)
setsockopt$inet6_MCAST_JOIN_GROUP(r5, 0x29, 0x2a, &(0x7f00000000c0)={0x1c7b, {{0xa, 0x4e21, 0x8, @empty, 0x5}}}, 0x84)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="140000000400000008000000da00000000000000", @ANYRES32=0x1, @ANYBLOB="00000000008648716500"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000100)={r7, 0x58, &(0x7f0000000080)}, 0x10)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r7}, 0x4)
ioctl$sock_SIOCETHTOOL(r4, 0x89f1, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000300)=@ethtool_per_queue_op={0x4b, 0xf, [0x9, 0x2400000, 0x5, 0x0, 0x6, 0x7f, 0x1, 0x6, 0x9, 0x7, 0x7, 0x0, 0x36, 0x36e5, 0x7, 0x9, 0x1, 0x3, 0x2, 0x9b, 0x2, 0x2, 0x0, 0x5f, 0x800d00, 0x4, 0xcdd, 0x84c7, 0x2, 0x4, 0x1, 0xfff, 0x3, 0x5, 0x2, 0xa, 0x6, 0x9, 0xd6, 0x0, 0x800005, 0x8, 0x8, 0x9a, 0x1, 0x0, 0x7f, 0x3, 0x7, 0x7, 0xb7, 0xfffffffd, 0x8000, 0x800, 0x78, 0x4, 0x4, 0x10000, 0x555, 0x93c, 0x0, 0xffffffff, 0x0, 0xfffffffe, 0x4, 0x3, 0x7b4f, 0x1, 0x200, 0x80, 0x610b, 0x6, 0x7ff, 0x6ce1, 0x98, 0x404000, 0x1, 0x0, 0xaac, 0x53, 0x3, 0x2, 0x7, 0x1, 0x1, 0xdbf4, 0xfffffffe, 0x80000000, 0x2, 0x0, 0x59b55464, 0x2, 0x4, 0xe7f, 0xba5, 0x10000, 0xfffffffb, 0x8, 0x3fb, 0xb85, 0x8, 0x38d3, 0xdd, 0x800, 0xbac6, 0x1, 0x93, 0x8, 0x3, 0x40, 0xffff, 0x6, 0xfffffffb, 0x5f, 0x0, 0x0, 0x0, 0x6, 0x3ff, 0x5, 0x1fb, 0xc8c, 0x7, 0x5, 0x2, 0x80000801, 0x2, 0x5c74]}})
r8 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r8, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r8, 0x0, 0x0)
openat$cgroup_subtree(r9, &(0x7f0000000100), 0x2, 0x0)
connect$unix(r9, &(0x7f0000000180), 0x6e)

19.218865ms ago: executing program 3 (id=2931):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6362, 0x7, 0xffffffdf, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x4000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
r5 = socket$kcm(0x11, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$kcm(r5, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x4, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000440)="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", 0x105}], 0x1}, 0x0)

18.830428ms ago: executing program 2 (id=2932):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=@newtaction={0x68, 0x30, 0x309, 0x0, 0x2, {}, [{0x54, 0x1, [@m_tunnel_key={0x50, 0x1, 0x0, 0x0, {{0xf}, {0x20, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0xbabd, 0x81, 0x5, 0x1, 0xffc}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r1 = openat$ubi_ctrl(0xffffff9c, &(0x7f0000000040), 0x10000, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
r3 = dup(r2)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x4, 0x0, 0x0, 0xd, "0062ba7d820700000000000000000000096304"})
write$RDMA_USER_CM_CMD_JOIN_MCAST(r3, &(0x7f0000000140)={0x16, 0x98, 0xfa00, {0x0, 0x0, 0xffffffffffffffff, 0x1c, 0x1, @ib={0x1b, 0xdacc, 0x8000000, {"21edab2a4f34faeebdac77b05d04bf94"}, 0x8, 0x7, 0x1}}}, 0xa0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000e00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWOBJ={0x3c, 0x12, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x1}, @NFT_OBJECT_CT_TIMEOUT=@NFTA_OBJ_DATA={0x28, 0x4, 0x0, 0x1, [@NFTA_CT_TIMEOUT_L3PROTO={0x6, 0x1, 0x1, 0x0, 0x9300}, @NFTA_CT_TIMEOUT_DATA={0x14, 0x3, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_CLOSEREQ={0x8, 0x5, 0x1, 0x0, 0x1}, @CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x5}]}, @NFTA_CT_TIMEOUT_L4PROTO={0x5, 0x2, 0x6}]}}, @NFT_MSG_NEWFLOWTABLE={0x224, 0x16, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK={0x1c4, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xffffffff}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0xcc, 0x3, 0x0, 0x1, [{0x14, 0x1, 'ip6_vti0\x00'}, {0x14, 0x1, 'batadv_slave_0\x00'}, {0x14, 0x1, 'batadv0\x00'}, {0x14, 0x1, 'bond_slave_1\x00'}, {0x14, 0x1, 'pim6reg1\x00'}, {0x14, 0x1, 'bridge_slave_1\x00'}, {0x14, 0x1, 'veth1_macvtap\x00'}, {0x14, 0x1, 'ip6gretap0\x00'}, {0x14, 0x1, 'syz_tun\x00'}, {0x14, 0x1, 'pim6reg1\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0xcc, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0\x00'}, {0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'ip6_vti0\x00'}, {0x14, 0x1, 'ip6tnl0\x00'}, {0x14, 0x1, 'dummy0\x00'}, {0x14, 0x1, 'pim6reg1\x00'}, {0x14, 0x1, 'bond_slave_1\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'bond0\x00'}, {0x14, 0x1, 'veth0_to_batadv\x00'}]}]}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSET={0x810, 0x9, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x2}, [@NFTA_SET_EXPRESSIONS={0x6c, 0x12, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @match={{0xa}, @void}}, {0x10, 0x1, 0x0, 0x1, @xfrm={{0x9}, @void}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}, {0x24, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0xe, 0x1, 'connlabel\x00'}]}}}]}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x8}, @NFTA_SET_EXPRESSIONS={0x74c, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0x14, 0x1, 0x0, 0x1, @notrack={{0xc}, @val={0x4, 0x2, 0x0, 0x1, ["", "", ""]}}}, {0x48, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x38, 0x2, 0x0, 0x1, [@NFTA_LAST_MSECS={0xc, 0x2, 0x1, 0x0, 0x9}, @NFTA_LAST_MSECS={0xc, 0x2, 0x1, 0x0, 0x9}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x80}, @NFTA_LAST_SET={0x8, 0x1, 0x1, 0x0, 0x1000}, @NFTA_LAST_MSECS={0xc, 0x2, 0x1, 0x0, 0x9}]}}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0x10, 0x1, 0x0, 0x1, @tproxy={{0xb}, @void}}, {0x1ac, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x19c, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0xdb, 0x3, "0a840a803513f2f80ca0019a465edb7181c3e0f45fcac508ff3185ea5cedf973dc4fdd84b2b4e75763c5311e9cd8ce0eae7613b173bdae5701f29c040d31e4943d0815e04c1628356e2277d7c2c71709e19dfeaad2d3bf1815aa2168d7a30b23c0eb26cd0678df0cd563f751e61d632d9e4bb5e455129e7561fed74ae193b3bfbf4a4e602a065f16951a574810b1b6fc36c2ec3fd9a2324cebe93d100069dc74f1c6065e588cae70eb563b6b5a252ccf50108ad6355df7de7db18473b4501f4e9efafdb4ba34386d06167ed0043987f057382137e77c62"}, @NFTA_TARGET_NAME={0x8, 0x1, 'SET\x00'}, @NFTA_TARGET_INFO={0x7b, 0x3, "dffe0ff641d87d97346d5b14235e1809d3aa4cec6adf463c481135efe19e021b319351c8347914eca2289cddd1528733d725ff55d1ad5fee459d7efb344a19682a1409fa3253cbc457f3790602426ec0c945f4743d35ae75a517cbb68bf91e8e8c7900b3d709804d1b1e0f34ce202f0e61858bf563dd92"}, @NFTA_TARGET_INFO={0x36, 0x3, "f52a6035165fc4b827c65ad835f49340c515d828745e773a4bbf1e8f58f289938a181aca0a9b84f465c36e3a0e6b2c392d3b"}]}}}, {0x4ac, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x49c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_DATA={0x184, 0x7, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x4}, @NFTA_DATA_VALUE={0x90, 0x1, "351fd0539a1dd17d4604177d575f92a8eb1a1b4efaabee0a6917359e1d7ffb0cc949b8f5ffef994ec1510dda422235598a7e3bf39f9d3ac66de4981977a051a272dfbe2bdf78e64ecf7286a40770c4966b561fe01c900888b2b0862173b87bcce9e48c0e1ac83b210bd9a53a8f97987dee6f7e94a988bad0cdb3b90b5595e125cdb8594c453423ee071c15f3"}, @NFTA_DATA_VALUE={0xa2, 0x1, "10f13c2b30c09841002ccb3ec849dbf658607248404fc0773550c98c193cfc80e2f3ddf7fe8f72c25d5abb1d6592df2520306eb00b754c846444df1fc4a30f786e46de7bd6321b32a54175c8772f0301bb7822f26d4c036d821db8135a2993484a223faaf774ccf7d21b2914dfa254e48126473da271331b62fc37d7698dfc21760cbff442fe4c9715a1548cbc898668cc9fc2affc0d5807123353d7b333"}, @NFTA_DATA_VALUE={0x8, 0x1, "28203e18"}]}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_BITWISE_DATA={0x30c, 0x7, 0x0, 0x1, [@NFTA_DATA_VALUE={0x1c, 0x1, "8796927af077f2993b8d09ade77b594f545c2e75b19267f2"}, @NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}, @NFTA_DATA_VALUE={0x56, 0x1, "4f677b7d14b60907e2bcbab7d08ca5ccf2a0535c44737e827c0f70f08597d654827c198e8f254fd35230859d2392711be11dbaa680f86663434b3b615d8db83e96ffeecf96fd9ed00569bc334d6f4b104c6c"}, @NFTA_DATA_VALUE={0x91, 0x1, "1ea67a3e56c320cbda6cea0f4e7e5ab813d83428081dadfcdbef1763eb5a8eb06665eb512d7a48fbda0c984cae0cc58fe2d657d8288706e51b5c472740dc785bf2aa45275efb871e53666345c7fa7c83d4e9306e03c46b8231982ff86a9dd7a4c92cf4921ddb54f713ccb24b43110f6bb8d40ec565d3b8e2fc484890ff8d13e05ce9015c53e936b0d14bf9fef3"}, @NFTA_DATA_VALUE={0x63, 0x1, "806d4fa094e877e86641fe616beef1d4b4019383700202f336c55b29250d0a98b81ae44ffce8babd9b5d30461190946c40d843452099db85df6a5e3cbaa388e9162a142f6fd170ec982238ae09a320e43fa879285340afd513f2c52c8a524b"}, @NFTA_DATA_VALUE={0xe5, 0x1, "84659efec0d229cf919dabbd6019ae145a2863ee27e23ec7dddf1eaf8f1f4f3a07d6edcd022c755948859b9282c43a128fba1537945a0a9925b3e950950d9a0c9eea8406928c879cc1fd09fc199d4f7d151e5e039f62cee6a7f617c845160fe148e7aead6807a573f8a0e003892dd94a24857db11fb1da7916fc47578e54b2bd840fed295702065269056b2367b960756b82b11430c23c0fedb5f11390a7c0eae34b1b5935b9d446f04281e9ae7f793f2cf7aa4805500764c48a35302c191a19037cf26a295e96b62fbbf213126a39ac2a5d6c4f034f83c7fbb74939f88d08c7d0"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}]}, @NFTA_DATA_VERDICT={0x40, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}]}]}}}, {0x3c, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_HASH_MODULUS={0x8, 0x4, 0x1, 0x0, 0x7}, @NFTA_HASH_SEED={0x8, 0x5, 0x1, 0x0, 0x4}, @NFTA_HASH_OFFSET={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_HASH_TYPE={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_HASH_LEN={0x8, 0x3, 0x1, 0x0, 0xa7}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x10, 0x1, 0x0, 0x1, @dynset={{0xb}, @void}}]}, @NFTA_SET_EXPR={0x34, 0x11, 0x0, 0x1, @range={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0xa}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x3}]}}}, @NFTA_SET_DATA_TYPE={0x8}]}, @NFT_MSG_NEWTABLE={0x2c, 0x0, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x78, 0x14, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_USERDATA={0x1a, 0x8, "77d54642a4b987b6a05ba3e96e0dcb384d471fcb065d"}]}, @NFT_MSG_NEWCHAIN={0xf8, 0x3, 0xa, 0x52efa39988f3a688, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_CHAIN_COUNTERS={0x34, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x200}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x9}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}]}, @NFTA_CHAIN_HOOK={0x6c, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_DEV={0x14, 0x3, 'gretap0\x00'}, @NFTA_HOOK_DEV={0x14, 0x3, 'team_slave_1\x00'}, @NFTA_HOOK_DEV={0x14, 0x3, 'macvlan0\x00'}, @NFTA_HOOK_DEV={0x14, 0x3, 'batadv_slave_1\x00'}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x48ae433}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x7f290c55}]}, @NFTA_CHAIN_USERDATA={0x29, 0xc, "11243bb187642630550c10c6c0570bcdd910aba7bf3d953dd3df1f39838b3254f660e71046"}, @NFTA_CHAIN_HOOK={0x18, 0x4, 0x0, 0x1, [@NFTA_HOOK_DEV={0x14, 0x3, 'pim6reg0\x00'}]}]}, @NFT_MSG_DELTABLE={0x1f0, 0x2, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_TABLE_USERDATA={0x6c, 0x6, "4b833d0b694f512184d959fe9f22afbf3c58aec5196b44a5864d645c4e45632bb352df569f9165c2d722e93183bbc857f75e56909a901b8227205fb7f8855c93b043ffef16db17d25462f06e2f931106aed814582184dfc435945a92e0f60dff78d17a5c4044c839"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0xab, 0x6, "286ba5d562a5e43f8c777b03d0e4a27881642be909102f31cd9df07b3069281f864abfd2188a295cde96d65e80feaf6f45ae1ce65b3f878849074641f2fb21bbaab3706311fa4472db3c9e6219be18bd2802360d1c4ee282f64c06b2996f143ccb6cb5f331890b55aec2126a619779c84b48df5072f31fbc09f86a68b61177c4c3a4a2820e51be610c694ba67352f0474522b33df6ac0a1f33dda5f21fe54252359330c3cebb43"}, @NFTA_TABLE_USERDATA={0xb2, 0x6, "33b5c14573d4378553b2f9a269c03c23b7c60135cd4eb8e9fe2ba3e72673a7ff39d39b66f621d6f902d5ccedc208c8210610db72367ed135bc5f7f02737f6dbb3f3c2033da84c6aeed16bdd437694237fa9913203686809808900147effcc4ab6e93a5cb5414e32ede3286ab438160233ffffc91fd799a721176619e349a06aa5756207575710faafa44d6e75a23f78dafe75e137bc7b821cc622932c68141eb24c3d7b2f257225da89fbd95abed"}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0xe24}, 0x1, 0x0, 0x0, 0x40840}, 0x20000000)
r4 = syz_open_pts(r2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_netfilter(r5, &(0x7f0000002880)={0x0, 0x0, &(0x7f0000002840)={&(0x7f00000024c0)={0x14, 0x69, 0x0, 0x401}, 0x14}}, 0x0)
dup3(r4, r2, 0x80000)
r6 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_NEXT_CMD_LEN(r6, 0x2283, &(0x7f0000000380)=0x2)
r7 = getpid()
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x3c, r9, 0xc2ddb5edb7ba9069, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r7}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
r10 = fcntl$dupfd(r6, 0x0, r6)
write$sndseq(r10, &(0x7f0000000140)=[{0x0, 0x40, 0x7, 0x2, @time={0x3, 0x2}, {0xee, 0x1}, {0x0, 0xfd}, @connect={{0x6, 0xa}, {0xd, 0x4}}}, {0xfb, 0x0, 0x1, 0x81, @time={0x10, 0x1b}, {0x8, 0x30}, {0x2}, @raw8={"fc82b01d8000228d65e81d78"}}], 0x38)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000180)=@base={0x12, 0x7d, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x50)

18.646679ms ago: executing program 0 (id=2933):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000000980)={0x0, 0x0, 0x0}, 0x2020)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000002c00ef5f"], 0x14}, 0x1, 0x0, 0x0, 0x20008081}, 0x800)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r1)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x5}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008900000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r6, r4}, 0x14)
syz_emit_ethernet(0x1256, &(0x7f0000000a00)=ANY=[], 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r8=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x34, r2, 0x60b, 0x70bd2d, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x80}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r8}]}, 0x34}}, 0x0)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NFC_CMD_START_POLL(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, r9, 0x10, 0x70bd2c, 0x25dfdbfb, {}, [@NFC_ATTR_PROTOCOLS={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x4}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004040}, 0x800)

17.785907ms ago: executing program 0 (id=2934):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x400401, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {0xffff}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xa406}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=@newqdisc={0x40, 0x28, 0x4ee4e6a52ff56541, 0x5001, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xe, 0x1}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x7, 0x1}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)

0s ago: executing program 3 (id=2935):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {0xffff}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xa406}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=@newqdisc={0x40, 0x28, 0x4ee4e6a52ff56541, 0x5001, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xe, 0x1}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x7, 0x1}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080) (fail_nth: 6)

kernel console output (not intermixed with test programs):

00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  245.937932][T14032] RSP: 002b:00000000f5496590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  245.937950][T14032] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5496620
[  245.937962][T14032] RDX: 000000000000000f RSI: 00000000f7436ff4 RDI: 0000000000000000
[  245.937974][T14032] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  245.937985][T14032] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  245.937996][T14032] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  245.938023][T14032]  </TASK>
[  246.051511][   T53] usb usb38-port1: attempt power cycle
[  246.352736][T14036] syzkaller0: entered promiscuous mode
[  246.354603][T14036] syzkaller0: entered allmulticast mode
[  246.430384][T14038] tmpfs: Bad value for 'mpol'
[  246.434160][T14038] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2636'.
[  246.605929][T14054] usb usb7: usbfs: process 14054 (syz.3.2641) did not claim interface 0 before use
[  246.626579][T14055] xt_bpf: check failed: parse error
[  246.628376][T14042] netlink: 'syz.2.2638': attribute type 25 has an invalid length.
[  246.639270][   T53] usb usb38-port1: unable to enumerate USB device
[  246.732272][T14061] FAULT_INJECTION: forcing a failure.
[  246.732272][T14061] name failslab, interval 1, probability 0, space 0, times 0
[  246.737049][T14061] CPU: 1 UID: 0 PID: 14061 Comm: syz.3.2642 Not tainted syzkaller #0 PREEMPT(full) 
[  246.737066][T14061] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  246.737084][T14061] Call Trace:
[  246.737089][T14061]  <TASK>
[  246.737093][T14061]  dump_stack_lvl+0x16c/0x1f0
[  246.737115][T14061]  should_fail_ex+0x512/0x640
[  246.737128][T14061]  ? fs_reclaim_acquire+0xae/0x150
[  246.737147][T14061]  should_failslab+0xc2/0x120
[  246.737165][T14061]  __kmalloc_noprof+0xeb/0x910
[  246.737178][T14061]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  246.737197][T14061]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  246.737211][T14061]  tomoyo_realpath_from_path+0xc2/0x6e0
[  246.737228][T14061]  ? tomoyo_profile+0x47/0x60
[  246.737246][T14061]  tomoyo_path_number_perm+0x245/0x580
[  246.737258][T14061]  ? tomoyo_path_number_perm+0x237/0x580
[  246.737272][T14061]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  246.737300][T14061]  ? find_held_lock+0x2b/0x80
[  246.737314][T14061]  ? hook_file_ioctl_common+0x144/0x410
[  246.737337][T14061]  ? __fget_files+0x20e/0x3c0
[  246.737353][T14061]  ? __fput_deferred+0x410/0x480
[  246.737367][T14061]  security_file_ioctl_compat+0x9b/0x240
[  246.737382][T14061]  __ia32_compat_sys_ioctl+0xc3/0x370
[  246.737399][T14061]  __do_fast_syscall_32+0xe8/0x680
[  246.737419][T14061]  do_fast_syscall_32+0x32/0x80
[  246.737429][T14061]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  246.737443][T14061] RIP: 0023:0xf7f54579
[  246.737452][T14061] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  246.737463][T14061] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  246.737474][T14061] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000008038550a
[  246.737481][T14061] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  246.737487][T14061] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  246.737493][T14061] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  246.737499][T14061] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  246.737513][T14061]  </TASK>
[  246.737680][T14061] ERROR: Out of memory at tomoyo_realpath_from_path.
[  246.780956][T14065] usb usb7: usbfs: process 14065 (syz.2.2643) did not claim interface 0 before use
[  246.835532][T14061] usb usb7: usbfs: process 14061 (syz.3.2642) did not claim interface 0 before use
[  246.949951][T14070] netlink: 'syz.0.2646': attribute type 1 has an invalid length.
[  246.954117][T14070] netlink: 740 bytes leftover after parsing attributes in process `syz.0.2646'.
[  247.010768][T14073] FAULT_INJECTION: forcing a failure.
[  247.010768][T14073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  247.017264][T14073] CPU: 2 UID: 0 PID: 14073 Comm: syz.0.2647 Not tainted syzkaller #0 PREEMPT(full) 
[  247.017291][T14073] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  247.017308][T14073] Call Trace:
[  247.017317][T14073]  <TASK>
[  247.017324][T14073]  dump_stack_lvl+0x16c/0x1f0
[  247.017357][T14073]  should_fail_ex+0x512/0x640
[  247.017383][T14073]  _copy_from_iter+0x2a4/0x16c0
[  247.017408][T14073]  ? __alloc_skb+0x220/0x410
[  247.017427][T14073]  ? __alloc_skb+0x35d/0x410
[  247.017447][T14073]  ? __pfx__copy_from_iter+0x10/0x10
[  247.017468][T14073]  ? netlink_autobind.isra.0+0x158/0x370
[  247.017505][T14073]  netlink_sendmsg+0x820/0xdd0
[  247.017536][T14073]  ? __pfx_netlink_sendmsg+0x10/0x10
[  247.017565][T14073]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  247.017601][T14073]  ____sys_sendmsg+0xa5d/0xc30
[  247.017633][T14073]  ? __pfx_____sys_sendmsg+0x10/0x10
[  247.017660][T14073]  ? get_compat_msghdr+0x11a/0x170
[  247.017694][T14073]  ___sys_sendmsg+0x134/0x1d0
[  247.017720][T14073]  ? __pfx____sys_sendmsg+0x10/0x10
[  247.017755][T14073]  ? find_held_lock+0x2b/0x80
[  247.017795][T14073]  __sys_sendmsg+0x16d/0x220
[  247.017818][T14073]  ? __pfx___sys_sendmsg+0x10/0x10
[  247.017858][T14073]  __do_fast_syscall_32+0xe8/0x680
[  247.017891][T14073]  do_fast_syscall_32+0x32/0x80
[  247.017908][T14073]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  247.017931][T14073] RIP: 0023:0xf70bd579
[  247.017962][T14073] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  247.017980][T14073] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  247.017999][T14073] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000700
[  247.018010][T14073] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  247.018021][T14073] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  247.018031][T14073] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  247.018042][T14073] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  247.018064][T14073]  </TASK>
[  248.259560][ T1325] usb 42-1: device descriptor read/8, error -110
[  248.651351][ T1325] usb usb42-port1: attempt power cycle
[  248.669057][T14083] kvm: emulating exchange as write
[  248.998266][T14093] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2652'.
[  249.013425][T14082] bridge0: port 3(dummy0) entered disabled state
[  249.015585][T14082] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.018770][T14082] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.025968][T14092] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2652'.
[  249.221216][T14104] FAULT_INJECTION: forcing a failure.
[  249.221216][T14104] name failslab, interval 1, probability 0, space 0, times 0
[  249.228760][T14104] CPU: 2 UID: 0 PID: 14104 Comm: syz.3.2655 Not tainted syzkaller #0 PREEMPT(full) 
[  249.228778][T14104] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  249.228785][T14104] Call Trace:
[  249.228789][T14104]  <TASK>
[  249.228794][T14104]  dump_stack_lvl+0x16c/0x1f0
[  249.228815][T14104]  should_fail_ex+0x512/0x640
[  249.228829][T14104]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  249.228844][T14104]  should_failslab+0xc2/0x120
[  249.228863][T14104]  kmem_cache_alloc_noprof+0x83/0x770
[  249.228877][T14104]  ? skb_clone+0x190/0x3f0
[  249.228895][T14104]  ? skb_clone+0x190/0x3f0
[  249.228908][T14104]  skb_clone+0x190/0x3f0
[  249.228923][T14104]  netlink_deliver_tap+0xabd/0xd30
[  249.228943][T14104]  netlink_unicast+0x64c/0x870
[  249.228963][T14104]  ? __pfx_netlink_unicast+0x10/0x10
[  249.228985][T14104]  netlink_sendmsg+0x8c8/0xdd0
[  249.229003][T14104]  ? __pfx_netlink_sendmsg+0x10/0x10
[  249.229021][T14104]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  249.229043][T14104]  ____sys_sendmsg+0xa5d/0xc30
[  249.229063][T14104]  ? __pfx_____sys_sendmsg+0x10/0x10
[  249.229080][T14104]  ? get_compat_msghdr+0x11a/0x170
[  249.229100][T14104]  ___sys_sendmsg+0x134/0x1d0
[  249.229115][T14104]  ? __pfx____sys_sendmsg+0x10/0x10
[  249.229136][T14104]  ? find_held_lock+0x2b/0x80
[  249.229160][T14104]  __sys_sendmsg+0x16d/0x220
[  249.229175][T14104]  ? __pfx___sys_sendmsg+0x10/0x10
[  249.229201][T14104]  ? do_user_addr_fault+0x843/0x1370
[  249.229217][T14104]  __do_fast_syscall_32+0xe8/0x680
[  249.229237][T14104]  do_fast_syscall_32+0x32/0x80
[  249.229247][T14104]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  249.229261][T14104] RIP: 0023:0xf7f54579
[  249.229270][T14104] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  249.229281][T14104] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  249.229292][T14104] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[  249.229299][T14104] RDX: 0000000020044050 RSI: 0000000000000000 RDI: 0000000000000000
[  249.229305][T14104] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  249.229311][T14104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  249.229318][T14104] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  249.229331][T14104]  </TASK>
[  249.269072][ T1325] usb usb42-port1: unable to enumerate USB device
[  249.369336][T14107] rtc_cmos 00:05: Alarms can be up to one day in the future
[  249.527269][T14082] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  249.536278][T14082] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  249.794762][ T1166] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  249.798631][ T1166] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  249.808146][ T1166] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  249.814144][ T1166] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  250.287711][T14125] FAULT_INJECTION: forcing a failure.
[  250.287711][T14125] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  250.293031][T14125] CPU: 3 UID: 0 PID: 14125 Comm: syz.3.2659 Not tainted syzkaller #0 PREEMPT(full) 
[  250.293057][T14125] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  250.293064][T14125] Call Trace:
[  250.293069][T14125]  <TASK>
[  250.293074][T14125]  dump_stack_lvl+0x16c/0x1f0
[  250.293098][T14125]  should_fail_ex+0x512/0x640
[  250.293114][T14125]  _copy_from_iter+0x2a4/0x16c0
[  250.293129][T14125]  ? __alloc_skb+0x220/0x410
[  250.293143][T14125]  ? __alloc_skb+0x35d/0x410
[  250.293155][T14125]  ? __pfx__copy_from_iter+0x10/0x10
[  250.293168][T14125]  ? netlink_autobind.isra.0+0x158/0x370
[  250.293192][T14125]  netlink_sendmsg+0x820/0xdd0
[  250.293211][T14125]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.293230][T14125]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  250.293253][T14125]  ____sys_sendmsg+0xa5d/0xc30
[  250.293273][T14125]  ? __pfx_____sys_sendmsg+0x10/0x10
[  250.293291][T14125]  ? get_compat_msghdr+0x11a/0x170
[  250.293312][T14125]  ___sys_sendmsg+0x134/0x1d0
[  250.293328][T14125]  ? __pfx____sys_sendmsg+0x10/0x10
[  250.293350][T14125]  ? find_held_lock+0x2b/0x80
[  250.293375][T14125]  __sys_sendmsg+0x16d/0x220
[  250.293391][T14125]  ? __pfx___sys_sendmsg+0x10/0x10
[  250.293411][T14125]  ? do_user_addr_fault+0x843/0x1370
[  250.293429][T14125]  __do_fast_syscall_32+0xe8/0x680
[  250.293450][T14125]  do_fast_syscall_32+0x32/0x80
[  250.293460][T14125]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  250.293475][T14125] RIP: 0023:0xf7f54579
[  250.293485][T14125] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  250.293497][T14125] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  250.293508][T14125] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000140
[  250.293515][T14125] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  250.293522][T14125] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  250.293529][T14125] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  250.293535][T14125] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  250.293549][T14125]  </TASK>
[  251.811406][T14138] netlink: 'syz.2.2661': attribute type 16 has an invalid length.
[  251.813983][T14138] netlink: 'syz.2.2661': attribute type 17 has an invalid length.
[  251.823797][T14136] bridge0: port 1(bridge_slave_0) entered disabled state
[  251.829484][T14136] bridge0: port 2(bridge_slave_1) entered disabled state
[  251.972269][T14140] netlink: 'syz.4.2663': attribute type 25 has an invalid length.
[  252.858988][T14151] syzkaller0: entered promiscuous mode
[  252.861252][T14151] syzkaller0: entered allmulticast mode
[  254.046324][T14170] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  254.049254][T14170] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  254.061315][T14170] vhci_hcd vhci_hcd.0: Device attached
[  254.155353][T14148] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  254.219549][T14179] vhci_hcd: connection closed
[  254.220376][ T1150] vhci_hcd vhci_hcd.0: stop threads
[  254.224619][ T1150] vhci_hcd vhci_hcd.0: release socket
[  254.228496][ T1150] vhci_hcd vhci_hcd.0: disconnect device
[  254.867471][T14185] netlink: 'syz.0.2672': attribute type 1 has an invalid length.
[  254.871171][T14185] netlink: 740 bytes leftover after parsing attributes in process `syz.0.2672'.
[  255.161578][T14187] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  255.316739][T14189] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2674'.
[  255.436475][   T40] audit: type=1326 audit(1767882724.380:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm="syz.4.2677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.448575][   T40] audit: type=1326 audit(1767882724.380:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm="syz.4.2677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.457510][   T40] audit: type=1326 audit(1767882724.390:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm="syz.4.2677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.465307][   T40] audit: type=1326 audit(1767882724.390:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm="syz.4.2677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.474081][   T40] audit: type=1326 audit(1767882724.390:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm="syz.4.2677" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.483104][   T40] audit: type=1326 audit(1767882724.390:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm=77DEA305FF07 exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.492493][   T40] audit: type=1326 audit(1767882724.390:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm=77DEA305FF07 exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.492929][T14189] hsr_slave_0 (unregistering): left promiscuous mode
[  255.500350][   T40] audit: type=1326 audit(1767882724.390:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm="syz.4.2677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.512647][   T40] audit: type=1326 audit(1767882724.390:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm="syz.4.2677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.525044][   T40] audit: type=1326 audit(1767882724.410:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm=77DEA305FF07 exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fa2579 code=0x7ffc0000
[  255.595783][T14200] fuse: Bad value for 'fd'
[  255.848257][T14215] syzkaller0: entered promiscuous mode
[  255.850586][T14215] syzkaller0: entered allmulticast mode
[  256.088350][   T60] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  256.204464][T14219] FAULT_INJECTION: forcing a failure.
[  256.204464][T14219] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  256.211105][T14219] CPU: 2 UID: 0 PID: 14219 Comm: syz.4.2686 Not tainted syzkaller #0 PREEMPT(full) 
[  256.211133][T14219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  256.211145][T14219] Call Trace:
[  256.211152][T14219]  <TASK>
[  256.211159][T14219]  dump_stack_lvl+0x16c/0x1f0
[  256.211193][T14219]  should_fail_ex+0x512/0x640
[  256.211217][T14219]  _copy_from_user+0x2e/0xd0
[  256.211246][T14219]  __sys_bpf+0x248/0x4980
[  256.211269][T14219]  ? __pfx___sys_bpf+0x10/0x10
[  256.211285][T14219]  ? find_held_lock+0x2b/0x80
[  256.211316][T14219]  ? find_held_lock+0x2b/0x80
[  256.211345][T14219]  ? __mutex_unlock_slowpath+0x161/0x790
[  256.211389][T14219]  ? fput+0x70/0xf0
[  256.211406][T14219]  ? ksys_write+0x1ac/0x250
[  256.211431][T14219]  ? __pfx_ksys_write+0x10/0x10
[  256.211461][T14219]  __ia32_sys_bpf+0x76/0xe0
[  256.211478][T14219]  ? lockdep_hardirqs_on+0x7c/0x110
[  256.211505][T14219]  __do_fast_syscall_32+0xe8/0x680
[  256.211537][T14219]  do_fast_syscall_32+0x32/0x80
[  256.211555][T14219]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  256.211577][T14219] RIP: 0023:0xf7fa2579
[  256.211593][T14219] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  256.211610][T14219] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  256.211628][T14219] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800002c0
[  256.211639][T14219] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  256.211650][T14219] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  256.211660][T14219] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  256.211670][T14219] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  256.211695][T14219]  </TASK>
[  256.298448][   T60] usb 5-1: Using ep0 maxpacket: 32
[  256.304637][   T60] usb 5-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  256.308993][   T60] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  256.312150][   T60] usb 5-1: Product: syz
[  256.313859][   T60] usb 5-1: Manufacturer: syz
[  256.315753][   T60] usb 5-1: SerialNumber: syz
[  256.321129][   T60] usb 5-1: config 0 descriptor??
[  256.327781][   T60] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  256.546509][   T60] gspca_ov534_9: reg_w failed -71
[  256.998376][   T60] gspca_ov534_9: Unknown sensor 0000
[  256.998431][   T60] ov534_9 5-1:0.0: probe with driver ov534_9 failed with error -22
[  257.011124][   T60] usb 5-1: USB disconnect, device number 2
[  257.073967][T14230] FAULT_INJECTION: forcing a failure.
[  257.073967][T14230] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  257.079536][T14230] CPU: 1 UID: 0 PID: 14230 Comm: syz.2.2691 Not tainted syzkaller #0 PREEMPT(full) 
[  257.079576][T14230] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  257.079589][T14230] Call Trace:
[  257.079597][T14230]  <TASK>
[  257.079606][T14230]  dump_stack_lvl+0x16c/0x1f0
[  257.079641][T14230]  should_fail_ex+0x512/0x640
[  257.079669][T14230]  _copy_from_user+0x2e/0xd0
[  257.079692][T14230]  __sys_bpf+0x248/0x4980
[  257.079711][T14230]  ? lock_acquire+0x179/0x330
[  257.079731][T14230]  ? __pfx___sys_bpf+0x10/0x10
[  257.079747][T14230]  ? finish_task_switch.isra.0+0x202/0xbd0
[  257.079774][T14230]  ? rcu_is_watching+0x12/0xc0
[  257.079799][T14230]  ? finish_task_switch.isra.0+0x207/0xbd0
[  257.079823][T14230]  ? lockdep_hardirqs_on+0x7c/0x110
[  257.079849][T14230]  ? finish_task_switch.isra.0+0x207/0xbd0
[  257.079875][T14230]  ? rcu_is_watching+0x12/0xc0
[  257.079899][T14230]  ? __schedule+0x10b9/0x6150
[  257.079923][T14230]  ? __schedule+0x114c/0x6150
[  257.079968][T14230]  ? fput+0x70/0xf0
[  257.079989][T14230]  ? rcu_is_watching+0x12/0xc0
[  257.080018][T14230]  __ia32_sys_bpf+0x76/0xe0
[  257.080036][T14230]  ? lockdep_hardirqs_on+0x7c/0x110
[  257.080064][T14230]  __do_fast_syscall_32+0xe8/0x680
[  257.080096][T14230]  do_fast_syscall_32+0x32/0x80
[  257.080113][T14230]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  257.080138][T14230] RIP: 0023:0xf6ffd579
[  257.080151][T14230] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  257.080169][T14230] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  257.080186][T14230] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  257.080197][T14230] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  257.080207][T14230] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  257.080218][T14230] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  257.080236][T14230] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  257.080262][T14230]  </TASK>
[  257.294476][T14238] syzkaller0: entered promiscuous mode
[  257.298232][T14238] syzkaller0: entered allmulticast mode
[  257.609228][ T5722] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  257.748339][T14258] faux_driver regulatory: loading /lib/firmware/regulatory.db.p7s failed with error -4
[  257.753067][T14258] faux_driver regulatory: Direct firmware load for regulatory.db.p7s failed with error -4
[  257.758416][T14258] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db.p7s
[  257.856252][T14265] FAULT_INJECTION: forcing a failure.
[  257.856252][T14265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  257.868008][T14265] CPU: 0 UID: 0 PID: 14265 Comm: syz.0.2701 Not tainted syzkaller #0 PREEMPT(full) 
[  257.868028][T14265] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  257.868035][T14265] Call Trace:
[  257.868039][T14265]  <TASK>
[  257.868044][T14265]  dump_stack_lvl+0x16c/0x1f0
[  257.868066][T14265]  should_fail_ex+0x512/0x640
[  257.868081][T14265]  _copy_from_iter+0x2a4/0x16c0
[  257.868097][T14265]  ? __alloc_skb+0x220/0x410
[  257.868109][T14265]  ? __alloc_skb+0x35d/0x410
[  257.868121][T14265]  ? __pfx__copy_from_iter+0x10/0x10
[  257.868133][T14265]  ? netlink_autobind.isra.0+0x158/0x370
[  257.868156][T14265]  netlink_sendmsg+0x820/0xdd0
[  257.868176][T14265]  ? __pfx_netlink_sendmsg+0x10/0x10
[  257.868195][T14265]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  257.868217][T14265]  ____sys_sendmsg+0xa5d/0xc30
[  257.868233][T14265]  ? iterate_extent_inodes+0x2d4/0x1270
[  257.868250][T14265]  ? __pfx_____sys_sendmsg+0x10/0x10
[  257.868267][T14265]  ? get_compat_msghdr+0x11a/0x170
[  257.868288][T14265]  ___sys_sendmsg+0x134/0x1d0
[  257.868306][T14265]  ? __pfx____sys_sendmsg+0x10/0x10
[  257.868337][T14265]  ? find_held_lock+0x2b/0x80
[  257.868371][T14265]  __sys_sendmsg+0x16d/0x220
[  257.868395][T14265]  ? __pfx___sys_sendmsg+0x10/0x10
[  257.868435][T14265]  __do_fast_syscall_32+0xe8/0x680
[  257.868466][T14265]  do_fast_syscall_32+0x32/0x80
[  257.868482][T14265]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  257.868504][T14265] RIP: 0023:0xf70bd579
[  257.868519][T14265] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  257.868535][T14265] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  257.868553][T14265] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  257.868564][T14265] RDX: 0000000004000004 RSI: 0000000000000000 RDI: 0000000000000000
[  257.868574][T14265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  257.868584][T14265] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  257.868593][T14265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  257.868619][T14265]  </TASK>
[  258.218120][ T5722] usb 8-1: Using ep0 maxpacket: 16
[  258.231905][ T5722] usb 8-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  258.254513][ T5722] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.257506][ T5722] usb 8-1: Product: syz
[  258.260096][ T5722] usb 8-1: Manufacturer: syz
[  258.261936][ T5722] usb 8-1: SerialNumber: syz
[  258.270167][ T5722] r8152-cfgselector 8-1: Unknown version 0x0000
[  258.272251][ T5722] r8152-cfgselector 8-1: config 0 descriptor??
[  258.486300][ T5722] r8152-cfgselector 8-1: Unknown version 0x0000
[  258.492834][ T5722] r8152-cfgselector 8-1: bad CDC descriptors
[  258.521509][ T5722] r8152-cfgselector 8-1: USB disconnect, device number 3
[  258.573690][T14288] syzkaller0: entered promiscuous mode
[  258.575733][T14288] syzkaller0: entered allmulticast mode
[  259.330763][T14306] process 'syz.0.2714' launched './file1' with NULL argv: empty string added
[  260.329749][T14319] syzkaller0: entered promiscuous mode
[  260.332271][T14319] syzkaller0: entered allmulticast mode
[  260.407468][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  260.607458][T14332] FAULT_INJECTION: forcing a failure.
[  260.607458][T14332] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  260.624273][T14332] CPU: 3 UID: 0 PID: 14332 Comm: syz.0.2719 Not tainted syzkaller #0 PREEMPT(full) 
[  260.624297][T14332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  260.624306][T14332] Call Trace:
[  260.624311][T14332]  <TASK>
[  260.624317][T14332]  dump_stack_lvl+0x16c/0x1f0
[  260.624344][T14332]  should_fail_ex+0x512/0x640
[  260.624364][T14332]  _copy_from_iter+0x2a4/0x16c0
[  260.624383][T14332]  ? __alloc_skb+0x220/0x410
[  260.624398][T14332]  ? __alloc_skb+0x35d/0x410
[  260.624413][T14332]  ? __pfx__copy_from_iter+0x10/0x10
[  260.624430][T14332]  ? netlink_autobind.isra.0+0x158/0x370
[  260.624459][T14332]  netlink_sendmsg+0x820/0xdd0
[  260.624483][T14332]  ? __pfx_netlink_sendmsg+0x10/0x10
[  260.624507][T14332]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  260.624535][T14332]  ____sys_sendmsg+0xa5d/0xc30
[  260.624561][T14332]  ? __pfx_____sys_sendmsg+0x10/0x10
[  260.624582][T14332]  ? get_compat_msghdr+0x11a/0x170
[  260.624610][T14332]  ___sys_sendmsg+0x134/0x1d0
[  260.624629][T14332]  ? __pfx____sys_sendmsg+0x10/0x10
[  260.624657][T14332]  ? find_held_lock+0x2b/0x80
[  260.624689][T14332]  __sys_sendmsg+0x16d/0x220
[  260.624707][T14332]  ? __pfx___sys_sendmsg+0x10/0x10
[  260.624733][T14332]  ? do_user_addr_fault+0x843/0x1370
[  260.624755][T14332]  __do_fast_syscall_32+0xe8/0x680
[  260.624780][T14332]  do_fast_syscall_32+0x32/0x80
[  260.624793][T14332]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  260.624811][T14332] RIP: 0023:0xf70bd579
[  260.624823][T14332] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  260.624837][T14332] RSP: 002b:00000000f546b55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  260.624861][T14332] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000200
[  260.624871][T14332] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  260.624879][T14332] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  260.624887][T14332] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  260.624895][T14332] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  260.624914][T14332]  </TASK>
[  262.534726][T14341] FAULT_INJECTION: forcing a failure.
[  262.534726][T14341] name failslab, interval 1, probability 0, space 0, times 0
[  262.538987][T14341] CPU: 2 UID: 0 PID: 14341 Comm: syz.3.2723 Not tainted syzkaller #0 PREEMPT(full) 
[  262.539004][T14341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  262.539011][T14341] Call Trace:
[  262.539016][T14341]  <TASK>
[  262.539020][T14341]  dump_stack_lvl+0x16c/0x1f0
[  262.539042][T14341]  should_fail_ex+0x512/0x640
[  262.539057][T14341]  should_failslab+0xc2/0x120
[  262.539075][T14341]  kmem_cache_alloc_noprof+0x83/0x770
[  262.539090][T14341]  ? skb_clone+0x190/0x3f0
[  262.539107][T14341]  ? skb_clone+0x190/0x3f0
[  262.539120][T14341]  skb_clone+0x190/0x3f0
[  262.539134][T14341]  netlink_deliver_tap+0xabd/0xd30
[  262.539154][T14341]  netlink_dump+0x881/0xd30
[  262.539171][T14341]  ? __pfx_netlink_dump+0x10/0x10
[  262.539185][T14341]  ? kasan_quarantine_put+0x10a/0x240
[  262.539208][T14341]  ? kfree_skbmem+0x1a4/0x1f0
[  262.539216][T14341]  ? kfree_skbmem+0x1a4/0x1f0
[  262.539227][T14341]  netlink_recvmsg+0x7dc/0xa90
[  262.539244][T14341]  ? __pfx_netlink_recvmsg+0x10/0x10
[  262.539258][T14341]  ? __lock_acquire+0x436/0x2890
[  262.539271][T14341]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  262.539293][T14341]  sock_recvmsg+0x1f9/0x250
[  262.539312][T14341]  ____sys_recvmsg+0x218/0x6b0
[  262.539332][T14341]  ? __pfx_____sys_recvmsg+0x10/0x10
[  262.539348][T14341]  ? import_iovec+0x86/0xb0
[  262.539365][T14341]  ? __lock_acquire+0x436/0x2890
[  262.539378][T14341]  ___sys_recvmsg+0x114/0x1a0
[  262.539393][T14341]  ? __pfx____sys_recvmsg+0x10/0x10
[  262.539408][T14341]  ? find_held_lock+0x2b/0x80
[  262.539432][T14341]  __sys_recvmsg+0x16a/0x220
[  262.539446][T14341]  ? __pfx___sys_recvmsg+0x10/0x10
[  262.539467][T14341]  ? do_user_addr_fault+0x843/0x1370
[  262.539484][T14341]  __do_fast_syscall_32+0xe8/0x680
[  262.539505][T14341]  do_fast_syscall_32+0x32/0x80
[  262.539515][T14341]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  262.539529][T14341] RIP: 0023:0xf7f54579
[  262.539538][T14341] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  262.539549][T14341] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000174
[  262.539561][T14341] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000980
[  262.539567][T14341] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  262.539574][T14341] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  262.539580][T14341] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  262.539586][T14341] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  262.539600][T14341]  </TASK>
[  262.722058][T14348] netlink: 'syz.3.2726': attribute type 1 has an invalid length.
[  262.724577][T14348] netlink: 740 bytes leftover after parsing attributes in process `syz.3.2726'.
[  263.123666][T14361] FAULT_INJECTION: forcing a failure.
[  263.123666][T14361] name failslab, interval 1, probability 0, space 0, times 0
[  263.127830][T14361] CPU: 0 UID: 0 PID: 14361 Comm: syz.4.2730 Not tainted syzkaller #0 PREEMPT(full) 
[  263.127846][T14361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.127865][T14361] Call Trace:
[  263.127870][T14361]  <TASK>
[  263.127875][T14361]  dump_stack_lvl+0x16c/0x1f0
[  263.127901][T14361]  should_fail_ex+0x512/0x640
[  263.127915][T14361]  ? __kmalloc_noprof+0xca/0x910
[  263.127929][T14361]  should_failslab+0xc2/0x120
[  263.127959][T14361]  __kmalloc_noprof+0xeb/0x910
[  263.127971][T14361]  ? compat_i2cdev_ioctl+0x1b1/0x530
[  263.127992][T14361]  ? compat_i2cdev_ioctl+0x1b1/0x530
[  263.128008][T14361]  compat_i2cdev_ioctl+0x1b1/0x530
[  263.128024][T14361]  ? hook_file_ioctl_common+0x144/0x410
[  263.128040][T14361]  ? __pfx_compat_i2cdev_ioctl+0x10/0x10
[  263.128057][T14361]  ? __fget_files+0x20e/0x3c0
[  263.128072][T14361]  ? __fput_deferred+0x410/0x480
[  263.128086][T14361]  ? __pfx_compat_i2cdev_ioctl+0x10/0x10
[  263.128103][T14361]  __ia32_compat_sys_ioctl+0x242/0x370
[  263.128119][T14361]  __do_fast_syscall_32+0xe8/0x680
[  263.128139][T14361]  do_fast_syscall_32+0x32/0x80
[  263.128149][T14361]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  263.128163][T14361] RIP: 0023:0xf7fa2579
[  263.128173][T14361] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  263.128184][T14361] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  263.128196][T14361] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000707
[  263.128202][T14361] RDX: 0000000080001440 RSI: 0000000000000000 RDI: 0000000000000000
[  263.128209][T14361] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  263.128215][T14361] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  263.128222][T14361] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  263.128235][T14361]  </TASK>
[  263.319151][T14371] FAULT_INJECTION: forcing a failure.
[  263.319151][T14371] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  263.325316][T14371] CPU: 0 UID: 0 PID: 14371 Comm: syz.2.2733 Not tainted syzkaller #0 PREEMPT(full) 
[  263.325347][T14371] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.325355][T14371] Call Trace:
[  263.325360][T14371]  <TASK>
[  263.325365][T14371]  dump_stack_lvl+0x16c/0x1f0
[  263.325390][T14371]  should_fail_ex+0x512/0x640
[  263.325407][T14371]  _copy_to_user+0x32/0xd0
[  263.325421][T14371]  bpf_test_finish.isra.0+0x48d/0x6b0
[  263.325442][T14371]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  263.325460][T14371]  ? bpf_dispatcher_xdp+0x800/0x1000
[  263.325470][T14371]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  263.325491][T14371]  bpf_prog_test_run_xdp+0xb66/0x1660
[  263.325511][T14371]  ? __fget_files+0x204/0x3c0
[  263.325529][T14371]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  263.325545][T14371]  ? __might_fault+0x10/0x190
[  263.325562][T14371]  ? fput+0x70/0xf0
[  263.325573][T14371]  ? __bpf_prog_get+0x97/0x2a0
[  263.325588][T14371]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  263.325604][T14371]  __sys_bpf+0x1035/0x4980
[  263.325617][T14371]  ? __pfx___sys_bpf+0x10/0x10
[  263.325626][T14371]  ? find_held_lock+0x2b/0x80
[  263.325646][T14371]  ? find_held_lock+0x2b/0x80
[  263.325663][T14371]  ? __mutex_unlock_slowpath+0x161/0x790
[  263.325691][T14371]  ? fput+0x70/0xf0
[  263.325700][T14371]  ? ksys_write+0x1ac/0x250
[  263.325717][T14371]  ? __pfx_ksys_write+0x10/0x10
[  263.325781][T14371]  __ia32_sys_bpf+0x76/0xe0
[  263.325800][T14371]  ? lockdep_hardirqs_on+0x7c/0x110
[  263.325818][T14371]  __do_fast_syscall_32+0xe8/0x680
[  263.325839][T14371]  do_fast_syscall_32+0x32/0x80
[  263.325849][T14371]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  263.325865][T14371] RIP: 0023:0xf6ffd579
[  263.325880][T14371] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  263.325891][T14371] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  263.325927][T14371] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  263.325934][T14371] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  263.325941][T14371] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  263.325947][T14371] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  263.325953][T14371] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  263.325968][T14371]  </TASK>
[  263.703869][T14382] 9p: Bad value for 'rfdno'
[  263.796901][T14384] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2735'.
[  263.848528][ T5960] Bluetooth: hci1: unexpected cc 0x203e length: 2 > 1
[  265.926878][T14411] FAULT_INJECTION: forcing a failure.
[  265.926878][T14411] name failslab, interval 1, probability 0, space 0, times 0
[  265.931431][T14411] CPU: 3 UID: 0 PID: 14411 Comm: syz.4.2746 Not tainted syzkaller #0 PREEMPT(full) 
[  265.931449][T14411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  265.931456][T14411] Call Trace:
[  265.931461][T14411]  <TASK>
[  265.931467][T14411]  dump_stack_lvl+0x16c/0x1f0
[  265.931490][T14411]  should_fail_ex+0x512/0x640
[  265.931503][T14411]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  265.931518][T14411]  should_failslab+0xc2/0x120
[  265.931536][T14411]  kmem_cache_alloc_noprof+0x83/0x770
[  265.931550][T14411]  ? skb_clone+0x190/0x3f0
[  265.931568][T14411]  ? skb_clone+0x190/0x3f0
[  265.931581][T14411]  skb_clone+0x190/0x3f0
[  265.931597][T14411]  netlink_deliver_tap+0xabd/0xd30
[  265.931616][T14411]  netlink_unicast+0x64c/0x870
[  265.931634][T14411]  ? __pfx_netlink_unicast+0x10/0x10
[  265.931656][T14411]  netlink_sendmsg+0x8c8/0xdd0
[  265.931674][T14411]  ? __pfx_netlink_sendmsg+0x10/0x10
[  265.931692][T14411]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  265.931714][T14411]  ____sys_sendmsg+0xa5d/0xc30
[  265.931733][T14411]  ? __pfx_____sys_sendmsg+0x10/0x10
[  265.931750][T14411]  ? get_compat_msghdr+0x11a/0x170
[  265.931771][T14411]  ___sys_sendmsg+0x134/0x1d0
[  265.931787][T14411]  ? __pfx____sys_sendmsg+0x10/0x10
[  265.931825][T14411]  ? find_held_lock+0x2b/0x80
[  265.931852][T14411]  __sys_sendmsg+0x16d/0x220
[  265.931867][T14411]  ? __pfx___sys_sendmsg+0x10/0x10
[  265.931895][T14411]  __do_fast_syscall_32+0xe8/0x680
[  265.931916][T14411]  do_fast_syscall_32+0x32/0x80
[  265.931927][T14411]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  265.931943][T14411] RIP: 0023:0xf7fa2579
[  265.931952][T14411] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  265.931964][T14411] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  265.931976][T14411] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000700
[  265.931983][T14411] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  265.931990][T14411] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  265.931996][T14411] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  265.932003][T14411] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  265.932018][T14411]  </TASK>
[  266.064493][T14414] syzkaller1: entered promiscuous mode
[  266.066595][T14414] syzkaller1: entered allmulticast mode
[  267.406012][T14424] FAULT_INJECTION: forcing a failure.
[  267.406012][T14424] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  267.411935][T14424] CPU: 3 UID: 0 PID: 14424 Comm: syz.3.2751 Not tainted syzkaller #0 PREEMPT(full) 
[  267.411964][T14424] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  267.411977][T14424] Call Trace:
[  267.411984][T14424]  <TASK>
[  267.411992][T14424]  dump_stack_lvl+0x16c/0x1f0
[  267.412028][T14424]  should_fail_ex+0x512/0x640
[  267.412072][T14424]  _copy_from_iter+0x2a4/0x16c0
[  267.412102][T14424]  ? __alloc_skb+0x220/0x410
[  267.412123][T14424]  ? __alloc_skb+0x35d/0x410
[  267.412144][T14424]  ? __pfx__copy_from_iter+0x10/0x10
[  267.412167][T14424]  ? netlink_autobind.isra.0+0x158/0x370
[  267.412206][T14424]  netlink_sendmsg+0x820/0xdd0
[  267.412239][T14424]  ? __pfx_netlink_sendmsg+0x10/0x10
[  267.412272][T14424]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  267.412310][T14424]  ____sys_sendmsg+0xa5d/0xc30
[  267.412344][T14424]  ? __pfx_____sys_sendmsg+0x10/0x10
[  267.412374][T14424]  ? get_compat_msghdr+0x11a/0x170
[  267.412412][T14424]  ___sys_sendmsg+0x134/0x1d0
[  267.412439][T14424]  ? __pfx____sys_sendmsg+0x10/0x10
[  267.412479][T14424]  ? find_held_lock+0x2b/0x80
[  267.412524][T14424]  __sys_sendmsg+0x16d/0x220
[  267.412550][T14424]  ? __pfx___sys_sendmsg+0x10/0x10
[  267.412587][T14424]  ? do_user_addr_fault+0x843/0x1370
[  267.412616][T14424]  __do_fast_syscall_32+0xe8/0x680
[  267.412648][T14424]  do_fast_syscall_32+0x32/0x80
[  267.412666][T14424]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  267.412689][T14424] RIP: 0023:0xf7f54579
[  267.412706][T14424] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  267.412725][T14424] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  267.412744][T14424] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  267.412757][T14424] RDX: 0000000020004804 RSI: 0000000000000000 RDI: 0000000000000000
[  267.412767][T14424] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  267.412778][T14424] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  267.412789][T14424] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  267.412816][T14424]  </TASK>
[  267.860280][T14437] FAULT_INJECTION: forcing a failure.
[  267.860280][T14437] name failslab, interval 1, probability 0, space 0, times 0
[  267.863648][ T5960] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  267.865994][T14437] CPU: 3 UID: 0 PID: 14437 Comm: syz.4.2756 Not tainted syzkaller #0 PREEMPT(full) 
[  267.866021][T14437] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  267.866032][T14437] Call Trace:
[  267.866039][T14437]  <TASK>
[  267.866047][T14437]  dump_stack_lvl+0x16c/0x1f0
[  267.866078][T14437]  should_fail_ex+0x512/0x640
[  267.866097][T14437]  ? __kmalloc_noprof+0xca/0x910
[  267.866119][T14437]  should_failslab+0xc2/0x120
[  267.866147][T14437]  __kmalloc_noprof+0xeb/0x910
[  267.866165][T14437]  ? lsm_blob_alloc+0x68/0x90
[  267.866194][T14437]  ? lsm_blob_alloc+0x68/0x90
[  267.866217][T14437]  lsm_blob_alloc+0x68/0x90
[  267.866241][T14437]  security_sk_alloc+0x2f/0x270
[  267.866260][T14437]  sk_prot_alloc+0x1c7/0x2a0
[  267.866288][T14437]  sk_alloc+0x36/0xe30
[  267.866308][T14437]  bpf_prog_test_run_skb+0x4cd/0x31a0
[  267.866339][T14437]  ? find_held_lock+0x2b/0x80
[  267.866369][T14437]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  267.866395][T14437]  ? fput+0x70/0xf0
[  267.866415][T14437]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  267.866439][T14437]  __sys_bpf+0x1035/0x4980
[  267.866459][T14437]  ? __pfx___sys_bpf+0x10/0x10
[  267.866473][T14437]  ? find_held_lock+0x2b/0x80
[  267.866499][T14437]  ? find_held_lock+0x2b/0x80
[  267.866527][T14437]  ? __mutex_unlock_slowpath+0x161/0x790
[  267.866568][T14437]  ? fput+0x70/0xf0
[  267.866584][T14437]  ? ksys_write+0x1ac/0x250
[  267.866607][T14437]  ? __pfx_ksys_write+0x10/0x10
[  267.866636][T14437]  __ia32_sys_bpf+0x76/0xe0
[  267.866651][T14437]  ? lockdep_hardirqs_on+0x7c/0x110
[  267.866677][T14437]  __do_fast_syscall_32+0xe8/0x680
[  267.866706][T14437]  do_fast_syscall_32+0x32/0x80
[  267.866722][T14437]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  267.866743][T14437] RIP: 0023:0xf7fa2579
[  267.866757][T14437] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  267.866773][T14437] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  267.866789][T14437] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800003c0
[  267.866839][T14437] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  267.866849][T14437] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  267.866859][T14437] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  267.866869][T14437] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  267.866892][T14437]  </TASK>
[  267.871525][T14438] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  267.876032][ T5960] Bluetooth: hci1: Injecting HCI hardware error event
[  267.877337][T14438] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  267.880256][ T5960] Bluetooth: hci1: hardware error 0x00
[  267.883023][T14438] vhci_hcd vhci_hcd.0: Device attached
[  267.969796][T14442] FAULT_INJECTION: forcing a failure.
[  267.969796][T14442] name failslab, interval 1, probability 0, space 0, times 0
[  267.974064][T14442] CPU: 3 UID: 0 PID: 14442 Comm: syz.4.2757 Not tainted syzkaller #0 PREEMPT(full) 
[  267.974081][T14442] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  267.974089][T14442] Call Trace:
[  267.974094][T14442]  <TASK>
[  267.974099][T14442]  dump_stack_lvl+0x16c/0x1f0
[  267.974121][T14442]  should_fail_ex+0x512/0x640
[  267.974135][T14442]  ? __kvmalloc_node_noprof+0x129/0xa40
[  267.974158][T14442]  should_failslab+0xc2/0x120
[  267.974190][T14442]  __kvmalloc_node_noprof+0x14a/0xa40
[  267.974208][T14442]  ? bpf_test_run_xdp_live+0x139/0x770
[  267.974228][T14442]  ? bpf_test_run_xdp_live+0x139/0x770
[  267.974242][T14442]  bpf_test_run_xdp_live+0x139/0x770
[  267.974258][T14442]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  267.974274][T14442]  ? exp_funnel_lock+0x363/0x3c0
[  267.974287][T14442]  ? __pfx_exp_funnel_lock+0x10/0x10
[  267.974300][T14442]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  267.974315][T14442]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  267.974343][T14442]  ? bpf_dispatcher_xdp+0x800/0x1000
[  267.974355][T14442]  ? bpf_dispatcher_xdp+0x800/0x1000
[  267.974365][T14442]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  267.974386][T14442]  bpf_prog_test_run_xdp+0xd3d/0x1660
[  267.974404][T14442]  ? __fget_files+0x204/0x3c0
[  267.974422][T14442]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  267.974439][T14442]  ? __might_fault+0x10/0x190
[  267.974455][T14442]  ? fput+0x70/0xf0
[  267.974467][T14442]  ? __bpf_prog_get+0x97/0x2a0
[  267.974482][T14442]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  267.974498][T14442]  __sys_bpf+0x1035/0x4980
[  267.974511][T14442]  ? __pfx___sys_bpf+0x10/0x10
[  267.974521][T14442]  ? find_held_lock+0x2b/0x80
[  267.974539][T14442]  ? find_held_lock+0x2b/0x80
[  267.974557][T14442]  ? __mutex_unlock_slowpath+0x161/0x790
[  267.974584][T14442]  ? fput+0x70/0xf0
[  267.974595][T14442]  ? ksys_write+0x1ac/0x250
[  267.974611][T14442]  ? __pfx_ksys_write+0x10/0x10
[  267.974629][T14442]  __ia32_sys_bpf+0x76/0xe0
[  267.974640][T14442]  ? lockdep_hardirqs_on+0x7c/0x110
[  267.974657][T14442]  __do_fast_syscall_32+0xe8/0x680
[  267.974676][T14442]  do_fast_syscall_32+0x32/0x80
[  267.974687][T14442]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  267.974701][T14442] RIP: 0023:0xf7fa2579
[  267.974711][T14442] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  267.974722][T14442] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  267.974734][T14442] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  267.974741][T14442] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  267.974747][T14442] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  267.974753][T14442] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  267.974759][T14442] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  267.974773][T14442]  </TASK>
[  268.208177][   T60] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[  268.230937][T14445] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  268.690201][T14439] vhci_hcd: connection reset by peer
[  268.693519][   T81] vhci_hcd vhci_hcd.2: stop threads
[  268.695947][   T81] vhci_hcd vhci_hcd.2: release socket
[  268.698893][   T81] vhci_hcd vhci_hcd.2: disconnect device
[  269.312130][T14460] capability: warning: `syz.0.2763' uses 32-bit capabilities (legacy support in use)
[  270.178237][ T5960] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  270.457299][T14468] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  270.487667][T14468] syzkaller0: entered promiscuous mode
[  270.490803][T14468] syzkaller0: entered allmulticast mode
[  270.541722][T14468] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  270.618045][T14468] tipc: Resetting bearer <eth:syzkaller0>
[  270.692022][T14467] tipc: Resetting bearer <eth:syzkaller0>
[  270.727751][T14467] tipc: Disabling bearer <eth:syzkaller0>
[  270.829244][   T40] kauditd_printk_skb: 34 callbacks suppressed
[  270.829264][   T40] audit: type=1326 audit(1767882739.780:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14474 comm="syz.3.2768" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f54579 code=0x0
[  270.964132][T14490] Unsupported ieee802154 address type: 0
[  272.205597][T14522] netlink: 'syz.2.2783': attribute type 1 has an invalid length.
[  272.212813][T14522] netlink: 740 bytes leftover after parsing attributes in process `syz.2.2783'.
[  273.288240][   T60] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  273.373271][T14544] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2792'.
[  273.427101][T14545] random: crng reseeded on system resumption
[  273.440879][T14545] Restarting kernel threads ...
[  273.444253][T14545] Done restarting kernel threads.
[  273.586777][T14547] FAULT_INJECTION: forcing a failure.
[  273.586777][T14547] name failslab, interval 1, probability 0, space 0, times 0
[  273.590904][T14547] CPU: 3 UID: 0 PID: 14547 Comm: syz.0.2793 Not tainted syzkaller #0 PREEMPT(full) 
[  273.590921][T14547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  273.590928][T14547] Call Trace:
[  273.590933][T14547]  <TASK>
[  273.590938][T14547]  dump_stack_lvl+0x16c/0x1f0
[  273.590959][T14547]  should_fail_ex+0x512/0x640
[  273.590972][T14547]  ? __kmalloc_noprof+0xca/0x910
[  273.590986][T14547]  should_failslab+0xc2/0x120
[  273.591004][T14547]  __kmalloc_noprof+0xeb/0x910
[  273.591016][T14547]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  273.591040][T14547]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  273.591061][T14547]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  273.591084][T14547]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  273.591104][T14547]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  273.591122][T14547]  ? genl_get_cmd+0x194/0x580
[  273.591143][T14547]  ? ____sys_sendmsg+0xa5d/0xc30
[  273.591159][T14547]  ? ___sys_sendmsg+0x134/0x1d0
[  273.591172][T14547]  ? __radix_tree_lookup+0x21f/0x2c0
[  273.591189][T14547]  genl_rcv_msg+0x55c/0x800
[  273.591202][T14547]  ? __pfx_genl_rcv_msg+0x10/0x10
[  273.591212][T14547]  ? __pfx_tipc_nl_node_set_key+0x10/0x10
[  273.591232][T14547]  ? __lock_acquire+0x436/0x2890
[  273.591246][T14547]  netlink_rcv_skb+0x158/0x420
[  273.591262][T14547]  ? __pfx_genl_rcv_msg+0x10/0x10
[  273.591274][T14547]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  273.591296][T14547]  ? netlink_deliver_tap+0x1ae/0xd30
[  273.591313][T14547]  genl_rcv+0x28/0x40
[  273.591329][T14547]  netlink_unicast+0x5aa/0x870
[  273.591347][T14547]  ? __pfx_netlink_unicast+0x10/0x10
[  273.591369][T14547]  netlink_sendmsg+0x8c8/0xdd0
[  273.591387][T14547]  ? __pfx_netlink_sendmsg+0x10/0x10
[  273.591405][T14547]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  273.591427][T14547]  ____sys_sendmsg+0xa5d/0xc30
[  273.591443][T14547]  ? iterate_extent_inodes+0x2d4/0x1270
[  273.591460][T14547]  ? __pfx_____sys_sendmsg+0x10/0x10
[  273.591477][T14547]  ? get_compat_msghdr+0x11a/0x170
[  273.591498][T14547]  ___sys_sendmsg+0x134/0x1d0
[  273.591513][T14547]  ? __pfx____sys_sendmsg+0x10/0x10
[  273.591534][T14547]  ? find_held_lock+0x2b/0x80
[  273.591558][T14547]  __sys_sendmsg+0x16d/0x220
[  273.591573][T14547]  ? __pfx___sys_sendmsg+0x10/0x10
[  273.591596][T14547]  __do_fast_syscall_32+0xe8/0x680
[  273.591616][T14547]  do_fast_syscall_32+0x32/0x80
[  273.591626][T14547]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  273.591640][T14547] RIP: 0023:0xf70bd579
[  273.591649][T14547] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  273.591660][T14547] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  273.591670][T14547] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  273.591677][T14547] RDX: 0000000004000004 RSI: 0000000000000000 RDI: 0000000000000000
[  273.591683][T14547] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  273.591689][T14547] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  273.591695][T14547] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  273.591710][T14547]  </TASK>
[  275.477179][T14581] ip6erspan0: entered promiscuous mode
[  275.479477][T14581] ip6erspan0: entered allmulticast mode
[  276.512782][T14588] netlink: 'syz.3.2805': attribute type 1 has an invalid length.
[  276.534343][T14588] bond1: entered promiscuous mode
[  276.537108][T14588] 8021q: adding VLAN 0 to HW filter on device bond1
[  276.562362][T14588] 8021q: adding VLAN 0 to HW filter on device bond1
[  276.565610][T14588] bond1: (slave gre1): The slave device specified does not support setting the MAC address
[  276.570136][T14588] bond1: (slave gre1): Setting fail_over_mac to active for active-backup mode
[  276.578399][T14588] bond1: (slave gre1): making interface the new active one
[  276.582087][T14588] gre1: entered promiscuous mode
[  276.585683][T14588] bond1: (slave gre1): Enslaving as an active interface with an up link
[  276.743561][T14594] FAULT_INJECTION: forcing a failure.
[  276.743561][T14594] name failslab, interval 1, probability 0, space 0, times 0
[  276.749383][T14594] CPU: 3 UID: 0 PID: 14594 Comm: syz.2.2807 Not tainted syzkaller #0 PREEMPT(full) 
[  276.749410][T14594] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  276.749421][T14594] Call Trace:
[  276.749429][T14594]  <TASK>
[  276.749436][T14594]  dump_stack_lvl+0x16c/0x1f0
[  276.749468][T14594]  should_fail_ex+0x512/0x640
[  276.749492][T14594]  should_failslab+0xc2/0x120
[  276.749521][T14594]  kmem_cache_alloc_noprof+0x83/0x770
[  276.749543][T14594]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  276.749571][T14594]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  276.749593][T14594]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  276.749625][T14594]  idr_get_free+0x528/0xa30
[  276.749660][T14594]  idr_alloc_u32+0x1ac/0x320
[  276.749687][T14594]  ? __pfx_idr_alloc_u32+0x10/0x10
[  276.749714][T14594]  ? lock_acquire+0x179/0x330
[  276.749737][T14594]  idr_alloc_cyclic+0x10b/0x230
[  276.749771][T14594]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[  276.749794][T14594]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  276.749822][T14594]  bpf_link_prime+0x7b/0x4c0
[  276.749847][T14594]  ? bpf_link_init_sleepable+0x91/0x220
[  276.749875][T14594]  bpf_raw_tp_link_attach+0x2ad/0x630
[  276.749893][T14594]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[  276.749908][T14594]  ? find_held_lock+0x2b/0x80
[  276.749930][T14594]  ? __fget_files+0x204/0x3c0
[  276.749966][T14594]  ? fput+0x70/0xf0
[  276.749984][T14594]  ? __bpf_prog_get+0x97/0x2a0
[  276.750006][T14594]  __sys_bpf+0x20c1/0x4980
[  276.750026][T14594]  ? __pfx___sys_bpf+0x10/0x10
[  276.750042][T14594]  ? find_held_lock+0x2b/0x80
[  276.750070][T14594]  ? find_held_lock+0x2b/0x80
[  276.750100][T14594]  ? __mutex_unlock_slowpath+0x161/0x790
[  276.750144][T14594]  ? fput+0x70/0xf0
[  276.750161][T14594]  ? ksys_write+0x1ac/0x250
[  276.750186][T14594]  ? __pfx_ksys_write+0x10/0x10
[  276.750215][T14594]  __ia32_sys_bpf+0x76/0xe0
[  276.750232][T14594]  ? lockdep_hardirqs_on+0x7c/0x110
[  276.750259][T14594]  __do_fast_syscall_32+0xe8/0x680
[  276.750289][T14594]  do_fast_syscall_32+0x32/0x80
[  276.750306][T14594]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.750327][T14594] RIP: 0023:0xf6ffd579
[  276.750342][T14594] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  276.750358][T14594] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  276.750376][T14594] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000080000040
[  276.750388][T14594] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  276.750398][T14594] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  276.750407][T14594] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  276.750416][T14594] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  276.750441][T14594]  </TASK>
[  276.934495][T14596] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[  277.074372][T14602] netlink: 'syz.2.2809': attribute type 1 has an invalid length.
[  277.089206][T14602] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2809'.
[  277.265146][T14605] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  277.267926][T14607] FAULT_INJECTION: forcing a failure.
[  277.267926][T14607] name failslab, interval 1, probability 0, space 0, times 0
[  277.273278][T14607] CPU: 3 UID: 0 PID: 14607 Comm: syz.3.2811 Not tainted syzkaller #0 PREEMPT(full) 
[  277.273303][T14607] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  277.273314][T14607] Call Trace:
[  277.273323][T14607]  <TASK>
[  277.273331][T14607]  dump_stack_lvl+0x16c/0x1f0
[  277.273363][T14607]  should_fail_ex+0x512/0x640
[  277.273383][T14607]  ? __kvmalloc_node_noprof+0x129/0xa40
[  277.273411][T14607]  should_failslab+0xc2/0x120
[  277.273439][T14607]  __kvmalloc_node_noprof+0x14a/0xa40
[  277.273465][T14607]  ? tun_attach.isra.0+0x8fb/0x17b0
[  277.273489][T14607]  ? tun_attach.isra.0+0x8fb/0x17b0
[  277.273505][T14607]  tun_attach.isra.0+0x8fb/0x17b0
[  277.273535][T14607]  ? netdev_name_node_lookup+0x127/0x180
[  277.273562][T14607]  __tun_chr_ioctl+0x14b3/0x4880
[  277.273580][T14607]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  277.273607][T14607]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  277.273629][T14607]  ? hook_file_ioctl_common+0x144/0x410
[  277.273656][T14607]  ? __fget_files+0x20e/0x3c0
[  277.273680][T14607]  ? __fput_deferred+0x410/0x480
[  277.273706][T14607]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  277.273729][T14607]  __ia32_compat_sys_ioctl+0x242/0x370
[  277.273755][T14607]  __do_fast_syscall_32+0xe8/0x680
[  277.273802][T14607]  do_fast_syscall_32+0x32/0x80
[  277.273820][T14607]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  277.273842][T14607] RIP: 0023:0xf7f54579
[  277.273858][T14607] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  277.273875][T14607] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  277.273893][T14607] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000400454ca
[  277.273904][T14607] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  277.273914][T14607] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  277.273925][T14607] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  277.273935][T14607] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  277.273960][T14607]  </TASK>
[  277.274258][T14605] syzkaller0: entered promiscuous mode
[  277.368753][T14605] syzkaller0: entered allmulticast mode
[  277.373019][T14608] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  277.486664][T14609] FAULT_INJECTION: forcing a failure.
[  277.486664][T14609] name failslab, interval 1, probability 0, space 0, times 0
[  277.491869][T14609] CPU: 2 UID: 0 PID: 14609 Comm: syz.2.2810 Not tainted syzkaller #0 PREEMPT(full) 
[  277.491903][T14609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  277.491911][T14609] Call Trace:
[  277.491918][T14609]  <TASK>
[  277.491925][T14609]  dump_stack_lvl+0x16c/0x1f0
[  277.491951][T14609]  should_fail_ex+0x512/0x640
[  277.491967][T14609]  ? fs_reclaim_acquire+0xae/0x150
[  277.491987][T14609]  should_failslab+0xc2/0x120
[  277.492006][T14609]  __kmalloc_noprof+0xeb/0x910
[  277.492019][T14609]  ? tomoyo_encode2+0x100/0x3e0
[  277.492039][T14609]  ? tomoyo_encode2+0x100/0x3e0
[  277.492053][T14609]  tomoyo_encode2+0x100/0x3e0
[  277.492070][T14609]  tomoyo_encode+0x29/0x50
[  277.492084][T14609]  tomoyo_realpath_from_path+0x18f/0x6e0
[  277.492100][T14609]  ? tomoyo_profile+0x47/0x60
[  277.492119][T14609]  tomoyo_path_number_perm+0x245/0x580
[  277.492132][T14609]  ? tomoyo_path_number_perm+0x237/0x580
[  277.492146][T14609]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  277.492174][T14609]  ? find_held_lock+0x2b/0x80
[  277.492190][T14609]  ? hook_file_ioctl_common+0x144/0x410
[  277.492209][T14609]  ? __fget_files+0x20e/0x3c0
[  277.492225][T14609]  ? __fput_deferred+0x410/0x480
[  277.492240][T14609]  security_file_ioctl_compat+0x9b/0x240
[  277.492256][T14609]  __ia32_compat_sys_ioctl+0xc3/0x370
[  277.492274][T14609]  __do_fast_syscall_32+0xe8/0x680
[  277.492295][T14609]  do_fast_syscall_32+0x32/0x80
[  277.492305][T14609]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  277.492320][T14609] RIP: 0023:0xf6ffd579
[  277.492330][T14609] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  277.492341][T14609] RSP: 002b:00000000f53ab55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  277.492353][T14609] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008922
[  277.492360][T14609] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  277.492366][T14609] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  277.492372][T14609] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  277.492378][T14609] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  277.492393][T14609]  </TASK>
[  277.492475][T14609] ERROR: Out of memory at tomoyo_realpath_from_path.
[  277.869302][T14609] tipc: Resetting bearer <eth:syzkaller0>
[  277.874906][T14604] tipc: Resetting bearer <eth:syzkaller0>
[  277.914960][T14604] tipc: Disabling bearer <eth:syzkaller0>
[  277.960335][T14611] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  277.963873][T14611] syzkaller0: entered promiscuous mode
[  277.965896][T14611] syzkaller0: entered allmulticast mode
[  278.011869][T14611] syzkaller0: mtu less than device minimum
[  278.014837][T14610] tipc: Resetting bearer <eth:syzkaller0>
[  278.071483][T14610] tipc: Disabling bearer <eth:syzkaller0>
[  278.279902][T14619] FAULT_INJECTION: forcing a failure.
[  278.279902][T14619] name failslab, interval 1, probability 0, space 0, times 0
[  278.284484][T14619] CPU: 2 UID: 0 PID: 14619 Comm: syz.3.2816 Not tainted syzkaller #0 PREEMPT(full) 
[  278.284500][T14619] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  278.284508][T14619] Call Trace:
[  278.284513][T14619]  <TASK>
[  278.284519][T14619]  dump_stack_lvl+0x16c/0x1f0
[  278.284542][T14619]  should_fail_ex+0x512/0x640
[  278.284556][T14619]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  278.284571][T14619]  should_failslab+0xc2/0x120
[  278.284591][T14619]  kmem_cache_alloc_noprof+0x83/0x770
[  278.284605][T14619]  ? skb_clone+0x190/0x3f0
[  278.284623][T14619]  ? skb_clone+0x190/0x3f0
[  278.284636][T14619]  skb_clone+0x190/0x3f0
[  278.284651][T14619]  netlink_deliver_tap+0xabd/0xd30
[  278.284670][T14619]  netlink_unicast+0x64c/0x870
[  278.284688][T14619]  ? __pfx_netlink_unicast+0x10/0x10
[  278.284714][T14619]  netlink_sendmsg+0x8c8/0xdd0
[  278.284733][T14619]  ? __pfx_netlink_sendmsg+0x10/0x10
[  278.284751][T14619]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  278.284773][T14619]  ____sys_sendmsg+0xa5d/0xc30
[  278.284792][T14619]  ? __pfx_____sys_sendmsg+0x10/0x10
[  278.284811][T14619]  ? get_compat_msghdr+0x11a/0x170
[  278.284843][T14619]  ___sys_sendmsg+0x134/0x1d0
[  278.284869][T14619]  ? __pfx____sys_sendmsg+0x10/0x10
[  278.284905][T14619]  ? find_held_lock+0x2b/0x80
[  278.284934][T14619]  __sys_sendmsg+0x16d/0x220
[  278.284949][T14619]  ? __pfx___sys_sendmsg+0x10/0x10
[  278.284970][T14619]  ? do_user_addr_fault+0x843/0x1370
[  278.284987][T14619]  __do_fast_syscall_32+0xe8/0x680
[  278.285008][T14619]  do_fast_syscall_32+0x32/0x80
[  278.285018][T14619]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  278.285032][T14619] RIP: 0023:0xf7f54579
[  278.285043][T14619] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  278.285054][T14619] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  278.285065][T14619] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000200
[  278.285072][T14619] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  278.285078][T14619] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  278.285084][T14619] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  278.285090][T14619] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  278.285104][T14619]  </TASK>
[  280.142231][T14629] netlink: 'syz.0.2819': attribute type 1 has an invalid length.
[  280.145420][T14629] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2819'.
[  280.534595][   T40] audit: type=1326 audit(1767882749.430:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14630 comm="syz.0.2820" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[  281.523290][T14653] netlink: 'syz.3.2828': attribute type 1 has an invalid length.
[  281.525758][T14653] netlink: 740 bytes leftover after parsing attributes in process `syz.3.2828'.
[  281.561545][T14655] openvswitch: netlink: IP tunnel dst address not specified
[  281.579789][T14644] FAULT_INJECTION: forcing a failure.
[  281.579789][T14644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  281.588985][T14644] CPU: 2 UID: 0 PID: 14644 Comm: syz.4.2823 Not tainted syzkaller #0 PREEMPT(full) 
[  281.589021][T14644] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.589032][T14644] Call Trace:
[  281.589039][T14644]  <TASK>
[  281.589046][T14644]  dump_stack_lvl+0x16c/0x1f0
[  281.589078][T14644]  should_fail_ex+0x512/0x640
[  281.589101][T14644]  _copy_to_user+0x32/0xd0
[  281.589123][T14644]  bpf_test_finish.isra.0+0x515/0x6b0
[  281.589151][T14644]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  281.589180][T14644]  ? bpf_dispatcher_xdp+0x800/0x1000
[  281.589196][T14644]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  281.589229][T14644]  bpf_prog_test_run_xdp+0xb66/0x1660
[  281.589276][T14644]  ? __fget_files+0x204/0x3c0
[  281.589305][T14644]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  281.589332][T14644]  ? __might_fault+0x10/0x190
[  281.589357][T14644]  ? fput+0x70/0xf0
[  281.589376][T14644]  ? __bpf_prog_get+0x97/0x2a0
[  281.589400][T14644]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  281.589425][T14644]  __sys_bpf+0x1035/0x4980
[  281.589446][T14644]  ? __pfx___sys_bpf+0x10/0x10
[  281.589462][T14644]  ? find_held_lock+0x2b/0x80
[  281.589491][T14644]  ? find_held_lock+0x2b/0x80
[  281.589520][T14644]  ? __mutex_unlock_slowpath+0x161/0x790
[  281.589564][T14644]  ? fput+0x70/0xf0
[  281.589580][T14644]  ? ksys_write+0x1ac/0x250
[  281.589605][T14644]  ? __pfx_ksys_write+0x10/0x10
[  281.589635][T14644]  __ia32_sys_bpf+0x76/0xe0
[  281.589652][T14644]  ? lockdep_hardirqs_on+0x7c/0x110
[  281.589678][T14644]  __do_fast_syscall_32+0xe8/0x680
[  281.589709][T14644]  do_fast_syscall_32+0x32/0x80
[  281.589725][T14644]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  281.589748][T14644] RIP: 0023:0xf7fa2579
[  281.589761][T14644] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  281.589778][T14644] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  281.589795][T14644] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  281.589806][T14644] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  281.589817][T14644] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  281.589827][T14644] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  281.589838][T14644] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  281.589862][T14644]  </TASK>
[  281.770852][T14666] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  282.419729][T14679] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  282.668108][T14689] faux_driver vgem: [drm] Unknown color mode 65545; guessing buffer size.
[  283.514913][T14697] FAULT_INJECTION: forcing a failure.
[  283.514913][T14697] name failslab, interval 1, probability 0, space 0, times 0
[  283.520498][T14697] CPU: 3 UID: 0 PID: 14697 Comm: syz.3.2842 Not tainted syzkaller #0 PREEMPT(full) 
[  283.520516][T14697] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  283.520524][T14697] Call Trace:
[  283.520528][T14697]  <TASK>
[  283.520533][T14697]  dump_stack_lvl+0x16c/0x1f0
[  283.520555][T14697]  should_fail_ex+0x512/0x640
[  283.520568][T14697]  ? __kvmalloc_node_noprof+0x129/0xa40
[  283.520586][T14697]  should_failslab+0xc2/0x120
[  283.520603][T14697]  __kvmalloc_node_noprof+0x14a/0xa40
[  283.520618][T14697]  ? finish_task_switch.isra.0+0x2e0/0xbd0
[  283.520635][T14697]  ? bpf_test_run_xdp_live+0x16e/0x770
[  283.520653][T14697]  ? bpf_test_run_xdp_live+0x16e/0x770
[  283.520666][T14697]  ? synchronize_rcu_expedited+0x3b9/0x460
[  283.520679][T14697]  bpf_test_run_xdp_live+0x16e/0x770
[  283.520694][T14697]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  283.520708][T14697]  ? __mutex_unlock_slowpath+0x161/0x790
[  283.520736][T14697]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  283.520756][T14697]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  283.520771][T14697]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  283.520796][T14697]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  283.520809][T14697]  ? bpf_dispatcher_xdp+0x800/0x1000
[  283.520821][T14697]  ? bpf_dispatcher_xdp+0x800/0x1000
[  283.520831][T14697]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  283.520850][T14697]  bpf_prog_test_run_xdp+0xd3d/0x1660
[  283.520868][T14697]  ? __fget_files+0x204/0x3c0
[  283.520886][T14697]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  283.520902][T14697]  ? __might_fault+0x10/0x190
[  283.520917][T14697]  ? fput+0x70/0xf0
[  283.520927][T14697]  ? __bpf_prog_get+0x97/0x2a0
[  283.520942][T14697]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  283.520957][T14697]  __sys_bpf+0x1035/0x4980
[  283.520970][T14697]  ? __pfx___sys_bpf+0x10/0x10
[  283.520979][T14697]  ? find_held_lock+0x2b/0x80
[  283.520997][T14697]  ? find_held_lock+0x2b/0x80
[  283.521014][T14697]  ? __mutex_unlock_slowpath+0x161/0x790
[  283.521039][T14697]  ? fput+0x70/0xf0
[  283.521049][T14697]  ? ksys_write+0x1ac/0x250
[  283.521064][T14697]  ? __pfx_ksys_write+0x10/0x10
[  283.521085][T14697]  __ia32_sys_bpf+0x76/0xe0
[  283.521096][T14697]  ? lockdep_hardirqs_on+0x7c/0x110
[  283.521112][T14697]  __do_fast_syscall_32+0xe8/0x680
[  283.521131][T14697]  do_fast_syscall_32+0x32/0x80
[  283.521141][T14697]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  283.521156][T14697] RIP: 0023:0xf7f54579
[  283.521164][T14697] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  283.521175][T14697] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  283.521186][T14697] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  283.521193][T14697] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  283.521199][T14697] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  283.521205][T14697] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  283.521211][T14697] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  283.521225][T14697]  </TASK>
[  283.542421][T14699] syzkaller0: entered promiscuous mode
[  283.637349][T14699] syzkaller0: entered allmulticast mode
[  284.104516][T14710] FAULT_INJECTION: forcing a failure.
[  284.104516][T14710] name failslab, interval 1, probability 0, space 0, times 0
[  284.108765][T14710] CPU: 1 UID: 0 PID: 14710 Comm: syz.4.2848 Not tainted syzkaller #0 PREEMPT(full) 
[  284.108793][T14710] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  284.108801][T14710] Call Trace:
[  284.108807][T14710]  <TASK>
[  284.108812][T14710]  dump_stack_lvl+0x16c/0x1f0
[  284.108833][T14710]  should_fail_ex+0x512/0x640
[  284.108846][T14710]  ? kmem_cache_alloc_noprof+0x62/0x770
[  284.108862][T14710]  should_failslab+0xc2/0x120
[  284.108880][T14710]  kmem_cache_alloc_noprof+0x83/0x770
[  284.108893][T14710]  ? __schedule+0x114c/0x6150
[  284.108908][T14710]  ? skb_clone+0x190/0x3f0
[  284.108925][T14710]  ? skb_clone+0x190/0x3f0
[  284.108938][T14710]  skb_clone+0x190/0x3f0
[  284.108952][T14710]  nfnetlink_rcv_batch+0x1cf/0x2350
[  284.108973][T14710]  ? __pfx___schedule+0x10/0x10
[  284.108989][T14710]  ? kfree_skbmem+0x1a4/0x1f0
[  284.109001][T14710]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  284.109013][T14710]  ? preempt_schedule_thunk+0x16/0x30
[  284.109025][T14710]  ? trace_irq_enable.constprop.0+0x2f/0x110
[  284.109044][T14710]  ? __dev_queue_xmit+0x782/0x46b0
[  284.109057][T14710]  ? __local_bh_enable_ip+0x107/0x120
[  284.109080][T14710]  ? __asan_memset+0x23/0x50
[  284.109093][T14710]  ? __nla_validate_parse+0x600/0x2880
[  284.109113][T14710]  ? __pfx___nla_validate_parse+0x10/0x10
[  284.109130][T14710]  ? apparmor_capable+0x1d7/0x4e0
[  284.109145][T14710]  ? __nla_parse+0x40/0x60
[  284.109161][T14710]  nfnetlink_rcv+0x3c1/0x430
[  284.109174][T14710]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  284.109189][T14710]  netlink_unicast+0x5aa/0x870
[  284.109208][T14710]  ? __pfx_netlink_unicast+0x10/0x10
[  284.109224][T14710]  ? __pfx___might_resched+0x10/0x10
[  284.109244][T14710]  netlink_sendmsg+0x8c8/0xdd0
[  284.109263][T14710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.109280][T14710]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  284.109301][T14710]  ____sys_sendmsg+0xa5d/0xc30
[  284.109321][T14710]  ? __pfx_____sys_sendmsg+0x10/0x10
[  284.109338][T14710]  ? get_compat_msghdr+0x11a/0x170
[  284.109359][T14710]  ___sys_sendmsg+0x134/0x1d0
[  284.109373][T14710]  ? __pfx____sys_sendmsg+0x10/0x10
[  284.109394][T14710]  ? find_held_lock+0x2b/0x80
[  284.109418][T14710]  __sys_sendmsg+0x16d/0x220
[  284.109432][T14710]  ? __pfx___sys_sendmsg+0x10/0x10
[  284.109452][T14710]  ? do_user_addr_fault+0x843/0x1370
[  284.109468][T14710]  __do_fast_syscall_32+0xe8/0x680
[  284.109487][T14710]  do_fast_syscall_32+0x32/0x80
[  284.109497][T14710]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  284.109511][T14710] RIP: 0023:0xf7fa2579
[  284.109521][T14710] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  284.109532][T14710] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  284.109542][T14710] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  284.109549][T14710] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  284.109555][T14710] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  284.109561][T14710] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  284.109567][T14710] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  284.109580][T14710]  </TASK>
[  284.504943][T14713] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  284.971812][T14714] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[  284.974543][T14714] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  284.978159][T14714] vhci_hcd vhci_hcd.0: Device attached
[  285.064442][T14719] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  285.068351][T14719] syzkaller0: entered promiscuous mode
[  285.070184][T14719] syzkaller0: entered allmulticast mode
[  285.075910][T14719] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  285.089975][T14721] netlink: 'syz.2.2851': attribute type 1 has an invalid length.
[  285.093825][T14721] netlink: 2088 bytes leftover after parsing attributes in process `syz.2.2851'.
[  285.099228][T14719] tipc: Resetting bearer <eth:syzkaller0>
[  285.105764][T14718] tipc: Resetting bearer <eth:syzkaller0>
[  285.217862][T14716] vhci_hcd: connection closed
[  285.219814][ T1140] vhci_hcd vhci_hcd.4: stop threads
[  285.238575][ T1140] vhci_hcd vhci_hcd.4: release socket
[  285.240660][ T1140] vhci_hcd vhci_hcd.4: disconnect device
[  285.245747][T14718] tipc: Disabling bearer <eth:syzkaller0>
[  285.248610][ T5722] usb 46-1: enqueue for inactive port 0
[  285.254461][T14725] FAULT_INJECTION: forcing a failure.
[  285.254461][T14725] name failslab, interval 1, probability 0, space 0, times 0
[  285.260680][T14725] CPU: 3 UID: 0 PID: 14725 Comm: syz.2.2853 Not tainted syzkaller #0 PREEMPT(full) 
[  285.260711][T14725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.260722][T14725] Call Trace:
[  285.260729][T14725]  <TASK>
[  285.260738][T14725]  dump_stack_lvl+0x16c/0x1f0
[  285.260771][T14725]  should_fail_ex+0x512/0x640
[  285.260795][T14725]  should_failslab+0xc2/0x120
[  285.260822][T14725]  __kmalloc_noprof+0xeb/0x910
[  285.260840][T14725]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  285.260867][T14725]  ? ___neigh_create+0x172/0x2920
[  285.260890][T14725]  ? ___neigh_create+0x172/0x2920
[  285.260905][T14725]  ___neigh_create+0x172/0x2920
[  285.261008][T14725]  ? __pfx_arp_key_eq+0x10/0x10
[  285.261033][T14725]  ? __pfx_neigh_lookup+0x10/0x10
[  285.261057][T14725]  ? __pfx____neigh_create+0x10/0x10
[  285.261076][T14725]  neigh_add+0xdae/0x1250
[  285.261096][T14725]  ? __pfx_neigh_add+0x10/0x10
[  285.261130][T14725]  ? __pfx_neigh_add+0x10/0x10
[  285.261147][T14725]  rtnetlink_rcv_msg+0x3c9/0xe90
[  285.261175][T14725]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  285.261204][T14725]  ? ref_tracker_free+0x37c/0x830
[  285.261229][T14725]  netlink_rcv_skb+0x158/0x420
[  285.261257][T14725]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  285.261281][T14725]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  285.261314][T14725]  ? netlink_deliver_tap+0x1ae/0xd30
[  285.261343][T14725]  netlink_unicast+0x5aa/0x870
[  285.261372][T14725]  ? __pfx_netlink_unicast+0x10/0x10
[  285.261407][T14725]  netlink_sendmsg+0x8c8/0xdd0
[  285.261436][T14725]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.261463][T14725]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  285.261497][T14725]  ____sys_sendmsg+0xa5d/0xc30
[  285.261529][T14725]  ? __pfx_____sys_sendmsg+0x10/0x10
[  285.261555][T14725]  ? get_compat_msghdr+0x11a/0x170
[  285.261591][T14725]  ___sys_sendmsg+0x134/0x1d0
[  285.261683][T14725]  ? __pfx____sys_sendmsg+0x10/0x10
[  285.261718][T14725]  ? find_held_lock+0x2b/0x80
[  285.261756][T14725]  __sys_sendmsg+0x16d/0x220
[  285.261780][T14725]  ? __pfx___sys_sendmsg+0x10/0x10
[  285.261811][T14725]  ? do_user_addr_fault+0x843/0x1370
[  285.261837][T14725]  __do_fast_syscall_32+0xe8/0x680
[  285.261866][T14725]  do_fast_syscall_32+0x32/0x80
[  285.261959][T14725]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  285.261987][T14725] RIP: 0023:0xf6ffd579
[  285.262002][T14725] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  285.262018][T14725] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  285.262034][T14725] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  285.262045][T14725] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  285.262055][T14725] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  285.262065][T14725] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  285.262074][T14725] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  285.262098][T14725]  </TASK>
[  285.445668][T14729] syzkaller0: entered promiscuous mode
[  285.447748][T14729] syzkaller0: entered allmulticast mode
[  285.723956][T14735] FAULT_INJECTION: forcing a failure.
[  285.723956][T14735] name failslab, interval 1, probability 0, space 0, times 0
[  285.728564][T14735] CPU: 2 UID: 0 PID: 14735 Comm: syz.2.2857 Not tainted syzkaller #0 PREEMPT(full) 
[  285.728581][T14735] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.728589][T14735] Call Trace:
[  285.728594][T14735]  <TASK>
[  285.728600][T14735]  dump_stack_lvl+0x16c/0x1f0
[  285.728623][T14735]  should_fail_ex+0x512/0x640
[  285.728636][T14735]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  285.728652][T14735]  should_failslab+0xc2/0x120
[  285.728671][T14735]  kmem_cache_alloc_noprof+0x83/0x770
[  285.728685][T14735]  ? skb_clone+0x190/0x3f0
[  285.728703][T14735]  ? skb_clone+0x190/0x3f0
[  285.728716][T14735]  skb_clone+0x190/0x3f0
[  285.728736][T14735]  netlink_deliver_tap+0xabd/0xd30
[  285.728756][T14735]  netlink_unicast+0x64c/0x870
[  285.728774][T14735]  ? __pfx_netlink_unicast+0x10/0x10
[  285.728796][T14735]  netlink_sendmsg+0x8c8/0xdd0
[  285.728814][T14735]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.728832][T14735]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  285.728855][T14735]  ____sys_sendmsg+0xa5d/0xc30
[  285.728872][T14735]  ? iterate_extent_inodes+0x350/0x1270
[  285.728889][T14735]  ? __pfx_____sys_sendmsg+0x10/0x10
[  285.728906][T14735]  ? get_compat_msghdr+0x11a/0x170
[  285.728928][T14735]  ___sys_sendmsg+0x134/0x1d0
[  285.728944][T14735]  ? __pfx____sys_sendmsg+0x10/0x10
[  285.728964][T14735]  ? find_held_lock+0x2b/0x80
[  285.728988][T14735]  __sys_sendmsg+0x16d/0x220
[  285.729003][T14735]  ? __pfx___sys_sendmsg+0x10/0x10
[  285.729022][T14735]  ? do_user_addr_fault+0x843/0x1370
[  285.729039][T14735]  __do_fast_syscall_32+0xe8/0x680
[  285.729060][T14735]  do_fast_syscall_32+0x32/0x80
[  285.729070][T14735]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  285.729085][T14735] RIP: 0023:0xf6ffd579
[  285.729096][T14735] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  285.729107][T14735] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  285.729118][T14735] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800002c0
[  285.729126][T14735] RDX: 0000000004000080 RSI: 0000000000000000 RDI: 0000000000000000
[  285.729134][T14735] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  285.729140][T14735] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  285.729146][T14735] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  285.729160][T14735]  </TASK>
[  285.729183][T14735] netlink: 'syz.2.2857': attribute type 1 has an invalid length.
[  285.818586][ T5722] usb usb46-port1: attempt power cycle
[  286.210225][T14737] openvswitch: netlink: IP tunnel dst address not specified
[  286.437372][ T5722] usb usb46-port1: unable to enumerate USB device
[  286.863281][T14748] syzkaller0: entered promiscuous mode
[  286.865224][T14748] syzkaller0: entered allmulticast mode
[  287.065440][T14752] netlink: 'syz.2.2861': attribute type 1 has an invalid length.
[  287.068395][T14752] netlink: 2088 bytes leftover after parsing attributes in process `syz.2.2861'.
[  287.395379][T14761] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2862'.
[  288.409350][T14761] comedi comedi3: comedi_config --init_data is deprecated
[  288.432551][T14777] syzkaller0: entered promiscuous mode
[  288.435515][T14777] syzkaller0: entered allmulticast mode
[  288.757474][T14780] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2870'.
[  288.776261][T14782] fuse: Unknown parameter 'fD'
[  288.825057][T14785] netlink: 'syz.0.2872': attribute type 1 has an invalid length.
[  288.830718][T14785] netlink: 2088 bytes leftover after parsing attributes in process `syz.0.2872'.
[  288.936469][T14789] FAULT_INJECTION: forcing a failure.
[  288.936469][T14789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.942478][T14789] CPU: 3 UID: 0 PID: 14789 Comm: syz.0.2874 Not tainted syzkaller #0 PREEMPT(full) 
[  288.942496][T14789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  288.942503][T14789] Call Trace:
[  288.942507][T14789]  <TASK>
[  288.942512][T14789]  dump_stack_lvl+0x16c/0x1f0
[  288.942534][T14789]  should_fail_ex+0x512/0x640
[  288.942551][T14789]  _copy_to_user+0x32/0xd0
[  288.942571][T14789]  bpf_test_finish.isra.0+0x549/0x6b0
[  288.942598][T14789]  ? __might_fault+0xe3/0x190
[  288.942647][T14789]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  288.942669][T14789]  ? _copy_from_user+0x59/0xd0
[  288.942685][T14789]  bpf_prog_test_run_xdp+0xb66/0x1660
[  288.942705][T14789]  ? __fget_files+0x204/0x3c0
[  288.942722][T14789]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  288.942739][T14789]  ? __might_fault+0x10/0x190
[  288.942754][T14789]  ? fput+0x70/0xf0
[  288.942765][T14789]  ? __bpf_prog_get+0x97/0x2a0
[  288.942780][T14789]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  288.942797][T14789]  __sys_bpf+0x1035/0x4980
[  288.942811][T14789]  ? __pfx___sys_bpf+0x10/0x10
[  288.942820][T14789]  ? find_held_lock+0x2b/0x80
[  288.942841][T14789]  ? find_held_lock+0x2b/0x80
[  288.942859][T14789]  ? __mutex_unlock_slowpath+0x161/0x790
[  288.942886][T14789]  ? fput+0x70/0xf0
[  288.942896][T14789]  ? ksys_write+0x1ac/0x250
[  288.942912][T14789]  ? __pfx_ksys_write+0x10/0x10
[  288.942937][T14789]  __ia32_sys_bpf+0x76/0xe0
[  288.942948][T14789]  ? lockdep_hardirqs_on+0x7c/0x110
[  288.942972][T14789]  __do_fast_syscall_32+0xe8/0x680
[  288.942992][T14789]  do_fast_syscall_32+0x32/0x80
[  288.943002][T14789]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  288.943016][T14789] RIP: 0023:0xf70bd579
[  288.943026][T14789] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  288.943038][T14789] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  288.943049][T14789] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  288.943057][T14789] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  288.943063][T14789] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  288.943069][T14789] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  288.943076][T14789] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  288.943090][T14789]  </TASK>
[  288.966457][T14791] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2875'.
[  289.196281][T14800] FAULT_INJECTION: forcing a failure.
[  289.196281][T14800] name failslab, interval 1, probability 0, space 0, times 0
[  289.200716][T14800] CPU: 1 UID: 0 PID: 14800 Comm: syz.4.2880 Not tainted syzkaller #0 PREEMPT(full) 
[  289.200733][T14800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.200753][T14800] Call Trace:
[  289.200758][T14800]  <TASK>
[  289.200763][T14800]  dump_stack_lvl+0x16c/0x1f0
[  289.200785][T14800]  should_fail_ex+0x512/0x640
[  289.200800][T14800]  ? __kmalloc_node_noprof+0xcd/0x930
[  289.200818][T14800]  should_failslab+0xc2/0x120
[  289.200836][T14800]  __kmalloc_node_noprof+0xee/0x930
[  289.200852][T14800]  ? __get_vm_area_node+0x1dc/0x330
[  289.200870][T14800]  ? __vmalloc_node_range_noprof+0x405/0x16b0
[  289.200884][T14800]  ? __vmalloc_node_range_noprof+0x405/0x16b0
[  289.200896][T14800]  __vmalloc_node_range_noprof+0x405/0x16b0
[  289.200913][T14800]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  289.200930][T14800]  ? __lock_acquire+0x436/0x2890
[  289.200943][T14800]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  289.200958][T14800]  ? lock_acquire+0x179/0x330
[  289.200968][T14800]  ? find_held_lock+0x2b/0x80
[  289.200985][T14800]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  289.200999][T14800]  __vmalloc_node_noprof+0xad/0xf0
[  289.201010][T14800]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  289.201033][T14800]  __vmalloc_noprof+0xa3/0x120
[  289.201044][T14800]  ? __pfx___vmalloc_noprof+0x10/0x10
[  289.201055][T14800]  ? trace_sched_exit_tp+0xd1/0x110
[  289.201072][T14800]  ? __schedule+0x10b9/0x6150
[  289.201090][T14800]  ? apparmor_capable+0x1d7/0x4e0
[  289.201104][T14800]  bpf_prog_alloc_no_stats+0x58/0x600
[  289.201118][T14800]  ? security_capable+0x7e/0x260
[  289.201139][T14800]  bpf_prog_alloc+0x3b/0x230
[  289.201152][T14800]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  289.201171][T14800]  bpf_prog_load+0x19bc/0x2cc0
[  289.201189][T14800]  ? _parse_integer_limit+0x17f/0x1d0
[  289.201210][T14800]  ? __pfx_bpf_prog_load+0x10/0x10
[  289.201227][T14800]  ? __lock_acquire+0x436/0x2890
[  289.201253][T14800]  __sys_bpf+0x3e72/0x4980
[  289.201264][T14800]  ? lock_acquire+0x179/0x330
[  289.201275][T14800]  ? __pfx___sys_bpf+0x10/0x10
[  289.201285][T14800]  ? finish_task_switch.isra.0+0x202/0xbd0
[  289.201302][T14800]  ? rcu_is_watching+0x12/0xc0
[  289.201318][T14800]  ? finish_task_switch.isra.0+0x207/0xbd0
[  289.201334][T14800]  ? lockdep_hardirqs_on+0x7c/0x110
[  289.201351][T14800]  ? finish_task_switch.isra.0+0x207/0xbd0
[  289.201368][T14800]  ? rcu_is_watching+0x12/0xc0
[  289.201384][T14800]  ? __schedule+0x10b9/0x6150
[  289.201399][T14800]  ? __schedule+0x114c/0x6150
[  289.201425][T14800]  ? fput+0x70/0xf0
[  289.201438][T14800]  ? rcu_is_watching+0x12/0xc0
[  289.201457][T14800]  __ia32_sys_bpf+0x76/0xe0
[  289.201467][T14800]  ? lockdep_hardirqs_on+0x7c/0x110
[  289.201484][T14800]  __do_fast_syscall_32+0xe8/0x680
[  289.201505][T14800]  do_fast_syscall_32+0x32/0x80
[  289.201516][T14800]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.201531][T14800] RIP: 0023:0xf7fa2579
[  289.201541][T14800] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.201552][T14800] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  289.201564][T14800] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800002c0
[  289.201571][T14800] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  289.201578][T14800] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  289.201584][T14800] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  289.201590][T14800] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.201605][T14800]  </TASK>
[  289.201872][T14800] syz.4.2880: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null)
[  289.226245][T14803] syzkaller0: entered promiscuous mode
[  289.226674][T14800] ,cpuset=
[  289.229177][T14803] syzkaller0: entered allmulticast mode
[  289.230885][T14800] /,mems_allowed=0-1
[  289.333708][T14800] CPU: 1 UID: 0 PID: 14800 Comm: syz.4.2880 Not tainted syzkaller #0 PREEMPT(full) 
[  289.333739][T14800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.333747][T14800] Call Trace:
[  289.333752][T14800]  <TASK>
[  289.333758][T14800]  dump_stack_lvl+0x16c/0x1f0
[  289.333781][T14800]  warn_alloc+0x248/0x3a0
[  289.333798][T14800]  ? __pfx_warn_alloc+0x10/0x10
[  289.333810][T14800]  ? dump_stack_lvl+0x1a3/0x1f0
[  289.333828][T14800]  ? should_fail_ex+0x354/0x640
[  289.333843][T14800]  ? rcu_is_watching+0x12/0xc0
[  289.333861][T14800]  ? trace_kmalloc+0x2b/0xb0
[  289.333882][T14800]  ? __kmalloc_node_noprof+0x372/0x930
[  289.333898][T14800]  ? __get_vm_area_node+0x1dc/0x330
[  289.333916][T14800]  ? __vmalloc_node_range_noprof+0x405/0x16b0
[  289.333932][T14800]  __vmalloc_node_range_noprof+0x1309/0x16b0
[  289.333948][T14800]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  289.333968][T14800]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  289.333983][T14800]  ? lock_acquire+0x179/0x330
[  289.333994][T14800]  ? find_held_lock+0x2b/0x80
[  289.334011][T14800]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  289.334025][T14800]  __vmalloc_node_noprof+0xad/0xf0
[  289.334036][T14800]  ? bpf_prog_alloc_no_stats+0x58/0x600
[  289.334053][T14800]  __vmalloc_noprof+0xa3/0x120
[  289.334064][T14800]  ? __pfx___vmalloc_noprof+0x10/0x10
[  289.334075][T14800]  ? trace_sched_exit_tp+0xd1/0x110
[  289.334092][T14800]  ? __schedule+0x10b9/0x6150
[  289.334109][T14800]  ? apparmor_capable+0x1d7/0x4e0
[  289.334135][T14800]  bpf_prog_alloc_no_stats+0x58/0x600
[  289.334150][T14800]  ? security_capable+0x7e/0x260
[  289.334170][T14800]  bpf_prog_alloc+0x3b/0x230
[  289.334183][T14800]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  289.334202][T14800]  bpf_prog_load+0x19bc/0x2cc0
[  289.334220][T14800]  ? _parse_integer_limit+0x17f/0x1d0
[  289.334241][T14800]  ? __pfx_bpf_prog_load+0x10/0x10
[  289.334258][T14800]  ? __lock_acquire+0x436/0x2890
[  289.334284][T14800]  __sys_bpf+0x3e72/0x4980
[  289.334295][T14800]  ? lock_acquire+0x179/0x330
[  289.334306][T14800]  ? __pfx___sys_bpf+0x10/0x10
[  289.334316][T14800]  ? finish_task_switch.isra.0+0x202/0xbd0
[  289.334333][T14800]  ? rcu_is_watching+0x12/0xc0
[  289.334348][T14800]  ? finish_task_switch.isra.0+0x207/0xbd0
[  289.334364][T14800]  ? lockdep_hardirqs_on+0x7c/0x110
[  289.334382][T14800]  ? finish_task_switch.isra.0+0x207/0xbd0
[  289.334411][T14800]  ? rcu_is_watching+0x12/0xc0
[  289.334428][T14800]  ? __schedule+0x10b9/0x6150
[  289.334443][T14800]  ? __schedule+0x114c/0x6150
[  289.334470][T14800]  ? fput+0x70/0xf0
[  289.334483][T14800]  ? rcu_is_watching+0x12/0xc0
[  289.334501][T14800]  __ia32_sys_bpf+0x76/0xe0
[  289.334512][T14800]  ? lockdep_hardirqs_on+0x7c/0x110
[  289.334529][T14800]  __do_fast_syscall_32+0xe8/0x680
[  289.334549][T14800]  do_fast_syscall_32+0x32/0x80
[  289.334560][T14800]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.334575][T14800] RIP: 0023:0xf7fa2579
[  289.334585][T14800] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.334596][T14800] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  289.334633][T14800] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800002c0
[  289.334641][T14800] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  289.334648][T14800] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  289.334654][T14800] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  289.334661][T14800] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.334676][T14800]  </TASK>
[  289.334809][T14800] Mem-Info:
[  289.456020][T14800] active_anon:7164 inactive_anon:4 isolated_anon:0
[  289.456020][T14800]  active_file:16601 inactive_file:1186 isolated_file:0
[  289.456020][T14800]  unevictable:1768 dirty:89 writeback:0
[  289.456020][T14800]  slab_reclaimable:6016 slab_unreclaimable:57573
[  289.456020][T14800]  mapped:32007 shmem:2037 pagetables:1171
[  289.456020][T14800]  sec_pagetables:307 bounce:0
[  289.456020][T14800]  kernel_misc_reclaimable:0
[  289.456020][T14800]  free:70113 free_pcp:1575 free_cma:0
[  289.471560][T14800] Node 0 active_anon:1636kB inactive_anon:16kB active_file:320kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:604kB dirty:4kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:10088kB pagetables:2128kB sec_pagetables:1156kB all_unreclaimable? no Balloon:0kB
[  289.482097][T14800] Node 1 active_anon:27020kB inactive_anon:0kB active_file:66084kB inactive_file:4740kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:127424kB dirty:352kB writeback:0kB shmem:4608kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:3936kB pagetables:2556kB sec_pagetables:72kB all_unreclaimable? no Balloon:0kB
[  289.499935][T14800] Node 0 DMA free:2616kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  289.517093][T14800] lowmem_reserve[]: 0 289 289 289 289
[  289.520340][T14800] Node 0 DMA32 free:19888kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:2048KB free_highatomic:524KB active_anon:1712kB inactive_anon:16kB active_file:320kB inactive_file:4kB unevictable:3536kB writepending:4kB zspages:0kB present:1032196kB managed:296804kB mlocked:0kB bounce:0kB free_pcp:3364kB local_pcp:180kB free_cma:0kB
[  289.540587][T14800] lowmem_reserve[]: 0 0 0 0 0
[  289.543497][T14800] Node 1 DMA32 free:257948kB boost:24576kB min:71720kB low:83504kB high:95288kB reserved_highatomic:0KB free_highatomic:0KB active_anon:27020kB inactive_anon:0kB active_file:66084kB inactive_file:4740kB unevictable:3536kB writepending:400kB zspages:2696kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:3144kB local_pcp:1028kB free_cma:0kB
[  289.565893][T14800] lowmem_reserve[]: 0 0 0 0 0
[  289.569262][T14800] Node 0 DMA: 20*4kB (U) 17*8kB (UM) 8*16kB (UM) 13*32kB (UM) 5*64kB (UM) 2*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2616kB
[  289.574616][T14800] Node 0 DMA32: 829*4kB (UEH) 265*8kB (UMEH) 97*16kB (UMEH) 40*32kB (UEH) 52*64kB (UMEH) 20*128kB (UMEH) 6*256kB (UME) 6*512kB (UM) 2*1024kB (UM) 0*2048kB 0*4096kB = 20812kB
[  289.700675][T14800] Node 1 DMA32: 2445*4kB (UME) 2583*8kB (UME) 1721*16kB (UME) 769*32kB (UME) 236*64kB (UME) 56*128kB (UME) 54*256kB (UM) 40*512kB (UME) 8*1024kB (UME) 8*2048kB (UME) 23*4096kB (UM) = 257948kB
[  289.720787][T14800] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  289.724361][T14800] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  289.727474][T14800] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  289.734898][T14800] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  289.743441][T14800] 20120 total pagecache pages
[  289.745234][T14800] 300 pages in swap cache
[  289.746763][T14800] Free swap  = 117292kB
[  289.749944][T14800] Total swap = 124996kB
[  289.751609][T14800] 524155 pages RAM
[  289.752997][T14800] 0 pages HighMem/MovableOnly
[  289.754709][T14800] 209061 pages reserved
[  289.756181][T14800] 0 pages cma reserved
[  289.795852][T14812] netlink: 'syz.0.2882': attribute type 1 has an invalid length.
[  289.800507][T14812] netlink: 2088 bytes leftover after parsing attributes in process `syz.0.2882'.
[  289.960035][T14814] /dev/sr0: Can't open blockdev
[  289.968460][T14815] gfs2: gfs2 mount does not exist
[  290.087921][T14823] FAULT_INJECTION: forcing a failure.
[  290.087921][T14823] name failslab, interval 1, probability 0, space 0, times 0
[  290.094315][T14823] CPU: 2 UID: 0 PID: 14823 Comm: syz.4.2884 Not tainted syzkaller #0 PREEMPT(full) 
[  290.094342][T14823] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  290.094353][T14823] Call Trace:
[  290.094361][T14823]  <TASK>
[  290.094368][T14823]  dump_stack_lvl+0x16c/0x1f0
[  290.094401][T14823]  should_fail_ex+0x512/0x640
[  290.094423][T14823]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  290.094449][T14823]  should_failslab+0xc2/0x120
[  290.094476][T14823]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  290.094501][T14823]  ? __d_alloc+0x35/0xa80
[  290.094522][T14823]  ? __d_alloc+0x35/0xa80
[  290.094538][T14823]  __d_alloc+0x35/0xa80
[  290.094552][T14823]  ? __pfx_idr_alloc_u32+0x10/0x10
[  290.094580][T14823]  d_alloc_pseudo+0x1c/0xc0
[  290.094623][T14823]  alloc_file_pseudo+0xcf/0x230
[  290.094648][T14823]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  290.094675][T14823]  __anon_inode_getfile+0xe8/0x280
[  290.094698][T14823]  bpf_link_prime+0x202/0x4c0
[  290.094723][T14823]  ? bpf_link_init_sleepable+0x91/0x220
[  290.094755][T14823]  bpf_raw_tp_link_attach+0x2ad/0x630
[  290.094773][T14823]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[  290.094787][T14823]  ? find_held_lock+0x2b/0x80
[  290.094812][T14823]  ? __fget_files+0x204/0x3c0
[  290.094856][T14823]  ? fput+0x70/0xf0
[  290.094873][T14823]  ? __bpf_prog_get+0x97/0x2a0
[  290.094898][T14823]  __sys_bpf+0x20c1/0x4980
[  290.094920][T14823]  ? __pfx___sys_bpf+0x10/0x10
[  290.094937][T14823]  ? find_held_lock+0x2b/0x80
[  290.094985][T14823]  ? find_held_lock+0x2b/0x80
[  290.095018][T14823]  ? __mutex_unlock_slowpath+0x161/0x790
[  290.095068][T14823]  ? fput+0x70/0xf0
[  290.095087][T14823]  ? ksys_write+0x1ac/0x250
[  290.095113][T14823]  ? __pfx_ksys_write+0x10/0x10
[  290.095149][T14823]  __ia32_sys_bpf+0x76/0xe0
[  290.095169][T14823]  ? lockdep_hardirqs_on+0x7c/0x110
[  290.095200][T14823]  __do_fast_syscall_32+0xe8/0x680
[  290.095236][T14823]  do_fast_syscall_32+0x32/0x80
[  290.095256][T14823]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  290.095284][T14823] RIP: 0023:0xf7fa2579
[  290.095302][T14823] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  290.095322][T14823] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  290.095343][T14823] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000080000040
[  290.095358][T14823] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  290.095370][T14823] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  290.095382][T14823] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  290.095394][T14823] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  290.095422][T14823]  </TASK>
[  290.690126][T14839] syzkaller0: entered promiscuous mode
[  290.692129][T14839] syzkaller0: entered allmulticast mode
[  290.870735][T14845] capability: warning: `syz.0.2890' uses deprecated v2 capabilities in a way that may be insecure
[  291.697686][T14856] Process accounting resumed
[  292.919096][T14887] veth1_to_bond: entered allmulticast mode
[  292.922952][T14887] veth1_to_bond: left allmulticast mode
[  293.160753][T14889] netlink: 'syz.0.2898': attribute type 21 has an invalid length.
[  293.563896][T14897] tipc: Started in network mode
[  293.566306][T14897] tipc: Node identity f2e0a60f11cc, cluster identity 4711
[  293.572167][T14897] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  293.577093][T14897] syzkaller0: entered promiscuous mode
[  293.582410][T14897] syzkaller0: entered allmulticast mode
[  293.603509][T14897] syzkaller0: mtu less than device minimum
[  293.613221][T14896] tipc: Resetting bearer <eth:syzkaller0>
[  293.646873][T14896] tipc: Disabling bearer <eth:syzkaller0>
[  293.750444][T14899] FAULT_INJECTION: forcing a failure.
[  293.750444][T14899] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.756430][T14899] CPU: 2 UID: 0 PID: 14899 Comm: syz.4.2906 Not tainted syzkaller #0 PREEMPT(full) 
[  293.756458][T14899] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.756470][T14899] Call Trace:
[  293.756478][T14899]  <TASK>
[  293.756486][T14899]  dump_stack_lvl+0x16c/0x1f0
[  293.756519][T14899]  should_fail_ex+0x512/0x640
[  293.756545][T14899]  _copy_to_user+0x32/0xd0
[  293.756569][T14899]  bpf_test_finish.isra.0+0x549/0x6b0
[  293.756602][T14899]  ? __might_fault+0xe3/0x190
[  293.756624][T14899]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  293.756654][T14899]  ? _copy_from_user+0x59/0xd0
[  293.756677][T14899]  bpf_prog_test_run_xdp+0xb66/0x1660
[  293.756709][T14899]  ? __fget_files+0x204/0x3c0
[  293.756737][T14899]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  293.756763][T14899]  ? __might_fault+0x10/0x190
[  293.756788][T14899]  ? fput+0x70/0xf0
[  293.756807][T14899]  ? __bpf_prog_get+0x97/0x2a0
[  293.756831][T14899]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  293.756856][T14899]  __sys_bpf+0x1035/0x4980
[  293.756883][T14899]  ? __pfx___sys_bpf+0x10/0x10
[  293.756900][T14899]  ? find_held_lock+0x2b/0x80
[  293.756931][T14899]  ? find_held_lock+0x2b/0x80
[  293.756962][T14899]  ? __mutex_unlock_slowpath+0x161/0x790
[  293.757009][T14899]  ? fput+0x70/0xf0
[  293.757027][T14899]  ? ksys_write+0x1ac/0x250
[  293.757052][T14899]  ? __pfx_ksys_write+0x10/0x10
[  293.757083][T14899]  __ia32_sys_bpf+0x76/0xe0
[  293.757101][T14899]  ? lockdep_hardirqs_on+0x7c/0x110
[  293.757129][T14899]  __do_fast_syscall_32+0xe8/0x680
[  293.757159][T14899]  do_fast_syscall_32+0x32/0x80
[  293.757176][T14899]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  293.757199][T14899] RIP: 0023:0xf7fa2579
[  293.757215][T14899] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  293.757233][T14899] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  293.757251][T14899] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000340
[  293.757263][T14899] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[  293.757273][T14899] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  293.757283][T14899] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  293.757294][T14899] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  293.757319][T14899]  </TASK>
[  293.914265][T14901] FAULT_INJECTION: forcing a failure.
[  293.914265][T14901] name failslab, interval 1, probability 0, space 0, times 0
[  293.919998][T14901] CPU: 3 UID: 0 PID: 14901 Comm: syz.4.2907 Not tainted syzkaller #0 PREEMPT(full) 
[  293.920017][T14901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.920025][T14901] Call Trace:
[  293.920031][T14901]  <TASK>
[  293.920040][T14901]  dump_stack_lvl+0x16c/0x1f0
[  293.920063][T14901]  should_fail_ex+0x512/0x640
[  293.920079][T14901]  ? kmem_cache_alloc_noprof+0x62/0x770
[  293.920097][T14901]  should_failslab+0xc2/0x120
[  293.920116][T14901]  kmem_cache_alloc_noprof+0x83/0x770
[  293.920132][T14901]  ? getname_kernel+0x52/0x370
[  293.920147][T14901]  ? getname_kernel+0x52/0x370
[  293.920158][T14901]  getname_kernel+0x52/0x370
[  293.920171][T14901]  kern_path+0x1d/0x50
[  293.920188][T14901]  unix_find_other+0x11e/0xab0
[  293.920204][T14901]  ? __pfx_unix_find_other+0x10/0x10
[  293.920224][T14901]  unix_stream_connect+0x4cb/0x1a30
[  293.920239][T14901]  ? __pfx_tomoyo_socket_connect_permission+0x10/0x10
[  293.920262][T14901]  ? __pfx_unix_stream_connect+0x10/0x10
[  293.920277][T14901]  ? apparmor_socket_connect+0x100/0x1b0
[  293.920299][T14901]  ? __pfx_unix_stream_connect+0x10/0x10
[  293.920312][T14901]  __sys_connect_file+0x141/0x1a0
[  293.920329][T14901]  __sys_connect+0x13b/0x160
[  293.920342][T14901]  ? __pfx___sys_connect+0x10/0x10
[  293.920361][T14901]  ? __pfx_ksys_write+0x10/0x10
[  293.920379][T14901]  ? do_user_addr_fault+0x843/0x1370
[  293.920396][T14901]  __ia32_sys_connect+0x71/0xb0
[  293.920409][T14901]  ? lockdep_hardirqs_on+0x7c/0x110
[  293.920429][T14901]  __do_fast_syscall_32+0xe8/0x680
[  293.920450][T14901]  do_fast_syscall_32+0x32/0x80
[  293.920462][T14901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  293.920478][T14901] RIP: 0023:0xf7fa2579
[  293.920489][T14901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  293.920502][T14901] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  293.920514][T14901] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000000
[  293.920522][T14901] RDX: 000000000000006e RSI: 0000000000000000 RDI: 0000000000000000
[  293.920529][T14901] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  293.920536][T14901] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  293.920543][T14901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  293.920558][T14901]  </TASK>
[  294.071735][T14903] 9pnet_virtio: no channels available for device syz
[  294.180701][T14906] syzkaller0: entered promiscuous mode
[  294.183105][T14906] syzkaller0: entered allmulticast mode
[  294.232720][T14911] overlayfs: failed to resolve './bus/file0': -2
[  294.287744][T14913] netlink: 'syz.2.2912': attribute type 2 has an invalid length.
[  294.291319][T14913] FAULT_INJECTION: forcing a failure.
[  294.291319][T14913] name failslab, interval 1, probability 0, space 0, times 0
[  294.296954][T14913] CPU: 2 UID: 0 PID: 14913 Comm: syz.2.2912 Not tainted syzkaller #0 PREEMPT(full) 
[  294.296980][T14913] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  294.296993][T14913] Call Trace:
[  294.297000][T14913]  <TASK>
[  294.297008][T14913]  dump_stack_lvl+0x16c/0x1f0
[  294.297041][T14913]  should_fail_ex+0x512/0x640
[  294.297063][T14913]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  294.297089][T14913]  should_failslab+0xc2/0x120
[  294.297118][T14913]  kmem_cache_alloc_noprof+0x83/0x770
[  294.297142][T14913]  ? skb_clone+0x190/0x3f0
[  294.297171][T14913]  ? skb_clone+0x190/0x3f0
[  294.297193][T14913]  skb_clone+0x190/0x3f0
[  294.297217][T14913]  netlink_deliver_tap+0xabd/0xd30
[  294.297250][T14913]  netlink_unicast+0x71f/0x870
[  294.297280][T14913]  ? __pfx_netlink_unicast+0x10/0x10
[  294.297308][T14913]  ? genl_rcv_msg+0x4bb/0x800
[  294.297334][T14913]  netlink_ack+0x696/0xb80
[  294.297368][T14913]  netlink_rcv_skb+0x332/0x420
[  294.297394][T14913]  ? __pfx_genl_rcv_msg+0x10/0x10
[  294.297414][T14913]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  294.297452][T14913]  ? netlink_deliver_tap+0x1ae/0xd30
[  294.297481][T14913]  genl_rcv+0x28/0x40
[  294.297508][T14913]  netlink_unicast+0x5aa/0x870
[  294.297538][T14913]  ? __pfx_netlink_unicast+0x10/0x10
[  294.297575][T14913]  netlink_sendmsg+0x8c8/0xdd0
[  294.297606][T14913]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.297636][T14913]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  294.297672][T14913]  ____sys_sendmsg+0xa5d/0xc30
[  294.297705][T14913]  ? __pfx_____sys_sendmsg+0x10/0x10
[  294.297732][T14913]  ? get_compat_msghdr+0x11a/0x170
[  294.297769][T14913]  ___sys_sendmsg+0x134/0x1d0
[  294.297801][T14913]  ? __pfx____sys_sendmsg+0x10/0x10
[  294.297839][T14913]  ? find_held_lock+0x2b/0x80
[  294.297882][T14913]  __sys_sendmsg+0x16d/0x220
[  294.297906][T14913]  ? __pfx___sys_sendmsg+0x10/0x10
[  294.297965][T14913]  __do_fast_syscall_32+0xe8/0x680
[  294.297999][T14913]  do_fast_syscall_32+0x32/0x80
[  294.298016][T14913]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  294.298039][T14913] RIP: 0023:0xf6ffd579
[  294.298065][T14913] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  294.298084][T14913] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  294.298103][T14913] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000580
[  294.298115][T14913] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  294.298126][T14913] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  294.298137][T14913] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  294.298148][T14913] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  294.298174][T14913]  </TASK>
[  294.477201][T14918] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2914'.
[  294.556676][T14920] comedi comedi3: comedi_config --init_data is deprecated
[  295.808459][   T40] audit: type=1804 audit(1767882764.750:58): pid=14927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2915" name="/newroot/101/file0/file0" dev="9p" ino=81264825 res=1 errno=0
[  296.691035][T14931] syz_tun: entered allmulticast mode
[  296.919320][T14930] syz_tun: left allmulticast mode
[  296.952857][T14939] FAULT_INJECTION: forcing a failure.
[  296.952857][T14939] name failslab, interval 1, probability 0, space 0, times 0
[  296.957543][T14939] CPU: 3 UID: 0 PID: 14939 Comm: syz.2.2919 Not tainted syzkaller #0 PREEMPT(full) 
[  296.957559][T14939] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  296.957567][T14939] Call Trace:
[  296.957590][T14939]  <TASK>
[  296.957597][T14939]  dump_stack_lvl+0x16c/0x1f0
[  296.957649][T14939]  should_fail_ex+0x512/0x640
[  296.957668][T14939]  ? __kmalloc_noprof+0xca/0x910
[  296.957683][T14939]  should_failslab+0xc2/0x120
[  296.957701][T14939]  __kmalloc_noprof+0xeb/0x910
[  296.957714][T14939]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  296.957737][T14939]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  296.957756][T14939]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  296.957849][T14939]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  296.957889][T14939]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  296.957916][T14939]  ? genl_get_cmd+0x194/0x580
[  296.957978][T14939]  ? bpf_lsm_capable+0x9/0x10
[  296.957998][T14939]  ? security_capable+0x7e/0x260
[  296.958022][T14939]  genl_rcv_msg+0x55c/0x800
[  296.958036][T14939]  ? __pfx_genl_rcv_msg+0x10/0x10
[  296.958047][T14939]  ? __pfx_ieee802154_llsec_add_devkey+0x10/0x10
[  296.958078][T14939]  ? __lock_acquire+0x436/0x2890
[  296.958099][T14939]  netlink_rcv_skb+0x158/0x420
[  296.958122][T14939]  ? __pfx_genl_rcv_msg+0x10/0x10
[  296.958139][T14939]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  296.958170][T14939]  ? netlink_deliver_tap+0x1ae/0xd30
[  296.958195][T14939]  genl_rcv+0x28/0x40
[  296.958218][T14939]  netlink_unicast+0x5aa/0x870
[  296.958243][T14939]  ? __pfx_netlink_unicast+0x10/0x10
[  296.958266][T14939]  ? __pfx___might_resched+0x10/0x10
[  296.958297][T14939]  netlink_sendmsg+0x8c8/0xdd0
[  296.958324][T14939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  296.958351][T14939]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  296.958394][T14939]  ____sys_sendmsg+0xa5d/0xc30
[  296.958424][T14939]  ? __pfx_____sys_sendmsg+0x10/0x10
[  296.958495][T14939]  ? get_compat_msghdr+0x11a/0x170
[  296.958597][T14939]  ___sys_sendmsg+0x134/0x1d0
[  296.958624][T14939]  ? __pfx____sys_sendmsg+0x10/0x10
[  296.958659][T14939]  ? find_held_lock+0x2b/0x80
[  296.958700][T14939]  __sys_sendmsg+0x16d/0x220
[  296.958721][T14939]  ? __pfx___sys_sendmsg+0x10/0x10
[  296.958760][T14939]  __do_fast_syscall_32+0xe8/0x680
[  296.958790][T14939]  do_fast_syscall_32+0x32/0x80
[  296.958806][T14939]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  296.958827][T14939] RIP: 0023:0xf6ffd579
[  296.958841][T14939] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  296.958854][T14939] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  296.958865][T14939] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  296.958872][T14939] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  296.958878][T14939] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  296.958885][T14939] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  296.958891][T14939] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  296.958905][T14939]  </TASK>
[  297.194774][T14944] syzkaller0: entered promiscuous mode
[  297.194802][T14944] syzkaller0: entered allmulticast mode
[  297.588563][T14945] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  297.589288][T14945] overlayfs: missing 'lowerdir'
[  297.702481][T14951] fuse: Unknown parameter ''
[  298.678718][  T142] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  298.719496][T14957] FAULT_INJECTION: forcing a failure.
[  298.719496][T14957] name failslab, interval 1, probability 0, space 0, times 0
[  298.724560][T14957] CPU: 3 UID: 0 PID: 14957 Comm: syz.3.2926 Not tainted syzkaller #0 PREEMPT(full) 
[  298.724584][T14957] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  298.724595][T14957] Call Trace:
[  298.724602][T14957]  <TASK>
[  298.724610][T14957]  dump_stack_lvl+0x16c/0x1f0
[  298.724643][T14957]  should_fail_ex+0x512/0x640
[  298.724667][T14957]  should_failslab+0xc2/0x120
[  298.724695][T14957]  kmem_cache_alloc_node_noprof+0x86/0x800
[  298.724719][T14957]  ? __alloc_skb+0x156/0x410
[  298.724745][T14957]  ? __alloc_skb+0x156/0x410
[  298.724761][T14957]  __alloc_skb+0x156/0x410
[  298.724794][T14957]  ? __alloc_skb+0x35d/0x410
[  298.724814][T14957]  ? __pfx___alloc_skb+0x10/0x10
[  298.724839][T14957]  ? rtnl_prop_list_size+0x295/0x2d0
[  298.724865][T14957]  ? if_nlmsg_size+0x4a7/0xb30
[  298.724893][T14957]  rtmsg_ifinfo_build_skb+0x81/0x280
[  298.724926][T14957]  rtmsg_ifinfo+0x9f/0x1a0
[  298.724958][T14957]  __dev_notify_flags+0x24c/0x2e0
[  298.724983][T14957]  ? __pfx___dev_notify_flags+0x10/0x10
[  298.725005][T14957]  ? __dev_change_flags+0x3d5/0x6f0
[  298.725029][T14957]  ? __pfx___dev_change_flags+0x10/0x10
[  298.725051][T14957]  ? find_held_lock+0x2b/0x80
[  298.725073][T14957]  ? validate_linkmsg+0x57c/0xb60
[  298.725103][T14957]  netif_change_flags+0x108/0x160
[  298.725129][T14957]  do_setlink.constprop.0+0xb53/0x4380
[  298.725164][T14957]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  298.725193][T14957]  ? __lock_acquire+0x436/0x2890
[  298.725210][T14957]  ? __kernel_text_address+0xd/0x40
[  298.725233][T14957]  ? stack_depot_save_flags+0x29/0x9b0
[  298.725254][T14957]  ? arch_stack_walk+0xa6/0x100
[  298.725284][T14957]  ? lock_acquire+0x179/0x330
[  298.725304][T14957]  ? __pfx___might_resched+0x10/0x10
[  298.725332][T14957]  ? rcu_is_watching+0x12/0xc0
[  298.725359][T14957]  ? trace_contention_end+0xdd/0x110
[  298.725378][T14957]  ? __mutex_lock+0x27b/0x1ca0
[  298.725421][T14957]  ? rtnl_newlink+0x5f6/0x1f50
[  298.725445][T14957]  ? __nla_validate_parse+0x600/0x2880
[  298.725476][T14957]  ? __pfx___mutex_lock+0x10/0x10
[  298.725508][T14957]  ? apparmor_capable+0x1d7/0x4e0
[  298.725545][T14957]  rtnl_newlink+0x1807/0x1f50
[  298.725581][T14957]  ? __pfx_rtnl_newlink+0x10/0x10
[  298.725606][T14957]  ? lockdep_hardirqs_on+0x7c/0x110
[  298.725638][T14957]  ? kmem_cache_free+0x2d8/0x770
[  298.725662][T14957]  ? kfree_skbmem+0x1a4/0x1f0
[  298.725686][T14957]  ? __lock_acquire+0x436/0x2890
[  298.725706][T14957]  ? find_held_lock+0x2b/0x80
[  298.725729][T14957]  ? __dev_queue_xmit+0x782/0x46b0
[  298.725757][T14957]  ? find_held_lock+0x2b/0x80
[  298.725780][T14957]  ? __pfx_rtnl_newlink+0x10/0x10
[  298.725803][T14957]  ? __pfx_rtnl_newlink+0x10/0x10
[  298.725826][T14957]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  298.725858][T14957]  ? __pfx_rtnl_newlink+0x10/0x10
[  298.725884][T14957]  rtnetlink_rcv_msg+0x95e/0xe90
[  298.725913][T14957]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  298.725946][T14957]  ? ref_tracker_free+0x37c/0x830
[  298.725972][T14957]  netlink_rcv_skb+0x158/0x420
[  298.725999][T14957]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  298.726027][T14957]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  298.726065][T14957]  ? netlink_deliver_tap+0x1ae/0xd30
[  298.726096][T14957]  netlink_unicast+0x5aa/0x870
[  298.726126][T14957]  ? __pfx_netlink_unicast+0x10/0x10
[  298.726164][T14957]  netlink_sendmsg+0x8c8/0xdd0
[  298.726196][T14957]  ? __pfx_netlink_sendmsg+0x10/0x10
[  298.726226][T14957]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  298.726263][T14957]  ____sys_sendmsg+0xa5d/0xc30
[  298.726295][T14957]  ? __pfx_____sys_sendmsg+0x10/0x10
[  298.726323][T14957]  ? get_compat_msghdr+0x11a/0x170
[  298.726359][T14957]  ___sys_sendmsg+0x134/0x1d0
[  298.726384][T14957]  ? __pfx____sys_sendmsg+0x10/0x10
[  298.726421][T14957]  ? find_held_lock+0x2b/0x80
[  298.726462][T14957]  __sys_sendmsg+0x16d/0x220
[  298.726486][T14957]  ? __pfx___sys_sendmsg+0x10/0x10
[  298.726548][T14957]  ? do_user_addr_fault+0x843/0x1370
[  298.726578][T14957]  __do_fast_syscall_32+0xe8/0x680
[  298.726610][T14957]  do_fast_syscall_32+0x32/0x80
[  298.726626][T14957]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  298.726650][T14957] RIP: 0023:0xf7f54579
[  298.726665][T14957] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  298.726682][T14957] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  298.726701][T14957] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  298.726713][T14957] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  298.726723][T14957] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  298.726734][T14957] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  298.726744][T14957] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  298.726770][T14957]  </TASK>
[  298.927163][T14957] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  299.056498][T14961] netlink: 'syz.3.2929': attribute type 1 has an invalid length.
[  299.068298][T14961] netlink: 740 bytes leftover after parsing attributes in process `syz.3.2929'.
[  299.266395][T14967] syzkaller0: entered promiscuous mode
[  299.269184][T14967] syzkaller0: entered allmulticast mode
[  299.360183][ T5722] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  299.494835][T14969] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  299.538230][ T5722] usb 9-1: Using ep0 maxpacket: 32
[  299.542959][ T5722] usb 9-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  299.550233][ T5722] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  299.554454][ T5722] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.558644][ T5722] usb 9-1: Product: syz
[  299.560285][ T5722] usb 9-1: Manufacturer: syz
[  299.562333][ T5722] usb 9-1: SerialNumber: syz
[  299.566653][ T5722] usb 9-1: config 0 descriptor??
[  299.601585][T14969] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  299.730085][T14969] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  299.773182][ T5722] usb 9-1: USB disconnect, device number 3
[  299.774195][T14980] netlink: 'syz.3.2935': attribute type 1 has an invalid length.
[  299.781436][T14980] FAULT_INJECTION: forcing a failure.
[  299.781436][T14980] name failslab, interval 1, probability 0, space 0, times 0
[  299.787075][T14980] CPU: 0 UID: 0 PID: 14980 Comm: syz.3.2935 Not tainted syzkaller #0 PREEMPT(full) 
[  299.787102][T14980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  299.787113][T14980] Call Trace:
[  299.787139][T14980]  <TASK>
[  299.787150][T14980]  dump_stack_lvl+0x16c/0x1f0
[  299.787187][T14980]  should_fail_ex+0x512/0x640
[  299.787210][T14980]  ? __kmalloc_cache_noprof+0x5f/0x800
[  299.787235][T14980]  should_failslab+0xc2/0x120
[  299.787264][T14980]  __kmalloc_cache_noprof+0x80/0x800
[  299.787286][T14980]  ? qfq_change_class+0xcf8/0x1da0
[  299.787318][T14980]  ? qfq_change_class+0xcf8/0x1da0
[  299.787343][T14980]  qfq_change_class+0xcf8/0x1da0
[  299.787374][T14980]  ? __pfx_qfq_change_class+0x10/0x10
[  299.787404][T14980]  ? qdisc_match_from_root+0x16f/0x260
[  299.787433][T14980]  ? __pfx_qfq_change_class+0x10/0x10
[  299.787456][T14980]  tc_ctl_tclass+0x59d/0x16c0
[  299.787479][T14980]  ? __pfx_tc_ctl_tclass+0x10/0x10
[  299.787495][T14980]  ? __mutex_lock+0x27b/0x1ca0
[  299.787526][T14980]  ? rtnetlink_rcv_msg+0x371/0xe90
[  299.787550][T14980]  ? __lock_acquire+0x436/0x2890
[  299.787588][T14980]  ? __pfx_tc_ctl_tclass+0x10/0x10
[  299.787606][T14980]  rtnetlink_rcv_msg+0x3c9/0xe90
[  299.787634][T14980]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  299.787667][T14980]  ? ref_tracker_free+0x37c/0x830
[  299.787693][T14980]  netlink_rcv_skb+0x158/0x420
[  299.787727][T14980]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  299.787754][T14980]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  299.787789][T14980]  ? netlink_deliver_tap+0x1ae/0xd30
[  299.787820][T14980]  netlink_unicast+0x5aa/0x870
[  299.787849][T14980]  ? __pfx_netlink_unicast+0x10/0x10
[  299.787884][T14980]  netlink_sendmsg+0x8c8/0xdd0
[  299.787916][T14980]  ? __pfx_netlink_sendmsg+0x10/0x10
[  299.787960][T14980]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  299.787998][T14980]  ____sys_sendmsg+0xa5d/0xc30
[  299.788026][T14980]  ? iterate_extent_inodes+0x350/0x1270
[  299.788055][T14980]  ? __pfx_____sys_sendmsg+0x10/0x10
[  299.788081][T14980]  ? get_compat_msghdr+0x11a/0x170
[  299.788119][T14980]  ___sys_sendmsg+0x134/0x1d0
[  299.788145][T14980]  ? __pfx____sys_sendmsg+0x10/0x10
[  299.788183][T14980]  ? find_held_lock+0x2b/0x80
[  299.788228][T14980]  __sys_sendmsg+0x16d/0x220
[  299.788252][T14980]  ? __pfx___sys_sendmsg+0x10/0x10
[  299.788289][T14980]  ? do_user_addr_fault+0x843/0x1370
[  299.788317][T14980]  __do_fast_syscall_32+0xe8/0x680
[  299.788350][T14980]  do_fast_syscall_32+0x32/0x80
[  299.788367][T14980]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  299.788389][T14980] RIP: 0023:0xf7f54579
[  299.788404][T14980] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  299.788422][T14980] RSP: 002b:00000000f544655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  299.788441][T14980] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800002c0
[  299.788452][T14980] RDX: 0000000004000080 RSI: 0000000000000000 RDI: 0000000000000000
[  299.788463][T14980] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  299.788473][T14980] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  299.788483][T14980] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  299.788508][T14980]  </TASK>
[  299.928684][T14979] ==================================================================
[  299.932268][T14979] BUG: KASAN: slab-use-after-free in qfq_reset_qdisc+0x323/0x420
[  299.935437][T14979] Read of size 8 at addr ffff88806924ec50 by task syz.3.2935/14979
[  299.941127][T14979] 
[  299.942701][T14979] CPU: 2 UID: 0 PID: 14979 Comm: syz.3.2935 Not tainted syzkaller #0 PREEMPT(full) 
[  299.942728][T14979] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  299.942740][T14979] Call Trace:
[  299.942747][T14979]  <TASK>
[  299.942755][T14979]  dump_stack_lvl+0x116/0x1f0
[  299.942796][T14979]  print_report+0xcd/0x630
[  299.942825][T14979]  ? __virt_addr_valid+0x81/0x610
[  299.942853][T14979]  ? __phys_addr+0xe8/0x180
[  299.942881][T14979]  ? qfq_reset_qdisc+0x323/0x420
[  299.942906][T14979]  kasan_report+0xe0/0x110
[  299.942933][T14979]  ? qfq_reset_qdisc+0x323/0x420
[  299.942961][T14979]  qfq_reset_qdisc+0x323/0x420
[  299.942988][T14979]  ? synchronize_rcu_expedited+0x3b9/0x460
[  299.943008][T14979]  ? __pfx_qfq_reset_qdisc+0x10/0x10
[  299.943035][T14979]  qdisc_reset+0xe0/0x630
[  299.943057][T14979]  __qdisc_destroy+0xd3/0x4a0
[  299.943077][T14979]  qdisc_put+0xab/0xe0
[  299.943096][T14979]  dev_shutdown+0x1d0/0x430
[  299.943120][T14979]  unregister_netdevice_many_notify+0xb37/0x2590
[  299.943149][T14979]  ? do_raw_spin_unlock+0x172/0x230
[  299.943172][T14979]  ? ref_tracker_alloc+0x305/0x5b0
[  299.943194][T14979]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  299.943220][T14979]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  299.943241][T14979]  ? linkwatch_fire_event+0x20c/0x270
[  299.943257][T14979]  ? netif_carrier_off+0xa3/0xc0
[  299.943280][T14979]  unregister_netdevice_queue+0x305/0x3c0
[  299.943307][T14979]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  299.943332][T14979]  ? linkwatch_schedule_work+0x181/0x1c0
[  299.943350][T14979]  ? linkwatch_fire_event+0x6f/0x270
[  299.943369][T14979]  __tun_detach+0x119c/0x1490
[  299.943390][T14979]  ? __pfx_tun_chr_close+0x10/0x10
[  299.943407][T14979]  tun_chr_close+0xc2/0x230
[  299.943423][T14979]  __fput+0x402/0xb70
[  299.943443][T14979]  task_work_run+0x150/0x240
[  299.943463][T14979]  ? __pfx_task_work_run+0x10/0x10
[  299.943482][T14979]  ? __do_sys_close_range+0x278/0x730
[  299.943513][T14979]  exit_to_user_mode_loop+0xfb/0x540
[  299.943536][T14979]  __do_fast_syscall_32+0x4a4/0x680
[  299.943566][T14979]  do_fast_syscall_32+0x32/0x80
[  299.943582][T14979]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  299.943606][T14979] RIP: 0023:0xf7f54579
[  299.943620][T14979] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  299.943637][T14979] RSP: 002b:00000000ffb1290c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4
[  299.943655][T14979] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e
[  299.943666][T14979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  299.943676][T14979] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  299.943686][T14979] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  299.943697][T14979] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  299.943714][T14979]  </TASK>
[  299.943721][T14979] 
[  300.071297][T14979] Allocated by task 14980:
[  300.073521][T14979]  kasan_save_stack+0x33/0x60
[  300.075884][T14979]  kasan_save_track+0x14/0x30
[  300.077906][T14979]  __kasan_kmalloc+0xaa/0xb0
[  300.080016][T14979]  qfq_change_class+0x2ba/0x1da0
[  300.082253][T14979]  tc_ctl_tclass+0x59d/0x16c0
[  300.084541][T14979]  rtnetlink_rcv_msg+0x3c9/0xe90
[  300.086740][T14979]  netlink_rcv_skb+0x158/0x420
[  300.089012][T14979]  netlink_unicast+0x5aa/0x870
[  300.091631][T14979]  netlink_sendmsg+0x8c8/0xdd0
[  300.094035][T14979]  ____sys_sendmsg+0xa5d/0xc30
[  300.096312][T14979]  ___sys_sendmsg+0x134/0x1d0
[  300.098392][T14979]  __sys_sendmsg+0x16d/0x220
[  300.100541][T14979]  __do_fast_syscall_32+0xe8/0x680
[  300.102795][T14979]  do_fast_syscall_32+0x32/0x80
[  300.104917][T14979]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  300.107986][T14979] 
[  300.109045][T14979] Freed by task 14980:
[  300.110830][T14979]  kasan_save_stack+0x33/0x60
[  300.113151][T14979]  kasan_save_track+0x14/0x30
[  300.115549][T14979]  kasan_save_free_info+0x3b/0x60
[  300.117812][T14979]  __kasan_slab_free+0x5f/0x80
[  300.119936][T14979]  kfree+0x2f8/0x6e0
[  300.121645][T14979]  qfq_change_class+0x1576/0x1da0
[  300.123969][T14979]  tc_ctl_tclass+0x59d/0x16c0
[  300.126148][T14979]  rtnetlink_rcv_msg+0x3c9/0xe90
[  300.128605][T14979]  netlink_rcv_skb+0x158/0x420
[  300.131011][T14979]  netlink_unicast+0x5aa/0x870
[  300.133236][T14979]  netlink_sendmsg+0x8c8/0xdd0
[  300.135378][T14979]  ____sys_sendmsg+0xa5d/0xc30
[  300.137446][T14979]  ___sys_sendmsg+0x134/0x1d0
[  300.139896][T14979]  __sys_sendmsg+0x16d/0x220
[  300.141885][T14979]  __do_fast_syscall_32+0xe8/0x680
[  300.144396][T14979]  do_fast_syscall_32+0x32/0x80
[  300.146748][T14979]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  300.149624][T14979] 
[  300.150767][T14979] The buggy address belongs to the object at ffff88806924ec00
[  300.150767][T14979]  which belongs to the cache kmalloc-128 of size 128
[  300.157294][T14979] The buggy address is located 80 bytes inside of
[  300.157294][T14979]  freed 128-byte region [ffff88806924ec00, ffff88806924ec80)
[  300.163847][T14979] 
[  300.164932][T14979] The buggy address belongs to the physical page:
[  300.168241][T14979] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6924e
[  300.172250][T14979] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  300.175319][T14979] page_type: f5(slab)
[  300.177128][T14979] raw: 04fff00000000000 ffff88801b442a00 dead000000000100 dead000000000122
[  300.181290][T14979] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  300.185472][T14979] page dumped because: kasan: bad access detected
[  300.188560][T14979] page_owner tracks the page as allocated
[  300.191110][T14979] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1141, tgid 1141 (kworker/u32:7), ts 65509047769, free_ts 65500547649
[  300.199431][T14979]  post_alloc_hook+0x1af/0x220
[  300.201583][T14979]  get_page_from_freelist+0xd0b/0x31a0
[  300.204319][T14979]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  300.206929][T14979]  alloc_pages_mpol+0x1fb/0x550
[  300.209098][T14979]  new_slab+0x2c3/0x430
[  300.210871][T14979]  ___slab_alloc+0xe18/0x1c90
[  300.212881][T14979]  __slab_alloc.constprop.0+0x63/0x110
[  300.215180][T14979]  __kmalloc_cache_noprof+0x485/0x800
[  300.217457][T14979]  __hw_addr_add_ex+0x3c9/0x7c0
[  300.219866][T14979]  dev_mc_add+0xb6/0x110
[  300.221889][T14979]  igmp6_group_added+0x3e4/0x4c0
[  300.224299][T14979]  __ipv6_dev_mc_inc+0x6f9/0xbc0
[  300.226451][T14979]  addrconf_dad_work+0x28c/0x14f0
[  300.228716][T14979]  process_one_work+0x9ba/0x1b20
[  300.230878][T14979]  worker_thread+0x6c8/0xf10
[  300.232882][T14979]  kthread+0x3c5/0x780
[  300.234657][T14979] page last free pid 24 tgid 24 stack trace:
[  300.237239][T14979]  __free_frozen_pages+0x7df/0x1170
[  300.239542][T14979]  vfree+0x1fd/0xb50
[  300.241603][T14979]  delayed_vfree_work+0x56/0x70
[  300.243994][T14979]  process_one_work+0x9ba/0x1b20
[  300.246370][T14979]  worker_thread+0x6c8/0xf10
[  300.248525][T14979]  kthread+0x3c5/0x780
[  300.250278][T14979]  ret_from_fork+0x983/0xb10
[  300.252274][T14979]  ret_from_fork_asm+0x1a/0x30
[  300.254393][T14979] 
[  300.255676][T14979] Memory state around the buggy address:
[  300.258692][T14979]  ffff88806924eb00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  300.263070][T14979]  ffff88806924eb80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  300.266908][T14979] >ffff88806924ec00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  300.270486][T14979]                                                  ^
[  300.273570][T14979]  ffff88806924ec80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  300.277105][T14979]  ffff88806924ed00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  300.280503][T14979] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  300.314713][T14979] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  300.317682][T14979] CPU: 2 UID: 0 PID: 14979 Comm: syz.3.2935 Not tainted syzkaller #0 PREEMPT(full) 
[  300.321737][T14979] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  300.326748][T14979] Call Trace:
[  300.328168][T14979]  <TASK>
[  300.329398][T14979]  dump_stack_lvl+0x3d/0x1f0
[  300.331465][T14979]  vpanic+0x640/0x6f0
[  300.333167][T14979]  panic+0xca/0xd0
[  300.334771][T14979]  ? __pfx_panic+0x10/0x10
[  300.336671][T14979]  ? qfq_reset_qdisc+0x323/0x420
[  300.339086][T14979]  ? preempt_schedule_common+0x44/0xc0
[  300.341727][T14979]  ? preempt_schedule_thunk+0x16/0x30
[  300.344009][T14979]  ? check_panic_on_warn+0x1f/0xb0
[  300.346192][T14979]  check_panic_on_warn+0xab/0xb0
[  300.348473][T14979]  end_report+0x107/0x160
[  300.350383][T14979]  kasan_report+0xee/0x110
[  300.352292][T14979]  ? qfq_reset_qdisc+0x323/0x420
[  300.354550][T14979]  qfq_reset_qdisc+0x323/0x420
[  300.356801][T14979]  ? synchronize_rcu_expedited+0x3b9/0x460
[  300.359509][T14979]  ? __pfx_qfq_reset_qdisc+0x10/0x10
[  300.361978][T14979]  qdisc_reset+0xe0/0x630
[  300.363814][T14979]  __qdisc_destroy+0xd3/0x4a0
[  300.365850][T14979]  qdisc_put+0xab/0xe0
[  300.367605][T14979]  dev_shutdown+0x1d0/0x430
[  300.369636][T14979]  unregister_netdevice_many_notify+0xb37/0x2590
[  300.372379][T14979]  ? do_raw_spin_unlock+0x172/0x230
[  300.374788][T14979]  ? ref_tracker_alloc+0x305/0x5b0
[  300.377185][T14979]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  300.380525][T14979]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  300.382812][T14979]  ? linkwatch_fire_event+0x20c/0x270
[  300.385131][T14979]  ? netif_carrier_off+0xa3/0xc0
[  300.387378][T14979]  unregister_netdevice_queue+0x305/0x3c0
[  300.389882][T14979]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  300.392722][T14979]  ? linkwatch_schedule_work+0x181/0x1c0
[  300.395252][T14979]  ? linkwatch_fire_event+0x6f/0x270
[  300.397524][T14979]  __tun_detach+0x119c/0x1490
[  300.399603][T14979]  ? __pfx_tun_chr_close+0x10/0x10
[  300.401558][T14979]  tun_chr_close+0xc2/0x230
[  300.403351][T14979]  __fput+0x402/0xb70
[  300.404927][T14979]  task_work_run+0x150/0x240
[  300.406720][T14979]  ? __pfx_task_work_run+0x10/0x10
[  300.408976][T14979]  ? __do_sys_close_range+0x278/0x730
[  300.411085][T14979]  exit_to_user_mode_loop+0xfb/0x540
[  300.413162][T14979]  __do_fast_syscall_32+0x4a4/0x680
[  300.415393][T14979]  do_fast_syscall_32+0x32/0x80
[  300.417572][T14979]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  300.420893][T14979] RIP: 0023:0xf7f54579
[  300.422974][T14979] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  300.432495][T14979] RSP: 002b:00000000ffb1290c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4
[  300.436191][T14979] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e
[  300.439787][T14979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  300.443513][T14979] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  300.447029][T14979] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  300.450446][T14979] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  300.453876][T14979]  </TASK>
[  300.456263][T14979] Kernel Offset: disabled
[  300.458213][T14979] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:32:49  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc90002f6fb40 RCX=0000000000000000 RDX=0000000000000000
RSI=ffffffff84dfcf64 RDI=ffffc90002f6fb40 RBP=ffffffff84dfcf50 RSP=ffffc90000007d60
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000000 R13=dffffc0000000000 R14=0000000000000000 R15=ffffc90002f6fb08
RIP=ffffffff84dfcf8d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880976fc000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f5445fac CR3=00000000559c6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000001000008fb RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000001
RSI=00000000000000fb RDI=0000000000000001 RBP=ffffc90002f6fb00 RSP=ffffc90002f6f9e0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffff888024d02ff0
R12=0000000000000000 R13=1ffff920005edf3f R14=1ffff920005edf01 R15=0000000000000000
RIP=ffffffff816afd58 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977fc000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f0436c1a6b0 CR3=000000006cbf1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020000002 Opmask01=0000000000000001 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0436e2b8f0 00007f0436e2b310
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0436dec050 00007f0436deb0c0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0436dec580 00007f0436debb20
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0436aee0c0 00007f0436decab0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0436e2ada0 00007f0436deb5f0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0436aee6b0 00007f0436aee0c0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0436decab0 00007f0436dec580
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0436debb20 00007f0436dec050
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e75006465696669 63657073206e6f69 74706f20676e6f6c 207974706d65000a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 636572696420746f 6f722065676e6168 632074276e616300 7269646863660027
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4640574c4105514a 4a570540424b444d 460551024b444600 574c414d46430002
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85302df5 RDI=ffffffff9aed92a0 RBP=ffffffff9aed9260 RSP=ffffc9000ee17428
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3630383838666666
R12=0000000000000000 R13=000000000000002f R14=ffffffff9aed9260 R15=ffffffff85302d90
RIP=ffffffff85302e1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978fc000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f546bda4 CR3=000000002ed04000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000fc00000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000002dc4b3 RBX=0000000000000003 RCX=ffffffff8b7596d9 RDX=0000000000000000
RSI=ffffffff8dacaa85 RDI=ffffffff8bf2b500 RBP=ffffed1003b51000 RSP=ffffc9000048fde8
R8 =0000000000000001 R9 =ffffed10056a673d R10=ffff88802b5339eb R11=ffff88801da88b30
R12=0000000000000003 R13=ffff88801da88000 R14=ffffffff9088ebd0 R15=0000000000000000
RIP=ffffffff8b757dcf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979fc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f746b4c4e9c CR3=000000000e184000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000