last executing test programs:

3m13.637475881s ago: executing program 1 (id=1807):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
pipe(&(0x7f0000000080))
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00'})
syz_open_dev$dvb_demux(&(0x7f0000000140), 0x0, 0x62400)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x30, 0x8008b}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x40, 0x1)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x10400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r3, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x78, 0x0, 0x0, {0x0, 0x7fff, 0x0, {0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x6, 0x7, 0x200000, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r5, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)

3m13.636368012s ago: executing program 1 (id=1809):
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000000)="480000001400190d09004beafc0d8c560a8447608004000000000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x48}], 0x1)
r1 = fsopen(&(0x7f0000000280)='pvfs2\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000340)='c:::\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
ioctl$sock_ifreq(r4, 0x8922, &(0x7f0000000080)={'dummy0\x00', @ifru_ivalue})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x0, 0x0, 0x1, 0x1}, 0x21)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x101e01, 0x0)
r5 = epoll_create1(0x0)
ustat(0x5, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x20000002})
setrlimit(0xb, &(0x7f0000000200)={0x4, 0x101})
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r6, 0x84, 0x80, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e23, 0x4, @loopback}, @in={0x2, 0x65, @remote}, @in={0x2, 0x4e24, @remote}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x35}}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x1a}}], 0x5c)
sendto$inet6(r6, &(0x7f0000000380)="c6140c12e76abef199ab946eb72f39a28c885d8b62eb4f072e3fd67bb664d1f81f4b689a80b8f47b581fb97209aae7869f2c300c888f7a44406bef74e739de747a9bc4e909c2a5e355dd6dae138bc6c90779390a5413158cb2e16b969f32b7a39eafbe8d12fbb8666fb3038be1413cb68fc18a3fbdb69af037d4a39f3b5034e60bbac4c553e6f4ec8e0c609474f5d878b81bb387263875def9eaad4c", 0x9c, 0x24004055, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @loopback, 0xffffffff}, 0x1c)

3m13.60749735s ago: executing program 1 (id=1811):
syz_open_dev$sndctrl(0x0, 0x1, 0x48001)
r0 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r1 = openat$proc_mixer(0xffffff9c, &(0x7f0000000380)='/proc/asound/card0/oss_mixer\x00', 0x9800, 0x0)
ioctl$NILFS_IOCTL_SET_SUINFO(r1, 0x40186e8d, &(0x7f00000004c0)={&(0x7f00000003c0)=[{0xffffffffffffffff, 0x2, 0x0, {0x9, 0x800}}, {0x8, 0x0, 0x0, {0x0, 0x10001, 0x1}}, {0xb3f3, 0x2, 0x0, {0x6, 0x3, 0x1}}, {0x2, 0x2, 0x0, {0x8, 0x8000}}, {0x7, 0x1, 0x0, {0x8, 0x80, 0x1}}, {0xf, 0x0, 0x0, {0xfffffffffffffff8, 0xc, 0x2}}, {0x1, 0x0, 0x0, {0x1, 0x9}}, {0xa63, 0x2, 0x0, {0x100}}], 0x8, 0x20, 0x3, 0xfffffffffffffff9})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x5ede4a12)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mmap(&(0x7f000089a000/0x2000)=nil, 0x2000, 0xb635773f06ebbeef, 0x810, r0, 0x0)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x2, 0x0, 'dh\x00', 0x10, 0x5, 0x2d}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x5, 0x54}, 0x2c)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x880, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x400000f3, 0x0, 0x9}]})

3m12.025571865s ago: executing program 1 (id=1818):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_OPENQRY(r1, 0x5603, &(0x7f0000000100))
sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000000640)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0xc8, 0x1, 0x7, 0x600, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFACCT_FILTER={0x14, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x5}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x80}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x4}, @NFACCT_FLAGS={0x8}, @NFACCT_FILTER={0x1c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x80000001}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xe041}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x28000000}]}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x5c}]}, @NFACCT_FILTER={0x4c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x524}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x4}, @NFACCT_FILTER_MASK={0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x6b9}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x9}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xb}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xab37}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x9}]}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0xc8}, 0x1, 0x0, 0x0, 0x40}, 0x4)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWSET={0x34, 0x12, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0xfffd}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELOBJ={0x34, 0x14, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}]}], {0x14}}, 0x90}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x80, 0x6)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r5 = accept4$alg(r2, 0x0, 0x0, 0x0)
read$alg(r5, &(0x7f0000000cc0)=""/4084, 0x835)
sendmmsg$alg(r5, &(0x7f0000000c80)=[{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000000c0)="7f1ad71c5e1e2ffd65015711202c22a1", 0x10}], 0x1, &(0x7f00000004c0)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10, 0x20000850}], 0x1, 0x4000080)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_PUBL_GET(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r7, 0x8, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20041}, 0x4)

3m9.08041851s ago: executing program 1 (id=1820):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e21, 0x5d2, @mcast1, 0xd}, 0x1c)
listen(r1, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r3 = socket$netlink(0x10, 0x3, 0x4)
r4 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
r5 = syz_io_uring_setup(0x370a, &(0x7f00000001c0)={0x0, 0xfffffffc, 0x2, 0x3, 0x2cf}, &(0x7f00000004c0), &(0x7f0000000000), &(0x7f0000000000))
io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r5, 0x12, 0x0, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r4, 0x800442d2, &(0x7f0000000280)={0x3, &(0x7f0000000380)=[{0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @local}]})
syz_genetlink_get_family_id$gtp(0x0, r3)
socket$phonet_pipe(0x23, 0x5, 0x2)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000003680)=[{{&(0x7f0000000400)=@in6={0xa, 0x4e22, 0x0, @local, 0x6}, 0x80, &(0x7f00000019c0)=[{&(0x7f0000000600)="65cc0171e85fa3b922e85e", 0xb}, {&(0x7f0000000900)="c18209b38416d08cd7ac7905b2cd09fbabc57affffc66cac5b55a15897a74ab8ec42e31e2f0bda691dc0bd5f63909be46ee9f2486e3acc10b3804c1195800b554154ea7fe69126f262311ec7d16e43543143ce6e44a0aabef590e564aa64de6236c7665cdb9e990f63decedf6a79f7b1df79e23d674612d6d8dbd2355b5007f81837e61ee77073972827148d08712b6e02699a28ba482e78704495c4d0e7faaffdb172f9130b37c22a2159172c34510db9e51f2bf75c2ac416ea2e3a89ed2c46af2eae7312e87ceae81cb99f95259ad7f758d9d0c0c37c0a73bdf2dae91ffc7778a6f846940181f831dfbc53ee04b6c4031a8fdd1ab1bf5f389976e34351b7a9fb32632ff6ae12ea5abed33d5664643f1db0c397005fddc9cf086e9b8444a4a1ed1c4f1ea32c9c7a32e754f89972c6a6c0cf7c8bb5cbf848b15bde43d8f5c30ced8adbe99d5d4bdcb94675e11ddeaae6084aef2f3676b230e795f8d29530ca598bb346aad7a2f6abad2970dba531f0ed487f703d5d8dcc7e43063b61b168862ccf55ce8adb58c010fbb9ed02603830a0ed92fe49762049e16a8a298e7f7d587b40d1ad82ce71f118e1e5f3f35342f45bf81723f4331530eebd57338cbbd057e19b691c85624bb8d2fea90ddc0e6af305356c2cd83d175b4881c4e3e074fbdf85c1548cc0fc5b5330311aff9f3cd49f24ee363f1a3bfd21fa68bf48b548d38a129b44904ba8e8994c024aa831a56148146df33655c08eec97d072cf2b917141f6bcf6905712cffae760bb4e23a5a97b44624d1650b282cb3d236c49e281f6c104c8dc6b412afbcbb78d93b7b0b735a759185256dd5b86bdee96dc2ed4cbff986b6912fe734506028adc619aaba09e2b751f06b24671434f51004f810783efeadc302c9d9f4837f6e93f01669ef24d4df415c19e3cc5a869749048cb83826c8e71f4d812e5da9d13ab138952fafdc3d18abf0e3ff223792fe6a9c64a9e5732a42a225f73ff92cc2594cc8c379d05b281375b7ea784cb752290aed0df682d15630b3c1c8a1448b1af836f9551eb52a069e2ef5c7c47092bd4c374c7decf8637849dd6602f522573c04b1bc2d674e999e143f8bb6f87a7d3adb0373184321fd2a7f7421c66493d3d79d4b48a1165502c49394e95c6511b8fda6da452953743a120f4eb5b94aa52347afc1ddfbf38e637bbc51f58ba85f2e95b03510377fb016fdea28c7b824c8b6e7018ad6a1985382f3fb61c2ca9fed322cfd2924bfd1eef453f19926e2456720ebe813954471b7a4996aaabacb8536b407fa8451e443e93b5593a7ff1ab3b9a118423ba0629e8612c5397bbe407495b8dcdfa410b5be72bc71c5d3e05b917941924dd0f1aa1efcf4720eda9929cd08c5f4b699b08eee8068cde508d2a0883dd8c861d4a9cd23fa05db6509e3b65013492921a0e9924d169aa1caab39cdf4bb8fa44b5a968ba32127a927cb4f954636856617ea34e4e9145417b7dad1540d2d360a6ab5a440e939d12d8dd646ff4a4619885fa99976a866030b20a8ddb56c3ad6fbf0c88a3f2d10ce3c60e2a2a76cfa8742ee3bb6594070b7149560aafa4626e8c365d4df9341d5c49834c95c3d043db7805408a7d95abf67a26fbacad84bccdcd09308de16fa2c76b89a266a8bfd7d93d4be1ed8236c8113c4e5f8616ede24f36f80c3bfdcefc733a0e718cd5ce07c258ff1bffe8daf4e8fa98bca9b9574c4f5e17aa5cdbb7fc86563d3b63f04b2b5be46b242c902225deb924501a4732e40883498a6a01a6e0355381f4122b67ce2b46001665151f55ac2fcfab28b021409e473ea6a3619321943a35dbb9f38e02c4e8e1ed7cf3061165b7a5b5dc28f9e7308deb2e0bdaeb5444c679d6fb559a0b48f5f1547c39ac3ba8001e15faef833d55101bf590eb83bd27ca12a166092260ef823234d36673780890809c6e5a7d9c4268c049a592da7ea1edb442127a374c351b3d6d8ed22c53f00441c568fc0c0d80554db9ca9be2e6d73fb4759173fe9f4ba83bae832319b243e85f74fefb53120b533a68c1adba1dffcc026db7409ce0ccaa394910b3f8cf6b52dd9aed0e225a753270ad85186e122427b0b5e952b82a6e1f30aaf659f9a741c66fcfaa8847be391965a47874ab9c6f7464d0fdd29b9d25872b8ea9af403a968f8d00e5be6701dfb069bb1c8ffe8182ffc68a8f2ff97ccd6c427fb1ff49bfe8b19873e1720a231ce8c5f0081ee3d65985a44f4878f985467bf68736f9c3f2e02317070004d87798ce133cf14f794d995e50bc5060f0b7cfe82b2a8eb4bdec684374c63e4554db5a3337dc9d8d9985f39b0d3596c2bde5f3a4e76397f4241fc01c6a6258524c0baddbc797b19c65c966c8e2a6345ca06da60550e65035224317894a4151e836ab0e0bb4c35275f4259509f68a9f74cafb873936f6ce56b5c68e49230c1d5ca30b6c0207874245d05519ef9e735dbe51fed37a73fb2a1bc4648d4a225d636d0f86f87850be8c65fbc112cb69d6776a6020fb84fb5327af3cbdd9bdd3eae6eab4ead31e94678c77abb375a5001ad6b4c5295adfcc69a4f784e67c1abb6f44e67c49dbe5179e5a69fbd01525ecfb642d9d6507880df2812a43c18f7dd5be977b5d01088f066089dddaf84562172a3267d204be99e5795211a4257c6909796c71a08fff0d8ece8b22d651269d1f2db9cd4819c33c21b4d0a49eff3c9951e95d8fa9ee73ded3f23e834868e639f365b7f25d95009e3044d05dd80ec984dddc95b79af57ec2fae0d2d3f2490d292bb14b7348252e4140872ac5eefdb616a664e41c110d644783dc88a9d456b3438c358655a8d926a96f965a6f99c05a5bb406706accd15320343d960d029ba441c0b3d0610d5b2e3327d3e1a5173ea9723f68d1ca7c6b7435edbc00e1cd3c8adb2b8b2b83cb80950d67a41a84471706523fee28f80f3b5bca8c51811209a80d2dd0a5c2fc11eb690c900df754103d9685f59784acebd67f6d2c86672dc7b236f44ed29132188389341eaf10c9177087d362fde99969b1b4285402085092262442f498a966ee6efc418c40cdd5e1be02be1001a0c4f16502892c29d2b37af884e1e899625614f06969660aec0175298bfe40f46a8f6af66314db219449ab726d1a402e3d856f69dea9ec88958fc05a8d81f069f7a04fa358651ede14c34ae299c34b3c27a20104b14bab1ad0adc995731da5e487d36056b4ee412133bf38ff883c01e96310d772d7a3068573b9501925ef83119c070d1c66e2f67948d6caad489ffddfdc9cc603a5ab2bbc12b5a85c85aee748e8ce8e37839d95aaeaeada6106a4c69dac7af6e2b5cec5b76d467797f3308a3312d1820a64b9cb1c73f3152208005c6c01e4cce75b7ac05336a3eaa0700ade34bd451deca11e9baa27bb7d8d1588ed38b2afc3c4908091f8f98c370f41e0b2387f25afca5413e0e7a9c9a5f6e4efba752f3d2af8ed0f7cad5315750a765a9f8015bf581d7f6fcaefe7c6fabb8ba329735c3c93288f498d2d33386e27db7693ad9fdd156e776c7778aa6be1e6f7acafa9373fb913df7a1aee82b3c3877beaada8ccd09074e3853dea9e1915afce66835cd6e56961f5e532117f0ccd0184661996a0fe065535d184d95865025d4351a0ce85e42c3b5ea769213f37d381c3ef04e2fbeda92a4b2887b465e70c5c9f11e36e9e91a7b5e1f333ef1983ab34bcbbab3607784c4a02ea0c5cc46fe21cd9b3e45b95202db13e8b8dacc18a32bf9548682d377e50411d4937c13503e0757b9b960ab888c6b2fa08c2b62f6ed383df55761630c1ea1f8e1dd2130b0335453c12857435911018d6e521d83bb9073b7cd9863f211a14a9661995e3db1bc8abfec42d31b32d42e1519d1fdab8ff37828eeea0130dc5ee4850e34b967dc55f9369cf0f3c138e4c11b004ac454d8b2ae3a508ae4f6e28a5bb9d0ba3eca1fdab4868648410ffe1c0fade498f2aec1343a1ae0f5aeeeb41dbcc75d007c65b2a7e3a1bc594561c1067e4fe22591a6818bf8fdf33ba976ed48785a17c857de58a196d440e2b2b84fdf25b75f64357612e7c7f7a45f56b42fee75ca3221467ae51823471bda40f47dfeb23ee096f7f161588080b5cc58062a33c93933504d6838c387a5f922745c9fd82f5ec49064977dd60652363e47ed947c049508fb2ada00acfda27a6f3239027a3a0ed54d43f59829a2875c7459846b89b74d2a10294cb50dc0f3cd8468824ed027024266dcb87c5bb39b6ddf9eb77d11ae4ffed484696368c4c0b7c2652c3d08a7fc9e2dc4423b4d4a1731b088f62c258a12490eb550ff2820ed3607ddd8c982192cb19b9f702160822a208e499cf57fe406aa93977f0e6cfcf44d883b72b7f696b1603fd3affca5159b1ae723434317edf51769a048649ffb73c8eddf2d728e767ffbb6b0831a8119457f2b7f8fc1571d5e0b3e1e17177de4be6fea1cc51ab5fdc42d63494737c53079a8a54440d4d3520f473e2c8e51872cb59ac2a4a648edf9b3bfc56430d570dfb6a637422337328cd1e73fd6c31833a007707d1820f81fca23d837ecc304c3e8c95d3dcfb9bdd72a68afab199ae3b9f73dc5a22dbb87369d9005f4ec31ffd107157a4067e06742e1fba5be8a2cf673b36d44de8b1743d8414ecc2a378b56ab96ca281925714adef199c9bf5e74758f911b4f8903e2172db2f864669260e162effe85aa09ef8a14287ac60fd9512cbc207e6d03998c7123950de8984f27627695dbde5eb907d19c7ba4e61997a005f5dbb29c1eb86c380432fe3fdbbe88fb02da5c0ebdd4b1a7ce48573a2a80c05ddf079f9db02b6d9bd10501f6fddcdf5b4188d5b41ec8d0d2d78d5ac4a9d8fbef1b76ecc2fe17155753233424e8d4be0a5a852ff1444991fec148018c17a3bcd26c45209968ff92025ce9dc461cb5f9bae02b4456c721380f6dea0c551eb2c1db380b04939e223da870060aff97ac7ae3743aad0a1da847ef507fd0f0435d25057786f047fe9d07c886a1b68c0a55f802fcd5e9ab9ccc1f83587d4a39f6f44828544e11295a5237fb74edd6d71db4e6ae2806fd8fa91d7f6bce7add088da3477eb256ad72ee2c48cfa1266ae192c855bcd0479e5dfbbb069e1f7393d27d01b28037474d9e338ae610799909c2ba5bd2fd501d0d631514d491b2267c0cf53cadb12bf00063dc86ae33b0faf9f2d99aa230eff9381dd75d20ed7fd7afa58e6ceb4c4835d65def8170d77988ed8a9859d59104b691d3f6415a2d45483a9dd521394e05ce5e0dc061bc20753143c83c9ace3dfbb1b45c08e8b0f92fbaf51a5423cd67afae9b2e739c4bee0d32076fae55ea970ba1a3a9e7eef710fa7f5d392c15fe021039d57faec3f135d9043f9654843295e53e2d278a21c43a456888e662dd6e2bb2f44656b3bdb42f5d7c457226ba090c111dab5ef904100f15ed9d81f0b898a09565dc9fbd5494a6096e70d1f4cfa32875c7d0fdeade839bb1accc196bcfbed9604d8c6cd912feeedf6e3fbe19f8685e27016f66c3b4c5c5020362c9112ed1529e7b5c9676f72c0244aa8ae29f562e00911a75aa7dcc00c25c2bb0f9cc2ac75e515e563bb753ce54728dc047f4a5df61d224043516f7530d532e7ef722485fdb7cb742b08c52796e503388165c5e2c4c1861cd0be272098a68cc7b7e590cf89d458b4f7487767481fe21a1f2e7238f1ef07552a9f7547f236b57f6b148aa45060df874a1c0fd365a343ea4461dda204897402b19b940b2c28dea80474a0166aeeb15c786172c24212411ae95ac5c885e56f75b1d87fbc", 0x1000}, {&(0x7f0000001900)="9d16434f895310715b1397126bc801520dd352e7bac1ceb426fea47f543e525da5ec43f19d52aaf660fdf8ae2971a3d6828d67f53d2bbaf49e92928e8a6476c19a836b25220bcac483ac9b8fba04ab2e8ea707e07dcf9698bfaf5a3e662fa7d21b31885e6d4d0674e8d63d6c68bb1e8c70d53b221d797a5ffac51f6bdf1edc806603d49a72616a91fc247b00d07cca65ce12952f53", 0x95}], 0x3, &(0x7f0000001a00)=[@txtime={{0x14, 0x1, 0x3d, 0x81}}, @timestamping={{0x10, 0x1, 0x25, 0x2}}, @txtime={{0x14, 0x1, 0x3d, 0x3}}, @mark={{0x10, 0x1, 0x24, 0x6}}], 0x48}}, {{0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000001a80)="8867da926c1a853f469add7306fd26fc744d6d3422b682bf8ac48e29f0b1e3b59bcafcc6ae31b2a7b927edc796757283616e54deb7b75612803c1b2ccd2084f62509f61d06ed81543dc193c02c979c427fce225ceb9c3d9da6410c97fca1f8fa0e2bacfa9287847a70f725a095b1c8dcc46b0b21eae393b1ce95570b35871bfba58dc9d99f15f1cdc72c65e9ba3dd8f85afe5a0ace6ed17f3c3b19bcee0bb5e41da479723cdd90ab638406adb3916a8626f361ba85a489c6c68fe03a7d8391f4a98483c68325a523d5eb4e0792370fb37e5325c7574f5acc14c07c47a3", 0xdd}, {&(0x7f0000001b80)="d28188685fc85c219c0092602582457c42b4510a16ef16338d61fbedfd3610aa052b1d34365935301e6365c8b6fd0599f26ecb9608a800cd67229e5cbd64f3441fb590bea398e757f172b4014e75ae9b8110f5058b", 0x55}, {&(0x7f0000001c00)="abf1a8528d7839330a7e3f1205d74ffc9e47f300bc9caa594fd9013e956e35a13758e1c23364898c49d4f9c1d1328f745326ac2021a1f159d99575c80966ec27be5a3b877d38b65150c61ca7b5f610bb8f7799ccac4cf109ad02062b4b6257040fe115c0af82c3bd68d0b032898a41f215d9525c0b785fc55579b81085a7a592fd705759956e52393a4cf2063ad9e2dc246c7b242c1bd53c", 0x98}, {&(0x7f0000001cc0)="7c75ac9649f95879b5fdcf62c9a71ce5b856e1b4d08daf43e86cc666eb19552d24f819cd074f2ba79940a252db150164ac487c1ebe06a892844c6a84171fee025aa09e1453bd8f38a1ead37780f8ed33ea02e7c7dd4ecd2673f730c55ed61bd90cbe7314b1bdbf844930a2d0ad2323b7725c9a1781e56ff97c822d6dbdf698d8d8", 0x81}], 0x4, &(0x7f0000001dc0)=[@mark={{0x10}}, @txtime={{0x14, 0x1, 0x3d, 0x80}}, @timestamping={{0x10, 0x1, 0x25, 0x7}}], 0x34}}, {{&(0x7f0000001e00)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e22, 0x49e, @empty, 0x6}}, 0x80, &(0x7f0000001f40)=[{&(0x7f0000001e80)="22d2fcefbc17c0a5a5d35e0c0890f7aba367ec31421613a3200c18cdb695c6a2a242574cc5428c8a2c9bcfc728e83421704efe04726df002734a98092216892311ed0a5d4a17a4466ddde9cd8bb1717b77b1ab47167bc9b5e32191677a5d765f4133f3d5c7bdc80227b3272861f00ca66c32f321aa848f92c86a0188c5308b56d85b2bab2878cf77bce950d243e44de6e31008dd5f2e9ba3b5867f46c2e93f0b97cbd8f987f5d31eb48b3a", 0xab}], 0x1}}, {{&(0x7f0000001f80)=@tipc=@id={0x1e, 0x3, 0x3, {0x4e23, 0x4}}, 0x80, &(0x7f00000035c0)=[{&(0x7f0000002000)="1361742ecd6172cda5e2e15cf6b393d872e913cc0f317041525ab792f24295", 0x1f}, {&(0x7f0000002040)="8bc074165ae8149eda70894bb39e7fb36a76abb45face38cede39e1281a0d79d18dce7f8c353b997f7feaf4b3523c695ffb8ababae09a7d8ebab5f04968a91f014e2b57b4e6eeeeda764d5a6e0d80f17854cfecd5e3c7b0ee14291f0f05d4b0366ca7cb08431e171c5aa8f25c0af9bdec1ee23d3fa881b290b4723fd9c50c47dcfe12f83e96b893f8b1ff1b6b693308d7834b03e691b76ca5e0378aa53e7fffe", 0xa0}, {&(0x7f0000002100)="12a61ac2a1e3af6ec97ee563c5c17df7c333ae6850c90a0f2bde194a381c1f2a331690bc42b8c0949a3bc32f12b8d70b6dee2d408be1b2809035039eed0c827c52a322e4dc59e9604b1f513415", 0x4d}, {&(0x7f0000002180)="4a7f31d34d7566a96038abf760eb6e6dad46c4ffe293587cc5b915025ad476c25bde3737e2c44e68b91111749b8d76351fc81069a211371440e32ec3fb548a388110443928907381ddb8f31a5f6ed7f4bcdfa55b7113303bd07ec94abb5c823cd028caaa02b88e242f07deb2c620a1c452bf78755d5e7d", 0x77}, {&(0x7f0000002200)="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", 0x1000}, {&(0x7f0000003200)="840416266d190bee1f92d564553cb3b8ccc55f86ac670769053b3d9f96c281502d77c0566a5a76b96ac852f55979c1a600be96d8c0b2054c6d89303dd62097013a", 0x41}, {&(0x7f0000003280)="217151a3d2c6b32659b90d56704e23febd8006a14b628faceaf3d2fd5fee13332af9de52585011800dd7c75fca9db5bbe6ae16d113889bb30d489445e03d9b5ca93697673d484f7fc192b53aa6b1083bd6977b12eb6bdacb0cfbdf36a5b617c53e93073bc8a35cdaa94480fbf697d207fc5bf8a519934785160f3c305f20319b7d1216e7e367bc36e4f21f159d60ed249ebc314d1a86242a03ceecfbe7f3d2c8688542bdb459b9df306d5ab2cbb0093231a6eeab777fa0a8099763fb8430eb71b498b36f6f5f03aa6d02b5c092eba167711f81c6aa2bc84937d52b", 0xdb}, {&(0x7f0000003380)="6ce1d83d3db3e681a6a202ea69dae0ca27f1b08ed9408970eb8b952337c2a7669fb4f284bfe0d51eb327dff990752d737d8825b09bbd8190c4afbdc42e64bfdb4c5a3110809baec45bc4245ad0eb13e6b0cbc6423e31b2c5de4367ae08a6b71d1500e84a5596263b1f83e79786586cd87fabe404b805d7470fd0ea634ba1f03df41dfc69", 0x84}, {&(0x7f0000003440)="73c012a7aacd2ccce51816e0da0f7b6d198ac0ff50311a23fd95656e0aea0e2570464479afd64df8bf21dba41e4af3cc2b5b4af82ffd842bf786725a7385ff8e2b0d9cdc04557d2a959fb45421e49be9938eb26abdb5d4aa76251b619c6f2b15d897fedd2cd9fa47cce9bd66c7b13f385c5ed00fc6de21be71e8331640ce86b059614d533222705db05405dacd1f88c3035e75af15e9e66422b7eddb434c75048fc5c344bc55b1c697646f6c664d5e6720f309d0753b157a4399eba2319eba5056f519eb707dfb2a1f62f8c1397985d7ec64f287a6", 0xd5}, {&(0x7f0000003540)="d33c1a263cfca9fa04bb38bc295409654df6d5b3ee96c3205778f6a37e99c1c178b4a11c35a88acb8b6e6989f8b9bbef143bb29e030a48a6651fab0679a82d1bdf18430fbf2d68cc7f9a9897c7affcb8d9b87c1384dcfe97c024538d0df4b78a941ccb", 0x63}], 0xa, &(0x7f0000003640)=[@mark={{0x10, 0x1, 0x24, 0x8}}], 0x10}}], 0x4, 0x4000000)
chdir(&(0x7f0000000100)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="796112000000000000007e0000001d15ac45cac7d9fbd4486638a478751dc054cceef4423bbfce2349fa0731d463ff3ab34244f0cec0fa6e1ad1379bb4be855e80d1bae275f7bc90459f7080e73bc24fd05abdd71ae069f12cbcc193a329ae8bb18552eb4f09c2f300e9cf3cb786c3143ca6263b731bb860da49a9abcbf8024dadfcc67cb235c85be2e8043afeb97a1a59a0bed6c5c6f79d3e228a64ce5945563be73c7bb52351a4b7e017a8a056f65093cce95b8100118ae38a5b22c222cfe8c0a5fb2f1a798aa790abb18330f226a2c02fe385217e82491a4cf7b5890c0a731c3a1efad46c27ee10f4fd88"], 0x14}, 0x1, 0x0, 0x0, 0x8}, 0x4040800)

3m7.710785027s ago: executing program 1 (id=1827):
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x2d)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x0, 0x8, 0x2, 0x3}, 0x0)
mkdir(0x0, 0x22)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
kexec_load(0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x7ffdd000}], 0xa0000)
unshare(0x62040200)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f0000000100)={0xfffffffb, 0x0, 0x40})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x4000000)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, 0x0, 0x0, <r5=>0xffffffffffffffff, 0x1})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000042}, 0x90)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000480)=ANY=[@ANYRESDEC=r5, @ANYRES8=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYBLOB="5b5e3d9538917bd42e5960be0c7df1d10b11163d7a7b6db79c0edc628005d76d0184614fa0ecec834529f89cda8b0e83c0494a7476c1e503d446779c46727608a5139a8937"])
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000000)=0x14)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x8, 0x8}]})
close_range(r9, 0xffffffffffffffff, 0x0)

2m51.573812492s ago: executing program 32 (id=1827):
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x2d)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x0, 0x8, 0x2, 0x3}, 0x0)
mkdir(0x0, 0x22)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
kexec_load(0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x7ffdd000}], 0xa0000)
unshare(0x62040200)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f0000000100)={0xfffffffb, 0x0, 0x40})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x4000000)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, 0x0, 0x0, <r5=>0xffffffffffffffff, 0x1})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000042}, 0x90)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000480)=ANY=[@ANYRESDEC=r5, @ANYRES8=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYBLOB="5b5e3d9538917bd42e5960be0c7df1d10b11163d7a7b6db79c0edc628005d76d0184614fa0ecec834529f89cda8b0e83c0494a7476c1e503d446779c46727608a5139a8937"])
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000000)=0x14)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x8, 0x8}]})
close_range(r9, 0xffffffffffffffff, 0x0)

15.537570197s ago: executing program 3 (id=2325):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x211, 0x2}, &(0x7f0000000000))
r0 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x2503, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000180)={@private0, 0x7fffffc, 0x3, 0xff, 0x0, 0xffff}, 0x20)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x28011, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000140))
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0xb8}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000280)=0x3, 0x4)
syz_io_uring_setup(0x7b, &(0x7f0000000540)={0x0, 0x3bce, 0x8, 0x0, 0x313, 0x0, r0}, &(0x7f00000005c0), &(0x7f0000000100), &(0x7f0000000000))
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(0xffffffffffffffff, 0x40146f2c, &(0x7f0000000040)={0x2008, 0x0, 0x1, 0x0, 0x4})
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000740)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r5, 0x550c, 0x0)

10.306496235s ago: executing program 0 (id=2341):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}, 0x3, 0x0, 0x2}}, 0x2e)
ioctl$COMEDI_CMD(r2, 0x80506409, 0x0)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0x28}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x7, [@struct={0x5, 0x2, 0x0, 0x13, 0x0, 0x2, [{0x4, 0x1, 0x8000}, {0x4, 0x2, 0x5}]}]}, {0x0, [0x5f, 0x0, 0x0, 0x4f, 0x2e]}}, 0x0, 0x43, 0x0, 0x1}, 0x28)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newlink={0x48, 0x10, 0x401, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2500}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}, @IFLA_GRE_ERSPAN_DIR={0x5, 0x17, 0x5}]}}}]}, 0x48}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000140)=@bridge_setlink={0x40, 0x13, 0xa2f, 0x70bd2b, 0x0, {0x7, 0x0, 0x68, r5, 0x10940, 0x27025}, [@IFLA_MAP={0x20, 0xe, {0x386, 0x4, 0x1, 0x5, 0xca, 0x9}}]}, 0x40}, 0x1, 0x0, 0x0, 0x40048d4}, 0x40000)

10.033843093s ago: executing program 0 (id=2342):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_dev$sndctrl(0x0, 0x1, 0x48001)
r0 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r1 = openat$proc_mixer(0xffffff9c, &(0x7f0000000380)='/proc/asound/card0/oss_mixer\x00', 0x9800, 0x0)
ioctl$NILFS_IOCTL_SET_SUINFO(r1, 0x40186e8d, &(0x7f00000004c0)={&(0x7f00000003c0)=[{0xffffffffffffffff, 0x2, 0x0, {0x9, 0x800}}, {0x8, 0x0, 0x0, {0x0, 0x10001, 0x1}}, {0x2, 0x2, 0x0, {0x8, 0x8000}}, {0x7, 0x1, 0x0, {0x8, 0x80, 0x1}}, {0xf, 0x0, 0x0, {0xfffffffffffffff8, 0xc, 0x2}}, {0x1, 0x0, 0x0, {0x1, 0x9}}, {0xa63, 0x2, 0x0, {0x100}}], 0x7, 0x20, 0x3, 0xfffffffffffffff9})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x5ede4a12)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mmap(&(0x7f000089a000/0x2000)=nil, 0x2000, 0xb635773f06ebbeef, 0x810, r0, 0x0)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x2, 0x0, 'dh\x00', 0x10, 0x5, 0x2d}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x5, 0x54}, 0x2c)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x880, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x400000f3, 0x0, 0x9}]})

8.718260233s ago: executing program 0 (id=2348):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000000c0)={0x80, 0x6, 0x2fe, 0x0, 0xfe, 0xfffffff9, 0x0})
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
setgroups(0x0, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})
socket$netlink(0x10, 0x3, 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="4544f0fffcff30c000"], &(0x7f0000000280)='syzkaller\x00', 0x6, 0x1e, &(0x7f0000000300)=""/30, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000bc0)={0x3, 0x4}, 0x8, 0x10, &(0x7f0000000c00)={0x4, 0xb, 0x902c}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000cc0)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f000000c340)={0xa802100, 0x0, 0x0, 0x0, {0x2e}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_open_dev$tty1(0xc, 0x4, 0x1)
setsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, &(0x7f0000000180)=0x1, 0x4)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000004c0)={'syz0\x00', {0x87, 0x3, 0x1, 0x9}, 0xb, [0x4, 0x6, 0x802, 0xe9a2, 0x1, 0x0, 0xa9ba, 0xc1f, 0x1, 0x7f5b, 0x3, 0x4, 0x5, 0x10004, 0x2, 0x3, 0x0, 0x3, 0xe, 0x3, 0x0, 0x2, 0xd9, 0x2, 0x6, 0x0, 0x3, 0x9, 0xfff, 0x8a0, 0x6, 0x8001, 0x33b5, 0x1, 0xfffffffc, 0x0, 0x9, 0xb, 0xcc, 0x4, 0x80, 0x401, 0x5, 0x5, 0xfffffffd, 0x8, 0xb, 0x3, 0xffff8001, 0x6, 0x3, 0x80000000, 0x1, 0xa, 0x7, 0x8, 0x5, 0xfff, 0x1, 0x7fe, 0x7fff, 0x10000, 0x2, 0x8], [0x2, 0x1, 0x10000, 0x7, 0x9, 0x6, 0x5, 0x4, 0x9, 0x7, 0x5, 0xdd5a, 0x6, 0x5, 0x7, 0x8, 0x5, 0xcc, 0xbc1, 0x80000, 0x0, 0x5e81339d, 0xffffc256, 0xb, 0x80000001, 0x0, 0x0, 0x4, 0x4, 0x7, 0x8, 0x10d, 0x1, 0x5, 0x5, 0xfffffb66, 0xfb5, 0x2, 0x4, 0x7, 0x2, 0x8000, 0x7fff, 0x1, 0x9425, 0x4, 0x6f, 0x80b, 0x1, 0x1, 0x525ba681, 0x4f74, 0x7, 0x1, 0x1, 0xfffffffd, 0x100, 0x6, 0x10000, 0x1306, 0x8b, 0x10000, 0xfe4, 0x3ff], [0x2, 0x40, 0x200, 0xfffffff9, 0x7aa, 0x10, 0x80, 0x8001, 0x5, 0x0, 0x9, 0x8, 0x7fffffff, 0x1, 0x1, 0x4, 0x8, 0xa9, 0x7, 0x49, 0x6, 0x4, 0x5, 0xa3, 0x40003, 0x2, 0x0, 0x3, 0x4c, 0x3, 0x5, 0x4, 0xd21e, 0x9, 0x12, 0x0, 0x2, 0xfff, 0x926, 0x800100, 0x7c83, 0xd, 0x1, 0x4, 0xf, 0x81, 0x47, 0x7, 0x0, 0x11, 0x2, 0xffd, 0x7, 0x7, 0x7ffd, 0x7ff, 0x10, 0x9, 0x10001, 0x8000001, 0x10001, 0x6, 0x71c], [0x81, 0x3, 0x10, 0x4e26, 0x3, 0x7, 0xfffffff3, 0x497, 0x4, 0x1, 0x3, 0x5, 0x56, 0xc28, 0x9, 0x5, 0x5, 0xa, 0x79a, 0x4, 0x9, 0x6, 0xc41f, 0x5, 0x8b6, 0xffffffff, 0x0, 0x0, 0x6a, 0x9, 0x0, 0x0, 0x1000, 0x10, 0xd, 0x6, 0x8000, 0x53, 0x78d, 0x4, 0x1, 0x9, 0xfffffff8, 0x9, 0x7, 0x7, 0x101, 0x7, 0x7, 0x4, 0x0, 0xb, 0x400400, 0x8, 0x0, 0x8, 0x7, 0x9, 0x8, 0x0, 0x1, 0x8001, 0xfffffff7, 0x5]}, 0x45c)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000000314230c2dbd7000ffdbdf250900020073797a32000f00000800410072786500140033007767320000000000000000000000000066129cbdaaf92ea305126427a766b1c085924cd6ad57b03cfe9655f622d77d2aeea86454e08d702ca2d6392ca31ef21b722d78da5d90886bb0db32b0e33c89a5e901bb4e0379f25665d395238e6730ad37288567b268fe7f1586d588e526e7d727ec73b81279a75e879dd960e5107507609756ec582a8032a0ae41beb16ed972c66cc59029b79ace6666660cde28316ee23ff7ea64e39ae6d39b5f45f5ccf2adaffee80cc44776710ba5c2a2e806dcb0a1fd133d11902dea4f"], 0x38}, 0x1, 0x0, 0x0, 0x400c080}, 0x0)
pipe(&(0x7f0000000080))

8.702226013s ago: executing program 3 (id=2349):
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xfffffffd)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000380)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/233, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000780)={0x0, 0x1, 0x0, &(0x7f0000000700)=""/88, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000005c0))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)
write$eventfd(r1, &(0x7f00000000c0)=0xfffffffffffffffe, 0x8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r2, 0x8982, &(0x7f0000000000))

7.480243337s ago: executing program 3 (id=2352):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000080)={'pimreg1\x00'}) (fail_nth: 11)

6.887142575s ago: executing program 4 (id=2355):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x34, 0x1, 0x470bd2b, 0x25dbdbfe, {0x4}, [@typed={0x8, 0x4, 0x0, 0x0, @u32=0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040050}, 0x24000080)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r1, 0x6, 0x5, &(0x7f0000000180)=0x1, 0x4)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000005880), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r3, &(0x7f0000005d00)={0x0, 0x0, &(0x7f0000005cc0)={&(0x7f0000003780)={0x18, r4, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x4}]}, 0x18}}, 0x48000)
preadv(r2, &(0x7f0000001e80)=[{&(0x7f0000000080)=""/4094, 0xffe}], 0x1, 0x33, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(0xffffffffffffffff, 0x18, &(0x7f0000000000)={0x3, r0, 0x10, {0x100000001, 0x2}, 0xed}, 0x1)
getsockopt(r5, 0x200000000114, 0x2717, 0x0, &(0x7f00000001c0))

6.886956053s ago: executing program 3 (id=2356):
r0 = socket(0x11, 0x2, 0x0)
setsockopt(r0, 0x107, 0x1, 0x0, 0x0)
close(r0)
sendmsg$alg(r0, 0x0, 0x11)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000200)='dctcp', 0x5)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r1, &(0x7f0000000400)="02", 0x1, 0x0, 0x0, 0x0)
r3 = socket$inet6(0x10, 0x2, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="4c00000017001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0)

6.830057767s ago: executing program 4 (id=2357):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_dev$sndctrl(0x0, 0x1, 0x48001)
r0 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r1 = openat$proc_mixer(0xffffff9c, &(0x7f0000000380)='/proc/asound/card0/oss_mixer\x00', 0x9800, 0x0)
ioctl$NILFS_IOCTL_SET_SUINFO(r1, 0x40186e8d, &(0x7f00000004c0)={&(0x7f00000003c0)=[{0xffffffffffffffff, 0x2, 0x0, {0x9, 0x800}}, {0xb3f3, 0x2, 0x0, {0x6, 0x3, 0x1}}, {0x2, 0x2, 0x0, {0x8, 0x8000}}, {0x7, 0x1, 0x0, {0x8, 0x80, 0x1}}, {0xf, 0x0, 0x0, {0xfffffffffffffff8, 0xc, 0x2}}, {0x1, 0x0, 0x0, {0x1, 0x9}}, {0xa63, 0x2, 0x0, {0x100}}], 0x7, 0x20, 0x3, 0xfffffffffffffff9})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x5ede4a12)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mmap(&(0x7f000089a000/0x2000)=nil, 0x2000, 0xb635773f06ebbeef, 0x810, r0, 0x0)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x2, 0x0, 'dh\x00', 0x10, 0x5, 0x2d}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x5, 0x54}, 0x2c)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x880, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x400000f3, 0x0, 0x9}]})

6.740250496s ago: executing program 3 (id=2358):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
unshare(0x64000600)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
close_range(r0, r0, 0x200000000000000)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "a12600", 0x14, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x13}}}}}}}, 0x0)

6.182401538s ago: executing program 3 (id=2359):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x4e23, @broadcast}}, 0x0, 0x20000000005, 0x4a}, 0xd8)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x240087f9, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10)
r1 = openat$sr(0xffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$BSG_SET_TIMEOUT(r1, 0x2201, &(0x7f0000000440)=0x7)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000001100000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x3a)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, '\x00', [{0x40, 0x9, 0x7, 0x3, 0x0, 0xefffffffffffffff}, {0x3, 0x4, 0x6, 0x0, 0x100000000, 0x800}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
unshare(0x28000600)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000040)={0x4, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x1, 0x2, &(0x7f0000000180)=0x6})
close(r0)
sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x6, 0x1, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, ["", "", "", ""]}, 0x14}}, 0x48090)

5.670009851s ago: executing program 4 (id=2361):
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r0 = eventfd(0xfffffffd)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000240)=r0)
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000040)={0x0, r0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000380)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/233, 0x0})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000780)={0x0, 0x1, 0x0, &(0x7f0000000700)=""/88, 0x0})
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000005c0))
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000000)=0x20000)
write$eventfd(r0, &(0x7f00000000c0)=0xfffffffffffffffe, 0x8)

4.5768195s ago: executing program 0 (id=2362):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = openat$dir(0xffffff9c, &(0x7f0000000000)='./file0\x00', 0x10000, 0x1)
r4 = openat(r3, &(0x7f0000000040)='./file0\x00', 0x103181, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
setsockopt$RDS_CONG_MONITOR(r5, 0x114, 0x6, &(0x7f0000000680)=0x1, 0x4)
r6 = getpid()
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x19, 0x28, &(0x7f0000000ac0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4e, 0x0, 0x0, 0x0, 0x10000}, [@initr0={0x18, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x3}, @generic={0x1, 0x5, 0x7, 0x8000, 0x9}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r4}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r4}}, @map_fd={0x18, 0x1, 0x1, 0x0, r4}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4a}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}]}, &(0x7f0000000c00)='GPL\x00', 0x87b, 0x13, &(0x7f0000000c40)=""/19, 0x41100, 0x20, '\x00', 0x0, @cgroup_sockopt=0x16, r4, 0x8, &(0x7f0000000c80)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000cc0)={0x5, 0xb, 0x87, 0x1}, 0x10, 0x0, 0xffffffffffffffff, 0x6, &(0x7f0000000d00)=[r3, r4, r4, r4, r4, r4], &(0x7f0000000d40)=[{0x2, 0x5, 0xf, 0xb}, {0x5, 0x3, 0x2, 0x6}, {0x0, 0x3, 0x3, 0x8}, {0x1, 0x1, 0xc, 0x8}, {0x0, 0x1, 0xd, 0xa}, {0x4, 0x1, 0x10, 0x4}], 0x10, 0x2}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000a80)={r4, 0x0, 0x25, 0x10, @val=@tcx={@void, @value=r7}}, 0x1c)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
ptrace$poke(0x5, r6, &(0x7f00000008c0), 0x9)
ioctl$UI_SET_MSCBIT(r4, 0x40045568, 0x3a)
r8 = socket(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000580)=@filter={'filter\x00', 0x42, 0x4, 0x254, 0xffffffff, 0x0, 0x128, 0x0, 0xffffffff, 0xffffffff, 0x1c0, 0x1c0, 0x1c0, 0xffffffff, 0x4, 0x0, {[{{@ip={@local, @loopback, 0xff000000, 0x0, 'veth0_to_bridge\x00', 'veth1_to_bond\x00', {}, {}, 0x6, 0x0, 0x58}, 0x0, 0x70, 0x94, 0x0, {0x100000000000000}}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x7}}}, {{@uncond, 0x0, 0x70, 0x94}, @REJECT={0x24}}, {{@ip={@broadcast, @remote, 0x0, 0xffff00, 'batadv0\x00', 'bond_slave_1\x00', {}, {0xff}, 0x1231e48dc931f0a2}, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x3}, {0x0, 0xfc}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x2b0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
ppoll(&(0x7f0000000080)=[{r5, 0x800}], 0x1, &(0x7f0000000180)={0x0, 0x3938700}, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000100)={0x1, 0x0, [{0x140, 0x0, 0x1}]})
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
sendmsg$AUDIT_TTY_GET(r4, &(0x7f0000000880)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x10, 0x3f8, 0x100, 0x70bd29, 0x25dfdbfd, "", ["", "", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x841}, 0x800)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x14, 0x26, 0x301, 0x70bd24, 0x25dfdbfd, {0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x4004004}, 0x4000)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0x10, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [@call={0x85, 0x0, 0x0, 0xd0}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000900), r12)
sendmsg$IPVS_CMD_GET_CONFIG(r8, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000000e80)={0xd0, r13, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@dev={0xfe, 0x80, '\x00', 0x1d}}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'dh\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x5c}, @IPVS_SVC_ATTR_SCHED_NAME={0xa, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0xb8df4ba3b6c4db45}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x30}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8, 0x11}}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e23}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7ffb}]}]}, 0xd0}}, 0x800)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r11, 0xfca804a0, 0x8, 0x8, &(0x7f00000002c0)="b80a000500000000", &(0x7f0000000300)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x4c)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

4.453675659s ago: executing program 4 (id=2363):
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e65772064656661756c7420757365723a7379b5d1ef7a20303430"], 0x2a, 0x0)
r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
keyctl$read(0xb, r0, &(0x7f0000000240)=""/112, 0x349b7f55)

4.284240234s ago: executing program 4 (id=2364):
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0x4, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x2)
ioctl$SG_SET_FORCE_PACK_ID(r1, 0x227b, &(0x7f00000001c0)=0x2001)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=@ipmr_delroute={0x28, 0x19, 0x1, 0x0, 0x0, {0x80, 0x20, 0x90, 0x0, 0xfc, 0x11, 0x0, 0x5, 0x200}, [@RTA_MULTIPATH={0xc, 0x9, {0x8, 0x0, 0x1d}}]}, 0x28}, 0x1, 0x0, 0x0, 0xa800}, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r3 = fcntl$dupfd(r0, 0x406, r0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200047fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000002c0)='bbr', 0x37)
write$binfmt_elf64(r3, &(0x7f0000000f80)=ANY=[], 0x540)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_disconnect(r4)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009ac0b620110f2110"], 0x0)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r5, &(0x7f00000001c0)=""/238, 0xee)
read$char_usb(r5, &(0x7f0000000100)=""/178, 0xb2)
syz_usb_ep_write(r4, 0x81, 0x9, &(0x7f00000002c0)="28d36689fb2134111f")
shutdown(r0, 0x1)

3.627862477s ago: executing program 0 (id=2366):
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd32", 0xb)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000080)="7800000018002507b9409b14ffe200000204be04020506050e020409430009003f000ce0100000000d0085a168d0bf46d3234565360064030000120002000a0000005ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="680000001000010029bd7000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="4db20200201a0100140003006e657464657673696d3000000000000034001680300001802c000c80140001"], 0x68}, 0x1, 0x0, 0x0, 0x41}, 0xc860)
r3 = socket(0x15, 0x5, 0x0)
getsockopt(r3, 0x200000000114, 0x2710, 0x0, &(0x7f0000000000))
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffff", 0xc)
r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0x1b, 0x80, 0x0, @loopback}, {0xa, 0x0, 0x0, @remote}, 0xffffffffffffffff, 0x1}}, 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="18ebffff6700e97800000000000000000a00000000000000"], 0x18}}, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000006800e97800000000000000000a00000000000000040004"], 0x1c}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)

3.410153732s ago: executing program 0 (id=2367):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
unshare(0x64000600)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
close_range(r0, r0, 0x200000000000000)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "a12600", 0x14, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x13}}}}}}}, 0x0)

3.024595259s ago: executing program 2 (id=2369):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_open_dev$sndctrl(0x0, 0x1, 0x48001)
r0 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r1 = openat$proc_mixer(0xffffff9c, &(0x7f0000000380)='/proc/asound/card0/oss_mixer\x00', 0x9800, 0x0)
ioctl$NILFS_IOCTL_SET_SUINFO(r1, 0x40186e8d, &(0x7f00000004c0)={&(0x7f00000003c0)=[{0xffffffffffffffff, 0x2, 0x0, {0x9, 0x800}}, {0xb3f3, 0x2, 0x0, {0x6, 0x3, 0x1}}, {0x2, 0x2, 0x0, {0x8, 0x8000}}, {0x7, 0x1, 0x0, {0x8, 0x80, 0x1}}, {0xf, 0x0, 0x0, {0xfffffffffffffff8, 0xc, 0x2}}, {0x1, 0x0, 0x0, {0x1, 0x9}}, {0xa63, 0x2, 0x0, {0x100}}], 0x7, 0x20, 0x3, 0xfffffffffffffff9})
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x5ede4a12)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mmap(&(0x7f000089a000/0x2000)=nil, 0x2000, 0xb635773f06ebbeef, 0x810, r0, 0x0)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x2, 0x0, 'dh\x00', 0x10, 0x5, 0x2d}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x5, 0x54}, 0x2c)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x880, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x400000f3, 0x0, 0x9}]})

1.738064458s ago: executing program 2 (id=2370):
capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x4})
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000009b8000000000000000000002200000000000000b840b04eb3315f75d989f81cc1e8da0000000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.588358234s ago: executing program 2 (id=2371):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xfffffffd)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000380)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/233, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000780)={0x0, 0x1, 0x0, &(0x7f0000000700)=""/88, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000005c0))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)
write$eventfd(r1, &(0x7f00000000c0)=0xfffffffffffffffe, 0x8)

551.692458ms ago: executing program 4 (id=2372):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4e21, 0x5d2, @mcast1, 0xd}, 0x1c)
listen(r3, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
r6 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
r7 = syz_io_uring_setup(0x370a, &(0x7f00000001c0)={0x0, 0xfffffffc, 0x2, 0x3, 0x2cf}, &(0x7f00000004c0), &(0x7f0000000000), &(0x7f0000000000))
io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r7, 0x12, 0x0, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r6, 0x800442d2, &(0x7f0000000280)={0x3, &(0x7f0000000380)=[{0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @local}]})
syz_genetlink_get_family_id$gtp(0x0, r5)
socket$phonet_pipe(0x23, 0x5, 0x2)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000003680)=[{{&(0x7f0000000400)=@in6={0xa, 0x4e22, 0x0, @local, 0x6}, 0x80, &(0x7f00000019c0)=[{&(0x7f0000000600)="65cc0171e85fa3b922e85e", 0xb}, {&(0x7f0000000900)="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", 0x1000}, {&(0x7f0000001900)="9d16434f895310715b1397126bc801520dd352e7bac1ceb426fea47f543e525da5ec43f19d52aaf660fdf8ae2971a3d6828d67f53d2bbaf49e92928e8a6476c19a836b25220bcac483ac9b8fba04ab2e8ea707e07dcf9698bfaf5a3e662fa7d21b31885e6d4d0674e8d63d6c68bb1e8c70d53b221d797a5ffac51f6bdf1edc806603d49a72616a91fc247b00d07cca65ce12952f53", 0x95}], 0x3, &(0x7f0000001a00)=[@txtime={{0x14, 0x1, 0x3d, 0x81}}, @timestamping={{0x10, 0x1, 0x25, 0x2}}, @txtime={{0x14, 0x1, 0x3d, 0x3}}, @mark={{0x10, 0x1, 0x24, 0x6}}], 0x48}}, {{0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000001a80)="8867da926c1a853f469add7306fd26fc744d6d3422b682bf8ac48e29f0b1e3b59bcafcc6ae31b2a7b927edc796757283616e54deb7b75612803c1b2ccd2084f62509f61d06ed81543dc193c02c979c427fce225ceb9c3d9da6410c97fca1f8fa0e2bacfa9287847a70f725a095b1c8dcc46b0b21eae393b1ce95570b35871bfba58dc9d99f15f1cdc72c65e9ba3dd8f85afe5a0ace6ed17f3c3b19bcee0bb5e41da479723cdd90ab638406adb3916a8626f361ba85a489c6c68fe03a7d8391f4a98483c68325a523d5eb4e0792370fb37e5325c7574f5acc14c07c47a3", 0xdd}, {&(0x7f0000001b80)="d28188685fc85c219c0092602582457c42b4510a16ef16338d61fbedfd3610aa052b1d34365935301e6365c8b6fd0599f26ecb9608a800cd67229e5cbd64f3441fb590bea398e757f172b4014e75ae9b8110f5058b", 0x55}, {&(0x7f0000001c00)="abf1a8528d7839330a7e3f1205d74ffc9e47f300bc9caa594fd9013e956e35a13758e1c23364898c49d4f9c1d1328f745326ac2021a1f159d99575c80966ec27be5a3b877d38b65150c61ca7b5f610bb8f7799ccac4cf109ad02062b4b6257040fe115c0af82c3bd68d0b032898a41f215d9525c0b785fc55579b81085a7a592fd705759956e52393a4cf2063ad9e2dc246c7b242c1bd53c", 0x98}, {&(0x7f0000001cc0)="7c75ac9649f95879b5fdcf62c9a71ce5b856e1b4d08daf43e86cc666eb19552d24f819cd074f2ba79940a252db150164ac487c1ebe06a892844c6a84171fee025aa09e1453bd8f38a1ead37780f8ed33ea02e7c7dd4ecd2673f730c55ed61bd90cbe7314b1bdbf844930a2d0ad2323b7725c9a1781e56ff97c822d6dbdf698d8d8", 0x81}], 0x4, &(0x7f0000001dc0)=[@mark={{0x10}}, @txtime={{0x14, 0x1, 0x3d, 0x80}}, @timestamping={{0x10, 0x1, 0x25, 0x7}}], 0x34}}, {{&(0x7f0000001e00)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e22, 0x49e, @empty, 0x6}}, 0x80, &(0x7f0000001f40)=[{&(0x7f0000001e80)="22d2fcefbc17c0a5a5d35e0c0890f7aba367ec31421613a3200c18cdb695c6a2a242574cc5428c8a2c9bcfc728e83421704efe04726df002734a98092216892311ed0a5d4a17a4466ddde9cd8bb1717b77b1ab47167bc9b5e32191677a5d765f4133f3d5c7bdc80227b3272861f00ca66c32f321aa848f92c86a0188c5308b56d85b2bab2878cf77bce950d243e44de6e31008dd5f2e9ba3b5867f46c2e93f0b97cbd8f987f5d31eb48b3a", 0xab}], 0x1}}, {{&(0x7f0000001f80)=@tipc=@id={0x1e, 0x3, 0x3, {0x4e23, 0x4}}, 0x80, &(0x7f00000035c0)=[{&(0x7f0000002000)="1361742ecd6172cda5e2e15cf6b393d872e913cc0f317041525ab792f24295", 0x1f}, {&(0x7f0000002040)="8bc074165ae8149eda70894bb39e7fb36a76abb45face38cede39e1281a0d79d18dce7f8c353b997f7feaf4b3523c695ffb8ababae09a7d8ebab5f04968a91f014e2b57b4e6eeeeda764d5a6e0d80f17854cfecd5e3c7b0ee14291f0f05d4b0366ca7cb08431e171c5aa8f25c0af9bdec1ee23d3fa881b290b4723fd9c50c47dcfe12f83e96b893f8b1ff1b6b693308d7834b03e691b76ca5e0378aa53e7fffe", 0xa0}, {&(0x7f0000002100)="12a61ac2a1e3af6ec97ee563c5c17df7c333ae6850c90a0f2bde194a381c1f2a331690bc42b8c0949a3bc32f12b8d70b6dee2d408be1b2809035039eed0c827c52a322e4dc59e9604b1f513415", 0x4d}, {&(0x7f0000002180)="4a7f31d34d7566a96038abf760eb6e6dad46c4ffe293587cc5b915025ad476c25bde3737e2c44e68b91111749b8d76351fc81069a211371440e32ec3fb548a388110443928907381ddb8f31a5f6ed7f4bcdfa55b7113303bd07ec94abb5c823cd028caaa02b88e242f07deb2c620a1c452bf78755d5e7d", 0x77}, {&(0x7f0000002200)="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", 0x1000}, {&(0x7f0000003200)="840416266d190bee1f92d564553cb3b8ccc55f86ac670769053b3d9f96c281502d77c0566a5a76b96ac852f55979c1a600be96d8c0b2054c6d89303dd62097013a", 0x41}, {&(0x7f0000003280)="217151a3d2c6b32659b90d56704e23febd8006a14b628faceaf3d2fd5fee13332af9de52585011800dd7c75fca9db5bbe6ae16d113889bb30d489445e03d9b5ca93697673d484f7fc192b53aa6b1083bd6977b12eb6bdacb0cfbdf36a5b617c53e93073bc8a35cdaa94480fbf697d207fc5bf8a519934785160f3c305f20319b7d1216e7e367bc36e4f21f159d60ed249ebc314d1a86242a03ceecfbe7f3d2c8688542bdb459b9df306d5ab2cbb0093231a6eeab777fa0a8099763fb8430eb71b498b36f6f5f03aa6d02b5c092eba167711f81c6aa2bc84937d52b", 0xdb}, {&(0x7f0000003380)="6ce1d83d3db3e681a6a202ea69dae0ca27f1b08ed9408970eb8b952337c2a7669fb4f284bfe0d51eb327dff990752d737d8825b09bbd8190c4afbdc42e64bfdb4c5a3110809baec45bc4245ad0eb13e6b0cbc6423e31b2c5de4367ae08a6b71d1500e84a5596263b1f83e79786586cd87fabe404b805d7470fd0ea634ba1f03df41dfc69", 0x84}, {&(0x7f0000003440)="73c012a7aacd2ccce51816e0da0f7b6d198ac0ff50311a23fd95656e0aea0e2570464479afd64df8bf21dba41e4af3cc2b5b4af82ffd842bf786725a7385ff8e2b0d9cdc04557d2a959fb45421e49be9938eb26abdb5d4aa76251b619c6f2b15d897fedd2cd9fa47cce9bd66c7b13f385c5ed00fc6de21be71e8331640ce86b059614d533222705db05405dacd1f88c3035e75af15e9e66422b7eddb434c75048fc5c344bc55b1c697646f6c664d5e6720f309d0753b157a4399eba2319eba5056f519eb707dfb2a1f62f8c1397985d7ec64f287a6", 0xd5}, {&(0x7f0000003540)="d33c1a263cfca9fa04bb38bc295409654df6d5b3ee96c3205778f6a37e99c1c178b4a11c35a88acb8b6e6989f8b9bbef143bb29e030a48a6651fab0679a82d1bdf18430fbf2d68cc7f9a9897c7affcb8d9b87c1384dcfe97c024538d0df4b78a941ccb", 0x63}], 0xa, &(0x7f0000003640)=[@mark={{0x10, 0x1, 0x24, 0x8}}], 0x10}}], 0x4, 0x4000000)
chdir(&(0x7f0000000100)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="796112000000000000007e0000001d15ac45cac7d9fbd4486638a478751dc054cceef4423bbfce2349fa0731d463ff3ab34244f0cec0fa6e1ad1379bb4be855e80d1bae275f7bc90459f7080e73bc24fd05abdd71ae069f12cbcc193a329ae8bb18552eb4f09c2f300e9cf3cb786c3143ca6263b731bb860da49a9abcbf8024dadfcc67cb235c85be2e8043afeb97a1a59a0bed6c5c6f79d3e228a64ce5945563be73c7bb52351a4b7e017a8a056f65093cce95b8100118ae38a5b22c222cfe8c0a5fb2f1a798aa790abb18330f226a2c02fe385217e82491a4cf7b5890c0a731c3a1efad46c27ee10f4fd88"], 0x14}, 0x1, 0x0, 0x0, 0x8}, 0x4040800)

551.219633ms ago: executing program 2 (id=2373):
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e65772064656661756c7420757365723a7379b5d1ef7a20303430"], 0x2a, 0x0)
r0 = add_key(0x0, &(0x7f0000000180), &(0x7f0000000100), 0x0, 0xfffffffffffffffe)
keyctl$read(0xb, r0, &(0x7f0000000240)=""/112, 0x349b7f55)

303.284174ms ago: executing program 2 (id=2374):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000005ec0), 0xffffffffffffffff)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newtaction={0x6c, 0x30, 0xcac229faa96ee7df, 0x0, 0x0, {}, [{0x58, 0x1, [@m_ife={0x54, 0x1, 0x0, 0x0, {{0x8}, {0xffffffffffffffd5, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0xc}]}, {0x4}, {0xc, 0x4}, {0xc}}}]}]}, 0x6c}}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd0600ffdbdb252100000020000300", @ANYRES32=r4, @ANYBLOB="0600eb00000800000400ec000a00060008021100000100000600f70000ff000008009e"], 0x44}}, 0x28000)

0s ago: executing program 2 (id=2375):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$kcm(0x11, 0x3, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r4)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$kcm(r3, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r5, 0x3e, 0xe00}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="2703", 0x2}], 0x1}, 0x5)

kernel console output (not intermixed with test programs):

57'.
[  430.339080][ T6011] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  430.745096][T11547] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1561'.
[  440.378155][T11580] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1566'.
[  440.456555][T11584] input: syz1 as /devices/virtual/input/input29
[  441.640959][T11584] dlm: Unknown command passed to DLM device : 3
[  441.640959][T11584] 
[  442.917770][T11602] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1571'.
[  443.782349][T11622] overlayfs: failed to resolve './file1': -2
[  443.884699][T11625] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  443.887669][T11625] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  443.910144][T11625] vhci_hcd vhci_hcd.0: Device attached
[  443.958283][T11631] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1579'.
[  444.075504][T11625] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  444.089246][T11633] tipc: Started in network mode
[  444.100266][T11633] tipc: Node identity , cluster identity 4711
[  444.267870][   T29] usb 40-1: SetAddress Request (10) to port 0
[  444.270357][   T29] usb 40-1: new SuperSpeed USB device number 10 using vhci_hcd
[  444.827219][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  445.407632][T11626] vhci_hcd: connection reset by peer
[  445.412017][  T102] vhci_hcd vhci_hcd.1: stop threads
[  445.414096][  T102] vhci_hcd vhci_hcd.1: release socket
[  445.415906][  T102] vhci_hcd vhci_hcd.1: disconnect device
[  446.704426][T11647] syzkaller0: entered promiscuous mode
[  446.706779][T11647] syzkaller0: entered allmulticast mode
[  446.712455][T11647] TC_ACT_REPEAT abuse ?
[  446.756464][T11646] infiniband syz2: set down
[  446.758556][T11646] infiniband syz2: added ipvlan0
[  446.792666][T11646] RDS/IB: syz2: added
[  446.796085][T11646] smc: adding ib device syz2 with port count 1
[  446.800718][T11646] smc:    ib device syz2 port 1 has no pnetid
[  447.141578][T11655] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1585'.
[  448.117160][T11670] netlink: 'syz.2.1589': attribute type 2 has an invalid length.
[  448.120484][T11670] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1589'.
[  448.124486][T11670] sctp: [Deprecated]: syz.2.1589 (pid 11670) Use of struct sctp_assoc_value in delayed_ack socket option.
[  448.124486][T11670] Use struct sctp_sack_info instead
[  449.303532][   T29] usb 40-1: device descriptor read/8, error -110
[  449.607512][T11689] FAULT_INJECTION: forcing a failure.
[  449.607512][T11689] name failslab, interval 1, probability 0, space 0, times 0
[  449.615407][T11689] CPU: 2 UID: 0 PID: 11689 Comm: syz.0.1595 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  449.615436][T11689] Tainted: [L]=SOFTLOCKUP
[  449.615441][T11689] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  449.615452][T11689] Call Trace:
[  449.615460][T11689]  <TASK>
[  449.615467][T11689]  dump_stack_lvl+0x100/0x190
[  449.615503][T11689]  should_fail_ex.cold+0x5/0xa
[  449.615527][T11689]  should_failslab+0xc2/0x120
[  449.615550][T11689]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  449.615578][T11689]  ? seq_open+0x55/0x170
[  449.615600][T11689]  ? lockdep_init_map_type+0x5c/0x250
[  449.615629][T11689]  seq_open+0x55/0x170
[  449.615652][T11689]  kernfs_fop_open+0x590/0xd50
[  449.615682][T11689]  do_dentry_open+0x6d8/0x1660
[  449.615707][T11689]  ? __pfx_kernfs_fop_open+0x10/0x10
[  449.615730][T11689]  vfs_open+0x82/0x3f0
[  449.615755][T11689]  path_openat+0x208c/0x31a0
[  449.615778][T11689]  ? entry_SYSENTER_compat+0x11/0x2d
[  449.615801][T11689]  ? __pfx_path_openat+0x10/0x10
[  449.615827][T11689]  do_file_open+0x20e/0x430
[  449.615846][T11689]  ? __pfx_do_file_open+0x10/0x10
[  449.615880][T11689]  ? alloc_fd+0x476/0x790
[  449.615900][T11689]  ? do_getname+0x191/0x390
[  449.615923][T11689]  do_sys_openat2+0x10d/0x1e0
[  449.615945][T11689]  ? __pfx_do_sys_openat2+0x10/0x10
[  449.615964][T11689]  ? __fget_files+0x215/0x3d0
[  449.615984][T11689]  ? __fget_files+0x21f/0x3d0
[  449.616002][T11689]  __ia32_compat_sys_openat+0x12d/0x210
[  449.616025][T11689]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  449.616050][T11689]  ? __pfx_ksys_write+0x10/0x10
[  449.616071][T11689]  __do_fast_syscall_32+0xe3/0x8c0
[  449.616099][T11689]  do_fast_syscall_32+0x32/0x70
[  449.616117][T11689]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  449.616137][T11689] RIP: 0023:0xf70aef6c
[  449.616152][T11689] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  449.616168][T11689] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000127
[  449.616202][T11689] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000000
[  449.616213][T11689] RDX: 0000000000000a02 RSI: 00000000000000c1 RDI: 0000000000000000
[  449.616222][T11689] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  449.616231][T11689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  449.616241][T11689] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  449.616263][T11689]  </TASK>
[  449.743948][   T29] usb usb40-port1: attempt power cycle
[  449.770406][T11692] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1596'.
[  450.209024][T11697] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1597'.
[  450.212769][T11697] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1597'.
[  450.324014][   T29] usb usb40-port1: unable to enumerate USB device
[  451.119758][T11716] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1603'.
[  451.376976][T11723] erofs (device loop3): cannot find valid erofs superblock
[  451.388205][T11723] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1606'.
[  451.393504][T11723] FAULT_INJECTION: forcing a failure.
[  451.393504][T11723] name failslab, interval 1, probability 0, space 0, times 0
[  451.399348][T11723] CPU: 2 UID: 0 PID: 11723 Comm: syz.3.1606 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  451.399377][T11723] Tainted: [L]=SOFTLOCKUP
[  451.399383][T11723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  451.399393][T11723] Call Trace:
[  451.399401][T11723]  <TASK>
[  451.399409][T11723]  dump_stack_lvl+0x100/0x190
[  451.399444][T11723]  should_fail_ex.cold+0x5/0xa
[  451.399466][T11723]  should_failslab+0xc2/0x120
[  451.399487][T11723]  __kmalloc_cache_noprof+0x7a/0x6f0
[  451.399512][T11723]  ? netdevice_event+0x308/0x9a0
[  451.399548][T11723]  netdevice_event+0x308/0x9a0
[  451.399577][T11723]  ? __pfx_netdevice_event+0x10/0x10
[  451.399600][T11723]  ? __pfx_del_netdev_ips+0x10/0x10
[  451.399623][T11723]  ? __pfx_pass_all_filter+0x10/0x10
[  451.399654][T11723]  ? lockdep_rtnl_is_held+0x26/0x40
[  451.399683][T11723]  notifier_call_chain+0x99/0x420
[  451.399713][T11723]  call_netdevice_notifiers_info+0xbe/0x110
[  451.399737][T11723]  unregister_netdevice_many_notify+0x1208/0x2580
[  451.399766][T11723]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  451.399787][T11723]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  451.399815][T11723]  rtnl_dellink+0x472/0xb40
[  451.399842][T11723]  ? __pfx_veth_dellink+0x10/0x10
[  451.399872][T11723]  ? __pfx_rtnl_dellink+0x10/0x10
[  451.399897][T11723]  ? __lock_acquire+0x4a5/0x2630
[  451.399975][T11723]  ? __lock_acquire+0x4a5/0x2630
[  451.399997][T11723]  ? stack_trace_save+0x8e/0xc0
[  451.400018][T11723]  ? __pfx_stack_trace_save+0x10/0x10
[  451.400045][T11723]  ? find_held_lock+0x2b/0x80
[  451.400063][T11723]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  451.400080][T11723]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  451.400098][T11723]  ? __pfx_rtnl_dellink+0x10/0x10
[  451.400125][T11723]  rtnetlink_rcv_msg+0x95e/0xe90
[  451.400145][T11723]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  451.400168][T11723]  ? __lock_acquire+0x4a5/0x2630
[  451.400195][T11723]  netlink_rcv_skb+0x159/0x420
[  451.400216][T11723]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  451.400236][T11723]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  451.400264][T11723]  ? netlink_deliver_tap+0x1ae/0xcc0
[  451.400287][T11723]  netlink_unicast+0x5aa/0x870
[  451.400311][T11723]  ? __pfx_netlink_unicast+0x10/0x10
[  451.400339][T11723]  netlink_sendmsg+0x8b0/0xda0
[  451.400362][T11723]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.400384][T11723]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  451.400411][T11723]  ____sys_sendmsg+0x9e1/0xb70
[  451.400433][T11723]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.400453][T11723]  ? __pfx_____sys_sendmsg+0x10/0x10
[  451.400486][T11723]  ___sys_sendmsg+0x190/0x1e0
[  451.400511][T11723]  ? __pfx____sys_sendmsg+0x10/0x10
[  451.400564][T11723]  __sys_sendmsg+0x170/0x220
[  451.400583][T11723]  ? __pfx___sys_sendmsg+0x10/0x10
[  451.400608][T11723]  ? __pfx_ksys_write+0x10/0x10
[  451.400632][T11723]  __do_fast_syscall_32+0xe3/0x8c0
[  451.400656][T11723]  do_fast_syscall_32+0x32/0x70
[  451.400675][T11723]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  451.400698][T11723] RIP: 0023:0xf7fd6f6c
[  451.400714][T11723] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  451.400729][T11723] RSP: 002b:00000000f549650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  451.400746][T11723] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800003c0
[  451.400756][T11723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  451.400766][T11723] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  451.400776][T11723] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  451.400786][T11723] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  451.400809][T11723]  </TASK>
[  451.734058][T11730] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1608'.
[  452.668582][T11739] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1610'.
[  452.680409][T11739] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1610'.
[  454.020101][T11754] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1614'.
[  454.038277][T11650] udevd[11650]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory
[  454.765680][T11734] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  455.292242][T11767] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1618'.
[  456.041014][T11771] bond0: entered promiscuous mode
[  456.045687][T11771] batadv_slave_0: entered promiscuous mode
[  456.363539][T11056] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  456.515563][T11056] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  456.521398][T11056] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  456.528132][T11056] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  456.532360][T11056] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  456.747396][T11056] usb 5-1: usb_control_msg returned -32
[  456.750021][T11056] usbtmc 5-1:16.0: can't read capabilities
[  458.037009][T11794] vlan3: entered allmulticast mode
[  458.039582][T11794] bond0: entered allmulticast mode
[  458.041997][T11794] bond_slave_0: entered allmulticast mode
[  458.046868][T11794] bond_slave_1: entered allmulticast mode
[  458.158466][T11801] fuse: Bad value for 'group_id'
[  458.160107][T11801] fuse: Bad value for 'group_id'
[  458.189130][T11803] trusted_key: encrypted_key: insufficient parameters specified
[  458.197908][T11804] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1629'.
[  459.042478][T11810] binder: 11809:11810 unknown command 0
[  459.048079][T11810] binder: 11809:11810 ioctl c0306201 80000080 returned -22
[  459.054031][T11810] binder: 11809:11810 ioctl c01064bd 80000080 returned -22
[  459.124079][  T828] usb 5-1: USB disconnect, device number 14
[  460.098273][T11827] binder: 11826:11827 ioctl c0306201 80000600 returned -14
[  460.256062][T11843] "syz.0.1641" (11843) uses obsolete ecb(arc4) skcipher
[  460.297910][T11849] input: syz0 as /devices/virtual/input/input30
[  460.674892][T11863] 9pnet_virtio: no channels available for device syz
[  460.895849][T11866] openvswitch: netlink: Geneve opt len 17 is not a multiple of 4.
[  461.181570][T11871] 9pnet_virtio: no channels available for device syz
[  462.538867][T11901] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1657'.
[  462.555463][T11901] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1657'.
[  463.889888][T11920] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1662'.
[  464.348809][T11928] syzkaller0: entered promiscuous mode
[  464.350694][T11928] syzkaller0: entered allmulticast mode
[  464.826239][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  464.826255][   T40] audit: type=1326 audit(1775444145.674:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  464.853356][   T40] audit: type=1326 audit(1775444145.674:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  464.871492][   T40] audit: type=1326 audit(1775444145.684:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  464.889617][   T40] audit: type=1326 audit(1775444145.684:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  464.911099][   T40] audit: type=1326 audit(1775444145.684:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  464.939844][T11951] binder: 11947:11951 ioctl c0306201 0 returned -14
[  465.028100][   T40] audit: type=1326 audit(1775444145.684:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  465.036972][   T40] audit: type=1326 audit(1775444145.684:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  465.044229][   T40] audit: type=1326 audit(1775444145.694:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  465.393419][   T40] audit: type=1326 audit(1775444145.704:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  465.410879][   T40] audit: type=1326 audit(1775444145.704:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11947 comm="syz.1.1671" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf707ef6c code=0x7ffc0000
[  465.611489][T11959] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1675'.
[  466.843816][T11978] 9pnet_virtio: no channels available for device syz
[  467.673402][   T29] usb 5-1: new full-speed USB device number 15 using dummy_hcd
[  467.874720][   T29] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  467.878479][   T29] usb 5-1: config 0 interface 0 has no altsetting 0
[  467.882563][   T29] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  467.886094][   T29] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  467.888973][   T29] usb 5-1: Product: syz
[  467.890698][   T29] usb 5-1: Manufacturer: syz
[  467.892441][   T29] usb 5-1: SerialNumber: syz
[  467.896497][   T29] usb 5-1: config 0 descriptor??
[  467.901666][   T29] usb 5-1: selecting invalid altsetting 0
[  468.113946][T11056] usb 5-1: USB disconnect, device number 15
[  470.691724][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  470.691748][   T40] audit: type=1326 audit(1775444151.534:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.734624][   T40] audit: type=1326 audit(1775444151.534:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.742750][   T40] audit: type=1326 audit(1775444151.534:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.813432][   T40] audit: type=1326 audit(1775444151.534:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.852563][   T40] audit: type=1326 audit(1775444151.534:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.872523][   T40] audit: type=1326 audit(1775444151.534:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.903016][   T40] audit: type=1326 audit(1775444151.534:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.945986][   T40] audit: type=1326 audit(1775444151.534:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.983428][   T40] audit: type=1326 audit(1775444151.534:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  470.997066][   T40] audit: type=1326 audit(1775444151.534:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12020 comm="syz.0.1690" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70aef88 code=0x7ffc0000
[  471.688434][T12050] syzkaller0: entered promiscuous mode
[  471.690384][T12050] syzkaller0: entered allmulticast mode
[  471.708499][T12050] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1700'.
[  473.866141][T12075] loop9: detected capacity change from 0 to 524287999
[  474.112512][T12086] fuse: Invalid rootmode
[  474.121233][T12086] loop5: detected capacity change from 0 to 7
[  474.262029][T11650] Dev loop5: unable to read RDB block 7
[  474.264103][T12087] Invalid logical block size (131072)
[  474.264537][T11650]  loop5: unable to read partition table
[  474.270737][T11650] loop5: partition table beyond EOD, truncated
[  474.366767][T12092] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1711'.
[  474.383342][T12092] geneve1: entered promiscuous mode
[  474.387957][T12092] macsec1: entered promiscuous mode
[  474.391083][T12092] macsec1: entered allmulticast mode
[  474.396534][T12092] geneve1: entered allmulticast mode
[  474.410744][T12092] geneve1: left allmulticast mode
[  474.414162][T12092] geneve1: left promiscuous mode
[  474.475372][T12086] Dev loop5: unable to read RDB block 7
[  474.477426][T12086]  loop5: unable to read partition table
[  474.479939][T12086] loop5: partition table beyond EOD, truncated
[  474.483476][T12086] loop_reread_partitions: partition scan of loop5 (���W������ý�*���	���%���4FLQk݊5) failed (rc=-5)
[  474.628976][T12096] netlink: 'syz.0.1713': attribute type 1 has an invalid length.
[  474.635900][T12096] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  475.699398][T12122] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  475.704831][T12122] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  475.729390][T12122] vhci_hcd vhci_hcd.0: Device attached
[  475.906255][T12128] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  475.993477][   T29] usb 42-1: SetAddress Request (10) to port 0
[  475.996380][   T29] usb 42-1: new SuperSpeed USB device number 10 using vhci_hcd
[  476.068359][T12124] vhci_hcd: connection reset by peer
[  476.070424][ T1187] vhci_hcd vhci_hcd.2: stop threads
[  476.075207][ T1187] vhci_hcd vhci_hcd.2: release socket
[  476.077402][ T1187] vhci_hcd vhci_hcd.2: disconnect device
[  476.398209][T12147] bond0: (slave macsec0): Error: Device can not be enslaved while up
[  477.204860][T12163] siw: device registration error -23
[  478.910863][T12182] netlink: 'syz.3.1739': attribute type 10 has an invalid length.
[  478.923820][T12182] syz_tun: entered promiscuous mode
[  478.945586][T12182] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  479.487962][T12187] FAULT_INJECTION: forcing a failure.
[  479.487962][T12187] name failslab, interval 1, probability 0, space 0, times 0
[  479.494738][T12187] CPU: 1 UID: 0 PID: 12187 Comm: syz.0.1741 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  479.494773][T12187] Tainted: [L]=SOFTLOCKUP
[  479.494779][T12187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  479.494799][T12187] Call Trace:
[  479.494810][T12187]  <TASK>
[  479.494819][T12187]  dump_stack_lvl+0x100/0x190
[  479.494859][T12187]  should_fail_ex.cold+0x5/0xa
[  479.494883][T12187]  should_failslab+0xc2/0x120
[  479.494907][T12187]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  479.494938][T12187]  ? __alloc_skb+0x140/0x710
[  479.494975][T12187]  __alloc_skb+0x140/0x710
[  479.495002][T12187]  ? __alloc_skb+0x5b7/0x710
[  479.495030][T12187]  ? __pfx___alloc_skb+0x10/0x10
[  479.495056][T12187]  ? genl_rcv_msg+0x4be/0x800
[  479.495088][T12187]  netlink_ack+0x117/0xb80
[  479.495117][T12187]  netlink_rcv_skb+0x333/0x420
[  479.495138][T12187]  ? __pfx_genl_rcv_msg+0x10/0x10
[  479.495165][T12187]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  479.495196][T12187]  ? netlink_deliver_tap+0x1ae/0xcc0
[  479.495220][T12187]  genl_rcv+0x28/0x40
[  479.495240][T12187]  netlink_unicast+0x5aa/0x870
[  479.495265][T12187]  ? __pfx_netlink_unicast+0x10/0x10
[  479.495284][T12187]  ? __pfx___might_resched+0x10/0x10
[  479.495322][T12187]  netlink_sendmsg+0x8b0/0xda0
[  479.495346][T12187]  ? __pfx_netlink_sendmsg+0x10/0x10
[  479.495370][T12187]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  479.495398][T12187]  __sys_sendto+0x468/0x4b0
[  479.495424][T12187]  ? __pfx_netlink_sendmsg+0x10/0x10
[  479.495446][T12187]  ? __pfx___sys_sendto+0x10/0x10
[  479.495472][T12187]  ? __lock_acquire+0x4a5/0x2630
[  479.495539][T12187]  __ia32_compat_sys_socketcall+0x59a/0x770
[  479.495561][T12187]  ? __fget_files+0x21f/0x3d0
[  479.495581][T12187]  ? __pfx___ia32_compat_sys_socketcall+0x10/0x10
[  479.495604][T12187]  ? fput+0x79/0x100
[  479.495639][T12187]  do_int80_emulation+0x141/0x6b0
[  479.495668][T12187]  asm_int80_emulation+0x1a/0x20
[  479.495689][T12187] RIP: 0023:0xf71e5cab
[  479.495707][T12187] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  479.495727][T12187] RSP: 002b:00000000f549c34c EFLAGS: 00000246 ORIG_RAX: 0000000000000066
[  479.495747][T12187] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f549c3f4
[  479.495759][T12187] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  479.495770][T12187] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  479.495781][T12187] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  479.495791][T12187] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  479.495815][T12187]  </TASK>
[  481.403102][   T29] usb 42-1: device descriptor read/8, error -110
[  481.647256][T12220] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=3901993312 (7803986624 ns) > initial count (6429106268 ns). Using initial count to start timer.
[  481.719640][T12220] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=924277221 (1848554442 ns) > initial count (1360443000 ns). Using initial count to start timer.
[  481.820873][  T841] libceph: connect (1)[c::]:6789 error -101
[  481.835720][  T841] libceph: mon0 (1)[c::]:6789 connect error
[  481.862859][   T29] usb usb42-port1: attempt power cycle
[  482.131396][  T841] libceph: connect (1)[c::]:6789 error -101
[  482.163656][  T841] libceph: mon0 (1)[c::]:6789 connect error
[  482.584462][   T29] usb usb42-port1: unable to enumerate USB device
[  482.790407][  T841] libceph: connect (1)[c::]:6789 error -101
[  482.792975][  T841] libceph: mon0 (1)[c::]:6789 connect error
[  482.972339][T12225] ceph: No mds server is up or the cluster is laggy
[  483.347505][T12251] FAULT_INJECTION: forcing a failure.
[  483.347505][T12251] name failslab, interval 1, probability 0, space 0, times 0
[  483.356774][T12251] CPU: 1 UID: 0 PID: 12251 Comm: syz.3.1757 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  483.356805][T12251] Tainted: [L]=SOFTLOCKUP
[  483.356812][T12251] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  483.356823][T12251] Call Trace:
[  483.356831][T12251]  <TASK>
[  483.356839][T12251]  dump_stack_lvl+0x100/0x190
[  483.356875][T12251]  should_fail_ex.cold+0x5/0xa
[  483.356900][T12251]  should_failslab+0xc2/0x120
[  483.356922][T12251]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  483.356955][T12251]  ? __alloc_workqueue+0xaf7/0x1880
[  483.356983][T12251]  __alloc_workqueue+0xaf7/0x1880
[  483.357013][T12251]  alloc_workqueue_noprof+0xd2/0x200
[  483.357034][T12251]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  483.357058][T12251]  ? bpf_lsm_inode_need_killpriv+0x9/0x10
[  483.357092][T12251]  ? security_inode_need_killpriv+0x71/0x1e0
[  483.357151][T12251]  ? file_remove_privs_flags+0x251/0x590
[  483.357179][T12251]  ? __pfx_file_remove_privs_flags+0x10/0x10
[  483.357206][T12251]  sb_init_dio_done_wq+0x83/0x140
[  483.357234][T12251]  ? __pfx_sb_init_dio_done_wq+0x10/0x10
[  483.357268][T12251]  backing_file_write_iter+0x657/0x8c0
[  483.357298][T12251]  ? __pfx_ovl_file_end_write+0x10/0x10
[  483.357361][T12251]  ovl_write_iter+0x34e/0x420
[  483.357390][T12251]  ? __pfx_ovl_write_iter+0x10/0x10
[  483.357416][T12251]  ? __pfx_ovl_file_end_write+0x10/0x10
[  483.357440][T12251]  ? find_held_lock+0x2b/0x80
[  483.357459][T12251]  ? aio_write+0x6fc/0x920
[  483.357478][T12251]  ? aio_write+0x6fc/0x920
[  483.357500][T12251]  aio_write+0x3ba/0x920
[  483.357523][T12251]  ? __pfx_aio_write+0x10/0x10
[  483.357545][T12251]  ? __lock_acquire+0x4a5/0x2630
[  483.357587][T12251]  ? __might_fault+0xc5/0x140
[  483.357625][T12251]  ? io_submit_one+0x1142/0x1fb0
[  483.357647][T12251]  io_submit_one+0x1142/0x1fb0
[  483.357672][T12251]  ? __lock_acquire+0x4a5/0x2630
[  483.357702][T12251]  ? __pfx_io_submit_one+0x10/0x10
[  483.357735][T12251]  ? __might_fault+0xc5/0x140
[  483.357776][T12251]  ? __ia32_compat_sys_io_submit+0x1a7/0x3b0
[  483.357801][T12251]  __ia32_compat_sys_io_submit+0x1a7/0x3b0
[  483.357830][T12251]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  483.357861][T12251]  ? __pfx_ksys_write+0x10/0x10
[  483.357886][T12251]  __do_fast_syscall_32+0xe3/0x8c0
[  483.357913][T12251]  do_fast_syscall_32+0x32/0x70
[  483.357937][T12251]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  483.357963][T12251] RIP: 0023:0xf7fd6f6c
[  483.357983][T12251] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  483.358000][T12251] RSP: 002b:00000000f549650c EFLAGS: 00000292 ORIG_RAX: 00000000000000f8
[  483.358017][T12251] RAX: ffffffffffffffda RBX: 00000000f546d000 RCX: 0000000000000001
[  483.358028][T12251] RDX: 00000000800007c0 RSI: 0000000000000000 RDI: 0000000000000000
[  483.358038][T12251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  483.358047][T12251] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  483.358056][T12251] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  483.358078][T12251]  </TASK>
[  483.932208][T12258] overlayfs: failed to resolve './file0': -2
[  485.663222][T12283] sctp: [Deprecated]: syz.0.1763 (pid 12283) Use of struct sctp_assoc_value in delayed_ack socket option.
[  485.663222][T12283] Use struct sctp_sack_info instead
[  486.297223][T12289] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1768'.
[  486.457941][T12293] FAULT_INJECTION: forcing a failure.
[  486.457941][T12293] name failslab, interval 1, probability 0, space 0, times 0
[  486.468562][T12293] CPU: 1 UID: 0 PID: 12293 Comm: syz.2.1767 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  486.468585][T12293] Tainted: [L]=SOFTLOCKUP
[  486.468590][T12293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  486.468597][T12293] Call Trace:
[  486.468603][T12293]  <TASK>
[  486.468609][T12293]  dump_stack_lvl+0x100/0x190
[  486.468635][T12293]  should_fail_ex.cold+0x5/0xa
[  486.468652][T12293]  should_failslab+0xc2/0x120
[  486.468667][T12293]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  486.468681][T12293]  ? ceph_crypto_key_decode+0x234/0x3c0
[  486.468712][T12293]  kmemdup_noprof+0x29/0x60
[  486.468726][T12293]  ceph_crypto_key_decode+0x234/0x3c0
[  486.468746][T12293]  ceph_key_preparse+0x152/0x260
[  486.468764][T12293]  ? __pfx_ceph_key_preparse+0x10/0x10
[  486.468784][T12293]  ? __pfx_ceph_key_preparse+0x10/0x10
[  486.468802][T12293]  __key_create_or_update+0x463/0xe30
[  486.468826][T12293]  ? __pfx___key_create_or_update+0x10/0x10
[  486.468845][T12293]  ? lookup_user_key+0x3f3/0x1300
[  486.468867][T12293]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  486.468885][T12293]  key_create_or_update+0x42/0x60
[  486.468904][T12293]  __do_sys_add_key+0x2e8/0x460
[  486.468917][T12293]  ? __pfx___do_sys_add_key+0x10/0x10
[  486.468930][T12293]  ? __pfx_ksys_write+0x10/0x10
[  486.468945][T12293]  __do_fast_syscall_32+0xe3/0x8c0
[  486.468965][T12293]  do_fast_syscall_32+0x32/0x70
[  486.468984][T12293]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  486.469004][T12293] RIP: 0023:0xf70aef6c
[  486.469019][T12293] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  486.469035][T12293] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 000000000000011e
[  486.469048][T12293] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000000
[  486.469055][T12293] RDX: 0000000080000000 RSI: 000000000000002c RDI: 00000000ffffffff
[  486.469062][T12293] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  486.469069][T12293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  486.469077][T12293] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  486.469128][T12293]  </TASK>
[  487.684107][T12314] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1775'.
[  487.906078][T12308] bridge0: port 2(bridge_slave_1) entered disabled state
[  487.911057][T12308] bridge0: port 1(bridge_slave_0) entered disabled state
[  488.067837][T12308] tipc: Resetting bearer <eth:batadv0>
[  488.213947][T12318] netlink: 'syz.3.1774': attribute type 10 has an invalid length.
[  488.318627][T12308] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  488.386102][T12308] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  488.815427][T12324] sctp: [Deprecated]: syz.2.1776 (pid 12324) Use of struct sctp_assoc_value in delayed_ack socket option.
[  488.815427][T12324] Use struct sctp_sack_info instead
[  488.873159][T12309] 8021q: adding VLAN 0 to HW filter on device bond0
[  488.888271][T12309] 8021q: adding VLAN 0 to HW filter on device team0
[  488.942659][T12309] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  489.036040][   T60] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  489.059329][   T60] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  489.065266][   T60] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  489.083207][   T60] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  489.667340][T12332] block nbd0: shutting down sockets
[  490.494829][T12317] infiniband syz1: set active
[  490.518590][T12317] infiniband syz1: added syz_tun
[  490.523057][T12317] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[  490.567390][T12317] infiniband syz1: Couldn't open port 1
[  490.795212][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[  491.551925][T12317] RDS/IB: syz1: added
[  491.613467][T12349] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1782'.
[  491.623627][T12317] smc: adding ib device syz1 with port count 1
[  491.629558][T12317] smc:    ib device syz1 port 1 has pnetid SYZ0 (user defined)
[  491.643120][T12349] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1782'.
[  492.308552][T12357] FAULT_INJECTION: forcing a failure.
[  492.308552][T12357] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  492.321642][T12357] CPU: 3 UID: 0 PID: 12357 Comm: syz.0.1785 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  492.321673][T12357] Tainted: [L]=SOFTLOCKUP
[  492.321679][T12357] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  492.321690][T12357] Call Trace:
[  492.321698][T12357]  <TASK>
[  492.321706][T12357]  dump_stack_lvl+0x100/0x190
[  492.321741][T12357]  should_fail_ex.cold+0x5/0xa
[  492.321766][T12357]  ? prepare_alloc_pages+0x16d/0x5f0
[  492.321790][T12357]  should_fail_alloc_page+0xeb/0x140
[  492.321813][T12357]  prepare_alloc_pages+0x1f0/0x5f0
[  492.321838][T12357]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  492.321873][T12357]  ? stack_trace_save+0x8e/0xc0
[  492.321893][T12357]  ? __pfx_stack_trace_save+0x10/0x10
[  492.321911][T12357]  ? stack_depot_save_flags+0x27/0x9d0
[  492.321939][T12357]  ? is_bpf_text_address+0x8a/0x1a0
[  492.321967][T12357]  ? is_bpf_text_address+0x8a/0x1a0
[  492.321994][T12357]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  492.322021][T12357]  ? kasan_save_stack+0x3f/0x50
[  492.322038][T12357]  ? kasan_save_track+0x14/0x30
[  492.322053][T12357]  ? kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  492.322080][T12357]  ? alloc_vmap_area+0x640/0x2bd0
[  492.322098][T12357]  ? __get_vm_area_node+0x1ca/0x330
[  492.322117][T12357]  ? __vmalloc_node_range_noprof+0x213/0x1530
[  492.322139][T12357]  ? __kvmalloc_node_noprof+0x3de/0xa00
[  492.322154][T12357]  ? hash_mac_create+0x3e0/0x1050
[  492.322183][T12357]  ? ip_set_create+0x6b8/0x14f0
[  492.322209][T12357]  ? nfnetlink_rcv_msg+0x9f4/0x1200
[  492.322233][T12357]  ? netlink_rcv_skb+0x159/0x420
[  492.322254][T12357]  ? __sys_sendmsg+0x170/0x220
[  492.322270][T12357]  ? __do_fast_syscall_32+0xe3/0x8c0
[  492.322291][T12357]  ? do_fast_syscall_32+0x32/0x70
[  492.322309][T12357]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  492.322336][T12357]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  492.322357][T12357]  ? policy_nodemask+0xed/0x4f0
[  492.322381][T12357]  alloc_pages_mpol+0x1fb/0x550
[  492.322402][T12357]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  492.322428][T12357]  alloc_pages_noprof+0x136/0x390
[  492.322449][T12357]  get_free_pages_noprof+0x10/0xb0
[  492.322468][T12357]  __kasan_populate_vmalloc+0xa0/0x210
[  492.322500][T12357]  alloc_vmap_area+0x95d/0x2bd0
[  492.322531][T12357]  ? __pfx_alloc_vmap_area+0x10/0x10
[  492.322557][T12357]  __get_vm_area_node+0x1ca/0x330
[  492.322583][T12357]  __vmalloc_node_range_noprof+0x213/0x1530
[  492.322607][T12357]  ? hash_mac_create+0x3e0/0x1050
[  492.322632][T12357]  ? hash_mac_create+0x358/0x1050
[  492.322673][T12357]  ? ip_set_create+0x6b8/0x14f0
[  492.322696][T12357]  ? nfnetlink_rcv_msg+0x9f4/0x1200
[  492.322720][T12357]  ? nfnetlink_rcv+0x1b3/0x440
[  492.322741][T12357]  ? netlink_unicast+0x5aa/0x870
[  492.322762][T12357]  ? netlink_sendmsg+0x8b0/0xda0
[  492.322782][T12357]  ? hash_mac_create+0x3e0/0x1050
[  492.322840][T12357]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  492.322868][T12357]  ? rcu_is_watching+0x12/0xc0
[  492.322901][T12357]  __kvmalloc_node_noprof+0x3de/0xa00
[  492.322919][T12357]  ? hash_mac_create+0x3e0/0x1050
[  492.322944][T12357]  ? hash_mac_create+0x3e0/0x1050
[  492.322977][T12357]  hash_mac_create+0x3e0/0x1050
[  492.323008][T12357]  ? __pfx_hash_mac_create+0x10/0x10
[  492.323036][T12357]  ip_set_create+0x6b8/0x14f0
[  492.323065][T12357]  ? __mutex_lock+0x26a/0x1b90
[  492.323084][T12357]  ? __pfx_ip_set_create+0x10/0x10
[  492.323127][T12357]  ? find_held_lock+0x2b/0x80
[  492.323153][T12357]  nfnetlink_rcv_msg+0x9f4/0x1200
[  492.323186][T12357]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  492.323214][T12357]  ? kfree_skbmem+0x19f/0x210
[  492.323262][T12357]  ? __pfx___dev_queue_xmit+0x10/0x10
[  492.323290][T12357]  netlink_rcv_skb+0x159/0x420
[  492.323309][T12357]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  492.323334][T12357]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  492.323365][T12357]  ? ns_capable+0xd2/0xf0
[  492.323387][T12357]  nfnetlink_rcv+0x1b3/0x440
[  492.323411][T12357]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  492.323433][T12357]  ? netlink_deliver_tap+0x1ae/0xcc0
[  492.323456][T12357]  netlink_unicast+0x5aa/0x870
[  492.323478][T12357]  ? __pfx_netlink_unicast+0x10/0x10
[  492.323506][T12357]  netlink_sendmsg+0x8b0/0xda0
[  492.323529][T12357]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.323551][T12357]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  492.323576][T12357]  ____sys_sendmsg+0x9e1/0xb70
[  492.323597][T12357]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.323617][T12357]  ? __pfx_____sys_sendmsg+0x10/0x10
[  492.323651][T12357]  ___sys_sendmsg+0x190/0x1e0
[  492.323676][T12357]  ? __pfx____sys_sendmsg+0x10/0x10
[  492.323699][T12357]  ? __pte_offset_map+0x179/0x310
[  492.323750][T12357]  __sys_sendmsg+0x170/0x220
[  492.323769][T12357]  ? __pfx___sys_sendmsg+0x10/0x10
[  492.323805][T12357]  __do_fast_syscall_32+0xe3/0x8c0
[  492.323828][T12357]  do_fast_syscall_32+0x32/0x70
[  492.323849][T12357]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  492.323873][T12357] RIP: 0023:0xf70aef6c
[  492.323890][T12357] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  492.323908][T12357] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  492.323927][T12357] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  492.323939][T12357] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  492.323949][T12357] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  492.323959][T12357] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  492.323970][T12357] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  492.323993][T12357]  </TASK>
[  492.730625][T12357] syz.0.1785: vmalloc error: size 16777240, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  492.741962][T12357] CPU: 3 UID: 0 PID: 12357 Comm: syz.0.1785 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  492.742002][T12357] Tainted: [L]=SOFTLOCKUP
[  492.742010][T12357] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  492.742023][T12357] Call Trace:
[  492.742031][T12357]  <TASK>
[  492.742040][T12357]  dump_stack_lvl+0x100/0x190
[  492.742084][T12357]  warn_alloc.cold+0x95/0x1c1
[  492.742127][T12357]  ? __pfx_warn_alloc+0x10/0x10
[  492.742162][T12357]  ? lockdep_hardirqs_on+0x78/0x100
[  492.742192][T12357]  ? __get_vm_area_node+0x2c5/0x330
[  492.742227][T12357]  ? __get_vm_area_node+0x208/0x330
[  492.742262][T12357]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  492.742293][T12357]  ? hash_mac_create+0x358/0x1050
[  492.742328][T12357]  ? ip_set_create+0x6b8/0x14f0
[  492.742361][T12357]  ? nfnetlink_rcv_msg+0x9f4/0x1200
[  492.742393][T12357]  ? nfnetlink_rcv+0x1b3/0x440
[  492.742421][T12357]  ? netlink_unicast+0x5aa/0x870
[  492.742444][T12357]  ? netlink_sendmsg+0x8b0/0xda0
[  492.742469][T12357]  ? hash_mac_create+0x3e0/0x1050
[  492.742517][T12357]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  492.742557][T12357]  ? rcu_is_watching+0x12/0xc0
[  492.742602][T12357]  __kvmalloc_node_noprof+0x3de/0xa00
[  492.742629][T12357]  ? hash_mac_create+0x3e0/0x1050
[  492.742666][T12357]  ? hash_mac_create+0x3e0/0x1050
[  492.742730][T12357]  hash_mac_create+0x3e0/0x1050
[  492.742772][T12357]  ? __pfx_hash_mac_create+0x10/0x10
[  492.742807][T12357]  ip_set_create+0x6b8/0x14f0
[  492.742840][T12357]  ? __mutex_lock+0x26a/0x1b90
[  492.742863][T12357]  ? __pfx_ip_set_create+0x10/0x10
[  492.742912][T12357]  ? find_held_lock+0x2b/0x80
[  492.742942][T12357]  nfnetlink_rcv_msg+0x9f4/0x1200
[  492.742981][T12357]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  492.743014][T12357]  ? kfree_skbmem+0x19f/0x210
[  492.743070][T12357]  ? __pfx___dev_queue_xmit+0x10/0x10
[  492.743101][T12357]  netlink_rcv_skb+0x159/0x420
[  492.743123][T12357]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  492.743154][T12357]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  492.743189][T12357]  ? ns_capable+0xd2/0xf0
[  492.743213][T12357]  nfnetlink_rcv+0x1b3/0x440
[  492.743241][T12357]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  492.743268][T12357]  ? netlink_deliver_tap+0x1ae/0xcc0
[  492.743440][T12357]  netlink_unicast+0x5aa/0x870
[  492.743474][T12357]  ? __pfx_netlink_unicast+0x10/0x10
[  492.743515][T12357]  netlink_sendmsg+0x8b0/0xda0
[  492.743542][T12357]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.743569][T12357]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  492.743598][T12357]  ____sys_sendmsg+0x9e1/0xb70
[  492.743622][T12357]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.743646][T12357]  ? __pfx_____sys_sendmsg+0x10/0x10
[  492.743687][T12357]  ___sys_sendmsg+0x190/0x1e0
[  492.743715][T12357]  ? __pfx____sys_sendmsg+0x10/0x10
[  492.743744][T12357]  ? __pte_offset_map+0x179/0x310
[  492.743803][T12357]  __sys_sendmsg+0x170/0x220
[  492.743823][T12357]  ? __pfx___sys_sendmsg+0x10/0x10
[  492.743859][T12357]  __do_fast_syscall_32+0xe3/0x8c0
[  492.743884][T12357]  do_fast_syscall_32+0x32/0x70
[  492.743907][T12357]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  492.743932][T12357] RIP: 0023:0xf70aef6c
[  492.743950][T12357] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  492.743968][T12357] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  492.743988][T12357] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  492.744058][T12357] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  492.744070][T12357] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  492.744080][T12357] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  492.744092][T12357] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  492.744118][T12357]  </TASK>
[  492.962446][T12357] Mem-Info:
[  492.964355][T12357] active_anon:9316 inactive_anon:147 isolated_anon:0
[  492.964355][T12357]  active_file:16845 inactive_file:25999 isolated_file:0
[  492.964355][T12357]  unevictable:1768 dirty:126 writeback:0
[  492.964355][T12357]  slab_reclaimable:6545 slab_unreclaimable:56836
[  492.964355][T12357]  mapped:30941 shmem:5162 pagetables:1247
[  492.964355][T12357]  sec_pagetables:300 bounce:0
[  492.964355][T12357]  kernel_misc_reclaimable:0
[  492.964355][T12357]  free:38477 free_pcp:15350 free_cma:0
[  492.999118][T12357] Node 0 active_anon:16kB inactive_anon:72kB active_file:1640kB inactive_file:32kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:8kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8044kB pagetables:1872kB sec_pagetables:1136kB all_unreclaimable? yes Balloon:0kB
[  493.018088][T12357] Node 1 active_anon:37148kB inactive_anon:516kB active_file:65740kB inactive_file:103964kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:123748kB dirty:496kB writeback:0kB shmem:17112kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4392kB pagetables:3116kB sec_pagetables:64kB all_unreclaimable? no Balloon:0kB
[  493.041630][T12357] Node 0 DMA free:3124kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:8kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:76kB local_pcp:12kB free_cma:0kB
[  493.073911][T12357] lowmem_reserve[]: 0 285 285 285 285
[  493.078044][T12357] Node 0 DMA32 free:18428kB boost:4096kB min:17164kB low:20428kB high:23692kB reserved_highatomic:0KB free_highatomic:0KB active_anon:12kB inactive_anon:64kB active_file:1640kB inactive_file:32kB unevictable:3536kB writepending:8kB zspages:0kB present:1032196kB managed:292456kB mlocked:0kB bounce:0kB free_pcp:11888kB local_pcp:2088kB free_cma:0kB
[  493.101484][T12357] lowmem_reserve[]: 0 0 0 0 0
[  493.104587][T12357] Node 1 DMA32 free:132156kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:37148kB inactive_anon:516kB active_file:65740kB inactive_file:103964kB unevictable:3536kB writepending:496kB zspages:2444kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:49104kB local_pcp:14732kB free_cma:0kB
[  493.125192][T12357] lowmem_reserve[]: 0 0 0 0 0
[  493.128050][T12357] Node 0 DMA: 159*4kB (U) 63*8kB (U) 28*16kB (U) 12*32kB (U) 4*64kB (U) 3*128kB (U) 2*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 3124kB
[  493.138652][T12357] Node 0 DMA32: 71*4kB (UE) 98*8kB (UE) 69*16kB (UME) 102*32kB (UME) 31*64kB (UME) 10*128kB (UE) 6*256kB (UE) 6*512kB (UM) 5*1024kB (UM) 0*2048kB 0*4096kB = 18428kB
[  493.149983][T12357] Node 1 DMA32: 2358*4kB (UM) 1760*8kB (UME) 1332*16kB (UM) 261*32kB (UME) 151*64kB (UME) 53*128kB (UME) 47*256kB (UME) 24*512kB (UM) 21*1024kB (UM) 6*2048kB (UM) 1*4096kB (M) = 131832kB
[  493.163774][T12357] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  493.169208][T12357] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  493.175698][T12357] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  493.181578][T12357] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  493.186783][T12357] 49396 total pagecache pages
[  493.189373][T12357] 1263 pages in swap cache
[  493.192856][T12357] Free swap  = 114648kB
[  493.196110][T12357] Total swap = 124996kB
[  493.198313][T12357] 524155 pages RAM
[  493.200229][T12357] 0 pages HighMem/MovableOnly
[  493.202233][T12357] 210148 pages reserved
[  493.204017][T12357] 0 pages cma reserved
[  493.667105][T12367] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1786'.
[  494.306184][T12376] trusted_key: encrypted_key: master key parameter 'deault' is invalid
[  494.392832][T12375] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  494.401517][T12375] block device autoloading is deprecated and will be removed.
[  499.890248][T12418] syz_tun: left promiscuous mode
[  500.240484][T12418] dummy0: left promiscuous mode
[  500.246692][T12418] macvlan2: left promiscuous mode
[  500.250193][T12418] macvlan2: left allmulticast mode
[  500.261486][T12418] geneve2: left promiscuous mode
[  500.265144][T12418] geneve2: left allmulticast mode
[  500.297444][   T60] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  500.313532][   T54] syz0: Port: 1 Link DOWN
[  500.346413][   T60] netdevsim netdevsim3 eth0: unset [1, 1] type 2 family 0 port 256 - 0
[  500.356087][   T60] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  500.362876][   T60] netdevsim netdevsim3 eth1: unset [1, 1] type 2 family 0 port 256 - 0
[  500.371111][   T60] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  500.377916][   T60] netdevsim netdevsim3 eth2: unset [1, 1] type 2 family 0 port 256 - 0
[  500.381190][   T60] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  500.394129][   T60] netdevsim netdevsim3 eth3: unset [1, 1] type 2 family 0 port 256 - 0
[  506.294068][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  506.450862][ T5952] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  506.620128][ T5952] usb 5-1: Using ep0 maxpacket: 8
[  506.640347][ T5952] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  506.654722][ T5952] usb 5-1: config 179 has no interface number 0
[  506.659927][ T5952] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  506.688867][ T5952] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  506.705357][ T5952] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  506.746451][ T5952] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  506.755325][ T5952] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  506.774999][ T5952] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  506.799717][ T5952] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  506.812113][T12461] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  507.150234][ T5952] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:179.65/input/input31
[  507.374541][ T5952] usb 5-1: USB disconnect, device number 16
[  507.377273][    C2] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  507.377318][    C2] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  510.712097][T12499] binder: 12497:12499 ioctl c0306201 0 returned -14
[  512.386534][T12525] syzkaller0: entered promiscuous mode
[  512.429714][T12525] syzkaller0: entered allmulticast mode
[  513.058726][T12541] fuse: Unknown parameter '18446744073709551615'
[  513.200392][   T40] kauditd_printk_skb: 4495 callbacks suppressed
[  513.200412][   T40] audit: type=1326 audit(1775444194.044:4935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12531 comm="syz.1.1827" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707ef6c code=0x0
[  514.486611][T12560] erspan0: left allmulticast mode
[  515.627371][T12560] dummy0: left promiscuous mode
[  515.630177][T12560] macvlan2: left promiscuous mode
[  515.632171][T12560] macvlan2: left allmulticast mode
[  515.936632][ T1187] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  516.062738][ T1187] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  516.067591][ T1187] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  516.077573][ T1187] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  516.693900][ T6010] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  517.154548][ T6010] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  517.160001][ T6010] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  517.164667][ T6010] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  517.169292][ T6010] usb 5-1: config 0 interface 0 has no altsetting 0
[  517.309923][ T6010] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  517.315214][ T6010] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  517.319699][ T6010] usb 5-1: config 0 interface 0 has no altsetting 0
[  517.374310][ T6010] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  517.385357][ T6010] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  517.396543][ T6010] usb 5-1: config 0 interface 0 has no altsetting 0
[  517.408291][ T6010] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  517.412183][ T6010] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  517.449208][ T6010] usb 5-1: config 0 interface 0 has no altsetting 0
[  517.478318][ T6010] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  517.485119][ T6010] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  517.497768][ T6010] usb 5-1: config 0 interface 0 has no altsetting 0
[  517.561263][ T6010] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  517.569389][ T6010] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  517.580655][ T6010] usb 5-1: config 0 interface 0 has no altsetting 0
[  517.603617][ T6010] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  517.607503][ T6010] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  517.617000][ T6010] usb 5-1: config 0 interface 0 has no altsetting 0
[  517.622654][ T6010] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  517.638777][ T6010] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  517.645066][ T6010] usb 5-1: config 0 interface 0 has no altsetting 0
[  517.685780][ T6010] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  517.691665][ T6010] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  517.697989][ T6010] usb 5-1: Product: syz
[  517.700372][ T6010] usb 5-1: Manufacturer: syz
[  517.703159][ T6010] usb 5-1: SerialNumber: syz
[  517.758060][ T6010] usb 5-1: config 0 descriptor??
[  517.795458][ T6010] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[  518.124567][    C3] usb 5-1: yurex_control_callback - control failed: -2
[  519.405389][T12585] fuse: Bad value for 'fd'
[  525.921880][T12598] 9pnet_virtio: no channels available for device syz
[  528.798563][   T10] usb 5-1: USB disconnect, device number 17
[  528.807088][   T10] yurex 5-1:0.0: USB YUREX #0 now disconnected
[  528.829139][   T63] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  528.904068][   T63] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  528.933556][   T63] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  529.005763][   T63] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  529.010335][   T63] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  529.047024][ T5961] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  529.060014][ T5961] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  529.079752][ T5961] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  529.151747][ T5961] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  529.164118][ T5961] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  530.324158][   T40] audit: type=1326 audit(1775444211.164:4936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.342354][   T40] audit: type=1326 audit(1775444211.164:4937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.384065][   T40] audit: type=1326 audit(1775444211.164:4938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.486599][   T40] audit: type=1326 audit(1775444211.164:4939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.513540][   T40] audit: type=1326 audit(1775444211.164:4940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.547271][   T40] audit: type=1326 audit(1775444211.164:4941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.593542][   T40] audit: type=1326 audit(1775444211.164:4942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.601743][   T40] audit: type=1326 audit(1775444211.164:4943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.661152][   T40] audit: type=1326 audit(1775444211.174:4944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  530.694304][   T40] audit: type=1326 audit(1775444211.174:4945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12611 comm="syz.0.1846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  531.014388][T12626] fuse: Bad value for 'fd'
[  531.334969][ T5961] Bluetooth: hci1: command tx timeout
[  533.384363][ T5961] Bluetooth: hci1: command tx timeout
[  533.484870][T12642] trusted_key: encrypted_key: insufficient parameters specified
[  533.936590][T12644] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1844'.
[  534.024666][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2ca!!!
[  534.130211][T12647] input: syz1 as /devices/virtual/input/input32
[  534.157078][T12647] dlm: Unknown command passed to DLM device : 3
[  534.157078][T12647] 
[  534.583598][T12603] chnl_net:caif_netlink_parms(): no params data found
[  535.553687][ T5961] Bluetooth: hci1: command tx timeout
[  536.256974][T12603] bridge0: port 1(bridge_slave_0) entered blocking state
[  536.281184][T12603] bridge0: port 1(bridge_slave_0) entered disabled state
[  536.286534][T12603] bridge_slave_0: entered allmulticast mode
[  536.304131][T12603] bridge_slave_0: entered promiscuous mode
[  536.309942][T12603] bridge0: port 2(bridge_slave_1) entered blocking state
[  536.320148][T12603] bridge0: port 2(bridge_slave_1) entered disabled state
[  536.374148][T12603] bridge_slave_1: entered allmulticast mode
[  536.392236][T12603] bridge_slave_1: entered promiscuous mode
[  536.571510][T12603] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  536.580703][T12603] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  536.629576][T12603] team0: Port device team_slave_0 added
[  536.646846][T12603] team0: Port device team_slave_1 added
[  536.720944][T12603] batman_adv: batadv0: Adding interface: batadv_slave_0
[  536.726413][T12603] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  536.742487][T12603] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  536.751597][T12603] batman_adv: batadv0: Adding interface: batadv_slave_1
[  536.758279][T12603] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  536.789367][T12603] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  536.917351][T12603] hsr_slave_0: entered promiscuous mode
[  536.920066][T12603] hsr_slave_1: entered promiscuous mode
[  536.922558][T12603] debugfs: 'hsr0' already exists in 'hsr'
[  536.926554][T12603] Cannot create hsr debugfs directory
[  537.725312][ T5961] Bluetooth: hci1: command tx timeout
[  540.676734][T12663] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  540.680995][T12663] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  540.700002][T12663] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  541.203791][T12603] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  541.272184][T12603] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  541.279070][   T10] usb 5-1: new full-speed USB device number 18 using dummy_hcd
[  541.308008][T12603] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  541.369624][T12603] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  541.473064][   T10] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  541.478970][   T10] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  541.492585][   T10] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  541.513383][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  541.762083][T12603] 8021q: adding VLAN 0 to HW filter on device bond0
[  541.819900][T12603] 8021q: adding VLAN 0 to HW filter on device team0
[  541.828070][   T10] usb 5-1: usb_control_msg returned -32
[  541.831906][   T10] usbtmc 5-1:16.0: can't read capabilities
[  541.843098][  T161] bridge0: port 1(bridge_slave_0) entered blocking state
[  541.846813][  T161] bridge0: port 1(bridge_slave_0) entered forwarding state
[  541.858184][  T161] bridge0: port 2(bridge_slave_1) entered blocking state
[  541.862635][  T161] bridge0: port 2(bridge_slave_1) entered forwarding state
[  541.932426][T12603] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  541.958467][T12603] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  542.186445][T12685] usbtmc 5-1:16.0: INITIATE_ABORT_BULK_IN returned 0
[  542.224604][   T12] bridge_slave_1: left allmulticast mode
[  542.231381][   T12] bridge_slave_1: left promiscuous mode
[  542.238004][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.330073][   T12] bridge_slave_0: left allmulticast mode
[  542.332557][   T12] bridge_slave_0: left promiscuous mode
[  542.349248][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.981937][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  542.986729][   T12] bond_slave_0: left allmulticast mode
[  542.991105][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  542.999209][   T12] bond_slave_1: left allmulticast mode
[  543.006307][   T12] bond0 (unregistering): Released all slaves
[  543.233451][   T12] tipc: Disabling bearer <eth:batadv0>
[  543.383629][   T12] tipc: Left network mode
[  543.434639][T12603] 8021q: adding VLAN 0 to HW filter on device batadv0
[  544.349756][T12603] veth0_vlan: entered promiscuous mode
[  544.415196][T12603] veth1_vlan: entered promiscuous mode
[  544.498426][   T10] usb 5-1: USB disconnect, device number 18
[  544.649899][T12603] veth0_macvtap: entered promiscuous mode
[  544.686389][T12603] veth1_macvtap: entered promiscuous mode
[  544.862066][T12603] batman_adv: batadv0: Interface activated: batadv_slave_0
[  544.895812][T12603] batman_adv: batadv0: Interface activated: batadv_slave_1
[  544.926878][ T1187] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  544.931024][ T1187] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  545.032169][ T1187] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  545.048167][ T1187] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  545.396324][  T161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  545.399979][  T161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  545.828806][ T1187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  545.838551][ T1187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.539935][T12730] can0: slcan on ptm0.
[  547.893567][ T7350] IPVS: starting estimator thread 0...
[  548.069840][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  548.073478][T12744] IPVS: using max 23 ests per chain, 55200 per kthread
[  548.077244][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  549.179267][   T12] team0 (unregistering): Port device team_slave_1 removed
[  549.203894][   T12] team0 (unregistering): Port device team_slave_0 removed
[  550.094519][T12751] 9pnet_virtio: no channels available for device syz
[  550.296008][T12729] can0 (unregistered): slcan off ptm0.
[  550.577510][T12767] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1862'.
[  550.909959][   T12] IPVS: stop unused estimator thread 0...
[  551.107520][T12782] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1866'.
[  551.270299][T12780] trusted_key: encrypted_key: key user:sy���z not found
[  553.320147][T12810] can0: slcan on ptm1.
[  553.468355][ T5961] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  555.012314][T12809] can0 (unregistered): slcan off ptm1.
[  555.444498][T12319] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  555.617134][T12319] usb 9-1: Using ep0 maxpacket: 8
[  555.624758][T12319] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  555.645643][T12319] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  555.663661][T12319] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  555.707010][T12319] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  555.719230][T12319] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  555.741313][T12319] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  556.007408][T12841] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1875'.
[  556.020642][T12319] usb 9-1: GET_CAPABILITIES returned 0
[  556.028984][T12319] usbtmc 9-1:16.0: can't read capabilities
[  556.253941][T12845] trusted_key: encrypted_key: insufficient parameters specified
[  558.313260][T12868] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1881'.
[  558.784095][T12319] usb 9-1: USB disconnect, device number 2
[  559.957925][T12889] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1890'.
[  560.065750][T12892] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1884'.
[  566.677745][T12949] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1899'.
[  567.758196][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  569.165830][T12979] trusted_key: encrypted_key: key user:sy���z not found
[  574.812402][T13024] trusted_key: encrypted_key: key user:sy���z not found
[  575.239738][T13022] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  575.269739][T13022] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  575.312935][T13022] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  577.082157][   T63] Bluetooth: hci1: command 0x0c1a tx timeout
[  579.153364][   T63] Bluetooth: hci1: command 0x0c1a tx timeout
[  579.315661][T13063] FAULT_INJECTION: forcing a failure.
[  579.315661][T13063] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  579.373919][T13063] CPU: 2 UID: 0 PID: 13063 Comm: syz.0.1932 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  579.373952][T13063] Tainted: [L]=SOFTLOCKUP
[  579.373958][T13063] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  579.373969][T13063] Call Trace:
[  579.373977][T13063]  <TASK>
[  579.373985][T13063]  dump_stack_lvl+0x100/0x190
[  579.374028][T13063]  should_fail_ex.cold+0x5/0xa
[  579.374054][T13063]  _copy_to_user+0x32/0xd0
[  579.374087][T13063]  simple_read_from_buffer+0xcb/0x170
[  579.374120][T13063]  proc_fail_nth_read+0x1af/0x230
[  579.374147][T13063]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  579.374171][T13063]  ? rw_verify_area+0xce/0x6d0
[  579.374197][T13063]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  579.374218][T13063]  vfs_read+0x1e4/0xb30
[  579.374239][T13063]  ? __pfx_vfs_read+0x10/0x10
[  579.374254][T13063]  ? find_held_lock+0x2b/0x80
[  579.374274][T13063]  ? __fget_files+0x215/0x3d0
[  579.374294][T13063]  ? __fget_files+0x21f/0x3d0
[  579.374323][T13063]  ksys_read+0x12a/0x250
[  579.374339][T13063]  ? __pfx_ksys_read+0x10/0x10
[  579.374360][T13063]  do_int80_emulation+0x141/0x6b0
[  579.374391][T13063]  asm_int80_emulation+0x1a/0x20
[  579.374408][T13063] RIP: 0023:0xf71e5cab
[  579.374421][T13063] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  579.374435][T13063] RSP: 002b:00000000f547c4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  579.374452][T13063] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f547c5d0
[  579.374462][T13063] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  579.374471][T13063] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  579.374479][T13063] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  579.374488][T13063] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  579.374509][T13063]  </TASK>
[  579.770955][T13059] 9pnet_virtio: no channels available for device syz
[  581.249208][   T63] Bluetooth: hci1: command 0x0c1a tx timeout
[  581.652119][T13076] netlink: 'syz.3.1935': attribute type 16 has an invalid length.
[  581.663505][T13076] netlink: 'syz.3.1935': attribute type 17 has an invalid length.
[  581.771276][T13076] 8021q: adding VLAN 0 to HW filter on device bond0
[  581.795104][T13076] 8021q: adding VLAN 0 to HW filter on device team0
[  581.825741][T13076] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  583.195897][T13102] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1943'.
[  583.206146][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  583.206165][   T40] audit: type=1326 audit(1775444264.054:4971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.206199][   T40] audit: type=1326 audit(1775444264.054:4972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.342972][   T40] audit: type=1326 audit(1775444264.184:4973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.403434][   T40] audit: type=1326 audit(1775444264.184:4974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.441418][   T40] audit: type=1326 audit(1775444264.184:4975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.489584][   T40] audit: type=1326 audit(1775444264.184:4976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.549783][   T40] audit: type=1326 audit(1775444264.184:4977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.565140][   T40] audit: type=1326 audit(1775444264.184:4978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.582311][   T40] audit: type=1326 audit(1775444264.184:4979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.602301][   T40] audit: type=1326 audit(1775444264.184:4980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13091 comm="syz.2.1943" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  583.634271][T13104] netlink: 'syz.0.1945': attribute type 1 has an invalid length.
[  583.662328][T13104] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1945'.
[  586.988013][T13138] netlink: 'syz.0.1957': attribute type 16 has an invalid length.
[  587.005743][T13133] Bluetooth: hci0: unsupported parameter 255
[  587.009417][T13133] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  587.023823][T13138] netlink: 'syz.0.1957': attribute type 17 has an invalid length.
[  587.028368][T13133] netlink: 'syz.3.1956': attribute type 10 has an invalid length.
[  587.032269][T13133] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1956'.
[  587.159295][T13138] 8021q: adding VLAN 0 to HW filter on device bond0
[  587.181351][T13138] 8021q: adding VLAN 0 to HW filter on device team0
[  587.254691][T13138] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  587.281529][T13133] dummy0: entered promiscuous mode
[  587.294149][T13133] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  588.378023][   T12] Bluetooth: (null): Invalid header checksum
[  588.517409][ T1152] Bluetooth: (null): Invalid header checksum
[  588.614593][ T1187] Bluetooth: (null): Invalid header checksum
[  588.728939][   T12] Bluetooth: (null): Invalid header checksum
[  588.836476][ T1152] Bluetooth: (null): Invalid header checksum
[  588.914786][T13156] Bluetooth: Invalid esc byte 0x17
[  588.945227][ T1187] Bluetooth: (null): Invalid header checksum
[  589.067107][   T12] Bluetooth: (null): Invalid header checksum
[  589.189046][   T12] Bluetooth: (null): Invalid header checksum
[  590.633598][T12321] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  590.864952][T12321] usb 5-1: config index 0 descriptor too short (expected 39, got 27)
[  590.868913][T12321] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  590.874542][T12321] usb 5-1: config 0 interface 0 has no altsetting 0
[  590.881212][T12321] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  590.922953][T12321] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  590.926697][T12321] usb 5-1: Product: syz
[  590.928363][T12321] usb 5-1: Manufacturer: syz
[  590.930555][T12321] usb 5-1: SerialNumber: syz
[  590.956073][T12321] usb 5-1: config 0 descriptor??
[  590.988333][T12321] hub 5-1:0.0: bad descriptor, ignoring hub
[  590.992351][T12321] hub 5-1:0.0: probe with driver hub failed with error -5
[  591.012329][T12321] usb 5-1: selecting invalid altsetting 0
[  592.547772][T13225] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1982'.
[  592.672856][   T63] Bluetooth: hci1: command 0x0c1a tx timeout
[  592.939594][T13184] snd-usb-audio 5-1:0.0: Runtime PM usage count underflow!
[  593.064211][T13057] usb 5-1: USB disconnect, device number 19
[  593.290431][T13242] netlink: 'syz.4.1988': attribute type 13 has an invalid length.
[  593.428180][T13244] overlayfs: invalid origin (000000ca387fe0fb3738702bed8ab4416592a5356da96db48150eae0040000006fe65c239a40022f0000000000000000)
[  593.693814][T13057] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  593.875144][T13057] usb 9-1: unable to get BOS descriptor or descriptor too short
[  593.880228][T13057] usb 9-1: config 4 has an invalid interface number: 52 but max is 2
[  593.885344][T13057] usb 9-1: config 4 contains an unexpected descriptor of type 0x1, skipping
[  593.889345][T13057] usb 9-1: config 4 has an invalid interface number: 251 but max is 2
[  593.893401][T13057] usb 9-1: config 4 contains an unexpected descriptor of type 0x2, skipping
[  593.898327][T13057] usb 9-1: config 4 contains an unexpected descriptor of type 0x1, skipping
[  593.902731][T13250] netlink: 112 bytes leftover after parsing attributes in process `syz.3.1990'.
[  593.908755][T13057] usb 9-1: config 4 has an invalid interface number: 57 but max is 2
[  593.914083][T13057] usb 9-1: config 4 contains an unexpected descriptor of type 0x1, skipping
[  593.919552][T13057] usb 9-1: config 4 has no interface number 0
[  593.922905][T13057] usb 9-1: config 4 has no interface number 1
[  593.965184][T13057] usb 9-1: config 4 has no interface number 2
[  593.970636][T13057] usb 9-1: config 4 interface 52 altsetting 249 endpoint 0xE has invalid maxpacket 1023, setting to 64
[  593.981217][T13057] usb 9-1: config 4 interface 52 altsetting 249 endpoint 0x5 has invalid maxpacket 2007, setting to 64
[  593.991829][T13057] usb 9-1: config 4 interface 52 altsetting 249 has a duplicate endpoint with address 0xE, skipping
[  593.998679][T13057] usb 9-1: config 4 interface 52 altsetting 249 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  594.007789][T13057] usb 9-1: config 4 interface 52 altsetting 249 has a duplicate endpoint with address 0xE, skipping
[  594.013924][T13057] usb 9-1: config 4 interface 52 altsetting 249 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  594.021217][T13057] usb 9-1: config 4 interface 52 altsetting 249 has a duplicate endpoint with address 0x6, skipping
[  594.029727][T13057] usb 9-1: config 4 interface 52 altsetting 249 has a duplicate endpoint with address 0x5, skipping
[  594.037590][T13057] usb 9-1: config 4 interface 52 altsetting 249 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  594.045807][T13057] usb 9-1: config 4 interface 52 altsetting 249 has a duplicate endpoint with address 0x1, skipping
[  594.054429][T13057] usb 9-1: config 4 interface 52 altsetting 249 has an invalid descriptor for endpoint zero, skipping
[  594.062274][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0x6, skipping
[  594.069712][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0xD, skipping
[  594.078941][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0xC, skipping
[  594.087631][T13057] usb 9-1: config 4 interface 251 altsetting 128 endpoint 0x4 has invalid maxpacket 1024, setting to 64
[  594.096209][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0xB, skipping
[  594.104583][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0xF, skipping
[  594.115776][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0xD, skipping
[  594.122830][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0xB, skipping
[  594.133079][T13057] usb 9-1: config 4 interface 251 altsetting 128 has an invalid descriptor for endpoint zero, skipping
[  594.142985][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0x1, skipping
[  594.151682][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0xD, skipping
[  594.173470][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0x1, skipping
[  594.233872][T13057] usb 9-1: config 4 interface 251 altsetting 128 has a duplicate endpoint with address 0xD, skipping
[  594.269890][T13057] usb 9-1: config 4 interface 57 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[  594.279264][T13057] usb 9-1: config 4 interface 57 altsetting 5 has a duplicate endpoint with address 0xB, skipping
[  594.326158][T13057] usb 9-1: config 4 interface 57 altsetting 5 has a duplicate endpoint with address 0xB, skipping
[  594.336915][T13057] usb 9-1: config 4 interface 57 altsetting 5 has a duplicate endpoint with address 0x7, skipping
[  594.347372][T13057] usb 9-1: config 4 interface 57 altsetting 5 has a duplicate endpoint with address 0x7, skipping
[  594.375715][T13057] usb 9-1: config 4 interface 57 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[  594.381442][T13057] usb 9-1: config 4 interface 57 altsetting 5 has a duplicate endpoint with address 0x7, skipping
[  594.396305][T13057] usb 9-1: config 4 interface 57 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[  594.410276][T13057] usb 9-1: config 4 interface 57 altsetting 5 has a duplicate endpoint with address 0xC, skipping
[  594.415719][T13057] usb 9-1: config 4 interface 57 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[  594.420598][T13057] usb 9-1: config 4 interface 57 altsetting 5 endpoint 0x8 has invalid maxpacket 512, setting to 64
[  594.425606][T13057] usb 9-1: config 4 interface 57 altsetting 5 has a duplicate endpoint with address 0xC, skipping
[  594.470485][T13057] usb 9-1: config 4 interface 57 altsetting 5 has a duplicate endpoint with address 0x6, skipping
[  594.478119][T13057] usb 9-1: config 4 interface 57 altsetting 5 has an invalid descriptor for endpoint zero, skipping
[  594.487235][T13057] usb 9-1: config 4 interface 52 has no altsetting 0
[  594.492045][T13057] usb 9-1: config 4 interface 251 has no altsetting 0
[  594.496861][T13057] usb 9-1: config 4 interface 57 has no altsetting 0
[  594.504698][T13057] usb 9-1: New USB device found, idVendor=157e, idProduct=300a, bcdDevice=ff.7d
[  594.510767][T13057] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  594.517827][T13057] usb 9-1: Product: syz
[  594.521494][T13057] usb 9-1: Manufacturer: 욀嫩䞐始⥂朐⴩Ǧꦝ≪ꛋ徐苴껋㢯峟਎歴櫺춾貲麡댙㺟ꏒ怺㝧⤧ꘊ瓵ﵽ뫸ᙅ豍㵸迉렄ጆ拏ާ녷滄ꢒ☨ꎦ❭蛖ꙏ퉩䮰
[  594.529901][T13057] usb 9-1: SerialNumber: syz
[  595.150536][T13281] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1998'.
[  596.450842][T13057] usb 9-1: USB disconnect, device number 3
[  596.728114][T13296] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2003'.
[  597.885653][T13314] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2009'.
[  598.795185][T13324] netlink: 'syz.4.2012': attribute type 1 has an invalid length.
[  598.803719][T13324] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2012'.
[  600.330488][T13343] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2017'.
[  600.457146][T13345] trusted_key: encrypted_key: key user:sy���z not found
[  600.525225][T13347] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2019'.
[  601.751005][T13361] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2024'.
[  604.898001][T13388] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2029'.
[  605.616122][T13395] trusted_key: encrypted_key: key user:sy���z not found
[  605.775415][T13397] 9pnet_virtio: no channels available for device syz
[  605.989935][T13402] vivid-007: =================  START STATUS  =================
[  606.003441][T13402] vivid-007: Enable Output Cropping: true grabbed
[  606.009605][T13402] vivid-007: Enable Output Composing: true grabbed
[  606.040015][T13402] vivid-007: Enable Output Scaler: true grabbed
[  606.043727][T13402] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  606.049167][T13402] vivid-007: Transmit Mode: HDMI grabbed
[  606.052199][T13402] vivid-007: Hotplug Present: 0x00000000
[  606.056994][T13402] vivid-007: RxSense Present: 0x00000000
[  606.059894][T13402] vivid-007: EDID Present: 0x00000000
[  606.065087][T13402] vivid-007: ==================  END STATUS  ==================
[  607.461013][T13417] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2038'.
[  607.615289][T13419] netlink: 112 bytes leftover after parsing attributes in process `syz.2.2039'.
[  607.953172][T13424] syzkaller1: entered promiscuous mode
[  607.955978][T13424] syzkaller1: entered allmulticast mode
[  608.106076][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  608.106098][   T40] audit: type=1326 audit(1775444517.947:4982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.173172][   T40] audit: type=1326 audit(1775444517.987:4983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.257847][   T40] audit: type=1326 audit(1775444517.987:4984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.283428][   T40] audit: type=1326 audit(1775444517.987:4985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf71e5cab code=0x7ffc0000
[  608.319179][   T40] audit: type=1326 audit(1775444517.987:4986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.332134][T13414] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  608.346394][T13414] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  608.353425][   T40] audit: type=1326 audit(1775444518.017:4987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.383974][T13429] pim6reg: entered allmulticast mode
[  608.384781][   T40] audit: type=1326 audit(1775444518.017:4988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.412115][   T40] audit: type=1326 audit(1775444518.017:4989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.423624][   T40] audit: type=1326 audit(1775444518.017:4990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.465272][   T40] audit: type=1326 audit(1775444518.017:4991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13425 comm="syz.0.2042" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  608.474668][T13414] vhci_hcd vhci_hcd.0: Device attached
[  608.780990][T13436] pim6reg: left allmulticast mode
[  608.784919][T13057] usb 44-1: SetAddress Request (6) to port 0
[  609.036222][T13057] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  609.044275][T13439] trusted_key: encrypted_key: key user:sy���z not found
[  609.141852][T13432] vhci_hcd: connection closed
[  609.154248][  T161] vhci_hcd vhci_hcd.3: stop threads
[  609.159858][  T161] vhci_hcd vhci_hcd.3: release socket
[  609.162994][  T161] vhci_hcd vhci_hcd.3: disconnect device
[  609.762870][T13449] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2047'.
[  610.457760][T13458] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2049'.
[  610.501222][T13458] 8021q: adding VLAN 0 to HW filter on device bond2
[  610.643715][   T10] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  610.704258][T13464] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2049'.
[  610.725163][T13464] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2049'.
[  610.768264][T13464] bond2 (unregistering): Released all slaves
[  610.811553][   T10] usb 9-1: config 0 has an invalid interface number: 127 but max is 0
[  610.823850][   T10] usb 9-1: config 0 has no interface number 0
[  610.827377][   T10] usb 9-1: config 0 interface 127 has no altsetting 0
[  610.866720][   T10] usb 9-1: New USB device found, idVendor=112a, idProduct=0005, bcdDevice=fe.2d
[  610.874784][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  610.881804][   T10] usb 9-1: Product: syz
[  610.926431][   T10] usb 9-1: Manufacturer: syz
[  610.928326][   T10] usb 9-1: SerialNumber: syz
[  610.974775][   T10] usb 9-1: config 0 descriptor??
[  611.310462][   T10] redrat3 9-1:0.127: Couldn't find all endpoints
[  611.365768][   T10] usb 9-1: USB disconnect, device number 4
[  611.415552][T13477] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2053'.
[  611.888135][T13489] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2056'.
[  612.779324][T13498] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[  613.090175][T13512] loop4: detected capacity change from 0 to 7
[  613.546691][T13522] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2064'.
[  613.565899][T13520] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2063'.
[  613.655160][T13520] 8021q: adding VLAN 0 to HW filter on device bond1
[  613.883201][T13524] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2063'.
[  613.894286][T13524] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2063'.
[  613.925438][T13524] bond1 (unregistering): Released all slaves
[  614.190859][T13057] usb 44-1: device descriptor read/8, error -110
[  614.484406][T13537] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2066'.
[  614.607299][T13057] usb usb44-port1: attempt power cycle
[  614.902030][T13544] x_tables: duplicate underflow at hook 1
[  615.177230][T13057] usb usb44-port1: unable to enumerate USB device
[  615.536375][T13559] netlink: 228 bytes leftover after parsing attributes in process `syz.4.2071'.
[  615.559805][T13557] i2c i2c-1: DVB: adapter 0 frontend 0 frequency 4294967292 out of range (51000000..2150000000)
[  616.309582][T13567] netlink: 'syz.3.2073': attribute type 29 has an invalid length.
[  616.314661][T13567] netlink: 'syz.3.2073': attribute type 29 has an invalid length.
[  618.264835][T13578] netlink: 112 bytes leftover after parsing attributes in process `syz.4.2076'.
[  619.313632][T13591] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  619.349915][T13591] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  621.024297][T13608] netlink: 112 bytes leftover after parsing attributes in process `syz.2.2085'.
[  623.216994][T13646] 9pnet_virtio: no channels available for device syz
[  623.343585][   T40] kauditd_printk_skb: 19 callbacks suppressed
[  623.343609][   T40] audit: type=1326 audit(1775444533.177:5011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.371875][   T40] audit: type=1326 audit(1775444533.177:5012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.453194][   T40] audit: type=1326 audit(1775444533.277:5013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=427 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.480314][   T40] audit: type=1326 audit(1775444533.277:5014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.533660][   T40] audit: type=1326 audit(1775444533.277:5015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.593392][   T40] audit: type=1326 audit(1775444533.277:5016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.617046][   T40] audit: type=1326 audit(1775444533.377:5017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.632464][   T40] audit: type=1326 audit(1775444533.377:5018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.664603][   T40] audit: type=1326 audit(1775444533.467:5019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.697486][   T40] audit: type=1326 audit(1775444533.467:5020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13641 comm="syz.0.2095" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70aef6c code=0x7ffc0000
[  623.834493][T13644] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2095'.
[  623.840838][T13644] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2095'.
[  624.450286][T13661] set match dimension is over the limit!
[  626.377739][T13675] input: syz1 as /devices/virtual/input/input34
[  626.455946][T13675] 9pnet_virtio: no channels available for device syz
[  628.852552][T13697] syzkaller0: entered promiscuous mode
[  628.874886][T13697] syzkaller0: entered allmulticast mode
[  629.218312][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  630.177734][T13716] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2117'.
[  630.211700][T13716] 8021q: adding VLAN 0 to HW filter on device bond3
[  630.409061][T13720] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2117'.
[  630.417163][T13720] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2117'.
[  630.471365][T13720] bond3 (unregistering): Released all slaves
[  631.607647][   T13] Bluetooth: Error in BCSP hdr checksum
[  631.667073][T13742] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2123'.
[  631.671152][T13742] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2123'.
[  631.885816][  T102] Bluetooth: Error in BCSP hdr checksum
[  632.165040][   T13] Bluetooth: Error in BCSP hdr checksum
[  632.423902][   T13] Bluetooth: Error in BCSP hdr checksum
[  633.296712][T13763] trusted_key: encrypted_key: key user:sy���z not found
[  633.410337][ T5961] Bluetooth: hci4: command 0x1003 tx timeout
[  633.479436][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  634.033684][T13774] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2130'.
[  634.795646][T13787] syzkaller0: entered promiscuous mode
[  634.798652][T13787] syzkaller0: entered allmulticast mode
[  635.229981][T13795] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2137'.
[  635.629006][T12319] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  635.855966][T12319] usb 9-1: too many configurations: 119, using maximum allowed: 8
[  635.875859][T12319] usb 9-1: config index 0 descriptor too short (expected 9, got 0)
[  635.879364][T12319] usb 9-1: can't read configurations, error -22
[  636.075247][T12319] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  636.284772][T12319] usb 9-1: too many configurations: 119, using maximum allowed: 8
[  636.350680][T12319] usb 9-1: config index 0 descriptor too short (expected 9, got 0)
[  636.355479][T12319] usb 9-1: can't read configurations, error -22
[  636.383587][T12319] usb usb9-port1: attempt power cycle
[  636.782382][T12319] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  636.815409][T12319] usb 9-1: too many configurations: 119, using maximum allowed: 8
[  636.833818][T12319] usb 9-1: config index 0 descriptor too short (expected 9, got 0)
[  636.837613][T12319] usb 9-1: can't read configurations, error -22
[  636.989159][T12319] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  637.015289][T12319] usb 9-1: too many configurations: 119, using maximum allowed: 8
[  637.088886][T12319] usb 9-1: config index 0 descriptor too short (expected 9, got 0)
[  637.093199][T12319] usb 9-1: can't read configurations, error -22
[  637.128270][T12319] usb usb9-port1: unable to enumerate USB device
[  637.211455][T13818] netlink: 112 bytes leftover after parsing attributes in process `syz.2.2145'.
[  639.627292][T13851] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2155'.
[  639.997614][T13862] 8021q: adding VLAN 0 to HW filter on device bond1
[  640.017824][T13862] bond0: (slave bond1): Enslaving as an active interface with an up link
[  640.626304][T13871] fuse: Unknown parameter 'group_i00000000000000000000'
[  640.947839][T13884] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2164'.
[  641.105398][T13882] netlink: 272 bytes leftover after parsing attributes in process `syz.2.2163'.
[  641.163093][T13887] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2165'.
[  641.276282][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  641.276304][   T40] audit: type=1326 audit(1775444551.067:5030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13880 comm="syz.2.2163" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70aef6c code=0x0
[  641.376447][T13893] netlink: 112 bytes leftover after parsing attributes in process `syz.4.2166'.
[  642.306350][T13900] fuse: Unknown parameter '�8�?@������UeJ�R�`����ȉW�7����3�H�b�@3F#�C�m	aI���jPz&��`W��"81A��T�˫�	��&�3.�V���ފV�p{�z���8*wLO�X��腝����
�?�1���y`KB߮#�C��G�����6��P�'��46�Q�K���l��\&�c�����S��{�»��*��J'
[  643.106009][T13906] fuse: Unknown parameter 'group_i00000000000000000000'
[  644.066469][T13935] trusted_key: encrypted_key: insufficient parameters specified
[  644.196768][T13937] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2176'.
[  644.967862][T13950] fuse: Unknown parameter 'group_id00000000000000000000'
[  645.255876][T13963] trusted_key: encrypted_key: insufficient parameters specified
[  645.477721][T13973] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2186'.
[  645.585033][T13977] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2187'.
[  646.200299][T13994] serio: Serial port ptm0
[  646.541145][T14005] trusted_key: encrypted_key: insufficient parameters specified
[  646.549210][T13995] fuse: Unknown parameter 'group_id00000000000000000000'
[  646.611991][T14007] FAULT_INJECTION: forcing a failure.
[  646.611991][T14007] name failslab, interval 1, probability 0, space 0, times 0
[  646.630159][T14007] CPU: 1 UID: 0 PID: 14007 Comm: syz.4.2196 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  646.630196][T14007] Tainted: [L]=SOFTLOCKUP
[  646.630204][T14007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  646.630218][T14007] Call Trace:
[  646.630232][T14007]  <TASK>
[  646.630245][T14007]  dump_stack_lvl+0x100/0x190
[  646.630293][T14007]  should_fail_ex.cold+0x5/0xa
[  646.630329][T14007]  should_failslab+0xc2/0x120
[  646.630360][T14007]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  646.630402][T14007]  ? vm_area_dup+0x27/0x8e0
[  646.630434][T14007]  ? __pfx_mt_validate_nulls+0x10/0x10
[  646.630471][T14007]  vm_area_dup+0x27/0x8e0
[  646.630506][T14007]  __split_vma+0x18c/0xd90
[  646.630548][T14007]  ? __pfx___split_vma+0x10/0x10
[  646.630590][T14007]  ? __pfx_mas_prev+0x10/0x10
[  646.630626][T14007]  vms_gather_munmap_vmas+0x39f/0x1500
[  646.630672][T14007]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  646.630709][T14007]  ? mas_find+0x2dd/0x740
[  646.630740][T14007]  ? validate_mm+0x392/0x4e0
[  646.630780][T14007]  do_vmi_align_munmap+0x287/0x5f0
[  646.630831][T14007]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  646.630917][T14007]  do_vmi_munmap+0x1f8/0x3e0
[  646.630962][T14007]  __vm_munmap+0x196/0x390
[  646.630999][T14007]  ? __pfx___vm_munmap+0x10/0x10
[  646.631048][T14007]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  646.631085][T14007]  __ia32_sys_munmap+0x57/0x80
[  646.631114][T14007]  __do_fast_syscall_32+0xe3/0x8c0
[  646.631148][T14007]  do_fast_syscall_32+0x32/0x70
[  646.631174][T14007]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  646.631207][T14007] RIP: 0023:0xf7f05f6c
[  646.631227][T14007] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  646.631248][T14007] RSP: 002b:00000000f53c524c EFLAGS: 00000292 ORIG_RAX: 000000000000005b
[  646.631273][T14007] RAX: ffffffffffffffda RBX: 00000000f51a6000 RCX: 000000000005a000
[  646.631288][T14007] RDX: 00000000f7392ff4 RSI: 0000000000021000 RDI: 0000000000100000
[  646.631301][T14007] RBP: 00000000f5200000 R08: 0000000000000000 R09: 0000000000000000
[  646.631315][T14007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  646.631329][T14007] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  646.631362][T14007]  </TASK>
[  646.961861][T14011] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2197'.
[  647.096128][T14015] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  647.121340][T14015] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  647.128040][T14015] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  647.171497][T14015] overlayfs: failed lookup in lower (newroot/89, name='file1', err=-40): overlapping layers
[  647.228761][ T5952] usb 5-1: new full-speed USB device number 20 using dummy_hcd
[  647.402025][ T5952] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  647.421217][ T5952] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  647.484511][ T5952] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  647.489407][ T5952] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  647.541182][ T5952] usb 5-1: config 0 descriptor??
[  647.564263][T14027] trusted_key: encrypted_key: insufficient parameters specified
[  647.596885][ T5952] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  647.614827][ T5952] dvb-usb: bulk message failed: -22 (3/0)
[  647.682874][ T5952] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  647.709563][ T5952] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  647.727845][ T5952] usb 5-1: media controller created
[  647.748907][ T5952] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  647.814471][ T5952] dvb-usb: bulk message failed: -22 (6/0)
[  647.838213][ T5952] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  647.860546][ T5952] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input35
[  647.894180][ T5952] dvb-usb: schedule remote query interval to 150 msecs.
[  647.912830][ T5952] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  648.148569][ T5952] dvb-usb: bulk message failed: -22 (1/0)
[  648.151563][ T5952] dvb-usb: error while querying for an remote control event.
[  648.323427][ T5952] dvb-usb: bulk message failed: -22 (1/0)
[  648.327529][ T5952] dvb-usb: error while querying for an remote control event.
[  648.478643][T14036] fuse: Unknown parameter 'group_id00000000000000000000'
[  648.500078][ T5952] dvb-usb: bulk message failed: -22 (1/0)
[  648.502280][ T5952] dvb-usb: error while querying for an remote control event.
[  648.663571][ T5952] dvb-usb: bulk message failed: -22 (1/0)
[  648.690089][ T5952] dvb-usb: error while querying for an remote control event.
[  648.787916][T14045] netlink: 112 bytes leftover after parsing attributes in process `syz.2.2209'.
[  648.887062][ T5952] dvb-usb: bulk message failed: -22 (1/0)
[  648.889874][ T5952] dvb-usb: error while querying for an remote control event.
[  649.056527][ T5952] dvb-usb: bulk message failed: -22 (1/0)
[  649.062248][ T5952] dvb-usb: error while querying for an remote control event.
[  649.253740][ T5952] dvb-usb: bulk message failed: -22 (1/0)
[  649.258375][ T5952] dvb-usb: error while querying for an remote control event.
[  649.423492][T14060] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2212'.
[  649.451099][ T5952] dvb-usb: bulk message failed: -22 (1/0)
[  649.454425][ T5952] dvb-usb: error while querying for an remote control event.
[  649.640911][T13057] dvb-usb: bulk message failed: -22 (1/0)
[  649.649657][T13057] dvb-usb: error while querying for an remote control event.
[  649.823414][T13057] dvb-usb: bulk message failed: -22 (1/0)
[  649.826186][T13057] dvb-usb: error while querying for an remote control event.
[  649.946943][T13057] usb 5-1: USB disconnect, device number 20
[  650.049082][T14064] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2213'.
[  650.121767][T14064] 8021q: adding VLAN 0 to HW filter on device bond2
[  650.176258][T13057] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  650.336003][T14064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2213'.
[  650.353721][T14064] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2213'.
[  650.389094][T14064] bond2 (unregistering): Released all slaves
[  652.515888][T14088] FAULT_INJECTION: forcing a failure.
[  652.515888][T14088] name failslab, interval 1, probability 0, space 0, times 0
[  652.541042][T14088] CPU: 3 UID: 0 PID: 14088 Comm: syz.0.2218 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  652.541076][T14088] Tainted: [L]=SOFTLOCKUP
[  652.541081][T14088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  652.541093][T14088] Call Trace:
[  652.541101][T14088]  <TASK>
[  652.541109][T14088]  dump_stack_lvl+0x100/0x190
[  652.541147][T14088]  should_fail_ex.cold+0x5/0xa
[  652.541170][T14088]  should_failslab+0xc2/0x120
[  652.541192][T14088]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  652.541217][T14088]  ? skb_clone+0x190/0x400
[  652.541239][T14088]  skb_clone+0x190/0x400
[  652.541254][T14088]  netlink_deliver_tap+0xaed/0xcc0
[  652.541276][T14088]  netlink_unicast+0x650/0x870
[  652.541295][T14088]  ? __pfx_netlink_unicast+0x10/0x10
[  652.541321][T14088]  netlink_sendmsg+0x8b0/0xda0
[  652.541341][T14088]  ? __pfx_netlink_sendmsg+0x10/0x10
[  652.541360][T14088]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  652.541387][T14088]  ____sys_sendmsg+0x9e1/0xb70
[  652.541407][T14088]  ? __pfx_netlink_sendmsg+0x10/0x10
[  652.541426][T14088]  ? __pfx_____sys_sendmsg+0x10/0x10
[  652.541455][T14088]  ___sys_sendmsg+0x190/0x1e0
[  652.541478][T14088]  ? __pfx____sys_sendmsg+0x10/0x10
[  652.541531][T14088]  __sys_sendmsg+0x170/0x220
[  652.541551][T14088]  ? __pfx___sys_sendmsg+0x10/0x10
[  652.541578][T14088]  ? __pfx_ksys_write+0x10/0x10
[  652.541603][T14088]  __do_fast_syscall_32+0xe3/0x8c0
[  652.541628][T14088]  do_fast_syscall_32+0x32/0x70
[  652.541649][T14088]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  652.541671][T14088] RIP: 0023:0xf70aef6c
[  652.541686][T14088] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  652.541702][T14088] RSP: 002b:00000000f549d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  652.541721][T14088] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000580
[  652.541731][T14088] RDX: 000000000400c0c0 RSI: 0000000000000000 RDI: 0000000000000000
[  652.541742][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  652.541752][T14088] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  652.541762][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  652.541787][T14088]  </TASK>
[  652.541868][T14088] netlink: 264 bytes leftover after parsing attributes in process `syz.0.2218'.
[  652.978955][T14098] netlink: 112 bytes leftover after parsing attributes in process `syz.4.2221'.
[  653.434632][T14108] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2224'.
[  653.442197][T14108] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2224'.
[  653.589341][T14105] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2223'.
[  653.774749][T14105] 8021q: adding VLAN 0 to HW filter on device bond2
[  653.777092][T14116] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2223'.
[  653.818390][T14105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2223'.
[  653.902938][T14105] bond2 (unregistering): Released all slaves
[  660.601971][T14146] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2233'.
[  662.651053][   T40] audit: type=1326 audit(1775444572.477:5031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14176 comm="syz.0.2243" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70aef6c code=0x0
[  663.892907][T14193] mkiss: ax0: crc mode is auto.
[  663.980395][T14195] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  663.997390][T14195] bridge0: port 1(bridge_slave_0) entered learning state
[  668.982940][T14270] netlink: 'syz.0.2270': attribute type 8 has an invalid length.
[  669.108883][T14272] bridge0: port 1(bridge_slave_0) entered learning state
[  670.093638][   T40] audit: type=1326 audit(1775444579.937:5032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.121446][   T40] audit: type=1326 audit(1775444579.937:5033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.144124][T14292] loop6: detected capacity change from 0 to 2640
[  670.159830][   T40] audit: type=1326 audit(1775444579.967:5034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.161577][T14174] Buffer I/O error on dev loop6, logical block 0, lost async page write
[  670.175880][T14292] Buffer I/O error on dev loop6, logical block 256, lost async page write
[  670.178962][T14174] Buffer I/O error on dev loop6, logical block 1, lost async page write
[  670.185837][T14292] Buffer I/O error on dev loop6, logical block 257, lost async page write
[  670.196752][   T40] audit: type=1326 audit(1775444579.967:5035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.200563][T14174] Buffer I/O error on dev loop6, logical block 2, lost async page write
[  670.220053][T14292] Buffer I/O error on dev loop6, logical block 258, lost async page write
[  670.220093][T14292] Buffer I/O error on dev loop6, logical block 259, lost async page write
[  670.220118][T14292] Buffer I/O error on dev loop6, logical block 260, lost async page write
[  670.220145][T14292] Buffer I/O error on dev loop6, logical block 261, lost async page write
[  670.220170][T14292] Buffer I/O error on dev loop6, logical block 262, lost async page write
[  670.221498][   T40] audit: type=1326 audit(1775444579.967:5036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.339356][   T40] audit: type=1326 audit(1775444579.987:5037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.352453][   T40] audit: type=1326 audit(1775444579.987:5038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.365352][   T40] audit: type=1326 audit(1775444579.987:5039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=128 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.409311][   T40] audit: type=1326 audit(1775444579.987:5040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.430960][   T40] audit: type=1326 audit(1775444579.987:5041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.3.2278" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fd6f6c code=0x7ffc0000
[  670.608352][T14301] netlink: 'syz.0.2281': attribute type 21 has an invalid length.
[  670.612176][T14301] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2281'.
[  674.227330][T14345] smc: removing ib device syz1
[  675.104969][T14353] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2290'.
[  676.444161][T14360] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  677.112043][T14369] lo: Caught tx_queue_len zero misconfig
[  677.114609][T14369] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  677.471287][T14375] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2298'.
[  677.501473][T14375] 8021q: adding VLAN 0 to HW filter on device bond3
[  677.729987][T14377] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2298'.
[  677.746762][T14380] overlayfs: failed to resolve './file0': -2
[  677.752264][T14377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2298'.
[  677.988699][T14377] bond3 (unregistering): Released all slaves
[  682.050200][T14418] netlink: 'syz.4.2311': attribute type 10 has an invalid length.
[  682.126612][T14418] team0: Port device netdevsim0 added
[  682.248843][    C3] hrtimer: interrupt took 5117849 ns
[  682.364892][T14423] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2310'.
[  682.696079][T14429] tipc: Started in network mode
[  682.699488][T14429] tipc: Node identity 4, cluster identity 4711
[  682.702881][T14429] tipc: Node number set to 4
[  683.939167][T14458] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2323'.
[  686.517801][T14496] netlink: 112 bytes leftover after parsing attributes in process `syz.2.2333'.
[  686.830372][ T1024] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  686.983379][ T1024] usb 5-1: Using ep0 maxpacket: 32
[  686.991091][ T1024] usb 5-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f
[  686.998127][ T1024] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  687.005385][ T1024] usb 5-1: Product: syz
[  687.007573][ T1024] usb 5-1: Manufacturer: syz
[  687.021643][ T1024] usb 5-1: SerialNumber: syz
[  687.032892][ T1024] usb 5-1: config 0 descriptor??
[  687.054970][ T1024] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state.
[  687.058716][ T1024] dvb-usb: bulk message failed: -22 (4/0)
[  687.062025][ T1024] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[  687.078720][ T1024] dvb-usb: bulk message failed: -22 (5/0)
[  687.081835][ T1024] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[  687.104841][ T1024] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  687.119247][ T1024] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0)
[  687.130385][ T1024] usb 5-1: media controller created
[  687.161852][ T1024] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  687.226473][ T1024] usb 5-1: selecting invalid altsetting 3
[  687.230712][ T1024] ttusb2: set interface to alts=3 failed
[  687.266834][T14498] dvb-usb: bulk message failed: -22 (7/0)
[  687.288919][T14498] ttusb2: there might have been an error during control message transfer. (rlen = 3, was 0)
[  687.319585][T14498] ttusb2: i2c transfer failed.
[  687.425412][ T1024] DVB: Unable to find symbol tda10086_attach()
[  687.432057][ T1024] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0'
[  687.473930][ T1024] dvb-usb: bulk message failed: -22 (4/0)
[  687.499127][ T1024] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[  687.513455][ T1024] dvb-usb: bulk message failed: -22 (5/0)
[  687.520385][ T1024] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[  687.554255][ T1024] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected.
[  689.180494][T12322] usb 5-1: USB disconnect, device number 21
[  689.265338][T12322] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected.
[  690.589678][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  691.159150][T14556] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  692.361383][T14566] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2353'.
[  692.442647][T14561] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  692.445513][T14561] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  692.472607][T14563] FAULT_INJECTION: forcing a failure.
[  692.472607][T14563] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  692.478102][T14563] CPU: 0 UID: 0 PID: 14563 Comm: syz.3.2352 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  692.478134][T14563] Tainted: [L]=SOFTLOCKUP
[  692.478141][T14563] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  692.478151][T14563] Call Trace:
[  692.478160][T14563]  <TASK>
[  692.478171][T14563]  dump_stack_lvl+0x100/0x190
[  692.478215][T14563]  should_fail_ex.cold+0x5/0xa
[  692.478244][T14563]  _copy_from_user+0x2e/0xd0
[  692.478277][T14563]  kstrtouint_from_user+0xd6/0x1d0
[  692.478309][T14563]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  692.478339][T14563]  ? __lock_acquire+0x4a5/0x2630
[  692.478372][T14563]  ? lock_acquire+0x1cf/0x380
[  692.478404][T14563]  proc_fail_nth_write+0x83/0x220
[  692.478435][T14563]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  692.478470][T14563]  vfs_write+0x2aa/0x1070
[  692.478495][T14563]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  692.478528][T14563]  ? __pfx_vfs_write+0x10/0x10
[  692.478545][T14563]  ? find_held_lock+0x2b/0x80
[  692.478566][T14563]  ? __fget_files+0x215/0x3d0
[  692.478596][T14563]  ? __fget_files+0x21f/0x3d0
[  692.478623][T14563]  ksys_write+0x12a/0x250
[  692.478644][T14563]  ? __pfx_ksys_write+0x10/0x10
[  692.478673][T14563]  do_int80_emulation+0x141/0x6b0
[  692.478706][T14563]  asm_int80_emulation+0x1a/0x20
[  692.478726][T14563] RIP: 0023:0xf71d5cab
[  692.478744][T14563] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  692.478762][T14563] RSP: 002b:00000000f54964bc EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[  692.478782][T14563] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54965d0
[  692.478794][T14563] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  692.478804][T14563] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  692.478816][T14563] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  692.478827][T14563] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  692.478855][T14563]  </TASK>
[  692.626090][T14573] trusted_key: encrypted_key: key user:sy���z not found
[  692.629315][T14561] vhci_hcd vhci_hcd.0: Device attached
[  692.983532][   T10] usb 38-1: SetAddress Request (2) to port 0
[  692.986182][   T10] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  694.370598][T14593] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  694.461645][T14593] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  694.484592][T14593] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  694.661654][T14593] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  694.667085][T14593] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  694.799559][ T9514] bond0: (slave syz_tun): Releasing backup interface
[  694.891897][T14568] vhci_hcd: connection reset by peer
[  694.960867][   T60] vhci_hcd vhci_hcd.0: stop threads
[  694.964019][   T60] vhci_hcd vhci_hcd.0: release socket
[  694.966477][   T60] vhci_hcd vhci_hcd.0: disconnect device
[  695.265527][T14597] trusted_key: encrypted_key: key user:sy���z not found
[  695.452172][T14590] chnl_net:caif_netlink_parms(): no params data found
[  695.657283][T14603] ipt_REJECT: TCP_RESET invalid for non-tcp
[  695.749922][T14590] bridge0: port 1(bridge_slave_0) entered blocking state
[  695.753580][T14590] bridge0: port 1(bridge_slave_0) entered disabled state
[  695.759291][T14590] bridge_slave_0: entered allmulticast mode
[  695.768956][T14590] bridge_slave_0: entered promiscuous mode
[  695.775621][T14590] bridge0: port 2(bridge_slave_1) entered blocking state
[  695.785483][T14590] bridge0: port 2(bridge_slave_1) entered disabled state
[  695.790412][T14590] bridge_slave_1: entered allmulticast mode
[  695.797757][T14590] bridge_slave_1: entered promiscuous mode
[  695.870928][ T6010] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  695.875357][T14590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  695.929420][T14590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  695.963835][T14590] team0: Port device team_slave_0 added
[  695.986534][T14610] netlink: 'syz.0.2366': attribute type 5 has an invalid length.
[  695.987406][T14590] team0: Port device team_slave_1 added
[  696.010222][T14610] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  696.036915][T14590] batman_adv: batadv0: Adding interface: batadv_slave_0
[  696.039752][T14590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  696.055470][T14590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  696.060977][ T6010] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  696.064955][T14590] batman_adv: batadv0: Adding interface: batadv_slave_1
[  696.068409][ T6010] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  696.071603][T14590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  696.091206][T14590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  696.098232][ T6010] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  696.139626][ T6010] usb 9-1: config 0 descriptor??
[  696.275913][T14590] hsr_slave_0: entered promiscuous mode
[  696.284802][T14590] hsr_slave_1: entered promiscuous mode
[  696.288124][T14590] debugfs: 'hsr0' already exists in 'hsr'
[  696.306154][T14590] Cannot create hsr debugfs directory
[  696.394300][ T6010] usbhid 9-1:0.0: can't add hid device: -71
[  696.448509][ T6010] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  696.519547][ T6010] usb 9-1: USB disconnect, device number 9
[  696.793913][   T63] Bluetooth: hci4: command tx timeout
[  696.993412][ T6010] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  697.573866][ T6010] usb 9-1: Using ep0 maxpacket: 32
[  697.589637][ T6010] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  697.594078][ T6010] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  697.612070][ T6010] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  697.799937][ T6010] usb 9-1: config 0 descriptor??
[  697.839807][ T6010] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  697.894991][ T6010] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  697.922995][  T102] bond2 (unregistering): (slave geneve3): Releasing active interface
[  698.025879][   T10] usb 38-1: device descriptor read/8, error -110
[  698.216625][  T102] bond0 (unregistering): Released all slaves
[  698.224929][  T102] bond1 (unregistering): Released all slaves
[  698.248084][  T102] bond2 (unregistering): Released all slaves
[  698.389183][T12321] usb 9-1: USB disconnect, device number 10
[  698.396601][T12321] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[  698.446525][   T10] usb usb38-port1: attempt power cycle
[  698.833438][   T63] Bluetooth: hci4: command tx timeout
[  699.125197][   T10] usb usb38-port1: unable to enumerate USB device
[  699.442211][T14652] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2374'.
[  699.462987][T14655] netlink: 'syz.2.2374': attribute type 3 has an invalid length.
[  699.494549][T14652] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2374'.
[  699.839187][T14664] syzkaller0: entered promiscuous mode
[  699.841311][T14664] syzkaller0: entered allmulticast mode
[  699.961858][  T102] hsr_slave_0: left promiscuous mode
[  699.992367][  T102] hsr_slave_1: left promiscuous mode
[  700.362816][ T1144] smc: removing ib device syz2
[  700.956446][   T63] Bluetooth: hci4: command tx timeout
[  701.066619][   T34] ==================================================================
[  701.071493][   T34] BUG: KASAN: slab-use-after-free in __ethtool_get_link_ksettings+0x190/0x1c0
[  701.080960][   T34] Read of size 8 at addr ffff8880500e42f0 by task kworker/3:0/34
[  701.096291][   T34] 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  701.097581][   T34] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  701.097608][   T34] Tainted: [L]=SOFTLOCKUP
[  701.097616][   T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  701.097629][   T34] Workqueue: events smc_ib_port_event_work
[  701.097661][   T34] Call Trace:
[  701.097669][   T34]  <TASK>
[  701.097678][   T34]  dump_stack_lvl+0x100/0x190
[  701.097709][   T34]  print_report+0x156/0x4c9
[  701.097737][   T34]  ? __virt_addr_valid+0x81/0x620
[  701.097764][   T34]  ? __phys_addr+0xe8/0x180
[  701.097789][   T34]  ? __ethtool_get_link_ksettings+0x190/0x1c0
[  701.097815][   T34]  kasan_report+0xdf/0x1e0
[  701.097840][   T34]  ? __ethtool_get_link_ksettings+0x190/0x1c0
[  701.097868][   T34]  __ethtool_get_link_ksettings+0x190/0x1c0
[  701.097894][   T34]  __ethtool_get_link_ksettings+0x144/0x1c0
[  701.097920][   T34]  ib_get_eth_speed+0x13a/0xb40
[  701.097954][   T34]  ? __pfx_ib_get_eth_speed+0x10/0x10
[  701.097989][   T34]  ? do_raw_spin_unlock+0x145/0x1e0
[  701.098021][   T34]  rxe_query_port+0x12a/0x330
[  701.098045][   T34]  ib_query_port+0x441/0x8a0
[  701.098075][   T34]  smc_ib_port_event_work+0x14c/0xbd0
[  701.098096][   T34]  ? smc_ib_port_event_work+0x54/0xbd0
[  701.098115][   T34]  ? rcu_is_watching+0x12/0xc0
[  701.098147][   T34]  process_one_work+0xa23/0x19a0
[  701.098183][   T34]  ? __pfx_process_one_work+0x10/0x10
[  701.098214][   T34]  ? __pfx_smc_ib_port_event_work+0x10/0x10
[  701.098235][   T34]  worker_thread+0x5ef/0xe50
[  701.098266][   T34]  ? kthread+0x13a/0x450
[  701.098290][   T34]  ? __pfx_worker_thread+0x10/0x10
[  701.098315][   T34]  kthread+0x370/0x450
[  701.098338][   T34]  ? __pfx_kthread+0x10/0x10
[  701.098363][   T34]  ret_from_fork+0x754/0xd80
[  701.098392][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  701.098421][   T34]  ? __switch_to+0x7b4/0x1120
[  701.098443][   T34]  ? __pfx_kthread+0x10/0x10
[  701.098469][   T34]  ret_from_fork_asm+0x1a/0x30
[  701.098497][   T34]  </TASK>
[  701.098504][   T34] 
[  701.329079][   T34] Allocated by task 5942:
[  701.330586][   T34]  kasan_save_stack+0x30/0x50
[  701.336480][   T34]  kasan_save_track+0x14/0x30
[  701.343895][   T34]  __kasan_kmalloc+0xaa/0xb0
[  701.345815][   T34]  __kvmalloc_node_noprof+0x360/0xa00
[  701.354102][   T34]  alloc_netdev_mqs+0xd7/0x14f0
[  701.356611][   T34]  rtnl_create_link+0xc13/0xf80
[  701.374179][   T34]  rtnl_newlink+0x13b8/0x2380
[  701.375991][   T34]  rtnetlink_rcv_msg+0x95e/0xe90
[  701.378633][   T34]  netlink_rcv_skb+0x159/0x420
[  701.381955][   T34]  netlink_unicast+0x5aa/0x870
[  701.385745][   T34]  netlink_sendmsg+0x8b0/0xda0
[  701.389691][   T34]  __sys_sendto+0x468/0x4b0
[  701.391504][   T34]  __ia32_compat_sys_socketcall+0x59a/0x770
[  701.393895][   T34]  do_int80_emulation+0x141/0x6b0
[  701.409424][   T34]  asm_int80_emulation+0x1a/0x20
[  701.411535][   T34] 
[  701.412721][   T34] Freed by task 102:
[  701.414417][   T34]  kasan_save_stack+0x30/0x50
[  701.432828][   T34]  kasan_save_track+0x14/0x30
[  701.435764][   T34]  kasan_save_free_info+0x3b/0x70
[  701.438019][   T34]  __kasan_slab_free+0x5f/0x80
[  701.452540][   T34]  kfree+0x1f6/0x6b0
[  701.454199][   T34]  device_release+0xd2/0x270
[  701.474420][   T34]  kobject_put+0x1f7/0x640
[  701.476428][   T34]  netdev_run_todo+0x817/0x12c0
[  701.478498][   T34]  default_device_exit_batch+0x94b/0xc60
[  701.492548][   T34]  ops_undo_list+0x363/0xab0
[  701.500702][   T34]  cleanup_net+0x499/0x920
[  701.503311][   T34]  process_one_work+0xa23/0x19a0
[  701.507575][   T34]  worker_thread+0x5ef/0xe50
[  701.517376][   T34]  kthread+0x370/0x450
[  701.520479][   T34]  ret_from_fork+0x754/0xd80
[  701.525313][   T34]  ret_from_fork_asm+0x1a/0x30
[  701.533787][   T34] 
[  701.534995][   T34] The buggy address belongs to the object at ffff8880500e4000
[  701.534995][   T34]  which belongs to the cache kmalloc-cg-4k of size 4096
[  701.543839][   T34] The buggy address is located 752 bytes inside of
[  701.543839][   T34]  freed 4096-byte region [ffff8880500e4000, ffff8880500e5000)
[  701.565350][   T34] 
[  701.566451][   T34] The buggy address belongs to the physical page:
[  701.568884][   T34] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x500e0
[  701.588839][   T34] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  701.593340][   T34] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[  701.598268][   T34] page_type: f5(slab)
[  701.613483][   T34] raw: 04fff00000000040 ffff88801b880280 dead000000000122 0000000000000000
[  701.616813][   T34] raw: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000
[  701.637721][   T34] head: 04fff00000000040 ffff88801b880280 dead000000000122 0000000000000000
[  701.641408][   T34] head: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000
[  701.654847][   T34] head: 04fff00000000003 ffffea0001403801 00000000ffffffff 00000000ffffffff
[  701.664990][   T34] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  701.667982][   T34] page dumped because: kasan: bad access detected
[  701.700766][   T34] page_owner tracks the page as allocated
[  701.703329][   T34] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5942, tgid 5942 (syz-executor), ts 84591685641, free_ts 81554286211
[  701.714267][   T34]  post_alloc_hook+0x153/0x170
[  701.716891][   T34]  get_page_from_freelist+0x111d/0x3140
[  701.725470][   T34]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  701.728433][   T34]  new_slab+0xa6/0x6b0
[  701.730180][   T34]  refill_objects+0x26b/0x400
[  701.753933][   T34]  __pcs_replace_empty_main+0x1ab/0x660
[  701.757629][   T34]  __kmalloc_noprof+0x688/0x850
[  701.760777][   T34]  __register_sysctl_table+0xac/0x1650
[  701.793185][   T34]  __addrconf_sysctl_register+0x1a2/0x360
[  701.795627][   T34]  addrconf_sysctl_register+0x163/0x200
[  701.798116][   T34]  ipv6_add_dev+0xaf2/0x1520
[  701.800195][   T34]  addrconf_notify+0x563/0x19d0
[  701.816379][   T34]  notifier_call_chain+0x99/0x420
[  701.818607][   T34]  call_netdevice_notifiers_info+0xbe/0x110
[  701.820804][   T34]  register_netdevice+0x16e6/0x2210
[  701.822800][   T34]  virt_wifi_newlink+0x3ec/0x840
[  701.841402][   T34] page last free pid 0 tgid 0 stack trace:
[  701.843790][   T34]  __free_frozen_pages+0x7e1/0x10d0
[  701.845599][   T34]  __folio_put+0x3b4/0x540
[  701.847151][   T34]  skb_release_data+0x667/0x9d0
[  701.848842][   T34]  napi_consume_skb+0x2be/0x320
[  701.850846][   T34]  skb_defer_free_flush+0x1f1/0x290
[  701.869798][   T34]  net_rx_action+0x3ca/0xf20
[  701.872426][   T34]  handle_softirqs+0x1eb/0x9e0
[  701.874426][   T34]  __irq_exit_rcu+0xef/0x150
[  701.876316][   T34]  irq_exit_rcu+0x9/0x30
[  701.877914][   T34]  common_interrupt+0xbe/0xe0
[  701.879753][   T34]  asm_common_interrupt+0x26/0x40
[  701.881487][   T34] 
[  701.882340][   T34] Memory state around the buggy address:
[  701.892937][   T34]  ffff8880500e4180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  701.895895][   T34]  ffff8880500e4200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  701.898660][   T34] >ffff8880500e4280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  701.918147][   T34]                                                              ^
[  701.922045][   T34]  ffff8880500e4300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  701.925443][   T34]  ffff8880500e4380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  701.928523][   T34] ==================================================================
[  702.004763][   T34] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  702.008211][   T34] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  702.012501][   T34] Tainted: [L]=SOFTLOCKUP
[  702.014119][   T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  702.017843][   T34] Workqueue: events smc_ib_port_event_work
[  702.021577][   T34] Call Trace:
[  702.023131][   T34]  <TASK>
[  702.024664][   T34]  dump_stack_lvl+0x100/0x190
[  702.026800][   T34]  vpanic+0x552/0x970
[  702.028714][   T34]  ? __pfx_vpanic+0x10/0x10
[  702.031480][   T34]  ? __ethtool_get_link_ksettings+0x190/0x1c0
[  702.036746][   T34]  panic+0xd1/0xe0
[  702.038561][   T34]  ? __pfx_panic+0x10/0x10
[  702.040500][   T34]  ? __ethtool_get_link_ksettings+0x190/0x1c0
[  702.046118][   T34]  ? preempt_schedule_common+0x42/0xc0
[  702.057153][   T34]  ? check_panic_on_warn+0x1f/0x90
[  702.059414][   T34]  check_panic_on_warn.cold+0x19/0x34
[  702.064915][   T34]  end_report.part.0+0x3a/0x90
[  702.067151][   T34]  kasan_report.cold+0xe/0x18
[  702.083336][   T34]  ? __ethtool_get_link_ksettings+0x190/0x1c0
[  702.088343][   T34]  __ethtool_get_link_ksettings+0x190/0x1c0
[  702.091564][   T34]  __ethtool_get_link_ksettings+0x144/0x1c0
[  702.094862][   T34]  ib_get_eth_speed+0x13a/0xb40
[  702.104757][   T34]  ? __pfx_ib_get_eth_speed+0x10/0x10
[  702.106899][   T34]  ? do_raw_spin_unlock+0x145/0x1e0
[  702.109040][   T34]  rxe_query_port+0x12a/0x330
[  702.119594][   T34]  ib_query_port+0x441/0x8a0
[  702.121931][   T34]  smc_ib_port_event_work+0x14c/0xbd0
[  702.125118][   T34]  ? smc_ib_port_event_work+0x54/0xbd0
[  702.127860][   T34]  ? rcu_is_watching+0x12/0xc0
[  702.135955][   T34]  process_one_work+0xa23/0x19a0
[  702.138004][   T34]  ? __pfx_process_one_work+0x10/0x10
[  702.140031][   T34]  ? __pfx_smc_ib_port_event_work+0x10/0x10
[  702.142417][   T34]  worker_thread+0x5ef/0xe50
[  702.144490][   T34]  ? kthread+0x13a/0x450
[  702.162318][   T34]  ? __pfx_worker_thread+0x10/0x10
[  702.165136][   T34]  kthread+0x370/0x450
[  702.167380][   T34]  ? __pfx_kthread+0x10/0x10
[  702.173858][   T34]  ret_from_fork+0x754/0xd80
[  702.175881][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  702.177979][   T34]  ? __switch_to+0x7b4/0x1120
[  702.179801][   T34]  ? __pfx_kthread+0x10/0x10
[  702.181677][   T34]  ret_from_fork_asm+0x1a/0x30
[  702.197724][   T34]  </TASK>
[  702.200031][   T34] Kernel Offset: disabled
[  702.202697][   T34] Rebooting in 86400 seconds..

VM DIAGNOSIS:
02:59:42  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000aa960b RBX=ffffffff8e4975c0 RCX=ffffffff8b8eac75 RDX=0000000000000000
RSI=ffffffff8de835fb RDI=ffffffff8c1b1da0 RBP=0000000000000000 RSP=ffffffff8e407e00
R8 =0000000000000001 R9 =ffffed100564679d R10=ffff88802b233ceb R11=0000000000000000
R12=0000000000000000 R13=fffffbfff1c92eb8 R14=0000000000000000 R15=ffffffff90d9ff10
RIP=ffffffff8b8e95df RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00000000
DS =0000 0000000000000000 ffffffff 00000000
FS =0000 0000000000000000 ffffffff 00000000
GS =0000 ffff888097140000 ffffffff 00000000
LDT=0000 0000000000000000 ffffffff 00000000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f56dfbcf286 CR3=000000004d1c5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008400000000 0000000200000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008400000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=000000008062e500 RCX=0000000000000000 RDX=0000000000000001
RSI=000000008062e51c RDI=ffffc900032b7a84 RBP=000000000000001c RSP=ffffc900032b7a18
R8 =0000000000000001 R9 =fffff52000656f50 R10=0000000000000003 R11=0000000000000000
R12=0000000000000000 R13=ffffc900032b7a68 R14=1ffff92000656f49 R15=ffffc900032b7b30
RIP=ffffffff84f4b965 RFL=00040297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097240000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5663557708 CR3=00000000745e7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000028c00000000 0000000700000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000002 RBX=0000000000000001 RCX=0000000000000004 RDX=ffffffff81b7bffd
RSI=ffffffff8c1b1d20 RDI=ffffffff8c1b1d60 RBP=ffffc90003d87158 RSP=ffffc90003d87080
R8 =00000000c94ddd65 R9 =0000000000000007 R10=0000000000000200 R11=0000000000000000
R12=ffffffff81f2ec10 R13=ffffc90003d87110 R14=0000000000000000 R15=ffff8880245fc980
RIP=ffffffff8b91cbe0 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097340000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f66ec0 CR3=000000004c6c0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000585858585858 2e7a797300000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857840b5 RDI=ffffffff9b498680 RBP=ffffffff9b498640 RSP=ffffc900005cf3c0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=0000000000000030 R14=0000000000000010 R15=ffffffff85784050
RIP=ffffffff857840df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097440000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000559521fb5138 CR3=00000000702e1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000fffffffc Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055ca26fb5c50 000055ca26fb5c50
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffb89f6a20 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 756c42205d333654 2020205b5d363434 3635392e30303720 205b203a6c656e72
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 37206f7420676e69 676e616863202c30 206c61767265746e 49622064696c6176
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e69206e61207361 6820313878302074 6e696f70646e6520 3020676e69747465
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73746c6120302065 6361667265746e69 2030206769666e6f 63203a312d392062
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7375205d30313036 54205b5d37333639 38352e3739362020 5b203a6c656e7265
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c22e33525e435ead 4e5e26dfef09a3ab cbf1548ba4413138 22c6db5760984f5e
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000