last executing test programs:

8.65706794s ago: executing program 0 (id=1401):
pipe2(&(0x7f00000005c0)={<r0=>0x0, <r1=>0x0}, 0x80000)
close(r1)
io_setup(0x3ff, &(0x7f0000000500))
r2 = syz_io_uring_setup(0x315b, &(0x7f0000000200)={0x0, 0xcfca, 0x1040, 0x0, 0x1000001, 0x0, 0x0}, &(0x7f0000000100), &(0x7f0000000040)=<r3=>0x0)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, &(0x7f0000000280)=[@ioring_restriction_register_op={0x0, 0x1b}], 0x1)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x800000000000)
write$FUSE_INIT(r1, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)={0x44, 0x2, 0x6, 0x3, 0x0, 0x0, {0xd}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
ioctl$LOOP_SET_FD(r0, 0x4c00, r4)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="449600000906010200000008000000000000000009000200737909000000000005000100070000001c0007800c00018008000140ffffffff0c000280080001407f000001"], 0x44}, 0x1, 0x0, 0x0, 0x10040057}, 0x240008c4)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r7, 0x84, 0xc, &(0x7f0000000040), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207baf40ff00000000bfa100000000ec0007010000f8feffffb702000008000000b70300000300008326b06ba6a4e72585000000710000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r8, &(0x7f0000000080)={0x28, 0x0, 0x2711}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r1)
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r10 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB='fd=', @ANYBLOB="407f6da8bdac21e4f58708d2f5f4dc808514439b70001424b4963030340f1d9ee416e9e151d7cc36bc8e3cd6e492d09c154380e8aca476aa80fddbc7fa2e91ad8e6c883dc5cdcac64b095c97486d52a1ddfb449ea37e0d6daf4a3a6c4b494dad78cc", @ANYRESHEX=r1, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRES8=r3])
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000600)=[@in={0x2, 0x4e21, @multicast2}, @in6={0xa, 0x4e21, 0x80, @loopback, 0x4}, @in6={0xa, 0x4e20, 0x10, @mcast1, 0xc936}, @in6={0xa, 0x3, 0x5ca3, @private0={0xfc, 0x0, '\x00', 0x1}, 0x100}, @in6={0xa, 0x4e24, 0xa0, @ipv4={'\x00', '\xff\xff', @multicast1}}, @in6={0xa, 0x4e22, 0x5, @private1, 0xea}, @in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e23, @multicast2}], 0xbc)
read$FUSE(r10, &(0x7f00000021c0)={0x2020, 0x0, <r11=>0x0}, 0x2020)
ioctl$int_in(r10, 0x5452, &(0x7f0000000140)=0x2000000000000002)
sendto$packet(r1, &(0x7f0000000300)="21f2694d304facf6103a9aa2eabe2f98cb11283fe5f9d34e5d50ba887de06d032b1af03eabc4e987535fa7cec37cd9866a10dde10b35b11ee5c4588071387cfbb6a1e9977b888d87fcb7e99d21b0ce159146db187b7504298fb9a6fe5b7e19bd490d892a56b70fef18025fc6b6f5e495f4d40e15f6a6743ae7122f92aca747f131820cc61012aaef1ec387fd0ebb98dcf8136042217e89b42ea9bf5ae33902069efbb8842dcb1cc336d20649d25c37e034e58cc39df4690f11db748ab11a20f89d6bfe53ea11efcad1bd830471c4d82ff312c4", 0xd3, 0x0, &(0x7f0000000440)={0x11, 0xa, 0x0, 0x1, 0x2, 0x6, @multicast}, 0x14)
write$FUSE_INIT(r10, &(0x7f0000000040)={0x50, 0x0, r11, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r10, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)

8.414499474s ago: executing program 0 (id=1404):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005500e50c2cbd70000000000007000000", @ANYRES32=0x0, @ANYBLOB="20000100", @ANYRES32=0x0, @ANYBLOB="00000ffe00"/24], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x20000100)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x25, &(0x7f0000000000)={0x1})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x7, &(0x7f00000003c0)={0x1, 0x0, 0xb})
close_range(r1, 0xffffffffffffffff, 0x0)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x1)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000002c0)={0x0, 0x80000001, 0x10}, 0xc)
r5 = dup(r0)
write$cgroup_subtree(r5, &(0x7f00000005c0)=ANY=[], 0x32600)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000080)={0x0, 0x6, 0x10}, 0xc)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000000)={'macvlan0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}})
ioctl$COMEDI_CMD(0xffffffffffffffff, 0x80406409, &(0x7f0000000040)={0x1000, 0x40, 0x20, 0x5, 0x40, 0x8, 0x40, 0x0, 0x100, 0x3c1d742f, 0x0, 0x200, 0x0, 0x0, &(0x7f0000000180)="adf7fff97c3f402d6c06ff1a0b49b0a7cb08873dbc81572da5de7c5847b789ffcc90a41961b6c293040a393844438a6ba0a4c4cb83f13ccadf56992c4b9cae840cc44e59891b2cab803773b4eebd5ff953cc08acab152bb10d9c4fd667472cb490d8b5209f8c782a184661a463d53487d771f0733ce5d4ac", 0x78})
socket$netlink(0x10, 0x3, 0x9)
r6 = syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f0000000140)={0x8000, 0x1, 0x4})
ioctl$vim2m_VIDIOC_QBUF(r6, 0xc044560f, &(0x7f00000001c0)=@fd={0x6, 0x1, 0x4, 0x0, 0x7, {0x77359400}, {0x1, 0x0, 0xc5, 0x85, 0x0, 0xcc, "c47e603b"}, 0x7, 0x4, {}, 0xfd})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000001bc0)={&(0x7f00000000c0)=@bridge_newneigh={0x28, 0x1c, 0x1, 0x70bd28, 0x25dfdbfc, {0x7, 0x0, 0x0, 0x0, 0x2, 0x16b, 0xb}, [@NDA_LLADDR={0xa, 0x2, @broadcast}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r8, 0x0, 0x25, &(0x7f0000000280)={@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010102, @empty}, 0xc)
write$P9_RRENAME(r5, &(0x7f0000000040)={0x7, 0x15, 0x1}, 0x34000)

7.666378993s ago: executing program 3 (id=1409):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80202, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{0x0}], 0x1)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'dt2815\x00', [0x4f27, 0x5, 0x5, 0x47, 0x2, 0xcc7, 0xfff, 0x7, 0x5, 0x3ff, 0x7f, 0x15fe, 0x1, 0x7000000, 0x3, 0xe1cb, 0xff7fffc0, 0x0, 0x2f, 0x295, 0x80000089, 0xfffffffc, 0x7, 0x6, 0xffffeadb, 0x3, 0x1003c, 0x5, 0x4, 0x8000000, 0x5]})
memfd_secret(0x0)

7.560322761s ago: executing program 0 (id=1411):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a60000000060a010400000000000000000a0000010900010073797a3100000000340004803000018008000100636d700024000280080001400010000408000240000000011000038009000100407327c3600000000900020073797a32"], 0x88}, 0x1, 0x0, 0x0, 0x6040850}, 0x20000040)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r3=>0x0})
r4 = openat$ndctl0(0xffffff9c, &(0x7f00000001c0), 0x80800, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r1, 0x2, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
ioctl$TIOCGSID(r5, 0x5429, 0x0)
r6 = open_tree(r4, &(0x7f0000000300)='./file0\x00', 0x1001)
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="210f00000000000000002000000008000300", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x44000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r8=>0x0})
socket(0x10, 0x3, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
sendto$inet6(r6, &(0x7f00000003c0)="7800000018002507b9409b14ffff00000204be04020b06050e020909430009003f00064c0a0000000d0085a168d0bf46d32345653600648d0a000500eb16000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160004000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x4c080, 0x0, 0x0)
r9 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
sendmsg$802154_raw(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)="11a3069224b1392e", 0x8}, 0x1, 0x0, 0x0, 0x24008011}, 0x20040090)
r10 = getpid()
sched_setaffinity(r10, 0x8, &(0x7f0000000240)=0x2)
timer_create(0x4, &(0x7f0000000340)={0x0, 0x30, 0x0, @tid=r10}, &(0x7f0000000380))
recvmmsg(r9, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0}, 0x80000000}], 0x1, 0x122, 0x0)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYBLOB="010080000000000000000800000008000300", @ANYRES32=r8, @ANYBLOB="76f2dfdd99e81d4327018e24929885b88b6d495795a85ed5ca026c8df3db9648df81be8c21f8b67942b5774e47913729bec36929efb93ec16edd7c7b74c9411b68103420e05000e03b1535775eee1b3c988154d2b0b65e63f5855531a0a024d548fb756d5b3acefb5bf26e12affce94d741f41e34a9d6bbba5fc0c3c62ba3c6a08add6b2cad66e5436215067411f2246b87890d5252f98eb1a020c8b2502be8fbb940b"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c000)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r0)

7.31655759s ago: executing program 3 (id=1412):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000480)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x20, 0x46e, 0x5578, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x1, 0x80, 0x6, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x1, 0x3, 0x81, {0x9, 0x21, 0x2b1, 0x8, 0x1, {0x22, 0xec8}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0xd, 0xf}}, [{{0x9, 0x5, 0x2, 0x3, 0x3ff, 0x4, 0x80, 0x1}}]}}}]}}]}}, &(0x7f00000009c0)={0xa, &(0x7f00000004c0)={0xa, 0x6, 0x201, 0xa6, 0xb, 0xe2, 0x0, 0x40}, 0xf, &(0x7f0000000500)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x3, 0x40, 0x6bc0}]}, 0x8, [{0xfb, &(0x7f0000000f40)=@string={0xfb, 0x3, "137265addd77343a06527982593d47f7d5d9f8495af5544333e63cb671d7e86efaea34e54ca9ca2e9b089afa4ac0922ef8ebb027ed8c215769e1c2d447c61bb0e03ccd70ce2b4a57c97bcf7c874224121280f4003d03b61c466728221ea8cd626478c817b5c7e296e1e0dd3c20d140d66a8b5adca62d684a7bdf5ee43c136f0f45fa67e1cee7d19064eeff753bd758b375d6ff5ccf430cd2c6fce75251c7146e99f884617267909afdbd8ce94e9a850a67f944ef1f0c0396196a1021e50849b3e770a39ab48bc0ee291ac210564e7a73041ff6155cc08ba59c9c581ef98aa14142ea1402efd5b4c682cc423a4c98fe9c8dfcee85d51247127e"}}, {0xd, &(0x7f0000000680)=@string={0xd, 0x3, "0e391aeda945bc79915b92"}}, {0x7f, &(0x7f00000006c0)=@string={0x7f, 0x3, "a89e9d7b6143e32994ace3f030e21d5cd62d93a51e1f82af222d215d02fdde92b36a2cb2810ffbd5855f96d6db4f693af603341be52305a4523e78f58381eb71510eaf39176605b8fcd83a107d966ec16b4fa1f0e96e5c1e35a08b694b5676c12e74e531a8c7ea72f4e2a532c1710bc35c25e41ea63ca49e388ef4be71"}}, {0x19, &(0x7f0000000740)=@string={0x19, 0x3, "95fb34ae765bf0b020405ced75b1866d56e8d2e497926a"}}, {0x4, &(0x7f0000000780)=@lang_id={0x4, 0x3, 0x480a}}, {0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x44b}}, {0xd3, &(0x7f0000000800)=@string={0xd3, 0x3, "c5e3efd0ed4bdacd7d9cec3230099eb17abad85934de5f62feac286e8b747a85d6739b34aac8fe167adc11d3294fbd5ab71a24deab73b4dcdbd1d88d42f164bae39bfec30b06bcda1affc7fd5d8500e85aeede483f9a56d7f8f538d3f89fabc99f409472c48e28805c727ae81447050352665355681ac8f7b90cc6a22dfba4f7386a71a3fea6f737722172e1616505659026d980ed3c79c2616ca6553da74578d189e726a3839cb35e41d4620866a39954b21bc400e83aa9cf17f62e3dc70964f904b3b095e79e5eb2a58c3aaedca51d46"}}, {0x87, &(0x7f0000000900)=@string={0x87, 0x3, "60a82bf3bbbfa08e16c01290558cfaf6c8d2843bee0fc7d6b2b2a95871979ff707473d8619ec7d5497b1c03554c82231f3377071c406502abcd3953f666ae4ec85e415a2b57189f89aedae3be536c583af79a2f0870747186d4b93ffe8557c2dc642d4a6734aaf879aea775a1ed98b8fd93eadf7c027470e15885ea27ce37bbc9b59942725"}}]})
syz_usb_control_io$hid(r0, &(0x7f0000000c40)={0x14, &(0x7f0000000a40)={0x0, 0x3, 0x101, {0x101, 0xe, "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"}}, &(0x7f0000000e80)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xc07}}, &(0x7f0000000bc0)={0x0, 0x22, 0x1, {[@main=@item_012={0x0, 0x0, 0xa}]}}, &(0x7f0000000c00)={0x0, 0x21, 0x9, {0x9, 0x21, 0x5, 0xfa, 0x1, {0x22, 0x874}}}}, &(0x7f0000000e40)={0x18, &(0x7f0000000ec0)={0x0, 0x13, 0xffffffffffffff37, "b3fe1492b717ffe74767386110d1e014b90dee5c87a512f913d6a323ce7ca1f0737f1bf4f1cbc9bddfd1e11d1bac68f0f5b9e36dfcec163fc7187e28858eddb83f0fc887723434fb7ba3e364cc47718602af000085bf307b85cf579f6346711ff3957dc7cc"}, &(0x7f0000000d00)={0x0, 0xa, 0x1, 0x3}, &(0x7f0000000d40)={0x0, 0x8, 0x1, 0x7}, &(0x7f0000000d80)={0x20, 0x1, 0x7a, "4f9e0937888c2da8ffcaef0624a4876d6a7c194abbea1e6dcdf51fa55677a2ff13931b8a3a2bdcfc54bedbe7c826f0ca20a81dd570bfdaebab979e696c67b167e7d96e6af2557982473b66f3b52f6f3b191b4f009d2159c20d47911eca342c66d1a95bd50718e2cd610c038feea88866b4ac763a57abac0b8ca2"}, &(0x7f0000000e00)={0x20, 0x3, 0x1, 0x5}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = accept4$netrom(0xffffffffffffffff, &(0x7f0000000180)={{0x3, @bcast}, [@remote, @remote, @default, @rose, @bcast, @default, @netrom, @netrom]}, &(0x7f0000000000)=0x48, 0x100000)
getsockopt$netrom_NETROM_T4(r1, 0x103, 0x6, &(0x7f0000000300)=0xc5e7, &(0x7f0000000340)=0x4)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80202, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000240)="d7ad9e68a5a4f4a53dc0b47c0f9beae73a5217bb200ad4d87f7314307d0263f98c48ab3f26a4ae661b07846925c36806ea378fcb2a52e1162f0f75be9b99cd2dbed75169d16d2d669b39c5a83e72bb7a211f8a81f05f12445a42ca87ca3ef8331568f64d91d0b7c8696f5bb530b532a033abab77caad658f3bf35e9bd24cf2c6fb284df0719deee5f2cb57960d11fb9cb795dcafb00f19c31236b4ac350fd58e384dfab3fc7d4db7d96cb0573d2fbfd23cd989488c3306bd363e279131", 0xbd}, {&(0x7f00000003c0)="f5eca3d68f84861f563cf5fa3f59d512b44f5b2e5f8e6aa9f071d865f5fb5944d55b7e2bfc6de3e0aa8b08acd11f4e4c2d320421dd31bd2297f01e60e275dd41aa71d82fd2e92e58b7c940ad2ff734df198d5de9a0825dd1cff36bc0aa0bcdbbb3361a28cb0d18be9431f50acb493b69678d7aa6a5ff80270734f3319d845ee230f96a3497858ce30da1a97e563a61a64618866006e868e23294f3d0745239d77cf26338ff8d8a331badd7", 0xab}, {&(0x7f0000000580)="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", 0xff}], 0x3)
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x2, 0x2, 0xbfdffffc}, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r4 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r5], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff], 0x0, 0x1})
ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, &(0x7f00000000c0)={'dt2815\x00', [0x4f27, 0x5, 0x5, 0x47, 0x2, 0xcc7, 0xfff, 0x7, 0x5, 0x3ff, 0x7f, 0x15fe, 0x1, 0x0, 0x3, 0xe1cb, 0xff7fffc0, 0x0, 0x2f, 0x295, 0x80000089, 0xfffffffc, 0x7, 0x6, 0xffffeadb, 0x3, 0x1003c, 0x5, 0x4, 0x8000000, 0x5]})
memfd_secret(0x0)

7.316188478s ago: executing program 2 (id=1413):
r0 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040)={0x1, 0x6, 0xc, 0x0, 0x3, 0x3})
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r1, 0x3312, 0xffffffffffffffff)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)={0x18, 0x12, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x36, 0x0, 0x0, @fd}]}, 0x18}], 0x1}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x10)
sendmsg$SMC_PNETID_GET(r2, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000440)={0x48, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'vlan1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1_macvtap\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x20044080)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040814}, 0xc0)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x14, r4, 0x400, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8804}, 0x4040)

7.187435005s ago: executing program 0 (id=1414):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
r1 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCDELRT(r1, 0x890c, &(0x7f0000000140)={0x0, {0x2, 0x4e20, @local}, {0x2, 0x4e24, @multicast2}, {0x2, 0x4e23, @private=0xa010101}, 0x1, 0x0, 0x0, 0x0, 0xfffc, &(0x7f0000000000)='dvmrp0\x00', 0x80, 0x5, 0x4})
chdir(&(0x7f0000000100)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="0804000010160100000000000000000000000a64000000060a0b0400000000000000000200000038000480349c37800080010068617368000000002400028008000240000000100800044000000007080007400000000108000640000000800900010073797a30000000000900020073797a32000000001400000000000000000a00"], 0x8c}}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e22, 0xab, @loopback, 0x10001}, 0x1c)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @loopback, 0x23}, 0x1c)
r5 = dup(r0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x4080}, 0x8080)
r6 = socket(0xa, 0x3, 0xff)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty, 0x4000002}, 0x1c)
syz_emit_ethernet(0x6e, &(0x7f00000001c0)=ANY=[@ANYBLOB="cfb11d0ae64e407d33fffff7ffffff86dd697a262d00fefe8000000000000000000000000000aaff020021b1bc7e15c08bf0529a02120000000000000000010200907800008001620000001a09ff0000000000000100000000ff0f0000000000000022013b000a1865000000"], 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r5, &(0x7f00000000c0)={0x7, 0xffffffffffffffa0, 0xfa00, {0xffffffffffffffff, 0x10c}}, 0xfffffd88)
write$binfmt_script(r2, 0x0, 0x0)
ftruncate(r2, 0x5)
r7 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xa)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x50000, &(0x7f0000000240)={[{@nfs_export_off}, {@xino_auto}, {@index_off}, {@verity_on}, {@verity_require}]})
ioctl$SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000001340))
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)

7.186804024s ago: executing program 2 (id=1415):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)={0x34, 0x1d, 0x21, 0x0, 0x0, {0x7}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0xa, 0x2, 0x0, 0x0, @str='w\xa9\xe2\x00\x00\x00'}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x2}]}, 0x34}}, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x0, 0x41, 0x0, 0x0, 0x10, 0xd21, 0xfffffffe, 0x5, 0x71ab, 0x0})

7.115703005s ago: executing program 2 (id=1416):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101302, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0x6}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0)
r5 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r5, 0x29, 0x39, 0x0, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r6)
sendmsg$IEEE802154_LLSEC_ADD_DEV(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)={0x44, r7, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5, 0x37, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x44}, 0x4, 0x700000000000000}, 0x40)
sendmmsg$inet6(r5, 0x0, 0x0, 0x811)
r8 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
ioctl$FBIOPUT_VSCREENINFO(r8, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc})
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4})
r9 = openat$fb0(0xffffff9c, &(0x7f0000000040), 0x80280, 0x0)
fremovexattr(r9, &(0x7f00000007c0)=@known='user.incfs.size\x00')
mount(&(0x7f0000000900)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='squashfs\x00', 0x1408009, 0x0)

7.115243372s ago: executing program 0 (id=1417):
r0 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, r0, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x81}, 0x240080d0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r2=>0x0})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000280)={{{@in6=@remote, @in=@loopback}}, {{@in=@dev}, 0x0, @in6=@private1}}, &(0x7f0000000380)=0xe4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000a40)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMKSA(r3, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000200)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fbdbdf253400000008000300", @ANYRES32=r5, @ANYBLOB="14005500ccf90776c32f300202020200000600fd0003020000bb90c69173863b9e6300"/49], 0x44}, 0x1, 0x0, 0x0, 0x8000004}, 0x8000)
sendmsg$nl_route(r1, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000001c00010028bd7000fcdbdf2507000000", @ANYRES32=r2, @ANYBLOB="0200260b0a000200aaaaaaaaaabb000008000f00fb"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)

7.030487661s ago: executing program 1 (id=1418):
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000740)=ANY=[])
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r0 = socket$alg(0x26, 0x5, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000640), 0xfffffffc, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x7fff, 0x0, 0x1}}, 0x3c)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, 0x0)
ioctl$TUNATTACHFILTER(r3, 0x400454d1, &(0x7f00000000c0)={0x0, 0x0})
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r5 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r5)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000540)=""/67, 0x0, 0x4})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f00000000c0)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000006c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f00000002c0)={0x1, r5})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x800)

6.627272208s ago: executing program 0 (id=1419):
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0xb)
socket(0x40000000015, 0x5, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f00000002c0)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
syz_usb_connect$uac1(0x5, 0xcc, &(0x7f00000004c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xba, 0x3, 0x1, 0x8, 0x90, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x9, 0x1}, [@selector_unit={0x8, 0x24, 0x5, 0x1, 0x8, "a05ed8"}, @feature_unit={0xb, 0x24, 0x6, 0x1, 0x4, 0x2, [0xa, 0xa]}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x2, 0x4, 0x2, "5784befaf1"}, @format_type_i_discrete={0x10, 0x24, 0x2, 0x1, 0x33, 0x2, 0xaa, 0x4, "b4b9b002fa29bb57"}]}, {{0x9, 0x5, 0x1, 0x9, 0x8, 0x31, 0x3, 0xe, {0x7, 0x25, 0x1, 0x2, 0xcd, 0xe23}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x22, 0x2}, @format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0xf, 0x1, 0x6c, 0x4, "2683cfd929d99a4aa3"}, @as_header={0x7, 0x24, 0x1, 0x72, 0x81, 0x4}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x2, 0x8, 0x0, "26e5"}]}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x8, 0x9, 0x0, {0x7, 0x25, 0x1, 0x81, 0x0, 0xa}}}}}}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x300, 0x8, 0x4, 0x9, 0x8, 0xb5}, 0x2a, &(0x7f0000000080)={0x5, 0xf, 0x2a, 0x3, [@wireless={0xb, 0x10, 0x1, 0xc, 0xa8, 0x8, 0x1, 0xff3d, 0x7}, @ssp_cap={0x10, 0x10, 0xa, 0x4, 0x1, 0x9, 0xf0f, 0x1, [0x3f00]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x9, 0x5, 0x1, 0x1}]}, 0x1, [{0x48, &(0x7f0000000140)=@string={0x48, 0x3, "2e0191a7dbdf13fc034f4727a19ab9a973a3fddcbcdc6a9187c463a1e1f9977a706eeb296fc86de75530e6ef873f851e9f1386abfdd195f0ed6356d72790e3905570ae2e2e5a"}}]})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
fstat64(0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0d000003005a"], 0x50)
syz_usb_connect(0x3, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x27, 0x4c, 0x3, 0x40, 0x5ab, 0x60, 0x1106, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0xd, 0x0, 0x0, [{{0x9, 0x4, 0xa8, 0x0, 0x0, 0xf4, 0x7, 0x50}}]}}]}}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)

6.485840069s ago: executing program 32 (id=1419):
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0xb)
socket(0x40000000015, 0x5, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f00000002c0)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
syz_usb_connect$uac1(0x5, 0xcc, &(0x7f00000004c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xba, 0x3, 0x1, 0x8, 0x90, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x9, 0x1}, [@selector_unit={0x8, 0x24, 0x5, 0x1, 0x8, "a05ed8"}, @feature_unit={0xb, 0x24, 0x6, 0x1, 0x4, 0x2, [0xa, 0xa]}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x2, 0x4, 0x2, "5784befaf1"}, @format_type_i_discrete={0x10, 0x24, 0x2, 0x1, 0x33, 0x2, 0xaa, 0x4, "b4b9b002fa29bb57"}]}, {{0x9, 0x5, 0x1, 0x9, 0x8, 0x31, 0x3, 0xe, {0x7, 0x25, 0x1, 0x2, 0xcd, 0xe23}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x22, 0x2}, @format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0xf, 0x1, 0x6c, 0x4, "2683cfd929d99a4aa3"}, @as_header={0x7, 0x24, 0x1, 0x72, 0x81, 0x4}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x2, 0x8, 0x0, "26e5"}]}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x8, 0x9, 0x0, {0x7, 0x25, 0x1, 0x81, 0x0, 0xa}}}}}}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x300, 0x8, 0x4, 0x9, 0x8, 0xb5}, 0x2a, &(0x7f0000000080)={0x5, 0xf, 0x2a, 0x3, [@wireless={0xb, 0x10, 0x1, 0xc, 0xa8, 0x8, 0x1, 0xff3d, 0x7}, @ssp_cap={0x10, 0x10, 0xa, 0x4, 0x1, 0x9, 0xf0f, 0x1, [0x3f00]}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x9, 0x5, 0x1, 0x1}]}, 0x1, [{0x48, &(0x7f0000000140)=@string={0x48, 0x3, "2e0191a7dbdf13fc034f4727a19ab9a973a3fddcbcdc6a9187c463a1e1f9977a706eeb296fc86de75530e6ef873f851e9f1386abfdd195f0ed6356d72790e3905570ae2e2e5a"}}]})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
fstat64(0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0d000003005a"], 0x50)
syz_usb_connect(0x3, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x27, 0x4c, 0x3, 0x40, 0x5ab, 0x60, 0x1106, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0xd, 0x0, 0x0, [{{0x9, 0x4, 0xa8, 0x0, 0x0, 0xf4, 0x7, 0x50}}]}}]}}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)

5.792251618s ago: executing program 2 (id=1421):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r1 = socket$netlink(0x10, 0x3, 0xb)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x14, 0x0, 0x800, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x24008018)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2fffffffd}, 0xc)
close(r1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfe, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xffffffff, 0x11e41e7a, 0x8, 0xa0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x18, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x8000, 0x0, 0x0, 0x20}}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2ce2ec975eca6e25}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x14, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000340), 0x1, 0x2)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000440)={0x0, 0x1000, "d735e8bd28f7d8568d1ad86e8f7bdc3bec75a81e811e96599dbe3123eefc058f2087ac1b2448d772f20af6deeab1a39324af8c2a01a429bda218993a0292b15e89966267f8c03ebd5d1db90f0215d18185547e4c30e61906a55544fd9a23e7fea87fd32854f2acdc89e7a50541da8d4a13d94345289fb30fcf83b44f4271937610da4c0501fe131dcd86d27a322da27613ee5f1625135e077907c035fb134946fa1afbf3dbe8500bc41cda469868b126aa11c7045d5f07268830b3b2bc59b0c92415c31089a959b773ac2741fffd7037380e8753f41faa4bee74e31452015bda475ff15b196b9505990741a38bcf2d63b654a4e4a5ad2faac171e6c5eccbdda0299a58d3f1b631857877acb9d856bd53aff68b11557639aa7d62b87befb58dd9bb534dd4a7bd3f1df02e825fc7c1c5aa48df6194c7064e710dcdf7bf7998e64520e8b746b2e6e1068ca05b574ee75f6edf01dbffbb6bf97e642b0edb9d8cce9328c2a0c712c51c925f429c3328fc29065460012dd271350e327e76079c41c1170ad4f92994192493de45356d8f6a08c8cc4d63d8b8a77b521ea42252c3ae37c43338694c844ba07a961eb79d63d1bef164e27c01df8a4208a1c4b1abcf5e3b143fe0919beda66e082c45de5486786126e94947298105eb368d28cb9bdaa3bbe7c9a0d82f18e7ba9519d0cd139caf1a9a52941f1643ef896c4f23484661a827bdaddffd73ea67d8e216d7353a1d38df1a6b35ffe8b63b8716fb7f80e006024af14ff52a157be09474345fb07638db43a377071f179546957a738fe5a9b41ec685b239f2f8b76cb7c4e69d2b22783b318414558426e9954a790f9956b9be801c36a4c7bf04f794c287993d999d5679c7ba08d1e122e6a81eb95190658a2f2d8c498e017b2675aae32719285c60b840d4e6c797fefacebed7c6ac777f37ff41c9915e2eb45b98f764d96fd7b324689430bc19b18599339e5246d0db1c51c14bd06771370ad0f38c66ccef47c9f3865da94fee8225ba3aa0b63e8ce19420c51aee7100354e49279422b8bd5fa3fdc97d1acfd629b7fd4277ee339cda06c926e5f514b54d87faff93fa4d882969e0ae12cfd2cf75e45bd3f28e6113c98af293cd02042f2f4688920ff3fbc223c180de773a83ffd6491e35262c83e81874027893b68a02696338832b4b2e81b5327078e1827cd9571d98a5e7167935cd6218ed56dc5b1f6d2975dd1b1ac2f0bc522e107cd4cb2d2fd8147a303f3fea51b98953e453830e55a688df25c60fe8d4f02c4cf5d8d429f095422cc41cf1f510e8d5f89e85f5ce7edeb0e1b0c5636707cfce1e5eb0a893392e70c79275c9047db351b13728597fb979975e5031b1886d0e444eea5225c77265dd42289a984a664e66354775b323e7acbad35e349584c24e248bcee2bbbf630d07f0a3e6415cdfb266ac00424d083f753b49e3f285525477699be5d759f6314f6684419c9c123ad5383eea270fb26011d10242fabba6f11e106af5f3eb4d7759c78e7d4680238ebe9c24995e0424d7056106f0bb4554b62b10b1932e081e2280a6270c989b51cafb9419a09f305cd7ca08007ec92d506b078050cd7147901e55dfb164311642719c59315b6d23c1574554f50fa4749e9ac8f1649688cb8b2d6d3cce74a03a9fce7da44b127a8a0d1be84dafe389028e213360112a23994a53a5c7462b29d5fcbdc18d4e3b955470533d250589190f069d1a09cb79f1302a60dc60407d098242eef83e72da34e1264299db882650b4c1a6c707a6092e3c4b22e27a78ab25e00c04fa4d65555f40ea74bfa6fe557c551910031afbdcbd5bff8dd8a9da9c29c2606ea638b56b4d4891010143f2eb0e8be3dc2e5b95e7391691d81b4b71b880879c3a12e42b5967f4209cc0815bb13503e0c78c88193e68342ddbd547d9f423581f5a7f52f6a7a7e356a61c7f3a225a20c4baabaaa7e8726ea540329dfa8edfdcf7da5e9a4e53d1a177d6a7e8eea45ff43904f17bd06bde6df90a767b7a21938c8c139c40851a218b34ef66f1681aa322efd13ef586ce8f54e12bb48e35c55dbfcff13920b7ed85430674c882e261ee19914fecd1092307c3834867b85544c90360bf266eee1ffc0086d1e9bb85068cf256321b44334aae5dd1bc85c59fa41746c4a97cc0a62bfffdbb29d3c32b3e0e8ce8dbd218ac15fef37918e48739741f80d2cc62b55123353c15782537f90b4db22f6fb3f422089014bbf7de446c8d8358f2324263a30a9b5cfd3e92efaaa54e0449eb5e9eb20d1426582ea4b12442f292e3922d39895b8b7073a3161e2bcb7a76ad96c41b37cd009e15a60da1c1d6be6d5b9af3ea94cff725ceb71134e0f54a85ce15ebc990413e1f18d09e356535258383f8a015142e700244ff6c7c6b3667e743b7234dd3b3233fadb4958dfe00b5f4eceb66589625ffeb2bac33b40cfff3ad2bd7718aee283516625c537ae71477318b2ea81d2d7646c91ac99c5dc8f9b8689d28b18b0476ea882ef40eb83026402cc0d4d66757aed5bc79ba0a34a928a6a667f70a8eeacac4495060f119ef54130b49a9692054426a6e46b73de9115283261eedd62e2e4354609cf2d866b4038e8fa028ad25ce56e9b75754d2666abd4145ffb939e96dd247e77fe0b90b9acf865a084339c4f4124dfe9a18d4a207a0970ba3e7ad281546b78bfe4c4cf1ba558edae453cf79868416929f17e9008ccf61a14989f688d2cde589fdea0383ed607ce7c0e0fa1622f7365ebbd951f9e79b38064a1081b9547d639ddd1a4645718f8e8741c2091af47b9779e6ca34cfb059207aaf98950e410893a52c5d4a2d43ecdcea888972bfddbfc9acec0944421e4609b1357caa79890be340d49144167e5b86457b3a6836a625021e7794e676d2d34830fdffca5d35e602b7e72d483ffa06e77697a018c27b6f0dcabd19e3d47ade6ea55a367b73435c05edb6ae70922eda56e3e6455cc44d2a44db3286ae5e6c41f5e4c2bb6ce0707db4bb73dd1a710a810306ef7c79e0146ccf021152a4e44aa85c6f36da5ce5d9f205c7177f9f0d1726206ad7059cff4b4b82cd04248346fc0807be499847f2821799d2897e5b568d102854d38ced9a936e2ae3c890d9ad293b65c5d21e7fad23371e8f8d5f8a753cd92d1c9978490a15e0eed740f4387211eb053b1e05dd41e7f519ac1ff36cf5a56fc67c15a28229dd382d625c3d922a228d71aaff735202011bdee27d8b3fa97744ca8daad592bea7fa0e283f400eaf4de642c9fc9e873ceac965afd30d22e57688c8351c6458608334d22e631ae2553eedb4124d092a06eab0856f261193cae9f20ff9d40354a8ea8a2520b6530b388be742f40b97d0613b37b372cf403ede84ad6db6b99922c38e45392e757e11c39ab1276afef90a63aad8b62063036b93385db4a618a0fbb12843604c7e5469b0609b4c3f58ad33ca439fac1fbfdc8a38498a98a8e6f7bd15496ccff1275be4c513cf56270d0d755a6cdb55a9c3819c737daf956e090be373c07136b8a761029216d3e4d00346a05e50cc6bec238de5f3c79fc6ea8fed7f64c6fe87b9c309f3f9c5071010060b2b55f7c3c22b4c5fc07f8a9f74328bfa8a74f9387a9abbcf842644b04a149d2b8fe63c0a97ec4386867f3edc6d848c06b87bb781434b7a07dcd23e970378cdb173996816dafe8cae4825421ad73c9cbfc908c6b45d72796a53b211f3a345767e7cdeb4cecafab2fb6a8a93122cbd2e74ce77873d562a07b6b611b2ccdd6bb683f658a991fd215cbebd0cca8227bf0b16bb86d3b8a3743a46d7e671a6030fdc94133f0d2e3117faeee6988bb77f3384b47281f5877adea56d3bf6793e6f5a6452d82e93fd2742ce42cdef4617d545a486ed8ac73cde67fb6765e61cd91ecc4965f1bc65c6384d38476f1ab8373ebcd69f45ecaad3996f10a7d3e1fbcf5d1082d6df017c5fd011371f608009ed5be49df3a6bfc322a68bbc260de9baf06547500aa7aeac17c707fa4645c00072cce38ce735a4c62ae1d8e07bf8976b44178b8a6a47a070d12e633fe6fc82420513181b4fdb50d19679363b1ed86bb3b3c5d7afeec1cb23a596dbfdb914cbf6db804d1a093d24d8c2f7093ac0aab770d6db295cb6b1b841eded2937299b2c997b01f9d00ee3798d7cc0613c3e14fcf97e9475c8361da6365928ca85cd11c0d881a0d712303dfec9334fe86a0527727fcdab8aca5516adb8a8f94a1ee44cc0a4e7f528f387166674cd2b9dc1e00567a06e81d33fafea98637d5c416a67fb9e44d17f376c45161900c612b7a2a1f8cfb50576976a096a888c56f2594c9bdf1c6c9377440840ec286e4b51f86d1ce47450601569f2124d129a19cc6a0c58998a99505f6e52347e681fe2d06f69fdd85b94e543cf2a2d46867032160566c66fc037322ea7790acf0d9ff88bf26d32dfc18a5315192447a4d31494c1c695fc9d630a28e550d13a63bb039e3f51aa82e0597c41ef1e79a9ef792f6fae3a8fc140e993de5b682f1431693a8438673014fcdac49df3cfab43a74c90677a4c0f84635617d1ba3134923ee35a94cba235d98022b47cc617568f0ef1cc942d01e3d58fbb84ac8adaff99cc9deb0fd30001d4f5fe8c8252abace9dfc0f871ee875b7eecd0e9c82d8deafb35bd5106f19688414d6d4547e05ccb8084244832dd0ca6883a84863438fb4cdd8a5f10073498c78792585bdceedc97e06e7f26958e1f3a3b0b2a8b25a5b9efe09c144f7980c8d2723fb664b81ca8d444f0e42e573008b7d8179092d3a1196f701af0590aa127ac39a86a8f9543b17d590c4b6d700ac211cdb3e9afe637b30dca0668f5bb1f7deca2e65854706f365b79e80fd2cba63a97f043e0cb48247c05ae4db6a311488fb68758ac2eab6ae5d277b5a23a69e8784d2d973edfd7b50f1e879379e20a9eb66be8f0170adca86a1ff65d6288f070c95b49a576fd34cae12093b4e6b4c49d68c28e8cff9260d5e690b0510e8ad8380b2a9c018f7a8e7c22b98f636d3cb8d32ac6707be64e7e3df6c307a16c1679d177649a0226eee61ef38c097f4e57971a4811cdfbb95132bf0350628a43080a52527d134736405104e163ad47e24c52334f0040a2ac990df9e568da79ff92abbaea2fcd108387e4ef89edeb5ef1aa400ed2aab0a8cc96096a0c23d9f9a6464c64edc28b5614fe07d94bf269827a96be6878def5410349c44f2ac55adda181c2252cd6862d80a8b3dec26adae107f2a33b0f37704bd8c50e184eaa4b34bee8ba16ae55254790df5d52e3f0a284549bc55b55aa2cef2191f5f1da56c35aa80da4d034b2084bfb3ff02d7aa483b16100c7421a4c3ca321b8ed53438a100ce35662fe2c29027820deedc904fbc2198c92c33f691f2777c52c6d5d276660dcf4d4b605e2af2ac692b709af728801eafc00e21c0651e4bcb6a3b5fd74839bfa4be28599fe1da1888065dc0dbf9c1dff7552dc0a53277211d4b893fcb0cb426d3f543ada8eceec108c74c69ae3e09e98ca068442432c7d3a56ca6840bb0a720fa623884db45be4342e01cf04b6e9ae3909ae7be52b7554e4b2f0ece3712c61e9a80f25dea2b3ea20cd29ef7e3f0a626f2c1a028af89e153d9238c55bb2065bbe105f23abf3e74e01deab672888bec43c8ec98ae2c2e8fd90d725220ecf3cfcedf1c4a6886c225e159f07c9a8fea55c2c50632d22bdd699609f6baf2789f38d93832ca601da0a901c6f6adc6959f2d8c7b0f49ff2b5b482afa6cb48d39c7bb16554f57b3b8c97b665579de27d7caffadabefe736c70"}, &(0x7f0000000280)=0x1008)
ioctl$vim2m_VIDIOC_DQBUF(r5, 0xc0585611, &(0x7f00000003c0)=@overlay={0x1, 0x1, 0x4, 0x400, 0x9, {}, {0x1, 0x1, 0x3, 0x0, 0x4, 0x3, "129f89fd"}, 0x2, 0x3, {}, 0x2})
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$pokeuser(0x6, r6, 0x118, 0x50000089)
openat$cdrom(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={0x0, 0x100}, 0x1, 0x0, 0x0, 0x800}, 0x24044004)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1e9000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x1000000)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000001c0))

4.771714644s ago: executing program 2 (id=1422):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000180)={{0x1, 0x300, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8, &(0x7f00000002c0)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000001240)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r2, &(0x7f0000000040)="0300ffff", 0x4}])
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
getpeername$packet(r1, &(0x7f00000000c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000200)=0x14)
bind$xdp(r1, &(0x7f0000000240)={0x2c, 0x0, r5, 0xd, r1}, 0x10)
ppoll(&(0x7f00000001c0)=[{r4, 0x601}], 0x1, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GETFLAGS(r4, 0x5437, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000040)={0x1f, 0x7, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0xb, 0x1}, 0x7)
sendmmsg$sock(r6, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r7=>r6, {0xfffff126}}, './file0\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
read$FUSE(r8, &(0x7f0000001d00)={0x2020}, 0x2020)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r8, 0x89f2, &(0x7f00000003c0)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl1\x00', r5, 0x29, 0x9, 0x8e, 0x666, 0xd, @private0, @private2, 0x700, 0x7, 0xffff, 0x6}})
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$P9_RREADLINK(r9, &(0x7f0000000380)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10)
pwritev2(r9, &(0x7f0000000980)=[{&(0x7f0000000500)="be", 0x1}], 0x1, 0x6, 0xa, 0xe)
ioctl$HIDIOCGFLAG(r7, 0x8004480e, &(0x7f0000000080))
request_key(&(0x7f0000000740)='cifs.idmap\x00', &(0x7f0000000780)={'syz', 0x3}, 0xffffffffffffffff, 0x0)
shutdown(r6, 0x1)
mremap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil)

4.694094629s ago: executing program 1 (id=1423):
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000300)=@random="1504f757d74bf5921961da9f10dea2afeff5efa4d1e794a14f15", 0x1a, 0x1)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
io_setup(0x222, &(0x7f0000000180))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x0, 0x0, &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6f07}, 0x4a)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000780)=ANY=[@ANYRES16=r0, @ANYRES64=0x0, @ANYBLOB="b0d05f71783d3a77da7c6176be2ec476d2bd3d5de220ee980bca83bc3902101898bb879599256234692c153291d59e47bd00b7712ff1ef04e7510b2195dfa4b5fd4ef02d3ba8bc7da2d6e32d3cca8fa5aa3faecd3dd274ca397c2f9deabeb4c939bc36e617c33d8769c036f1455e5b0651b3c3c53e36fbbc8988f565cb5fb080f32847bfa67ed3237eab276c853959f012842aca426fa907144026ccc00c54602c8bd8b6812d4b798b938fc60ae0d790b1ecbff183c6ce7bd3d59039283acf58631def38d300e83f5bb32a9346f46d2d6f8b58758d9e0ad84c1f9f151684a3401cb9fbdaf4214fb08341cf4a1a", @ANYRESDEC=r0, @ANYRES16, @ANYBLOB="00d04a4c5d79580b69dc9d4ac8", @ANYRES16=r1], &(0x7f0000000240)='GPL\x00', 0xbd54, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000000)=ANY=[], &(0x7f0000000280)='GPL\x00', 0xc, 0xb9, &(0x7f0000000140)=""/185, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x0, 0x40000020, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x3)
dup(r6)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000190095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r7}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f00000002c0)=<r9=>0x0)
timer_settime(r9, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

4.249945584s ago: executing program 3 (id=1424):
r0 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040)={0x1, 0x6, 0xc, 0x0, 0x3, 0x3})
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r1, 0x3312, 0xffffffffffffffff)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)={0x18, 0x12, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x36, 0x0, 0x0, @fd}]}, 0x18}], 0x1}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x10)
sendmsg$SMC_PNETID_GET(r2, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000440)={0x48, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'vlan1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1_macvtap\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x20044080)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040814}, 0xc0)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x14, r4, 0x400, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8804}, 0x4040)

4.126951594s ago: executing program 3 (id=1425):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007300000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r5}, 0x10)
r6 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
ioctl$VIDIOC_CROPCAP(r6, 0xc02c563a, &(0x7f0000000880)={0x2, {0x0, 0xbac0, 0x4, 0x1}, {0x7fffffff, 0x6, 0x7, 0x8}, {0x1ff, 0x2}})
pipe(&(0x7f00000000c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
tee(r2, r8, 0x8f5, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_DELRULE={0x1c, 0x8, 0xa, 0x401, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFTA_SET_USERDATA={0x34, 0xd, 0x1, 0x0, "a591794a716959ddc4ad4369094dd070891e349c2ad5999569be1d26f76bb84fa3b3384535602726f86f5357089bc558"}, @NFTA_SET_DATA_TYPE={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x94}, 0x1, 0x0, 0x0, 0x200d2}, 0x20005)
bind$inet(r7, &(0x7f0000000140)={0x2, 0x4e20, @remote}, 0x10)
socket$inet(0x2, 0x5, 0xe280)
bind$rxrpc(r1, &(0x7f0000000100)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e20, @multicast2}}, 0x24)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'vcan0\x00', <r9=>0x0})
r10 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000007c0)={&(0x7f00000006c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x9, [@var={0x4, 0x0, 0x0, 0xe, 0x2, 0x1}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x1, 0xa}}]}, {0x0, [0x30, 0x61, 0x61, 0x17, 0x2e, 0x0, 0x30]}}, &(0x7f0000000740)=""/65, 0x49, 0x41}, 0x28)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000b80)={0xffffffffffffffff, 0xe0, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f00000008c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, &(0x7f0000000900)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0], <r11=>0x0, 0x67, &(0x7f0000000980)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f00000009c0), &(0x7f0000000a00), 0x8, 0xd0, 0x8, 0x8, &(0x7f0000000a40)}}, 0x10)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xb, 0x5, &(0x7f0000000180)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x50}, @call={0x85, 0x0, 0x0, 0xa0}]}, &(0x7f0000000000)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x7, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r12, 0x0, 0x28, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f86dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=@base={0x14, 0x2, 0xe92, 0x5, 0x2000, r2, 0x21, '\x00', r9, r2, 0x4, 0x2}, 0x50)
r14 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000f00)={0x2, 0x4, 0x8, 0x1, 0x80, r2, 0x1, '\x00', r9, r3, 0x4, 0x1, 0x3}, 0x50)
r15 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000f80)=@bpf_ext={0x1c, 0x21, &(0x7f0000001100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2aa}, {}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @cb_func={0x18, 0x7, 0x4, 0x0, 0xfffffffffffffffc}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}, @map_val={0x18, 0xb, 0x2, 0x0, r14, 0x0, 0x0, 0x0, 0x1000}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000cc0)='syzkaller\x00', 0xf864, 0x0, 0x0, 0x40f00, 0x649b7ceebc92f005, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000dc0)={0x9, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x1f27f, 0xffffffffffffffff, 0x5, &(0x7f0000000e00)=[0xffffffffffffffff, 0x1, r13, 0xffffffffffffffff, 0x1, 0xffffffffffffffff], &(0x7f0000000e40)=[{0x5, 0x1, 0xa, 0x5}, {0x1, 0x3, 0x10, 0x7}, {0x3, 0x1, 0x9, 0x4}, {0x3, 0x5, 0xf, 0x3}, {0x4, 0x5, 0xe, 0x8}], 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x1, 0x0, 0x0, &(0x7f0000000340)='GPL\x00', 0x1, 0x7c, &(0x7f0000000640)=""/124, 0x40f00, 0x70, '\x00', r9, @fallback=0x2c, r10, 0x8, &(0x7f0000000800)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000880)={0x4, 0xc, 0x9, 0x4}, 0x10, r11, r15, 0x1, 0x0, &(0x7f0000000ec0)=[{0x5, 0x3, 0x2, 0x4}], 0x10, 0x3}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@bloom_filter={0x1e, 0x2c, 0x3, 0x9, 0x28200, r8, 0x4, '\x00', r9, r7, 0x1, 0x1, 0x5, 0xe, @value=r1}, 0x50)
connect$rxrpc(r1, &(0x7f0000000000)=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e24, 0x7f, @dev={0xfe, 0x80, '\x00', 0x29}, 0xa5e1}}, 0x24)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3400000040000701fcffffff00000100017c0000040042800c0001800600060065580000100002800c0008"], 0x34}}, 0x400c010)
sendmsg$nl_generic(r0, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000300)={0x190, 0x30, 0x1, 0x70bd26, 0x25dfdbfd, {0x1b}, [@nested={0xdf, 0x150, 0x0, 0x1, [@typed={0x7e, 0x78, 0x0, 0x0, @binary="ff4bc1403f0f3a96bb2b5ffaa76e57cc422e93527d831d69c2cd588703f7987c0fa08ad4e541eafe0d38a38f81d2bf8c2a7bb50646e6d58130a234f1c7960b980d2eb884aa4315fe335a06825597430496cfb77e0180e98441e0547ab1dd090c2ae2ab7faeb96288af149951acefab044df1200b56bf8d80b56d"}, @nested={0x4, 0xe5}, @generic="685da0bd0b17ab6c667608bc4634afbecdfc7ad3ce49f0c6964642d425bc36c5f8edd1473abafe19aa43542c8bbfc2c110a521335d7af17f7491e43e49340aeb162923be9592836daf56c85f4df93a3a2bb87e54c3148f"]}, @generic="e2ed8c244ff8c8beae9003e0ac1f0a6ebfc38c543188682ff38120d642fdcf009e449c0343141dc4e2900a2bb34d15f406536a549bf1a25c685787fc6160c8841764bf60502e322b6506c8de8ee51cacfc2b939a7a6aaee0fd9be8d0dcb36e8d2ab9bb65ce196bde3d8139213e0618eed491c676ccb4ad45eb96b9506d3f312a82e31a73f0e6dde36b55e579d563d25d20fc4d270bf8faa9d2845f"]}, 0x190}, 0x1, 0x0, 0x0, 0x10}, 0x4081)

3.782272138s ago: executing program 2 (id=1426):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xab, @loopback, 0x10001}, 0x1c)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @loopback, 0x23}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x0, 0x3f, 0x0, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080))
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="7fff0000000000002800128009000100766c616e000000001800028006000100340200000c0002001f0000001e00000008000500", @ANYRES32=r4], 0x50}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r6=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r6}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

3.601814526s ago: executing program 1 (id=1427):
socket$inet6_tcp(0xa, 0x1, 0x0)
set_mempolicy(0x1, &(0x7f0000000000)=0x8, 0x5)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x85)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
openat$vcsa(0xffffff9c, &(0x7f0000000180), 0x800, 0x0)
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000200)}], 0x1)
r3 = openat$apparmor_task_exec(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
pread64(r3, &(0x7f0000000280)=""/119, 0x77, 0x9d)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x2, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a", @ANYRESDEC=r2], 0x0, 0xeb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r4}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000006180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x90, 0x0, 0x0, {0xf7ffffffffffffff, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3ebd, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, r7, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r6, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x2, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x40500, 0x3)
r8 = syz_open_procfs(0x0, &(0x7f0000000100)='map_files\x00')
getdents(r8, &(0x7f0000001fc0)=""/184, 0xb8)

3.234947909s ago: executing program 3 (id=1428):
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = eventfd2(0xa0, 0x801)
r3 = eventfd2(0x10000, 0x1)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={r2, 0x7, 0x2, r3})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f00000000c0)={r3, 0x0, 0x2, r3})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000040)={r2, 0xb8, 0x1})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), 0xffffffffffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffff0001}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='mm_khugepaged_scan_pmd\x00', r4}, 0x18)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)
openat$proc_mixer(0xffffff9c, &(0x7f0000000240)='/proc/asound/card1/oss_mixer\x00', 0x10000, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ae, 0x10000, 0x2, 0x3f, 0x0, r7}, &(0x7f0000000180)=<r9=>0x0, &(0x7f0000000bc0)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r6})
io_uring_enter(r8, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000a00)={0x0, 0x0, 0x3, 0xffffffff, 0x1000}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

2.602043143s ago: executing program 1 (id=1429):
socket$netlink(0x10, 0x3, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x8, 0x8041)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x24c4436d5a174b6d, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4004000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
ioctl$KVM_CAP_X86_NOTIFY_VMEXIT(0xffffffffffffffff, 0x4068aea3, &(0x7f00000003c0)={0xdb, 0x0, 0x7})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x15)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYRES8=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha384\x00'}, 0x58)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
r6 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x121201, 0x0)
write$dsp(r6, &(0x7f00000001c0)="d2", 0x1)

2.074709518s ago: executing program 3 (id=1430):
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000740)=ANY=[])
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r0 = socket$alg(0x26, 0x5, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000640), 0xfffffffc, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x7fff, 0x0, 0x1}}, 0x3c)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, 0x0)
ioctl$TUNATTACHFILTER(r3, 0x400454d1, &(0x7f00000000c0)={0x0, 0x0})
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r5 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r5)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000540)=""/67, 0x0, 0x4})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f00000000c0)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000006c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f00000002c0)={0x1, r5})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x800)

978.88615ms ago: executing program 1 (id=1431):
socket$inet6_tcp(0xa, 0x1, 0x0)
set_mempolicy(0x1, &(0x7f0000000000)=0x8, 0x5)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x85)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
openat$vcsa(0xffffff9c, &(0x7f0000000180), 0x800, 0x0)
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000200)}], 0x1)
r3 = openat$apparmor_task_exec(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
pread64(r3, &(0x7f0000000280)=""/119, 0x77, 0x9d)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x2, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a", @ANYRESDEC=r2], 0x0, 0xeb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r4}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000006180)="92756f43b31ffe542788ef586b7c5a344424e3acac2590be6bbe37adface4a8f2e534ffe76a83a93f0b3680a72fddfde83f96d01982384e8d689219cb9669b14dbaa1b799f82ea1fc926126a4163618e16d4f94143a4e0f27c44fcef3920a0b3805ed4e78098d8689cc7791bd86648070718d238664332948d87866c8d2590fc0f017f9853abd9ed60b99f1aa6ae2dbd24ab6dbcebdb055246815ace147cc50fa3b2861148fcda374d5b203e51d72c45e4dde3e9ee9a47ffe4d8baf7bb49035135a8194aa1f0a83fa2abed56398f90daff679634619453f533f22583a6e0a4dc09e9de46684d5e0136e229510f3702cf3a4cd0065d3e5d3c419e38a80b070ca55010e082a9c510fd18cc0b26bb5e8e459e747befbc5c6b60ace80bf41417b7b78cf57e5b3984f0cdddc615c5e0000454d3f4a196fb6d18aa629cf0b0245f95ba958d86dc175616f8cd3ac473057dc3a5ff7107973326350107f4468e7ecd48d689b82c12d22ae5f1858302a1b4cfde8fd347a99ddcde40d1c49d9b5099fbccf09e782212be4b2ce36a2bc3c9ee794abffe72a5501e6c4f3f7f68b74761ffd6620609224a3bf11f655dadb5c8a5813b02fb46830e9ac6825f5d0e89910352eb3a58c0dd82d094f94dd2c85666f684a8f437bbd0e66b9f4d366117b67a054d212c4fbc287848cb0578391335d5d616b14d99a2e3df8e8a152d5de99bcefcaab5bb5cc71f3ddd66b379c104648e190e0b28a180d3aecc5423575d4ba7dbf31215c717da7b87dd454b6efcd36c91aaa631127f5bd88723d221752f102bc0c7ac6c5c7a1ad6747af40d01b6d39eab7b0e1292b44683c586386ad00acf60fb8f9bac551a6eb5bab7317b5d89f64db10bd9018dfa6d65d93862e851afbc30fd70fe5f0de322462045177231852ca80e4e78da4fea0c79ba354333026c8bc77d308a8d256a19ec45d2088c196691d3f9aac28ded36004a65ee1ce49ba9599ceee84534bb61d02d04a6732f1e27d72962f74b59f3522bf844c5022986d55934e48b8681b7f5b7532391448caeef00315d28320a46d8bd7813544e1e4bf994e14a519c2654ff20b42bdb69c262897e28eca528f0999840b00ed8256597d27cfc20d71d5f40d0bbca759f7594c6034aa1e16a84ed152fad0fdc1c303a7f61225712714f823afc5ea241d482d3585759623af8c97ca6a84a2033b3d7314ea0ef7ba9b288b362a294c92c8b9736829c16f61c5a1ee04aca965d71162292274595ea62c9c2918e8279c99f5d2830c617c58211fd7452330184b9428d5ec1d5cd75ddcc6de3326fdc70e891104b3b013c30ffccfaf3308d9671b01f6b080a930dac2052c6f39817a662121d90d40d6a1facfb50bec7d408030b6d0ae3e744f3bcc327c35dc43cf86b743db78ff2e593b19923235ed6467f299b08718fe1840c16a748935dff941150fb08b30573b37bf9af5c86cc8d9e229a832e4ef25ec91f71120f2b3e9062485976c280a2d172386029e2f2a4801197fca0a13514edacf5ddbac5a62e8bb13dd1572657a821a8739297f72e29239d1cdddf3e30cbe9af3141f2275ee4ae85d86ec888fe9a6751f252057e95b8beb055e276439581afee93cd44f1e92f70e5f725451d3ab662918ffbb1269509fbd511e95a00ec717f9d60d643864abd6ad1cc4dd7f933379a6078a86c2158db8076e7b660366fca7b1c46d09d2c8e67a6494bfb4c2c6750e76593895b5e2b2bc78093840c3c4a807826bc2750a96b4e1dd5b82b492bb2215518c92064d1763c37132604e52e73fac3f4511f791753aeecfbb19816e0da7a1bfbea9eeaa0f256eaedcb119a61f7d0ea0f5cd4969d45cb014800f2c888d5c2217cf0f69a7507779883b57352bb8883cc584891950d6e792537074f4fc4337aa19b9bf60e18edd939d289fb4a6b7aa6c66da20774e249ca4f779d3c910b1a9a8e4c38af6adecc87d5481d181fd66023ffff246f4e2556b218fe8110acebe20b1675f1de6f265b6d1d8514a53522396bf0e2f2b153c498e48b36d16f8b9bd56f45d7f5b9397d7f1339117a176d0bad0b68e800682416d3e18fe2197c7f8dc20600feb95cc6ba86ad47f113e159bd4389e30eab2874bd27eebc56020c4dab9973b13f3e82aa62a7e0a151d73de48cb811e32be63ffd303f5a6ea6f097ed763fbf36c430821e451146de79922348354ce285af0997bf3c66e6ef02942e24b8f1ccdd542f09cfe65c0da0094c0b5fd26bbc061538b41e5ed2cbb390ee29b10a4b7a696009e1b5b86c44c0a561a257c15415feaeb1433ea275ed6e4b228503fe71ee5942665164faaed6697112206be0fe7863aebd4bbe951d5dea1da294dba0793196385f4d5141c9d6c4b0fa22b2e200cfb70b52aca31655e71e5a576ccb8ccb5b1364748aa981edbb81a813b1aebc67be1f7619e7e197622d981280429f6ca5145c5b3b05e6bace9191e5c58fbf140f71f594cbfd4db0e9f6923f1758ff9464a61a720a5d4f09c622c3ce3f5d0d3a1d191111168108f41f12b16e9eaf3617c353715cd35260560cbfd0555d51ce5c40bbdb7c95ceaeadadb8902974de50b0863348183864f5ea682e678286a06a6f396af29a7c7fb33a3579e25835963612f3c0d4cf369d85959a0adeda94d35824050e6fba7f83f90867583f713d7783323c7010e94c9be331f860db395dbde6face5bfdb616fcefa9c6b01f6963daa840a31ff554a458c0c50cb5e09f91f54f63234589decaf45bbfbaef0dcbff4ae6e65ca26a530261c491ef8eb9a855a1d7463391c9b66be96cf24c3c321ee5a5bdc857f60b582683c6ae1e3775b62a9f19ff8fa51380ca8a2a3c6de79012f5727ba12025e7e6723a23a81e067ca6e54c7b38ff64880d235d21e7ee5258953dcbf9e2a962f006ca4ffe870859242c850cbae4222b3b72c4f86934379ba2ead1dcde906241b994d95c88355af5a9a30ace9c933a6942f341ad221dd825846a8fd44c03e2eaa9311c26e15a1bd7cbba961a22ef23d7ebba0e34cec5ef09b1ce72814a97e33bd29f3d9ec80a4f45d1d29486accf15c11f1a800bd84918e7626f678275d7c7acb02cc0e6e34bb766ba6b75c3ad14fca9352e09c3b69390c045cfc842ff9ade8ca693c07fadc7047a946e6e570c3afc5b501c964103397f5ddadc2d59a048348dd42f07cfe31bc9b5ae453f5086bb41bba4c8a3e518e30b0855184b053f923025dd72ce1bcbf41231978b34a8547c71d7313992165078903c61d312b0d9469413c9fd97ccdf0ea270fb6c47ec8861a1c8d909eeace761b5a06ba46e25785ff87f867777abb237c6c980687991f1ed0157d58492260c712cec34c1fc0962103955db4d5090b6e8409cf3c3c79d0e691cf4fbc0b2251a016dcd456969cd32e5429533bf0d6f8bda84c05f0e2040de8b53bfb8676eec4b76c3df6f46b1e43732035dda577e75f640777f6ae90fd2f1af42ba462dac732019c599bfef01acd6a0d4d1796bcb8f58519d6f9ad9a3206704a94d472516b988141f44ecd2e6f28a49aa0c449db87972fc995a97379914546ea43143ea2cf779a9cbe81f111fe89129db3610492164ab2598eca7e60d9a6963d8ba03a86729db86e420fd96d61b8fb11edc2b339b57a740074ae5b775eaf60cd85dc934e604bf2b4bd58ee01205b4df57ac20ff8db45a05982b579643882407050c005102a2e71f1e56dc76dbf5331112e83e48bfb5cf2a78a893190d78426175c162ffaa7278a43b9932318fc17fb8cb0dfac610b1ad235b91f9cb7623b155117e07f7b876a3c37627aa31eafed141cc0c5491c4f621a66b6d837a144d78719c46511c04a093cf65fce9fabe5bd6d499eceb63538ece3cf19053550a239bf978c08c879f9954485a4e3e0d5bedb84b407ced85c4dfc4d75af116815992c29f0bc927c4a990c38ae4fcc9feb90fec1b1b555e04d010423010855394d5ccfc8ed21564190cd8f83be5debb70290c3547f07e4dc42814f1e001798e6ceee2558b0c6ff8c1759f90269ee226131116332b99ac8dd104c92088e1f91ace3198c0f59bfb75c4e4a697660eed43a29c831a552de37fce6dce96fa51b6e2111f3071a4e94422d15e102e5f67da7ca6cae6bed7743ebffacb8a811a143605791d17232181a517e872f71262c3c73668f0ef83aad498f67fa26bae698cf78f24c2dbecd399a190e6b8d0684e929f2e8083765eb2c67793a1adbb89d36b58bfb197cdc5f3c894ac9d886e8f3b0936fabd233c09de8fab8099f72a74d908ba5c5e4d39790b0bf9e45b710f5587b7c937c76690c5c5fce621a53a9fd03b0a4ee6d8d1abbe2ed561820a77f12a08cad0755540ab6dd1604b7c30a8652995ab80b85e919011de9438a4637eb0291124ed4b745e782cff98510cb03be79c2a81351abf276584d75cdd96b9c97e73eb71000b3ab7c3c19c2cab4497298fcb3052b5d4503d05e7f310318be6f848547b1a4f4db82caee190801478be28065036aa4d91f290c1f396343e73a5fe8bb5ccf0a317177ed1f77acda1a4a49dccfcab8d1b5d79f015f788b6d5e9f8228a8bcdc0696e6b19f5edffbcd7e9509c87fbe1f726b93bf8c6d8d37428763e142560c46c9e894f7317859000c25abc4f3691ebcd020171e0d4911b5d97a238109aedeb00b2eb475c1e7b45175f8aa85193b5c0f43b434c15de01610c4d022646cd6e3637f349a434a77f571ac1c5d698452d1b991e267f78dca5e592ecd31ccafcad84e4e98d134b4adc525b81bd6843428883023a6ea407201738c8bf16b541ff7280274a34d4cf14819f2dbae167ca0cae8471c495e006b45194ad91c4516f21cbb10e0d26fd5d734cd7725df5b3fbe92955f4a9bb3b9b813aeeff79d6ed5db92def19d060a208c3ec8c42c110786f1e1496c50a7249b03fc792764366894a35320b99d0bef9fd0b6a246c36a357c6b985dc83a37a8d9b8b9ad643dea94860cbe763bb73cc8422b69d4d12332242c8954075fb7117a6679638073617abcdb4619855b2036af160647f66b3531645a3bf047ae290d6ae2249f114e7a8464278bae1486022bcc7c37390c8d9a0efb0e1cfa0da8ef7a5e072f99a47ecc75e4e442880375193db49bb82ba34901286ca473ed5b63e4048db4dc455e74b3fdd2e7898ca3f4c3a02d435cde6141eea645055123a7dcf0d22057f8d425701afc55859f5147954e719d58c7486b1e02ac16cb799b77632c66bb78e6e52e11017c1736424fa4d433f1e19b4c881d23f0b2a12d5fae3ae24339088088d9b496ad97bd9f6e20a8597d1452a0c72dcf43dbbda8f18166585c06d21fbffe5fe7b55f71c9b9f1b34a02bd05ca63c7c1b1bebbb9dd24fb10291b04c665d45154dd28b85d821ce7e613119128996785e1006a8dabc4899b10d2671107d5a0658ed363b9d4b39d02f8cc5e350fbf0a31048adecd1f9e2ca749bd86f195eb48e9b4605f050de03d642940d79184618f7f88a9a0a4683ad84d6134e395305bc1d4d9d17cc334b97653529d6682a87a5fac80a6d46d6e72fc22e58be7b8f8617b3372ef2622110ab1ec448717118b257acffe55d18c7855e9e8710ad977a6792b2315a189eb4468c68641e9b60c0dab7016ac1ad63cd8004b6eca8fc88b1e4263acc00499255c16b11487a0af858075f9c892dc8044c4146e5a5677c4a2cb24bde5e078985020d4ab1e4c87492e76b7e6f4bbd71d84bab1885c9702849e70cf728776b1a94c2a8fb8c7ca01b6111ef6f2032a290949bfe473fe215273b8b5b3ad540f187490f63077dccbca6f62f0a7a66717c596cdef412f2560b10685ede967b3ee68b8c951959aeb1d7564c3b9d806b2ce858381393a79916b78f7e90beadae30ffc0b2b614380f1c2cc551a44565209db3516be379ef566ab00c673fd8aaeeecdcf1168c1960e9a477b9e13757498a44ff089351d1f27abf9fd76816f924504647d1247715ca861ebe624172c322146d66eb2b247f8ecb3e1b5ddca89b287c57510cec40fcf89d802cf4368a861af320e01e34f7a6177d4bc549181b5e87ecdfe02f78c9a59a3bf91ebb6364023ec06410e7b4476ec4e3685bfa3bfe9ef9ecc12dcd899abe0f3c7f16b4686801c0c0a949aa26bed57df56f2bc54ef19af7fcbc7b0d691075f42a4a67acf980b568acb2342f42249f7c1ee3527c13182b096064ecd250887a942d26f637e1c4041b139659d2462a68680bb04387a3b399e396b9fe74de10356125fa47d0a20827370cbf36a79b6fffade91c439dd6cfff4bbe0dd3efefb61c491ee32f935d62307cba369ac8c20f6fe3d4857ce6d240ece5e4d149f0587155a8350fcc18efae2ff11cdbe15218a82499a1996df8b5462ee170b284321e76bbe5c3f4158387644d95f087c598e3d46fbe27f63fa784bda239512113424045a2c5dbc6bc3662ca730a86d13cf8f6fe2743224ca7b535caf6b4701a7dae9cfad3d7290104bbba15b6a064ae6e909a099f75fbe47c9e654d8e3b8dc0f3dbffe829e6c56f7a241e565136812a857f59ab565a9991c6b1d8abcc94c6b33bba314f6e5060e657e4647f969a551dd6c51dfca0ff5d9e4f401fedbc2c927eb1ed95ef25f4e5accba4999322ba1539499310dd5875433a22835cfd42fd77fd4680b7fe767d7aa5c33acde04a65bd3a663fcde4c80e9f2af498f13bf9abbaa1c1265edc691e94abdcc92270c05811cd2a8104eb18efbfec9e4ba9ae5cde211b9b93082ce034b6cd5fbe9cfbac4f7e2404ef159766124f73017cc3600f3c81cd78db25fc3459629eaf20dfdb062c7e502aa69412381d847a9d254d5befc451cda3606f0bc8ae62e0aee928f9ed0b21d705a8d31b899e16445ee064563d32f7b6bb5ad197023cf528d9b329ec67815c6ddf27d2a6ffa7328bb993407cde3d166159fd49fe469254b84c2916daea8df9d69bef019f1351b9bce193e30278835b82ea5f60dc0bdd7f7452b7a820ae7cd6dc29d7ac6a6c1b6411711a96338b1e769146b2a385d282bfaae61b041166efafab2d89a4567b9460cc22d752f8e9aacaaa0db7c84879f5359662d55df6570d4214740851c74574ced733807cbb54571110410892394c3dea07bd4154d0e5689d57c3360207dac951f96a358e9c466a5c5113f3a632e184f57f075edef4dcc9721b963beb95df09dedf848260cbc1ebfdc7408218eaba6d2c51928cd37c4c0c9f321fbb0994a56947cfd9643056db5dbea60a241f8f004c932bc8e645b2ec2eb9bc4e9e2f4156293234d05e70cb26b8a370b0206c756bda6defc11c5eb386640f535a4ffb714168defc6d82f40d8f5ba8768537ead5773c53bd779ca899a2dd31c9138569ff5107c2fb12b804375c3b3dc9b828bfd550328adf358f71e86a0c49fb119f5ef9e06c13855cbfc7d1a62ca2ea655ed912a6dc7bb8b18656e8923fc7a1702ab36947d79384d681c31923e98cf40209f776bc2b219a7ccd139e756a905aa351e6eaae90770c8a193f96cd5c66e4d77a357985556e14333716d80204a5c390e0d76f4081afe917f99ad8a0976b3342f51854b374b4baa9a7f22124d2b82749446e30d9795acb9c3c3a305a6d273ac528e8e9c95c37a78e765fdda55982c2961fbc85a14fc095a78b4654ee6dfc3298749a639ab9c8e155af3a77f8a409ce174532a492ef550a140f774d77d732b3b4ca5bc41fa4488ce5957ce219b032ae1f585273748d81b19edcf3e6cb9a93ec24e41c6b3c472f9baf3ca46cb8b9a91df18acebe7d83bd4473750c4f26806da2f95b9ea48b342460af729ab15e9f033eda67feec645f985d4b9489cf6ceec1b100d007bf46c74be53c7ea17296f9c5b5cbae736491213c93b513009ebdecfcd60d46d7b86c6e3b5e288f2ba5867c07936e7bd1b00de52191eb8630ff82ccafb27a59295164751811bf74eff1e5e2abdf3c93bc5dc9814be83b2562477935e2fa30db7ebb6ec380170cf10c1f98f8c5eb71c730c2b31b55a1dd1c12a64802ab95b63c529e0a96cec8f38680221d6089926d8309796c79994d63b67bfb62f66b4a502f30ed12be41e896e88bc45a160a526fbd5f002e677322f116ec5740d7563cd23ee853c008b84998e38fdf158556e28a532573956e7c00f91f08ca245c295a3d5e003a99ea727f61d12893b435d4c8f2f5cce00c6a3091e2a47f290c07168975c53d7529b71d10faf42d2bac9db8d53669cf59c709c25e9e40b5feaed4c37dde8b84c4961c00712326fb6aaa06e80d766b40b72480f3971def61d1d129676df2478e778d899ed317426ec33e496d1fdd2ec27128f8faee92828e13da72d6aee8330a7988ea1cc8b64ec4d8b20990864c16c52c4be6d00b304b87d97bffdd9c66a740b517223089d9f3f414abedc53c768dab9220b980e6c18d5f20ba8994cc8886d7bdee213442f456d79fce1b1eb48fbf600a666c8ade24d118e6328251cf7b57a6285c650e019850f392b1c29aec5c8fc489a3819d60d5de377d4c11b8ee5625b7c02c5d50d2af3397006f2e2a41a06f039229eef5878ed91f9f6be7e988924dbaeb8455f616275e8698d93fb536e2c839b203aa69bceceddbf9c53f8addba53d50ca0f7a4729a42ac6eb757f1b408ad4a0147546173e62f7621eb18a9e1681510cceb48e0a30ab7a1bf71d56742d5f034f2d725e7ea68a011dbb100fa6eefe4ee093873de366d34f4240ca027a25c5b979c9ac47dd1dcb6ed82c4aee09dcc23cf329a8644f89b5cf00e5683934b1837574e9b39b31b1009f276e15aa040959fdf100838ca3f5ab17e45036668d06044e3a13f3a0a6f68579e50d5b0164f900d7bcfcde78396cf30f0b1dff76dc397ab1a5a44b207eb1eaaf73b945c575029ae2dce20724991e6550155ded6a42672609f2439c5aab4882b2ffaf7da787b71d05d15516bd68c6f1a9d79b675395845f24ef877e72c14b6c6702f7b8775ca1bfabbbcf4019f7bccf07f1c211531dfc66a7a1df79e92a20dd1cbe1b22e1209e7e3ecb9d3c2450fc22a57bfe09bd735f61c361cdac2488ae0adc7885edc0712655daaf535e1de96ccbe7869d531d8bf3db512fbd17c772332a3f8cf1e052ee0202eb99a36a0f8d7219888acbb57090cdaf3b28e1e62e8fc2ec237bdf18592a7afe4d8390dcb5e7fcc31bf4f797e6f5710070902265cc2e8c459b7da1451046abd6c8c5b02c0be2d2f505a65376266563ac7b59ef3b4e2570a6cb0bd94d46ad861317c743ce1de12bfa2295a98cdded4414d87a1580b1e4675bbdf73a22cac4a1d8d456d089e0b60cbfd16158f073bd1dac481db49fa5d8801d0fb0844b4afec1bab4e61fa0f381fa667880a1cd8163953be7b591cc9dfd7f91902370b783ae8a0f3c7cbefa7d229a37c00f523529e159b11d2e240629b64af2d11404773e991207a722c320221ce23baed7cbe40a440c5680814b122cfba9092fe03478f85adcbdeacb76d6cbf2491eafae98327b278e267821a0e1cd06ef90cb0328e246c19d8c63b9332291a89bc9f989effc675c79a870ac024756c6f5a7e32babd69625d61487ae7399490b70dd0fade7d70ad9b0757300a2dde77abaff4f63a0303853589d44efa968e10d36561f04408ad0cc227fc6b2f904cead189a0fcca9b2e6cbde5498652e0b3bc9d8b7921474403718feb5cc750dc70f5a9b1a0ae2c642015b6a1a8ab0572182b4e39e0c869cbdc60c946c3e05a458744077430c5ee031ee02dd8f0a65d7dd8d90dd9b8717f77d202239a5778719423fb2aec7ca86eb07c39de65a34b988d65377a7473e9145f16d79593e96903330bbf3a8024fc15519d9baa0fae2018786f4b1846fca355ff0fccf65cccad1896309a5ccf2056dd542c929850cc91cd655962360fe316557ab3fb378328f77a07d9da24447d3fa2020b382ed2e808ec9529a01273434c64b0b7c35a06a019e4ab51cdc9c0f266ab25b6984338a0ba910d1060283b636c5d7e8a3f969c1ee1c99b54bba7ff3679fbeecbb70349f076480a867cc4ee4cacaea39c80f642533599486d2ffb77b8c9109a9d25fa0b06e58eca764f7d56469eb9547036bbea9d5c3d35b4c1fbc3d39a372c2b7ad184965cad3819c8928f1588d00949949c0c4c93d30ac7f6665247c0108bd89dff3aafe780ac66febfacc8c6a3cc387d09da6de700487a80e2c8d56df94d7ebd3e1d9e06411a6c5f7eb6da41c6f52997b5ad47ba985261103fdf12eb4a2828b248f652ef00b6abccab2eb161b878b9dbc0aa911405b6f67adda83c16187748d7b524ffe6381f489f432d592e6171bd9ccb2cd52f977143f57fbf2ab0b823d449ae55f02440972334344cda01837b93afa4f46a2fdefe27e92764cf9596780846de2e3b1ea83e62ee43b1c05aee675e25363504addfaa68e7c53ed685413f5ba951f120d0a646e474872c81e5a887464c19f8460ae814ffff24cb51dd2dca28d597ab2ea60949f8dbbe67f263e722fdb51bce4e328a19f5ff1218e1f63b8da6d40dbd5490964499b2522ea323310634893ead661407966207a66ab13adfcf1a725ed14339c46011c0e0401f2386b47cd9f902fdf84bc85e74d3ae7cc544e4d65670a554a537712c6ee9f75191631d2a4c4da06fc38423b1d5b828d7201235b2974164f52aa16bee70ee509250752f4fdd6b9f8d021943df8320682a6f80ff0d67ab7a4ceea807bd5b3b7b6380b0c7f0caa67b0208ba71317f0355a3b755af0e2c007186389438615df80b7b25104a733fc90625b62682198733c0f1625dfaa08cf81e3df043094b7b5a098b3b36f803b5b0f10a057bf814ae3579932c0a5f208985bab3d817f975283b8838ae5cb709be72b58df7425e059fdbf4e0ee51b3da01fe0b44963c1196baee5ec5909ad80d9d1660f3edd90374952a0bf8b3bece2c2f944593f4de7de5e05ded096b8f4f05d65dfc2e806f78220d84b3db564fb12f4e5e8f5eab316591f004e9374cce8e787263bc3827affe6793c130b8621d3bbb2a86fd87f070ea21718281ee7aec4bb3bb71af4bf5721cecd139c4be8c9df4ec8dfb09a5cf1d86a25d39faa9f064a997c214f334e4410917fc3b4d67ada8d87a38c0f86b02bf653dddaeb5b75b300f8bcfd792858bef8ab23e063421939c59212964c9ed5dd56e215db58cef53d31a966bb8ce4ed56287fecb3a85ba435e0b41b20ba1164b9c9f2c49fa0f7b17a89e0ec47eefe992d63ee29c8c0a1ece2664fee8edadd43636a54c48519b4fcf55b0d9103602b92441a5f85cf8c5e406d0f5815f8f37309934bd78fbc2acf0a03b051b4528db4f7c09de7d0aabafca3736b8259c818ca338ca6754e0747717c2794d664a1cacc1e9c52764a308e6df73d975638630b74cce6c49b1bac16454e96852c4f9d8ed118e86d2f1c8dc33bccd4a07be128db5e80f5684ddcc1158e744411acde590f902f0987cfb750bb5bfeed53bff076868986b566d7701f48ddfcacbd325c8d930bcef26713bf60585d5c991e2a6cc33ccbc27f7ddfba18f998497c2eb378cc8f2cc07a1b4f141c5e0fb6f52e18242e505bcf6dd20e33a469d056a0b4fd5e72d0da9d0bcce1e2f9e9dc7d1c7b6cb0f3604287eca00", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x90, 0x0, 0x0, {0xf7ffffffffffffff, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3ebd, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, r7, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r6, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x2, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x40500, 0x3)
r8 = syz_open_procfs(0x0, &(0x7f0000000100)='map_files\x00')
getdents(r8, &(0x7f0000001fc0)=""/184, 0xb8)

0s ago: executing program 1 (id=1432):
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c)
syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0x9)

kernel console output (not intermixed with test programs):

MU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  297.737106][ T8177] Call Trace:
[  297.737179][ T8177]  <TASK>
[  297.737187][ T8177]  dump_stack_lvl+0x16c/0x1f0
[  297.737236][ T8177]  should_fail_ex+0x512/0x640
[  297.737272][ T8177]  ? fs_reclaim_acquire+0xae/0x150
[  297.737298][ T8177]  should_failslab+0xc2/0x120
[  297.737322][ T8177]  __kmalloc_noprof+0xdd/0x880
[  297.737350][ T8177]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  297.737378][ T8177]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  297.737396][ T8177]  tomoyo_realpath_from_path+0xc2/0x6e0
[  297.737419][ T8177]  ? tomoyo_profile+0x47/0x60
[  297.737444][ T8177]  tomoyo_path2_perm+0x2a1/0x710
[  297.737457][ T8177]  ? tomoyo_path2_perm+0x293/0x710
[  297.737475][ T8177]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[  297.737522][ T8177]  ? rcu_is_watching+0x12/0xc0
[  297.737548][ T8177]  tomoyo_path_rename+0xfc/0x1a0
[  297.737570][ T8177]  ? __pfx_tomoyo_path_rename+0x10/0x10
[  297.737596][ T8177]  ? _raw_spin_unlock+0x28/0x50
[  297.737619][ T8177]  security_path_rename+0x18e/0x3c0
[  297.737640][ T8177]  do_renameat2+0x73d/0xc20
[  297.737671][ T8177]  ? __pfx_do_renameat2+0x10/0x10
[  297.737695][ T8177]  ? find_held_lock+0x2b/0x80
[  297.737713][ T8177]  ? __might_fault+0xe3/0x190
[  297.737731][ T8177]  ? __might_fault+0x13b/0x190
[  297.737761][ T8177]  ? getname_flags.part.0+0x1c5/0x550
[  297.737792][ T8177]  __ia32_sys_rename+0x7c/0xa0
[  297.737815][ T8177]  __do_fast_syscall_32+0x7c/0x300
[  297.737840][ T8177]  do_fast_syscall_32+0x32/0x80
[  297.737862][ T8177]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  297.737883][ T8177] RIP: 0023:0xf7f72579
[  297.737898][ T8177] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  297.737913][ T8177] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000026
[  297.737931][ T8177] RAX: ffffffffffffffda RBX: 0000000080000440 RCX: 0000000080000100
[  297.737942][ T8177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  297.737952][ T8177] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  297.737963][ T8177] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  297.737973][ T8177] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  297.738005][ T8177]  </TASK>
[  297.738013][ T8177] ERROR: Out of memory at tomoyo_realpath_from_path.
[  298.126685][ T8190] netlink: 'syz.3.535': attribute type 1 has an invalid length.
[  298.439321][ T5352] udevd[5352]: worker [5951] terminated by signal 33 (Unknown signal 33)
[  298.447404][ T5352] udevd[5352]: worker [5951] failed while handling '/devices/virtual/block/loop0'
[  298.783025][ T8202] SQUASHFS error: Failed to read block 0x0: -5
[  298.785285][ T8202] unable to read squashfs_super_block
[  298.939811][ T8204] netlink: 4 bytes leftover after parsing attributes in process `syz.1.541'.
[  298.946398][ T8204] team0: No ports can be present during mode change
[  298.956651][ T8204] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  301.892985][ T8235] fuse: Unknown parameter 'uÍÃE×Ý–!Tuãð„#RÙã~Wj°r‡'êÏOeK�aWô‡@œóñK'
[  302.531605][ T8248] netlink: 'syz.3.551': attribute type 1 has an invalid length.
[  304.121079][ T8260] SQUASHFS error: Failed to read block 0x0: -5
[  304.138616][ T8260] unable to read squashfs_super_block
[  305.756939][ T8279] binder: BINDER_SET_CONTEXT_MGR already set
[  305.759006][ T8279] binder: 8278:8279 ioctl 4018620d 80004a80 returned -16
[  306.735085][ T8296] Mount JFS Failure: -22
[  306.737133][ T8296] jfs_mount failed w/return code = -22
[  307.689628][ T8298] SQUASHFS error: Failed to read block 0x0: -5
[  307.692720][ T8298] unable to read squashfs_super_block
[  307.831048][ T8302] netlink: 16 bytes leftover after parsing attributes in process `syz.3.567'.
[  307.837055][ T8302] team0: No ports can be present during mode change
[  307.845888][ T8302] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  307.966365][ T8305] fuse: Bad value for 'group_id'
[  307.968764][ T8305] fuse: Bad value for 'group_id'
[  309.142936][ T8318] netlink: 16 bytes leftover after parsing attributes in process `syz.2.570'.
[  309.598478][ T8322] Zero length message leads to an empty skb
[  309.616876][   T40] audit: type=1326 audit(1763660814.668:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.627716][   T40] audit: type=1326 audit(1763660814.668:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.641786][   T40] audit: type=1326 audit(1763660814.678:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.651035][   T40] audit: type=1326 audit(1763660814.678:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=254 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.671690][   T40] audit: type=1326 audit(1763660814.678:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.682421][   T40] audit: type=1326 audit(1763660814.678:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.711290][   T40] audit: type=1326 audit(1763660814.678:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.721822][   T40] audit: type=1326 audit(1763660814.678:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=255 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.742646][   T40] audit: type=1326 audit(1763660814.678:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.754517][   T40] audit: type=1326 audit(1763660814.678:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8323 comm="syz.0.575" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  309.871835][ T8330] netlink: 16 bytes leftover after parsing attributes in process `syz.2.577'.
[  309.878612][ T8330] team0: No ports can be present during mode change
[  309.891283][ T8330] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  310.563159][ T8341] fuse: Bad value for 'group_id'
[  310.565226][ T8341] fuse: Bad value for 'group_id'
[  310.758263][ T8342] netlink: 'syz.0.576': attribute type 1 has an invalid length.
[  311.419818][ T8356] netlink: 16 bytes leftover after parsing attributes in process `syz.0.586'.
[  311.427799][ T8356] team0: No ports can be present during mode change
[  311.435314][ T8356] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  311.649827][ T8364] netlink: 16 bytes leftover after parsing attributes in process `syz.2.585'.
[  311.679210][ T8360] SQUASHFS error: Failed to read block 0x0: -5
[  311.682965][ T8360] unable to read squashfs_super_block
[  311.729014][ T8361] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.732975][ T8361] bridge0: port 1(
) entered disabled state
[  311.746480][ T8361] tipc: Resetting bearer <eth:team0>
[  311.877486][ T8361] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  311.884164][ T8361] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  312.268972][ T8258] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.274072][ T8258] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.277910][ T8258] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.282856][ T8258] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.482623][ T8371] fuse: Bad value for 'group_id'
[  312.484849][ T8371] fuse: Bad value for 'group_id'
[  313.827517][ T8394] netlink: 'syz.1.595': attribute type 1 has an invalid length.
[  314.282452][ T8406] SQUASHFS error: Failed to read block 0x0: -5
[  314.284991][ T8406] unable to read squashfs_super_block
[  315.091354][ T8417] netlink: 'syz.0.603': attribute type 1 has an invalid length.
[  315.097776][ T8417] netlink: 'syz.0.603': attribute type 2 has an invalid length.
[  315.101727][ T8417] netlink: 'syz.0.603': attribute type 1 has an invalid length.
[  316.082705][ T8434] tipc: Resetting bearer <eth:team0>
[  316.097361][ T8434] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  316.135736][ T8434] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  317.348308][ T8453] SQUASHFS error: Failed to read block 0x0: -5
[  317.351154][ T8453] unable to read squashfs_super_block
[  317.991811][ T8464] 
: left allmulticast mode
[  317.995094][ T8464] 
: left promiscuous mode
[  317.997106][ T8464] bridge0: port 1(
) entered disabled state
[  318.006844][ T8464] bridge_slave_1: left allmulticast mode
[  318.009284][ T8464] bridge_slave_1: left promiscuous mode
[  318.011942][ T8464] bridge0: port 2(bridge_slave_1) entered disabled state
[  318.021367][ T8464] bond0: (slave bond_slave_0): Releasing backup interface
[  318.025482][ T8464] bond_slave_0: left promiscuous mode
[  318.027849][ T8464] bond_slave_0: left allmulticast mode
[  318.033984][ T8464] bond0: (slave bond_slave_1): Releasing backup interface
[  318.038612][ T8464] bond_slave_1: left promiscuous mode
[  318.041531][ T8464] bond_slave_1: left allmulticast mode
[  318.046751][ T8464] team_slave_0: left promiscuous mode
[  318.049908][ T8464] team_slave_0: left allmulticast mode
[  318.072453][ T8464] team0: Port device team_slave_0 removed
[  318.076933][ T8464] team_slave_1: left promiscuous mode
[  318.079614][ T8464] team_slave_1: left allmulticast mode
[  318.085377][ T8464] team0: Port device team_slave_1 removed
[  318.088753][ T8464] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  318.093022][ T8464] batman_adv: batadv0: Removing interface: batadv_slave_0
[  318.097929][ T8464] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  318.100759][ T8464] batman_adv: batadv0: Removing interface: batadv_slave_1
[  318.106198][ T8464] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  318.137215][   T13] tipc: Resetting bearer <eth:team0>
[  318.140276][ T8470] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  319.754033][ T8502] tipc: Resetting bearer <eth:team0>
[  319.764387][ T8502] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  319.791355][ T8502] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  320.413982][ T8510] SQUASHFS error: Failed to read block 0x0: -5
[  320.417263][ T8510] unable to read squashfs_super_block
[  321.496585][ T8537] ubi31: attaching mtd0
[  321.509418][ T8537] ubi31: scanning is finished
[  321.513034][ T8537] ubi31: empty MTD device detected
[  321.741341][ T8540] fuse: Unknown parameter '0x0000000000000007'
[  322.143650][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  322.147619][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  322.210811][ T8537] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[  323.099332][ T8557] Mount JFS Failure: -22
[  323.100790][ T8557] jfs_mount failed w/return code = -22
[  325.713682][ T8593] netlink: 8 bytes leftover after parsing attributes in process `syz.0.654'.
[  325.828405][ T8598] Mount JFS Failure: -22
[  325.830223][ T8598] jfs_mount failed w/return code = -22
[  326.904467][ T8606] SQUASHFS error: Failed to read block 0x0: -5
[  326.906680][ T8606] unable to read squashfs_super_block
[  328.016739][ T8621] netlink: 8 bytes leftover after parsing attributes in process `syz.1.662'.
[  329.063492][ T8645] fuse: Unknown parameter 'grou00000000000000000000'
[  329.344473][ T8648] Mount JFS Failure: -22
[  329.346384][ T8648] jfs_mount failed w/return code = -22
[  329.814002][ T8642] SQUASHFS error: Failed to read block 0x0: -5
[  329.817091][ T8642] unable to read squashfs_super_block
[  329.948435][ T8655] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  329.951404][ T8655] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  329.955950][ T8655] vhci_hcd vhci_hcd.0: Device attached
[  330.009824][ T8656] vhci_hcd: connection closed
[  330.010214][ T8258] vhci_hcd: stop threads
[  330.014284][ T8258] vhci_hcd: release socket
[  330.016383][ T8258] vhci_hcd: disconnect device
[  330.944225][ T8685] fuse: Unknown parameter 'grou00000000000000000000'
[  331.269674][ T8686] netlink: 'syz.3.681': attribute type 1 has an invalid length.
[  331.365447][ T8688] Mount JFS Failure: -22
[  331.367689][ T8688] jfs_mount failed w/return code = -22
[  331.878708][ T8692] binder: BINDER_SET_CONTEXT_MGR already set
[  331.881289][ T8692] binder: 8691:8692 ioctl 4018620d 80004a80 returned -16
[  332.450251][ T8690] SQUASHFS error: Failed to read block 0x0: -5
[  332.453255][ T8690] unable to read squashfs_super_block
[  332.761307][   T40] kauditd_printk_skb: 38 callbacks suppressed
[  332.761325][   T40] audit: type=1326 audit(1763660837.808:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8705 comm="syz.1.689" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x0
[  333.209823][ T8719] fuse: Unknown parameter 'grou00000000000000000000'
[  334.125363][ T8732] Mount JFS Failure: -22
[  334.127568][ T8732] jfs_mount failed w/return code = -22
[  334.518874][ T8736] netlink: 'syz.1.696': attribute type 1 has an invalid length.
[  334.888764][ T8741] SQUASHFS error: Failed to read block 0x0: -5
[  334.891662][ T8741] unable to read squashfs_super_block
[  334.963897][ T8745] netlink: 16 bytes leftover after parsing attributes in process `syz.2.701'.
[  335.241573][ T8753] fuse: Unknown parameter 'group_i00000000000000000000'
[  335.976959][ T8756] netlink: 12 bytes leftover after parsing attributes in process `syz.0.705'.
[  335.981418][ T8756] netlink: 12 bytes leftover after parsing attributes in process `syz.0.705'.
[  336.178964][ T8768] 
: left allmulticast mode
[  336.181291][ T8768] 
: left promiscuous mode
[  336.183953][ T8768] bridge0: port 1(
) entered disabled state
[  336.190166][ T8768] bridge_slave_1: left allmulticast mode
[  336.192712][ T8768] bridge_slave_1: left promiscuous mode
[  336.196259][ T8768] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.206374][ T8768] bond0: (slave bond_slave_0): Releasing backup interface
[  336.209559][ T8768] bond_slave_0: left promiscuous mode
[  336.211804][ T8768] bond_slave_0: left allmulticast mode
[  336.219058][ T8768] bond0: (slave bond_slave_1): Releasing backup interface
[  336.224028][ T8768] bond_slave_1: left promiscuous mode
[  336.227867][ T8768] bond_slave_1: left allmulticast mode
[  336.234757][ T8768] team_slave_0: left promiscuous mode
[  336.237294][ T8768] team_slave_0: left allmulticast mode
[  336.255445][ T8768] team0: Port device team_slave_0 removed
[  336.258404][ T8768] team_slave_1: left promiscuous mode
[  336.260934][ T8768] team_slave_1: left allmulticast mode
[  336.265684][ T8768] team0: Port device team_slave_1 removed
[  336.268343][ T8768] batman_adv: batadv0: Removing interface: batadv_slave_0
[  336.274327][ T8768] batman_adv: batadv0: Removing interface: batadv_slave_1
[  336.278933][ T8768] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  336.297661][ T8768] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  336.438755][ T8766] Mount JFS Failure: -22
[  336.440800][ T8766] jfs_mount failed w/return code = -22
[  337.082327][  T842] usb 7-1: new low-speed USB device number 7 using dummy_hcd
[  337.237219][ T8788] SQUASHFS error: Failed to read block 0x0: -5
[  337.239505][ T8788] unable to read squashfs_super_block
[  337.244809][  T842] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  337.248836][  T842] usb 7-1: config 0 has no interface number 0
[  337.251452][  T842] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  337.257108][  T842] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  337.264449][  T842] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  337.268707][  T842] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.274738][  T842] usb 7-1: config 0 descriptor??
[  337.281944][ T8785] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  337.294197][  T842] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  337.351826][ T8791] fuse: Unknown parameter 'group_i00000000000000000000'
[  337.626866][  T842] usb 7-1: USB disconnect, device number 7
[  337.626960][    C1] iowarrior 7-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  338.253789][ T8801] tipc: Resetting bearer <eth:team0>
[  338.264471][ T8801] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  338.290082][ T8801] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  338.696626][ T8815] Mount JFS Failure: -22
[  338.698576][ T8815] jfs_mount failed w/return code = -22
[  338.958928][ T8817] netlink: 16 bytes leftover after parsing attributes in process `syz.1.722'.
[  339.389543][ T8826] fuse: Unknown parameter 'group_i00000000000000000000'
[  340.386562][ T8839] tipc: Resetting bearer <eth:team0>
[  340.395845][ T8839] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  340.416686][ T8839] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  340.949428][ T8856] Mount JFS Failure: -22
[  340.951454][ T8856] jfs_mount failed w/return code = -22
[  342.288823][ T8863] fuse: Unknown parameter 'group_id00000000000000000000'
[  342.408457][ T8864] SQUASHFS error: Failed to read block 0x0: -5
[  342.411701][ T8864] unable to read squashfs_super_block
[  343.064925][ T8866] 
: left allmulticast mode
[  343.067372][ T8866] 
: left promiscuous mode
[  343.069992][ T8866] bridge0: port 1(
) entered disabled state
[  343.075433][ T8866] bridge_slave_1: left allmulticast mode
[  343.077873][ T8866] bridge_slave_1: left promiscuous mode
[  343.080647][ T8866] bridge0: port 2(bridge_slave_1) entered disabled state
[  343.090502][ T8866] bond0: (slave bond_slave_0): Releasing backup interface
[  343.095800][ T8866] bond_slave_0: left promiscuous mode
[  343.097629][ T8866] bond_slave_0: left allmulticast mode
[  343.101662][ T8866] bond0: (slave bond_slave_1): Releasing backup interface
[  343.101728][ T8854] netlink: 16 bytes leftover after parsing attributes in process `syz.2.735'.
[  343.111491][ T8866] bond_slave_1: left promiscuous mode
[  343.115413][ T8866] bond_slave_1: left allmulticast mode
[  343.119983][ T8866] team_slave_0: left promiscuous mode
[  343.125357][ T8866] team_slave_0: left allmulticast mode
[  343.131225][ T8866] team0: Port device team_slave_0 removed
[  343.136305][ T8866] team_slave_1: left promiscuous mode
[  343.139146][ T8866] team_slave_1: left allmulticast mode
[  343.146275][ T8866] team0: Port device team_slave_1 removed
[  343.149620][ T8866] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  343.153453][ T8866] batman_adv: batadv0: Removing interface: batadv_slave_0
[  343.160659][ T8866] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  343.164349][ T8866] batman_adv: batadv0: Removing interface: batadv_slave_1
[  343.169499][ T8866] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  343.190855][   T13] tipc: Resetting bearer <eth:team0>
[  343.204369][ T8866] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  343.526642][ T8877] syz.1.741 uses obsolete (PF_INET,SOCK_PACKET)
[  343.710711][ T8877] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  344.175318][ T8886] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  344.859374][ T8894] Mount JFS Failure: -22
[  344.861054][ T8894] jfs_mount failed w/return code = -22
[  345.474235][ T8898] tipc: Resetting bearer <eth:team0>
[  345.485947][ T8898] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  345.511794][ T8898] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  345.957085][ T8907] SQUASHFS error: Failed to read block 0x0: -5
[  345.960765][ T8907] unable to read squashfs_super_block
[  346.143185][ T8908] netlink: 16 bytes leftover after parsing attributes in process `syz.1.750'.
[  347.301817][ T8917] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(12)
[  347.304821][ T8917] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  347.308774][ T8917] vhci_hcd vhci_hcd.0: Device attached
[  347.541531][ T8918] vhci_hcd: connection closed
[  347.544020][ T1151] vhci_hcd: stop threads
[  347.548089][ T1151] vhci_hcd: release socket
[  347.551217][ T1151] vhci_hcd: disconnect device
[  347.593364][ T8368] vhci_hcd: vhci_device speed not set
[  349.151567][ T8936] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  349.165379][ T8936] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  349.614729][ T8946] Mount JFS Failure: -22
[  349.616204][ T8946] jfs_mount failed w/return code = -22
[  351.207643][ T8953] netlink: 16 bytes leftover after parsing attributes in process `syz.2.761'.
[  354.015657][ T8973] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  354.044964][ T8973] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  354.052522][ T8974] fuse: Unknown parameter 'group_id00000000000000000000'
[  355.066112][ T8981] Mount JFS Failure: -22
[  355.068183][ T8981] jfs_mount failed w/return code = -22
[  356.003721][ T8993] netlink: 16 bytes leftover after parsing attributes in process `syz.3.772'.
[  357.593333][ T9004] tipc: Resetting bearer <eth:team0>
[  357.605990][ T9004] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  357.629306][ T9004] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  357.860923][ T9007] netlink: 236 bytes leftover after parsing attributes in process `syz.1.778'.
[  357.983580][ T9012] fuse: Bad value for 'user_id'
[  357.985627][ T9012] fuse: Bad value for 'user_id'
[  358.654374][ T9023] Mount JFS Failure: -22
[  358.656610][ T9023] jfs_mount failed w/return code = -22
[  359.386072][ T9034] tipc: Resetting bearer <eth:team0>
[  359.395436][ T9034] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  359.420757][ T9034] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  359.494507][ T9031] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[  359.510539][ T9031] gtp0: entered promiscuous mode
[  359.519398][ T9031] netlink: 4 bytes leftover after parsing attributes in process `syz.0.785'.
[  359.551164][ T9032] /dev/nullb0: Can't open blockdev
[  359.555780][ T9038] fuse: Bad value for 'fd'
[  359.821196][ T9041] netlink: 16 bytes leftover after parsing attributes in process `syz.1.783'.
[  361.487207][ T9065] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.793'.
[  363.237129][ T9090] fuse: Bad value for 'fd'
[  363.664847][ T9098] netlink: 12 bytes leftover after parsing attributes in process `syz.1.803'.
[  366.841785][ T9130] FAULT_INJECTION: forcing a failure.
[  366.841785][ T9130] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  366.848103][ T9130] CPU: 0 UID: 0 PID: 9130 Comm: syz.2.809 Not tainted syzkaller #0 PREEMPT(full) 
[  366.848143][ T9130] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.848154][ T9130] Call Trace:
[  366.848160][ T9130]  <TASK>
[  366.848167][ T9130]  dump_stack_lvl+0x16c/0x1f0
[  366.848193][ T9130]  should_fail_ex+0x512/0x640
[  366.848221][ T9130]  _copy_from_user+0x2e/0xd0
[  366.848247][ T9130]  __tun_chr_ioctl+0x1de/0x4880
[  366.848265][ T9130]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  366.848295][ T9130]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  366.848315][ T9130]  ? hook_file_ioctl_common+0x145/0x410
[  366.848338][ T9130]  ? __fget_files+0x20e/0x3c0
[  366.848360][ T9130]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  366.848376][ T9130]  __ia32_compat_sys_ioctl+0x242/0x370
[  366.848404][ T9130]  __do_fast_syscall_32+0x7c/0x300
[  366.848429][ T9130]  do_fast_syscall_32+0x32/0x80
[  366.848450][ T9130]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  366.848471][ T9130] RIP: 0023:0xf7f77579
[  366.848484][ T9130] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  366.848501][ T9130] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  366.848518][ T9130] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400454ca
[  366.848530][ T9130] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  366.848540][ T9130] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  366.848550][ T9130] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  366.848560][ T9130] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  366.848580][ T9130]  </TASK>
[  367.317094][ T9135] tipc: Resetting bearer <eth:team0>
[  367.326924][ T9135] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  367.600290][ T9135] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  367.782360][ T9140] batman_adv: batadv0: Adding interface: macvlan2
[  367.789123][ T9140] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  367.800001][ T9140] batman_adv: batadv0: Not using interface macvlan2 (retrying later): interface not active
[  367.931891][ T9148] Mount JFS Failure: -22
[  367.934327][ T9148] jfs_mount failed w/return code = -22
[  368.645672][ T9156] tipc: Resetting bearer <eth:team0>
[  368.660125][ T9156] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  368.808544][ T9156] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  368.985319][ T9163] fuse: Bad value for 'fd'
[  369.946376][ T5950] Bluetooth: unknown link type 128
[  371.984227][ T5950] Bluetooth: hci0: command 0x0406 tx timeout
[  372.425520][ T9191] Mount JFS Failure: -22
[  372.428629][ T9191] jfs_mount failed w/return code = -22
[  375.232785][ T9229] fuse: Bad value for 'fd'
[  375.860570][ T9231] SQUASHFS error: Failed to read block 0x0: -5
[  375.863777][ T9231] unable to read squashfs_super_block
[  376.401677][ T9237] Mount JFS Failure: -22
[  376.405049][ T9237] jfs_mount failed w/return code = -22
[  377.390017][ T9244] netlink: 'syz.0.835': attribute type 12 has an invalid length.
[  377.713913][ T9245] SQUASHFS error: Failed to read block 0x0: -5
[  377.717381][ T9245] unable to read squashfs_super_block
[  379.735582][ T9262] FAULT_INJECTION: forcing a failure.
[  379.735582][ T9262] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.741140][ T9262] CPU: 3 UID: 0 PID: 9262 Comm: syz.0.841 Not tainted syzkaller #0 PREEMPT(full) 
[  379.741165][ T9262] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  379.741175][ T9262] Call Trace:
[  379.741182][ T9262]  <TASK>
[  379.741196][ T9262]  dump_stack_lvl+0x16c/0x1f0
[  379.741225][ T9262]  should_fail_ex+0x512/0x640
[  379.741254][ T9262]  _copy_from_user+0x2e/0xd0
[  379.741282][ T9262]  get_compat_msghdr+0xa7/0x170
[  379.741300][ T9262]  ? __pfx_get_compat_msghdr+0x10/0x10
[  379.741326][ T9262]  ___sys_sendmsg+0x1ae/0x1d0
[  379.741349][ T9262]  ? __pfx____sys_sendmsg+0x10/0x10
[  379.741377][ T9262]  ? find_held_lock+0x2b/0x80
[  379.741410][ T9262]  __sys_sendmsg+0x16d/0x220
[  379.741429][ T9262]  ? __pfx___sys_sendmsg+0x10/0x10
[  379.741457][ T9262]  ? rcu_is_watching+0x12/0xc0
[  379.741480][ T9262]  __do_fast_syscall_32+0x7c/0x300
[  379.741507][ T9262]  do_fast_syscall_32+0x32/0x80
[  379.741529][ T9262]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  379.741549][ T9262] RIP: 0023:0xf7fe2579
[  379.741563][ T9262] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  379.741580][ T9262] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  379.741599][ T9262] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800001c0
[  379.741609][ T9262] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  379.741618][ T9262] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  379.741627][ T9262] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  379.741636][ T9262] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  379.741658][ T9262]  </TASK>
[  379.944130][ T9269] fuse: Invalid rootmode
[  380.120503][ T9273] Mount JFS Failure: -22
[  380.122773][ T9273] jfs_mount failed w/return code = -22
[  381.349897][ T9283] netlink: 16 bytes leftover after parsing attributes in process `syz.0.845'.
[  381.550693][ T9285] tipc: Resetting bearer <eth:team0>
[  381.561210][ T9285] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  381.701134][ T9287] tipc: Resetting bearer <eth:team0>
[  381.712030][ T9287] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  381.742223][ T9285] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  381.774042][ T9287] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  382.071305][ T9297] SQUASHFS error: Failed to read block 0x0: -5
[  382.079615][ T9297] unable to read squashfs_super_block
[  383.538201][ T9307] fuse: Bad value for 'fd'
[  383.578354][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  383.581660][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  383.982450][ T9313] fuse: Invalid rootmode
[  384.152276][ T9314] Mount JFS Failure: -22
[  384.155985][ T9314] jfs_mount failed w/return code = -22
[  385.203211][ T9324] Mount JFS Failure: -22
[  385.205369][ T9324] jfs_mount failed w/return code = -22
[  385.317650][ T9328] fuse: Bad value for 'user_id'
[  385.320151][ T9328] fuse: Bad value for 'user_id'
[  385.539828][ T6030] usb 5-1: new low-speed USB device number 6 using dummy_hcd
[  385.847691][ T6030] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  385.850896][ T6030] usb 5-1: config 0 has no interface number 0
[  385.855538][ T6030] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  385.863594][ T6030] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  385.871160][ T6030] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  385.876240][ T6030] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.887970][ T6030] usb 5-1: config 0 descriptor??
[  385.891425][ T9319] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  385.905061][ T6030] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  386.202293][ T6030] usb 5-1: USB disconnect, device number 6
[  386.206017][    C0] iowarrior 5-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  386.543458][  T842] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[  386.761119][  T842] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  386.765340][  T842] usb 6-1: config 0 has no interface number 0
[  386.768369][  T842] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  386.774450][  T842] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  386.779335][  T842] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  386.792294][  T842] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  386.797667][  T842] usb 6-1: config 0 descriptor??
[  386.802904][ T9333] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  386.811207][  T842] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  386.962054][ T9341] fuse: Unknown parameter 'group_id00000000000000000000'
[  387.129046][ T9342] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  388.330004][ T9352] SQUASHFS error: Failed to read block 0x0: -5
[  388.334165][ T9352] unable to read squashfs_super_block
[  388.397748][ T9355] fuse: Invalid rootmode
[  389.181342][ T9359] Mount JFS Failure: -22
[  389.183509][ T9359] jfs_mount failed w/return code = -22
[  390.922488][   T55] usb 5-1: new low-speed USB device number 7 using dummy_hcd
[  391.104202][   T55] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  391.107614][   T55] usb 5-1: config 0 has no interface number 0
[  391.110134][   T55] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  391.115422][   T55] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  391.122618][   T55] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  391.126346][   T55] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  391.131855][   T55] usb 5-1: config 0 descriptor??
[  391.137709][ T9372] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  391.146596][   T55] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1
[  391.380888][ T9333] Set syz1 is full, maxelem 65536 reached
[  391.455549][  T842] usb 5-1: USB disconnect, device number 7
[  391.587120][ T5369] usb 6-1: USB disconnect, device number 7
[  391.587198][    C0] iowarrior 6-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  393.004066][ T9389] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  394.634592][ T9408] Mount JFS Failure: -22
[  394.636879][ T9408] jfs_mount failed w/return code = -22
[  394.806822][ T9409] fuse: Bad value for 'rootmode'
[  395.873433][ T9411] netlink: 16 bytes leftover after parsing attributes in process `syz.2.879'.
[  395.944701][ T9414] SQUASHFS error: Failed to read block 0x0: -5
[  395.949894][ T9414] unable to read squashfs_super_block
[  398.159391][ T9423] netlink: 8 bytes leftover after parsing attributes in process `syz.2.883'.
[  398.206458][ T9428] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma?
[  399.759222][ T9455] Mount JFS Failure: -22
[  399.761285][ T9455] jfs_mount failed w/return code = -22
[  400.632318][ T9459] netlink: 16 bytes leftover after parsing attributes in process `syz.2.892'.
[  401.035212][ T9465] ubi31: attaching mtd0
[  401.039600][ T9465] ubi31: scanning is finished
[  401.045121][ T9464] SQUASHFS error: Failed to read block 0x0: -5
[  401.048497][ T9464] unable to read squashfs_super_block
[  401.158116][ T9466] fuse: Unknown parameter '0x0000000000000007'
[  401.412467][    C1] vkms_vblank_simulate: vblank timer overrun
[  401.475305][ T9465] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  401.479827][ T9465] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  401.483669][ T9465] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  401.488069][ T9465] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  401.491255][ T9465] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  401.494986][ T9465] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  401.505088][ T9465] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 677622313
[  401.615059][ T9465] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  401.626151][ T9471] ubi31: background thread "ubi_bgt31d" started, PID 9471
[  401.834944][ T9473] tipc: Resetting bearer <eth:team0>
[  402.175957][  T190] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  402.181185][  T190] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  402.186441][  T190] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  402.193274][  T190] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  402.434316][ T9483] fuse: Bad value for 'group_id'
[  402.436100][ T9483] fuse: Bad value for 'group_id'
[  402.821273][ T9485] SQUASHFS error: Failed to read block 0x0: -5
[  402.825553][ T9485] unable to read squashfs_super_block
[  404.453747][ T9503] Mount JFS Failure: -22
[  404.455624][ T9503] jfs_mount failed w/return code = -22
[  405.534593][ T9506] netlink: 16 bytes leftover after parsing attributes in process `syz.1.903'.
[  406.973190][ T9533] bridge1: entered promiscuous mode
[  406.973249][ T9533] bridge1: entered allmulticast mode
[  406.975038][ T9533] team0: Port device bridge1 added
[  407.020664][ T9536] tipc: Resetting bearer <eth:team0>
[  407.033613][ T9536] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  407.043299][ T9534] SQUASHFS error: Failed to read block 0x0: -5
[  407.045874][ T9534] unable to read squashfs_super_block
[  407.058254][ T9536] team0: No ports can be present during mode change
[  407.066785][ T9536] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  407.475870][ T9544] Mount JFS Failure: -22
[  407.477820][ T9544] jfs_mount failed w/return code = -22
[  408.944088][ T9554] netlink: 16 bytes leftover after parsing attributes in process `syz.1.917'.
[  410.731723][    C1] vkms_vblank_simulate: vblank timer overrun
[  411.940665][ T9577] fuse: Unknown parameter 'use00000000000000000000'
[  412.327778][ T9580] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  412.351803][ T9580] team0: No ports can be present during mode change
[  412.385268][ T9580] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  414.471873][ T9592] SQUASHFS error: Failed to read block 0x0: -5
[  414.750677][ T9592] unable to read squashfs_super_block
[  414.898287][ T9598] netlink: 16 bytes leftover after parsing attributes in process `syz.1.927'.
[  415.248905][    C1] vkms_vblank_simulate: vblank timer overrun
[  418.248012][ T9630] Mount JFS Failure: -22
[  418.250061][ T9630] jfs_mount failed w/return code = -22
[  419.529735][ T9641] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  419.544881][ T9641] team0: No ports can be present during mode change
[  419.566448][ T9641] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  422.214281][ T9681] Mount JFS Failure: -22
[  422.216712][ T9681] jfs_mount failed w/return code = -22
[  423.015878][ T9689] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  423.036059][ T9689] team0: No ports can be present during mode change
[  423.050540][ T9689] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  423.227681][ T9698] netlink: 4 bytes leftover after parsing attributes in process `syz.1.952'.
[  423.235087][ T9698] netlink: 4 bytes leftover after parsing attributes in process `syz.1.952'.
[  423.366409][ T9698] process 'syz.1.952' launched '/dev/fd/9' with NULL argv: empty string added
[  423.534295][ T9704] openvswitch: netlink: Missing valid actions attribute.
[  423.538636][ T9704] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  424.190193][ T9690] SQUASHFS error: Failed to read block 0x0: -5
[  424.193150][ T9690] unable to read squashfs_super_block
[  425.002398][ T9731] Driver unsupported XDP return value 0 on prog  (id 171) dev N/A, expect packet loss!
[  425.004444][ T9733] FAULT_INJECTION: forcing a failure.
[  425.004444][ T9733] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  425.028227][ T9733] CPU: 0 UID: 0 PID: 9733 Comm: syz.2.960 Not tainted syzkaller #0 PREEMPT(full) 
[  425.028252][ T9733] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  425.028262][ T9733] Call Trace:
[  425.028267][ T9733]  <TASK>
[  425.028273][ T9733]  dump_stack_lvl+0x16c/0x1f0
[  425.028297][ T9733]  should_fail_ex+0x512/0x640
[  425.028324][ T9733]  _copy_to_user+0x32/0xd0
[  425.028340][ T9733]  simple_read_from_buffer+0xcb/0x170
[  425.028366][ T9733]  proc_fail_nth_read+0x197/0x240
[  425.028383][ T9733]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  425.028401][ T9733]  ? rw_verify_area+0xcf/0x6c0
[  425.028415][ T9733]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  425.028432][ T9733]  vfs_read+0x1e4/0xcf0
[  425.028453][ T9733]  ? __pfx_vfs_read+0x10/0x10
[  425.028473][ T9733]  ? find_held_lock+0x2b/0x80
[  425.028494][ T9733]  ? __fget_files+0x20e/0x3c0
[  425.028516][ T9733]  ksys_read+0x12a/0x250
[  425.028531][ T9733]  ? __pfx_ksys_read+0x10/0x10
[  425.028547][ T9733]  ? fput+0x9b/0xd0
[  425.028565][ T9733]  ? rcu_is_watching+0x12/0xc0
[  425.028585][ T9733]  __do_fast_syscall_32+0x7c/0x300
[  425.028606][ T9733]  do_fast_syscall_32+0x32/0x80
[  425.028625][ T9733]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  425.028643][ T9733] RIP: 0023:0xf7f77579
[  425.028655][ T9733] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  425.028669][ T9733] RSP: 002b:00000000f5466590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  425.028685][ T9733] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5466620
[  425.028694][ T9733] RDX: 000000000000000f RSI: 00000000f7406ff4 RDI: 0000000000000000
[  425.028703][ T9733] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  425.028711][ T9733] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  425.028720][ T9733] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  425.028740][ T9733]  </TASK>
[  425.276134][   T40] audit: type=1326 audit(1763661443.331:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.302289][   T40] audit: type=1326 audit(1763661443.331:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.343146][   T40] audit: type=1326 audit(1763661443.331:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.361663][   T40] audit: type=1326 audit(1763661443.331:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.370123][   T40] audit: type=1326 audit(1763661443.331:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.379789][   T40] audit: type=1326 audit(1763661443.331:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.390588][   T40] audit: type=1326 audit(1763661443.331:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.399279][   T40] audit: type=1326 audit(1763661443.331:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.410880][   T40] audit: type=1326 audit(1763661443.331:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.420392][   T40] audit: type=1326 audit(1763661443.331:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9734 comm="syz.0.961" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  425.563254][ T9751] batadv_slave_1: entered promiscuous mode
[  425.588543][ T9749] SQUASHFS error: Failed to read block 0x0: -5
[  425.593338][ T9749] unable to read squashfs_super_block
[  425.929188][ T9734] batadv_slave_1: left promiscuous mode
[  426.511625][ T9761] netlink: 'syz.3.967': attribute type 1 has an invalid length.
[  426.531327][ T9761] 8021q: adding VLAN 0 to HW filter on device bond1
[  426.599645][ T9761] macvlan2: entered promiscuous mode
[  426.601967][ T9761] macvlan2: entered allmulticast mode
[  426.607562][ T9761] bond1: entered promiscuous mode
[  426.610954][ T9761] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  426.615768][ T9761] team0: Port device macvlan2 added
[  426.629671][ T9763] bond1: (slave ip6gretap1): making interface the new active one
[  426.633536][ T9763] ip6gretap1: entered promiscuous mode
[  426.637348][ T9763] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  426.905714][ T9781] input: syz0 as /devices/virtual/input/input5
[  426.959762][ T9778] SQUASHFS error: Failed to read block 0x0: -5
[  426.962625][ T9778] unable to read squashfs_super_block
[  426.979203][ T9779] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  427.907096][ T9794] fuse: Unknown parameter 'user_id00000000000000000000'
[  429.284921][ T9810] netlink: 'syz.1.978': attribute type 11 has an invalid length.
[  429.288789][ T9810] netlink: 199820 bytes leftover after parsing attributes in process `syz.1.978'.
[  429.438680][ T9812] SQUASHFS error: Failed to read block 0x0: -5
[  429.440493][ T9812] unable to read squashfs_super_block
[  430.592312][   T24] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  430.744409][   T24] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  430.748658][   T24] usb 6-1: config 1 has no interface number 1
[  430.751560][   T24] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  430.758714][   T24] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  430.768477][   T24] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  430.774372][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  430.778323][   T24] usb 6-1: Product: syz
[  430.780305][   T24] usb 6-1: Manufacturer: syz
[  430.784684][   T24] usb 6-1: SerialNumber: syz
[  431.068332][ T9817] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  431.074571][ T9817] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  431.084692][ T5950] Bluetooth: hci1: Malformed LE Event: 0x0d
[  431.333445][   T24] usb 6-1: USB disconnect, device number 8
[  431.914661][ T9829] gtp0: entered promiscuous mode
[  431.916832][ T9829] gtp0: entered allmulticast mode
[  431.999238][ T9834] fuse: Unknown parameter 'user_id00000000000000000000'
[  432.013836][ T9835] fuse: Unknown parameter 'use00000000000000000000'
[  433.133164][ T6031] usb 6-1: new low-speed USB device number 9 using dummy_hcd
[  433.253831][ T9848] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  433.257057][ T9848] syzkaller0: entered promiscuous mode
[  433.259501][ T9848] syzkaller0: entered allmulticast mode
[  433.274836][ T9848] netlink: 44 bytes leftover after parsing attributes in process `syz.2.989'.
[  433.281707][ T9848] tipc: Resetting bearer <eth:syzkaller0>
[  433.287476][ T9847] tipc: Resetting bearer <eth:syzkaller0>
[  433.299567][ T9847] tipc: Disabling bearer <eth:syzkaller0>
[  433.628499][ T9851] 8021q: adding VLAN 0 to HW filter on device bond1
[  433.738629][ T9851] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  433.744943][ T9851] bond1: (slave macvlan2): Enslaving as a backup interface with a down link
[  433.871384][ T6031] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  433.874764][ T6031] usb 6-1: config 0 has no interface number 0
[  433.877051][ T6031] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  433.881155][ T6031] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  433.886909][ T6031] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  433.891524][ T6031] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  433.902882][ T6031] usb 6-1: config 0 descriptor??
[  433.907835][ T9842] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  433.917584][ T6031] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  434.040682][ T9860] SQUASHFS error: Failed to read block 0x0: -5
[  434.044284][ T9860] unable to read squashfs_super_block
[  434.259318][ T9862] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  434.274510][ T9862] netlink: 44 bytes leftover after parsing attributes in process `syz.2.994'.
[  434.296132][ T9862] tipc: Resetting bearer <eth:syzkaller0>
[  434.309485][ T9861] tipc: Disabling bearer <eth:syzkaller0>
[  434.522397][ T5369] usb 6-1: USB disconnect, device number 9
[  434.522461][    C1] iowarrior 6-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  434.574546][ T9867] netlink: 20 bytes leftover after parsing attributes in process `syz.2.996'.
[  434.855010][ T9869] =======================================================
[  434.855010][ T9869] WARNING: The mand mount option has been deprecated and
[  434.855010][ T9869]          and is ignored by this kernel. Remove the mand
[  434.855010][ T9869]          option from the mount to silence this warning.
[  434.855010][ T9869] =======================================================
[  435.316075][ T9872] fuse: Unknown parameter 'user_id00000000000000000000'
[  436.503899][ T9893] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1002'.
[  436.508529][ T9893] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1002'.
[  436.891326][ T9901] tipc: Enabling of bearer <udp:z> rejected, failed to enable media
[  437.294078][ T9910] netlink: 'syz.2.1008': attribute type 1 has an invalid length.
[  437.298087][ T5950] Bluetooth: hci3: unexpected event for opcode 0x0c12
[  437.328848][ T9910] 8021q: adding VLAN 0 to HW filter on device bond2
[  437.375157][ T9910] bond2: (slave veth3): Enslaving as an active interface with a down link
[  437.432271][ T6031] usb 6-1: new low-speed USB device number 10 using dummy_hcd
[  437.446854][ T9918] fuse: Bad value for 'fd'
[  437.680249][ T9921] Mount JFS Failure: -22
[  437.683269][ T9921] jfs_mount failed w/return code = -22
[  438.084008][ T6031] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  438.088066][ T6031] usb 6-1: config 0 has no interface number 0
[  438.090933][ T6031] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  438.095966][ T6031] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  438.103138][ T6031] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  438.109144][ T6031] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  438.115514][ T6031] usb 6-1: config 0 descriptor??
[  438.120439][ T9905] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  438.135624][ T6031] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  438.524306][   T24] usb 6-1: USB disconnect, device number 10
[  438.527943][    C2] iowarrior 6-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  439.267237][  T841] hid_parser_main: 22 callbacks suppressed
[  439.267256][  T841] hid-generic 0000:0003:0001.0006: unknown main item tag 0x0
[  439.274356][  T841] hid-generic 0000:0003:0001.0006: unknown main item tag 0x0
[  439.280850][  T841] hid-generic 0000:0003:0001.0006: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz1
[  439.902298][   T24] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  440.071585][   T24] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  440.089459][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.094905][   T24] usb 5-1: Product: syz
[  440.096677][   T24] usb 5-1: Manufacturer: syz
[  440.099398][   T24] usb 5-1: SerialNumber: syz
[  440.116664][   T24] usb 5-1: config 0 descriptor??
[  440.433089][   T24] usb 5-1: Firmware version (0.0) predates our first public release.
[  440.441234][   T24] usb 5-1: Please update to version 0.2 or newer
[  440.548934][   T24] usb 5-1: USB disconnect, device number 8
[  440.609106][ T9972] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  440.611605][ T9972] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  440.624031][ T9972] vhci_hcd vhci_hcd.0: Device attached
[  440.636837][ T9972] nbd: illegal input index -1495182229
[  440.957786][  T841] usb 42-1: SetAddress Request (2) to port 0
[  440.960943][  T841] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  441.304664][ T9973] vhci_hcd: connection reset by peer
[  441.315430][  T190] vhci_hcd: stop threads
[  441.321646][  T190] vhci_hcd: release socket
[  441.326648][  T190] vhci_hcd: disconnect device
[  441.576242][ T9981] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1025'.
[  441.595390][ T9981] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1025'.
[  441.764883][ T9987] syzkaller0: entered promiscuous mode
[  441.768476][ T9987] syzkaller0: entered allmulticast mode
[  442.500773][T10001] program syz.3.1032 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  442.524115][T10004] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1029'.
[  442.603908][T10008] netlink: 'syz.3.1034': attribute type 1 has an invalid length.
[  442.604961][ T5950] Bluetooth: hci2: unexpected event for opcode 0x0c12
[  442.644367][T10008] 8021q: adding VLAN 0 to HW filter on device bond2
[  442.715872][T10008] bond2: (slave veth3): Enslaving as an active interface with a down link
[  442.741237][T10016] capability: warning: `syz.0.1033' uses 32-bit capabilities (legacy support in use)
[  442.912253][ T5369] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  443.073757][ T5369] usb 6-1: Using ep0 maxpacket: 8
[  443.078811][ T5369] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  443.083132][ T5369] usb 6-1: config 0 has no interface number 0
[  443.085901][ T5369] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  443.093410][ T5369] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  443.099076][ T5369] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  443.106778][ T5369] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  443.115228][ T5369] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  443.121362][ T5369] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.130915][ T5369] usb 6-1: config 0 descriptor??
[  443.151970][ T5369] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  443.419534][ T5369] usb 6-1: USB disconnect, device number 11
[  443.423239][    C3] ldusb 6-1:0.55: usb_submit_urb failed (-19)
[  443.426433][T10013] ldusb 6-1:0.55: Couldn't submit interrupt_out_urb -19
[  443.437389][ T5369] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  443.608246][ T5950] Bluetooth: hci3: unexpected event for opcode 0x2027
[  443.661083][ T5369] kernel write not supported for file /939/net/psched (pid: 5369 comm: kworker/3:3)
[  444.659880][T10040] block nbd0: NBD_DISCONNECT
[  444.762325][T10044] FAULT_INJECTION: forcing a failure.
[  444.762325][T10044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  444.768234][T10044] CPU: 0 UID: 0 PID: 10044 Comm: syz.2.1043 Not tainted syzkaller #0 PREEMPT(full) 
[  444.768259][T10044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  444.768268][T10044] Call Trace:
[  444.768276][T10044]  <TASK>
[  444.768285][T10044]  dump_stack_lvl+0x16c/0x1f0
[  444.768311][T10044]  should_fail_ex+0x512/0x640
[  444.768342][T10044]  _copy_to_user+0x32/0xd0
[  444.768359][T10044]  simple_read_from_buffer+0xcb/0x170
[  444.768388][T10044]  proc_fail_nth_read+0x197/0x240
[  444.768409][T10044]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  444.768429][T10044]  ? rw_verify_area+0xcf/0x6c0
[  444.768443][T10044]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  444.768462][T10044]  vfs_read+0x1e4/0xcf0
[  444.768484][T10044]  ? __pfx_vfs_read+0x10/0x10
[  444.768501][T10044]  ? find_held_lock+0x2b/0x80
[  444.768525][T10044]  ? __fget_files+0x20e/0x3c0
[  444.768540][T10044]  ? rcu_watching_snap_stopped_since+0xc0/0x110
[  444.768567][T10044]  ksys_read+0x12a/0x250
[  444.768585][T10044]  ? __pfx_ksys_read+0x10/0x10
[  444.768605][T10044]  ? rcu_is_watching+0x12/0xc0
[  444.768640][T10044]  __do_fast_syscall_32+0x7c/0x300
[  444.768667][T10044]  do_fast_syscall_32+0x32/0x80
[  444.768689][T10044]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  444.768711][T10044] RIP: 0023:0xf7f77579
[  444.768727][T10044] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  444.768743][T10044] RSP: 002b:00000000f5424590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  444.768760][T10044] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5424620
[  444.768770][T10044] RDX: 000000000000000f RSI: 00000000f7406ff4 RDI: 0000000000000000
[  444.768779][T10044] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  444.768787][T10044] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  444.768797][T10044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  444.768817][T10044]  </TASK>
[  445.028749][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  445.032362][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  445.237411][    C3] vkms_vblank_simulate: vblank timer overrun

«
Æ©¾ÞØ–--ÔcªM쬑¿J±&ì籇@Áñ“™Ï›9}SGKTøÒ©…bÖ½Ûsþ!SV�ɤ&)ä>	8î¦ãÆê9‹#ÁtðEˆI¬h”&qþµ@H¬q32`ån/à‘»7ùÑ�wâzM1¸½r/¦?ÇŸ«&	KmØ.6Ž»çÀ·,®C„:4Ìñâ8/‚WÁgdÓƃ-ÿÏøð?»XeO�­ÂZó'è=d”#­~Ó5¾úæ1°šŠåê¡ÁÁB›Ù¹Ç`­úR*£g›É+w¸[  445.402866][T10058] netlink: 'syz.0.1044': attribute type 1 has an invalid length.
[  445.403743][ T5950] Bluetooth: hci0: unexpected event for opcode 0x0c12
[  445.427632][T10058] 8021q: adding VLAN 0 to HW filter on device bond1
[  445.501111][T10058] bond1: (slave veth3): Enslaving as an active interface with a down link
[  445.973267][T10076] tipc: Resetting bearer <eth:team0>
[  446.001223][T10076] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  446.011730][T10077] bridge0: port 1(netdevsim0) entered blocking state
[  446.021493][T10077] bridge0: port 1(netdevsim0) entered disabled state
[  446.027168][T10077] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  446.052333][  T841] usb 42-1: device descriptor read/8, error -110
[  446.058756][T10077] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  446.083937][T10076] team0: No ports can be present during mode change
[  446.149530][T10076] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  446.545926][  T841] usb usb42-port1: attempt power cycle
[  447.103496][  T841] usb usb42-port1: unable to enumerate USB device
[  447.154038][   T64] Bluetooth: hci2: unexpected event for opcode 0x0c12
[  447.158500][T10100] netlink: 'syz.3.1058': attribute type 1 has an invalid length.
[  447.188916][T10100] 8021q: adding VLAN 0 to HW filter on device bond3
[  447.250099][T10100] bond3: (slave veth5): Enslaving as an active interface with a down link
[  447.830578][T10114] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  447.855099][T10114] team0: No ports can be present during mode change
[  447.862055][T10114] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  448.202545][   T10] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  448.386200][   T10] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  448.390910][   T10] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  448.398037][   T10] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  448.405929][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.418320][T10123] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  448.441678][   T10] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  448.642833][   T24] usb 5-1: USB disconnect, device number 9
[  448.778164][T10127] Mount JFS Failure: -22
[  448.780032][T10127] jfs_mount failed w/return code = -22
[  448.938882][    C3] vkms_vblank_simulate: vblank timer overrun
[  448.973916][T10135] netlink: 'syz.0.1068': attribute type 1 has an invalid length.
[  449.012350][ T5950] Bluetooth: hci0: unexpected event for opcode 0x0c12
[  449.030178][T10135] 8021q: adding VLAN 0 to HW filter on device bond2
[  449.132568][T10137] bond2: (slave veth5): Enslaving as an active interface with a down link
[  449.647650][T10154] kvm: emulating exchange as write
[  451.386794][T10181] overlayfs: failed lookup in lower (newroot/260, name='bus', err=-40): overlapping layers
[  451.396436][T10181] overlayfs: failed lookup in lower (newroot/260, name='bus', err=-40): overlapping layers
[  451.403862][T10181] overlayfs: failed lookup in lower (newroot/260, name='bus', err=-40): overlapping layers
[  451.584122][T10183] mmap: syz.3.1078 (10183) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  451.705211][ T5950] Bluetooth: hci2: unexpected event for opcode 0x0c12
[  451.706502][T10185] netlink: 'syz.3.1079': attribute type 1 has an invalid length.
[  451.742656][T10185] 8021q: adding VLAN 0 to HW filter on device bond4
[  451.797176][T10185] bond4: (slave veth7): Enslaving as an active interface with a down link
[  454.144545][T10213] netlink: 'syz.1.1088': attribute type 1 has an invalid length.
[  454.150966][ T5950] Bluetooth: hci1: unexpected event for opcode 0x0c12
[  454.180060][T10213] 8021q: adding VLAN 0 to HW filter on device bond1
[  454.324974][T10213] bond1: (slave veth3): Enslaving as an active interface with a down link
[  454.571313][T10216] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1087'.
[  455.990521][T10241] Mount JFS Failure: -22
[  455.992819][T10241] jfs_mount failed w/return code = -22
[  456.519803][T10245] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1096'.
[  457.439930][T10268] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  457.872330][   T10] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  458.058153][T10281] capability: warning: `syz.1.1106' uses deprecated v2 capabilities in a way that may be insecure
[  458.961254][   T10] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  458.967853][   T10] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  458.972267][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  458.975672][   T10] usb 5-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  458.979868][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  458.988425][   T10] usb 5-1: config 0 descriptor??
[  459.120592][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  459.120607][   T40] audit: type=1326 audit(1763661477.171:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  459.133778][   T40] audit: type=1326 audit(1763661477.171:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  459.143439][   T40] audit: type=1326 audit(1763661477.191:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  459.156119][   T40] audit: type=1326 audit(1763661477.191:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  459.166853][   T40] audit: type=1326 audit(1763661477.191:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  459.179048][   T40] audit: type=1326 audit(1763661477.191:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  459.188818][   T40] audit: type=1326 audit(1763661477.191:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  459.202239][   T40] audit: type=1326 audit(1763661477.191:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  459.213250][   T40] audit: type=1326 audit(1763661477.191:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  459.225076][   T40] audit: type=1326 audit(1763661477.191:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10286 comm="syz.3.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  459.238285][T10289] fuse: Unknown parameter '{ser_id'
[  459.421299][   T10] hid-steam 0003:28DE:1102.0007: unknown main item tag 0x0
[  459.424859][   T10] hid-steam 0003:28DE:1102.0007: unknown main item tag 0x0
[  459.430335][   T10] hid-steam 0003:28DE:1102.0007: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.0-1/input0
[  460.012962][   T10] hid-steam 0003:28DE:1102.0007: Steam Controller 'XXXXXXXXXX' connected
[  460.023840][   T10] input: Steam Controller as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:28DE:1102.0007/input/input7
[  460.042737][   T10] hid-steam 0003:28DE:1102.0008: unknown main item tag 0x0
[  460.046885][   T10] hid-steam 0003:28DE:1102.0008: unknown main item tag 0x0
[  460.061311][   T10] hid-steam 0003:28DE:1102.0008: hidraw1: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.0-1/input0
[  460.291294][   T10] usb 5-1: USB disconnect, device number 10
[  460.382301][   T10] hid-steam 0003:28DE:1102.0007: Steam Controller 'XXXXXXXXXX' disconnected
[  461.240866][T10322] netlink: 284 bytes leftover after parsing attributes in process `syz.3.1117'.
[  461.379293][T10328] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1118'.
[  461.583818][T10333] FAULT_INJECTION: forcing a failure.
[  461.583818][T10333] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  461.589195][T10333] CPU: 2 UID: 0 PID: 10333 Comm: syz.1.1119 Not tainted syzkaller #0 PREEMPT(full) 
[  461.589221][T10333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  461.589231][T10333] Call Trace:
[  461.589239][T10333]  <TASK>
[  461.589247][T10333]  dump_stack_lvl+0x16c/0x1f0
[  461.589274][T10333]  should_fail_ex+0x512/0x640
[  461.589304][T10333]  _copy_to_user+0x32/0xd0
[  461.589321][T10333]  simple_read_from_buffer+0xcb/0x170
[  461.589350][T10333]  proc_fail_nth_read+0x197/0x240
[  461.589370][T10333]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  461.589390][T10333]  ? rw_verify_area+0xcf/0x6c0
[  461.589405][T10333]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  461.589423][T10333]  vfs_read+0x1e4/0xcf0
[  461.589455][T10333]  ? __pfx_vfs_read+0x10/0x10
[  461.589470][T10333]  ? find_held_lock+0x2b/0x80
[  461.589499][T10333]  ? __fget_files+0x20e/0x3c0
[  461.589524][T10333]  ksys_read+0x12a/0x250
[  461.589541][T10333]  ? __pfx_ksys_read+0x10/0x10
[  461.589561][T10333]  ? rcu_is_watching+0x12/0xc0
[  461.589583][T10333]  __do_fast_syscall_32+0x7c/0x300
[  461.589607][T10333]  do_fast_syscall_32+0x32/0x80
[  461.589629][T10333]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  461.589649][T10333] RIP: 0023:0xf70cd579
[  461.589664][T10333] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  461.589680][T10333] RSP: 002b:00000000f54bd590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  461.589697][T10333] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f54bd620
[  461.589708][T10333] RDX: 000000000000000f RSI: 00000000f7466ff4 RDI: 0000000000000000
[  461.589717][T10333] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  461.589727][T10333] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  461.589736][T10333] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  461.589761][T10333]  </TASK>
[  461.881020][T10340] FAULT_INJECTION: forcing a failure.
[  461.881020][T10340] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  461.889900][T10340] CPU: 3 UID: 0 PID: 10340 Comm: syz.0.1123 Not tainted syzkaller #0 PREEMPT(full) 
[  461.889929][T10340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  461.889942][T10340] Call Trace:
[  461.889951][T10340]  <TASK>
[  461.889960][T10340]  dump_stack_lvl+0x16c/0x1f0
[  461.889992][T10340]  should_fail_ex+0x512/0x640
[  461.890026][T10340]  _copy_from_user+0x2e/0xd0
[  461.890081][T10340]  get_user_ifreq+0x116/0x1c0
[  461.890105][T10340]  compat_sock_ioctl+0x3f6/0x730
[  461.890143][T10340]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  461.890167][T10340]  ? hook_file_ioctl_common+0x145/0x410
[  461.890193][T10340]  ? __fget_files+0x20e/0x3c0
[  461.890220][T10340]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  461.890243][T10340]  __ia32_compat_sys_ioctl+0x242/0x370
[  461.890276][T10340]  __do_fast_syscall_32+0x7c/0x300
[  461.890304][T10340]  do_fast_syscall_32+0x32/0x80
[  461.890329][T10340]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  461.890353][T10340] RIP: 0023:0xf7fe2579
[  461.890367][T10340] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  461.890385][T10340] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  461.890403][T10340] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008946
[  461.890415][T10340] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  461.890426][T10340] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  461.890437][T10340] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  461.890448][T10340] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  461.890474][T10340]  </TASK>
[  462.115920][T10335] hub 8-0:1.0: USB hub found
[  462.119109][T10335] hub 8-0:1.0: 1 port detected
[  462.467671][T10345] SQUASHFS error: Failed to read block 0x0: -5
[  462.482353][T10345] unable to read squashfs_super_block
[  463.230087][T10365] fuse: Unknown parameter '0x0000000000000004'
[  463.680761][T10368] FAULT_INJECTION: forcing a failure.
[  463.680761][T10368] name failslab, interval 1, probability 0, space 0, times 0
[  463.699836][T10368] CPU: 0 UID: 0 PID: 10368 Comm: syz.3.1129 Not tainted syzkaller #0 PREEMPT(full) 
[  463.699865][T10368] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  463.699877][T10368] Call Trace:
[  463.699884][T10368]  <TASK>
[  463.699893][T10368]  dump_stack_lvl+0x16c/0x1f0
[  463.699940][T10368]  should_fail_ex+0x512/0x640
[  463.699968][T10368]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  463.699991][T10368]  should_failslab+0xc2/0x120
[  463.700016][T10368]  kmem_cache_alloc_noprof+0x75/0x6e0
[  463.700035][T10368]  ? mm_alloc+0x1c/0xc0
[  463.700061][T10368]  ? mm_alloc+0x1c/0xc0
[  463.700079][T10368]  mm_alloc+0x1c/0xc0
[  463.700098][T10368]  alloc_bprm+0x2af/0x710
[  463.700119][T10368]  do_execveat_common.isra.0+0x1ce/0x610
[  463.700144][T10368]  __ia32_compat_sys_execveat+0xe0/0x120
[  463.700168][T10368]  __do_fast_syscall_32+0x7c/0x300
[  463.700196][T10368]  do_fast_syscall_32+0x32/0x80
[  463.700221][T10368]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  463.700242][T10368] RIP: 0023:0xf7f72579
[  463.700258][T10368] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  463.700280][T10368] RSP: 002b:00000000f544555c EFLAGS: 00000296 ORIG_RAX: 0000000000000166
[  463.700303][T10368] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000040
[  463.700317][T10368] RDX: 0000000000000000 RSI: 0000000080000380 RDI: 0000000000001000
[  463.700331][T10368] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  463.700344][T10368] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  463.700356][T10368] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  463.700391][T10368]  </TASK>
[  463.784159][    C0] vkms_vblank_simulate: vblank timer overrun
[  464.352248][  T842] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  464.504646][  T842] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  464.509212][  T842] usb 7-1: config 1 has no interface number 1
[  464.511924][  T842] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  464.519601][  T842] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  464.527882][  T842] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  464.531849][  T842] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  464.544334][T10381] fuse: Unknown parameter '0000000000000000000000000000000000000000000011'
[  464.553235][  T842] usb 7-1: Product: syz
[  464.555579][  T842] usb 7-1: Manufacturer: syz
[  464.557968][  T842] usb 7-1: SerialNumber: syz
[  464.866524][ T5950] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[  464.866630][ T5950] Bluetooth: hci3: Malformed LE Event: 0x0d
[  464.912462][  T842] usb 7-1: USB disconnect, device number 8
[  464.962033][T10307] udevd[10307]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  465.311880][   T40] kauditd_printk_skb: 133 callbacks suppressed
[  465.311906][   T40] audit: type=1326 audit(1763661483.361:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.325490][   T40] audit: type=1326 audit(1763661483.361:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.336028][   T40] audit: type=1326 audit(1763661483.371:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.348368][   T40] audit: type=1326 audit(1763661483.371:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.373385][   T40] audit: type=1326 audit(1763661483.371:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.386037][   T40] audit: type=1326 audit(1763661483.371:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=227 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.397250][   T40] audit: type=1326 audit(1763661483.371:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.410947][   T40] audit: type=1326 audit(1763661483.371:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=150 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.469027][   T40] audit: type=1326 audit(1763661483.521:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.480907][   T40] audit: type=1326 audit(1763661483.521:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10385 comm="syz.0.1135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  465.606161][T10398] FAULT_INJECTION: forcing a failure.
[  465.606161][T10398] name failslab, interval 1, probability 0, space 0, times 0
[  465.614013][T10398] CPU: 0 UID: 0 PID: 10398 Comm: syz.1.1137 Not tainted syzkaller #0 PREEMPT(full) 
[  465.614045][T10398] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  465.614059][T10398] Call Trace:
[  465.614066][T10398]  <TASK>
[  465.614076][T10398]  dump_stack_lvl+0x16c/0x1f0
[  465.614107][T10398]  should_fail_ex+0x512/0x640
[  465.614138][T10398]  ? __kmalloc_cache_noprof+0x5f/0x780
[  465.614172][T10398]  should_failslab+0xc2/0x120
[  465.614200][T10398]  __kmalloc_cache_noprof+0x72/0x780
[  465.614222][T10398]  ? rtnl_newlink+0x11b/0x2000
[  465.614254][T10398]  ? __pfx_rtnl_newlink+0x10/0x10
[  465.614276][T10398]  ? rtnl_newlink+0x11b/0x2000
[  465.614297][T10398]  rtnl_newlink+0x11b/0x2000
[  465.614334][T10398]  ? __pfx_rtnl_newlink+0x10/0x10
[  465.614362][T10398]  ? kmem_cache_free+0x2d4/0x6c0
[  465.614383][T10398]  ? kfree_skbmem+0x1a4/0x1f0
[  465.614415][T10398]  ? kfree_skbmem+0x1a4/0x1f0
[  465.614445][T10398]  ? __lock_acquire+0x622/0x1c90
[  465.614477][T10398]  ? rcu_is_watching+0x12/0xc0
[  465.614511][T10398]  ? find_held_lock+0x2b/0x80
[  465.614531][T10398]  ? __pfx_rtnl_newlink+0x10/0x10
[  465.614556][T10398]  ? __pfx_rtnl_newlink+0x10/0x10
[  465.614581][T10398]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  465.614613][T10398]  ? __pfx_rtnl_newlink+0x10/0x10
[  465.614637][T10398]  rtnetlink_rcv_msg+0x95e/0xe90
[  465.614663][T10398]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  465.614703][T10398]  ? ref_tracker_free+0x37c/0x830
[  465.614735][T10398]  netlink_rcv_skb+0x158/0x420
[  465.614759][T10398]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  465.614784][T10398]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  465.614819][T10398]  ? netlink_deliver_tap+0x1ae/0xd30
[  465.614846][T10398]  netlink_unicast+0x5aa/0x870
[  465.614874][T10398]  ? __pfx_netlink_unicast+0x10/0x10
[  465.614911][T10398]  netlink_sendmsg+0x8c8/0xdd0
[  465.614939][T10398]  ? __pfx_netlink_sendmsg+0x10/0x10
[  465.614967][T10398]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  465.615004][T10398]  ____sys_sendmsg+0xa98/0xc70
[  465.615035][T10398]  ? __pfx_____sys_sendmsg+0x10/0x10
[  465.615061][T10398]  ? get_compat_msghdr+0x11a/0x170
[  465.615095][T10398]  ___sys_sendmsg+0x134/0x1d0
[  465.615138][T10398]  ? __pfx____sys_sendmsg+0x10/0x10
[  465.615176][T10398]  ? find_held_lock+0x2b/0x80
[  465.615211][T10398]  __sys_sendmsg+0x16d/0x220
[  465.615230][T10398]  ? __pfx___sys_sendmsg+0x10/0x10
[  465.615260][T10398]  ? rcu_is_watching+0x12/0xc0
[  465.615282][T10398]  __do_fast_syscall_32+0x7c/0x300
[  465.615309][T10398]  do_fast_syscall_32+0x32/0x80
[  465.615332][T10398]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  465.615355][T10398] RIP: 0023:0xf70cd579
[  465.615369][T10398] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  465.615387][T10398] RSP: 002b:00000000f54bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  465.615405][T10398] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  465.615416][T10398] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  465.615427][T10398] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  465.615438][T10398] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  465.615448][T10398] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  465.615474][T10398]  </TASK>
[  465.628259][T10396] ubi: mtd0 is already attached to ubi31
[  465.677798][    C0] vkms_vblank_simulate: vblank timer overrun
[  465.788897][    C0] vkms_vblank_simulate: vblank timer overrun
[  467.961956][T10418] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1142'.
[  468.426931][T10436] SQUASHFS error: Failed to read block 0x0: -5
[  468.430313][T10436] unable to read squashfs_super_block
[  468.512493][   T10] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  468.540894][   T55] kernel read not supported for file /1062/net/udp6 (pid: 55 comm: kworker/2:1)
[  468.685039][   T10] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  468.690008][   T10] usb 5-1: config 1 has no interface number 1
[  468.699673][   T10] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  468.709576][   T10] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  468.733201][   T10] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  468.737099][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  468.741769][   T10] usb 5-1: Product: syz
[  468.746742][   T10] usb 5-1: Manufacturer: syz
[  468.750516][   T10] usb 5-1: SerialNumber: syz
[  468.824145][T10448] tipc: Can't bind to reserved service type 2
[  468.842902][T10448] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1149'.
[  469.040759][ T5950] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  469.040874][ T5950] Bluetooth: hci0: Malformed LE Event: 0x0d
[  469.062208][   T10] usb 5-1: USB disconnect, device number 11
[  469.077690][T10307] udevd[10307]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  470.963817][T10467] block device autoloading is deprecated and will be removed.
[  471.172247][   T54] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  471.333929][   T54] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  471.337394][   T54] usb 5-1: config 1 has no interface number 1
[  471.340034][   T54] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  471.346941][   T54] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  471.369723][   T54] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  471.373768][   T54] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  471.379424][   T54] usb 5-1: Product: syz
[  471.381420][   T54] usb 5-1: Manufacturer: syz
[  471.384004][   T54] usb 5-1: SerialNumber: syz
[  471.653277][ T5950] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  471.653312][ T5950] Bluetooth: hci0: Malformed LE Event: 0x0d
[  471.735847][   T54] usb 5-1: USB disconnect, device number 12
[  471.879023][T10307] udevd[10307]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  472.096732][T10494] netlink: 'syz.3.1162': attribute type 10 has an invalid length.
[  472.108001][T10494] 8021q: adding VLAN 0 to HW filter on device batadv0
[  472.118260][T10494] batadv0: entered promiscuous mode
[  472.120962][T10494] batadv0: entered allmulticast mode
[  472.126432][T10494] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  472.241107][T10496] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  472.255681][T10496] team0: No ports can be present during mode change
[  472.269993][T10496] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  472.394054][T10500] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1164'.
[  472.701878][T10511] fuse: Unknown parameter 'fd0x0000000000000004'
[  472.756666][T10513] Mount JFS Failure: -22
[  472.758766][T10513] jfs_mount failed w/return code = -22
[  472.881725][T10515] fuse: Unknown parameter 'fd0x0000000000000004'
[  473.192266][ T6030] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  473.412231][ T6030] usb 5-1: Using ep0 maxpacket: 8
[  473.416902][ T6030] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  473.420901][ T6030] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  473.425407][ T6030] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  473.441671][ T6030] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  473.449910][ T6030] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  473.456778][ T6030] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  473.461561][ T6030] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  473.484863][T10519] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  473.496636][T10519] team0: No ports can be present during mode change
[  473.504556][T10519] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  473.727160][ T6030] usb 5-1: GET_CAPABILITIES returned 0
[  473.729572][ T6030] usbtmc 5-1:16.0: can't read capabilities
[  473.792284][   T10] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  473.913002][   T24] usb 5-1: USB disconnect, device number 13
[  473.944152][   T10] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  473.948087][   T10] usb 6-1: config 1 has no interface number 1
[  473.960125][   T10] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  473.972742][   T10] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  473.979608][   T10] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  473.985228][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.989600][   T10] usb 6-1: Product: syz
[  473.991426][   T10] usb 6-1: Manufacturer: syz
[  473.992965][   T10] usb 6-1: SerialNumber: syz
[  474.040322][T10527] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  474.323684][T10517] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  474.331823][T10517] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  474.363906][   T10] usb 6-1: USB disconnect, device number 12
[  474.396005][T10307] udevd[10307]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  475.002328][T10542] ubi: mtd0 is already attached to ubi31
[  475.066774][T10547] Mount JFS Failure: -22
[  475.068753][T10547] jfs_mount failed w/return code = -22
[  475.773734][T10551] bond0: (slave batadv0): Releasing backup interface
[  475.793811][T10551] batadv0: left promiscuous mode
[  475.796532][T10551] batadv0: left allmulticast mode
[  475.814305][T10551] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  475.820848][T10556] team0: No ports can be present during mode change
[  475.837382][T10551] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  476.994255][T10581] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1190'.
[  477.182995][T10588] tipc: Resetting bearer <eth:team0>
[  477.195140][T10588] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  477.236344][T10588] team0: No ports can be present during mode change
[  477.252036][T10588] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  477.421918][T10592] XFS (nullb0): Invalid superblock magic number
[  477.441810][T10594] FAULT_INJECTION: forcing a failure.
[  477.441810][T10594] name failslab, interval 1, probability 0, space 0, times 0
[  477.456087][T10594] CPU: 2 UID: 0 PID: 10594 Comm: syz.2.1195 Not tainted syzkaller #0 PREEMPT(full) 
[  477.456113][T10594] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  477.456125][T10594] Call Trace:
[  477.456131][T10594]  <TASK>
[  477.456138][T10594]  dump_stack_lvl+0x16c/0x1f0
[  477.456165][T10594]  should_fail_ex+0x512/0x640
[  477.456191][T10594]  ? __kmalloc_noprof+0xca/0x880
[  477.456219][T10594]  should_failslab+0xc2/0x120
[  477.456242][T10594]  __kmalloc_noprof+0xdd/0x880
[  477.456266][T10594]  ? lockdep_hardirqs_on+0x7c/0x110
[  477.456286][T10594]  ? fuse_do_ioctl+0x284/0x1670
[  477.456304][T10594]  ? fuse_do_ioctl+0x284/0x1670
[  477.456318][T10594]  fuse_do_ioctl+0x284/0x1670
[  477.456341][T10594]  ? __pfx_fuse_do_ioctl+0x10/0x10
[  477.456375][T10594]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  477.456406][T10594]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  477.456447][T10594]  ? __fget_files+0x20e/0x3c0
[  477.456469][T10594]  fuse_ioctl_common+0x123/0x190
[  477.456485][T10594]  ? __pfx_fuse_file_compat_ioctl+0x10/0x10
[  477.456504][T10594]  __ia32_compat_sys_ioctl+0x242/0x370
[  477.456532][T10594]  __do_fast_syscall_32+0x7c/0x300
[  477.456558][T10594]  do_fast_syscall_32+0x32/0x80
[  477.456582][T10594]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  477.456602][T10594] RIP: 0023:0xf7f77579
[  477.456618][T10594] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  477.456634][T10594] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  477.456652][T10594] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004188aea7
[  477.456663][T10594] RDX: 0000000080019140 RSI: 0000000000000000 RDI: 0000000000000000
[  477.456674][T10594] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  477.456684][T10594] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  477.456695][T10594] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  477.456719][T10594]  </TASK>
[  477.551644][T10603] SQUASHFS error: Failed to read block 0x0: -5
[  477.551798][T10603] unable to read squashfs_super_block
[  478.353757][T10611] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  478.356538][T10611] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  478.361590][T10611] vhci_hcd vhci_hcd.0: Device attached
[  478.517809][T10612] vhci_hcd: connection closed
[  478.519752][   T13] vhci_hcd: stop threads
[  478.526034][   T13] vhci_hcd: release socket
[  478.532605][   T13] vhci_hcd: disconnect device
[  478.542650][   T53] vhci_hcd: vhci_device speed not set
[  478.842470][  T842] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  478.997895][  T842] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  479.002049][  T842] usb 5-1: config 1 has no interface number 1
[  479.005086][  T842] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  479.011119][  T842] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  479.020748][  T842] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  479.024878][  T842] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  479.028982][  T842] usb 5-1: Product: syz
[  479.030971][  T842] usb 5-1: Manufacturer: syz
[  479.034689][  T842] usb 5-1: SerialNumber: syz
[  479.330504][T10616] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  479.335118][T10616] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  479.340482][ T5950] Bluetooth: hci0: Malformed LE Event: 0x0d
[  479.367788][  T842] usb 5-1: USB disconnect, device number 14
[  479.394478][T10307] udevd[10307]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  479.888471][T10630] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  479.898405][T10630] team0: No ports can be present during mode change
[  479.909379][T10630] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  479.967196][T10632] batman_adv: batadv0: Adding interface: gretap1
[  479.970005][T10632] batman_adv: batadv0: Interface activated: gretap1
[  480.089303][T10636] random: crng reseeded on system resumption
[  480.634396][T10647] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1209'.
[  481.122350][   T53] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  481.318218][   T53] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  481.324736][   T53] usb 6-1: config 1 has no interface number 1
[  481.346598][   T53] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  481.354513][   T53] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  481.381047][   T53] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  481.387931][   T53] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  481.394846][   T53] usb 6-1: Product: syz
[  481.396934][   T53] usb 6-1: Manufacturer: syz
[  481.399229][   T53] usb 6-1: SerialNumber: syz
[  481.557600][T10655] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  481.578966][T10655] team0: No ports can be present during mode change
[  481.605658][T10655] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  481.797199][T10657] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  481.802528][T10657] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  481.809767][ T5950] Bluetooth: hci1: Malformed LE Event: 0x0d
[  482.324660][T10662] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1212'.
[  483.836216][   T53] usb 6-1: USB disconnect, device number 13
[  483.845742][T10683] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1216'.
[  483.876207][T10307] udevd[10307]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  483.926245][   T40] kauditd_printk_skb: 36 callbacks suppressed
[  483.926261][   T40] audit: type=1326 audit(1763661501.981:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  483.949296][   T40] audit: type=1326 audit(1763661501.981:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  483.969509][   T40] audit: type=1326 audit(1763661501.981:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=136 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  483.979690][   T40] audit: type=1326 audit(1763661501.981:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  483.995770][   T40] audit: type=1326 audit(1763661501.981:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  484.012189][   T40] audit: type=1326 audit(1763661501.981:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  484.044008][   T40] audit: type=1326 audit(1763661501.981:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=228 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  484.072290][   T40] audit: type=1326 audit(1763661501.981:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  484.092239][   T40] audit: type=1326 audit(1763661501.981:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  484.122492][   T40] audit: type=1326 audit(1763661501.981:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.1.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  484.265651][T10688] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  484.271208][T10688] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  484.276450][T10688] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  484.705842][T10686] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  485.462841][T10695] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  485.465836][T10695] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  485.469125][T10695] vhci_hcd vhci_hcd.0: Device attached
[  485.746712][ T6032] usb 38-1: SetAddress Request (2) to port 0
[  485.749842][ T6032] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  486.055034][T10700] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  486.065482][T10700] team0: No ports can be present during mode change
[  486.072903][T10700] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  486.514516][T10696] vhci_hcd: connection reset by peer
[  486.517779][   T13] vhci_hcd: stop threads
[  486.519792][   T13] vhci_hcd: release socket
[  486.521572][   T13] vhci_hcd: disconnect device
[  486.642463][  T842] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  486.794199][  T842] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  486.797892][  T842] usb 7-1: config 1 has no interface number 1
[  486.801667][  T842] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  486.809261][  T842] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  486.819387][  T842] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  486.824012][  T842] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.827651][  T842] usb 7-1: Product: syz
[  486.829820][  T842] usb 7-1: Manufacturer: syz
[  486.832647][  T842] usb 7-1: SerialNumber: syz
[  487.116977][T10717] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  487.122245][T10717] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  487.133836][ T5950] Bluetooth: hci3: Malformed LE Event: 0x0d
[  487.247052][T10719] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  487.253134][T10719] block device autoloading is deprecated and will be removed.
[  488.688012][T10731] Mount JFS Failure: -22
[  488.690525][T10731] jfs_mount failed w/return code = -22
[  489.499211][  T842] usb 7-1: USB disconnect, device number 9
[  489.573834][T10307] udevd[10307]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  489.976624][T10750] Mount JFS Failure: -22
[  489.978791][T10750] jfs_mount failed w/return code = -22
[  490.633546][T10751] Mount JFS Failure: -22
[  490.635600][T10751] jfs_mount failed w/return code = -22
[  490.857296][ T6032] usb 38-1: device descriptor read/8, error -110
[  491.243007][ T6032] usb usb38-port1: attempt power cycle
[  491.804042][ T6032] usb usb38-port1: unable to enumerate USB device
[  492.095586][   T40] kauditd_printk_skb: 26 callbacks suppressed
[  492.095604][   T40] audit: type=1804 audit(1763661510.151:312): pid=10768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1240" name="/newroot/317/file0/file0" dev="9p" ino=76546191 res=1 errno=0
[  492.224949][T10772] uprobe: syz.1.1240:10772 failed to unregister, leaking uprobe
[  492.443512][  T842] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  492.544864][T10777] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1243'.
[  492.549021][T10777] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1243'.
[  492.615003][  T842] usb 8-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  492.620193][  T842] usb 8-1: config 1 has no interface number 1
[  492.624007][  T842] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  492.631443][  T842] usb 8-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  492.643245][  T842] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  492.647545][  T842] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  492.651239][  T842] usb 8-1: Product: syz
[  492.653726][  T842] usb 8-1: Manufacturer: syz
[  492.656303][  T842] usb 8-1: SerialNumber: syz
[  492.693722][   T40] audit: type=1804 audit(1763661510.751:313): pid=10779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1244" name="/newroot/320/file0/file0" dev="9p" ino=76546191 res=1 errno=0
[  492.976536][T10786] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  492.986027][T10786] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  492.994636][ T5950] Bluetooth: hci2: Malformed LE Event: 0x0d
[  493.085726][T10790] tipc: Resetting bearer <eth:team0>
[  493.100941][T10790] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  493.262322][T10790] team0: No ports can be present during mode change
[  493.290026][T10790] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  493.651111][T10798] Mount JFS Failure: -22
[  493.653774][T10798] jfs_mount failed w/return code = -22
[  494.323686][T10806] netlink: 'syz.2.1250': attribute type 2 has an invalid length.
[  495.225513][  T842] usb 8-1: USB disconnect, device number 2
[  495.246124][T10307] udevd[10307]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  495.672380][  T842] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  495.822260][  T842] usb 8-1: Using ep0 maxpacket: 8
[  495.835784][  T842] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  495.843478][  T842] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  495.872450][  T842] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  495.878209][  T842] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  495.885945][  T842] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  495.890589][  T842] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  496.124810][T10814] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  496.138002][T10814] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  496.148115][  T842] usb 8-1: GET_CAPABILITIES returned 0
[  496.151232][  T842] usbtmc 8-1:16.0: can't read capabilities
[  496.365421][    C3] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  496.382433][T10814] usbtmc 8-1:16.0: Unable to send data, error -71
[  498.176560][T10841] netlink: 11 bytes leftover after parsing attributes in process `syz.0.1259'.
[  498.450165][ T6030] usb 8-1: USB disconnect, device number 3
[  498.550259][T10845] random: crng reseeded on system resumption
[  500.083164][T10876] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  500.086755][T10876] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  500.093264][T10876] vhci_hcd vhci_hcd.0: Device attached
[  500.345628][   T53] usb 37-1: new low-speed USB device number 3 using vhci_hcd
[  501.593549][T10884] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  501.621837][T10884] team0: No ports can be present during mode change
[  501.633703][T10884] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  502.046258][T10887] loop6: detected capacity change from 0 to 524287999
[  502.056112][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.060444][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.064332][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.083504][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.088820][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.089471][T10890] ubi: mtd0 is already attached to ubi31
[  502.094676][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.106845][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.110199][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.115026][T10307] ldm_validate_partition_table(): Disk read failed.
[  502.119348][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.130890][T10307] Buffer I/O error on dev loop6, logical block 0, async page read
[  502.135221][T10307] Dev loop6: unable to read RDB block 0
[  502.143153][T10307]  loop6: unable to read partition table
[  502.165568][T10887] ldm_validate_partition_table(): Disk read failed.
[  502.170327][T10887] Dev loop6: unable to read RDB block 0
[  502.186258][T10887]  loop6: unable to read partition table
[  502.191660][T10887] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  502.196981][T10877] vhci_hcd: connection reset by peer
[  502.201675][ T1142] vhci_hcd: stop threads
[  502.205922][ T1142] vhci_hcd: release socket
[  502.210292][ T1142] vhci_hcd: disconnect device
[  502.584201][ T5352] ldm_validate_partition_table(): Disk read failed.
[  502.588921][ T5352] Dev loop6: unable to read RDB block 0
[  502.594231][ T5352]  loop6: unable to read partition table
[  502.969068][   T40] audit: type=1326 audit(1763661521.021:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  502.987831][   T40] audit: type=1326 audit(1763661521.021:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  503.007526][   T40] audit: type=1326 audit(1763661521.041:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  503.031286][   T40] audit: type=1326 audit(1763661521.041:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  503.051319][   T40] audit: type=1326 audit(1763661521.041:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  503.056288][ T5950] Bluetooth: hci2: unexpected cc 0x0809 length: 68 > 4
[  503.061462][   T40] audit: type=1326 audit(1763661521.061:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=177 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  503.069934][ T5950] Bluetooth: hci2: unexpected event for opcode 0x0809
[  503.083120][   T40] audit: type=1326 audit(1763661521.101:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  503.083218][   T40] audit: type=1326 audit(1763661521.101:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  503.083257][   T40] audit: type=1326 audit(1763661521.101:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  503.083493][   T40] audit: type=1326 audit(1763661521.101:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10894 comm="syz.3.1274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  504.148269][T10914] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  504.159272][T10914] team0: No ports can be present during mode change
[  504.166319][T10914] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  505.145308][T10927] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  505.483997][   T53] vhci_hcd: vhci_device speed not set
[  505.946045][T10948] Mount JFS Failure: -22
[  505.949591][T10948] jfs_mount failed w/return code = -22
[  506.204696][T10955] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  506.220330][T10955] syzkaller0: entered promiscuous mode
[  506.229919][T10955] syzkaller0: entered allmulticast mode
[  506.254642][T10955] syzkaller0: mtu greater than device maximum
[  506.260185][T10954] tipc: Resetting bearer <eth:syzkaller0>
[  506.301511][T10954] tipc: Disabling bearer <eth:syzkaller0>
[  506.457072][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  506.460267][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  506.493916][T10958] netlink: 'syz.3.1293': attribute type 1 has an invalid length.
[  506.527187][T10958] bond5: entered promiscuous mode
[  506.530349][T10958] bond5: entered allmulticast mode
[  506.533344][T10958] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1293'.
[  506.545416][T10958] bridge1: the hash_elasticity option has been deprecated and is always 16
[  506.553182][T10958] bond5: (slave bridge1): making interface the new active one
[  506.555883][T10958] bridge1: entered promiscuous mode
[  506.558073][T10958] bridge1: entered allmulticast mode
[  506.561415][T10958] bond5: (slave bridge1): Enslaving as an active interface with an up link
[  506.736220][T10967] random: crng reseeded on system resumption
[  506.751895][T10971] syzkaller0: entered promiscuous mode
[  506.754651][T10971] syzkaller0: entered allmulticast mode
[  506.890667][T10971] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1297'.
[  506.927883][T10973] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  509.772875][T11010] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  509.775926][T11010] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  509.780240][T11010] vhci_hcd vhci_hcd.0: Device attached
[  510.003121][T11011] vhci_hcd: connection closed
[  510.003381][ T1151] vhci_hcd: stop threads
[  510.008143][ T1151] vhci_hcd: release socket
[  510.011716][ T1151] vhci_hcd: disconnect device
[  510.077405][   T55] usb 40-1: enqueue for inactive port 0
[  510.133469][T11019] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1312'.
[  510.139256][T11019] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1312'.
[  510.344212][T11025] erofs (device loop0): cannot find valid erofs superblock
[  510.573967][   T55] usb usb40-port1: attempt power cycle
[  510.758441][T11033] hub 8-0:1.0: USB hub found
[  510.761324][T11033] hub 8-0:1.0: 1 port detected
[  511.146267][   T55] usb usb40-port1: unable to enumerate USB device
[  511.342234][   T54] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  511.408365][T11042] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1319'.
[  511.514088][   T54] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 128, changing to 11
[  511.530364][   T54] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  511.535216][   T54] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  511.551352][   T54] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  511.569779][   T54] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  511.580999][   T54] usb 8-1: config 0 descriptor??
[  512.006780][   T54] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x2
[  512.010488][   T54] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x3
[  512.014806][   T54] plantronics 0003:047F:FFFF.0009: reserved main item tag 0xd
[  512.053401][   T54] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  512.220398][   T54] usb 8-1: USB disconnect, device number 4
[  513.149064][T11062] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  513.184850][T11062] team0: No ports can be present during mode change
[  513.206859][T11062] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  513.285007][T11064] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1324'.
[  513.318690][T11064] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  513.530910][T11067] 8021q: adding VLAN 0 to HW filter on device bond0
[  513.541888][T11067] bond0: (slave rose0): Enslaving as an active interface with an up link
[  513.728762][T11076] Mount JFS Failure: -5
[  513.735209][T11076] jfs_mount failed w/return code = -5
[  513.942247][T11083] serio: Serial port ptm0
[  515.253636][T11108] SQUASHFS error: Failed to read block 0x0: -5
[  515.257166][T11108] unable to read squashfs_super_block
[  515.658220][    C1] vkms_vblank_simulate: vblank timer overrun
[  515.738797][T11113] xt_hashlimit: overflow, try lower: 60585/0
[  515.848760][    C1] vkms_vblank_simulate: vblank timer overrun
[  515.944416][ T5950] Bluetooth: hci3: unexpected event for opcode 0x0c12
[  517.313221][T11146] Mount JFS Failure: -22
[  517.315274][T11146] jfs_mount failed w/return code = -22
[  518.238588][T11151] random: crng reseeded on system resumption
[  519.551401][T11179] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  519.566303][T11179] team0: No ports can be present during mode change
[  519.576192][T11179] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  519.784184][T11187] SQUASHFS error: Failed to read block 0x0: -5
[  519.787562][T11187] unable to read squashfs_super_block
[  520.921247][T11211] 9pnet_virtio: no channels available for device syz
[  521.662923][ T5950] Bluetooth: hci2: unexpected event for opcode 0x0c12
[  521.857473][T11229] hub 8-0:1.0: USB hub found
[  521.862890][T11229] hub 8-0:1.0: 1 port detected
[  522.097121][ T5950] Bluetooth: hci2: unexpected event for opcode 0x1003
[  522.392231][ T5369] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  522.542289][ T5369] usb 5-1: Using ep0 maxpacket: 8
[  522.554672][ T5369] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  522.558908][ T5369] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  522.563112][ T5369] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  522.568740][ T5369] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  522.573883][ T5369] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  522.579320][ T5369] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  522.584155][ T5369] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  522.799086][ T5369] usb 5-1: usb_control_msg returned -32
[  522.801773][ T5369] usbtmc 5-1:16.0: can't read capabilities
[  523.567621][T11256] usbtmc 5-1:16.0: usb_control_msg returned -32
[  523.778817][   T10] usb 5-1: USB disconnect, device number 15
[  523.929046][ T5950] Bluetooth: hci1: unexpected event for opcode 0x0c12
[  523.973030][T11261] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1377'.
[  523.991379][T11263] random: crng reseeded on system resumption
[  524.379152][T11272] 8021q: adding VLAN 0 to HW filter on device bond3
[  524.465939][T11272] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  524.470961][T11272] bond3: (slave macvlan3): Enslaving as a backup interface with a down link
[  525.001938][T11277] xt_CT: You must specify a L4 protocol and not use inversions on it
[  526.137411][ T5950] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  526.159045][ T5950] Bluetooth: hci2: Injecting HCI hardware error event
[  526.166424][ T5950] Bluetooth: hci2: hardware error 0x00
[  526.786055][T11299] netlink: 'syz.2.1386': attribute type 4 has an invalid length.
[  526.811444][T11299] netlink: 'syz.2.1386': attribute type 4 has an invalid length.
[  528.225506][ T5950] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  528.350570][T11312] Mount JFS Failure: -22
[  528.352630][T11312] jfs_mount failed w/return code = -22
[  528.389321][T11314] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  528.410997][T11314] team0: No ports can be present during mode change
[  528.441804][T11314] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  528.843566][T11319] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1392'.
[  529.106777][T11320] SQUASHFS error: Failed to read block 0x0: -5
[  529.115372][T11320] unable to read squashfs_super_block
[  529.261381][T11327] syzkaller0: entered promiscuous mode
[  529.264798][T11327] syzkaller0: entered allmulticast mode
[  531.358008][T11378] fuse: Bad value for 'fd'
[  531.547087][T11383] random: crng reseeded on system resumption
[  532.705796][T11412] random: crng reseeded on system resumption
[  532.799513][T11417] usb usb7: usbfs: process 11417 (syz.2.1415) did not claim interface 0 before use
[  533.179474][T11426] SQUASHFS error: Failed to read block 0x0: -5
[  533.183066][T11426] unable to read squashfs_super_block
[  533.486761][ T1151] netdevsim netdevsim0 netdevsim0 (unregistering): left allmulticast mode
[  533.490366][ T1151] netdevsim netdevsim0 netdevsim0 (unregistering): left promiscuous mode
[  533.498575][ T1151] bridge0: port 1(netdevsim0) entered disabled state
[  533.720008][    C1] vkms_vblank_simulate: vblank timer overrun
[  533.740188][ T1151] batman_adv: batadv0: Interface deactivated: gretap1
[  533.795666][   T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  533.802402][   T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  533.807183][   T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  533.814373][   T64] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  533.820133][   T64] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  534.014478][ T1151] batman_adv: batadv0: Removing interface: gretap1
[  534.195150][ T1151] team0: Port device bridge1 removed
[  534.760828][ T1151] batman_adv: batadv0: Removing interface: macvlan2
[  534.780195][ T1151] bond3 (unregistering): (slave macvlan3): Releasing backup interface
[  534.798648][ T1151] bond0 (unregistering): Released all slaves
[  534.922207][ T1151] bond1 (unregistering): (slave veth3): Releasing active interface
[  534.927985][ T1151] bond1 (unregistering): Released all slaves
[  535.058924][ T1151] bond2 (unregistering): (slave veth5): Releasing active interface
[  535.075530][ T1151] bond2 (unregistering): Released all slaves
[  535.185886][T11436] autofs4:pid:11436:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.768), cmd(0xc0189375)
[  535.193725][T11436] autofs4:pid:11436:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375)
[  535.278317][ T1151] bond3 (unregistering): Released all slaves
[  535.474655][T11428] chnl_net:caif_netlink_parms(): no params data found
[  535.535634][ T1151] tipc: Disabling bearer <eth:team0>
[  535.553081][ T1151] tipc: Left network mode
[  535.718174][T11455] random: crng reseeded on system resumption
[  535.719173][T11428] bridge0: port 1(bridge_slave_0) entered blocking state
[  535.725317][T11428] bridge0: port 1(bridge_slave_0) entered disabled state
[  535.725521][T11428] bridge_slave_0: entered allmulticast mode
[  535.736279][T11428] bridge_slave_0: entered promiscuous mode
[  535.752960][T11428] bridge0: port 2(bridge_slave_1) entered blocking state
[  535.756213][T11428] bridge0: port 2(bridge_slave_1) entered disabled state
[  535.759446][T11428] bridge_slave_1: entered allmulticast mode
[  535.769246][T11428] bridge_slave_1: entered promiscuous mode
[  535.869976][T11428] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  535.886169][ T1151] hsr_slave_0: left promiscuous mode
[  535.890144][ T1151] hsr_slave_1: left promiscuous mode
[  535.905747][ T5950] Bluetooth: hci0: command tx timeout
[  536.334608][ T1151] vlan0 (unregistering): left allmulticast mode
[  536.337894][ T1151] veth0_vlan (unregistering): left allmulticast mode
[  536.342609][ T1151] team0 (unregistering): Port device vlan0 removed
[  536.435375][T11465] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1426'.
[  537.978339][ T5950] Bluetooth: hci0: command 0x041b tx timeout
[  539.095864][T11428] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  539.213622][T11462] vlan2: entered promiscuous mode
[  539.219943][T11462] vlan2: entered allmulticast mode
[  539.223214][T11462] hsr_slave_1: entered allmulticast mode
[  539.529066][T11428] team0: Port device team_slave_0 added
[  539.552308][T11428] team0: Port device team_slave_1 added
[  539.616693][T11428] batman_adv: batadv0: Adding interface: batadv_slave_0
[  539.619150][T11428] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  539.631923][T11428] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  539.639755][T11428] batman_adv: batadv0: Adding interface: batadv_slave_1
[  539.645038][T11428] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  539.682182][T11428] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  539.897457][T11428] hsr_slave_0: entered promiscuous mode
[  539.902687][T11428] hsr_slave_1: entered promiscuous mode
[  539.917155][T11428] debugfs: 'hsr0' already exists in 'hsr'
[  539.920537][T11428] Cannot create hsr debugfs directory
[  540.052488][   T64] Bluetooth: hci0: command 0x041b tx timeout
[  540.057354][ T1151] ------------[ cut here ]------------
[  540.059956][ T1151] WARNING: CPU: 3 PID: 1151 at net/ipv6/xfrm6_tunnel.c:341 xfrm6_tunnel_net_exit+0x9f/0x160
[  540.064461][ T1151] Modules linked in:
[  540.066668][ T1151] CPU: 3 UID: 0 PID: 1151 Comm: kworker/u32:9 Not tainted syzkaller #0 PREEMPT(full) 
[  540.079211][ T1151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  540.084247][ T1151] Workqueue: netns cleanup_net
[  540.086646][ T1151] RIP: 0010:xfrm6_tunnel_net_exit+0x9f/0x160
[  540.088960][ T1151] Code: 00 00 00 49 8d 3c dc 48 89 f8 48 c1 e8 03 42 80 3c 28 00 0f 85 bd 00 00 00 89 e8 49 8b 04 c4 48 85 c0 74 ab e8 22 49 9e f7 90 <0f> 0b 90 eb a0 4d 8d ac 24 00 08 00 00 31 db 49 be 00 00 00 00 00
[  540.096399][ T1151] RSP: 0018:ffffc90006d9fa90 EFLAGS: 00010293
[  540.100417][ T1151] RAX: 0000000000000000 RBX: 0000000000000000 RCX: fffff52000db3f23
[  540.104202][ T1151] RDX: ffff8880227a2480 RSI: ffffffff8a1e0e5e RDI: ffff88804d6f8000
[  540.107663][ T1151] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  540.111165][ T1151] R10: ffffffff90824cd7 R11: 0000000000000001 R12: ffff88804d6f8000
[  540.115164][ T1151] R13: dffffc0000000000 R14: fffffbfff205e6e8 R15: ffffffff902f3720
[  540.120147][ T1151] FS:  0000000000000000(0000) GS:ffff888097b0d000(0000) knlGS:0000000000000000
[  540.125755][ T1151] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  540.128757][ T1151] CR2: 0000000057bfd4c0 CR3: 0000000076639000 CR4: 0000000000352ef0
[  540.133303][ T1151] Call Trace:
[  540.135280][ T1151]  <TASK>
[  540.136808][ T1151]  ? __pfx_xfrm6_tunnel_net_exit+0x10/0x10
[  540.139050][ T1151]  ops_undo_list+0x2ee/0xab0
[  540.140647][ T1151]  ? __pfx_ops_undo_list+0x10/0x10
[  540.142983][ T1151]  ? cleanup_net+0x347/0x8b0
[  540.145096][ T1151]  ? idr_destroy+0x62/0x2e0
[  540.147176][ T1151]  cleanup_net+0x41b/0x8b0
[  540.148955][ T1151]  ? __pfx_cleanup_net+0x10/0x10
[  540.151182][ T1151]  ? rcu_is_watching+0x12/0xc0
[  540.153205][ T1151]  process_one_work+0x9cf/0x1b70
[  540.155747][ T1151]  ? __pfx_process_one_work+0x10/0x10
[  540.158399][ T1151]  ? assign_work+0x1a0/0x250
[  540.160468][ T1151]  worker_thread+0x6c8/0xf10
[  540.162618][ T1151]  ? __pfx_worker_thread+0x10/0x10
[  540.164707][ T1151]  kthread+0x3c5/0x780
[  540.166567][ T1151]  ? __pfx_kthread+0x10/0x10
[  540.168943][ T1151]  ? rcu_is_watching+0x12/0xc0
[  540.171256][ T1151]  ? __pfx_kthread+0x10/0x10
[  540.173747][ T1151]  ret_from_fork+0x675/0x7d0
[  540.175829][ T1151]  ? __pfx_kthread+0x10/0x10
[  540.177949][ T1151]  ret_from_fork_asm+0x1a/0x30
[  540.179927][ T1151]  </TASK>
[  540.181226][ T1151] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  540.184716][ T1151] CPU: 3 UID: 0 PID: 1151 Comm: kworker/u32:9 Not tainted syzkaller #0 PREEMPT(full) 
[  540.189534][ T1151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  540.194695][ T1151] Workqueue: netns cleanup_net
[  540.196548][ T1151] Call Trace:
[  540.197908][ T1151]  <TASK>
[  540.199159][ T1151]  dump_stack_lvl+0x3d/0x1f0
[  540.201331][ T1151]  vpanic+0x640/0x6f0
[  540.203340][ T1151]  ? xfrm6_tunnel_net_exit+0x9f/0x160
[  540.205892][ T1151]  panic+0xca/0xd0
[  540.207508][ T1151]  ? __pfx_panic+0x10/0x10
[  540.209371][ T1151]  ? check_panic_on_warn+0x1f/0xb0
[  540.211514][ T1151]  check_panic_on_warn+0xab/0xb0
[  540.213641][ T1151]  __warn+0xf6/0x3c0
[  540.215622][ T1151]  ? xfrm6_tunnel_net_exit+0x9f/0x160
[  540.217903][ T1151]  report_bug+0x3c3/0x580
[  540.219847][ T1151]  ? xfrm6_tunnel_net_exit+0x9f/0x160
[  540.222177][ T1151]  handle_bug+0x184/0x210
[  540.224139][ T1151]  exc_invalid_op+0x17/0x50
[  540.226444][ T1151]  asm_exc_invalid_op+0x1a/0x20
[  540.228904][ T1151] RIP: 0010:xfrm6_tunnel_net_exit+0x9f/0x160
[  540.231697][ T1151] Code: 00 00 00 49 8d 3c dc 48 89 f8 48 c1 e8 03 42 80 3c 28 00 0f 85 bd 00 00 00 89 e8 49 8b 04 c4 48 85 c0 74 ab e8 22 49 9e f7 90 <0f> 0b 90 eb a0 4d 8d ac 24 00 08 00 00 31 db 49 be 00 00 00 00 00
[  540.240682][ T1151] RSP: 0018:ffffc90006d9fa90 EFLAGS: 00010293
[  540.243629][ T1151] RAX: 0000000000000000 RBX: 0000000000000000 RCX: fffff52000db3f23
[  540.247181][ T1151] RDX: ffff8880227a2480 RSI: ffffffff8a1e0e5e RDI: ffff88804d6f8000
[  540.250495][ T1151] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001
[  540.253538][ T1151] R10: ffffffff90824cd7 R11: 0000000000000001 R12: ffff88804d6f8000
[  540.257803][ T1151] R13: dffffc0000000000 R14: fffffbfff205e6e8 R15: ffffffff902f3720
[  540.262251][ T1151]  ? xfrm6_tunnel_net_exit+0x9e/0x160
[  540.264721][ T1151]  ? __pfx_xfrm6_tunnel_net_exit+0x10/0x10
[  540.267246][ T1151]  ops_undo_list+0x2ee/0xab0
[  540.269408][ T1151]  ? __pfx_ops_undo_list+0x10/0x10
[  540.272061][ T1151]  ? cleanup_net+0x347/0x8b0
[  540.274646][ T1151]  ? idr_destroy+0x62/0x2e0
[  540.276965][ T1151]  cleanup_net+0x41b/0x8b0
[  540.278744][ T1151]  ? __pfx_cleanup_net+0x10/0x10
[  540.280712][ T1151]  ? rcu_is_watching+0x12/0xc0
[  540.282788][ T1151]  process_one_work+0x9cf/0x1b70
[  540.285103][ T1151]  ? __pfx_process_one_work+0x10/0x10
[  540.287502][ T1151]  ? assign_work+0x1a0/0x250
[  540.289642][ T1151]  worker_thread+0x6c8/0xf10
[  540.292270][ T1151]  ? __pfx_worker_thread+0x10/0x10
[  540.294960][ T1151]  kthread+0x3c5/0x780
[  540.296760][ T1151]  ? __pfx_kthread+0x10/0x10
[  540.298729][ T1151]  ? rcu_is_watching+0x12/0xc0
[  540.300707][ T1151]  ? __pfx_kthread+0x10/0x10
[  540.302489][ T1151]  ret_from_fork+0x675/0x7d0
[  540.304292][ T1151]  ? __pfx_kthread+0x10/0x10
[  540.306479][ T1151]  ret_from_fork_asm+0x1a/0x30
[  540.308739][ T1151]  </TASK>
[  540.311121][ T1151] Kernel Offset: disabled
[  540.313526][ T1151] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:50:46  Registers:
info registers vcpu 0

CPU#0
RAX=fffffbfff35f8a70 RBX=fffffbfff35f8a71 RCX=ffffffff821381d2 RDX=0000000000000001
RSI=0000000000000004 RDI=ffffffff9afc5380 RBP=fffffbfff35f8a70 RSP=ffffc900047bf878
R8 =0000000000000001 R9 =fffffbfff35f8a70 R10=ffffffff9afc5383 R11=0000000000000001
R12=ffff88800b712140 R13=00000000f549e000 R14=00000000f549d000 R15=ffffc900047bfdb0
RIP=ffffffff8223fe06 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809780d000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5cbeba8 CR3=0000000025591000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004800000000 0000000100000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004800000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000117985f RBX=0000000000000001 RCX=ffffffff8b5d92a9 RDX=0000000000000000
RSI=ffffffff8da292de RDI=ffffffff8bf078c0 RBP=ffffed1003b5e490 RSP=ffffc9000046fde8
R8 =0000000000000001 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000001
R12=0000000000000001 R13=ffff88801daf2480 R14=ffffffff90824cd0 R15=0000000000000000
RIP=ffffffff8b5d7d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809790d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080030000 CR3=00000000741af000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000000 RCX=1ffff920006cbe24 RDX=ffff888021188000
RSI=0000000000000000 RDI=0000000000000000 RBP=ffffc9000365f2f0 RSP=ffffc9000365f1b0
R8 =0000000000000001 R9 =ffffed10056faef2 R10=ffff88802b7d7797 R11=0000000000000001
R12=1ffff920006cbe40 R13=0000000000000004 R14=0000000000000001 R15=ffffffff8bf0a251
RIP=ffffffff81bc52c0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe63358e300 ffffffff 00c00000
GS =0000 ffff888097a0d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055f255b63000 CR3=000000004b488000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000003000000012 0004000000080024 0000000000280034
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000059f 0000001800000000 0000000000000000 0000000000000017
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000806060177d2 010800020004c410 0000035d00000007 0000000100000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800089803000400 0894030002000892 0300020008900301 0000020806088803
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004000884030240 a080820008820302 4080808200088203 3002000880030880
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0402900314080002 8803020800028003 01a008002c800200 0800060202a80780
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 020fffffffff020f ffffffff020af208 000801749c000800 0fffffffff020100
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000280020a080006 0402cc00080004a0 0300080004980300 08000490030fffff
ZMM25=f0c732edf0c732ed f0c732edf0c732ed f0c732edf0c732ed f0c732edf0c732ed f0c732edf0c732ed f0c732edf0c732ed f0c732edf0c732ed f0c732edf0c732ed
ZMM26=c03dc353c03dc353 c03dc353c03dc353 c03dc353c03dc353 c03dc353c03dc353 c03dc353c03dc353 c03dc353c03dc353 c03dc353c03dc353 c03dc353c03dc353
ZMM27=3a3f1d0d3a3f1d0d 3a3f1d0d3a3f1d0d 3a3f1d0d3a3f1d0d 3a3f1d0d3a3f1d0d 3a3f1d0d3a3f1d0d 3a3f1d0d3a3f1d0d 3a3f1d0d3a3f1d0d 3a3f1d0d3a3f1d0d
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=840c0000840c0000 840c0000840c0000 840c0000840c0000 840c0000840c0000 840c0000840c0000 840c0000840c0000 840c0000840c0000 840c0000840c0000
info registers vcpu 3

CPU#3
RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85269d55 RDI=ffffffff9adc5de0 RBP=ffffffff9adc5da0 RSP=ffffc90006d9f400
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=000000000000006b R14=ffffffff9adc5da0 R15=ffffffff85269cf0
RIP=ffffffff85269d7f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097b0d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000057bfd4c0 CR3=0000000076639000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000