last executing test programs:

16m13.583726442s ago: executing program 1 (id=907):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
migrate_pages(0x0, 0x5, &(0x7f0000000000)=0x9, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
close(0xffffffffffffffff)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r2 = socket$igmp(0x2, 0x3, 0x2)
listen(r2, 0x82)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x8}]}]}]}, 0x2c}}, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c000180060006006558000008000280040011"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
write(r3, &(0x7f00000002c0)="240000001a005f0214f9d4010400000004000000000000000009000000000400012a46cdd3", 0x25)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
socket$alg(0x26, 0x5, 0x0)
io_setup(0x239f, &(0x7f0000000380))
eventfd2(0x5, 0x1)
dup(r0)

16m12.429431904s ago: executing program 1 (id=910):
r0 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @mcast1={0xff, 0x2}}, @IFA_FLAGS={0x8, 0x8, 0x702}]}, 0x34}}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) (fail_nth: 3)

16m12.205194883s ago: executing program 1 (id=911):
socket$inet(0x2, 0x1, 0x100)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000a00)=0x2)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_usb_connect(0x3, 0x3d, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
read$char_usb(r1, &(0x7f00000002c0)=""/151, 0x97)
syz_usb_disconnect(r0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000003640)=[{{&(0x7f0000000180)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f00000009c0)=[{&(0x7f0000000500)="667f73c864e9d738736fe5c0215f300b290c0e31e588bc897de159647e4e18565c3274efd7183c9b5998310c367fbbe5371c792389dda7c9c289a1b840346788a01e4b57c6a951ba0172b41ffd6f2d78efa1626430b7cbd681f5e9db9b21e89c7998881fed47be819242221c29a980af3db5484df9279dd03c0307", 0x7b}, {&(0x7f0000000b80)="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", 0xf80}, {0x0}, {&(0x7f0000000680)="ab586e5b492183d9f4bf6084efe990af4d429306df426722bf53140be98a", 0x1e}], 0x4, &(0x7f0000001b80)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000b93cc2698c37a7630e015ba70ad5320169242b9cfbbaee0a64d3d968e6af4b7dfd50ad0fe0f224439a82a3a7d8ba45bd068854337eb7213b3a9d1488cd5933023a1fb5698677252e530b745a13809e2818dce97e5d564d8f40f73246486e0d128e49a51e9e03dbb2a85b7c339cfc29ddc05821cb0b21dbf3b145442a246665c6cbdea8cc0faac603d0697744c63c2d7c52a88ccb08767d3fcbb6c0966eda7b680fe8e570bd22c26ef5885311328ee450bf92f294a6bf34660a27487bffbc8ca141f2362fe8fc50ec3b9890e768015672cadf74ef120f7bed07607b86563dbc1d3d18814bf679dad2", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000001000000", @ANYRES32=r3, @ANYRES32, @ANYRES32=r4, @ANYBLOB="180000000100000002000000", @ANYRES32, @ANYRES32, @ANYRES32=0x0], 0x78, 0x1084}}, {{&(0x7f0000001f80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000003240)=[{&(0x7f0000002000)="61fc2629c0fbf75486e6dc07934d689e37e6916ba55a3f88bc484eb67f9188985f863b696580f64a358c4e2eac41992e4f9069769329fb78bf35e07ab9dcbf4b743a5458980d92b8fbf7282c631456fa08009b7ecc785cb6be796a99977c96877bfc48666c7fef32fb1720a44693ab6be5a4008d3797", 0x76}, {&(0x7f0000002100)="cdc9849aa7a5c435a977bd1a9318b1909eaa8686208b6a69f5bc3b9b97d1b6e3522771ff9b2895f369ea9c57af096e115cac50a1ff2bfe3d3d7e441a7a4345947eb50c2597996a0e7bc7ba24e6ade1ec90a9794c9ae5e881ff7861e9f1feb40452ee83e79daafacaba32c0d274451b6951aa403d", 0x74}, {&(0x7f0000002180)="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", 0x1000}, {&(0x7f0000003180)="2547a7f4a4c881095bbbcf8405f3fcdb62cd46fe44a64b46549693e2fb518984ef5b52655f797ce0e5bb924b0d62a1a1b670c9608f4b796ee7983bae6a9081dbd48af98cdb92f85b648c0c9c54e00606c3c5d4b300b477e9323a099930d7623dbb876f6d", 0x64}], 0x4, &(0x7f0000003280)=[@cred={{0x18}}], 0x18}}], 0x2, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
ptrace$PTRACE_SETSIGMASK(0x420b, 0x0, 0x8, &(0x7f0000000000)={[0x9, 0x80000001]})
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
tkill(0x0, 0xb)

16m8.874483883s ago: executing program 1 (id=920):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'team_slave_0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x5c, r4, 0x1, 0x0, 0x0, {0x1, 0x6c00000000000000}, [{{0x8, 0x1, r3}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x9}, {0x4}}, {0x8, 0x6, r1}}}]}}]}, 0x5c}, 0x1, 0xf000}, 0x0) (fail_nth: 3)

16m8.638118427s ago: executing program 1 (id=921):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmmsg$inet(r0, &(0x7f00000053c0)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)='\b\x00\x00\x00(', 0x5}], 0x1}}], 0x1, 0x4800)
close(0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x24000805}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sendmsg$NFNL_MSG_ACCT_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x1, 0x7, 0x7, 0x0, 0x0, {0x1, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x48801}, 0x20004000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=@gettaction={0x94, 0x32, 0x4, 0x70bd2d, 0x25dfdbfc, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x40, 0x1, [{0xc, 0x10, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xc}}, {0x10, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0x14, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1, 0x1}}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x800}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc}, @action_gd=@TCA_ACT_TAB={0x4}, @action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0xe, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000001880)={'wg0\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)={0x38, r7, 0xa29, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000000200)={0x0, 0x3f00, &(0x7f00000001c0)={&(0x7f0000000300)={0x40, r7, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r6}]}, 0x40}}, 0x0)

16m5.74510514s ago: executing program 1 (id=927):
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = shmget$private(0x0, 0x400000, 0x40, &(0x7f000000e000/0x400000)=nil)
shmat(r1, &(0x7f0000fed000/0x3000)=nil, 0x400c)
mremap(&(0x7f00003df000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f0000000080)={r3})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1, 0x0, 0x2})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_migrate_pages_start\x00', r7, 0x0, 0x4}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
r8 = syz_genetlink_get_family_id$smc(&(0x7f0000001980), 0xffffffffffffffff)
r9 = signalfd(r3, &(0x7f0000000240)={[0x4]}, 0x8)
sendmsg$NFULNL_MSG_CONFIG(r9, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, 0x1, 0x4, 0x101, 0x0, 0x0, {0x5, 0x0, 0x1}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
sendmsg$SMC_PNETID_ADD(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x28, r8, 0x1, 0x70bd25, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'lo\x00'}]}, 0x28}}, 0x4000800)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000140)={0x6, 0x1, 0x1, 0x0, 0x3})
ioctl$vim2m_VIDIOC_STREAMOFF(r5, 0x40045612, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r5, 0x40045612, &(0x7f0000000080)=0x2)
ioctl$vim2m_VIDIOC_QBUF(r5, 0xc058560f, &(0x7f0000000180)=@mmap={0x1, 0x1, 0x4, 0x8, 0x81, {}, {0x4, 0x8, 0x8, 0x5, 0x29, 0x9, "0adb3fb8"}, 0x5, 0x1, {}, 0x0, 0x0, <r10=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_DQBUF(r5, 0xc0585611, &(0x7f0000000340)=@multiplanar_userptr={0x0, 0x1, 0x4, 0x1, 0x3, {}, {0x3, 0x8, 0x5, 0x55, 0x3, 0x87, "000005b5"}, 0x7, 0x2, {&(0x7f00000002c0)=[{0x9, 0x6, {0x0}, 0x9}, {0x5, 0x1bb, {0x0}, 0x8}]}, 0x7f, 0x0, r10})
accept4$inet6(r2, 0x0, &(0x7f00000003c0), 0x800)

15m50.602511615s ago: executing program 32 (id=927):
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = shmget$private(0x0, 0x400000, 0x40, &(0x7f000000e000/0x400000)=nil)
shmat(r1, &(0x7f0000fed000/0x3000)=nil, 0x400c)
mremap(&(0x7f00003df000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f0000000080)={r3})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1, 0x0, 0x2})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_migrate_pages_start\x00', r7, 0x0, 0x4}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
r8 = syz_genetlink_get_family_id$smc(&(0x7f0000001980), 0xffffffffffffffff)
r9 = signalfd(r3, &(0x7f0000000240)={[0x4]}, 0x8)
sendmsg$NFULNL_MSG_CONFIG(r9, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, 0x1, 0x4, 0x101, 0x0, 0x0, {0x5, 0x0, 0x1}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
sendmsg$SMC_PNETID_ADD(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x28, r8, 0x1, 0x70bd25, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'lo\x00'}]}, 0x28}}, 0x4000800)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000140)={0x6, 0x1, 0x1, 0x0, 0x3})
ioctl$vim2m_VIDIOC_STREAMOFF(r5, 0x40045612, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r5, 0x40045612, &(0x7f0000000080)=0x2)
ioctl$vim2m_VIDIOC_QBUF(r5, 0xc058560f, &(0x7f0000000180)=@mmap={0x1, 0x1, 0x4, 0x8, 0x81, {}, {0x4, 0x8, 0x8, 0x5, 0x29, 0x9, "0adb3fb8"}, 0x5, 0x1, {}, 0x0, 0x0, <r10=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_DQBUF(r5, 0xc0585611, &(0x7f0000000340)=@multiplanar_userptr={0x0, 0x1, 0x4, 0x1, 0x3, {}, {0x3, 0x8, 0x5, 0x55, 0x3, 0x87, "000005b5"}, 0x7, 0x2, {&(0x7f00000002c0)=[{0x9, 0x6, {0x0}, 0x9}, {0x5, 0x1bb, {0x0}, 0x8}]}, 0x7f, 0x0, r10})
accept4$inet6(r2, 0x0, &(0x7f00000003c0), 0x800)

38.238167415s ago: executing program 3 (id=4199):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, 0x0)
pwritev(r0, &(0x7f0000000200)=[{&(0x7f0000001380)="717ad08c8bcc77a18bd9a49a81081d9254d028aee3d9c94cf48309fe713ed78a75979c8555e752fa873444d1e4d479c803f2edd22e6324922fc126c6baf93d333951f69cfcdf765a50e10f65f6991e0842d9f05602d59d7f6ecc442c963c72bffffcddd9684b5b18913360", 0x6b}, {&(0x7f0000000100)}, {0x0}, {&(0x7f0000001580)="81d66719d9b6d07ce5c99c055ea586ee15438bd6c78fe3c25dc3721930b5c63e48d718c6870d4d8b9f6bada63e927c51e1700c722c67c50efb0a7b07492f7313f6391f36656b77300e6e664fb8590184a604d4357fb4c3eeacc9fe0117e6c0cc3d0cb15addc07eb5546568df91121ff57e1c0b76718d4e347ec687addeae4be0b9c1038187262357d02857029abfc2197f363f7a45f7cad6e4069feaa094ffc0bba9d27b", 0xa4}], 0x4, 0x3, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = openat$nmem0(0xffffff9c, 0x0, 0x80000, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f000086b000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[@dstype3], 0x1)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0xec, 0x1c, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x2, 0x0, 0x0, 0x0, 0x32}, {@in6=@loopback, 0x0, 0x6c}, @in=@empty=0x2000, {0x0, 0x192, 0x9ba3, 0xffff, 0x251c, 0x3, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x21, 0x4}, {0xffffffff}, 0x80, 0x3502, 0x2, 0x1}}, 0xec}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
dup(0xffffffffffffffff)
syz_io_uring_setup(0x5259, &(0x7f0000000140)={0x0, 0x5885, 0x0, 0xfffffffc, 0x386}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, 0x0, 0x0, 0x4)
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
write$UHID_CREATE(r6, &(0x7f0000000240)={0x0, {'syz0\x00', 'syz1\x00', 'syz1\x00', &(0x7f0000000180)=""/3, 0x3, 0x0, 0x7fffffff, 0x0, 0x0, 0xc07}}, 0x120)
write$UHID_DESTROY(r6, 0x0, 0x0)
readv(r6, &(0x7f0000002600)=[{0x0}], 0x1)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
setresuid(0x0, 0xee01, 0xee00)
setrlimit(0x40000000000008, &(0x7f0000000000)={0x2, 0x8d96})
r7 = shmget$private(0x0, 0x3000, 0x40, &(0x7f0000877000/0x3000)=nil)
syz_emit_ethernet(0x0, 0x0, 0x0)
shmctl$SHM_LOCK(r7, 0xb)
socket$tipc(0x1e, 0x2, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)

38.168701339s ago: executing program 3 (id=4201):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/resume', 0x141a82, 0x0)
syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100), &(0x7f00000007c0))
socket(0x10, 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mknod$loop(&(0x7f00000190c0)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000019100)='./file0\x00', 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040))
syz_open_procfs(0xffffffffffffffff, &(0x7f0000002f00)='fdinfo\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26})
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0x0, 0x80600})
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r4, 0x1, 0x19, 0x0, 0x0)
sendto$inet(r4, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)

36.904354938s ago: executing program 3 (id=4205):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c00000018fffe002cbd701402fe00fd040013000000000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0xc0)
socket$inet(0x2, 0x1, 0x100)
socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffc3b}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8937, &(0x7f0000000000)={'dummy0\x00', @random="0100002010ff"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r7 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
tkill(r7, 0xb)
utimensat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x0, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r8, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)

35.989867892s ago: executing program 3 (id=4212):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
r4 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)={0x38, 0x1403, 0x1, 0x70bd2d, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x880)
connect$inet(r3, &(0x7f0000001980)={0x2, 0x1, @loopback}, 0x10)
r5 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f0000000000)=0x655e, 0x4)
r6 = dup2(r5, r5)
write$tun(r6, &(0x7f0000000180)=ANY=[@ANYRES64, @ANYRESHEX=r0], 0x46)
recvmmsg(r6, 0x0, 0x0, 0x2000, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r7)
sendmsg$NLBL_CIPSOV4_C_ADD(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x50, r8, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x2c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x50}}, 0x0)
syz_io_uring_setup(0x466, &(0x7f0000000440)={0x0, 0x86ed, 0x80, 0x2, 0x804}, &(0x7f0000000280), &(0x7f0000000040))

35.042379121s ago: executing program 3 (id=4216):
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0) (fail_nth: 3)

34.631349501s ago: executing program 3 (id=4221):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, 0x0, r0, 0x0, 0x156)
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYRES32=r1], 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
getrusage(0x0, 0x0)
r4 = dup(r3)
mount$afs(&(0x7f00000006c0), &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000800), 0x420aa, &(0x7f0000001000)={[{@flock_openafs}, {@flock_openafs}], [{@fsuuid={'fsuuid', 0x3d, {[0x66, 0xe, 0x33, 0x37, 0x39, 0x33, 0x65, 0x35], 0x2d, [0x33, 0x61, 0x38, 0x31], 0x2d, [0x61, 0x34, 0x0, 0x33], 0x2d, [0x36, 0x65, 0x64, 0x31], 0x2d, [0x32, 0x66, 0x31, 0x39, 0x2, 0x58, 0x64, 0x31]}}}, {@fowner_lt}, {@euid_eq}, {@subj_role}, {@euid_lt}, {@appraise}, {@seclabel}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}]})
write$6lowpan_enable(r4, 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'sit0\x00', <r5=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c00)=@delchain={0x2d4, 0x65, 0x10, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x9, 0x5}, {0x6, 0xc}, {0xa, 0x6}}, [@filter_kind_options=@f_route={{0xa}, {0x2a4, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0xfff2, 0x3}}, @TCA_ROUTE4_ACT={0x4}, @TCA_ROUTE4_ACT={0x294, 0x6, [@m_vlan={0x94, 0x1c, 0x0, 0x0, {{0x9}, {0x24, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x3}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x100}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x8100}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}]}, {0x45, 0x6, "7179ae641e69ccc5b50838544b1b1a16d4533d41e15e0079ee1b6a00499a8ff22c31a3e01f626dcf377d299717c45643d213eb02e6b932163b4333fc1efcdae272"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0x1fc, 0x1a, 0x0, 0x0, {{0x8}, {0x148, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_OPS_LEN={0x6}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1, 0x4, 0x3, 0x7, 0x4}}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x2}, @TCA_ACT_BPF_NAME={0xfd, 0x6, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'}]}, {0x8f, 0x6, "d2d47a9bcb080c2e7af2b2b30bb0def6c0b580a0f98278ce6b2d5f7b7dd1d26b946b5e37d7c3cc7b2f31e8a707072250a0af7fd0cda2ebe2a829e60768a5c2e1181b9e9e14ce639fb4d0560a59aab3c455214f6a92d37a5d920ad9ebf69430ece8966e47b9b96084eaae374a2ac235043eef558dfa8f2f62595729e402ea8fe97097f9c55bfe68d471408e"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x2d4}, 0x1, 0x0, 0x0, 0x10}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x11, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000030000000000000010d0000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000100b7030000000000008500000083000000bf09000000000000550901000000000095000000000000001850001f77544b0000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000180)='syzkaller\x00', 0x3, 0xad, &(0x7f00000003c0)=""/173, 0x40f00, 0x6, '\x00', r5, 0x0, r0, 0x8, &(0x7f00000001c0)={0x1, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000480)=[r2, r4, r2, r4, r2], &(0x7f00000004c0)=[{0x2, 0x3, 0x4, 0x9}, {0x0, 0x2, 0x3, 0xc}, {0x0, 0x2, 0x8, 0x5}], 0x10, 0x5}, 0x94)
r6 = socket$inet6(0xa, 0x3, 0x8)
connect$inet6(r6, 0x0, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r6, 0x29, 0x3b, &(0x7f0000000080)=ANY=[@ANYRESOCT=r6], 0xd8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
socket(0x2, 0x803, 0x38)
fsopen(&(0x7f0000000300)='jfs\x00', 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r7, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r7, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)

18.57774803s ago: executing program 33 (id=4221):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, 0x0, r0, 0x0, 0x156)
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYRES32=r1], 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
getrusage(0x0, 0x0)
r4 = dup(r3)
mount$afs(&(0x7f00000006c0), &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000800), 0x420aa, &(0x7f0000001000)={[{@flock_openafs}, {@flock_openafs}], [{@fsuuid={'fsuuid', 0x3d, {[0x66, 0xe, 0x33, 0x37, 0x39, 0x33, 0x65, 0x35], 0x2d, [0x33, 0x61, 0x38, 0x31], 0x2d, [0x61, 0x34, 0x0, 0x33], 0x2d, [0x36, 0x65, 0x64, 0x31], 0x2d, [0x32, 0x66, 0x31, 0x39, 0x2, 0x58, 0x64, 0x31]}}}, {@fowner_lt}, {@euid_eq}, {@subj_role}, {@euid_lt}, {@appraise}, {@seclabel}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}]})
write$6lowpan_enable(r4, 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'sit0\x00', <r5=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c00)=@delchain={0x2d4, 0x65, 0x10, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0x9, 0x5}, {0x6, 0xc}, {0xa, 0x6}}, [@filter_kind_options=@f_route={{0xa}, {0x2a4, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0xfff2, 0x3}}, @TCA_ROUTE4_ACT={0x4}, @TCA_ROUTE4_ACT={0x294, 0x6, [@m_vlan={0x94, 0x1c, 0x0, 0x0, {{0x9}, {0x24, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x3}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x100}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x8100}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}]}, {0x45, 0x6, "7179ae641e69ccc5b50838544b1b1a16d4533d41e15e0079ee1b6a00499a8ff22c31a3e01f626dcf377d299717c45643d213eb02e6b932163b4333fc1efcdae272"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0x1fc, 0x1a, 0x0, 0x0, {{0x8}, {0x148, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_OPS_LEN={0x6}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1, 0x4, 0x3, 0x7, 0x4}}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x2}, @TCA_ACT_BPF_NAME={0xfd, 0x6, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'}]}, {0x8f, 0x6, "d2d47a9bcb080c2e7af2b2b30bb0def6c0b580a0f98278ce6b2d5f7b7dd1d26b946b5e37d7c3cc7b2f31e8a707072250a0af7fd0cda2ebe2a829e60768a5c2e1181b9e9e14ce639fb4d0560a59aab3c455214f6a92d37a5d920ad9ebf69430ece8966e47b9b96084eaae374a2ac235043eef558dfa8f2f62595729e402ea8fe97097f9c55bfe68d471408e"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x2d4}, 0x1, 0x0, 0x0, 0x10}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x11, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000030000000000000010d0000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000100b7030000000000008500000083000000bf09000000000000550901000000000095000000000000001850001f77544b0000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000180)='syzkaller\x00', 0x3, 0xad, &(0x7f00000003c0)=""/173, 0x40f00, 0x6, '\x00', r5, 0x0, r0, 0x8, &(0x7f00000001c0)={0x1, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000480)=[r2, r4, r2, r4, r2], &(0x7f00000004c0)=[{0x2, 0x3, 0x4, 0x9}, {0x0, 0x2, 0x3, 0xc}, {0x0, 0x2, 0x8, 0x5}], 0x10, 0x5}, 0x94)
r6 = socket$inet6(0xa, 0x3, 0x8)
connect$inet6(r6, 0x0, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r6, 0x29, 0x3b, &(0x7f0000000080)=ANY=[@ANYRESOCT=r6], 0xd8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
socket(0x2, 0x803, 0x38)
fsopen(&(0x7f0000000300)='jfs\x00', 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r7, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r7, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)

7.97776949s ago: executing program 4 (id=4304):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000340), 0x1c9243, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r1, &(0x7f0000000040)=[{&(0x7f0000000440)=""/233, 0xe9}], 0x1, 0xfff, 0x0)

7.100694223s ago: executing program 4 (id=4308):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x3, [@float={0xf, 0x0, 0x0, 0x10, 0x10}, @restrict={0x9, 0x0, 0x0, 0xb, 0x1}, @var={0x1, 0x0, 0x0, 0xe, 0x5, 0x1}, @float={0xe, 0x0, 0x0, 0x10, 0x8}, @volatile={0x5}]}, {0x0, [0x5f]}}, &(0x7f00000005c0)=""/78, 0x5b, 0x4e, 0x0, 0x6, 0x10000}, 0x28)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRES8=r0], &(0x7f0000000200)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0xfffffffd, {}, [{0x90, 0x1, [@m_ct={0x44, 0x5, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x10e, &(0x7f00000004c0)={0x0, 0x310, 0x4000, 0xffffffff, 0x10b}, &(0x7f0000000340), 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x6)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b000000000000000000000000000400000000", @ANYRES32=0x0, @ANYBLOB="010000ff00"/20, @ANYRES32=0x0, @ANYRES32=r2, @ANYBLOB='\x00'/25], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x7, 0xf, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000d000000000000002564000000001811", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bc09080000000000b60a0100000000000f000000000000003f93000000000000b5030000000000008500000076000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2(&(0x7f0000000480), 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r6 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000300)='source', &(0x7f00000000c0)='%(,:', 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
mkdir(&(0x7f0000000400)='./file1/file0\x00', 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000200)='./file1/file0\x00', &(0x7f0000000140), &(0x7f0000000240)='./file0\x00', 0x8, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')

6.097834526s ago: executing program 4 (id=4317):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0xb8, &(0x7f0000000140), 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)}], 0x1, 0x2040801)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={0x0}}, 0x80)
r3 = openat$cdrom(0xffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
readv(r3, &(0x7f0000000380)=[{&(0x7f0000000200)=""/195, 0xc3}], 0x1)
ioctl$CDROMRESET(r3, 0x5312)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f0000000000)={0x3, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f0000001040)={0x3, {{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x22}}}}, 0x84)
setsockopt$inet_MCAST_MSFILTER(r4, 0x0, 0x30, &(0x7f0000001140)={0x3, {{0x2, 0x4e23, @multicast2}}}, 0x90)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='gid_map\x00')
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYRES32=r8, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002"], 0x44}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x2c, 0x11, 0x1, 0x2000000, 0xffffffff, {0x0, 0x0, 0x0, r8, {}, {}, {0xfff3}}, [{0x8, 0xb, 0x200}]}, 0x2c}}, 0x0)
openat(r5, &(0x7f0000000180)='./file0\x00', 0x11800, 0x24)
ioctl$BSG_GET_RESERVED_SIZE(r5, 0x2272, &(0x7f00000003c0))
sendmsg$key(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000013c0)={0x2, 0xe, 0x7, 0x9, 0x181, 0x0, 0x70bd25, 0x25dfdbff, [@sadb_x_sec_ctx={0x17f, 0x18, 0x1, 0x3d, 0xbef, "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"}]}, 0xc08}}, 0x0)
unshare(0x46000000)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000180)='ufs\x00', 0x2a08840, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0xee00}}, './cgroup\x00'})

6.082367213s ago: executing program 0 (id=4318):
socket$inet(0x2, 0x1, 0x100)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000a00)=0x2)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_usb_connect(0x3, 0x3d, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
read$char_usb(r1, &(0x7f00000002c0)=""/151, 0x97)
syz_usb_disconnect(r0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000003640)=[{{&(0x7f0000000180)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f00000009c0)=[{&(0x7f0000000500)="667f73c864e9d738736fe5c0215f300b290c0e31e588bc897de159647e4e18565c3274efd7183c9b5998310c367fbb", 0x2f}, {&(0x7f0000000b80)="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", 0xff8}, {0x0}, {&(0x7f0000000680)="ab586e5b492183d9f4bf6084efe990af4d429306df426722bf53140be98a", 0x1e}], 0x4, &(0x7f0000001b80)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000b93cc2698c37a7630e015ba70ad5320169242b9cfbbaee0a64d3d968e6af4b7dfd50ad0fe0f224439a82a3a7d8ba45bd068854337eb7213b3a9d1488cd5933023a1fb5698677252e530b745a13809e2818dce97e5d564d8f", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000001000000", @ANYRES32=r3, @ANYRES32, @ANYRES32=r4, @ANYBLOB="180000000100000002000000", @ANYRES32, @ANYRES32, @ANYRES32=0x0], 0x78, 0x1084}}, {{&(0x7f0000001f80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000003240)=[{&(0x7f0000002000)="61fc2629c0fbf75486e6dc07934d689e37e6916ba55a3f88bc484eb67f9188985f863b696580f64a358c4e2eac41992e4f9069769329fb78bf35e07ab9dcbf4b743a5458980d92b8fbf7282c631456fa08009b7ecc785cb6be796a99977c96877bfc48666c7fef32fb1720a44693ab6be5a4008d3797", 0x76}, {&(0x7f0000002100)="cdc9849aa7a5c435a977bd1a9318b1909eaa8686208b6a69f5bc3b9b97d1b6e3522771ff9b2895f369ea9c57af096e115cac50a1ff2bfe3d3d7e441a7a4345947eb50c2597996a0e7bc7ba24e6ade1ec90a9794c9ae5e881ff7861e9f1feb40452ee83e79daafacaba32c0d274451b6951aa403d", 0x74}, {&(0x7f0000002180)="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", 0x1000}, {&(0x7f0000003180)="2547a7f4a4c881095bbbcf8405f3fcdb62cd46fe44a64b46549693e2fb518984ef5b52655f797ce0e5bb924b0d62a1a1b670c9608f4b796ee7983bae6a9081dbd48af98cdb92f85b648c0c9c54e00606c3c5d4b300b477e9323a099930d7623dbb876f6d", 0x64}], 0x4, &(0x7f0000003280)=[@cred={{0x18}}], 0x18}}], 0x2, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
ptrace$PTRACE_SETSIGMASK(0x420b, 0x0, 0x8, &(0x7f0000000000)={[0x9, 0x80000001]})
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
tkill(0x0, 0xb)

5.199575719s ago: executing program 4 (id=4323):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
connect$can_j1939(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syslog(0x3, &(0x7f0000000200)=""/90, 0x5a)
ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x64, 0x7})

3.239208838s ago: executing program 5 (id=4327):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0xb8, &(0x7f0000000140), &(0x7f00000000c0)=0x4)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)}], 0x1, 0x2040801)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={0x0}}, 0x80)
r3 = openat$cdrom(0xffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
readv(r3, &(0x7f0000000380)=[{&(0x7f0000000200)=""/195, 0xc3}], 0x1)
ioctl$CDROMRESET(r3, 0x5312)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f0000000000)={0x3, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f0000001040)={0x3, {{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x22}}}}, 0x84)
setsockopt$inet_MCAST_MSFILTER(r4, 0x0, 0x30, &(0x7f0000001140)={0x3, {{0x2, 0x4e23, @multicast2}}}, 0x90)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='gid_map\x00')
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYRES32=r8, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002"], 0x44}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x2c, 0x11, 0x1, 0x2000000, 0xffffffff, {0x0, 0x0, 0x0, r8, {}, {}, {0xfff3}}, [{0x8, 0xb, 0x200}]}, 0x2c}}, 0x0)
openat(r5, &(0x7f0000000180)='./file0\x00', 0x11800, 0x24)
ioctl$BSG_GET_RESERVED_SIZE(r5, 0x2272, &(0x7f00000003c0))
sendmsg$key(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000013c0)={0x2, 0xe, 0x7, 0x9, 0x181, 0x0, 0x70bd25, 0x25dfdbff, [@sadb_x_sec_ctx={0x17f, 0x18, 0x1, 0x3d, 0xbef, "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"}]}, 0xc08}}, 0x0)
unshare(0x46000000)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000180)='ufs\x00', 0x2a08840, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0xee00}}, './cgroup\x00'})

3.207180731s ago: executing program 2 (id=4328):
r0 = accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x80000)
bind$tipc(r0, &(0x7f00000000c0)=@id={0x1e, 0x3, 0x7ae619a408084dfb, {0x4e20, 0x4}}, 0x10)
mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002480), 0x0, &(0x7f00000024c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}})
fchownat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x100)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r2, 0x40045402, &(0x7f0000000140)=0x1)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r2, 0x4040942c, &(0x7f0000000040)={0x0, 0x3, [0x9, 0xffffffff, 0x3, 0x8, 0xfffffffffffffc01, 0x7285]})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd29, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x6, 0x4, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x804)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0x0, 0x0)
r6 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x88)
r8 = openat$cgroup(r7, &(0x7f0000000180)='syz0\x00', 0x200002, 0x0)
r9 = openat$cgroup_int(r8, &(0x7f0000000040)='cpu.idle\x00', 0x2, 0x0)
sendfile(r9, r9, 0x0, 0x10000a006)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x1}})

2.960758617s ago: executing program 0 (id=4329):
socket$packet(0x11, 0x3, 0x300)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = syz_usbip_server_init(0x3)
write$usbip_server(r0, &(0x7f0000000380)=ANY=[], 0xfffffffffffffd8e)
userfaultfd(0x80801)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='fdinfo/3\x00')
pread64(r1, &(0x7f00000002c0)=""/118, 0x76, 0x9)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0x9, 0x0, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_COPY(r2, 0xc028aa05, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x1d, 0x2, 0x6)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000004700)={'team0\x00', <r7=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="14010000", @ANYRES16=r6, @ANYBLOB, @ANYRES32=r7, @ANYBLOB="f800028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000100004006c6f616462616c616e63650040000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000f000400726f756e64726f62696e000038000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400370000003c000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000b00040072616e646f6d0000"], 0x114}, 0x1, 0x0, 0x0, 0x4000401}, 0x48084)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$cdc_ncm(0x1, 0x0, 0x0, 0x0)

2.046296012s ago: executing program 5 (id=4330):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000340), 0x1c9243, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r1, &(0x7f0000000040)=[{&(0x7f0000000440)=""/233, 0xe9}], 0x1, 0xfff, 0x0)

1.500237834s ago: executing program 2 (id=4331):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00'})
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000540)={'veth1_macvtap\x00', 0xc26d}) (fail_nth: 3)

1.322911383s ago: executing program 4 (id=4332):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$sock(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="763ac7c359", 0x5}], 0x1, &(0x7f0000000240)=[@txtime={{0x14, 0x1, 0x3d, 0x140000}}], 0x14}, 0x24000010)
r1 = socket(0x1000000000000010, 0x80802, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@delchain={0x24, 0x5f, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x5, 0x2}, {0x1, 0x4}}}, 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2000000011000101000000000080000000000000", @ANYRES32=r4], 0x20}}, 0x0)

1.155592872s ago: executing program 2 (id=4333):
r0 = syz_io_uring_setup(0x14d, &(0x7f0000000480)={0x0, 0x669f, 0x40, 0x0, 0xfffffffc}, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x108, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = socket$packet(0x11, 0x2, 0x300)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f00000019c0)={0x0, 0x0, 0x0}, 0x0, 0x6040, 0x1, {0x1}}) (async)
io_uring_enter(r0, 0x47f9, 0x3f, 0x0, 0x0, 0x0)

1.155266063s ago: executing program 5 (id=4334):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x800, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x40}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0x14)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x1)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x3)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f0000000940)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b705000008"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
getdents(r7, &(0x7f0000001fc0)=""/184, 0xb8)
getsockopt$rose(0xffffffffffffffff, 0x104, 0x0, 0x0, &(0x7f0000000100))
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r6}, 0xc)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
syz_io_uring_setup(0x98f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x0, 0xbfdfffbc}, &(0x7f00000000c0), &(0x7f0000000040))

1.095522105s ago: executing program 2 (id=4335):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x12, 0xffffffffffffffff, 0x0) (async)
prlimit64(0x0, 0xe, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x30) (async)
r0 = gettid()
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = userfaultfd(0x800)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x101}) (async)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0) (async)
sched_setaffinity(r0, 0x8, &(0x7f00000001c0)=0x1)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
r2 = socket$kcm(0x2, 0x5, 0x84) (async)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x1004494, &(0x7f0000000280)=ANY=[@ANYRES8=r2, @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRES64=r4, @ANYRES8, @ANYRESDEC=r0]) (async, rerun: 32)
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020) (rerun: 32)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x10400, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x2, 0x2}}, 0x50) (async)
syz_fuse_handle_req(r4, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88, {0x0, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
syz_fuse_handle_req(r4, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ccc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6b3f0000f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784753f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a748cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d9f95e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x4, {0x0, 0xfffffffc, 0x0, {0x0, 0xfffffffffffffffc, 0x0, 0x9, 0x0, 0x0, 0x0, 0x3, 0x6, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(r3, &(0x7f0000000180)='./file0\x00', 0x3a7182, 0x10) (async)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x1}], 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) (async)
setsockopt$sock_attach_bpf(r2, 0x84, 0x7, &(0x7f00000007c0), 0x4)
r6 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r6, &(0x7f0000000240)={0xa, 0x4e20, 0x10000, @local, 0x200}, 0xc)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) (async, rerun: 64)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 64)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf)
r8 = fcntl$dupfd(r7, 0x0, r7)
ioctl$TCFLSH(r7, 0x400455c8, 0x1000000000000002) (async, rerun: 64)
ioctl$TIOCSETD(r8, 0x5412, &(0x7f0000000140)=0xffbfffc0) (rerun: 64)

935.153272ms ago: executing program 2 (id=4336):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000004580)='./file0\x00', &(0x7f00000002c0)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000680)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}]})
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)

931.476878ms ago: executing program 4 (id=4337):
syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x80)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_open_dev$cec(0x0, 0x0, 0x81)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xef8db46e6477bbd6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0)
ioctl$RTC_AIE_ON(r3, 0x7001)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r4 = socket$inet6(0xa, 0x3, 0xa)
setsockopt$inet6_int(r4, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x4, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xffe0}}, [@qdisc_kind_options=@q_plug={{0x9}, {0xc, 0x2, {0x2, 0x4}}}]}, 0x3c}}, 0x4000010)
sendmmsg$inet(r5, &(0x7f0000005200)=[{}], 0x1, 0x800)
connect$inet6(r4, &(0x7f0000000280)={0xa, 0x4e20, 0x380000, @loopback}, 0x1c)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='rpc_pipefs\x00', 0x0, 0x0)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4080)
recvmsg$kcm(r8, 0x0, 0x0)

801.509579ms ago: executing program 2 (id=4338):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/resume', 0x141a82, 0x0)
syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, 0x0, &(0x7f00000007c0))
r1 = socket(0x10, 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xc7, &(0x7f00000003c0)=""/199, 0x41100, 0x2b, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mknod$loop(&(0x7f00000190c0)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000019100)='./file0\x00', 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040))
syz_open_procfs(0xffffffffffffffff, &(0x7f0000002f00)='fdinfo\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26})
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0x0, 0x80600})
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, 0x0, 0x0)
sendto$inet(r5, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
unshare(0x40020000)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000280)={0x4, 0x0, 0xb51b, 0x10}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x28)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x12, 0xa01, 0x0, 0x0, {0x80}}, 0x26}}, 0x0)

772.637886ms ago: executing program 0 (id=4339):
sched_setscheduler(0x0, 0x1, 0x0)
r0 = openat$cachefiles(0xffffff9c, &(0x7f0000000600), 0x4000, 0x0)
ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000640)=0x6)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000840)=@newtaction={0x18, 0x30, 0x871a15abc695fb3d, 0xfffffffe, 0x800004, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="15000000010000000c0000000600000000200000", @ANYRES32, @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x50)
syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
r2 = syz_io_uring_setup(0xcd8, &(0x7f0000000200)={0x0, 0x465e, 0x400, 0x3, 0x100234}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0x4c, 0x0, r0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='./file0\x00'})
io_uring_enter(r2, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x68, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
fsopen(&(0x7f00000006c0)='ecryptfs\x00', 0x1)
socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x4e23, @empty}, {0x0, @local}, 0x4, {0x2, 0x4e21, @rand_addr=0x64010102}, 'wg1\x00'})
unshare(0x2e020080)

629.219127ms ago: executing program 0 (id=4340):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8042, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
writev(r2, &(0x7f0000000240)=[{&(0x7f0000000080)="2e9b5b0007e03dd65193dfb6c575963f86dd606712e900320400000000000000eaebfd2607eef2", 0x27}, {&(0x7f0000000100)="051ae2ff0d8c60c2730369b7", 0xc}, {&(0x7f0000000040)="37a8a6c41e646a566a4ce01f972bef63842ee3b291da39d1977010", 0x1b}, {&(0x7f0000000640)="3df30ac147cc65f59c66e0c68a79c63442565523736917cc294736a83ea8", 0x1e}], 0x4)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$P9_RSTATu(r0, &(0x7f0000000580)={0x208, 0x2, 0x0, {{0x500, 0xf8, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1b, '\x04nodev{evoo~\x059\xc6\x00\x05\x00\x007\xd9:\x8b\x92\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00+Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x03\xb4\x94\xe1', 0x1d, '\xd2\x99\x98\x80\x14\x98l\xe9\x82\xcf\xc2m\xd7\xc5\x00\xf0L\xd8_*p\xf5\xe9\x93\x0e\x97\xa5\x9ad', 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xe2\x89\xdad\x9a7\x00'}, 0x12c, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x239)

327.968723ms ago: executing program 0 (id=4341):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newlink={0x40, 0x10, 0x401, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, 0x0, 0xd07, 0x1a001}, [@IFLA_IFNAME={0x14, 0x3, 'wlan1\x00'}, @IFLA_ADDRESS={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x5336ae46a3975501}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

327.709796ms ago: executing program 0 (id=4342):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000340), 0x1c9243, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r1, &(0x7f0000000040)=[{&(0x7f0000000440)=""/233, 0xe9}], 0x1, 0xfff, 0x0)

218.116367ms ago: executing program 5 (id=4343):
syz_emit_ethernet(0x32, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaa230180090000000009000000240066000100000078ac1e719078a4d234151a0034a1731c3ea0261c0d4c011f956a33deb36eca635f0eec40560b1e9bb73d68302498c1b7a0c5312b6b1143163c82031a1321a1fbfceb"], 0x0)
r0 = socket(0x2, 0x80805, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000100), 0xe, 0x8000)
ioctl$LOOP_SET_CAPACITY(r1, 0x4c07)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000006c0)={0x0, {{0xa, 0x4e21, 0xf, @private0={0xfc, 0x0, '\x00', 0x1}, 0x3}}, 0x1, 0x1, [{{0xa, 0x4e21, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}}]}, 0x10c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x6, 0x0, 0x0, 0x40f00}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0x56, 0x0, &(0x7f0000000240)="0fd021392656835ba5cd02a2c2fd5fb25738e6868866352552d723d98e32760905376adb9e43c168851abe66ca92490c413ca4d1eec86f7dfbe233040b742ced3a8c884872e51fd0b9bab4a2c8b58bab87b1c2ccb87f", 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x4c)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000d80)={0x1, &(0x7f0000000d40)=[{0x6, 0x6, 0x38, 0x7fffffff}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r3, 0xc0182101, &(0x7f00000000c0)={0x0, 0x4, 0x9, 0x2000000})
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000040)={<r5=>0x0, 0x80, 0xff, 0x9, 0xffffffff, 0x1}, &(0x7f0000000080)=0x14)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000100)={r5, 0xa}, &(0x7f0000000140)=0x8)

15.756535ms ago: executing program 5 (id=4344):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newlink={0x40, 0x10, 0x401, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, 0x0, 0xd07, 0x1a001}, [@IFLA_IFNAME={0x14, 0x3, 'wlan1\x00'}, @IFLA_ADDRESS={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x5336ae46a3975501}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4010}, 0x0) (fail_nth: 1)

0s ago: executing program 5 (id=4345):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = signalfd(r0, &(0x7f0000000040)={[0x5, 0xfa0]}, 0x8)
ioctl$EVIOCGSND(r1, 0x8040451a, &(0x7f0000000080)=""/82)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x88200, 0x0)
r4 = syz_io_uring_setup(0x238, &(0x7f0000000740)={0x0, 0x10182a, 0x10100}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2deb, 0x5f8b, 0x6, 0x0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x2)
ioctl$TIOCPKT(r3, 0x5420, &(0x7f0000000000)=0xb)
ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000040)={0x7, 0x80, 0x9, 0x110, 0x1b, "96010000000000000000000000000000000008"})
ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, &(0x7f00000000c0)={'pcl812\x00', [0x4f27, 0x1, 0x10000, 0x4, 0x5, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0x0, 0x1a449, 0x3, 0x40000003, 0x89, 0xcaa7, 0x0, 0x20001e58, 0xb, 0xe69, 0x3c, 0x8, 0x6, 0x0, 0xfffffff8]})
preadv(r2, &(0x7f0000001cc0)=[{&(0x7f0000000200)=""/130, 0x82}], 0x1, 0x0, 0x7f)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newlink={0x40, 0x10, 0x401, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, 0x0, 0xd07, 0x1a001}, [@IFLA_IFNAME={0x14, 0x3, 'wlan1\x00'}, @IFLA_ADDRESS={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x5336ae46a3975501}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

kernel console output (not intermixed with test programs):

41.612117][T21033] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1241.612126][T21033] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1241.612136][T21033] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1241.612157][T21033]  </TASK>
[ 1242.539464][   T40] audit: type=1326 audit(1754265231.931:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21034 comm="syz.2.3830" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f48579 code=0x0
[ 1243.231128][ T3336] libceph: connect (1)[c::]:6789 error -101
[ 1243.300980][T21060] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 1243.418809][T21061] FAULT_INJECTION: forcing a failure.
[ 1243.418809][T21061] name failslab, interval 1, probability 0, space 0, times 0
[ 1243.423450][T21061] CPU: 0 UID: 0 PID: 21061 Comm: syz.4.3834 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1243.423475][T21061] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1243.423487][T21061] Call Trace:
[ 1243.423495][T21061]  <TASK>
[ 1243.423503][T21061]  dump_stack_lvl+0x16c/0x1f0
[ 1243.423546][T21061]  should_fail_ex+0x512/0x640
[ 1243.423580][T21061]  ? fs_reclaim_acquire+0xae/0x150
[ 1243.423609][T21061]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1243.423627][T21061]  should_failslab+0xc2/0x120
[ 1243.423649][T21061]  __kmalloc_noprof+0xd2/0x510
[ 1243.423677][T21061]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1243.423697][T21061]  ? tomoyo_profile+0x47/0x60
[ 1243.423719][T21061]  tomoyo_path_number_perm+0x245/0x580
[ 1243.423743][T21061]  ? tomoyo_path_number_perm+0x237/0x580
[ 1243.423770][T21061]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1243.423822][T21061]  ? find_held_lock+0x2b/0x80
[ 1243.423840][T21061]  ? hook_file_ioctl_common+0x145/0x410
[ 1243.423870][T21061]  ? __fget_files+0x20e/0x3c0
[ 1243.423900][T21061]  ? __fput_deferred+0x480/0x480
[ 1243.423927][T21061]  security_file_ioctl_compat+0x9b/0x240
[ 1243.423956][T21061]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1243.423985][T21061]  __do_fast_syscall_32+0x7c/0x3a0
[ 1243.424007][T21061]  do_fast_syscall_32+0x32/0x80
[ 1243.424027][T21061]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1243.424049][T21061] RIP: 0023:0xf704e579
[ 1243.424064][T21061] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1243.424081][T21061] RSP: 002b:00000000f501d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1243.424100][T21061] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000000ae80
[ 1243.424112][T21061] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1243.424123][T21061] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1243.424134][T21061] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1243.424145][T21061] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1243.424170][T21061]  </TASK>
[ 1243.424255][T21061] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1245.303947][ T3336] libceph: mon0 (1)[c::]:6789 connect error
[ 1246.716609][T21052] ceph: No mds server is up or the cluster is laggy
[ 1246.978610][ T3336] libceph: connect (1)[c::]:6789 error -101
[ 1246.982110][ T3336] libceph: mon0 (1)[c::]:6789 connect error
[ 1248.701408][T21080] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3839'.
[ 1248.969234][T21080] lo speed is unknown, defaulting to 1000
[ 1249.487541][T21094] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3842'.
[ 1249.556925][T21094] lo speed is unknown, defaulting to 1000
[ 1250.127802][T21102] lo speed is unknown, defaulting to 1000
[ 1250.460249][T21108] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 1250.464936][T21108] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1250.477779][T21108] vhci_hcd vhci_hcd.0: Device attached
[ 1250.514200][T21111] usbip_core: unknown command
[ 1250.517093][T21111] vhci_hcd: unknown pdu 774857321
[ 1250.523104][T21111] usbip_core: unknown command
[ 1250.554239][T16793] vhci_hcd: stop threads
[ 1250.556893][T16793] vhci_hcd: release socket
[ 1250.563353][T16793] vhci_hcd: disconnect device
[ 1250.945265][T21114] netlink: 256 bytes leftover after parsing attributes in process `syz.3.3844'.
[ 1252.080794][T21125] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[ 1252.091398][T21125] overlayfs: missing 'lowerdir'
[ 1252.124899][T21125] openvswitch: netlink: Missing key (keys=40, expected=200000)
[ 1253.598529][T21137] kvm: user requested TSC rate below hardware speed
[ 1255.318416][T18363] usb 8-1: new full-speed USB device number 35 using dummy_hcd
[ 1255.499865][T18363] usb 8-1: device descriptor read/64, error -71
[ 1255.747579][T18363] usb 8-1: new full-speed USB device number 36 using dummy_hcd
[ 1255.915617][T18363] usb 8-1: device descriptor read/64, error -71
[ 1256.030230][T18363] usb usb8-port1: attempt power cycle
[ 1256.408441][T18363] usb 8-1: new full-speed USB device number 37 using dummy_hcd
[ 1256.459785][T18363] usb 8-1: device descriptor read/8, error -71
[ 1256.743737][T18363] usb 8-1: new full-speed USB device number 38 using dummy_hcd
[ 1256.866589][T18363] usb 8-1: device descriptor read/8, error -71
[ 1256.988384][T18363] usb usb8-port1: unable to enumerate USB device
[ 1257.325562][T21168] FAULT_INJECTION: forcing a failure.
[ 1257.325562][T21168] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1257.341883][T21168] CPU: 2 UID: 0 PID: 21168 Comm: syz.0.3858 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1257.341910][T21168] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1257.341922][T21168] Call Trace:
[ 1257.341929][T21168]  <TASK>
[ 1257.341936][T21168]  dump_stack_lvl+0x16c/0x1f0
[ 1257.341961][T21168]  should_fail_ex+0x512/0x640
[ 1257.341986][T21168]  _copy_to_user+0x32/0xd0
[ 1257.342008][T21168]  simple_read_from_buffer+0xcb/0x170
[ 1257.342044][T21168]  proc_fail_nth_read+0x197/0x270
[ 1257.342067][T21168]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1257.342093][T21168]  ? rw_verify_area+0xcf/0x680
[ 1257.342118][T21168]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1257.342142][T21168]  vfs_read+0x1e4/0xc60
[ 1257.342159][T21168]  ? fdget_pos+0x2a2/0x370
[ 1257.342179][T21168]  ? __pfx_vfs_read+0x10/0x10
[ 1257.342193][T21168]  ? find_held_lock+0x2b/0x80
[ 1257.342219][T21168]  ? __fget_files+0x20e/0x3c0
[ 1257.342252][T21168]  ksys_read+0x12a/0x250
[ 1257.342270][T21168]  ? __pfx_ksys_read+0x10/0x10
[ 1257.342287][T21168]  ? rcu_is_watching+0x12/0xc0
[ 1257.342312][T21168]  __do_fast_syscall_32+0x7c/0x3a0
[ 1257.342335][T21168]  do_fast_syscall_32+0x32/0x80
[ 1257.342354][T21168]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1257.342375][T21168] RIP: 0023:0xf702e579
[ 1257.342389][T21168] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1257.342406][T21168] RSP: 002b:00000000f501e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1257.342425][T21168] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f501e620
[ 1257.342436][T21168] RDX: 000000000000000f RSI: 00000000f7394ff4 RDI: 0000000000000000
[ 1257.342447][T21168] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1257.342457][T21168] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1257.342467][T21168] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1257.342491][T21168]  </TASK>
[ 1257.644953][T21170] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1260.454771][   T40] audit: type=1326 audit(1754265249.861:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21213 comm="syz.3.3868" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e579 code=0x0
[ 1262.042322][T21253] FAULT_INJECTION: forcing a failure.
[ 1262.042322][T21253] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1262.049038][T21253] CPU: 3 UID: 0 PID: 21253 Comm: syz.2.3879 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1262.049081][T21253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1262.049094][T21253] Call Trace:
[ 1262.049103][T21253]  <TASK>
[ 1262.049111][T21253]  dump_stack_lvl+0x16c/0x1f0
[ 1262.049136][T21253]  should_fail_ex+0x512/0x640
[ 1262.049161][T21253]  _copy_from_user+0x2e/0xd0
[ 1262.049184][T21253]  vhost_vring_ioctl+0x353/0x13b0
[ 1262.049211][T21253]  ? __pfx_vhost_vring_ioctl+0x10/0x10
[ 1262.049236][T21253]  ? vhost_dev_ioctl+0x130/0xdc0
[ 1262.049276][T21253]  vhost_vsock_dev_ioctl+0x8a9/0xb30
[ 1262.049301][T21253]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[ 1262.049321][T21253]  ? hook_file_ioctl_common+0x145/0x410
[ 1262.049352][T21253]  ? __fget_files+0x20e/0x3c0
[ 1262.049379][T21253]  ? __fput_deferred+0x480/0x480
[ 1262.049412][T21253]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[ 1262.049434][T21253]  compat_ptr_ioctl+0x6e/0xa0
[ 1262.049458][T21253]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[ 1262.049481][T21253]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1262.049510][T21253]  __do_fast_syscall_32+0x7c/0x3a0
[ 1262.049532][T21253]  do_fast_syscall_32+0x32/0x80
[ 1262.049552][T21253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1262.049574][T21253] RIP: 0023:0xf7f48579
[ 1262.049591][T21253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1262.049609][T21253] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1262.049627][T21253] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000004028af11
[ 1262.049640][T21253] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 0000000000000000
[ 1262.049650][T21253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1262.049660][T21253] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1262.049671][T21253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1262.049696][T21253]  </TASK>
[ 1262.644005][T21261] siw: device registration error -23
[ 1263.167382][T21266] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1263.177581][T21266] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1263.217005][T21266] vhci_hcd vhci_hcd.0: Device attached
[ 1263.462055][T21270] netlink: 256 bytes leftover after parsing attributes in process `syz.0.3884'.
[ 1263.479557][T17301] usb 37-1: new high-speed USB device number 9 using vhci_hcd
[ 1264.748873][ T1343] usb 8-1: new high-speed USB device number 39 using dummy_hcd
[ 1264.978176][ T1343] usb 8-1: Using ep0 maxpacket: 8
[ 1264.991101][ T1343] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[ 1265.018129][ T1343] usb 8-1: config 0 has no interface number 0
[ 1265.055936][ T1343] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1265.061439][ T1343] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1265.084034][ T1343] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1265.117752][ T1343] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1265.142234][ T1343] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1265.229202][ T1343] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1265.239378][ T1343] usb 8-1: config 0 descriptor??
[ 1265.266675][ T1343] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1265.475852][ T1343] usb 8-1: USB disconnect, device number 39
[ 1265.496083][ T1343] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[ 1266.148583][T21268] vhci_hcd: connection reset by peer
[ 1266.151779][T16794] vhci_hcd: stop threads
[ 1266.160654][T16794] vhci_hcd: release socket
[ 1266.162736][T16794] vhci_hcd: disconnect device
[ 1268.853419][   T34] hid-generic 0000:7FFFFFFF:0000.002A: unknown main item tag 0x4
[ 1268.860113][   T34] hid-generic 0000:7FFFFFFF:0000.002A: unknown main item tag 0x0
[ 1268.874733][   T34] hid-generic 0000:7FFFFFFF:0000.002A: unknown main item tag 0x1
[ 1268.881849][   T34] hid-generic 0000:7FFFFFFF:0000.002A: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1268.991254][T21322] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1268.994932][T21322] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1269.000279][T21322] vhci_hcd vhci_hcd.0: Device attached
[ 1269.004410][T21323] usbip_core: unknown command
[ 1269.006813][T21323] vhci_hcd: unknown pdu 774857321
[ 1269.014495][T21323] usbip_core: unknown command
[ 1269.025862][ T1202] vhci_hcd: stop threads
[ 1269.027677][ T1202] vhci_hcd: release socket
[ 1269.043996][ T1202] vhci_hcd: disconnect device
[ 1269.171289][T21328] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3897'.
[ 1269.398936][T21326] siw: device registration error -23
[ 1270.068353][T17301] vhci_hcd: vhci_device speed not set
[ 1270.630185][T21347] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1271.938875][T21359] 9pnet: Could not find request transport: f il%
[ 1274.898619][T21403] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3916'.
[ 1274.899089][T21406] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1274.907851][T21406] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1274.929245][T21403] lo speed is unknown, defaulting to 1000
[ 1274.939452][T21406] vhci_hcd vhci_hcd.0: Device attached
[ 1275.107241][T21411] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3917'.
[ 1275.179872][ T9904] usb 45-1: new high-speed USB device number 9 using vhci_hcd
[ 1276.728863][   T40] audit: type=1326 audit(1754265264.781:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21395 comm="syz.0.3915" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702e579 code=0x0
[ 1277.899499][T21407] vhci_hcd: connection reset by peer
[ 1277.931467][ T1202] vhci_hcd: stop threads
[ 1277.935630][ T1202] vhci_hcd: release socket
[ 1277.937714][ T1202] vhci_hcd: disconnect device
[ 1278.006471][T21425] FAULT_INJECTION: forcing a failure.
[ 1278.006471][T21425] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1278.022059][T21425] CPU: 3 UID: 0 PID: 21425 Comm: syz.4.3921 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1278.022085][T21425] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1278.022097][T21425] Call Trace:
[ 1278.022103][T21425]  <TASK>
[ 1278.022111][T21425]  dump_stack_lvl+0x16c/0x1f0
[ 1278.022137][T21425]  should_fail_ex+0x512/0x640
[ 1278.022159][T21425]  strncpy_from_user+0x3b/0x2e0
[ 1278.022189][T21425]  getname_flags.part.0+0x8f/0x550
[ 1278.022217][T21425]  getname_flags+0x93/0xf0
[ 1278.022245][T21425]  path_setxattrat+0x27a/0x2a0
[ 1278.022263][T21425]  ? __pfx_path_setxattrat+0x10/0x10
[ 1278.022284][T21425]  ? ksys_write+0x190/0x250
[ 1278.022320][T21425]  ? fput+0x70/0xf0
[ 1278.022340][T21425]  ? ksys_write+0x1ac/0x250
[ 1278.022357][T21425]  ? __pfx_ksys_write+0x10/0x10
[ 1278.022377][T21425]  __ia32_sys_lsetxattr+0xc7/0x140
[ 1278.022394][T21425]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1278.022413][T21425]  __do_fast_syscall_32+0x7c/0x3a0
[ 1278.022435][T21425]  do_fast_syscall_32+0x32/0x80
[ 1278.022454][T21425]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1278.022477][T21425] RIP: 0023:0xf704e579
[ 1278.022493][T21425] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1278.022510][T21425] RSP: 002b:00000000f503e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000e3
[ 1278.022649][T21425] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 0000000080000140
[ 1278.022663][T21425] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[ 1278.022674][T21425] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1278.022685][T21425] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1278.022694][T21425] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1278.022718][T21425]  </TASK>
[ 1279.191614][T21440] siw: device registration error -23
[ 1279.358095][   T40] audit: type=1326 audit(1754265268.761:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21436 comm="syz.0.3926" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702e579 code=0x0
[ 1280.030088][T21448] lo speed is unknown, defaulting to 1000
[ 1280.389605][T21452] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1280.391962][T21452] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1280.444223][T21452] vhci_hcd vhci_hcd.0: Device attached
[ 1280.618082][T21452] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3929'.
[ 1280.780294][T21459] FAULT_INJECTION: forcing a failure.
[ 1280.780294][T21459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1280.785829][T21459] CPU: 1 UID: 0 PID: 21459 Comm: syz.0.3930 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1280.785849][T21459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1280.785862][T21459] Call Trace:
[ 1280.785870][T21459]  <TASK>
[ 1280.785878][T21459]  dump_stack_lvl+0x16c/0x1f0
[ 1280.785901][T21459]  should_fail_ex+0x512/0x640
[ 1280.785920][T21459]  _copy_from_iter+0x29f/0x16f0
[ 1280.785938][T21459]  ? __alloc_skb+0x200/0x380
[ 1280.785954][T21459]  ? __pfx__copy_from_iter+0x10/0x10
[ 1280.785971][T21459]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[ 1280.785995][T21459]  netlink_sendmsg+0x829/0xdd0
[ 1280.786016][T21459]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1280.786040][T21459]  sock_write_iter+0x4ff/0x5b0
[ 1280.786061][T21459]  ? __pfx_sock_write_iter+0x10/0x10
[ 1280.786088][T21459]  ? __lock_acquire+0x622/0x1c90
[ 1280.786110][T21459]  do_iter_readv_writev+0x657/0x950
[ 1280.786135][T21459]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1280.786160][T21459]  ? bpf_lsm_file_permission+0x9/0x10
[ 1280.786178][T21459]  ? security_file_permission+0x71/0x210
[ 1280.786202][T21459]  ? rw_verify_area+0xcf/0x680
[ 1280.786224][T21459]  vfs_writev+0x35f/0xde0
[ 1280.786250][T21459]  ? __pfx_vfs_writev+0x10/0x10
[ 1280.786272][T21459]  ? find_held_lock+0x2b/0x80
[ 1280.786298][T21459]  ? __fget_files+0x20e/0x3c0
[ 1280.786318][T21459]  ? __fget_files+0x1b0/0x3c0
[ 1280.786343][T21459]  ? do_writev+0x28c/0x340
[ 1280.786363][T21459]  do_writev+0x28c/0x340
[ 1280.786384][T21459]  ? __pfx_do_writev+0x10/0x10
[ 1280.786406][T21459]  ? rcu_is_watching+0x12/0xc0
[ 1280.786425][T21459]  __do_fast_syscall_32+0x7c/0x3a0
[ 1280.786442][T21459]  do_fast_syscall_32+0x32/0x80
[ 1280.786457][T21459]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1280.786475][T21459] RIP: 0023:0xf702e579
[ 1280.786487][T21459] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1280.786501][T21459] RSP: 002b:00000000f4fdc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[ 1280.786522][T21459] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800003c0
[ 1280.786532][T21459] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[ 1280.786540][T21459] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1280.786549][T21459] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1280.786557][T21459] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1280.786577][T21459]  </TASK>
[ 1280.855501][   T34] usb 41-1: new high-speed USB device number 11 using vhci_hcd
[ 1281.964004][   T29] hid-generic 0000:7FFFFFFF:0000.002B: unknown main item tag 0x4
[ 1281.968332][   T29] hid-generic 0000:7FFFFFFF:0000.002B: unknown main item tag 0x0
[ 1281.971719][   T29] hid-generic 0000:7FFFFFFF:0000.002B: unknown main item tag 0x1
[ 1281.990670][   T29] hid-generic 0000:7FFFFFFF:0000.002B: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1282.143267][T21473] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3934'.
[ 1282.200627][T21473] lo speed is unknown, defaulting to 1000
[ 1282.423430][ T9904] vhci_hcd: vhci_device speed not set
[ 1283.412156][T21453] vhci_hcd: connection reset by peer
[ 1283.414933][   T91] vhci_hcd: stop threads
[ 1283.416828][   T91] vhci_hcd: release socket
[ 1283.435182][   T91] vhci_hcd: disconnect device
[ 1284.149379][T21493] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3940'.
[ 1284.433860][T21500] siw: device registration error -23
[ 1284.479417][   T40] audit: type=1326 audit(1754265273.891:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21487 comm="syz.0.3938" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702e579 code=0x0
[ 1284.553056][T21503] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3943'.
[ 1284.990485][T21507] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1284.996327][T21507] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1285.000618][T21507] vhci_hcd vhci_hcd.0: Device attached
[ 1285.002767][T21509] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1285.041686][T21510] usbip_core: unknown command
[ 1285.075543][T21510] vhci_hcd: unknown pdu 774857321
[ 1285.089496][T21510] usbip_core: unknown command
[ 1285.107699][ T1202] vhci_hcd: stop threads
[ 1285.128193][ T1202] vhci_hcd: release socket
[ 1285.130658][ T1202] vhci_hcd: disconnect device
[ 1285.730520][T21507] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3945'.
[ 1286.251976][T21520] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3946'.
[ 1286.381862][   T34] vhci_hcd: vhci_device speed not set
[ 1287.571040][    C2] vkms_vblank_simulate: vblank timer overrun
[ 1287.604924][T21523] lo speed is unknown, defaulting to 1000
[ 1287.868380][    C2] vkms_vblank_simulate: vblank timer overrun
[ 1288.525150][T21539] FAULT_INJECTION: forcing a failure.
[ 1288.525150][T21539] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.608303][T21539] CPU: 0 UID: 0 PID: 21539 Comm: syz.3.3954 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1288.608333][T21539] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1288.608345][T21539] Call Trace:
[ 1288.608352][T21539]  <TASK>
[ 1288.608360][T21539]  dump_stack_lvl+0x16c/0x1f0
[ 1288.608385][T21539]  should_fail_ex+0x512/0x640
[ 1288.608405][T21539]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1288.608434][T21539]  should_failslab+0xc2/0x120
[ 1288.608455][T21539]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1288.608482][T21539]  ? load_msg+0x2fe/0x4a0
[ 1288.608497][T21539]  ? do_mq_timedsend+0x89b/0xc40
[ 1288.608523][T21539]  do_mq_timedsend+0x89b/0xc40
[ 1288.608547][T21539]  ? __pfx_do_mq_timedsend+0x10/0x10
[ 1288.608568][T21539]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1288.608590][T21539]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1288.608613][T21539]  ? __fget_files+0x20e/0x3c0
[ 1288.608639][T21539]  ? handle_mm_fault+0x230/0xd10
[ 1288.608671][T21539]  __ia32_sys_mq_timedsend_time32+0x1cd/0x260
[ 1288.608696][T21539]  ? ksys_write+0x1ac/0x250
[ 1288.608713][T21539]  ? __pfx___ia32_sys_mq_timedsend_time32+0x10/0x10
[ 1288.608741][T21539]  ? rcu_is_watching+0x12/0xc0
[ 1288.608763][T21539]  __do_fast_syscall_32+0x7c/0x3a0
[ 1288.608784][T21539]  do_fast_syscall_32+0x32/0x80
[ 1288.608803][T21539]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1288.608825][T21539] RIP: 0023:0xf703e579
[ 1288.608840][T21539] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1288.608857][T21539] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000117
[ 1288.608875][T21539] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[ 1288.608887][T21539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1288.608897][T21539] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1288.608909][T21539] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1288.608919][T21539] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1288.608942][T21539]  </TASK>
[ 1289.203165][   T40] audit: type=1326 audit(1754265278.581:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21536 comm="syz.0.3952" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702e579 code=0x0
[ 1289.235018][    C2] vkms_vblank_simulate: vblank timer overrun
[ 1289.271137][    C2] vkms_vblank_simulate: vblank timer overrun
[ 1289.650484][T21559] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3958'.
[ 1289.867667][T21565] siw: device registration error -23
[ 1289.883655][T21564] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[ 1289.891758][   T34] IPVS: starting estimator thread 0...
[ 1289.999561][T21571] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1290.003274][T21571] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1290.006121][T21571] vhci_hcd vhci_hcd.0: Device attached
[ 1290.019468][T21572] usbip_core: unknown command
[ 1290.023884][T21572] vhci_hcd: unknown pdu 774857321
[ 1290.027596][T21572] usbip_core: unknown command
[ 1290.032549][ T1170] vhci_hcd: stop threads
[ 1290.034673][ T1170] vhci_hcd: release socket
[ 1290.049471][ T1170] vhci_hcd: disconnect device
[ 1290.050259][T21566] IPVS: using max 26 ests per chain, 62400 per kthread
[ 1290.278895][T21574] netlink: 256 bytes leftover after parsing attributes in process `syz.0.3962'.
[ 1290.917553][    C2] vkms_vblank_simulate: vblank timer overrun
[ 1291.441493][T21588] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3965'.
[ 1291.454904][T21588] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3965'.
[ 1291.847602][T21594] macvlan2: entered promiscuous mode
[ 1291.863814][T21594] macvlan2: entered allmulticast mode
[ 1292.458833][T21604] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3971'.
[ 1292.915811][T21613] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[ 1292.931682][T21613] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1292.940776][T21613] vhci_hcd vhci_hcd.0: Device attached
[ 1293.146222][T21622] netlink: 216 bytes leftover after parsing attributes in process `syz.3.3975'.
[ 1293.155723][T21622] netlink: 216 bytes leftover after parsing attributes in process `syz.3.3975'.
[ 1293.192706][   T29] hid-generic 0000:7FFFFFFF:0000.002C: unknown main item tag 0x0
[ 1293.201859][   T29] hid-generic 0000:7FFFFFFF:0000.002C: unknown main item tag 0x0
[ 1293.212764][   T29] hid-generic 0000:7FFFFFFF:0000.002C: unknown main item tag 0x0
[ 1293.270528][   T29] hid-generic 0000:7FFFFFFF:0000.002C: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1293.278516][T18363] usb 41-1: new high-speed USB device number 12 using vhci_hcd
[ 1293.716815][T21636] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3977'.
[ 1293.885143][T21614] vhci_hcd: connection reset by peer
[ 1293.887766][   T91] vhci_hcd: stop threads
[ 1293.890865][   T91] vhci_hcd: release socket
[ 1293.893010][   T91] vhci_hcd: disconnect device
[ 1294.080565][T21647] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 1294.083379][T21647] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1294.125883][T21647] vhci_hcd vhci_hcd.0: Device attached
[ 1294.449009][T10749] usb 43-1: new high-speed USB device number 10 using vhci_hcd
[ 1294.527368][T21652] netlink: 256 bytes leftover after parsing attributes in process `syz.3.3982'.
[ 1294.532678][T21636] lo speed is unknown, defaulting to 1000
[ 1294.811160][T21648] vhci_hcd: connection reset by peer
[ 1294.814021][T16793] vhci_hcd: stop threads
[ 1294.815932][T16793] vhci_hcd: release socket
[ 1294.848328][T16793] vhci_hcd: disconnect device
[ 1295.925062][ T6050] kernel read not supported for file /vga_arbiter (pid: 6050 comm: kworker/2:3)
[ 1296.883064][T21677] fuse: Bad value for 'fd'
[ 1297.832871][T21688] siw: device registration error -23
[ 1297.974101][T21691] siw: device registration error -23
[ 1298.472614][T18363] vhci_hcd: vhci_device speed not set
[ 1298.535550][T21700] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1298.539135][T21700] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1298.557396][T21700] vhci_hcd vhci_hcd.0: Device attached
[ 1298.584585][T21701] usbip_core: unknown command
[ 1298.619034][T21701] vhci_hcd: unknown pdu 774857321
[ 1298.621361][T21701] usbip_core: unknown command
[ 1298.652050][ T1170] vhci_hcd: stop threads
[ 1298.654204][ T1170] vhci_hcd: release socket
[ 1298.656465][ T1170] vhci_hcd: disconnect device
[ 1298.768215][   T40] audit: type=1326 audit(1754265288.161:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21704 comm="syz.3.3994" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e579 code=0x0
[ 1299.063576][T21703] netlink: 256 bytes leftover after parsing attributes in process `syz.0.3993'.
[ 1299.643794][T10749] vhci_hcd: vhci_device speed not set
[ 1299.663649][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[ 1299.681224][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.690777][ T3336] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[ 1300.893875][ T3336] usb 7-1: Using ep0 maxpacket: 8
[ 1300.909501][ T3336] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1301.048095][ T3336] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1301.055628][ T3336] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1301.063231][ T3336] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1301.078118][ T3336] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1301.082782][ T3336] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1301.312481][ T3336] usb 7-1: GET_CAPABILITIES returned 0
[ 1301.315455][ T3336] usbtmc 7-1:16.0: can't read capabilities
[ 1301.525933][T21720] FAULT_INJECTION: forcing a failure.
[ 1301.525933][T21720] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1301.547046][T21720] CPU: 0 UID: 0 PID: 21720 Comm: syz.2.3998 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1301.547069][T21720] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1301.547080][T21720] Call Trace:
[ 1301.547087][T21720]  <TASK>
[ 1301.547094][T21720]  dump_stack_lvl+0x16c/0x1f0
[ 1301.547116][T21720]  should_fail_ex+0x512/0x640
[ 1301.547137][T21720]  _copy_to_user+0x32/0xd0
[ 1301.547157][T21720]  simple_read_from_buffer+0xcb/0x170
[ 1301.547183][T21720]  proc_fail_nth_read+0x197/0x270
[ 1301.547207][T21720]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1301.547230][T21720]  ? rw_verify_area+0xcf/0x680
[ 1301.547254][T21720]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1301.547276][T21720]  vfs_read+0x1e4/0xc60
[ 1301.547291][T21720]  ? fdget_pos+0x2a2/0x370
[ 1301.547310][T21720]  ? __pfx_vfs_read+0x10/0x10
[ 1301.547323][T21720]  ? find_held_lock+0x2b/0x80
[ 1301.547347][T21720]  ? __fget_files+0x20e/0x3c0
[ 1301.547371][T21720]  ? __fget_files+0x1b0/0x3c0
[ 1301.547403][T21720]  ksys_read+0x12a/0x250
[ 1301.547419][T21720]  ? __pfx_ksys_read+0x10/0x10
[ 1301.547437][T21720]  ? rcu_is_watching+0x12/0xc0
[ 1301.547458][T21720]  __do_fast_syscall_32+0x7c/0x3a0
[ 1301.547483][T21720]  do_fast_syscall_32+0x32/0x80
[ 1301.547501][T21720]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1301.547522][T21720] RIP: 0023:0xf7f48579
[ 1301.547535][T21720] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1301.547551][T21720] RSP: 002b:00000000f5066590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1301.547567][T21720] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5066620
[ 1301.547578][T21720] RDX: 000000000000000f RSI: 00000000f73d4ff4 RDI: 0000000000000000
[ 1301.547588][T21720] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1301.547598][T21720] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1301.547608][T21720] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1301.547631][T21720]  </TASK>
[ 1301.720184][ T9904] usb 7-1: USB disconnect, device number 34
[ 1303.208253][T21749] FAULT_INJECTION: forcing a failure.
[ 1303.208253][T21749] name failslab, interval 1, probability 0, space 0, times 0
[ 1303.216337][T21749] CPU: 3 UID: 0 PID: 21749 Comm: syz.0.4007 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1303.216364][T21749] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1303.216374][T21749] Call Trace:
[ 1303.216382][T21749]  <TASK>
[ 1303.216389][T21749]  dump_stack_lvl+0x16c/0x1f0
[ 1303.216411][T21749]  should_fail_ex+0x512/0x640
[ 1303.216428][T21749]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1303.216452][T21749]  should_failslab+0xc2/0x120
[ 1303.216472][T21749]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1303.216489][T21749]  ? alloc_empty_file+0x55/0x1e0
[ 1303.216511][T21749]  alloc_empty_file+0x55/0x1e0
[ 1303.216532][T21749]  path_openat+0xda/0x2cb0
[ 1303.216548][T21749]  ? do_fast_syscall_32+0x32/0x80
[ 1303.216566][T21749]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1303.216596][T21749]  ? __pfx_path_openat+0x10/0x10
[ 1303.216616][T21749]  do_filp_open+0x20b/0x470
[ 1303.216631][T21749]  ? __pfx_do_filp_open+0x10/0x10
[ 1303.216664][T21749]  ? _raw_spin_unlock+0x28/0x50
[ 1303.216688][T21749]  ? alloc_fd+0x471/0x7d0
[ 1303.216716][T21749]  do_sys_openat2+0x11b/0x1d0
[ 1303.216736][T21749]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1303.216761][T21749]  ? __fget_files+0x20e/0x3c0
[ 1303.216807][T21749]  __ia32_compat_sys_openat+0x16d/0x210
[ 1303.216829][T21749]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[ 1303.216849][T21749]  ? ksys_write+0x1ac/0x250
[ 1303.216868][T21749]  ? rcu_is_watching+0x12/0xc0
[ 1303.216892][T21749]  __do_fast_syscall_32+0x7c/0x3a0
[ 1303.216911][T21749]  do_fast_syscall_32+0x32/0x80
[ 1303.216928][T21749]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1303.216945][T21749] RIP: 0023:0xf702e579
[ 1303.216960][T21749] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1303.216976][T21749] RSP: 002b:00000000f501e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[ 1303.216995][T21749] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000180
[ 1303.217006][T21749] RDX: 0000000000101000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1303.217016][T21749] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1303.217029][T21749] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1303.217039][T21749] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1303.217061][T21749]  </TASK>
[ 1303.230663][T21750] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4006'.
[ 1303.429498][T21757] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4009'.
[ 1303.559378][T21757] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4009'.
[ 1303.606007][ T9904] hid-generic 0000:7FFFFFFF:0000.002D: unknown main item tag 0x4
[ 1303.610856][ T9904] hid-generic 0000:7FFFFFFF:0000.002D: unknown main item tag 0x0
[ 1303.617442][T21760] siw: device registration error -23
[ 1303.618123][ T9904] hid-generic 0000:7FFFFFFF:0000.002D: unknown main item tag 0x1
[ 1303.640285][ T9904] hid-generic 0000:7FFFFFFF:0000.002D: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1305.008887][T21776] binder: 21775:21776 ioctl 40046205 0 returned -22
[ 1305.030681][T21776] FAULT_INJECTION: forcing a failure.
[ 1305.030681][T21776] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1305.053918][T21776] CPU: 2 UID: 0 PID: 21776 Comm: syz.0.4015 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1305.053965][T21776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1305.053976][T21776] Call Trace:
[ 1305.053983][T21776]  <TASK>
[ 1305.053990][T21776]  dump_stack_lvl+0x16c/0x1f0
[ 1305.054013][T21776]  should_fail_ex+0x512/0x640
[ 1305.054043][T21776]  _copy_from_user+0x2e/0xd0
[ 1305.054062][T21776]  ? __pfx_binder_ioctl+0x10/0x10
[ 1305.054084][T21776]  binder_ioctl+0x57a/0x72c0
[ 1305.054110][T21776]  ? find_held_lock+0x2b/0x80
[ 1305.054129][T21776]  ? tomoyo_path_number_perm+0x295/0x580
[ 1305.054157][T21776]  ? tomoyo_path_number_perm+0x18d/0x580
[ 1305.054181][T21776]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1305.054206][T21776]  ? __pfx_binder_ioctl+0x10/0x10
[ 1305.054227][T21776]  ? do_vfs_ioctl+0x523/0x1a60
[ 1305.054251][T21776]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1305.054287][T21776]  ? find_held_lock+0x2b/0x80
[ 1305.054304][T21776]  ? hook_file_ioctl_common+0x145/0x410
[ 1305.054332][T21776]  ? __fget_files+0x20e/0x3c0
[ 1305.054357][T21776]  ? __fput_deferred+0x480/0x480
[ 1305.054380][T21776]  ? __pfx_binder_ioctl+0x10/0x10
[ 1305.054401][T21776]  compat_ptr_ioctl+0x6e/0xa0
[ 1305.054422][T21776]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[ 1305.054443][T21776]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1305.054470][T21776]  __do_fast_syscall_32+0x7c/0x3a0
[ 1305.054490][T21776]  do_fast_syscall_32+0x32/0x80
[ 1305.054509][T21776]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1305.054530][T21776] RIP: 0023:0xf702e579
[ 1305.054545][T21776] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1305.054562][T21776] RSP: 002b:00000000f501e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1305.054580][T21776] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0306201
[ 1305.054591][T21776] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1305.054602][T21776] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1305.054612][T21776] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1305.054622][T21776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1305.054644][T21776]  </TASK>
[ 1305.055110][T21776] binder: 21775:21776 ioctl c0306201 800001c0 returned -14
[ 1305.355677][T21781] binder: 21780:21781 ioctl 40046205 0 returned -22
[ 1305.423965][T21782] siw: device registration error -23
[ 1305.795275][T21675] usb 9-1: new high-speed USB device number 25 using dummy_hcd
[ 1305.980458][T21675] usb 9-1: Using ep0 maxpacket: 8
[ 1305.985789][T21675] usb 9-1: config 0 has an invalid interface number: 55 but max is 0
[ 1305.990461][T21675] usb 9-1: config 0 has no interface number 0
[ 1305.995184][T21675] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1306.002465][T21675] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1306.011391][T21675] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1306.020027][T21675] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1306.025120][T21785] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4018'.
[ 1306.031799][T21675] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1306.048851][T21785] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4018'.
[ 1306.068309][T21675] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1306.088736][T21675] usb 9-1: config 0 descriptor??
[ 1306.095777][T21675] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1306.346088][ T3336] usb 9-1: USB disconnect, device number 25
[ 1306.351326][ T3336] ldusb 9-1:0.55: LD USB Device #0 now disconnected
[ 1306.600995][T21791] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4020'.
[ 1307.384653][T21804] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4029'.
[ 1308.759067][T21820] FAULT_INJECTION: forcing a failure.
[ 1308.759067][T21820] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1308.767665][T21820] CPU: 0 UID: 0 PID: 21820 Comm: syz.4.4025 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1308.767690][T21820] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1308.767702][T21820] Call Trace:
[ 1308.767710][T21820]  <TASK>
[ 1308.767717][T21820]  dump_stack_lvl+0x16c/0x1f0
[ 1308.767739][T21820]  should_fail_ex+0x512/0x640
[ 1308.767761][T21820]  _copy_from_user+0x2e/0xd0
[ 1308.767781][T21820]  get_user_ifreq+0x116/0x1c0
[ 1308.767803][T21820]  compat_sock_ioctl+0x3f6/0x730
[ 1308.767828][T21820]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1308.767850][T21820]  ? hook_file_ioctl_common+0x145/0x410
[ 1308.767878][T21820]  ? __fget_files+0x20e/0x3c0
[ 1308.767903][T21820]  ? __fput_deferred+0x480/0x480
[ 1308.767929][T21820]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1308.767952][T21820]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1308.767999][T21820]  __do_fast_syscall_32+0x7c/0x3a0
[ 1308.768020][T21820]  do_fast_syscall_32+0x32/0x80
[ 1308.768039][T21820]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1308.768059][T21820] RIP: 0023:0xf704e579
[ 1308.768072][T21820] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1308.768087][T21820] RSP: 002b:00000000f503e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1308.768103][T21820] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008946
[ 1308.768114][T21820] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1308.768125][T21820] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1308.768134][T21820] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1308.768143][T21820] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1308.768165][T21820]  </TASK>
[ 1309.050129][T21826] FAULT_INJECTION: forcing a failure.
[ 1309.050129][T21826] name failslab, interval 1, probability 0, space 0, times 0
[ 1309.066425][T21826] CPU: 2 UID: 0 PID: 21826 Comm: syz.3.4026 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1309.066453][T21826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1309.066465][T21826] Call Trace:
[ 1309.066472][T21826]  <TASK>
[ 1309.066480][T21826]  dump_stack_lvl+0x16c/0x1f0
[ 1309.066504][T21826]  should_fail_ex+0x512/0x640
[ 1309.066520][T21826]  ? fs_reclaim_acquire+0xae/0x150
[ 1309.066545][T21826]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1309.066563][T21826]  should_failslab+0xc2/0x120
[ 1309.066582][T21826]  __kmalloc_noprof+0xd2/0x510
[ 1309.066605][T21826]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1309.066623][T21826]  ? tomoyo_profile+0x47/0x60
[ 1309.066644][T21826]  tomoyo_path_number_perm+0x245/0x580
[ 1309.066665][T21826]  ? tomoyo_path_number_perm+0x237/0x580
[ 1309.066689][T21826]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1309.066736][T21826]  ? find_held_lock+0x2b/0x80
[ 1309.066782][T21826]  ? hook_file_ioctl_common+0x145/0x410
[ 1309.066814][T21826]  ? __fget_files+0x20e/0x3c0
[ 1309.066839][T21826]  ? __fput_deferred+0x480/0x480
[ 1309.066864][T21826]  security_file_ioctl_compat+0x9b/0x240
[ 1309.066893][T21826]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1309.066921][T21826]  __do_fast_syscall_32+0x7c/0x3a0
[ 1309.066944][T21826]  do_fast_syscall_32+0x32/0x80
[ 1309.066962][T21826]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1309.066984][T21826] RIP: 0023:0xf703e579
[ 1309.067006][T21826] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1309.067024][T21826] RSP: 002b:00000000f500d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1309.067042][T21826] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000000ae80
[ 1309.067053][T21826] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1309.067063][T21826] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1309.067073][T21826] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1309.067082][T21826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1309.067107][T21826]  </TASK>
[ 1309.067114][T21826] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1309.080795][T21828] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4028'.
[ 1309.299416][T21828] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4028'.
[ 1309.457821][T21675] hid-generic 0000:7FFFFFFF:0000.002E: unknown main item tag 0x4
[ 1309.485347][T21675] hid-generic 0000:7FFFFFFF:0000.002E: unknown main item tag 0x0
[ 1309.504361][T21675] hid-generic 0000:7FFFFFFF:0000.002E: unknown main item tag 0x1
[ 1309.509385][T21675] hid-generic 0000:7FFFFFFF:0000.002E: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1310.067942][T21842] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4033'.
[ 1310.708199][T21675] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[ 1310.878140][T21675] usb 9-1: Using ep0 maxpacket: 8
[ 1310.884912][T21675] usb 9-1: config 0 has an invalid interface number: 55 but max is 0
[ 1310.924165][T21675] usb 9-1: config 0 has no interface number 0
[ 1310.927292][T21675] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1310.956350][T21675] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1311.000812][T21675] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1311.007819][T21675] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1311.045388][T21675] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1311.049524][T21675] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1311.070004][T21675] usb 9-1: config 0 descriptor??
[ 1311.076718][T21675] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1311.393374][T21675] usb 9-1: USB disconnect, device number 26
[ 1311.399929][T21675] ldusb 9-1:0.55: LD USB Device #0 now disconnected
[ 1311.875920][T21869] siw: device registration error -23
[ 1312.417266][T21874] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4040'.
[ 1312.432662][T21874] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4040'.
[ 1312.568150][ T3336] hid-generic 0000:7FFFFFFF:0000.002F: unknown main item tag 0x4
[ 1312.574659][ T3336] hid-generic 0000:7FFFFFFF:0000.002F: unknown main item tag 0x0
[ 1312.624678][ T3336] hid-generic 0000:7FFFFFFF:0000.002F: unknown main item tag 0x1
[ 1312.630807][ T3336] hid-generic 0000:7FFFFFFF:0000.002F: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1312.843589][T21885] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4043'.
[ 1312.915449][T21887] FAULT_INJECTION: forcing a failure.
[ 1312.915449][T21887] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1312.958879][T21887] CPU: 3 UID: 0 PID: 21887 Comm: syz.3.4046 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1312.958909][T21887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1312.958921][T21887] Call Trace:
[ 1312.958929][T21887]  <TASK>
[ 1312.958938][T21887]  dump_stack_lvl+0x16c/0x1f0
[ 1312.958965][T21887]  should_fail_ex+0x512/0x640
[ 1312.958998][T21887]  _copy_from_user+0x2e/0xd0
[ 1312.959022][T21887]  video_usercopy+0x723/0x1440
[ 1312.959046][T21887]  ? __pfx___video_do_ioctl+0x10/0x10
[ 1312.959068][T21887]  ? __pfx_video_usercopy+0x10/0x10
[ 1312.959097][T21887]  ? hook_file_ioctl_common+0x145/0x410
[ 1312.959130][T21887]  v4l2_ioctl+0x1bd/0x250
[ 1312.959167][T21887]  ? __pfx_fput+0x1/0x10
[ 1312.959191][T21887]  v4l2_compat_ioctl32+0x214/0x2c0
[ 1312.959217][T21887]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[ 1312.959243][T21887]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1312.959271][T21887]  __do_fast_syscall_32+0x7c/0x3a0
[ 1312.959294][T21887]  do_fast_syscall_32+0x32/0x80
[ 1312.959313][T21887]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1312.959336][T21887] RIP: 0023:0xf703e579
[ 1312.959351][T21887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1312.959370][T21887] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1312.959390][T21887] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0405668
[ 1312.959402][T21887] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1312.959414][T21887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1312.959425][T21887] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1312.959437][T21887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1312.959461][T21887]  </TASK>
[ 1313.571106][T21675] usb 8-1: new high-speed USB device number 40 using dummy_hcd
[ 1313.734825][T21675] usb 8-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[ 1313.739251][T21675] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1313.742928][T21675] usb 8-1: Product: syz
[ 1313.744919][T21675] usb 8-1: Manufacturer: syz
[ 1313.747441][T21675] usb 8-1: SerialNumber: syz
[ 1313.766838][T21675] usb 8-1: config 0 descriptor??
[ 1313.984920][T21890] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1313.990944][T21890] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1314.011124][T21675] usb 8-1: USB disconnect, device number 40
[ 1314.120647][T21905] lo speed is unknown, defaulting to 1000
[ 1314.363047][   T40] audit: type=1326 audit(1754265303.771:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21908 comm="syz.0.4051" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702e579 code=0x0
[ 1314.606191][T21913] siw: device registration error -23
[ 1314.851414][T21915] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4052'.
[ 1314.857084][T21915] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4052'.
[ 1314.986611][T21920] FAULT_INJECTION: forcing a failure.
[ 1314.986611][T21920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1314.995363][T21920] CPU: 1 UID: 0 PID: 21920 Comm: syz.2.4054 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1314.995389][T21920] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1314.995401][T21920] Call Trace:
[ 1314.995407][T21920]  <TASK>
[ 1314.995416][T21920]  dump_stack_lvl+0x16c/0x1f0
[ 1314.995440][T21920]  should_fail_ex+0x512/0x640
[ 1314.995463][T21920]  strncpy_from_user+0x3b/0x2e0
[ 1314.995493][T21920]  getname_flags.part.0+0x8f/0x550
[ 1314.995522][T21920]  getname_flags+0x93/0xf0
[ 1314.995548][T21920]  __ia32_sys_mknod+0x72/0xb0
[ 1314.995566][T21920]  __do_fast_syscall_32+0x7c/0x3a0
[ 1314.995588][T21920]  do_fast_syscall_32+0x32/0x80
[ 1314.995607][T21920]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1314.995630][T21920] RIP: 0023:0xf7f48579
[ 1314.995645][T21920] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1314.995662][T21920] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 000000000000000e
[ 1314.995681][T21920] RAX: ffffffffffffffda RBX: 0000000080000140 RCX: 0000000000002000
[ 1314.995692][T21920] RDX: 0000000000000705 RSI: 0000000000000000 RDI: 0000000000000000
[ 1314.995703][T21920] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1314.995713][T21920] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1314.995723][T21920] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1314.995746][T21920]  </TASK>
[ 1315.589025][T21929] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1315.594134][T21929] 9pnet_fd: Insufficient options for proto=fd
[ 1316.638104][   T34] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1316.764635][T21943] FAULT_INJECTION: forcing a failure.
[ 1316.764635][T21943] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1316.769851][T21943] CPU: 1 UID: 0 PID: 21943 Comm: syz.3.4061 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1316.769866][T21943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1316.769874][T21943] Call Trace:
[ 1316.769878][T21943]  <TASK>
[ 1316.769882][T21943]  dump_stack_lvl+0x16c/0x1f0
[ 1316.769898][T21943]  should_fail_ex+0x512/0x640
[ 1316.769912][T21943]  _copy_from_user+0x2e/0xd0
[ 1316.769925][T21943]  get_user_ifreq+0x116/0x1c0
[ 1316.769939][T21943]  sock_ioctl+0x586/0x6b0
[ 1316.769954][T21943]  ? __pfx_sock_ioctl+0x10/0x10
[ 1316.769968][T21943]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1316.769998][T21943]  compat_sock_ioctl+0x58b/0x730
[ 1316.770014][T21943]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1316.770030][T21943]  ? hook_file_ioctl_common+0x145/0x410
[ 1316.770048][T21943]  ? __fget_files+0x20e/0x3c0
[ 1316.770064][T21943]  ? __fput_deferred+0x480/0x480
[ 1316.770081][T21943]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1316.770096][T21943]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1316.770113][T21943]  __do_fast_syscall_32+0x7c/0x3a0
[ 1316.770126][T21943]  do_fast_syscall_32+0x32/0x80
[ 1316.770137][T21943]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1316.770151][T21943] RIP: 0023:0xf703e579
[ 1316.770160][T21943] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1316.770171][T21943] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1316.770182][T21943] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000000089f2
[ 1316.770188][T21943] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 1316.770194][T21943] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1316.770201][T21943] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1316.770207][T21943] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1316.770219][T21943]  </TASK>
[ 1316.798098][   T34] usb 5-1: Using ep0 maxpacket: 8
[ 1316.853930][   T34] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[ 1316.857417][   T34] usb 5-1: config 0 has no interface number 0
[ 1316.860131][   T34] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1316.864410][   T34] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1316.870059][   T34] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1316.874347][   T34] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1316.879476][   T34] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1316.883225][   T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1316.888449][   T34] usb 5-1: config 0 descriptor??
[ 1316.894019][   T34] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1316.945734][T21952] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4064'.
[ 1316.948840][T21952] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4064'.
[ 1317.014323][   T40] audit: type=1326 audit(1754265306.421:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21953 comm="syz.3.4065" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e579 code=0x0
[ 1317.066473][T21955] lo speed is unknown, defaulting to 1000
[ 1317.102229][   T29] usb 5-1: USB disconnect, device number 22
[ 1317.105757][   T29] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[ 1317.919115][T21963] sp0: Synchronizing with TNC
[ 1317.989414][T21962] [U] è``
[ 1318.143722][T21966] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4068'.
[ 1318.163572][T21966] lo speed is unknown, defaulting to 1000
[ 1318.211751][T21966] /dev/nullb0: Can't open blockdev
[ 1318.787346][T21987] netlink: 216 bytes leftover after parsing attributes in process `syz.0.4073'.
[ 1318.790403][T21987] netlink: 216 bytes leftover after parsing attributes in process `syz.0.4073'.
[ 1318.968110][T21675] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[ 1319.118381][T21675] usb 9-1: Using ep0 maxpacket: 32
[ 1319.128778][T21675] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1319.134181][T21675] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1319.137094][T21675] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1319.139870][T21675] usb 9-1: Product: syz
[ 1319.141420][T21675] usb 9-1: Manufacturer: syz
[ 1319.143578][T21675] usb 9-1: SerialNumber: syz
[ 1319.147128][T21675] usb 9-1: config 0 descriptor??
[ 1319.150428][T21983] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1319.237677][T21998] lo speed is unknown, defaulting to 1000
[ 1319.347107][T22007] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4077'.
[ 1319.361056][T17301] usb 9-1: USB disconnect, device number 27
[ 1319.394438][T22000] lo speed is unknown, defaulting to 1000
[ 1319.757506][T22020] netlink: 216 bytes leftover after parsing attributes in process `syz.0.4082'.
[ 1319.760432][T22020] netlink: 216 bytes leftover after parsing attributes in process `syz.0.4082'.
[ 1319.888370][   T34] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[ 1319.915810][T22024] netlink: 216 bytes leftover after parsing attributes in process `syz.0.4091'.
[ 1319.919858][T22024] netlink: 216 bytes leftover after parsing attributes in process `syz.0.4091'.
[ 1319.990021][T22025] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4083'.
[ 1320.074439][   T34] usb 7-1: Using ep0 maxpacket: 8
[ 1320.083876][   T34] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[ 1320.086779][   T34] usb 7-1: config 0 has no interface number 0
[ 1320.088860][   T34] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1320.092703][   T34] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1320.097485][   T34] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1320.102465][   T34] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1320.107507][   T34] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1320.118317][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1320.123097][   T34] usb 7-1: config 0 descriptor??
[ 1320.150693][   T34] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1320.351163][   T29] usb 7-1: USB disconnect, device number 35
[ 1320.365448][   T29] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[ 1320.424942][T22036] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4087'.
[ 1320.437195][T22036] xt_SECMARK: invalid mode: 0
[ 1321.613849][T22057] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 1321.616025][T22057] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1321.621323][T22057] vhci_hcd vhci_hcd.0: Device attached
[ 1321.625610][T22058] usbip_core: unknown command
[ 1321.627241][T22058] vhci_hcd: unknown pdu 774857321
[ 1321.629204][T22058] usbip_core: unknown command
[ 1321.631138][ T1136] vhci_hcd: stop threads
[ 1321.632622][ T1136] vhci_hcd: release socket
[ 1321.637761][ T1136] vhci_hcd: disconnect device
[ 1323.941065][T22051] lo speed is unknown, defaulting to 1000
[ 1324.384736][T22085] siw: device registration error -23
[ 1324.535802][T18363] libceph: connect (1)[c::]:6789 error -101
[ 1324.538860][T18363] libceph: mon0 (1)[c::]:6789 connect error
[ 1324.620406][T22089] vxfs: WRONG superblock magic 00000000 at 1
[ 1324.642363][T22086] ceph: No mds server is up or the cluster is laggy
[ 1324.648406][T22089] vxfs: WRONG superblock magic 00000000 at 8
[ 1324.658302][T22089] vxfs: can't find superblock.
[ 1325.005740][T22096] __nla_validate_parse: 4 callbacks suppressed
[ 1325.005753][T22096] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4102'.
[ 1325.011712][T22096] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4102'.
[ 1325.364633][   T40] audit: type=1804 audit(1754265314.771:889): pid=22103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.4104" name="/newroot/432/file0/file0" dev="9p" ino=35913882 res=1 errno=0
[ 1325.538192][T22109] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1325.540935][T22109] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1325.546571][T22109] vhci_hcd vhci_hcd.0: Device attached
[ 1325.553052][T22110] usbip_core: unknown command
[ 1325.555824][T22110] vhci_hcd: unknown pdu 774857321
[ 1325.557952][T22110] usbip_core: unknown command
[ 1325.798088][   T34] usb 37-1: new high-speed USB device number 10 using vhci_hcd
[ 1325.854041][T22113] netlink: 256 bytes leftover after parsing attributes in process `syz.0.4106'.
[ 1326.019782][ T1202] vhci_hcd: stop threads
[ 1326.021241][ T1202] vhci_hcd: release socket
[ 1326.028064][ T1202] vhci_hcd: disconnect device
[ 1326.249672][T22118] sctp: [Deprecated]: syz.2.4107 (pid 22118) Use of int in max_burst socket option deprecated.
[ 1326.249672][T22118] Use struct sctp_assoc_value instead
[ 1326.562916][T22124] lo speed is unknown, defaulting to 1000
[ 1327.300248][T22131] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4111'.
[ 1327.302793][T22131] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4111'.
[ 1327.537892][T22137] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4113'.
[ 1327.553965][T22137] lo speed is unknown, defaulting to 1000
[ 1327.732465][T22144] siw: device registration error -23
[ 1328.274067][   T40] audit: type=1326 audit(1754265317.681:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22149 comm="syz.2.4115" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f48579 code=0x0
[ 1328.751656][T22164] lo speed is unknown, defaulting to 1000
[ 1329.171925][T22168] FAULT_INJECTION: forcing a failure.
[ 1329.171925][T22168] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1329.176442][T22168] CPU: 2 UID: 0 PID: 22168 Comm: syz.2.4119 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1329.176458][T22168] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1329.176465][T22168] Call Trace:
[ 1329.176470][T22168]  <TASK>
[ 1329.176475][T22168]  dump_stack_lvl+0x16c/0x1f0
[ 1329.176490][T22168]  should_fail_ex+0x512/0x640
[ 1329.176505][T22168]  _copy_from_user+0x2e/0xd0
[ 1329.176518][T22168]  video_usercopy+0x723/0x1440
[ 1329.176531][T22168]  ? __pfx___video_do_ioctl+0x10/0x10
[ 1329.176543][T22168]  ? __pfx_video_usercopy+0x10/0x10
[ 1329.176560][T22168]  ? hook_file_ioctl_common+0x145/0x410
[ 1329.176578][T22168]  v4l2_ioctl+0x1bd/0x250
[ 1329.176587][T22168]  ? __pfx_fput+0x1/0x10
[ 1329.176602][T22168]  v4l2_compat_ioctl32+0x214/0x2c0
[ 1329.176619][T22168]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[ 1329.176636][T22168]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1329.176654][T22168]  __do_fast_syscall_32+0x7c/0x3a0
[ 1329.176667][T22168]  do_fast_syscall_32+0x32/0x80
[ 1329.176679][T22168]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1329.176693][T22168] RIP: 0023:0xf7f48579
[ 1329.176702][T22168] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1329.176713][T22168] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1329.176724][T22168] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0485619
[ 1329.176731][T22168] RDX: 0000000080000240 RSI: 0000000000000000 RDI: 0000000000000000
[ 1329.176737][T22168] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1329.176744][T22168] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1329.176750][T22168] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1329.176763][T22168]  </TASK>
[ 1329.500135][T22180] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1329.502885][T22180] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1329.507092][T22180] vhci_hcd vhci_hcd.0: Device attached
[ 1329.512995][T22181] usbip_core: unknown command
[ 1329.514887][T22181] vhci_hcd: unknown pdu 774857321
[ 1329.517526][T22181] usbip_core: unknown command
[ 1329.522289][ T1202] vhci_hcd: stop threads
[ 1329.524017][ T1202] vhci_hcd: release socket
[ 1329.525805][ T1202] vhci_hcd: disconnect device
[ 1329.862980][T22188] syzkaller0: entered promiscuous mode
[ 1329.864980][T22188] syzkaller0: entered allmulticast mode
[ 1330.037127][T22180] netlink: 256 bytes leftover after parsing attributes in process `syz.4.4122'.
[ 1330.684194][T22202] siw: device registration error -23
[ 1330.888294][T22204] bridge0: entered promiscuous mode
[ 1330.890128][T22204] bridge0: entered allmulticast mode
[ 1330.902389][T22204] team0: Port device bridge0 added
[ 1330.918117][   T34] vhci_hcd: vhci_device speed not set
[ 1331.258158][T17301] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1331.408099][T17301] usb 5-1: Using ep0 maxpacket: 8
[ 1331.411310][T17301] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[ 1331.414885][T17301] usb 5-1: config 0 has no interface number 0
[ 1331.415795][T22214] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4131'.
[ 1331.417291][T17301] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1331.417309][T17301] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1331.417327][T17301] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1331.417342][T17301] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1331.417399][T17301] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1331.417413][T17301] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1331.419188][T17301] usb 5-1: config 0 descriptor??
[ 1331.421367][T22214] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4131'.
[ 1331.427886][T17301] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1331.528405][ T9904] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[ 1331.545100][T22218] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4133'.
[ 1331.549188][T22218] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4133'.
[ 1331.678168][ T9904] usb 7-1: Using ep0 maxpacket: 8
[ 1331.681926][   T29] usb 5-1: USB disconnect, device number 23
[ 1331.683537][ T9904] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[ 1331.687528][ T9904] usb 7-1: config 0 has no interface number 0
[ 1331.687758][   T29] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[ 1331.690214][ T9904] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1331.696753][ T9904] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1331.703206][ T9904] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1331.707747][ T9904] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1331.713170][ T9904] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1331.716859][ T9904] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1331.722199][ T9904] usb 7-1: config 0 descriptor??
[ 1331.728297][ T9904] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1331.856375][T22221] : entered promiscuous mode
[ 1331.981963][   T29] usb 7-1: USB disconnect, device number 36
[ 1331.996043][   T29] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[ 1332.143113][T22222] lo speed is unknown, defaulting to 1000
[ 1333.821017][T22249] siw: device registration error -23
[ 1335.196376][   T40] audit: type=1326 audit(1754265324.601:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22264 comm="syz.0.4144" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702e579 code=0x0
[ 1335.579603][T22271] lo speed is unknown, defaulting to 1000
[ 1335.953920][T22281] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 1335.956223][T22281] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1335.959164][T22281] vhci_hcd vhci_hcd.0: Device attached
[ 1335.966278][T22282] usbip_core: unknown command
[ 1335.972400][T22282] vhci_hcd: unknown pdu 774857321
[ 1335.974604][T22282] usbip_core: unknown command
[ 1335.978290][T16794] vhci_hcd: stop threads
[ 1335.980219][T16794] vhci_hcd: release socket
[ 1335.983316][T16794] vhci_hcd: disconnect device
[ 1336.156519][T22285] netlink: 256 bytes leftover after parsing attributes in process `syz.3.4147'.
[ 1336.174170][T22284] team0: Port device bridge0 removed
[ 1339.081828][T22320] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1339.083831][T22320] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1339.086385][T22320] vhci_hcd vhci_hcd.0: Device attached
[ 1339.583859][T22321] vhci_hcd: connection closed
[ 1339.584030][   T91] vhci_hcd: stop threads
[ 1339.587033][   T91] vhci_hcd: release socket
[ 1339.592798][   T91] vhci_hcd: disconnect device
[ 1339.608077][   T29] usb 46-1: enqueue for inactive port 0
[ 1339.933223][T22332] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4159'.
[ 1339.945826][T22332] lo speed is unknown, defaulting to 1000
[ 1340.100739][   T29] usb usb46-port1: attempt power cycle
[ 1340.287477][T22331] lo speed is unknown, defaulting to 1000
[ 1340.350424][T22341] 9pnet: p9_errstr2errno: server reported unknown error 18446744
[ 1340.774803][ T6044] libceph: connect (1)[c::]:6789 error -101
[ 1340.779832][ T6044] libceph: mon0 (1)[c::]:6789 connect error
[ 1340.821682][T22353] ceph: No mds server is up or the cluster is laggy
[ 1340.845265][   T29] usb usb46-port1: unable to enumerate USB device
[ 1340.992327][T22360] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1340.995148][T22360] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1341.000881][T22360] vhci_hcd vhci_hcd.0: Device attached
[ 1341.007710][T22361] usbip_core: unknown command
[ 1341.010189][T22361] vhci_hcd: unknown pdu 774857321
[ 1341.012354][T22361] usbip_core: unknown command
[ 1341.014728][ T1202] vhci_hcd: stop threads
[ 1341.016593][ T1202] vhci_hcd: release socket
[ 1341.022890][ T1202] vhci_hcd: disconnect device
[ 1341.164221][T22365] netlink: 256 bytes leftover after parsing attributes in process `syz.4.4166'.
[ 1341.747107][T22369] siw: device registration error -23
[ 1342.457554][T22373] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4175'.
[ 1342.547546][T22373] bond1: entered promiscuous mode
[ 1342.550199][T22373] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1342.606010][T22375] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1342.627733][T22375] bond1: (slave vcan1): The slave device specified does not support setting the MAC address
[ 1342.632174][T22375] bond1: (slave vcan1): Error -95 calling set_mac_address
[ 1343.245665][T22390] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4172'.
[ 1343.250252][T22390] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4172'.
[ 1343.612604][T22393] : entered promiscuous mode
[ 1344.220669][T22398] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4174'.
[ 1344.234372][T22398] lo speed is unknown, defaulting to 1000
[ 1344.476463][T22408] siw: device registration error -23
[ 1344.542596][T22409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4177'.
[ 1344.582405][T22409] vxfs: WRONG superblock magic 00000000 at 1
[ 1344.585575][T22409] vxfs: WRONG superblock magic 00000000 at 8
[ 1344.588132][T22409] vxfs: can't find superblock.
[ 1344.736818][T22411] lo speed is unknown, defaulting to 1000
[ 1345.251201][T22421] .: renamed from bond0 (while UP)
[ 1345.322086][T22424] netlink: 'syz.0.4180': attribute type 6 has an invalid length.
[ 1345.324838][T22424] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.4180'.
[ 1345.338257][T22424] pim6reg: entered allmulticast mode
[ 1345.342607][T22424] pim6reg: left allmulticast mode
[ 1345.446393][T22426] lo speed is unknown, defaulting to 1000
[ 1346.404491][T22445] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1346.407303][T22445] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1346.414300][T22445] vhci_hcd vhci_hcd.0: Device attached
[ 1346.435713][T22446] usbip_core: unknown command
[ 1346.439363][T22446] vhci_hcd: unknown pdu 774857321
[ 1346.448039][T22446] usbip_core: unknown command
[ 1346.449823][ T1136] vhci_hcd: stop threads
[ 1346.451239][ T1136] vhci_hcd: release socket
[ 1346.452720][ T1136] vhci_hcd: disconnect device
[ 1346.839508][T22449] netlink: 256 bytes leftover after parsing attributes in process `syz.4.4184'.
[ 1347.069475][   T40] audit: type=1326 audit(1754265336.481:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22454 comm="syz.3.4188" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e579 code=0x0
[ 1347.263162][T22459] bridge0: entered promiscuous mode
[ 1347.265163][T22459] bridge0: entered allmulticast mode
[ 1347.282740][T22459] team0: Port device bridge0 added
[ 1347.509526][T22456] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4187'.
[ 1347.521135][T22456] lo speed is unknown, defaulting to 1000
[ 1347.836385][T22467] ipvlan2: entered promiscuous mode
[ 1347.847907][T22467] netlink: 'syz.0.4190': attribute type 4 has an invalid length.
[ 1347.854530][T22467] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4190'.
[ 1349.013194][T22484] lo speed is unknown, defaulting to 1000
[ 1349.311234][T22496] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4199'.
[ 1349.314087][T22496] netlink: 216 bytes leftover after parsing attributes in process `syz.3.4199'.
[ 1349.336141][   T34] hid-generic 0000:7FFFFFFF:0000.0030: unknown main item tag 0x4
[ 1349.339810][   T34] hid-generic 0000:7FFFFFFF:0000.0030: unknown main item tag 0x0
[ 1349.342541][   T34] hid-generic 0000:7FFFFFFF:0000.0030: unknown main item tag 0x1
[ 1349.345850][   T34] hid-generic 0000:7FFFFFFF:0000.0030: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1349.668149][T17301] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[ 1350.618117][T17301] usb 9-1: Using ep0 maxpacket: 8
[ 1350.628074][T17301] usb 9-1: config 0 has an invalid interface number: 55 but max is 0
[ 1350.630663][T17301] usb 9-1: config 0 has no interface number 0
[ 1350.632636][T17301] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1350.636062][T17301] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1350.647467][T17301] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1350.651164][T17301] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1350.655456][T17301] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1350.658976][T17301] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1350.662797][T17301] usb 9-1: config 0 descriptor??
[ 1350.673239][T17301] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1350.804548][T22529] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4210'.
[ 1350.808464][T22529] netlink: 216 bytes leftover after parsing attributes in process `syz.2.4210'.
[ 1350.840882][   T34] hid-generic 0000:7FFFFFFF:0000.0031: unknown main item tag 0x4
[ 1350.844443][   T34] hid-generic 0000:7FFFFFFF:0000.0031: unknown main item tag 0x0
[ 1350.847078][   T34] hid-generic 0000:7FFFFFFF:0000.0031: unknown main item tag 0x1
[ 1350.866896][T22530] can0: slcan on pty20.
[ 1350.868495][   T34] hid-generic 0000:7FFFFFFF:0000.0031: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1350.938939][   T29] libceph: connect (1)[c::]:6789 error -101
[ 1350.941473][   T29] libceph: mon0 (1)[c::]:6789 connect error
[ 1350.977289][T22531] ceph: No mds server is up or the cluster is laggy
[ 1351.164518][   T29] usb 9-1: USB disconnect, device number 28
[ 1351.173716][   T29] ldusb 9-1:0.55: LD USB Device #0 now disconnected
[ 1351.539664][T22516] can0 (unregistered): slcan off pty20.
[ 1351.635225][T22538] lo speed is unknown, defaulting to 1000
[ 1351.804759][T22547] siw: device registration error -23
[ 1352.563114][T22563] pim6reg: entered allmulticast mode
[ 1352.582929][T22565] FAULT_INJECTION: forcing a failure.
[ 1352.582929][T22565] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1352.587026][T22565] CPU: 0 UID: 0 PID: 22565 Comm: syz.3.4216 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1352.587041][T22565] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1352.587049][T22565] Call Trace:
[ 1352.587053][T22565]  <TASK>
[ 1352.587058][T22565]  dump_stack_lvl+0x16c/0x1f0
[ 1352.587073][T22565]  should_fail_ex+0x512/0x640
[ 1352.587088][T22565]  _copy_to_user+0x32/0xd0
[ 1352.587101][T22565]  simple_read_from_buffer+0xcb/0x170
[ 1352.587119][T22565]  proc_fail_nth_read+0x197/0x270
[ 1352.587135][T22565]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1352.587151][T22565]  ? rw_verify_area+0xcf/0x680
[ 1352.587168][T22565]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1352.587183][T22565]  vfs_read+0x1e4/0xc60
[ 1352.587193][T22565]  ? fdget_pos+0x2a2/0x370
[ 1352.587205][T22565]  ? __pfx_vfs_read+0x10/0x10
[ 1352.587214][T22565]  ? find_held_lock+0x2b/0x80
[ 1352.587231][T22565]  ? __fget_files+0x20e/0x3c0
[ 1352.587252][T22565]  ksys_read+0x12a/0x250
[ 1352.587262][T22565]  ? __pfx_ksys_read+0x10/0x10
[ 1352.587273][T22565]  ? rcu_is_watching+0x12/0xc0
[ 1352.587287][T22565]  __do_fast_syscall_32+0x7c/0x3a0
[ 1352.587300][T22565]  do_fast_syscall_32+0x32/0x80
[ 1352.587312][T22565]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1352.587325][T22565] RIP: 0023:0xf703e579
[ 1352.587334][T22565] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1352.587345][T22565] RSP: 002b:00000000f502e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1352.587356][T22565] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f502e620
[ 1352.587363][T22565] RDX: 000000000000000f RSI: 00000000f73a4ff4 RDI: 0000000000000000
[ 1352.587369][T22565] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1352.587375][T22565] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1352.587382][T22565] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1352.587395][T22565]  </TASK>
[ 1352.788491][T22572] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4219'.
[ 1352.792364][T22572] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4219'.
[ 1352.846167][T17301] hid-generic 0000:7FFFFFFF:0000.0032: unknown main item tag 0x4
[ 1352.888085][T17301] hid-generic 0000:7FFFFFFF:0000.0032: unknown main item tag 0x0
[ 1352.890557][T17301] hid-generic 0000:7FFFFFFF:0000.0032: unknown main item tag 0x1
[ 1352.894526][T17301] hid-generic 0000:7FFFFFFF:0000.0032: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1353.238401][T22578] vxfs: WRONG superblock magic 00000000 at 1
[ 1353.241299][T22578] vxfs: WRONG superblock magic 00000000 at 8
[ 1353.243583][T22578] vxfs: can't find superblock.
[ 1353.416944][   T40] audit: type=1326 audit(1754265342.821:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22583 comm="syz.4.4225" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704e579 code=0x0
[ 1353.987588][T16794] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1354.343380][T22596] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1354.345911][T22596] IPv6: NLM_F_CREATE should be set when creating new route
[ 1354.348403][T22596] IPv6: NLM_F_CREATE should be set when creating new route
[ 1354.352022][T22596] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1354.977411][T17301] libceph: connect (1)[c::]:6789 error -97
[ 1354.979373][T17301] libceph: mon0 (1)[c::]:6789 connect error
[ 1355.238618][T17301] libceph: connect (1)[c::]:6789 error -97
[ 1355.241435][T17301] libceph: mon0 (1)[c::]:6789 connect error
[ 1355.721762][T22601] ceph: No mds server is up or the cluster is laggy
[ 1356.048183][T17108] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1356.304832][   T40] audit: type=1804 audit(1754265345.711:894): pid=22616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.4233" name="/newroot/466/file1" dev="tmpfs" ino=2539 res=1 errno=0
[ 1356.316840][   T40] audit: type=1800 audit(1754265345.721:895): pid=22616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4233" name="file1" dev="tmpfs" ino=2539 res=0 errno=0
[ 1356.867563][T22627] ptrace attach of "/syz-executor exec"[22628] was attempted by "/syz-executor exec"[22627]
[ 1357.445321][T22634] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4238'.
[ 1357.449489][T22634] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4238'.
[ 1357.465733][ T6050] hid-generic 0000:7FFFFFFF:0000.0033: unknown main item tag 0x4
[ 1357.468546][ T6050] hid-generic 0000:7FFFFFFF:0000.0033: unknown main item tag 0x0
[ 1357.471988][ T6050] hid-generic 0000:7FFFFFFF:0000.0033: unknown main item tag 0x1
[ 1357.476199][ T6050] hid-generic 0000:7FFFFFFF:0000.0033: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1357.529752][T22638] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1357.531851][T22638] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1357.535953][T22638] vhci_hcd vhci_hcd.0: Device attached
[ 1357.540312][T22639] usbip_core: unknown command
[ 1357.541981][T22639] vhci_hcd: unknown pdu 774857321
[ 1357.544166][T22639] usbip_core: unknown command
[ 1357.545932][   T91] vhci_hcd: stop threads
[ 1357.547325][   T91] vhci_hcd: release socket
[ 1357.549241][   T91] vhci_hcd: disconnect device
[ 1357.712713][T22641] netlink: 256 bytes leftover after parsing attributes in process `syz.2.4239'.
[ 1357.797763][T22643] lo speed is unknown, defaulting to 1000
[ 1358.071939][T22647] FAULT_INJECTION: forcing a failure.
[ 1358.071939][T22647] name failslab, interval 1, probability 0, space 0, times 0
[ 1358.076319][T22647] CPU: 0 UID: 0 PID: 22647 Comm: syz.0.4241 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1358.076334][T22647] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1358.076342][T22647] Call Trace:
[ 1358.076347][T22647]  <TASK>
[ 1358.076352][T22647]  dump_stack_lvl+0x16c/0x1f0
[ 1358.076368][T22647]  should_fail_ex+0x512/0x640
[ 1358.076380][T22647]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1358.076399][T22647]  should_failslab+0xc2/0x120
[ 1358.076412][T22647]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1358.076429][T22647]  ? vhost_task_create+0xe5/0x2e0
[ 1358.076446][T22647]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[ 1358.076464][T22647]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[ 1358.076477][T22647]  vhost_task_create+0xe5/0x2e0
[ 1358.076493][T22647]  ? __pfx_vhost_task_create+0x10/0x10
[ 1358.076509][T22647]  ? kvm_mmu_post_init_vm+0xb4/0x370
[ 1358.076526][T22647]  ? __pfx_vhost_task_fn+0x10/0x10
[ 1358.076549][T22647]  kvm_mmu_post_init_vm+0x1b7/0x370
[ 1358.076565][T22647]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[ 1358.076579][T22647]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[ 1358.076599][T22647]  kvm_vcpu_ioctl+0x5eb/0x1690
[ 1358.076615][T22647]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1358.076628][T22647]  ? tomoyo_path_number_perm+0x18d/0x580
[ 1358.076646][T22647]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1358.076661][T22647]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1358.076679][T22647]  ? do_vfs_ioctl+0x523/0x1a60
[ 1358.076695][T22647]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1358.076721][T22647]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[ 1358.076736][T22647]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[ 1358.076750][T22647]  ? __fget_files+0x20e/0x3c0
[ 1358.076766][T22647]  ? __fput_deferred+0x480/0x480
[ 1358.076782][T22647]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[ 1358.076796][T22647]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1358.076814][T22647]  __do_fast_syscall_32+0x7c/0x3a0
[ 1358.076828][T22647]  do_fast_syscall_32+0x32/0x80
[ 1358.076839][T22647]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1358.076853][T22647] RIP: 0023:0xf702e579
[ 1358.076862][T22647] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1358.076873][T22647] RSP: 002b:00000000f501e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1358.076883][T22647] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[ 1358.076890][T22647] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1358.076896][T22647] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1358.076902][T22647] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1358.076908][T22647] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1358.076921][T22647]  </TASK>
[ 1359.223260][T22660] FAULT_INJECTION: forcing a failure.
[ 1359.223260][T22660] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1359.227291][T22660] CPU: 1 UID: 0 PID: 22660 Comm: syz.4.4245 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1359.227305][T22660] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1359.227313][T22660] Call Trace:
[ 1359.227317][T22660]  <TASK>
[ 1359.227322][T22660]  dump_stack_lvl+0x16c/0x1f0
[ 1359.227337][T22660]  should_fail_ex+0x512/0x640
[ 1359.227351][T22660]  _copy_from_user+0x2e/0xd0
[ 1359.227363][T22660]  video_usercopy+0x723/0x1440
[ 1359.227377][T22660]  ? __pfx___video_do_ioctl+0x10/0x10
[ 1359.227389][T22660]  ? __pfx_video_usercopy+0x10/0x10
[ 1359.227405][T22660]  ? hook_file_ioctl_common+0x145/0x410
[ 1359.227422][T22660]  v4l2_ioctl+0x1bd/0x250
[ 1359.227432][T22660]  ? __pfx_fput+0x1/0x10
[ 1359.227446][T22660]  v4l2_compat_ioctl32+0x214/0x2c0
[ 1359.227463][T22660]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[ 1359.227480][T22660]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1359.227498][T22660]  __do_fast_syscall_32+0x7c/0x3a0
[ 1359.227516][T22660]  do_fast_syscall_32+0x32/0x80
[ 1359.227528][T22660]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1359.227544][T22660] RIP: 0023:0xf704e579
[ 1359.227553][T22660] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1359.227564][T22660] RSP: 002b:00000000f503e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1359.227575][T22660] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040085618
[ 1359.227581][T22660] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[ 1359.227588][T22660] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1359.227594][T22660] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1359.227600][T22660] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1359.227613][T22660]  </TASK>
[ 1359.283073][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1359.473650][T22665] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1359.475722][T22665] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1359.478911][T22665] vhci_hcd vhci_hcd.0: Device attached
[ 1359.481401][T22667] usbip_core: unknown command
[ 1359.482956][T22667] vhci_hcd: unknown pdu 774857321
[ 1359.484535][T22667] usbip_core: unknown command
[ 1359.486213][T16793] vhci_hcd: stop threads
[ 1359.487668][T16793] vhci_hcd: release socket
[ 1359.489472][T16793] vhci_hcd: disconnect device
[ 1359.616028][T22671] netlink: 256 bytes leftover after parsing attributes in process `syz.0.4247'.
[ 1359.631991][T22669] team0: Port device bridge0 removed
[ 1360.510360][T22677] siw: device registration error -23
[ 1361.090459][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.092582][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[ 1361.202609][T22682] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1361.204710][T22682] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1361.207438][T22682] vhci_hcd vhci_hcd.0: Device attached
[ 1361.213676][T22683] usbip_core: unknown command
[ 1361.215604][T22683] vhci_hcd: unknown pdu 774857321
[ 1361.217258][T22683] usbip_core: unknown command
[ 1361.219175][   T91] vhci_hcd: stop threads
[ 1361.220987][   T91] vhci_hcd: release socket
[ 1361.225156][   T91] vhci_hcd: disconnect device
[ 1361.364780][T22686] netlink: 256 bytes leftover after parsing attributes in process `syz.2.4250'.
[ 1362.783253][T22699] loop2: detected capacity change from 0 to 7
[ 1362.788578][    C2] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1362.791580][    C2] buffer_io_error: 6 callbacks suppressed
[ 1362.791588][    C2] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1362.796792][    C2] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1362.799835][    C2] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1362.802500][    C2] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1362.805355][    C2] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1362.818814][    C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1362.821669][    C0] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1362.854641][    C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1362.857698][    C0] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1362.881173][T18363] IPVS: starting estimator thread 0...
[ 1362.889322][    C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1362.892225][    C0] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1362.968181][T22703] IPVS: using max 45 ests per chain, 108000 per kthread
[ 1362.982024][    C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1362.985011][    C3] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1362.989428][T22699] ldm_validate_partition_table(): Disk read failed.
[ 1362.991971][    C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1362.994889][    C3] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1362.997562][    C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1363.000573][    C3] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1363.003546][    C2] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1363.007425][    C2] Buffer I/O error on dev loop2, logical block 0, async page read
[ 1363.011342][T22699] Dev loop2: unable to read RDB block 0
[ 1363.022022][T22699]  loop2: unable to read partition table
[ 1363.028448][T22699] loop2: partition table beyond EOD, truncated
[ 1363.031178][T22699] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1363.588632][   T40] audit: type=1804 audit(1754265353.001:896): pid=22710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.4255" name="/newroot/210/file1" dev="tmpfs" ino=1132 res=1 errno=0
[ 1363.596410][   T40] audit: type=1800 audit(1754265353.001:897): pid=22710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4255" name="file1" dev="tmpfs" ino=1132 res=0 errno=0
[ 1363.661129][T22712] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1363.663772][T22712] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1363.667720][T22712] vhci_hcd vhci_hcd.0: Device attached
[ 1363.672494][T22713] usbip_core: unknown command
[ 1363.674018][T22713] vhci_hcd: unknown pdu 774857321
[ 1363.675692][T22713] usbip_core: unknown command
[ 1363.683059][ T1170] vhci_hcd: stop threads
[ 1363.684818][ T1170] vhci_hcd: release socket
[ 1363.691797][ T1170] vhci_hcd: disconnect device
[ 1363.789988][T22717] netlink: 256 bytes leftover after parsing attributes in process `syz.4.4256'.
[ 1364.305502][T22727] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4259'.
[ 1364.436752][T22728] lo speed is unknown, defaulting to 1000
[ 1364.766659][T22736] FAULT_INJECTION: forcing a failure.
[ 1364.766659][T22736] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1364.771923][T22736] CPU: 2 UID: 0 PID: 22736 Comm: syz.2.4261 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1364.771949][T22736] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1364.771961][T22736] Call Trace:
[ 1364.771968][T22736]  <TASK>
[ 1364.771975][T22736]  dump_stack_lvl+0x16c/0x1f0
[ 1364.771997][T22736]  should_fail_ex+0x512/0x640
[ 1364.772020][T22736]  _copy_from_user+0x2e/0xd0
[ 1364.772041][T22736]  compat_wext_handle_ioctl+0xc0/0x310
[ 1364.772063][T22736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1364.772089][T22736]  ? __pfx_compat_wext_handle_ioctl+0x10/0x10
[ 1364.772109][T22736]  ? unix_ioctl+0xf0/0x5e0
[ 1364.772142][T22736]  compat_sock_ioctl+0x320/0x730
[ 1364.772186][T22736]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1364.772210][T22736]  ? hook_file_ioctl_common+0x145/0x410
[ 1364.772239][T22736]  ? __fget_files+0x20e/0x3c0
[ 1364.772265][T22736]  ? __fput_deferred+0x480/0x480
[ 1364.772293][T22736]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1364.772316][T22736]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1364.772344][T22736]  __do_fast_syscall_32+0x7c/0x3a0
[ 1364.772366][T22736]  do_fast_syscall_32+0x32/0x80
[ 1364.772385][T22736]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1364.772406][T22736] RIP: 0023:0xf7f48579
[ 1364.772420][T22736] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1364.772437][T22736] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1364.772459][T22736] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008b07
[ 1364.772471][T22736] RDX: 0000000080000440 RSI: 0000000000000000 RDI: 0000000000000000
[ 1364.772482][T22736] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1364.772492][T22736] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1364.772503][T22736] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1364.772527][T22736]  </TASK>
[ 1365.008664][T22743] can0: slcan on pty28.
[ 1365.111335][T22745] FAULT_INJECTION: forcing a failure.
[ 1365.111335][T22745] name failslab, interval 1, probability 0, space 0, times 0
[ 1365.116465][T22745] CPU: 0 UID: 0 PID: 22745 Comm: syz.0.4264 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1365.116480][T22745] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1365.116492][T22745] Call Trace:
[ 1365.116497][T22745]  <TASK>
[ 1365.116502][T22745]  dump_stack_lvl+0x16c/0x1f0
[ 1365.116518][T22745]  should_fail_ex+0x512/0x640
[ 1365.116530][T22745]  ? __kmalloc_noprof+0xbf/0x510
[ 1365.116542][T22745]  ? iter_file_splice_write+0x1cc/0x1150
[ 1365.116559][T22745]  should_failslab+0xc2/0x120
[ 1365.116572][T22745]  __kmalloc_noprof+0xd2/0x510
[ 1365.116584][T22745]  ? __do_fast_syscall_32+0x7c/0x3a0
[ 1365.116598][T22745]  iter_file_splice_write+0x1cc/0x1150
[ 1365.116616][T22745]  ? shmem_get_folio_gfp+0x311/0x1600
[ 1365.116630][T22745]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1365.116641][T22745]  ? __pfx___might_resched+0x10/0x10
[ 1365.116654][T22745]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1365.116671][T22745]  ? __lock_acquire+0xb8a/0x1c90
[ 1365.116697][T22745]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1365.116714][T22745]  direct_splice_actor+0x18f/0x6c0
[ 1365.116733][T22745]  splice_direct_to_actor+0x342/0xa30
[ 1365.116750][T22745]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1365.116769][T22745]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1365.116785][T22745]  ? get_pid_task+0xfc/0x250
[ 1365.116804][T22745]  do_splice_direct+0x174/0x240
[ 1365.116820][T22745]  ? __pfx_do_splice_direct+0x10/0x10
[ 1365.116837][T22745]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1365.116855][T22745]  ? rw_verify_area+0xcf/0x680
[ 1365.116873][T22745]  do_sendfile+0xb06/0xe50
[ 1365.116893][T22745]  ? __pfx_do_sendfile+0x10/0x10
[ 1365.116910][T22745]  ? __fget_files+0x20e/0x3c0
[ 1365.116930][T22745]  __ia32_compat_sys_sendfile+0x1e5/0x220
[ 1365.116943][T22745]  ? ksys_write+0x1ac/0x250
[ 1365.116953][T22745]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[ 1365.116968][T22745]  ? rcu_is_watching+0x12/0xc0
[ 1365.116982][T22745]  __do_fast_syscall_32+0x7c/0x3a0
[ 1365.116995][T22745]  do_fast_syscall_32+0x32/0x80
[ 1365.117006][T22745]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1365.117020][T22745] RIP: 0023:0xf702e579
[ 1365.117030][T22745] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1365.117041][T22745] RSP: 002b:00000000f501e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[ 1365.117051][T22745] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000003
[ 1365.117058][T22745] RDX: 0000000000000000 RSI: 0000000000201005 RDI: 0000000000000000
[ 1365.117065][T22745] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1365.117071][T22745] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1365.117078][T22745] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1365.117091][T22745]  </TASK>
[ 1365.228058][T18363] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[ 1365.378127][T18363] usb 7-1: Using ep0 maxpacket: 8
[ 1365.381163][T18363] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[ 1365.383933][T18363] usb 7-1: config 0 has no interface number 0
[ 1365.386034][T18363] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1365.391121][T18363] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1365.395377][T18363] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1365.399051][T18363] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1365.403288][T18363] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1365.406235][T18363] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1365.411601][T18363] usb 7-1: config 0 descriptor??
[ 1365.416122][T18363] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1365.647381][ T6044] usb 7-1: USB disconnect, device number 37
[ 1365.650672][ T6044] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[ 1365.808254][T22737] can0 (unregistered): slcan off pty28.
[ 1366.127105][T22758] siw: device registration error -23
[ 1367.510955][T22776] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1367.512964][T22776] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1367.516193][T22776] vhci_hcd vhci_hcd.0: Device attached
[ 1367.520907][T22777] usbip_core: unknown command
[ 1367.522588][T22777] vhci_hcd: unknown pdu 774857321
[ 1367.524795][T22777] usbip_core: unknown command
[ 1367.525062][T22780] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1367.528948][T22780] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1367.530240][   T91] vhci_hcd: stop threads
[ 1367.532705][T22780] vhci_hcd vhci_hcd.0: Device attached
[ 1367.533049][   T91] vhci_hcd: release socket
[ 1367.533059][   T91] vhci_hcd: disconnect device
[ 1367.582823][T22781] usbip_core: unknown command
[ 1367.589135][T22781] vhci_hcd: unknown pdu 774857321
[ 1367.592569][T22781] usbip_core: unknown command
[ 1367.600173][ T1202] vhci_hcd: stop threads
[ 1367.602828][ T1202] vhci_hcd: release socket
[ 1367.606487][ T1202] vhci_hcd: disconnect device
[ 1367.806179][T22784] netlink: 256 bytes leftover after parsing attributes in process `syz.0.4271'.
[ 1369.803755][T22789] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1369.814517][T22789] mac80211_hwsim hwsim15 syzkaller0: entered promiscuous mode
[ 1369.817454][T22789] mac80211_hwsim hwsim15 syzkaller0: entered allmulticast mode
[ 1369.926585][T22789] tipc: Resetting bearer <eth:syzkaller0>
[ 1370.602178][T21655] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1370.606480][T21655] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1370.612200][T21655] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1370.614898][T21655] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1370.617571][T21655] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1370.638524][T22794] lo speed is unknown, defaulting to 1000
[ 1370.698295][ T1170] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1370.776109][ T1170] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1370.789357][T22794] chnl_net:caif_netlink_parms(): no params data found
[ 1370.871474][ T1170] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1370.955664][ T1170] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1370.968903][T22794] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1370.971994][T22794] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1370.974936][T22794] bridge_slave_0: entered allmulticast mode
[ 1370.977606][T22794] bridge_slave_0: entered promiscuous mode
[ 1370.982532][T22794] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1370.984802][T22794] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1370.987081][T22794] bridge_slave_1: entered allmulticast mode
[ 1370.990031][T22794] bridge_slave_1: entered promiscuous mode
[ 1371.035756][T22794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1371.050463][T22794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1371.120559][T22794] team0: Port device team_slave_0 added
[ 1371.124887][T22794] team0: Port device team_slave_1 added
[ 1371.171528][T22794] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1371.173799][T22794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1371.182010][T22794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1371.579563][ T1170] bond0 (unregistering): Released all slaves
[ 1371.728896][ T1170] bond1 (unregistering): Released all slaves
[ 1371.740824][T22794] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1371.813001][T22794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1371.830961][T22794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1371.943046][ T1170] : left promiscuous mode
[ 1371.998662][T22825] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4281'.
[ 1372.042599][T22794] hsr_slave_0: entered promiscuous mode
[ 1372.045711][T22794] hsr_slave_1: entered promiscuous mode
[ 1372.054747][T22794] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1372.057570][T22794] Cannot create hsr debugfs directory
[ 1372.171393][T22828] lo speed is unknown, defaulting to 1000
[ 1372.321778][ T1170] hsr_slave_0: left promiscuous mode
[ 1372.331577][ T1170] hsr_slave_1: left promiscuous mode
[ 1372.370155][ T1170] veth1_macvtap: left promiscuous mode
[ 1372.378091][ T1170] veth0_macvtap: left promiscuous mode
[ 1372.380024][ T1170] veth1_vlan: left promiscuous mode
[ 1372.381785][ T1170] veth0_vlan: left promiscuous mode
[ 1372.508837][T22843] netlink: 216 bytes leftover after parsing attributes in process `syz.0.4284'.
[ 1372.512566][T22843] netlink: 216 bytes leftover after parsing attributes in process `syz.0.4284'.
[ 1372.551596][T17301] hid-generic 0000:7FFFFFFF:0000.0034: unknown main item tag 0x4
[ 1372.554383][T17301] hid-generic 0000:7FFFFFFF:0000.0034: unknown main item tag 0x0
[ 1372.557071][T17301] hid-generic 0000:7FFFFFFF:0000.0034: unknown main item tag 0x1
[ 1372.562601][T17301] hid-generic 0000:7FFFFFFF:0000.0034: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1372.688582][T21655] Bluetooth: hci3: command tx timeout
[ 1374.599001][T22794] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1374.616835][T22867] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1374.618938][T22867] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1374.623375][T22867] vhci_hcd vhci_hcd.0: Device attached
[ 1374.626906][T22868] usbip_core: unknown command
[ 1374.630417][T22868] vhci_hcd: unknown pdu 774857321
[ 1374.631957][T22794] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1374.632080][T22868] usbip_core: unknown command
[ 1374.638314][   T91] vhci_hcd: stop threads
[ 1374.639676][   T91] vhci_hcd: release socket
[ 1374.641072][   T91] vhci_hcd: disconnect device
[ 1374.645264][T22794] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1374.671134][T22794] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1374.768138][T21655] Bluetooth: hci3: command tx timeout
[ 1374.920716][T22876] netlink: 256 bytes leftover after parsing attributes in process `syz.4.4289'.
[ 1374.998922][T22880] siw: device registration error -23
[ 1375.233471][T22886] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4291'.
[ 1375.297557][T22886] lo speed is unknown, defaulting to 1000
[ 1375.576255][T22794] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1375.780168][T22794] 8021q: adding VLAN 0 to HW filter on device team0
[ 1375.786772][ T1174] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1375.789515][ T1174] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1375.810289][T16793] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1375.812543][T16793] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1376.858123][T21655] Bluetooth: hci3: command tx timeout
[ 1377.050703][T22908] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1377.052724][T22908] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1377.059715][T22908] vhci_hcd vhci_hcd.0: Device attached
[ 1377.066684][T22909] usbip_core: unknown command
[ 1377.069507][T22909] vhci_hcd: unknown pdu 774857321
[ 1377.071109][T22909] usbip_core: unknown command
[ 1377.098542][T16793] vhci_hcd: stop threads
[ 1377.100102][T16793] vhci_hcd: release socket
[ 1377.105041][T16793] vhci_hcd: disconnect device
[ 1377.444146][T22794] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1377.846687][T22794] veth0_vlan: entered promiscuous mode
[ 1377.862272][T22794] veth1_vlan: entered promiscuous mode
[ 1377.894189][T22794] veth0_macvtap: entered promiscuous mode
[ 1377.901728][T22794] veth1_macvtap: entered promiscuous mode
[ 1377.921417][T22794] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1377.947684][T22794] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1377.955981][T22794] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1377.959310][T22794] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1377.962183][T22794] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1377.965065][T22794] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1378.491195][T22922] FAULT_INJECTION: forcing a failure.
[ 1378.491195][T22922] name failslab, interval 1, probability 0, space 0, times 0
[ 1378.495923][T22922] CPU: 1 UID: 0 PID: 22922 Comm: syz.2.4299 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1378.495939][T22922] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1378.495947][T22922] Call Trace:
[ 1378.495951][T22922]  <TASK>
[ 1378.495957][T22922]  dump_stack_lvl+0x16c/0x1f0
[ 1378.496039][T22922]  should_fail_ex+0x512/0x640
[ 1378.496070][T22922]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 1378.496085][T22922]  should_failslab+0xc2/0x120
[ 1378.496098][T22922]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1378.496108][T22922]  ? __pfx_tcp_current_mss+0x10/0x10
[ 1378.496120][T22922]  ? __alloc_skb+0x2b2/0x380
[ 1378.496133][T22922]  __alloc_skb+0x2b2/0x380
[ 1378.496144][T22922]  ? __pfx___alloc_skb+0x10/0x10
[ 1378.496154][T22922]  ? is_bpf_text_address+0x8a/0x1a0
[ 1378.496170][T22922]  ? aa_label_sk_perm+0x19b/0x5a0
[ 1378.496190][T22922]  tcp_stream_alloc_skb+0x34/0x570
[ 1378.496208][T22922]  tcp_sendmsg_locked+0x12d7/0x4220
[ 1378.496233][T22922]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[ 1378.496251][T22922]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1378.496270][T22922]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1378.496291][T22922]  ? __local_bh_enable_ip+0xa4/0x120
[ 1378.496305][T22922]  tcp_sendmsg+0x2e/0x50
[ 1378.496320][T22922]  ? __pfx_tcp_sendmsg+0x10/0x10
[ 1378.496337][T22922]  inet6_sendmsg+0xb9/0x140
[ 1378.496351][T22922]  sock_sendmsg+0x2b3/0x470
[ 1378.496367][T22922]  ? __pfx_sock_sendmsg+0x10/0x10
[ 1378.496393][T22922]  ? find_held_lock+0x2b/0x80
[ 1378.496405][T22922]  ? find_held_lock+0x2b/0x80
[ 1378.496417][T22922]  splice_to_socket+0xaf6/0x1110
[ 1378.496442][T22922]  ? __pfx_splice_to_socket+0x10/0x10
[ 1378.496478][T22922]  ? __pfx_shmem_file_splice_read+0x10/0x10
[ 1378.496492][T22922]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[ 1378.496504][T22922]  ? __pfx_splice_to_socket+0x10/0x10
[ 1378.496522][T22922]  direct_splice_actor+0x18f/0x6c0
[ 1378.496542][T22922]  splice_direct_to_actor+0x342/0xa30
[ 1378.496559][T22922]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1378.496578][T22922]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1378.496594][T22922]  ? get_pid_task+0xfc/0x250
[ 1378.496613][T22922]  do_splice_direct+0x174/0x240
[ 1378.496629][T22922]  ? __pfx_do_splice_direct+0x10/0x10
[ 1378.496646][T22922]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1378.496663][T22922]  ? bpf_lsm_file_permission+0x9/0x10
[ 1378.496677][T22922]  ? security_file_permission+0x71/0x210
[ 1378.496696][T22922]  ? rw_verify_area+0xcf/0x680
[ 1378.496714][T22922]  do_sendfile+0xb06/0xe50
[ 1378.496733][T22922]  ? __pfx_do_sendfile+0x10/0x10
[ 1378.496750][T22922]  ? __might_fault+0xe3/0x190
[ 1378.496760][T22922]  ? __might_fault+0x13b/0x190
[ 1378.496774][T22922]  __ia32_compat_sys_sendfile+0x162/0x220
[ 1378.496788][T22922]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[ 1378.496802][T22922]  ? rcu_is_watching+0x12/0xc0
[ 1378.496816][T22922]  __do_fast_syscall_32+0x7c/0x3a0
[ 1378.496829][T22922]  do_fast_syscall_32+0x32/0x80
[ 1378.496843][T22922]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1378.496857][T22922] RIP: 0023:0xf7f48579
[ 1378.496866][T22922] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1378.496877][T22922] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[ 1378.496887][T22922] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000004
[ 1378.496894][T22922] RDX: 0000000080000100 RSI: 0000000000010001 RDI: 0000000000000000
[ 1378.496901][T22922] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1378.496907][T22922] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1378.496913][T22922] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1378.496926][T22922]  </TASK>
[ 1378.613630][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1378.638594][ T1170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1378.641890][ T1170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1378.658490][ T1170] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1378.661568][ T1170] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1378.864821][T22938] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4274'.
[ 1378.868941][T22938] bridge_slave_1: left allmulticast mode
[ 1378.871416][T22938] bridge_slave_1: left promiscuous mode
[ 1378.874098][T22938] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1378.884905][T22938] bridge_slave_0: left allmulticast mode
[ 1378.886967][T22938] bridge_slave_0: left promiscuous mode
[ 1378.889773][T22938] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1378.928231][T21655] Bluetooth: hci3: command tx timeout
[ 1379.069083][T22940] lo speed is unknown, defaulting to 1000
[ 1379.751937][T22959] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4303'.
[ 1379.777269][T22959] lo speed is unknown, defaulting to 1000
[ 1380.463129][T22966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1380.466571][T22966] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1380.510935][T22972] FAULT_INJECTION: forcing a failure.
[ 1380.510935][T22972] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1380.515247][T22972] CPU: 1 UID: 0 PID: 22972 Comm: syz.2.4309 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1380.515262][T22972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1380.515269][T22972] Call Trace:
[ 1380.515273][T22972]  <TASK>
[ 1380.515278][T22972]  dump_stack_lvl+0x16c/0x1f0
[ 1380.515292][T22972]  should_fail_ex+0x512/0x640
[ 1380.515306][T22972]  _copy_from_user+0x2e/0xd0
[ 1380.515319][T22972]  bpf_test_init.isra.0+0xe2/0x140
[ 1380.515333][T22972]  bpf_prog_test_run_skb+0x245/0x2280
[ 1380.515347][T22972]  ? __fget_files+0x204/0x3c0
[ 1380.515366][T22972]  ? __fget_files+0x20e/0x3c0
[ 1380.515384][T22972]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[ 1380.515399][T22972]  ? fput+0x70/0xf0
[ 1380.515414][T22972]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[ 1380.515427][T22972]  __sys_bpf+0x170a/0x4ea0
[ 1380.515439][T22972]  ? __pfx___sys_bpf+0x10/0x10
[ 1380.515449][T22972]  ? ksys_write+0x190/0x250
[ 1380.515461][T22972]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1380.515481][T22972]  ? fput+0x70/0xf0
[ 1380.515493][T22972]  ? ksys_write+0x1ac/0x250
[ 1380.515503][T22972]  ? __pfx_ksys_write+0x10/0x10
[ 1380.515515][T22972]  __ia32_sys_bpf+0x76/0xe0
[ 1380.515526][T22972]  __do_fast_syscall_32+0x7c/0x3a0
[ 1380.515540][T22972]  do_fast_syscall_32+0x32/0x80
[ 1380.515552][T22972]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1380.515572][T22972] RIP: 0023:0xf7f48579
[ 1380.515586][T22972] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1380.515605][T22972] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 1380.515629][T22972] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000080
[ 1380.515641][T22972] RDX: 000000000000002c RSI: 0000000000000000 RDI: 0000000000000000
[ 1380.515652][T22972] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1380.515662][T22972] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1380.515671][T22972] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1380.515685][T22972]  </TASK>
[ 1380.590267][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1380.650938][   T40] audit: type=1400 audit(1754265370.061:898): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3A30206B420A4C617A79467265653A202020202020202020202020202030206B420A416E6F6E4875676550616765733A20202020202020202030206B420A53686D656D506D644D61707065643A202020202020202030206B420A46696C65506D644D61707065643A20202020202020202030206B420A5368617265645F48756765746C623A202020202020202030206B420A507269766174 pid=22980 comm="syz.5.4313"
[ 1381.144107][T22983] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.148136][T22983] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.151233][T22983] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.154209][T22983] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.167160][T22999] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4315'.
[ 1381.197716][T18363] lo speed is unknown, defaulting to 1000
[ 1381.204496][T18363] syz0: Port: 1 Link DOWN
[ 1381.215432][ T6050] yyz0: Port: 1 Link DOWN
[ 1381.249542][T22992] lo speed is unknown, defaulting to 1000
[ 1381.571695][T23011] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4317'.
[ 1381.721422][T23013] lo speed is unknown, defaulting to 1000
[ 1381.785101][T23016] FAULT_INJECTION: forcing a failure.
[ 1381.785101][T23016] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1381.789640][T23016] CPU: 3 UID: 0 PID: 23016 Comm: syz.5.4319 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1381.789656][T23016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1381.789663][T23016] Call Trace:
[ 1381.789667][T23016]  <TASK>
[ 1381.789672][T23016]  dump_stack_lvl+0x16c/0x1f0
[ 1381.789688][T23016]  should_fail_ex+0x512/0x640
[ 1381.789701][T23016]  _copy_from_user+0x2e/0xd0
[ 1381.789714][T23016]  drm_ioctl+0x4fb/0xc30
[ 1381.789729][T23016]  ? __pfx_drm_mode_setplane+0x10/0x10
[ 1381.789745][T23016]  ? __pfx_drm_ioctl+0x10/0x10
[ 1381.789767][T23016]  drm_compat_ioctl+0x327/0x460
[ 1381.789783][T23016]  ? __pfx_drm_compat_ioctl+0x10/0x10
[ 1381.789799][T23016]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1381.789817][T23016]  __do_fast_syscall_32+0x7c/0x3a0
[ 1381.789830][T23016]  do_fast_syscall_32+0x32/0x80
[ 1381.789842][T23016]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1381.789856][T23016] RIP: 0023:0xf7f61579
[ 1381.789864][T23016] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1381.789875][T23016] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1381.789887][T23016] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c03064b7
[ 1381.789894][T23016] RDX: 0000000080000a00 RSI: 0000000000000000 RDI: 0000000000000000
[ 1381.789900][T23016] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1381.789907][T23016] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1381.789913][T23016] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1381.789927][T23016]  </TASK>
[ 1381.898673][   T29] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 1382.318024][   T29] usb 5-1: Using ep0 maxpacket: 8
[ 1382.321023][   T29] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[ 1382.323608][   T29] usb 5-1: config 0 has no interface number 0
[ 1382.325539][   T29] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1382.328968][   T29] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1382.332663][   T29] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1382.348039][   T29] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1382.352084][   T29] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1382.354898][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1382.380364][   T29] usb 5-1: config 0 descriptor??
[ 1382.388909][   T29] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1382.457776][T23028] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input18
[ 1382.471883][T23028] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4322'.
[ 1382.589325][   T34] usb 5-1: USB disconnect, device number 24
[ 1382.592694][   T34] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[ 1384.295199][T23044] binder: 23043:23044 ioctl c0306201 0 returned -14
[ 1384.459824][T23050] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4327'.
[ 1384.481226][T23050] lo speed is unknown, defaulting to 1000
[ 1384.647398][T23058] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1384.650155][T23058] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1384.654763][T23058] vhci_hcd vhci_hcd.0: Device attached
[ 1384.658369][T23059] usbip_core: unknown command
[ 1384.659887][T23059] vhci_hcd: unknown pdu 774857321
[ 1384.661487][T23059] usbip_core: unknown command
[ 1384.663621][T16794] vhci_hcd: stop threads
[ 1384.665568][T16794] vhci_hcd: release socket
[ 1384.667580][T16794] vhci_hcd: disconnect device
[ 1386.282725][T23067] FAULT_INJECTION: forcing a failure.
[ 1386.282725][T23067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1386.286873][T23067] CPU: 3 UID: 0 PID: 23067 Comm: syz.2.4331 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1386.286889][T23067] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1386.286896][T23067] Call Trace:
[ 1386.286901][T23067]  <TASK>
[ 1386.286906][T23067]  dump_stack_lvl+0x16c/0x1f0
[ 1386.286921][T23067]  should_fail_ex+0x512/0x640
[ 1386.286936][T23067]  _copy_from_user+0x2e/0xd0
[ 1386.286949][T23067]  get_user_ifreq+0x116/0x1c0
[ 1386.286964][T23067]  sock_do_ioctl+0x16b/0x280
[ 1386.286978][T23067]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 1386.286992][T23067]  ? find_held_lock+0x2b/0x80
[ 1386.287005][T23067]  ? __local_bh_enable_ip+0xa4/0x120
[ 1386.287019][T23067]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1386.287029][T23067]  ? pppox_ioctl+0x12b/0x280
[ 1386.287042][T23067]  ? __local_bh_enable_ip+0xa4/0x120
[ 1386.287058][T23067]  ? pppox_ioctl+0x12b/0x280
[ 1386.287071][T23067]  compat_sock_ioctl+0x301/0x730
[ 1386.287088][T23067]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1386.287103][T23067]  ? hook_file_ioctl_common+0x145/0x410
[ 1386.287121][T23067]  ? __fget_files+0x20e/0x3c0
[ 1386.287138][T23067]  ? __fput_deferred+0x480/0x480
[ 1386.287155][T23067]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1386.287169][T23067]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1386.287187][T23067]  __do_fast_syscall_32+0x7c/0x3a0
[ 1386.287200][T23067]  do_fast_syscall_32+0x32/0x80
[ 1386.287212][T23067]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1386.287226][T23067] RIP: 0023:0xf7f48579
[ 1386.287235][T23067] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1386.287246][T23067] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1386.287257][T23067] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008922
[ 1386.287264][T23067] RDX: 0000000080000540 RSI: 0000000000000000 RDI: 0000000000000000
[ 1386.287270][T23067] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1386.287276][T23067] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1386.287283][T23067] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1386.287295][T23067]  </TASK>
[ 1386.652263][T23082] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1386.654493][T23082] overlayfs: failed to set xattr on upper
[ 1386.656590][T23082] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1386.659612][T23082] overlayfs: ...falling back to index=off.
[ 1386.661663][T23082] overlayfs: ...falling back to uuid=null.
[ 1386.663975][T23082] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1387.462660][T23108] lo speed is unknown, defaulting to 1000
[ 1387.499326][T23111] FAULT_INJECTION: forcing a failure.
[ 1387.499326][T23111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1387.503447][T23111] CPU: 1 UID: 0 PID: 23111 Comm: syz.5.4344 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1387.503462][T23111] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1387.503469][T23111] Call Trace:
[ 1387.503473][T23111]  <TASK>
[ 1387.503478][T23111]  dump_stack_lvl+0x16c/0x1f0
[ 1387.503493][T23111]  should_fail_ex+0x512/0x640
[ 1387.503507][T23111]  _copy_from_user+0x2e/0xd0
[ 1387.503520][T23111]  get_compat_msghdr+0xa7/0x170
[ 1387.503533][T23111]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1387.503549][T23111]  ___sys_sendmsg+0x1ae/0x1d0
[ 1387.503562][T23111]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1387.503580][T23111]  ? find_held_lock+0x2b/0x80
[ 1387.503601][T23111]  __sys_sendmsg+0x16d/0x220
[ 1387.503613][T23111]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1387.503630][T23111]  ? rcu_is_watching+0x12/0xc0
[ 1387.503644][T23111]  __do_fast_syscall_32+0x7c/0x3a0
[ 1387.503657][T23111]  do_fast_syscall_32+0x32/0x80
[ 1387.503669][T23111]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1387.503683][T23111] RIP: 0023:0xf7f61579
[ 1387.503691][T23111] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1387.503702][T23111] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1387.503713][T23111] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[ 1387.503732][T23111] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1387.503739][T23111] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1387.503745][T23111] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1387.503752][T23111] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1387.503765][T23111]  </TASK>
[ 1387.601098][T23114] ==================================================================
[ 1387.603676][T23114] BUG: KASAN: slab-use-after-free in _raw_spin_lock_irq+0x36/0x50
[ 1387.606119][T23114] Read of size 1 at addr ffff888049aebcb0 by task syz.5.4345/23114
[ 1387.610334][T23114] 
[ 1387.611450][T23114] CPU: 1 UID: 0 PID: 23114 Comm: syz.5.4345 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1387.611465][T23114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1387.611473][T23114] Call Trace:
[ 1387.611477][T23114]  <TASK>
[ 1387.611482][T23114]  dump_stack_lvl+0x116/0x1f0
[ 1387.611499][T23114]  print_report+0xcd/0x630
[ 1387.611514][T23114]  ? __virt_addr_valid+0x81/0x610
[ 1387.611527][T23114]  ? __phys_addr+0xe8/0x180
[ 1387.611540][T23114]  ? _raw_spin_lock_irq+0x36/0x50
[ 1387.611557][T23114]  kasan_report+0xe0/0x110
[ 1387.611570][T23114]  ? _raw_spin_lock_irq+0x36/0x50
[ 1387.611589][T23114]  ? _raw_spin_lock_irq+0x36/0x50
[ 1387.611605][T23114]  __kasan_check_byte+0x36/0x50
[ 1387.611618][T23114]  lock_acquire+0xfc/0x350
[ 1387.611634][T23114]  ? comedi_poll+0xc1/0xa30
[ 1387.611651][T23114]  _raw_spin_lock_irq+0x36/0x50
[ 1387.611666][T23114]  ? io_poll_remove_entries.part.0+0x14e/0x7e0
[ 1387.611684][T23114]  io_poll_remove_entries.part.0+0x14e/0x7e0
[ 1387.611701][T23114]  ? __lock_acquire+0x622/0x1c90
[ 1387.611716][T23114]  io_poll_task_func+0x4cd/0x1130
[ 1387.611733][T23114]  ? __pfx_comedi_poll+0x10/0x10
[ 1387.611749][T23114]  ? __pfx_io_poll_task_func+0x10/0x10
[ 1387.611766][T23114]  ? find_held_lock+0x2b/0x80
[ 1387.611778][T23114]  ? io_handle_tw_list+0x112/0x500
[ 1387.611793][T23114]  ? __pfx_io_poll_task_func+0x10/0x10
[ 1387.611811][T23114]  io_handle_tw_list+0x155/0x500
[ 1387.611827][T23114]  ? __pfx_io_handle_tw_list+0x10/0x10
[ 1387.611844][T23114]  tctx_task_work_run+0xac/0x380
[ 1387.611859][T23114]  tctx_task_work+0x7a/0xd0
[ 1387.611873][T23114]  ? __pfx_tctx_task_work+0x10/0x10
[ 1387.611888][T23114]  ? rcu_is_watching+0x12/0xc0
[ 1387.611900][T23114]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1387.611916][T23114]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1387.611927][T23114]  task_work_run+0x14d/0x240
[ 1387.611943][T23114]  ? __pfx_task_work_run+0x10/0x10
[ 1387.611960][T23114]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1387.611978][T23114]  get_signal+0x1d1/0x26d0
[ 1387.611996][T23114]  ? __pfx_get_signal+0x10/0x10
[ 1387.612010][T23114]  arch_do_signal_or_restart+0x8f/0x790
[ 1387.612023][T23114]  ? hook_file_ioctl_common+0x145/0x410
[ 1387.612038][T23114]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1387.612054][T23114]  exit_to_user_mode_loop+0x84/0x110
[ 1387.612073][T23114]  __do_fast_syscall_32+0x2ac/0x3a0
[ 1387.612085][T23114]  do_fast_syscall_32+0x32/0x80
[ 1387.612097][T23114]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1387.612111][T23114] RIP: 0023:0xf7f61579
[ 1387.612120][T23114] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1387.612131][T23114] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1387.612142][T23114] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000040946400
[ 1387.612149][T23114] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1387.612156][T23114] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1387.612163][T23114] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1387.612170][T23114] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1387.612179][T23114]  </TASK>
[ 1387.612183][T23114] 
[ 1387.710574][T23114] Allocated by task 20764:
[ 1387.712011][T23114]  kasan_save_stack+0x33/0x60
[ 1387.713499][T23114]  kasan_save_track+0x14/0x30
[ 1387.715011][T23114]  __kasan_kmalloc+0xaa/0xb0
[ 1387.716490][T23114]  comedi_device_postconfig+0x2cb/0xc80
[ 1387.718241][T23114]  comedi_device_attach+0x3cf/0x900
[ 1387.719882][T23114]  do_devconfig_ioctl+0x1a7/0x580
[ 1387.721475][T23114]  comedi_unlocked_ioctl+0x165d/0x2f00
[ 1387.723186][T23114]  comedi_compat_ioctl+0x1d0/0x990
[ 1387.724771][T23114]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1387.726515][T23114]  __do_fast_syscall_32+0x7c/0x3a0
[ 1387.728138][T23114]  do_fast_syscall_32+0x32/0x80
[ 1387.729688][T23114]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1387.731718][T23114] 
[ 1387.732491][T23114] Freed by task 23114:
[ 1387.733787][T23114]  kasan_save_stack+0x33/0x60
[ 1387.735321][T23114]  kasan_save_track+0x14/0x30
[ 1387.736848][T23114]  kasan_save_free_info+0x3b/0x60
[ 1387.738460][T23114]  __kasan_slab_free+0x51/0x70
[ 1387.739995][T23114]  kfree+0x2b4/0x4d0
[ 1387.741255][T23114]  comedi_device_detach+0x2a4/0x9e0
[ 1387.742954][T23114]  do_devconfig_ioctl+0x46c/0x580
[ 1387.744555][T23114]  comedi_unlocked_ioctl+0x165d/0x2f00
[ 1387.746309][T23114]  comedi_compat_ioctl+0x1d0/0x990
[ 1387.747935][T23114]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1387.749655][T23114]  __do_fast_syscall_32+0x7c/0x3a0
[ 1387.751288][T23114]  do_fast_syscall_32+0x32/0x80
[ 1387.752860][T23114]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1387.754862][T23114] 
[ 1387.755655][T23114] The buggy address belongs to the object at ffff888049aebc00
[ 1387.755655][T23114]  which belongs to the cache kmalloc-256 of size 256
[ 1387.759945][T23114] The buggy address is located 176 bytes inside of
[ 1387.759945][T23114]  freed 256-byte region [ffff888049aebc00, ffff888049aebd00)
[ 1387.764186][T23114] 
[ 1387.764965][T23114] The buggy address belongs to the physical page:
[ 1387.766990][T23114] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888049aeba00 pfn:0x49aea
[ 1387.770123][T23114] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1387.772779][T23114] flags: 0x4fff00000000240(workingset|head|node=1|zone=1|lastcpupid=0x7ff)
[ 1387.775484][T23114] page_type: f5(slab)
[ 1387.777080][T23114] raw: 04fff00000000240 ffff88801b842b40 ffffea00017e1090 ffffea000144ec10
[ 1387.780479][T23114] raw: ffff888049aeba00 000000000010000e 00000000f5000000 0000000000000000
[ 1387.783899][T23114] head: 04fff00000000240 ffff88801b842b40 ffffea00017e1090 ffffea000144ec10
[ 1387.787084][T23114] head: ffff888049aeba00 000000000010000e 00000000f5000000 0000000000000000
[ 1387.789768][T23114] head: 04fff00000000001 ffffea000126ba81 00000000ffffffff 00000000ffffffff
[ 1387.792493][T23114] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 1387.795203][T23114] page dumped because: kasan: bad access detected
[ 1387.797200][T23114] page_owner tracks the page as allocated
[ 1387.798997][T23114] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 18317249564, free_ts 0
[ 1387.805103][T23114]  post_alloc_hook+0x1c0/0x230
[ 1387.806652][T23114]  get_page_from_freelist+0x1321/0x3890
[ 1387.808394][T23114]  __alloc_frozen_pages_noprof+0x261/0x23f0
[ 1387.810248][T23114]  alloc_pages_mpol+0x1fb/0x550
[ 1387.811796][T23114]  new_slab+0x23b/0x330
[ 1387.813121][T23114]  ___slab_alloc+0xd9c/0x1940
[ 1387.814638][T23114]  __slab_alloc.constprop.0+0x56/0xb0
[ 1387.816342][T23114]  __kmalloc_cache_noprof+0xfb/0x3e0
[ 1387.818005][T23114]  bus_add_driver+0x92/0x690
[ 1387.819470][T23114]  driver_register+0x15c/0x4b0
[ 1387.820985][T23114]  __hid_register_driver+0x146/0x1f0
[ 1387.822715][T23114]  do_one_initcall+0x120/0x6e0
[ 1387.824226][T23114]  kernel_init_freeable+0x5c2/0x900
[ 1387.825945][T23114]  kernel_init+0x1c/0x2b0
[ 1387.827310][T23114]  ret_from_fork+0x5d4/0x6f0
[ 1387.828696][T23114]  ret_from_fork_asm+0x1a/0x30
[ 1387.830149][T23114] page_owner free stack trace missing
[ 1387.831821][T23114] 
[ 1387.832575][T23114] Memory state around the buggy address:
[ 1387.834326][T23114]  ffff888049aebb80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1387.836710][T23114]  ffff888049aebc00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1387.838998][T23114] >ffff888049aebc80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1387.841483][T23114]                                      ^
[ 1387.843275][T23114]  ffff888049aebd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1387.845770][T23114]  ffff888049aebd80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1387.848271][T23114] ==================================================================
[ 1387.850773][T23114] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1387.853047][T23114] CPU: 1 UID: 0 PID: 23114 Comm: syz.5.4345 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[ 1387.856140][T23114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1387.859461][T23114] Call Trace:
[ 1387.860525][T23114]  <TASK>
[ 1387.861485][T23114]  dump_stack_lvl+0x3d/0x1f0
[ 1387.862982][T23114]  panic+0x71c/0x800
[ 1387.864249][T23114]  ? __pfx_panic+0x10/0x10
[ 1387.865674][T23114]  ? __pfx__printk+0x10/0x10
[ 1387.867151][T23114]  ? end_report+0x4c/0x170
[ 1387.868568][T23114]  ? _raw_spin_lock_irq+0x36/0x50
[ 1387.870172][T23114]  check_panic_on_warn+0xab/0xb0
[ 1387.871748][T23114]  end_report+0x107/0x170
[ 1387.873112][T23114]  kasan_report+0xee/0x110
[ 1387.874544][T23114]  ? _raw_spin_lock_irq+0x36/0x50
[ 1387.876154][T23114]  ? _raw_spin_lock_irq+0x36/0x50
[ 1387.877757][T23114]  __kasan_check_byte+0x36/0x50
[ 1387.879277][T23114]  lock_acquire+0xfc/0x350
[ 1387.880699][T23114]  ? comedi_poll+0xc1/0xa30
[ 1387.882123][T23114]  _raw_spin_lock_irq+0x36/0x50
[ 1387.883622][T23114]  ? io_poll_remove_entries.part.0+0x14e/0x7e0
[ 1387.885516][T23114]  io_poll_remove_entries.part.0+0x14e/0x7e0
[ 1387.887383][T23114]  ? __lock_acquire+0x622/0x1c90
[ 1387.888918][T23114]  io_poll_task_func+0x4cd/0x1130
[ 1387.890490][T23114]  ? __pfx_comedi_poll+0x10/0x10
[ 1387.892062][T23114]  ? __pfx_io_poll_task_func+0x10/0x10
[ 1387.893803][T23114]  ? find_held_lock+0x2b/0x80
[ 1387.895284][T23114]  ? io_handle_tw_list+0x112/0x500
[ 1387.896880][T23114]  ? __pfx_io_poll_task_func+0x10/0x10
[ 1387.898583][T23114]  io_handle_tw_list+0x155/0x500
[ 1387.900120][T23114]  ? __pfx_io_handle_tw_list+0x10/0x10
[ 1387.901818][T23114]  tctx_task_work_run+0xac/0x380
[ 1387.903363][T23114]  tctx_task_work+0x7a/0xd0
[ 1387.904814][T23114]  ? __pfx_tctx_task_work+0x10/0x10
[ 1387.906480][T23114]  ? rcu_is_watching+0x12/0xc0
[ 1387.907953][T23114]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1387.909591][T23114]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1387.911212][T23114]  task_work_run+0x14d/0x240
[ 1387.912660][T23114]  ? __pfx_task_work_run+0x10/0x10
[ 1387.914188][T23114]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1387.916038][T23114]  get_signal+0x1d1/0x26d0
[ 1387.917431][T23114]  ? __pfx_get_signal+0x10/0x10
[ 1387.918942][T23114]  arch_do_signal_or_restart+0x8f/0x790
[ 1387.920654][T23114]  ? hook_file_ioctl_common+0x145/0x410
[ 1387.922422][T23114]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1387.924362][T23114]  exit_to_user_mode_loop+0x84/0x110
[ 1387.926027][T23114]  __do_fast_syscall_32+0x2ac/0x3a0
[ 1387.927630][T23114]  do_fast_syscall_32+0x32/0x80
[ 1387.929126][T23114]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1387.931065][T23114] RIP: 0023:0xf7f61579
[ 1387.932363][T23114] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1387.938320][T23114] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1387.940913][T23114] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000040946400
[ 1387.943393][T23114] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1387.945790][T23114] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1387.948168][T23114] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1387.950460][T23114] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1387.952911][T23114]  </TASK>
[ 1387.955071][T23114] Kernel Offset: disabled
[ 1387.956462][T23114] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:09:37  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88802b33ff60 RCX=ffffffff81af491d RDX=ffff888040ed4880
RSI=ffffffff81af48f9 RDI=0000000000000005 RBP=0000000000000001 RSP=ffffc900006cf230
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=dffffc0000000000 R13=0000000000000003 R14=ffffed1005667fed R15=ffff88802b23b6c0
RIP=ffffffff81af48ff RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809752d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000057beb4c0 CR3=000000005c0dd000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000073 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8556d185 RDI=ffffffff9b09f540 RBP=ffffffff9b09f500 RSP=ffffc9000cf57358
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3430383838666666
R12=0000000000000000 R13=0000000000000073 R14=ffffffff9b09f500 R15=ffffffff8556d120
RIP=ffffffff8556d1af RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809762d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7420770 CR3=000000006afd8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000008 RCX=ffffffff84ddfddb RDX=ffff888025104880
RSI=0000000000000040 RDI=0000000000000005 RBP=ffffc90002f87330 RSP=ffffc90002f870c8
R8 =0000000000000005 R9 =0000000000000040 R10=0000000000000038 R11=0000000000000001
R12=0000000000000038 R13=ffffc90002f87180 R14=ffff8880275e8a8f R15=0000000000000021
RIP=ffffffff81bb54f0 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f536b457300 ffffffff 00c00000
GS =0000 ffff88809772d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000564e07e5d000 CR3=0000000049d8f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000002c00000012 0004000000080024 0000000000280030
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001101 0000001000000000 0000000000000000 000000000000001c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030fffffffff0204 8003180800060800 2008000600719804 000000a600000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0606015b96048080 080004b003000800 04a80300080004a0 0302080004980338
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 08000388030e0200 02b00302040002ac 030a040002a80314 04840002a4030002
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0002a20302020002 a003000800029803 0008000290030882 0400028c030c0200
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 028a031002000288 0338080002800302 8002038003038002 0490030008000488
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0008000290030882 0400028c030c0200 028a031002000288 0338080002800302
ZMM25=5dfbefdb5dfbefdb 5dfbefdb5dfbefdb 5dfbefdb5dfbefdb 5dfbefdb5dfbefdb 5dfbefdb5dfbefdb 5dfbefdb5dfbefdb 5dfbefdb5dfbefdb 5dfbefdb5dfbefdb
ZMM26=a64f846da64f846d a64f846da64f846d a64f846da64f846d a64f846da64f846d a64f846da64f846d a64f846da64f846d a64f846da64f846d a64f846da64f846d
ZMM27=8fc5e67b8fc5e67b 8fc5e67b8fc5e67b 8fc5e67b8fc5e67b 8fc5e67b8fc5e67b 8fc5e67b8fc5e67b 8fc5e67b8fc5e67b 8fc5e67b8fc5e67b 8fc5e67b8fc5e67b
ZMM28=000000500000004f 0000004e0000004d 0000004c0000004b 0000004a00000049 0000004800000047 0000004600000045 0000004400000043 0000004200000041
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=b7210000b7210000 b7210000b7210000 b7210000b7210000 b7210000b7210000 b7210000b7210000 b7210000b7210000 b7210000b7210000 b7210000b7210000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffffea00017cf500 RCX=ffffffff820bc322 RDX=ffff888023db8000
RSI=00000000000000f4 RDI=0000000000000005 RBP=ffffea00017cf500 RSP=ffffc9000cfef560
R8 =0000000000000005 R9 =00000000000000f4 R10=0000000000000000 R11=0000000000000001
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81bb4efb RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809782d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73c4f9c CR3=0000000060f53000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d8d40432a3585892 0e50df5a32a705eb
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 47fad5cc3b652e22 aa2f15dc36b6c48e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8b1e1eb941ff312a b74cc4ee35e12e3c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 630296192903e62c fc40167b437af165
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001fc0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 45f200001dfc0000 034935186fe00080
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3c3e000001000000 0100000027880080
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 17760000034931cf 034931760349303b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 010000000349354d 0349351900000025
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5238783e1af9624c 50de48bc07589fa0
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6a02e031ceeef220 bd7054fc6e520a59
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000