last executing test programs:

6m1.413045876s ago: executing program 2 (id=1521):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x3)
socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x26, &(0x7f0000000000)=0x7fffffff, 0x4)
recvfrom$inet(r1, 0x0, 0x0, 0x61, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000002940)=[{{0x0, 0x4a, &(0x7f0000000100)=[{&(0x7f00000001c0)}], 0x1}}], 0x1, 0x0)
ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d2, &(0x7f0000000100))
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYRESOCT=r0, @ANYRES8], 0x50)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000440)={&(0x7f00000015c0)=ANY=[@ANYBLOB="e4000000070a030000000000000000000000000074000480100001800a00010072616e67650000002000018008000100647570001400028008000140000000100800014000000001100001800b0001006f626a7265660000300001800a00010071756f746100000020000280080002400000"], 0xe4}, 0x1, 0x0, 0x0, 0x40000}, 0x41)
sendmsg$nl_generic(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000042000501"], 0x14}, 0x1, 0x0, 0x0, 0x68840}, 0x4)
bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0), 0x8)
unshare(0x6a040000)
clock_nanosleep(0x7062370e54bf3740, 0x0, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000003c0)=0x491b, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000029c0)={'wlan0\x00'})
writev(r3, &(0x7f0000000080)=[{&(0x7f00000000c0)="5bffd08307d80c79b1cb7b5f0c5b4d719c69c8513f748fbe425a7bc388c9019bef114779f7a10dc03a883d", 0x2b}], 0x1)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f0000000240)={0x2000, 0x1000000})
connect$inet6(0xffffffffffffffff, 0x0, 0x0)

6m1.239140456s ago: executing program 2 (id=1522):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x3)
socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x26, &(0x7f0000000000)=0x7fffffff, 0x4)
recvfrom$inet(r1, 0x0, 0x0, 0x61, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000002940)=[{{0x0, 0x4a, &(0x7f0000000100)=[{&(0x7f00000001c0)}], 0x1}}], 0x1, 0x0)
ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d2, &(0x7f0000000100))
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYRESOCT=r0, @ANYRES8], 0x50)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000440)={&(0x7f00000015c0)=ANY=[@ANYBLOB="e4000000070a030000000000000000000000000074000480100001800a00010072616e67650000002000018008000100647570001400028008000140000000100800014000000001100001800b0001006f626a7265660000300001800a00010071756f746100000020000280080002400000"], 0xe4}, 0x1, 0x0, 0x0, 0x40000}, 0x41)
sendmsg$nl_generic(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000042000501"], 0x14}, 0x1, 0x0, 0x0, 0x68840}, 0x4)
bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0), 0x8)
unshare(0x6a040000)
clock_nanosleep(0x7062370e54bf3740, 0x0, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000003c0)=0x491b, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000029c0)={'wlan0\x00'})
writev(r3, &(0x7f0000000080)=[{&(0x7f00000000c0)="5bffd08307d80c79b1cb7b5f0c5b4d719c69c8513f748fbe425a7bc388c9019bef114779f7a10dc03a883d", 0x2b}], 0x1)
ioctl$BLKZEROOUT(r3, 0x127f, &(0x7f0000000240)={0x2000, 0x1000000})
connect$inet6(0xffffffffffffffff, 0x0, 0x0)

6m0.993994104s ago: executing program 2 (id=1523):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x6, 0x4, 0x5b, 0x8a}, 0x48)
bpf$PROG_LOAD(0x4, &(0x7f0000000680)={0x3, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
io_setup(0x4, &(0x7f00000014c0)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
mount$binderfs(0x0, 0x0, 0x0, 0x20, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
setrlimit(0xd, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/meminfo\x00', 0x0, 0x0)
lseek(r2, 0x9, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xa, 0x9, 0x7fff, 0xf9, 0x0, 0x1, 0x2cb02, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0a000000ff070000fa1f00002f00000010000000", @ANYRES32=0x1, @ANYBLOB="02cb00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000080010000003f00"/28], 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3fb, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, &(0x7f0000000080))
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB], 0x118}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r4, &(0x7f0000000040), 0x4)

6m0.037759861s ago: executing program 2 (id=1528):
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
pipe(&(0x7f0000000240))
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x10, 0xfffffffc, 0xb4b, 0x2, 0x1000008, 0x0, 0xb}, 0x0)
getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, &(0x7f0000001040)=0x5d)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000940)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
creat(&(0x7f0000000080)='./file0/file1\x00', 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000100)='./bus\x00', 0xe8)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
chroot(&(0x7f00000001c0)='./file0\x00')
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file1\x00')
unlink(&(0x7f0000000100)='./file0/file1\x00')
rmdir(&(0x7f0000000000)='./file0\x00')

5m59.382964897s ago: executing program 2 (id=1540):
openat$sequencer(0xffffff9c, &(0x7f0000000000), 0x800, 0x0) (async)
r0 = openat$cdrom(0xffffff9c, &(0x7f0000000040), 0x100, 0x0)
ioctl$CDROMEJECT(r0, 0x5309) (async)
r1 = semget$private(0x0, 0x2, 0x1e3)
semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000000080)=[0xff, 0x7, 0x2, 0x1, 0x5, 0x3, 0x1, 0x2]) (async)
r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x398, 0x20700)
ioctl$EVIOCGKEY(r2, 0x80404518, &(0x7f0000000100)=""/120) (async)
r3 = openat$full(0xffffff9c, &(0x7f0000000180), 0x521501, 0x0)
getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000001c0), 0x10) (async)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000200)={<r4=>0x0, 0x2}, &(0x7f0000000240)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000280)={0x6b, 0x1, 0x8, 0x6f, 0x6, 0xfff, 0x10001, 0x8, r4}, 0x20) (async)
openat$sequencer2(0xffffff9c, &(0x7f00000002c0), 0x1, 0x0) (async)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000340), r3) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000380)={'batadv_slave_1\x00', <r6=>0x0})
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000003c0)={'vcan0\x00', <r7=>0x0}) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000400)={'ip6_vti0\x00', <r8=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0xd00141}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x6c, r5, 0x4, 0x70bd2a, 0x25dfdbfc, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x8005}, 0xc003) (async)
ioctl$CDROMEJECT_SW(0xffffffffffffffff, 0x530f, 0x1) (async)
ioctl$EVIOCSREP(r2, 0x40084503, &(0x7f0000000540)=[0x81, 0xa]) (async)
r9 = accept4$bt_l2cap(r3, 0x0, &(0x7f00000006c0), 0x800)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000680)={@fallback=<r10=>r9, 0x9, 0x0, 0x8000, &(0x7f0000000580)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0]}, 0x40) (async)
r11 = syz_open_dev$evdev(&(0x7f0000000700), 0xc, 0x44000)
ioctl$EVIOCGMASK(r11, 0x80104592, &(0x7f0000000840)={0x0, 0xf3, &(0x7f0000000740)="a805851700f63b1be99b6a8565d4ea4c0a45da8416a50e1e75e4874d22fb6b7e076a5d26ecdab692d337938e3c0cc372c31469f655dfa2d1a80ac86c2c35466f5a11bc5fd7d04b69f9e9798f19e2b24ea5dec41df71dbb2598092f5c4064550eaecea98832f2345c21ce1fca377a0e211591ab89d0fd0ef4174c09bd1f73e3ac8da450ec215b5bc23ecdd749ca5c28f4e58169b2f49300c8a9c10dc9a97d042c958dcc60289f9fb95eee8b613a26bb295c69a558d676ac1d0242571b80399a177db30bc9bd651f4ace21221b45658b0587b1f857b3733e6929e3b2a423878ea7ef8b2e9a21862af868861102d774f458ce9944"})
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000880)={0x1000}, 0x8)
sendmsg$NFQNL_MSG_VERDICT(r10, &(0x7f0000000b80)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000900)={0x228, 0x1, 0x3, 0x702, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFQA_EXP={0x114, 0xf, 0x0, 0x1, [@CTA_EXPECT_NAT={0x100, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x44, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x8, 0x2, @empty}}}]}, @CTA_EXPECT_NAT_TUPLE={0xb0, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x14, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x100}, {0x8, 0x2, @rand_addr=0x64010100}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @loopback}}}]}, @CTA_EXPECT_NAT_DIR={0x8}]}, @CTA_EXPECT_HELP_NAME={0xf, 0x6, 'sane-20000\x00'}]}, @NFQA_CT={0x100, 0xb, 0x0, 0x1, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x926}]}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'snmp_trap\x00'}}, @CTA_MARK_MASK={0x8}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x1}, @CTA_SYNPROXY={0x54, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xaa}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x46a}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xa206}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x4}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x10}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x9}]}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x5772}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x80000000}, @CTA_FILTER={0x54, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x4}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x402}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x1b1}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x10}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x423}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x1}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x17}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x401}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x218}]}]}]}, 0x228}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000)
r12 = openat$ubi_ctrl(0xffffff9c, &(0x7f0000000bc0), 0x200, 0x0) (async)
connect$inet(r3, &(0x7f0000000c00)={0x2, 0x4e21, @multicast2}, 0x10) (async)
prctl$PR_SET_SECUREBITS(0x1c, 0x32)
ioctl$DRM_IOCTL_GEM_OPEN(r12, 0xc010640b, &(0x7f0000000c40)={0x0, <r13=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r10, 0xc008640a, &(0x7f0000000c80)={r13})

5m59.221922066s ago: executing program 2 (id=1543):
keyctl$set_reqkey_keyring(0xe, 0xffffffffffffffff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101302, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000100)={0x4, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000980)={0x2c, 0x3f, 0x107, 0x0, 0x25dfdbfc, {0x4, 0x7c}, [@typed={0x4}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x8, 0x18, 0x0, 0x0, @ipv4=@multicast1}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48800}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000180)={'team0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f00000001c0)=@bridge_newvlan={0x34, 0x70, 0x400, 0x70bd2c, 0x25dfdbfd, {0x7, 0x0, 0x0, r3}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x8, 0x4}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x1}}}]}, 0x34}}, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r1, 0x8982, &(0x7f0000000140)={0x1, 'veth0_macvtap\x00', {}, 0x7})
r4 = ioctl$KVM_CREATE_GUEST_MEMFD(0xffffffffffffffff, 0xc040aed4, &(0x7f0000000000)={0x0, 0x2})
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000200)={0x8, 'macvlan0\x00', {'pim6reg0\x00'}})
ioctl$KVM_SET_USER_MEMORY_REGION2(0xffffffffffffffff, 0x40a0ae49, &(0x7f0000000040)={0x1ff, 0x1, 0x3320a000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x9, r4})

5m59.135070947s ago: executing program 32 (id=1543):
keyctl$set_reqkey_keyring(0xe, 0xffffffffffffffff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101302, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000100)={0x4, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000980)={0x2c, 0x3f, 0x107, 0x0, 0x25dfdbfc, {0x4, 0x7c}, [@typed={0x4}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x8, 0x18, 0x0, 0x0, @ipv4=@multicast1}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48800}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000180)={'team0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f00000001c0)=@bridge_newvlan={0x34, 0x70, 0x400, 0x70bd2c, 0x25dfdbfd, {0x7, 0x0, 0x0, r3}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x8, 0x4}}}, @BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0xc, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x1}}}]}, 0x34}}, 0x0)
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r1, 0x8982, &(0x7f0000000140)={0x1, 'veth0_macvtap\x00', {}, 0x7})
r4 = ioctl$KVM_CREATE_GUEST_MEMFD(0xffffffffffffffff, 0xc040aed4, &(0x7f0000000000)={0x0, 0x2})
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000200)={0x8, 'macvlan0\x00', {'pim6reg0\x00'}})
ioctl$KVM_SET_USER_MEMORY_REGION2(0xffffffffffffffff, 0x40a0ae49, &(0x7f0000000040)={0x1ff, 0x1, 0x3320a000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x9, r4})

5.40919717s ago: executing program 3 (id=3201):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0x4, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xffffffffffffff64, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0xffffffffffffffff, 0x803, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x9)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r4, 0x89f2, 0x0)
sendto$inet(r4, &(0x7f0000001600)="09268a927f1f6588b967481241ba7860fcfaf65ac635ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcec8044ab4ea6f7ae55d88fecf90b1a7511bf746b152124eb38d6c7a207112eb1bf554bc070626792d394df5adf7355fa5f8deb9db3da042d88", 0xfdef, 0x11, 0x0, 0x0)
syz_io_uring_setup(0x2421, &(0x7f0000000380)={0x0, 0x0, 0x13090}, 0x0, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$sock_linger(r5, 0x1, 0xd, &(0x7f0000000080)={0x1, 0x2}, 0x8)
getsockopt$sock_int(r4, 0x1, 0x1d, &(0x7f0000000000), &(0x7f0000000180)=0x4)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x9, 0x4, 0x6, 0x6}, 0x27, [0x1, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0xffffffff, 0x107f, 0x6, 0x4d, 0x39cc191a, 0x5c, 0x6, 0x3, 0x2, 0x0, 0x6, 0x3, 0x9, 0x2ab, 0x4, 0x7, 0x9, 0x3c5b, 0x1, 0x1ff, 0x9, 0x5, 0x1f461e2c, 0x7, 0x2000e665, 0x7fff, 0xb, 0x3, 0x7fff, 0x4c74, 0x80000000, 0x808242, 0xffffffff, 0x6, 0x0, 0x71, 0x2, 0x6, 0x3, 0x2, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x7, 0x80092a3, 0x1200000, 0x1, 0x20000000, 0x82, 0x0, 0x7, 0x7, 0x8, 0x4, 0x2, 0x40], [0x10000007, 0xffdf, 0x12f, 0x6, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2c3, 0xc31d4fc, 0xffe, 0xfffffffc, 0x0, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x1, 0x1, 0xfffffffe, 0x8, 0x4, 0x8000, 0x9, 0x7fffffff, 0x405, 0xfff, 0x4, 0xfb, 0x5, 0x8000, 0x5f31, 0x4, 0x1, 0x2, 0x9, 0x20009, 0x4, 0x9, 0x8, 0x9, 0x6, 0x3, 0xa, 0x1, 0x9, 0x2, 0x2, 0x7f, 0x9, 0x1, 0x3, 0x9, 0xffffffff, 0x7, 0x3, 0x9, 0x48c93693, 0x42, 0x400004], [0x6, 0x6, 0x80000001, 0x2, 0xff, 0x40000100, 0x8d2, 0x9, 0x68000000, 0x7fff, 0x40000, 0x20000001, 0x1, 0x4, 0x5, 0x1005, 0x0, 0x1f0, 0xfffffffd, 0x2, 0x86, 0x1, 0x7, 0x3e7, 0x9, 0x5, 0x2, 0x0, 0x800, 0x8, 0x5, 0x8001, 0x6, 0x38, 0x800006, 0x200, 0x80, 0x1, 0xcc52, 0x950bfaf, 0x1000, 0xa2, 0x7, 0x53cf697b, 0xfffffff5, 0x6, 0xac8, 0xbf, 0x10002, 0x403, 0x9, 0x3, 0x0, 0x1, 0xffff, 0x0, 0x6, 0x1c, 0xef8, 0x403, 0x6, 0xaaed, 0x4, 0x7], [0x9, 0xbb2d, 0x3, 0xb, 0x5, 0x1, 0x6, 0x5, 0x0, 0x3, 0x80ce7, 0x1ff, 0x3, 0x7, 0x5, 0x1003, 0x101, 0x10000, 0x7, 0x7fff, 0x420, 0xe620, 0x2, 0x2, 0x4, 0xfffffffe, 0x14c, 0x60a7, 0x6, 0x4, 0xffffffff, 0x80000000, 0x7, 0x8, 0xc8, 0x8000ee1, 0x0, 0xffff, 0x5, 0x7f, 0x100, 0x9602, 0x4, 0x2, 0xffff, 0x6, 0x1, 0x10080, 0x4007, 0x8, 0x1000, 0x5a2b, 0x6, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffff3401, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

3.889030591s ago: executing program 4 (id=3212):
r0 = socket$netlink(0x10, 0x3, 0x5)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000040)=0x1f, 0x4)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x2f, 0xa, 0x5, 0x2, 0xe, @local, @ipv4={'\x00', '\xff\xff', @remote}, 0x706, 0x7800, 0x5, 0x9}})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x420001, 0x187)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r1, 0x0, 0x83, 0x0, &(0x7f0000000180))
sendmsg$NFNL_MSG_ACCT_GET(r1, 0x0, 0x2014)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB])
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@getchain={0x24, 0x66, 0x800, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x10, 0x4}, {0xc, 0xc}, {0x10, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xf, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r5 = socket$igmp6(0xa, 0x3, 0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001240)=[{{&(0x7f0000000300)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000440)="b73096df784ea533caf1f635878a72f86e9bc2bd9b2afbebffe292af04348438d27455e316ee1036abb369e4228354b59097ba693fa24b177bbe5d92e1049bfae2d1600c8aaeafcfbaf058a72e0afc6920c355440e71169e65796a775b7c2183e2de653a6c88a1749365718a62778c65cf05f1a0658cf9cb14df967be3b59810ed9e651504a2c2d66f58ee0d5880565c5bd9ae6c7049c28be0c519400b45318c334c859046c554ecc034f3dcebf05a892bf263c6a84023248ca6e9c8dc993477a0649f5f96a8885065ab69dd127e26daf39f34df77c51240e1b88ab8ad50155a9da963cf0437ebfc053f", 0xea}, {&(0x7f0000000680)="8ea9549ac2fa24197df88d2a3ebf8b8b55a58f6ffd79ed63f2edf601d2455d6b6fe416f23c04e39a6d9df2cccff6113d799c31ff7fb8d382fdd4fa96be81d2e25fd8e199ab811f1585b124b96cf33a91567978ec7b53c388c2b90b4e6e89ce04ebf58936e066cb78a60ae2", 0x6b}, {&(0x7f0000000700)="5264572a0d40fd1a9f25ced76bc0eae815ab4b63f950e32f55b114f31810a63e75e5569cdb8f6ad8506a2f444ddb7d0e106aeebd65f3765c4ebcdd588211cf6a0b21694fa88198be8de5ff4447b5501377d4790b08862d76bb4d61b05276d37010496d38b2c39fbeb7141c1af91d2764f6d6da1fcff9c254cc177497867a47e316b8d875f007a41da22c56ad6047bb971d2d2ad34aa3d1ad51018aad68b7c702b750d3ed4232244f32793434cfe723fe25b5b5af675a6462c02617914fb7609c658612fafdbd0f4f07ceb542284ea80ba0bd806fd5400c5c", 0xd8}, {&(0x7f0000000800)="7e6f031cf6c2f57328b33a2a4af9f9f108919caeb6401da5be6b6e7d207a137a97d6adbaccbfde1a1dd9d5d406fc22a5fe1f1f9e7e95ed8f53160d228fc9a35953103e3540cb2b9a5b99a5044d13783569a8a8a861a8b488a1b4574dc86b326fcb3f30acde1b9b199d8d1fe4cf04", 0x6e}, {&(0x7f00000009c0)="1075d56603c7a336399bc9b52be6bc8d79fb789df53f51b0612598caf4e153f65087029a00d1cdbe5eae72883a9494412763f37fc00bd7c58a3cf2e43794a92ac85f90f611cfd90d180f1369ac704bc35ebb5d3dffcd06ce3fd2a43e6c4257947bdd4c253bdf769a08b41eca9cc6f80cdaa4f46c6cda7fbfdd02f73bd209c5161adb726cb6dd78e9d5844f9797019927a4a30f", 0x93}], 0x6, &(0x7f00000008c0)=ANY=[@ANYRES32=r5, @ANYRES32, @ANYRES32], 0x18, 0x4010}}, {{&(0x7f0000000ac0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000900)=[{&(0x7f0000000b40)="724edf8c773940a364dcd894e6a45d5e58db8b536eeb39a9eb96c51dc44fb810e8009ab833c3a1358fa54f7b2933b158bd1f136acf28fb201725961d921124a4830f8998d475e6166ea2e5c4525eac4268ce749cc9992fd710d7ca27a6557000b3f7c75111b1917d50dfe8ed923a90d790be28e037d21dbb48ebd21248b3ed77a5d8e2b10009e3031530c7c7529b39c5448ba09f45980d9c48652cf345ef28f47b346fa0f494e93935", 0xa9}], 0x1, &(0x7f00000012c0)=ANY=[], 0x98, 0x8010}}, {{&(0x7f0000000d80)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000001140)=[{&(0x7f00000000c0)}, {&(0x7f0000000e00)="4dc521367467ad7e7fe7bfb56e8cf4126e7cb52a155962e6159ce3d7585a4bee5b3197b3873686aab35a0ab04103b7e25e716197c604cb1e2d64f80f7ff1865fafe2b55fc3f29133943013c799b725eb7b02a164ae1129dd7b296b9ce37ff0783019ec96fa14157faba0d5cae2954734d5ee267dde21bfa4a82b7035202901f0ee97e2f1a71d05bcce060e3b7949773bc6a6e1fbea06aeab086d702e9515175261518ef75dab97663eef500f82552bb94acc23533f94f0e474297cdb165320e40aa031c9a73951fa7a64e135e60c37601e0b03641af0bf517c850b99a879dbfb728fcef09b0000000000", 0xea}, {&(0x7f0000000f00)="b3507462fb32ea4e4b6e8da143fa53e3ebd852dbd2d173b25c81adcaeb94c0364aac1dfdc1c7d598b829d3557b8c5044cb7f64b6c5cd8d26884a2c8926d3837f9fb4efb6c6f205afa6d4712f475e96c80603f470205ed9410444d39bf54344e40cf24b84d35fbb2b626b41eb91c15d7b5c7bb6982b0023da6ef97a4b84d1122b0907aaaabfda4ce79d66e8c09df4a68d214c94fe5f8f22c888ab41a1fce77c9d2ab4db6e9147639ec96b", 0xaa}, {&(0x7f0000000fc0)}, {&(0x7f0000001040)="474da1d7ff7b71566a9e5ae7d3f15c623a1c2ffc6fc4776ea47e1a320463b727d5f7185947702ccca9", 0x29}, {&(0x7f0000001080)="841ae6b72c6ba3ccb6ffd6d0f0dcaed5e2e6ae2ac3a094c7e7e222982de62d3706d94ff5adff1751e4c4c15acbdf28bbd7c5a893f5396d997ab68af357d374873092aa2d28c0eb81de3b122220b07786d4ccf712a6cbf28ee6387752d0d3a5d0c06e5da0ba32e04584ff42a7172ac454d604ff83e45a032bae4f2d81bbc09283472b80df139f60237bf7cedc32e82b8e58096a041fd0", 0x96}], 0x6, &(0x7f0000000400)=ANY=[@ANYBLOB="0814547c7020288aaf5ed30800", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYRES32=r0], 0x28, 0x24048000}}], 0x3, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000940)=ANY=[@ANYBLOB], 0x58}, 0x1, 0x0, 0x0, 0x24040800}, 0x20008000)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, &(0x7f0000000200))
socket$nl_netfilter(0x10, 0x3, 0xc)
unlink(0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a005124deacb12e68d5b042fd94802e899d13e0374769b03ac3273b6ab1188023b587e473253682146a9f24b52e89b42d3c836c1702078fbba099e45a9ddb039922f65e595e5fb3172b8fc94fe9185633ff84974096e32e8d6ce93ad1488698052714e15b7763bfe3d117e145752db35e4553df3a7d153ee8c27ebc9342e6eecf4d1b92e4ac8c64700aec62c72fd06f652ebc960a30868729b4b249183381de3f1879286998f3493e664e810b0c", @ANYRES32], 0x40}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r8, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x1d, 0x32, 0x0, 0xfffff024}, {0x20, 0x0, 0x0, 0xff}, {0xfff9, 0x0, 0x0, 0x6}]}, 0x8)
sendmsg$inet(r7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f000801}, 0x0)

3.743907962s ago: executing program 4 (id=3219):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[@ANYRES64], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = fsopen(&(0x7f00000001c0)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000000c0)='test_dummy_encryption', &(0x7f0000000180)='v1to_da_alloc', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='affs\x00', 0xa08410, 0x0)
socket$inet(0x10, 0x3, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="020700"], 0x10}}, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x3000000, 0x0, 0x1, 0x0, 0x3}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe8)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)

2.780915457s ago: executing program 4 (id=3228):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}, 0x1, 0x0, 0x0, 0x40000}, 0x20008800)

2.765707644s ago: executing program 0 (id=3229):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000800)=@filter={'filter\x00', 0x4, 0x4, 0x4cc, 0xffffffff, 0x1e8, 0x0, 0x0, 0xfeffffff, 0xffffffff, 0x404, 0x404, 0x404, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@local, @mcast1, [0xff, 0x0, 0xffffffff, 0xffffff00], [0x0, 0xff, 0xff000000, 0xf0969c30512e8e79], 'nr0\x00', 'veth1_to_batadv\x00', {}, {}, 0x87, 0x7, 0x2}, 0x2f2, 0xfc, 0x120, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'team0\x00', {0x6d, 0x6, 0x81, 0x9, 0x8, 0xf, 0x5, 0x20, 0x80}, {0x7}}}]}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x4}}}, {{@uncond, 0x0, 0xa4, 0xc8}, @REJECT={0x24}}, {{@uncond, 0x0, 0x1f8, 0x21c, 0x0, {}, [@common=@inet=@policy={{0x154}, {[{@ipv4=@local, [0xff000000], @ipv4=@loopback, [0xff, 0xff, 0x0, 0xffffffff], 0x4d2, 0x3503, 0x32, 0x1, 0x8, 0x2}, {@ipv6=@private0={0xfc, 0x0, '\x00', 0x1}, [0xff, 0xff, 0x0, 0xff000000], @ipv6=@private1, [0x0, 0xff, 0xffffffff, 0xffffffff], 0x4d6, 0x3500, 0x16, 0x0, 0x9, 0x2}, {@ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}, [0xff, 0x0, 0xffffffff, 0xff], @ipv4=@multicast1, [0x0, 0xffffffff, 0xffffff00, 0x1dec5748605b83a4], 0x4d3, 0xf8010000, 0x3b, 0x0, 0x8}, {@ipv4=@loopback, [0xffffffff, 0xffffff00, 0xff000000], @ipv4=@loopback, [0xff000000, 0xffffffff, 0x0, 0xffffffff], 0x4d5, 0x3502, 0x89, 0x0, 0x6, 0x1}], 0x3, 0x3}}]}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x6}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x528)

2.698871112s ago: executing program 4 (id=3230):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000004000000000000000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r0 = fsopen(&(0x7f0000000340)='devpts\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000140)='./file0\x00')
syz_open_dev$sg(0x0, 0x0, 0x8002)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xfffffffffffffe3a}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$kcm(0xf, 0x3, 0x2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000100))
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPIOCSFLAGS(r2, 0x40047459, &(0x7f0000000040)=0xa192824)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
r4 = userfaultfd(0x801)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000001c0)={0xaa, 0x1c0})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_CONTINUE(r4, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000257000/0x3000)=nil, 0x3000}, 0x1})
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'vlan1\x00', 0x0})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="180200000000000000000000efffffff850000002300000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70255cbc505bce534fa3d2bf76e000008000000b70300000000000085000000"], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0xe, 0x44, &(0x7f0000000100)="0000000000000000000051229dc9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000000)={0x4, 0x0, 0x16, 0x1, 0x100, &(0x7f0000000040)="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"})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="30bbfac2e4000d042abd700000000000000000002f396f8451a883a668116a54db58d6365716f95a359f02c174552c8f3a0a0dda105f3bdb6832327bf5d74913b961f212b111b9c79df48943f90f61385c889926394d4e27f80d32f6172383327b1c314406d8ebb090778e44bcddb7eef6df09569b228c2f6de8a1216257f95666876166e9db032c7ba0", @ANYRES32=0x0, @ANYBLOB="211200000220000010001280080001007369740004000280"], 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x0)
ioctl$PPPIOCSMRU1(r1, 0x40047452, &(0x7f0000000080)=0x3)
syz_open_dev$video(0x0, 0x485, 0x1f1a80)

2.697481068s ago: executing program 0 (id=3231):
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x2c1, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x3}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
getsockopt$IP_VS_SO_GET_DAEMON(r1, 0x0, 0x487, &(0x7f0000000640), &(0x7f0000000680)=0x30)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
r4 = openat$binderfs(0xffffff9c, &(0x7f0000000a00)='./binderfs/binder1\x00', 0x2, 0x0)
ioctl$BINDER_GET_EXTENDED_ERROR(r4, 0xc00c6211, &(0x7f0000000a40))
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000500)=<r6=>0x0)
r7 = geteuid()
mount$cgroup(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f00000004c0), 0x1024004, &(0x7f0000000540)={[{@name}, {@nofavordynmods}, {@name={'name', 0x3d, 'I\\*(u$-\'\':.'}}, {@clone_children}, {@release_agent={'release_agent', 0x3d, './file1'}}, {@favordynmods}, {@clone_children}], [{@euid_eq={'euid', 0x3d, r6}}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@hash}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@smackfshat}, {@uid_gt={'uid>', r7}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]})
bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r8=>0x0)
io_submit(r8, 0x2, &(0x7f0000000840)=[&(0x7f0000000100)={0x2002000000, 0x4, 0x0, 0x1, 0x0, r5, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x3}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x7, 0x81, r3, &(0x7f00000006c0)="6c3151d665b2638086ac0c5111f727f250660b2df9d3c899718514e68b0a7f1c86ca83a8016d3fa96123cb1ab4c9addcb0b9676d765d634d72e598ec0c079d669bad7bc37538c56912dee811291699766cb3fb65edacb850b974f7f3f0d8e0a6bfa7e0d7512c9de528d78c16d71604cd4472e372c6778801d646226a3f8680d14e3a9a42ea975a5e81a8f3afd3744c3a3988668aae3c2a1be69a5389037f50d6307e161d3560be001a94b10b54ad00bf78a77e5bb14b32bd40055d6fbb725b3910e384455b313a6c71a6d8b4fdbc8cc53eff740049", 0xd5, 0x5, 0x0, 0x1}])
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0b00000005000000000400000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="040000000023000007000000000000000000000000000000000000008dbe84165decc4e50e3163de85cc913193cf406090f6a9989c6b7d92e3e2911505670e74e8e1d18dc8abab760aa3633e68bdd2526c34eeedf61f1bb418133ef8a2a45fe5842d3d21c9e3c4f20a54600f2a047d1471fd84eb32913d10fed7d1679a868479991c082bc6a62cc55daf19be9addbfd84fdb1002c98b8a9e69a1a229c267e7e723c539980246c16cf586bd6aab0263cdb3c6cecbfc2a4b6f3a4f4d292c3d6feadac56f9774bd9ea5f36d35a1"], 0x50)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x400008a, 0x0)
bind$llc(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1f, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000008000000000000000000000008500cc463792be2d27b6000000000000"], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x10}, 0x90)

2.27847585s ago: executing program 1 (id=3232):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000020a20000000000a01010000000000000000010000040900010073797a300000000040000000030a01080000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d6574610000000014000280080001400000001208000240000000041400000011000100"], 0xd8}}, 0x0)

2.18856451s ago: executing program 1 (id=3233):
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) (async)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0) (async)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x2, 0x0) (async)
r3 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0) (async, rerun: 64)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async, rerun: 64)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={[], [{@pcr}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@fsname={'fsname', 0x3d, 'skbmod\x00'}}, {@dont_hash}, {@audit}, {@subj_role={'subj_role', 0x3d, 'fsmagic'}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@fsname={'fsname', 0x3d, 'staff_u'}}, {@context={'context', 0x3d, 'system_u'}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@dont_hash}]})
setxattr$trusted_overlay_opaque(&(0x7f0000000180)='./bus\x00', &(0x7f00000001c0), 0x0, 0x0, 0x1) (async)
listxattr(&(0x7f0000001cc0)='./bus\x00', &(0x7f0000001d00)=""/4096, 0x1000) (async)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtaction={0x9c, 0x30, 0x51b, 0x0, 0x0, {}, [{0x88, 0x1, [@m_skbmod={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x20}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x6}]}, {0x4, 0x14}, {0xc}, {0xc, 0x6}}}, @m_ct={0x2c, 0x1, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0x9c}}, 0x100) (async, rerun: 32)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="180100002e0001"], 0x118}], 0x1, 0x0, 0x0, 0x47035878f58074c}, 0x0) (async, rerun: 32)
semctl$GETALL(0x0, 0x0, 0xd, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x0, 0x0) (async)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000780)={r3, 0x20, &(0x7f0000000040)={0x0, 0x0, 0x0, &(0x7f00000006c0)=""/150, 0x96}}, 0x10) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 32)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0) (async, rerun: 32)
ioctl$sock_qrtr_TIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340)) (async, rerun: 32)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (rerun: 32)
mknod$loop(0x0, 0x4, 0x0) (async)
syz_open_procfs(0xffffffffffffffff, 0x0) (async)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000840)='net/packet\x00') (async)
ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7}) (async, rerun: 32)
ioctl$sock_netdev_private(r4, 0x8949, &(0x7f0000000000)) (rerun: 32)

2.089640457s ago: executing program 1 (id=3234):
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/locks\x00', 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xe, &(0x7f0000001300)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x143}, 0x48)

1.509764284s ago: executing program 4 (id=3235):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbff, {}, [{0x90, 0x1, [@m_ct={0x44, 0x18, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000300)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x800)
recvmmsg(r5, &(0x7f0000007700), 0x318, 0xfc0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r6=>0x0})
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f00000001c0)={'veth0\x00', 0x200})
socket$inet_sctp(0x2, 0x5, 0x84)
sendto$packet(r0, &(0x7f00000002c0)="05031600d3fc140000004788031c09102c28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='mpol=interleave:0'])

1.488729638s ago: executing program 3 (id=3236):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x22, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xe}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0xfffffffffffffe48}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 32)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x400040, 0x1ff)
close(r1) (async)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a92b40cb0d8000000080000000b00000006b4820000000000e0c65d5d1cd27e00806d2ce6f8cbc5d7f0f674c8bb1ba7e52c671d02f693880e7c22953496b3c5926a374828f6ee0e3b8f50a0bfdba46ebf691b132d945080517b3f8b4e52e3fd", @ANYRES32, @ANYBLOB="02cb00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000300)="13dc61af6131dba170edf5468a8267c663", 0x1000, r2}, 0x38) (async)
prlimit64(0x0, 0xe, 0x0, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34) (rerun: 64)
r3 = getpid() (async, rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 32)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) (async, rerun: 32)
socket$inet6_sctp(0xa, 0x5, 0x84) (rerun: 32)

1.209426368s ago: executing program 3 (id=3237):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000001380)='ns/cgroup\x00')
open_by_handle_at(r0, &(0x7f0000000000)=@FILEID_NILFS_WITHOUT_PARENT={0x20, 0xf1, {0x1, 0x2000000, 0x105, 0xfffffff8, 0x3d}}, 0x0)

1.208361847s ago: executing program 3 (id=3238):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)

1.178316709s ago: executing program 1 (id=3239):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={<r1=>0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x4e23, @empty}]}, &(0x7f0000000100)=0xc)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000240)=@assoc_value={r1, 0x8}, &(0x7f00000002c0)=0x8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)={0x47c, r3, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x430, 0x8, 0x0, 0x1, [{0x54, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0xf}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "eff93d58460ea431f2cb4a6894ddb2834088d7445bf5afdd0619ce173f1db717"}]}, {0x4c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "491bc0be1dc1f88092e741a88b64f6dd9218ad21b44b472e44f1d0807ee6675c"}]}, {0x38c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x368, 0x9, 0x0, 0x1, [{0xdc, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @local}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}]}, {0xb8, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @empty}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x3}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}]}, {0xe8, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x18}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @local}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x2}}]}]}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x9, 0x7, @empty, 0x3}}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x47c}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_STATION(r2, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0xd8, r4, 0x8, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x7}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x2}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x9a, 0xbe, "d32ec4d73145e7c265001db8e12887454a7dd3d60dd8733ece8200845c4ce18f68fe80f25536646e46286d164bd3e9b62409f0e3edd1cd126fac2759852f7bb0ead92e829e2f360e192a2e3b04bb9744879403d7eff51526bc5d811d4e357f777209830ecc1f5127776a386e9f7cc174603cd813598c822c275e024509202a673c4c96de7727723eacee332427d382a2ed50ec3ac83c"}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x421}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x4}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8844}, 0x4041)

1.1162063s ago: executing program 3 (id=3240):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x6, 0x4, 0x5b, 0x8a}, 0x48)
bpf$PROG_LOAD(0x4, &(0x7f0000000680)={0x3, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
io_setup(0x4, &(0x7f00000014c0)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
mount$binderfs(0x0, 0x0, 0x0, 0x20, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
setrlimit(0xd, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/meminfo\x00', 0x0, 0x0)
lseek(r2, 0x9, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xa, 0x9, 0x7fff, 0xf9, 0x0, 0x1, 0x2cb02, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0a000000ff070000fa1f00002f00000010000000", @ANYRES32=0x1, @ANYBLOB="02cb00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000800100000000000000000000018000"/28], 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3fb, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, &(0x7f0000000080))
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB], 0x118}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r4, &(0x7f0000000040), 0x4)

1.108445692s ago: executing program 1 (id=3241):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'netdevsim0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5000000010000305000000000000ff9e00000000", @ANYRES32=0x0, @ANYBLOB="0100000000000000280012800b0001006d616373656300001800028005000f00020000000c000100feffff7f0000040008000500", @ANYRES32=r1], 0x50}}, 0x0)

975.571406ms ago: executing program 0 (id=3242):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}, 0x1, 0x0, 0x0, 0x40000}, 0x20008800)

814.348184ms ago: executing program 1 (id=3243):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000480)=@abs, 0xc)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x12, &(0x7f0000000140)={&(0x7f0000000280)=@newlink={0x44, 0x10, 0x403, 0xfffffffc, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERIER={0x5, 0x19, 0x6}, @IFLA_BR_MCAST_QUERY_USE_IFADDR={0x5, 0x18, 0x1}]}}}]}, 0x44}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, 0x0, 0x480, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000200))
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001a40)=@raw={'raw\x00', 0x8, 0x3, 0x310, 0x0, 0xe138, 0x198, 0x0, 0x198, 0x278, 0x358, 0x358, 0x278, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'netdevsim0\x00', 'veth0_to_bond\x00'}, 0x0, 0x130, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'fsm\x00', "0d0080ff0000050000000404fff0cf81dfd28c89544e14cd3e01dd24289831867846c88621039b284c3ff45c42995560a99952bed40cf5a8c1df6cdbdb7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a0002000000000000000000000000000000000049", 0x4}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x370)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000300)=@generic={0x3, 0x1, 0x3})
r8 = dup(r7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r8, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
open_by_handle_at(r5, &(0x7f0000000240)=ANY=[@ANYBLOB="280000004e000010cc000000000000000180e127d6fb000000822d0cfc0000000000000000000000ff7fffffffffd70e8cb3974479ee000000000636b6428b"], 0x10000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)
sendmsg$NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, 0x0, 0x8800)
ioctl$TIOCSERGETLSR(0xffffffffffffffff, 0x5459, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r6, 0xc040aed5, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/profiling', 0x40042, 0x101)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_BYTEORDER_DREG={0x8}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x14}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0xa1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x0)

634.500999ms ago: executing program 0 (id=3244):
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f00000003c0)=ANY=[@ANYBLOB="00000000010400008a000000cbee3b1f3174f0fc82"])

410.60192ms ago: executing program 0 (id=3245):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0xd)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18010000000000fcffffffffffffff00850000006d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

169.057135ms ago: executing program 0 (id=3246):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000004000000000000000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=ANY=[@ANYBLOB="a0000000210001000000000000000000fc020000000000000000000000000000fc02000000000000000000000000000000000000000000000a008000ff000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000500011007f0000010000000000000000000000000a0101000000000000000000000000ac141429000000000000000000000000640101000000000000000000000000003c000000000000000a00020000"], 0xa0}}, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000080)=r0, 0x4)
r3 = socket(0x400000000010, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt(r5, 0x0, 0x20, &(0x7f0000000000)="c440ed6c", 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r6=>0x0})
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000040)={0x7fffffff}, 0x10)
pipe2(&(0x7f0000000040)={<r8=>0xffffffffffffffff}, 0x0)
pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
tee(r8, r9, 0x4e, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r10=>0xffffffffffffffff, {0x1}}, './file0\x00'})
r11 = eventfd(0x2)
ioctl$KVM_IRQFD(r8, 0x4020ae76, &(0x7f0000000300)={r10, 0x93, 0x2, r11})
sendmsg$kcm(r7, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="2e00000022008102e00f80ecdb4cb9020a", 0x4a}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_PMKSA(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB='9\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="13002abd7000bcdbdf253500000008000300", @ANYRES32=r6, @ANYBLOB="0600fd00ffff00000a0034000101010101010000140055008fbfc9e6f2dc7aa8fd5103ec5a04dbff"], 0x44}, 0x1, 0x0, 0x0, 0x48000}, 0x48100)
r13 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r13, &(0x7f0000000040)={0x1d, 0x0, 0x8000000000000003}, 0x18)
sendmsg$nl_route_sched_retired(r3, &(0x7f0000000a80)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000980)=@newqdisc={0xac, 0x24, 0x2, 0x70bd26, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xb, 0xe}, {0xffff, 0xa}, {0x800f, 0xfff2}}, [@q_dsmark={{0xb}, {0x18, 0x2, [@TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x10}]}}, @q_dsmark={{0xb}, {0x24, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x6}, @TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x2}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xfff9}, @TCA_DSMARK_SET_TC_INDEX={0x4}]}}, @q_dsmark={{0xb}, {0x28, 0x2, [@TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xfec7}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x12}, @TCA_DSMARK_DEFAULT_INDEX={0x6}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x38}]}}]}, 0xac}, 0x1, 0x0, 0x0, 0x800}, 0x200400d1)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r14=>0x0})
sendmsg$NL80211_CMD_SET_COALESCE(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000680)={0x2e8, r12, 0x100, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r14}, @void}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0xa8, 0x3, 0x0, 0x1, [{0xa4, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x9e, 0x2, "926bfceb5b3b5fdef9423ff71f1439fe3a09189f35815c91d7cfa9169a81b40cec5655a04654979be26f46af21c8383b176d4775d36b4c98366aa00c8e3b020add8cd294714348182ab2abfe4f71d1f2c04386f74fd529727b95914e71da768aae741bcb427f6e606f1da8ed59cc4daf6468abc0e9badeed007d08ce259738b289beb6cbfa8ea4fc9b0d95cd712b66206224e5cb370e6b6b80b5"}}]}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x13c, 0x3, 0x0, 0x1, [{0xa8, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0xa4, 0x1, "503ac0c5abf70a6738987e65c11cf4521fecf500362954f92636c66799aa0bd29ff377ede404c79810c833d4b36343f654659910a1a844e9c28c45096335d41a7edac71f59c67d8909db0fa3c520b42a1253fa8d43c2021bc705eeb0c44559e96d771601c68d1afae1c941b9ac63fc09d32757b585a02b0fbe46fce1d52df89d3b7b0f833571b0bd970130ee3df13ae80851885803fd0ca57fbc3a266ef199ce"}}, {0x6c, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x66, 0x2, "bfa372d57903d8e4f8f9319f18336c911792fb86ace4d2290674ed3ba8a85a0b123466c50252a6aa4e32926e286b0dfea7a54ef22d50183f487a1803522dbcf3778959d4483ddb2312e0f24614983ad076df05b82d66aefcb280bacecddcb07ee5f4"}}, {0x24, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x1f, 0x1, "cd9f78954fb8a020e55961985c9c8bf0a6354464e1097a5e9b030d"}}]}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x4}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x84, 0x3, 0x0, 0x1, [{0x80, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x7a, 0x2, "0bc03a0592a411946560ac8fdde4e93238886ad89b45d415cb37b956370c91e28d5f66b1a6ec3579c4ef692bdda3e524c40f391901ba8178d57637c9075a43d7c2c2ef3b9ae6d928f27079584b6eb8e2a942eece83092940e93e48bae655366b3e21bbfebb451306c97ca7a38d5d02b643969ada5eaa"}}]}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x7}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x3c, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x10040}}, {0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x175}}, {0x20, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x1c, 0x2, "06587d566e2fdae19fe1438e01f29544578a259ab137bc17"}}]}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}]}, 0x2e8}, 0x1, 0x0, 0x0, 0x10}, 0x20000893)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f00000000c0)={0x0, r3, 0xfffffffffffff70d, 0x78f, 0x6, 0x2})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r15=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newtclass={0x5, 0x28, 0x200, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r15, {0x8, 0xfff1}, {0xe}, {0xd, 0xa}}, [@TCA_RATE={0x6, 0x5, {0x1, 0x57}}, @TCA_RATE={0x6, 0x5, {0x2}}, @TCA_RATE={0x6, 0x5, {0xe, 0x81}}, @tclass_kind_options=@c_skbprio, @TCA_RATE={0x0, 0x5, {0x7, 0x7}}]}, 0x3c}}, 0x4000)

95.719246ms ago: executing program 3 (id=3247):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
syz_open_dev$sg(0x0, 0x0, 0x5) (async)
r0 = getpid() (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000280)={{0x5}, 'syz1\x00', 0x10}) (async)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffff1e00ff130012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
ioctl$UI_DEV_CREATE(r3, 0x5501) (async)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000440)={0x0, &(0x7f00000004c0)=""/72, 0x0, &(0x7f00000007c0)="df74c55f844757ee72779411b6043dd1c270b9048ad1f690a1dd3174496dc63d4f16ba8ef113afbf4139d33458e94867b75fd01544123aeb56aa0f50817c7bb7eef34c440e32c12df8", 0x1, 0xffffffffffffffff, 0x4}, 0x38)
r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000700)=@generic={&(0x7f00000006c0)='./file0\x00', 0x0, 0x10}, 0x14) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r6, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x6}) (async)
fcntl$lock(r6, 0x26, &(0x7f0000000080)={0x1, 0x0, 0x2007, 0x1fd}) (async)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000840)={{0x1, <r7=>0xffffffffffffffff}, &(0x7f0000000740), &(0x7f0000000780)='%pi6   \x00'}, 0x1c) (async)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0200000004000000fc0f00000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000008a8bdbae3ec7133900"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000004000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007100000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r9 = syz_open_dev$mouse(&(0x7f0000000880), 0x200, 0x101000) (async)
r10 = openat$pfkey(0xffffff9c, &(0x7f00000008c0), 0x202, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x1c, 0x17, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000861d00000001040000183a0000020000000000000000000000183300000200000000000000000000003d02200010000000181a0000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000b7080000070000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000400)='syzkaller\x00', 0x8, 0xcb, &(0x7f0000000540)=""/203, 0x41100, 0x8, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x2, 0x6, 0xffff, 0x88b8}, 0x10, 0x0, 0xffffffffffffffff, 0x7, &(0x7f0000000900)=[r5, r6, r7, r8, r9, r10], &(0x7f0000000940)=[{0x4, 0x1, 0xe, 0x4}, {0x1, 0x1, 0xd, 0x5}, {0x2, 0x2, 0x6, 0x7}, {0x1, 0x5, 0x0, 0x6}, {0x5, 0x1, 0x8, 0x6}, {0x3, 0x4, 0xf, 0x3}, {0x2, 0x3, 0xe, 0x3}], 0x10, 0x80}, 0x94) (async)
syz_clone(0x2000211, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 4 (id=3248):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000001380)='ns/cgroup\x00')
open_by_handle_at(r0, &(0x7f0000000000)=@FILEID_NILFS_WITHOUT_PARENT={0x20, 0xf1, {0x1, 0x4000000, 0x105, 0xfffffff8, 0x3d}}, 0x0)

kernel console output (not intermixed with test programs):

cess `syz.0.2268'.
[  481.185617][T14273] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2268'.
[  481.349408][ T6024] usb 37-1: new low-speed USB device number 10 using vhci_hcd
[  481.580045][T14274] vhci_hcd: connection reset by peer
[  481.583818][ T8496] vhci_hcd: stop threads
[  481.585424][ T8496] vhci_hcd: release socket
[  481.593756][ T8496] vhci_hcd: disconnect device
[  482.483828][T13315] Bluetooth: hci4: command tx timeout
[  482.823784][T13060] usb 8-1: new high-speed USB device number 45 using dummy_hcd
[  482.975302][T13060] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  482.977846][T13060] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  482.982114][T13060] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  482.988057][T13060] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  482.994977][T13060] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  483.000555][T13060] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  483.004657][T13060] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.010542][T13060] usb 8-1: config 0 descriptor??
[  483.013372][T14287] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  483.423995][T13060] plantronics 0003:047F:FFFF.0012: reserved main item tag 0xd
[  483.432129][T13060] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  483.685868][T13060] usb 8-1: USB disconnect, device number 45
[  484.433982][T14314] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2280'.
[  484.569336][T14314] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2280'.
[  486.030231][T14334] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2286'.
[  486.389434][T14336] loop3: detected capacity change from 0 to 7
[  486.395255][T14336] Dev loop3: unable to read RDB block 7
[  486.396931][T14336]  loop3: AHDI p1
[  486.397968][T14336] loop3: partition table partially beyond EOD, truncated
[  486.494105][ T6024] vhci_hcd: vhci_device speed not set
[  486.575184][T14333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2286'.
[  487.625169][T14366] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  487.627285][T14366] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  487.630863][T14366] vhci_hcd vhci_hcd.0: Device attached
[  487.643372][T14366] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2291'.
[  487.650944][T14366] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2291'.
[  487.654471][T14366] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2291'.
[  487.657901][T14366] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2291'.
[  487.953752][ T6024] usb 45-1: new low-speed USB device number 11 using vhci_hcd
[  488.184269][T14368] vhci_hcd: connection reset by peer
[  488.191215][ T8495] vhci_hcd: stop threads
[  488.193054][ T8495] vhci_hcd: release socket
[  488.195120][ T8495] vhci_hcd: disconnect device
[  488.957974][T14388] netlink: 9275 bytes leftover after parsing attributes in process `syz.4.2298'.
[  489.079219][T14390] netlink: 'syz.4.2298': attribute type 1 has an invalid length.
[  489.082307][T14390] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2298'.
[  489.560114][T14396] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2299'.
[  489.808011][T14396] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2299'.
[  493.255619][ T6024] vhci_hcd: vhci_device speed not set
[  493.480929][T14455] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2314'.
[  493.484008][T14455] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2314'.
[  493.486797][T14455] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2314'.
[  493.723880][T13398] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  493.853774][T13398] usb 9-1: device descriptor read/64, error -71
[  493.964371][T14462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2317'.
[  494.103791][T13398] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  494.233770][T13398] usb 9-1: device descriptor read/64, error -71
[  494.293605][T14462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2317'.
[  494.344282][T13398] usb usb9-port1: attempt power cycle
[  494.803801][T13398] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  494.836300][T13398] usb 9-1: device descriptor read/8, error -71
[  495.388796][T14483] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2322'.
[  495.389564][T14482] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  495.394526][T14482] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  495.404195][T14482] vhci_hcd vhci_hcd.0: Device attached
[  495.409678][T14482] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2323'.
[  495.414017][T14482] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2323'.
[  495.417248][T14482] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2323'.
[  495.421799][T14482] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2323'.
[  495.427631][T14482] veth0: entered allmulticast mode
[  495.443919][T13398] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  495.465102][T13398] usb 9-1: device descriptor read/8, error -71
[  495.574201][T13398] usb usb9-port1: unable to enumerate USB device
[  495.653818][ T6005] usb 43-1: new low-speed USB device number 18 using vhci_hcd
[  495.706482][T14484] vhci_hcd: connection reset by peer
[  495.709136][ T8496] vhci_hcd: stop threads
[  495.710929][ T8496] vhci_hcd: release socket
[  495.714764][ T8496] vhci_hcd: disconnect device
[  498.439970][T14535] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  498.682238][T14542] __nla_validate_parse: 2 callbacks suppressed
[  498.682302][T14542] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2341'.
[  498.700746][T14543] /dev/nullb0: Can't open blockdev
[  499.672558][T14542] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2341'.
[  499.801246][T14538] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  499.803726][T14538] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  499.806213][T14538] vhci_hcd vhci_hcd.0: Device attached
[  499.809225][T14551] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  499.811291][T14551] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  499.818677][T14551] vhci_hcd vhci_hcd.0: Device attached
[  499.827157][T14551] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2342'.
[  499.831871][T14551] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2342'.
[  499.835162][T14551] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2342'.
[  499.838326][T14551] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2342'.
[  499.985276][T14549] vhci_hcd: connection closed
[  499.985514][   T12] vhci_hcd: stop threads
[  499.990029][   T12] vhci_hcd: release socket
[  499.991968][   T12] vhci_hcd: disconnect device
[  500.083819][   T29] usb 45-1: new low-speed USB device number 12 using vhci_hcd
[  500.435778][T14552] vhci_hcd: connection reset by peer
[  500.437795][ T1198] vhci_hcd: stop threads
[  500.439244][ T1198] vhci_hcd: release socket
[  500.440766][ T1198] vhci_hcd: disconnect device
[  500.793890][ T6005] vhci_hcd: vhci_device speed not set
[  500.965428][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  501.687649][T14588] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2352'.
[  501.902696][T14597] loop3: detected capacity change from 0 to 7
[  501.905684][T14597] Dev loop3: unable to read RDB block 7
[  501.907550][T14597]  loop3: AHDI p1
[  501.908840][T14597] loop3: partition table partially beyond EOD, truncated
[  502.069789][T14587] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2352'.
[  502.367290][T14612] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  502.369995][T14612] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  502.384969][T14612] vhci_hcd vhci_hcd.0: Device attached
[  502.398459][T14612] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2358'.
[  502.406479][T14612] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2358'.
[  502.714531][ T6024] usb 39-1: new low-speed USB device number 10 using vhci_hcd
[  502.922993][T14614] vhci_hcd: connection reset by peer
[  502.929713][   T12] vhci_hcd: stop threads
[  502.931566][   T12] vhci_hcd: release socket
[  502.935669][   T12] vhci_hcd: disconnect device
[  503.762935][T14648] __nla_validate_parse: 2 callbacks suppressed
[  503.762947][T14648] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2368'.
[  504.181840][T14648] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2368'.
[  505.203963][   T29] vhci_hcd: vhci_device speed not set
[  505.573608][T14677] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  505.575964][T14677] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  505.663421][T14677] vhci_hcd vhci_hcd.0: Device attached
[  506.024516][T14672] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2376'.
[  506.046273][T14672] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2376'.
[  506.054209][T14672] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2376'.
[  506.063070][T14672] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2376'.
[  506.073739][T13391] usb 37-1: new low-speed USB device number 11 using vhci_hcd
[  506.215762][T14678] vhci_hcd: connection reset by peer
[  506.217537][ T8496] vhci_hcd: stop threads
[  506.218960][ T8496] vhci_hcd: release socket
[  506.220482][ T8496] vhci_hcd: disconnect device
[  506.352024][T14690] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  507.121667][T14705] wireguard0: entered promiscuous mode
[  507.124525][T14705] wireguard0: entered allmulticast mode
[  507.262331][T14708] libceph: resolve '
[  507.262331][T14708] -&õÌ×fÍY¹Ç�²a×ïÅ2iˆ
[  507.262331][T14708] .ÖúÕ?Çý&�*»§&' (ret=-3): failed
[  507.833937][ T6024] vhci_hcd: vhci_device speed not set
[  508.028790][T14727] No control pipe specified
[  508.036351][T14727] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2391'.
[  508.225523][T14729] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2390'.
[  508.228375][T14729] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2390'.
[  508.231150][T14729] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2390'.
[  508.806428][T14739] __nla_validate_parse: 1 callbacks suppressed
[  508.806439][T14739] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2393'.
[  508.813853][T14739] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2393'.
[  508.816729][T14739] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2393'.
[  509.133752][ T6005] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  509.231448][T14752] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  509.233531][T14752] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  509.236729][T14752] vhci_hcd vhci_hcd.0: Device attached
[  509.244121][T14752] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2394'.
[  509.250811][T14752] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2394'.
[  509.255978][T14752] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2394'.
[  509.260919][T14752] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2394'.
[  509.523730][ T6024] usb 43-1: new low-speed USB device number 19 using vhci_hcd
[  509.774699][T14753] vhci_hcd: connection reset by peer
[  509.777972][ T1143] vhci_hcd: stop threads
[  509.780258][ T1143] vhci_hcd: release socket
[  509.782191][ T1143] vhci_hcd: disconnect device
[  509.960702][T14757] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  509.964651][T14757] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[  509.968778][T14757] overlayfs: failed to set uuid (89/file0, err=-13); falling back to uuid=null.
[  510.053733][ T6005] usb 9-1: device descriptor read/64, error -71
[  510.080746][T14767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2403'.
usb_generic_handle_packet: ctrl buffer too small (16384 > 4096)
[  510.324708][ T6005] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  510.473785][ T6005] usb 9-1: device descriptor read/64, error -71
[  510.593971][ T6005] usb usb9-port1: attempt power cycle
[  510.933703][ T6005] usb 9-1: new high-speed USB device number 18 using dummy_hcd
[  510.964108][ T6005] usb 9-1: device descriptor read/8, error -71
[  511.194022][T13391] vhci_hcd: vhci_device speed not set
[  511.203711][ T6005] usb 9-1: new high-speed USB device number 19 using dummy_hcd
[  511.224812][ T6005] usb 9-1: device descriptor read/8, error -71
[  511.333955][ T6005] usb usb9-port1: unable to enumerate USB device
[  511.814714][T14792] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  511.900147][T14795] netlink: 7 bytes leftover after parsing attributes in process `syz.0.2413'.
[  511.905639][T14795] netlink: 7 bytes leftover after parsing attributes in process `syz.0.2413'.
[  512.571033][T14807] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  512.573079][T14807] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  512.578709][T14807] vhci_hcd vhci_hcd.0: Device attached
[  512.823781][T13391] usb 37-1: new low-speed USB device number 12 using vhci_hcd
[  512.877730][T14809] vhci_hcd: connection closed
[  512.986455][ T1143] vhci_hcd: stop threads
[  512.989708][ T1143] vhci_hcd: release socket
[  512.991177][ T1143] vhci_hcd: disconnect device
[  514.371106][T14844] __nla_validate_parse: 6 callbacks suppressed
[  514.371117][T14844] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2424'.
[  514.376477][T14844] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2424'.
[  514.379957][T14844] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2424'.
[  514.657092][ T6024] vhci_hcd: vhci_device speed not set
[  515.083484][T14859] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  515.085554][T14859] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  515.088739][T14859] vhci_hcd vhci_hcd.0: Device attached
[  515.092238][T14859] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2427'.
[  515.095966][T14859] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2427'.
[  515.099160][T14859] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2427'.
[  515.102060][T14859] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2427'.
[  515.498201][   T29] usb 39-1: new low-speed USB device number 11 using vhci_hcd
[  515.917051][T14860] vhci_hcd: connection reset by peer
[  515.923622][ T8501] vhci_hcd: stop threads
[  515.925131][ T8501] vhci_hcd: release socket
[  515.926584][ T8501] vhci_hcd: disconnect device
[  517.971053][T13391] vhci_hcd: vhci_device speed not set
[  519.149373][T14911] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  519.151495][T14911] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  519.154679][T14911] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  519.156569][T14911] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  519.159389][T14911] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  519.161266][T14911] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  519.291819][T14917] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  519.294714][T14917] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  519.298467][T14917] vhci_hcd vhci_hcd.0: Device attached
[  519.309540][T14917] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2441'.
[  519.315302][T14917] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2441'.
[  519.320358][T14917] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2441'.
[  519.743972][ T5986] usb 45-1: new low-speed USB device number 13 using vhci_hcd
[  519.919019][T14918] vhci_hcd: connection reset by peer
[  519.921667][ T8491] vhci_hcd: stop threads
[  519.923055][ T8491] vhci_hcd: release socket
[  519.924600][ T8491] vhci_hcd: disconnect device
[  520.633721][   T29] vhci_hcd: vhci_device speed not set
[  522.102965][T14958] __nla_validate_parse: 1 callbacks suppressed
[  522.102991][T14958] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2455'.
[  522.560531][T14958] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2455'.
[  523.989749][T14985] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  523.991806][T14985] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  523.995514][T14985] vhci_hcd vhci_hcd.0: Device attached
[  523.999602][T14985] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2459'.
[  524.004172][T14985] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2459'.
[  524.008287][T14985] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2459'.
[  524.011318][T14985] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2459'.
[  524.543747][T13391] usb 39-1: new low-speed USB device number 12 using vhci_hcd
[  524.834214][T14986] vhci_hcd: connection reset by peer
[  524.837201][ T8496] vhci_hcd: stop threads
[  524.844933][ T8496] vhci_hcd: release socket
[  524.846325][ T8496] vhci_hcd: disconnect device
[  525.020607][ T5986] vhci_hcd: vhci_device speed not set
[  525.543795][T13398] usb 9-1: new high-speed USB device number 20 using dummy_hcd
[  525.693772][T13398] usb 9-1: Using ep0 maxpacket: 16
[  525.697878][T13398] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  525.709633][T13398] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  525.713318][T13398] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  525.744762][T13398] usb 9-1: Product: syz
[  525.746595][T13398] usb 9-1: Manufacturer: syz
[  525.748580][T13398] usb 9-1: SerialNumber: syz
[  525.752545][T13398] usb 9-1: config 0 descriptor??
[  525.788698][T13398] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  525.793369][T13398] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  526.014113][T13398] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  526.078361][T13398] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  526.081493][T13398] em28xx 9-1:0.0: board has no eeprom
[  526.140838][T15012] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2468'.
[  526.143824][T13398] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  526.152110][T13398] em28xx 9-1:0.0: dvb set to bulk mode.
[  526.156062][ T6023] em28xx 9-1:0.0: Binding DVB extension
[  526.177812][T13398] usb 9-1: USB disconnect, device number 20
[  526.184506][T13398] em28xx 9-1:0.0: Disconnecting em28xx
[  526.419900][ T6023] em28xx 9-1:0.0: Registering input extension
[  526.421989][T13398] em28xx 9-1:0.0: Closing input extension
[  526.476179][T13398] em28xx 9-1:0.0: Freeing device
[  526.526502][T15012] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2468'.
[  526.842983][T15019] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2469'.
[  527.004233][T15019] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2469'.
[  527.225477][T15029] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2470'.
[  527.228202][T15029] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2470'.
[  527.230913][T15029] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2470'.
[  528.150987][T15041] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  528.153549][T15041] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  528.156437][T15041] vhci_hcd vhci_hcd.0: Device attached
[  528.161990][T15041] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2475'.
[  528.167291][T15041] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2475'.
[  528.171016][T15041] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2475'.
[  528.174352][T15041] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2475'.
[  528.394427][   T29] usb 45-1: new low-speed USB device number 14 using vhci_hcd
[  528.692591][T15042] vhci_hcd: connection reset by peer
[  528.699413][ T1143] vhci_hcd: stop threads
[  528.701406][ T1143] vhci_hcd: release socket
[  528.703430][ T1143] vhci_hcd: disconnect device
[  528.994022][T15053] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2476'.
[  528.996881][T15053] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2476'.
[  529.002673][T15053] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2476'.
[  529.797434][T13391] vhci_hcd: vhci_device speed not set
[  529.977444][T15067] FAULT_INJECTION: forcing a failure.
[  529.977444][T15067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  529.982860][T15067] CPU: 1 UID: 0 PID: 15067 Comm: syz.1.2481 Not tainted syzkaller #0 PREEMPT(full) 
[  529.982884][T15067] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  529.982895][T15067] Call Trace:
[  529.982902][T15067]  <TASK>
[  529.982908][T15067]  dump_stack_lvl+0x16c/0x1f0
[  529.982940][T15067]  should_fail_ex+0x512/0x640
[  529.982970][T15067]  _copy_from_user+0x2e/0xd0
[  529.982989][T15067]  get_compat_msghdr+0xa7/0x170
[  529.983015][T15067]  ? __pfx_get_compat_msghdr+0x10/0x10
[  529.983049][T15067]  ___sys_sendmsg+0x1ae/0x1d0
[  529.983083][T15067]  ? __pfx____sys_sendmsg+0x10/0x10
[  529.983121][T15067]  ? find_held_lock+0x2b/0x80
[  529.983161][T15067]  __sys_sendmsg+0x16d/0x220
[  529.983187][T15067]  ? __pfx___sys_sendmsg+0x10/0x10
[  529.983223][T15067]  ? rcu_is_watching+0x12/0xc0
[  529.983251][T15067]  __do_fast_syscall_32+0x7c/0x300
[  529.983280][T15067]  do_fast_syscall_32+0x32/0x80
[  529.983307][T15067]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  529.983327][T15067] RIP: 0023:0xf7f45579
[  529.983340][T15067] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  529.983356][T15067] RSP: 002b:00000000f543655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  529.983373][T15067] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800012c0
[  529.983384][T15067] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  529.983394][T15067] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  529.983403][T15067] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  529.983413][T15067] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  529.983437][T15067]  </TASK>
[  530.788974][T15082] loop3: detected capacity change from 0 to 7
[  530.791403][T15082] Dev loop3: unable to read RDB block 7
[  530.793099][T15082]  loop3: AHDI p1
[  530.796147][T15082] loop3: partition table partially beyond EOD, truncated
[  531.679184][T15097] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  531.682212][T15097] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  531.686710][T15097] vhci_hcd vhci_hcd.0: Device attached
[  531.803303][T15098] vhci_hcd: connection closed
[  531.803518][ T1143] vhci_hcd: stop threads
[  531.806359][ T1143] vhci_hcd: release socket
[  531.809194][ T1143] vhci_hcd: disconnect device
[  531.863763][ T5986] vhci_hcd: vhci_device speed not set
[  532.240590][T15103] __nla_validate_parse: 7 callbacks suppressed
[  532.240602][T15103] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2494'.
[  532.722688][T15119] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2495'.
[  532.725936][T15117] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  532.728324][T15117] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  532.733498][T15119] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2495'.
[  532.736529][T15117] vhci_hcd vhci_hcd.0: Device attached
[  532.826016][T15119] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2495'.
[  532.834562][T15119] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2495'.
[  533.171765][T15118] vhci_hcd: connection closed
[  533.171989][ T1198] vhci_hcd: stop threads
[  533.175314][ T1198] vhci_hcd: release socket
[  533.176786][ T1198] vhci_hcd: disconnect device
[  533.266444][T15135] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  533.524101][   T29] vhci_hcd: vhci_device speed not set
[  534.916378][T15181] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  534.919069][T15181] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  534.922625][T15181] vhci_hcd vhci_hcd.0: Device attached
[  534.936621][T15181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2509'.
[  534.940348][T15181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2509'.
[  534.944402][T15181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2509'.
[  534.947879][T15181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2509'.
[  535.062812][T15182] vhci_hcd: connection closed
[  535.063250][   T46] vhci_hcd: stop threads
[  535.067041][   T46] vhci_hcd: release socket
[  535.068580][   T46] vhci_hcd: disconnect device
[  535.103840][   T29] vhci_hcd: vhci_device speed not set
[  535.904337][T15198] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2515'.
[  536.806780][T15213] FAULT_INJECTION: forcing a failure.
[  536.806780][T15213] name failslab, interval 1, probability 0, space 0, times 0
[  536.812034][T15213] CPU: 0 UID: 0 PID: 15213 Comm: syz.4.2520 Not tainted syzkaller #0 PREEMPT(full) 
[  536.812059][T15213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  536.812070][T15213] Call Trace:
[  536.812077][T15213]  <TASK>
[  536.812084][T15213]  dump_stack_lvl+0x16c/0x1f0
[  536.812116][T15213]  should_fail_ex+0x512/0x640
[  536.812142][T15213]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  536.812170][T15213]  should_failslab+0xc2/0x120
[  536.812188][T15213]  kmem_cache_alloc_node_noprof+0x78/0x770
[  536.812211][T15213]  ? __alloc_skb+0x2b2/0x380
[  536.812241][T15213]  ? __alloc_skb+0x2b2/0x380
[  536.812264][T15213]  ? __pfx_netlink_insert+0x10/0x10
[  536.812288][T15213]  __alloc_skb+0x2b2/0x380
[  536.812313][T15213]  ? __pfx___alloc_skb+0x10/0x10
[  536.812337][T15213]  ? netlink_autobind.isra.0+0x158/0x370
[  536.812371][T15213]  netlink_alloc_large_skb+0x69/0x140
[  536.812400][T15213]  netlink_sendmsg+0x698/0xdd0
[  536.812432][T15213]  ? __pfx_netlink_sendmsg+0x10/0x10
[  536.812462][T15213]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  536.812486][T15213]  ____sys_sendmsg+0xa98/0xc70
[  536.812507][T15213]  ? __pfx_____sys_sendmsg+0x10/0x10
[  536.812526][T15213]  ? get_compat_msghdr+0x11a/0x170
[  536.812562][T15213]  ___sys_sendmsg+0x134/0x1d0
[  536.812591][T15213]  ? __pfx____sys_sendmsg+0x10/0x10
[  536.812629][T15213]  ? find_held_lock+0x2b/0x80
[  536.812670][T15213]  __sys_sendmsg+0x16d/0x220
[  536.812695][T15213]  ? __pfx___sys_sendmsg+0x10/0x10
[  536.812732][T15213]  ? rcu_is_watching+0x12/0xc0
[  536.812761][T15213]  __do_fast_syscall_32+0x7c/0x300
[  536.812792][T15213]  do_fast_syscall_32+0x32/0x80
[  536.812819][T15213]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  536.812842][T15213] RIP: 0023:0xf6ffd579
[  536.812856][T15213] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  536.812873][T15213] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  536.812887][T15213] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800012c0
[  536.812897][T15213] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  536.812905][T15213] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  536.812916][T15213] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  536.812926][T15213] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  536.812950][T15213]  </TASK>
[  538.148963][T15245] evm: overlay not supported
[  538.159659][T15247] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  538.161769][T15247] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  538.165100][T15247] vhci_hcd vhci_hcd.0: Device attached
[  538.189313][T15247] __nla_validate_parse: 2 callbacks suppressed
[  538.189339][T15247] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2522'.
[  538.196408][T15247] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2522'.
[  538.201497][T15247] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2522'.
[  538.206181][T15247] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2522'.
[  538.350439][T15248] vhci_hcd: connection closed
[  538.363791][ T8491] vhci_hcd: stop threads
[  538.366675][ T8491] vhci_hcd: release socket
[  538.368123][ T8491] vhci_hcd: disconnect device
[  538.441220][   T29] usb 43-1: new low-speed USB device number 21 using vhci_hcd
[  538.444087][   T29] usb 43-1: enqueue for inactive port 0
[  538.514093][   T29] vhci_hcd: vhci_device speed not set
[  538.814440][   T12] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  538.912214][   T12] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  538.990081][   T12] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.058105][   T12] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.101478][ T5952] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  539.107353][ T5952] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  539.111577][ T5952] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  539.116858][ T5952] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  539.119952][ T5952] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  539.125728][T13315] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  539.128364][T13315] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  539.130738][T13315] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  539.133387][T13315] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  539.136142][T13315] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  539.269550][T15273] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2538'.
[  539.274586][T15273] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2538'.
[  539.341081][   T12] gtp0 (unregistering): left promiscuous mode
[  539.343750][   T12] team0: Port device gtp0 removed
[  539.383586][T15277] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2540'.
[  539.428749][   T12] bond0 (unregistering): Released all slaves
[  539.500064][   T12] bond1 (unregistering): Released all slaves
[  539.679372][T15277] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2540'.
[  539.680335][T15267] chnl_net:caif_netlink_parms(): no params data found
[  539.749204][T15285] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2541'.
[  540.009412][T15285] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2541'.
[  540.224560][   T12] hsr_slave_0: left promiscuous mode
[  540.231484][   T12] hsr_slave_1: left promiscuous mode
[  540.265981][   T12] veth1_macvtap: left promiscuous mode
[  540.267898][   T12] veth0_macvtap: left promiscuous mode
[  541.204754][ T5952] Bluetooth: hci0: command tx timeout
[  542.268135][T15267] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.271501][T15267] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.274737][T15267] bridge_slave_0: entered allmulticast mode
[  542.281002][T15267] bridge_slave_0: entered promiscuous mode
[  542.288226][T15267] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.291169][T15267] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.293732][T15267] bridge_slave_1: entered allmulticast mode
[  542.297313][T15267] bridge_slave_1: entered promiscuous mode
[  542.419861][T15267] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.435644][T15267] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  542.521134][T15267] team0: Port device team_slave_0 added
[  542.545517][T15267] team0: Port device team_slave_1 added
[  542.600760][T15267] batman_adv: batadv0: Adding interface: batadv_slave_0
[  542.603493][T15267] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  542.616665][T15267] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  542.635754][T15267] batman_adv: batadv0: Adding interface: batadv_slave_1
[  542.638592][T15267] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  542.649918][T15267] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  542.716433][T15267] hsr_slave_0: entered promiscuous mode
[  542.718661][T15267] hsr_slave_1: entered promiscuous mode
[  542.720699][T15267] debugfs: 'hsr0' already exists in 'hsr'
[  542.722475][T15267] Cannot create hsr debugfs directory
[  543.283815][T13315] Bluetooth: hci0: command tx timeout
[  543.313757][T13398] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  543.443912][T13398] usb 6-1: device descriptor read/64, error -71
[  543.491654][T15267] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  543.496195][T15267] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  543.500507][T15267] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  543.504681][T15267] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  543.553082][T15267] 8021q: adding VLAN 0 to HW filter on device bond0
[  543.565504][T15267] 8021q: adding VLAN 0 to HW filter on device team0
[  543.571197][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  543.573416][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  543.579732][   T92] bridge0: port 2(bridge_slave_1) entered blocking state
[  543.581964][   T92] bridge0: port 2(bridge_slave_1) entered forwarding state
[  543.683783][T13398] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  543.708238][T15267] 8021q: adding VLAN 0 to HW filter on device batadv0
[  543.736394][T15267] veth0_vlan: entered promiscuous mode
[  543.742524][T15267] veth1_vlan: entered promiscuous mode
[  543.760630][T15267] veth0_macvtap: entered promiscuous mode
[  543.765990][T15267] veth1_macvtap: entered promiscuous mode
[  543.789166][T15267] batman_adv: batadv0: Interface activated: batadv_slave_0
[  543.812765][T15267] batman_adv: batadv0: Interface activated: batadv_slave_1
[  543.834089][T13398] usb 6-1: device descriptor read/64, error -71
[  543.835386][   T46] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  543.837421][T15337] __nla_validate_parse: 3 callbacks suppressed
[  543.837431][T15337] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2551'.
[  543.839720][   T46] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  543.853899][   T46] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  543.857826][   T46] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  543.886278][   T92] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  543.889748][   T92] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  543.901305][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  543.906355][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  544.021384][T15337] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2551'.
[  544.462047][T15342] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  544.464201][T15342] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  544.467029][T15342] vhci_hcd vhci_hcd.0: Device attached
[  544.484847][T15342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2545'.
[  544.499048][T15342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2545'.
[  544.504580][T15342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2545'.
[  544.511009][T15342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2545'.
[  544.522439][T15342] veth0: entered allmulticast mode
[  544.627580][T13398] usb usb6-port1: attempt power cycle
[  544.723784][   T29] usb 37-1: new low-speed USB device number 13 using vhci_hcd
[  544.778882][T15343] vhci_hcd: connection reset by peer
[  544.781001][   T92] vhci_hcd: stop threads
[  544.782433][   T92] vhci_hcd: release socket
[  544.784946][   T92] vhci_hcd: disconnect device
[  544.920761][T15348] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  544.923539][T15348] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  544.927543][T15348] vhci_hcd vhci_hcd.0: Device attached
[  544.935770][T15348] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2552'.
[  544.941715][T15348] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2552'.
[  544.945941][T15348] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2552'.
[  544.950736][T15348] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2552'.
[  544.973746][T13398] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  544.994853][T13398] usb 6-1: device descriptor read/8, error -71
[  545.173708][ T5986] usb 43-1: new low-speed USB device number 22 using vhci_hcd
[  545.233759][T13398] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  545.254418][T13398] usb 6-1: device descriptor read/8, error -71
[  545.363826][T13315] Bluetooth: hci0: command 0x040f tx timeout
[  545.368221][T13398] usb usb6-port1: unable to enumerate USB device
[  545.780202][T15349] vhci_hcd: connection reset by peer
[  545.793306][   T92] vhci_hcd: stop threads
[  545.795191][   T92] vhci_hcd: release socket
[  545.797689][   T92] vhci_hcd: disconnect device
[  545.956250][T15364] nbd: must specify a size in bytes for the device
[  547.453975][ T5952] Bluetooth: hci0: command 0x040f tx timeout
[  547.657252][T15400] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  547.659991][T15400] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  547.664483][T15400] vhci_hcd vhci_hcd.0: Device attached
[  547.913719][T13391] usb 39-1: new low-speed USB device number 14 using vhci_hcd
[  548.272680][T15401] vhci_hcd: connection reset by peer
[  548.276721][   T92] vhci_hcd: stop threads
[  548.278560][   T92] vhci_hcd: release socket
[  548.280502][   T92] vhci_hcd: disconnect device
[  548.860491][T15406] can0: slcan on ptm0.
[  549.023807][T15405] can0 (unregistered): slcan off ptm0.
[  549.206422][T15424] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  549.208515][T15424] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  549.210972][T15424] vhci_hcd vhci_hcd.0: Device attached
[  549.218142][T15424] __nla_validate_parse: 5 callbacks suppressed
[  549.218158][T15424] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2568'.
[  549.226349][T15428] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  549.229427][T15424] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2568'.
[  549.271370][T15431] loop3: detected capacity change from 0 to 7
[  549.281794][T15431] Dev loop3: unable to read RDB block 7
[  549.287547][T15431]  loop3: AHDI p1
[  549.291752][T15431] loop3: partition table partially beyond EOD, truncated
[  549.361484][T15424] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2568'.
[  549.371928][T15424] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2568'.
[  549.478577][T15441] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  549.483735][ T6024] usb 45-1: new low-speed USB device number 15 using vhci_hcd
[  549.523984][ T5952] Bluetooth: hci0: command 0x040f tx timeout
[  549.694021][T15446] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  549.696060][T15446] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  549.700797][T15446] vhci_hcd vhci_hcd.0: Device attached
[  549.720103][T15446] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2579'.
[  549.726152][T15446] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2579'.
[  549.730649][T15446] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2579'.
[  549.733871][T15446] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2579'.
[  550.251021][T15447] vhci_hcd: connection reset by peer
[  550.252882][ T1198] vhci_hcd: stop threads
[  550.255010][ T1198] vhci_hcd: release socket
[  550.257754][ T1198] vhci_hcd: disconnect device
[  550.262285][T15425] vhci_hcd: connection reset by peer
[  550.264818][   T46] vhci_hcd: stop threads
[  550.267006][   T46] vhci_hcd: release socket
[  550.268507][   T46] vhci_hcd: disconnect device
[  550.425381][   T29] vhci_hcd: vhci_device speed not set
[  550.433933][ T5986] vhci_hcd: vhci_device speed not set
[  550.491832][T15461] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2585'.
[  550.501698][T15461] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2585'.
[  550.924381][T13398] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  550.996576][   T40] audit: type=1326 audit(1760401249.493:2598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15472 comm="syz.0.2589" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa2579 code=0x0
[  551.053903][T13398] usb 6-1: device descriptor read/64, error -71
[  551.303747][T13398] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  551.444162][T13398] usb 6-1: device descriptor read/64, error -71
[  551.553928][T13398] usb usb6-port1: attempt power cycle
[  551.983857][T13398] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[  552.011252][T13398] usb 6-1: device descriptor read/8, error -71
[  552.243691][T13398] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[  552.275493][T13398] usb 6-1: device descriptor read/8, error -71
[  552.395815][T13398] usb usb6-port1: unable to enumerate USB device
[  553.009057][T15513] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  553.011099][T15513] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  553.014590][T15513] vhci_hcd vhci_hcd.0: Device attached
[  553.044005][T13391] vhci_hcd: vhci_device speed not set
[  553.253781][ T5986] usb 43-1: new low-speed USB device number 23 using vhci_hcd
[  553.441605][T15514] vhci_hcd: connection reset by peer
[  553.443513][   T12] vhci_hcd: stop threads
[  553.444990][   T12] vhci_hcd: release socket
[  553.446513][   T12] vhci_hcd: disconnect device
[  554.106440][T15534] FAULT_INJECTION: forcing a failure.
[  554.106440][T15534] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  554.111441][T15534] CPU: 3 UID: 0 PID: 15534 Comm: syz.0.2605 Not tainted syzkaller #0 PREEMPT(full) 
[  554.111462][T15534] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  554.111471][T15534] Call Trace:
[  554.111476][T15534]  <TASK>
[  554.111482][T15534]  dump_stack_lvl+0x16c/0x1f0
[  554.111507][T15534]  should_fail_ex+0x512/0x640
[  554.111532][T15534]  _copy_from_iter+0x29f/0x1720
[  554.111558][T15534]  ? __alloc_skb+0x200/0x380
[  554.111579][T15534]  ? __pfx__copy_from_iter+0x10/0x10
[  554.111603][T15534]  ? netlink_autobind.isra.0+0x158/0x370
[  554.111634][T15534]  netlink_sendmsg+0x820/0xdd0
[  554.111660][T15534]  ? __pfx_netlink_sendmsg+0x10/0x10
[  554.111684][T15534]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  554.111702][T15534]  ____sys_sendmsg+0xa98/0xc70
[  554.111720][T15534]  ? __pfx_____sys_sendmsg+0x10/0x10
[  554.111735][T15534]  ? get_compat_msghdr+0x11a/0x170
[  554.111766][T15534]  ___sys_sendmsg+0x134/0x1d0
[  554.111788][T15534]  ? __pfx____sys_sendmsg+0x10/0x10
[  554.111819][T15534]  ? find_held_lock+0x2b/0x80
[  554.111853][T15534]  __sys_sendmsg+0x16d/0x220
[  554.111875][T15534]  ? __pfx___sys_sendmsg+0x10/0x10
[  554.111903][T15534]  ? rcu_is_watching+0x12/0xc0
[  554.111925][T15534]  __do_fast_syscall_32+0x7c/0x300
[  554.111949][T15534]  do_fast_syscall_32+0x32/0x80
[  554.111969][T15534]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  554.111987][T15534] RIP: 0023:0xf7fa2579
[  554.111997][T15534] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  554.112017][T15534] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  554.112032][T15534] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800012c0
[  554.112041][T15534] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  554.112049][T15534] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  554.112058][T15534] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  554.112067][T15534] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  554.112086][T15534]  </TASK>
[  554.823742][ T6024] vhci_hcd: vhci_device speed not set
[  555.820899][T15564] __nla_validate_parse: 10 callbacks suppressed
[  555.820915][T15564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2611'.
[  556.284157][T15564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2611'.
[  556.532822][T15583] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  556.534883][T15583] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  556.537556][T15583] vhci_hcd vhci_hcd.0: Device attached
[  556.542748][T15583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2615'.
[  556.546360][T15583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2615'.
[  556.549689][T15583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2615'.
[  556.552925][T15583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2615'.
[  556.783892][ T6024] usb 37-1: new low-speed USB device number 14 using vhci_hcd
[  556.885379][T15584] vhci_hcd: connection reset by peer
[  556.903874][ T1143] vhci_hcd: stop threads
[  556.905319][ T1143] vhci_hcd: release socket
[  556.906710][ T1143] vhci_hcd: disconnect device
[  557.343790][ T9334] usb 8-1: new high-speed USB device number 46 using dummy_hcd
[  557.378113][T15597] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  557.518212][ T9334] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  557.521484][ T9334] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  557.526149][ T9334] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  557.529783][ T9334] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  557.533044][ T9334] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  557.539792][ T9334] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  557.542549][ T9334] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  557.547241][ T9334] usb 8-1: config 0 descriptor??
[  557.549299][T15595] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  558.403761][ T5986] vhci_hcd: vhci_device speed not set
[  558.541102][T15618] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2627'.
[  558.733469][T15618] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2627'.
[  559.489869][T15633] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2631'.
[  559.493042][T15633] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2631'.
[  560.112066][T15639] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  560.114205][T15639] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  560.117385][T15639] vhci_hcd vhci_hcd.0: Device attached
[  560.126787][ T9334] usbhid 8-1:0.0: can't add hid device: -71
[  560.128682][ T9334] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  560.131956][ T9334] usb 8-1: USB disconnect, device number 46
[  560.423720][ T5986] usb 39-1: new low-speed USB device number 15 using vhci_hcd
[  560.850235][T15640] vhci_hcd: connection reset by peer
[  560.861101][ T8496] vhci_hcd: stop threads
[  560.862768][ T8496] vhci_hcd: release socket
[  560.864677][ T8496] vhci_hcd: disconnect device
[  561.345055][T15649] __nla_validate_parse: 5 callbacks suppressed
[  561.345095][T15649] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2635'.
[  561.647804][T15649] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2635'.
[  561.924206][ T6024] vhci_hcd: vhci_device speed not set
[  562.415726][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  564.519113][T15694] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2647'.
[  564.912248][T15693] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2647'.
[  565.015943][T15708] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  565.018667][T15708] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  565.021563][T15708] vhci_hcd vhci_hcd.0: Device attached
[  565.031815][T15708] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2646'.
[  565.037297][T15708] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2646'.
[  565.041852][T15708] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2646'.
[  565.051068][T15708] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2646'.
[  565.250068][T15709] vhci_hcd: connection closed
[  565.250397][ T8496] vhci_hcd: stop threads
[  565.254330][ T8496] vhci_hcd: release socket
[  565.256219][ T8496] vhci_hcd: disconnect device
[  565.513741][ T5986] vhci_hcd: vhci_device speed not set
[  565.824996][T15720] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  566.268709][ T6024] usb 6-1: new high-speed USB device number 44 using dummy_hcd
[  566.287293][T15729] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2658'.
[  566.525514][ T6024] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  566.529005][ T6024] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  566.532114][ T6024] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  566.535011][ T6024] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  566.539285][T15722] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  566.543074][ T6024] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  566.696144][T15729] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2658'.
[  567.122714][T15743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2660'.
[  567.164229][T15744] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  567.166363][T15744] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  567.169857][T15744] vhci_hcd vhci_hcd.0: Device attached
[  567.187016][T15744] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2659'.
[  567.197815][T15744] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2659'.
[  567.201209][T15744] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2659'.
[  567.207166][T15744] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2659'.
[  567.403779][ T6024] usb 43-1: new low-speed USB device number 24 using vhci_hcd
[  567.486335][T15743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2660'.
[  567.948083][T15745] vhci_hcd: connection reset by peer
[  567.952185][T15749] netlink: 7 bytes leftover after parsing attributes in process `syz.0.2661'.
[  567.955012][ T8491] vhci_hcd: stop threads
[  567.957031][ T8491] vhci_hcd: release socket
[  567.958356][ T8491] vhci_hcd: disconnect device
[  567.960134][T15749] netlink: 7 bytes leftover after parsing attributes in process `syz.0.2661'.
[  568.395137][ T6023] usb 6-1: USB disconnect, device number 44
[  568.915474][T15764] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  568.917548][T15764] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  568.924102][T15764] vhci_hcd vhci_hcd.0: Device attached
[  568.935772][T15764] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2664'.
[  569.720451][T15765] vhci_hcd: connection closed
[  569.720628][   T46] vhci_hcd: stop threads
[  569.725040][   T46] vhci_hcd: release socket
[  569.726984][   T46] vhci_hcd: disconnect device
[  570.453912][ T9334] usb 9-1: new high-speed USB device number 21 using dummy_hcd
[  570.619906][ T9334] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  570.623129][ T9334] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  570.627452][ T9334] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  570.633755][ T9334] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  570.640160][ T9334] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  570.645834][ T9334] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  570.649146][ T9334] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.669335][ T9334] usb 9-1: config 0 descriptor??
[  570.673127][T15787] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  572.507439][T15819] __nla_validate_parse: 6 callbacks suppressed
[  572.507749][T15819] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2679'.
[  572.603289][ T6024] vhci_hcd: vhci_device speed not set
[  572.826908][T15819] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2679'.
[  573.240855][ T9334] usbhid 9-1:0.0: can't add hid device: -71
[  573.242785][ T9334] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  573.246315][ T9334] usb 9-1: USB disconnect, device number 21
[  573.587935][T15836] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2683'.
[  573.591656][T15836] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2683'.
[  573.595468][T15836] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2683'.
[  573.893767][T13398] usb 9-1: new high-speed USB device number 22 using dummy_hcd
[  574.343798][T13398] usb 9-1: device descriptor read/64, error -71
[  574.547456][T15846] FAULT_INJECTION: forcing a failure.
[  574.547456][T15846] name failslab, interval 1, probability 0, space 0, times 0
[  574.552202][T15846] CPU: 0 UID: 0 PID: 15846 Comm: syz.3.2686 Not tainted syzkaller #0 PREEMPT(full) 
[  574.552226][T15846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  574.552236][T15846] Call Trace:
[  574.552243][T15846]  <TASK>
[  574.552250][T15846]  dump_stack_lvl+0x16c/0x1f0
[  574.552279][T15846]  should_fail_ex+0x512/0x640
[  574.552311][T15846]  should_failslab+0xc2/0x120
[  574.552329][T15846]  kmem_cache_alloc_noprof+0x75/0x6e0
[  574.552350][T15846]  ? lock_acquire+0x179/0x350
[  574.552368][T15846]  ? skb_clone+0x190/0x3f0
[  574.552399][T15846]  ? skb_clone+0x190/0x3f0
[  574.552421][T15846]  skb_clone+0x190/0x3f0
[  574.552448][T15846]  dev_queue_xmit_nit+0x3e7/0xca0
[  574.552482][T15846]  dev_hard_start_xmit+0x5c3/0x740
[  574.552504][T15846]  ? netlink_unicast+0x64c/0x870
[  574.552535][T15846]  __dev_queue_xmit+0xa46/0x4490
[  574.552569][T15846]  ? __pfx___dev_queue_xmit+0x10/0x10
[  574.552618][T15846]  ? __skb_clone+0x570/0x760
[  574.552646][T15846]  netlink_deliver_tap+0xa87/0xd30
[  574.552678][T15846]  netlink_unicast+0x64c/0x870
[  574.552709][T15846]  ? __pfx_netlink_unicast+0x10/0x10
[  574.552747][T15846]  netlink_sendmsg+0x8c8/0xdd0
[  574.552779][T15846]  ? __pfx_netlink_sendmsg+0x10/0x10
[  574.552805][T15846]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  574.552826][T15846]  ____sys_sendmsg+0xa98/0xc70
[  574.552846][T15846]  ? __pfx_____sys_sendmsg+0x10/0x10
[  574.552869][T15846]  ? get_compat_msghdr+0x11a/0x170
[  574.552905][T15846]  ___sys_sendmsg+0x134/0x1d0
[  574.552931][T15846]  ? __pfx____sys_sendmsg+0x10/0x10
[  574.552966][T15846]  ? find_held_lock+0x2b/0x80
[  574.552991][T15846]  __sys_sendmsg+0x16d/0x220
[  574.553007][T15846]  ? __pfx___sys_sendmsg+0x10/0x10
[  574.553029][T15846]  ? rcu_is_watching+0x12/0xc0
[  574.553046][T15846]  __do_fast_syscall_32+0x7c/0x300
[  574.553064][T15846]  do_fast_syscall_32+0x32/0x80
[  574.553080][T15846]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  574.553094][T15846] RIP: 0023:0xf701d579
[  574.553103][T15846] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  574.553113][T15846] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  574.553123][T15846] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800012c0
[  574.553130][T15846] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  574.553136][T15846] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  574.553142][T15846] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  574.553147][T15846] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  574.553161][T15846]  </TASK>
[  574.636783][T13398] usb 9-1: new high-speed USB device number 23 using dummy_hcd
[  574.763826][T13398] usb 9-1: device descriptor read/64, error -71
[  574.872367][T15856] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2690'.
[  574.973143][T13398] usb usb9-port1: attempt power cycle
[  575.233962][T15856] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2690'.
[  575.323712][T13398] usb 9-1: new high-speed USB device number 24 using dummy_hcd
[  575.328158][T15860] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  575.330273][T15860] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  575.332884][T15860] vhci_hcd vhci_hcd.0: Device attached
[  575.338839][T15860] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2689'.
[  575.342535][T15860] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2689'.
[  575.345727][T13398] usb 9-1: device descriptor read/8, error -71
[  575.348350][T15860] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2689'.
[  575.590703][T15861] vhci_hcd: connection closed
[  575.594482][ T1198] vhci_hcd: stop threads
[  575.597383][ T1198] vhci_hcd: release socket
[  575.598879][ T1198] vhci_hcd: disconnect device
[  575.637811][T15864] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  575.643701][ T5986] usb 37-1: new low-speed USB device number 15 using vhci_hcd
[  575.646784][ T5986] usb 37-1: enqueue for inactive port 0
[  575.653690][T13398] usb 9-1: new high-speed USB device number 25 using dummy_hcd
[  575.691297][T13398] usb 9-1: device descriptor read/8, error -71
[  575.839412][T13398] usb usb9-port1: unable to enumerate USB device
[  575.839415][ T5986] vhci_hcd: vhci_device speed not set
[  576.210142][T15874] loop3: detected capacity change from 0 to 7
[  576.213235][T15874] Dev loop3: unable to read RDB block 7
[  576.221176][T15874]  loop3: AHDI p1
[  576.222319][T15874] loop3: partition table partially beyond EOD, truncated
[  577.880871][T15889] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  578.171518][T15900] __nla_validate_parse: 1 callbacks suppressed
[  578.171529][T15900] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2703'.
[  578.341321][T15895] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2703'.
[  578.932099][T15916] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  578.934153][T15916] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  578.937843][T15916] vhci_hcd vhci_hcd.0: Device attached
[  578.942193][T15916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2706'.
[  578.946316][T15916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2706'.
[  578.949954][T15916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2706'.
[  578.953511][T15916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2706'.
[  579.183693][ T6024] usb 39-1: new low-speed USB device number 16 using vhci_hcd
[  579.327794][T15917] vhci_hcd: connection reset by peer
[  579.329722][ T8496] vhci_hcd: stop threads
[  579.331416][ T8496] vhci_hcd: release socket
[  579.333268][ T8496] vhci_hcd: disconnect device
[  579.651354][T15931] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  579.653411][T15931] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  579.656117][T15931] vhci_hcd vhci_hcd.0: Device attached
[  579.661492][T15931] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2709'.
[  579.667046][T15931] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2709'.
[  579.670360][T15931] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2709'.
[  579.673571][T15931] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2709'.
[  579.914594][   T29] usb 37-1: new low-speed USB device number 16 using vhci_hcd
[  579.979596][T15940] FAULT_INJECTION: forcing a failure.
[  579.979596][T15940] name failslab, interval 1, probability 0, space 0, times 0
[  579.985593][T15940] CPU: 0 UID: 0 PID: 15940 Comm: syz.1.2712 Not tainted syzkaller #0 PREEMPT(full) 
[  579.985616][T15940] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  579.985626][T15940] Call Trace:
[  579.985632][T15940]  <TASK>
[  579.985638][T15940]  dump_stack_lvl+0x16c/0x1f0
[  579.985667][T15940]  should_fail_ex+0x512/0x640
[  579.985692][T15940]  ? __kmalloc_cache_noprof+0x5f/0x780
[  579.985732][T15940]  should_failslab+0xc2/0x120
[  579.985749][T15940]  __kmalloc_cache_noprof+0x72/0x780
[  579.985768][T15940]  ? find_held_lock+0x2b/0x80
[  579.985791][T15940]  ? sctp_association_new+0xbb/0x2a00
[  579.985814][T15940]  ? sctp_association_new+0xbb/0x2a00
[  579.985836][T15940]  sctp_association_new+0xbb/0x2a00
[  579.985855][T15940]  ? sctp_v4_scope+0x171/0x1a0
[  579.985880][T15940]  sctp_connect_new_asoc+0x1a8/0x770
[  579.985901][T15940]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  579.985921][T15940]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  579.985952][T15940]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  579.985978][T15940]  sctp_sendmsg+0x1557/0x1e00
[  579.986006][T15940]  ? __pfx_sctp_sendmsg+0x10/0x10
[  579.986023][T15940]  ? __pfx___might_resched+0x10/0x10
[  579.986052][T15940]  ? aa_sk_perm+0x2f4/0xb10
[  579.986078][T15940]  ? __pfx_aa_sk_perm+0x10/0x10
[  579.986097][T15940]  ? __might_fault+0xe3/0x190
[  579.986127][T15940]  ? __pfx_sctp_sendmsg+0x10/0x10
[  579.986148][T15940]  inet_sendmsg+0x11c/0x140
[  579.986191][T15940]  __sys_sendto+0x43c/0x520
[  579.986219][T15940]  ? __pfx___sys_sendto+0x10/0x10
[  579.986265][T15940]  ? ksys_write+0x1ac/0x250
[  579.986290][T15940]  ? __pfx_ksys_write+0x10/0x10
[  579.986318][T15940]  __ia32_sys_sendto+0xdd/0x1b0
[  579.986340][T15940]  ? lockdep_hardirqs_on+0x7c/0x110
[  579.986366][T15940]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  579.986392][T15940]  __do_fast_syscall_32+0x7c/0x300
[  579.986421][T15940]  do_fast_syscall_32+0x32/0x80
[  579.986448][T15940]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  579.986468][T15940] RIP: 0023:0xf7f45579
[  579.986482][T15940] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  579.986498][T15940] RSP: 002b:00000000f543655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  579.986515][T15940] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  579.986526][T15940] RDX: 0000000000000001 RSI: 00000000a154b0c0 RDI: 0000000080000000
[  579.986536][T15940] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  579.986546][T15940] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  579.986554][T15940] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  579.986578][T15940]  </TASK>
[  580.172337][T15932] vhci_hcd: connection reset by peer
[  580.176553][ T1172] vhci_hcd: stop threads
[  580.178316][ T1172] vhci_hcd: release socket
[  580.180383][ T1172] vhci_hcd: disconnect device
[  582.567542][T15985] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  582.569616][T15985] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  582.572240][T15985] vhci_hcd vhci_hcd.0: Device attached
[  583.163910][T15986] vhci_hcd: connection closed
[  583.164336][ T1172] vhci_hcd: stop threads
[  583.173832][ T1172] vhci_hcd: release socket
[  583.179107][ T1172] vhci_hcd: disconnect device
[  583.726015][   T40] audit: type=1326 audit(1760401282.223:2599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15998 comm="syz.4.2725" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffd579 code=0x0
[  584.193038][T16015] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  584.195074][T16015] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  584.197737][T16015] vhci_hcd vhci_hcd.0: Device attached
[  584.202785][T16015] __nla_validate_parse: 2 callbacks suppressed
[  584.202825][T16015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2727'.
[  584.209449][T16015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2727'.
[  584.212821][T16015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2727'.
[  584.216071][T16015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2727'.
[  584.869891][T16016] vhci_hcd: connection reset by peer
[  584.872560][ T1172] vhci_hcd: stop threads
[  584.874667][ T1172] vhci_hcd: release socket
[  584.879611][ T1172] vhci_hcd: disconnect device
[  584.943737][ T6024] vhci_hcd: vhci_device speed not set
[  585.101351][   T29] vhci_hcd: vhci_device speed not set
[  586.049637][T16036] netlink: 7 bytes leftover after parsing attributes in process `syz.1.2741'.
[  586.052896][T16036] netlink: 7 bytes leftover after parsing attributes in process `syz.1.2741'.
[  586.737010][T16056] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2738'.
[  586.817502][T16057] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  586.819469][T16057] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  586.832997][T16057] vhci_hcd vhci_hcd.0: Device attached
[  586.844587][T16057] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2737'.
[  586.847757][T16057] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2737'.
[  586.850557][T16057] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2737'.
[  587.143829][ T6024] usb 39-1: new low-speed USB device number 17 using vhci_hcd
[  587.356714][T16058] vhci_hcd: connection reset by peer
[  587.358726][ T1172] vhci_hcd: stop threads
[  587.359988][ T1172] vhci_hcd: release socket
[  587.361313][ T1172] vhci_hcd: disconnect device
[  589.123834][ T6023] usb 6-1: new high-speed USB device number 45 using dummy_hcd
[  589.316824][ T6023] usb 6-1: config index 0 descriptor too short (expected 45, got 36)
[  589.320493][ T6023] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  589.324899][ T6023] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  589.328836][ T6023] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  589.333259][ T6023] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  589.338309][ T6023] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  589.341659][ T6023] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  589.350276][ T6023] usb 6-1: config 0 descriptor??
[  589.353821][T16090] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  589.768426][T16090] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  589.772068][T16090] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  589.780068][ T6023] plantronics 0003:047F:FFFF.0013: reserved main item tag 0xd
[  589.788423][ T6023] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  590.037240][   T29] usb 6-1: USB disconnect, device number 45
[  592.393838][ T6024] vhci_hcd: vhci_device speed not set
[  593.129065][T16161] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  593.131089][T16161] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  593.134258][T16161] vhci_hcd vhci_hcd.0: Device attached
[  593.148518][T16161] __nla_validate_parse: 4 callbacks suppressed
[  593.148530][T16161] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2769'.
[  593.153698][T16161] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2769'.
[  593.157140][T16161] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2769'.
[  593.160276][T16161] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2769'.
[  593.383674][   T29] usb 37-1: new low-speed USB device number 17 using vhci_hcd
[  593.658451][T16162] vhci_hcd: connection reset by peer
[  593.661215][ T8496] vhci_hcd: stop threads
[  593.662630][ T8496] vhci_hcd: release socket
[  593.665699][T16167] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2771'.
[  593.670011][ T8496] vhci_hcd: disconnect device
[  593.671997][T16167] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2771'.
[  593.714356][T16170] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2770'.
[  593.946346][T16175] /dev/nullb0: Can't open blockdev
[  594.467649][T16165] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2770'.
[  594.776489][T16178] loop3: detected capacity change from 0 to 7
[  594.778918][T16178] Dev loop3: unable to read RDB block 7
[  594.780591][T16178]  loop3: AHDI p1
[  594.781739][T16178] loop3: partition table partially beyond EOD, truncated
[  594.847054][T16184] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2776'.
[  594.858829][T16184] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2776'.
[  594.864712][T16184] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.868110][T16184] bridge0: port 1(bridge_slave_0) entered disabled state
[  596.191752][T16219] FAULT_INJECTION: forcing a failure.
[  596.191752][T16219] name failslab, interval 1, probability 0, space 0, times 0
[  596.195960][T16219] CPU: 0 UID: 0 PID: 16219 Comm: syz.0.2787 Not tainted syzkaller #0 PREEMPT(full) 
[  596.195975][T16219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  596.195981][T16219] Call Trace:
[  596.195985][T16219]  <TASK>
[  596.195989][T16219]  dump_stack_lvl+0x16c/0x1f0
[  596.196010][T16219]  should_fail_ex+0x512/0x640
[  596.196027][T16219]  ? __kmalloc_cache_noprof+0x5f/0x780
[  596.196052][T16219]  should_failslab+0xc2/0x120
[  596.196066][T16219]  __kmalloc_cache_noprof+0x72/0x780
[  596.196079][T16219]  ? sctp_auth_shkey_create+0x9e/0x210
[  596.196098][T16219]  ? sctp_auth_shkey_create+0x9e/0x210
[  596.196117][T16219]  sctp_auth_shkey_create+0x9e/0x210
[  596.196134][T16219]  sctp_auth_asoc_copy_shkeys+0x1f2/0x360
[  596.196153][T16219]  sctp_association_new+0x19ad/0x2a00
[  596.196168][T16219]  sctp_connect_new_asoc+0x1a8/0x770
[  596.196181][T16219]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  596.196193][T16219]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  596.196212][T16219]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  596.196228][T16219]  sctp_sendmsg+0x1557/0x1e00
[  596.196243][T16219]  ? __pfx_sctp_sendmsg+0x10/0x10
[  596.196254][T16219]  ? __pfx___might_resched+0x10/0x10
[  596.196272][T16219]  ? aa_sk_perm+0x2f4/0xb10
[  596.196287][T16219]  ? __pfx_aa_sk_perm+0x10/0x10
[  596.196299][T16219]  ? __might_fault+0xe3/0x190
[  596.196316][T16219]  ? __pfx_sctp_sendmsg+0x10/0x10
[  596.196329][T16219]  inet_sendmsg+0x11c/0x140
[  596.196344][T16219]  __sys_sendto+0x43c/0x520
[  596.196359][T16219]  ? __pfx___sys_sendto+0x10/0x10
[  596.196386][T16219]  ? ksys_write+0x1ac/0x250
[  596.196400][T16219]  ? __pfx_ksys_write+0x10/0x10
[  596.196417][T16219]  __ia32_sys_sendto+0xdd/0x1b0
[  596.196431][T16219]  ? lockdep_hardirqs_on+0x7c/0x110
[  596.196446][T16219]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  596.196463][T16219]  __do_fast_syscall_32+0x7c/0x300
[  596.196481][T16219]  do_fast_syscall_32+0x32/0x80
[  596.196497][T16219]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  596.196510][T16219] RIP: 0023:0xf7fa2579
[  596.196519][T16219] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  596.196529][T16219] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  596.196539][T16219] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  596.196546][T16219] RDX: 0000000000000001 RSI: 00000000a154b0c0 RDI: 0000000080000000
[  596.196552][T16219] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  596.196558][T16219] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  596.196564][T16219] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  596.196577][T16219]  </TASK>
[  596.420575][T16220] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  596.422578][T16220] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  596.428738][T16220] vhci_hcd vhci_hcd.0: Device attached
[  596.568938][T16231] tipc: Can't bind to reserved service type 1
[  596.634285][T16233] ptm ptm4: ldisc open failed (-12), clearing slot 4
[  596.683843][ T6006] usb 39-1: new low-speed USB device number 18 using vhci_hcd
[  597.103688][T12871] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[  597.233704][T12871] usb 9-1: device descriptor read/64, error -71
[  597.441230][T16225] vhci_hcd: connection reset by peer
[  597.443193][ T1198] vhci_hcd: stop threads
[  597.446345][ T1198] vhci_hcd: release socket
[  597.448345][ T1198] vhci_hcd: disconnect device
[  597.474420][T12871] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[  597.614809][T12871] usb 9-1: device descriptor read/64, error -71
[  597.740011][T12871] usb usb9-port1: attempt power cycle
[  598.214542][T16255] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  598.245529][T12871] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  598.264259][T12871] usb 9-1: device descriptor read/8, error -71
[  598.508826][T16262] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  598.513744][T12871] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[  598.538652][T12871] usb 9-1: device descriptor read/8, error -71
[  598.556154][   T29] vhci_hcd: vhci_device speed not set
[  598.643938][T12871] usb usb9-port1: unable to enumerate USB device
[  598.852428][T16267] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  598.860598][T16267] CIFS mount error: No usable UNC path provided in device string!
[  598.860598][T16267] 
[  598.864065][T16267] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  599.636033][T16279] __nla_validate_parse: 8 callbacks suppressed
[  599.636044][T16279] netlink: 7 bytes leftover after parsing attributes in process `syz.1.2803'.
[  599.697402][T16283] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2804'.
[  599.739298][T16283] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2804'.
[  600.195184][T16296] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  600.197254][T16296] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  600.199637][T16296] vhci_hcd vhci_hcd.0: Device attached
[  600.203109][T16296] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2805'.
[  600.206760][T16296] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2805'.
[  600.209945][T16296] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2805'.
[  600.213486][T16296] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2805'.
[  600.543672][   T29] usb 45-1: new low-speed USB device number 16 using vhci_hcd
[  600.701470][T16297] vhci_hcd: connection reset by peer
[  600.709712][ T1198] vhci_hcd: stop threads
[  600.711270][ T1198] vhci_hcd: release socket
[  600.712919][ T1198] vhci_hcd: disconnect device
[  601.834556][ T6006] vhci_hcd: vhci_device speed not set
[  601.866572][T16322] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  601.869169][T16322] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  601.872125][T16322] vhci_hcd vhci_hcd.0: Device attached
[  601.879018][T16322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2812'.
[  601.884302][T16322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2812'.
[  601.889359][T16322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2812'.
[  602.438941][T16323] vhci_hcd: connection closed
[  602.439307][ T1172] vhci_hcd: stop threads
[  602.442301][ T1172] vhci_hcd: release socket
[  602.444576][ T1172] vhci_hcd: disconnect device
[  602.517556][T16319] orangefs_mount: mount request failed with -4
[  603.642297][T16341] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  603.645070][T16341] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  603.649121][T16341] vhci_hcd vhci_hcd.0: Device attached
[  603.711675][T16352] FAULT_INJECTION: forcing a failure.
[  603.711675][T16352] name failslab, interval 1, probability 0, space 0, times 0
[  603.715791][T16352] CPU: 3 UID: 0 PID: 16352 Comm: syz.3.2822 Not tainted syzkaller #0 PREEMPT(full) 
[  603.715806][T16352] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  603.715813][T16352] Call Trace:
[  603.715827][T16352]  <TASK>
[  603.715831][T16352]  dump_stack_lvl+0x16c/0x1f0
[  603.715866][T16352]  should_fail_ex+0x512/0x640
[  603.715890][T16352]  should_failslab+0xc2/0x120
[  603.715901][T16352]  kmem_cache_alloc_noprof+0x75/0x6e0
[  603.715915][T16352]  ? lock_acquire+0x179/0x350
[  603.715925][T16352]  ? skb_clone+0x190/0x3f0
[  603.715949][T16352]  ? skb_clone+0x190/0x3f0
[  603.715963][T16352]  skb_clone+0x190/0x3f0
[  603.715979][T16352]  dev_queue_xmit_nit+0x3e7/0xca0
[  603.715999][T16352]  dev_hard_start_xmit+0x5c3/0x740
[  603.716012][T16352]  ? netlink_unicast+0x71f/0x870
[  603.716031][T16352]  __dev_queue_xmit+0xa46/0x4490
[  603.716049][T16352]  ? __pfx___dev_queue_xmit+0x10/0x10
[  603.716076][T16352]  ? __skb_clone+0x570/0x760
[  603.716092][T16352]  netlink_deliver_tap+0xa87/0xd30
[  603.716111][T16352]  netlink_unicast+0x71f/0x870
[  603.716130][T16352]  ? __pfx_netlink_unicast+0x10/0x10
[  603.716145][T16352]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  603.716162][T16352]  netlink_ack+0x696/0xb80
[  603.716183][T16352]  netlink_rcv_skb+0x332/0x420
[  603.716199][T16352]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  603.716218][T16352]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  603.716239][T16352]  ? netlink_deliver_tap+0x1ae/0xd30
[  603.716257][T16352]  netlink_unicast+0x5aa/0x870
[  603.716275][T16352]  ? __pfx_netlink_unicast+0x10/0x10
[  603.716297][T16352]  netlink_sendmsg+0x8c8/0xdd0
[  603.716316][T16352]  ? __pfx_netlink_sendmsg+0x10/0x10
[  603.716334][T16352]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  603.716348][T16352]  ____sys_sendmsg+0xa98/0xc70
[  603.716366][T16352]  ? __pfx_____sys_sendmsg+0x10/0x10
[  603.716377][T16352]  ? get_compat_msghdr+0x11a/0x170
[  603.716398][T16352]  ___sys_sendmsg+0x134/0x1d0
[  603.716415][T16352]  ? __pfx____sys_sendmsg+0x10/0x10
[  603.716437][T16352]  ? find_held_lock+0x2b/0x80
[  603.716460][T16352]  __sys_sendmsg+0x16d/0x220
[  603.716476][T16352]  ? __pfx___sys_sendmsg+0x10/0x10
[  603.716498][T16352]  ? rcu_is_watching+0x12/0xc0
[  603.716515][T16352]  __do_fast_syscall_32+0x7c/0x300
[  603.716533][T16352]  do_fast_syscall_32+0x32/0x80
[  603.716549][T16352]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  603.716563][T16352] RIP: 0023:0xf701d579
[  603.716572][T16352] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  603.716582][T16352] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  603.716592][T16352] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800012c0
[  603.716598][T16352] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  603.716604][T16352] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  603.716610][T16352] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  603.716616][T16352] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  603.716630][T16352]  </TASK>
[  603.838818][T16348] vhci_hcd: connection closed
[  603.859152][ T1143] vhci_hcd: stop threads
[  603.862560][ T1143] vhci_hcd: release socket
[  603.864700][ T1143] vhci_hcd: disconnect device
[  603.903757][T12871] vhci_hcd: vhci_device speed not set
[  604.906053][T16370] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  604.908738][T16370] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 1th superblock
[  604.911646][T16370] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  604.914792][T16370] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 2th superblock
[  605.683744][   T29] vhci_hcd: vhci_device speed not set
[  605.991363][T16391] __nla_validate_parse: 5 callbacks suppressed
[  605.991381][T16391] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2830'.
[  606.656181][T16390] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2830'.
[  607.164819][T16406] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2834'.
[  607.198619][T16412] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  607.201415][T16412] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  607.205717][T16412] vhci_hcd vhci_hcd.0: Device attached
[  607.220544][T16412] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2835'.
[  607.222708][T16407] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  607.226054][T16407] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  607.228633][T16407] vhci_hcd vhci_hcd.0: Device attached
[  607.239847][T16412] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2835'.
[  607.243168][T16412] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2835'.
[  607.247476][T16412] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2835'.
[  607.251493][T16407] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2833'.
[  607.360006][T16407] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2833'.
[  607.364450][T16407] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2833'.
[  607.486747][   T29] usb 43-1: new low-speed USB device number 25 using vhci_hcd
[  607.486791][T13398] usb 45-1: new low-speed USB device number 17 using vhci_hcd
[  607.609312][T16416] vhci_hcd: connection reset by peer
[  607.625553][ T1198] vhci_hcd: stop threads
[  607.627224][ T1198] vhci_hcd: release socket
[  607.644176][ T1198] vhci_hcd: disconnect device
[  607.669931][T16418] vhci_hcd: connection reset by peer
[  607.672216][ T1198] vhci_hcd: stop threads
[  607.673644][ T1198] vhci_hcd: release socket
[  607.675123][ T1198] vhci_hcd: disconnect device
[  608.397428][T16437] kvm: pic: non byte read
[  608.683801][T12871] usb 8-1: new high-speed USB device number 47 using dummy_hcd
[  608.813869][T12871] usb 8-1: device descriptor read/64, error -71
[  609.063742][T12871] usb 8-1: new high-speed USB device number 48 using dummy_hcd
[  609.193709][T12871] usb 8-1: device descriptor read/64, error -71
[  609.303902][T12871] usb usb8-port1: attempt power cycle
[  609.673736][T12871] usb 8-1: new high-speed USB device number 49 using dummy_hcd
[  609.694364][T12871] usb 8-1: device descriptor read/8, error -71
[  609.943831][T12871] usb 8-1: new high-speed USB device number 50 using dummy_hcd
[  609.968375][T12871] usb 8-1: device descriptor read/8, error -71
[  610.083734][T12871] usb usb8-port1: unable to enumerate USB device
[  610.193750][T16460] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  610.195861][T16460] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  610.211500][T16460] vhci_hcd vhci_hcd.0: Device attached
[  610.453713][ T9337] usb 39-1: new low-speed USB device number 20 using vhci_hcd
[  610.712793][T16464] vhci_hcd: connection reset by peer
[  610.714701][   T12] vhci_hcd: stop threads
[  610.716008][   T12] vhci_hcd: release socket
[  610.717413][   T12] vhci_hcd: disconnect device
[  610.947948][T16474] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  610.950548][T16474] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  610.953360][T16474] vhci_hcd vhci_hcd.0: Device attached
[  611.359439][T16475] vhci_hcd: connection closed
[  611.359758][   T12] vhci_hcd: stop threads
[  611.363506][   T12] vhci_hcd: release socket
[  611.374048][   T12] vhci_hcd: disconnect device
[  612.429431][T16490] __nla_validate_parse: 14 callbacks suppressed
[  612.429443][T16490] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2855'.
[  612.633695][   T29] vhci_hcd: vhci_device speed not set
[  612.633766][T13398] vhci_hcd: vhci_device speed not set
[  613.048725][T16502] netfs: Couldn't get user pages (rc=-14)
[  613.052745][T16502] netfs: Couldn't get user pages (rc=-4)
[  614.215228][T16519] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  614.217400][T16519] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  614.224791][T16519] vhci_hcd vhci_hcd.0: Device attached
[  614.228833][T16519] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2861'.
[  614.231996][T16519] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2861'.
[  614.235612][T16519] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2861'.
[  614.238864][T16519] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2861'.
[  614.361792][T16520] vhci_hcd: connection closed
[  614.362129][   T12] vhci_hcd: stop threads
[  614.365090][   T12] vhci_hcd: release socket
[  614.366530][   T12] vhci_hcd: disconnect device
[  614.403701][   T29] vhci_hcd: vhci_device speed not set
[  614.583696][T12871] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[  614.713694][T12871] usb 6-1: device descriptor read/64, error -71
[  614.953726][T12871] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[  615.093691][T12871] usb 6-1: device descriptor read/64, error -71
[  615.203881][T12871] usb usb6-port1: attempt power cycle
[  615.414556][T16544] FAULT_INJECTION: forcing a failure.
[  615.414556][T16544] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  615.419204][T16544] CPU: 3 UID: 0 PID: 16544 Comm: syz.3.2871 Not tainted syzkaller #0 PREEMPT(full) 
[  615.419218][T16544] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  615.419240][T16544] Call Trace:
[  615.419245][T16544]  <TASK>
[  615.419250][T16544]  dump_stack_lvl+0x16c/0x1f0
[  615.419271][T16544]  should_fail_ex+0x512/0x640
[  615.419290][T16544]  _copy_to_user+0x32/0xd0
[  615.419301][T16544]  simple_read_from_buffer+0xcb/0x170
[  615.419316][T16544]  proc_fail_nth_read+0x197/0x240
[  615.419331][T16544]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  615.419347][T16544]  ? rw_verify_area+0xcf/0x6c0
[  615.419360][T16544]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  615.419374][T16544]  vfs_read+0x1e4/0xcf0
[  615.419392][T16544]  ? __pfx_vfs_read+0x10/0x10
[  615.419405][T16544]  ? find_held_lock+0x2b/0x80
[  615.419424][T16544]  ? __fget_files+0x20e/0x3c0
[  615.419442][T16544]  ksys_read+0x12a/0x250
[  615.419456][T16544]  ? __pfx_ksys_read+0x10/0x10
[  615.419471][T16544]  ? rcu_is_watching+0x12/0xc0
[  615.419488][T16544]  __do_fast_syscall_32+0x7c/0x300
[  615.419506][T16544]  do_fast_syscall_32+0x32/0x80
[  615.419523][T16544]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  615.419536][T16544] RIP: 0023:0xf701d579
[  615.419544][T16544] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  615.419554][T16544] RSP: 002b:00000000f540d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  615.419564][T16544] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f540d620
[  615.419571][T16544] RDX: 000000000000000f RSI: 00000000f73b5ff4 RDI: 0000000000000000
[  615.419577][T16544] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  615.419582][T16544] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  615.419588][T16544] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  615.419601][T16544]  </TASK>
[  615.486291][    C3] vkms_vblank_simulate: vblank timer overrun
[  615.509965][T16551] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  615.543866][T12871] usb 6-1: new high-speed USB device number 48 using dummy_hcd
[  615.564371][T12871] usb 6-1: device descriptor read/8, error -71
[  615.613789][ T9337] vhci_hcd: vhci_device speed not set
[  615.626338][T16545] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  615.628400][T16545] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  615.637748][T16545] vhci_hcd vhci_hcd.0: Device attached
[  615.923767][T12871] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[  615.944460][T12871] usb 6-1: device descriptor read/8, error -71
[  616.053954][T12871] usb usb6-port1: unable to enumerate USB device
[  616.465364][   T29] usb 46-1: SetAddress Request (6) to port 0
[  616.467773][   T29] usb 46-1: new SuperSpeed USB device number 6 using vhci_hcd
[  616.483698][T16546] vhci_hcd: connection closed
[  616.493469][ T1172] vhci_hcd: stop threads
[  616.497235][ T1172] vhci_hcd: release socket
[  616.498961][ T1172] vhci_hcd: disconnect device
[  617.189265][T16568] overlayfs: workdir and upperdir must be separate subtrees
[  617.238921][T16568] overlayfs: failed to resolve './file0': -2
[  617.242913][T16570] overlayfs: workdir and upperdir must be separate subtrees
[  618.436629][T16583] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2882'.
[  618.438691][T16590] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.700393][T16590] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.801272][T16590] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.832670][T16602] netlink: 7 bytes leftover after parsing attributes in process `syz.1.2885'.
[  618.911095][T16590] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.189073][T16631] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  620.203774][T16633] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  620.613808][ T9337] usb 8-1: new high-speed USB device number 51 using dummy_hcd
[  620.618375][T16650] netlink: 'syz.0.2898': attribute type 1 has an invalid length.
[  620.619679][T16651] loop3: detected capacity change from 0 to 7
[  620.623208][T16651] Dev loop3: unable to read RDB block 7
[  620.625540][T16651]  loop3: AHDI p1
[  620.626790][T16651] loop3: partition table partially beyond EOD, truncated
[  620.789947][ T9337] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  620.792270][ T9337] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  620.798111][ T9337] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  620.801708][ T9337] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  620.805227][ T9337] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  620.809256][ T9337] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  620.812106][ T9337] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  620.818409][ T9337] usb 8-1: config 0 descriptor??
[  620.821192][T16645] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  621.306472][ T9337] plantronics 0003:047F:FFFF.0014: reserved main item tag 0xd
[  621.311148][ T9337] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  621.441562][T16667] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  621.533795][   T29] usb 46-1: device descriptor read/8, error -110
[  622.134560][   T29] usb usb46-port1: attempt power cycle
[  622.714231][   T29] usb usb46-port1: unable to enumerate USB device
[  623.422648][T16689] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2910'.
[  623.471203][T16690] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2911'.
[  623.856647][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  624.001786][   T10] usb 8-1: USB disconnect, device number 51
[  624.117457][T16697] bridge2: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  624.583285][T16701] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2914'.
[  625.021733][   T29] usb 8-1: new high-speed USB device number 52 using dummy_hcd
[  625.315960][   T29] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  625.319349][   T29] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  625.324122][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  625.327901][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  625.331770][   T29] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  625.335992][   T29] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  625.338805][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  625.350219][   T29] usb 8-1: config 0 descriptor??
[  625.357511][T16705] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  626.983929][T16730] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2920'.
[  627.171299][   T29] plantronics 0003:047F:FFFF.0015: reserved main item tag 0xd
[  627.186281][   T29] plantronics 0003:047F:FFFF.0015: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  627.868319][T16745] bridge3: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  628.029494][T16747] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2925'.
[  628.513807][ T9337] usb 8-1: reset high-speed USB device number 52 using dummy_hcd
[  630.692246][ T9336] usb 8-1: USB disconnect, device number 52
[  630.977482][T16766] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2930'.
[  631.081802][T16780] bridge2: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  631.430910][T16789] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  631.432956][T16789] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  631.435970][T16789] vhci_hcd vhci_hcd.0: Device attached
[  631.479864][T16789] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2935'.
[  631.487921][T16789] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2935'.
[  631.492909][T16789] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2935'.
[  631.500566][T16789] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2935'.
[  631.783791][   T29] usb 39-1: new low-speed USB device number 21 using vhci_hcd
[  631.972835][T16791] vhci_hcd: connection reset by peer
[  631.975636][ T1198] vhci_hcd: stop threads
[  631.976995][ T1198] vhci_hcd: release socket
[  631.978567][ T1198] vhci_hcd: disconnect device
[  632.419167][T16806] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2941'.
[  632.969938][T16813] FAULT_INJECTION: forcing a failure.
[  632.969938][T16813] name failslab, interval 1, probability 0, space 0, times 0
[  632.975118][T16813] CPU: 2 UID: 0 PID: 16813 Comm: syz.0.2944 Not tainted syzkaller #0 PREEMPT(full) 
[  632.975133][T16813] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  632.975140][T16813] Call Trace:
[  632.975145][T16813]  <TASK>
[  632.975149][T16813]  dump_stack_lvl+0x16c/0x1f0
[  632.975170][T16813]  should_fail_ex+0x512/0x640
[  632.975190][T16813]  should_failslab+0xc2/0x120
[  632.975201][T16813]  __kmalloc_cache_noprof+0x72/0x780
[  632.975215][T16813]  ? sctp_add_bind_addr+0xae/0x3f0
[  632.975232][T16813]  ? sctp_add_bind_addr+0xae/0x3f0
[  632.975245][T16813]  sctp_add_bind_addr+0xae/0x3f0
[  632.975261][T16813]  sctp_copy_local_addr_list+0x349/0x550
[  632.975279][T16813]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  632.975297][T16813]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  632.975315][T16813]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  632.975333][T16813]  sctp_bind_addr_copy+0xe0/0x530
[  632.975350][T16813]  sctp_connect_new_asoc+0x1c9/0x770
[  632.975363][T16813]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  632.975375][T16813]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  632.975394][T16813]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  632.975409][T16813]  sctp_sendmsg+0x1557/0x1e00
[  632.975425][T16813]  ? __pfx_sctp_sendmsg+0x10/0x10
[  632.975435][T16813]  ? __pfx___might_resched+0x10/0x10
[  632.975453][T16813]  ? aa_sk_perm+0x2f4/0xb10
[  632.975468][T16813]  ? __pfx_aa_sk_perm+0x10/0x10
[  632.975480][T16813]  ? __might_fault+0xe3/0x190
[  632.975498][T16813]  ? __pfx_sctp_sendmsg+0x10/0x10
[  632.975510][T16813]  inet_sendmsg+0x11c/0x140
[  632.975525][T16813]  __sys_sendto+0x43c/0x520
[  632.975540][T16813]  ? __pfx___sys_sendto+0x10/0x10
[  632.975566][T16813]  ? ksys_write+0x1ac/0x250
[  632.975581][T16813]  ? __pfx_ksys_write+0x10/0x10
[  632.975598][T16813]  __ia32_sys_sendto+0xdd/0x1b0
[  632.975612][T16813]  ? lockdep_hardirqs_on+0x7c/0x110
[  632.975627][T16813]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  632.975644][T16813]  __do_fast_syscall_32+0x7c/0x300
[  632.975661][T16813]  do_fast_syscall_32+0x32/0x80
[  632.975677][T16813]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  632.975691][T16813] RIP: 0023:0xf7fa2579
[  632.975699][T16813] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  632.975709][T16813] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  632.975720][T16813] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  632.975726][T16813] RDX: 0000000000000001 RSI: 00000000a154b0c0 RDI: 0000000080000000
[  632.975732][T16813] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  632.975738][T16813] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  632.975744][T16813] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  632.975758][T16813]  </TASK>
[  633.013940][T16819] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  634.173437][T16847] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2954'.
[  634.446150][T16855] bridge2: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  636.893934][   T29] vhci_hcd: vhci_device speed not set
[  638.601758][T16907] bridge4: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  639.493317][T16925] loop3: detected capacity change from 0 to 7
[  639.503764][T16925] Dev loop3: unable to read RDB block 7
[  639.505921][T16925]  loop3: AHDI p1
[  639.507416][T16925] loop3: partition table partially beyond EOD, truncated
[  639.933802][ T6202] usb 9-1: new high-speed USB device number 30 using dummy_hcd
[  640.114924][ T6202] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  640.117632][ T6202] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  640.121222][ T6202] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  640.124800][ T6202] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  640.128462][ T6202] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  640.133384][ T6202] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  640.136666][ T6202] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  640.140612][ T6202] usb 9-1: config 0 descriptor??
[  640.142849][T16931] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  640.494382][T16944] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2984'.
[  641.705937][ T6202] plantronics 0003:047F:FFFF.0016: reserved main item tag 0xd
[  641.729577][ T6202] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  642.834279][T16970] netlink: 'syz.0.2990': attribute type 10 has an invalid length.
[  643.423998][ T5986] usb 9-1: reset high-speed USB device number 30 using dummy_hcd
[  643.613775][T16970] hsr_slave_0: left promiscuous mode
[  643.616573][T16970] hsr_slave_1: left promiscuous mode
[  643.623948][ T6202] usb 8-1: new high-speed USB device number 53 using dummy_hcd
[  643.886127][ T6202] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  643.945014][ T6202] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  643.948368][ T6202] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  643.953625][ T6202] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  643.957300][ T6202] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  643.968573][ T6202] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  643.979929][ T6202] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  643.985216][ T6202] usb 8-1: config 0 descriptor??
[  643.994587][T16979] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  644.194380][   T29] usb 9-1: USB disconnect, device number 30
[  644.604702][ T6202] usbhid 8-1:0.0: can't add hid device: -71
[  644.606477][ T6202] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  644.609761][ T6202] usb 8-1: USB disconnect, device number 53
[  644.786334][T17011] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3000'.
[  645.091957][T17011] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3000'.
[  645.412346][T17019] FAULT_INJECTION: forcing a failure.
[  645.412346][T17019] name failslab, interval 1, probability 0, space 0, times 0
[  645.416804][T17019] CPU: 3 UID: 0 PID: 17019 Comm: syz.3.3002 Not tainted syzkaller #0 PREEMPT(full) 
[  645.416819][T17019] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  645.416825][T17019] Call Trace:
[  645.416829][T17019]  <TASK>
[  645.416833][T17019]  dump_stack_lvl+0x16c/0x1f0
[  645.416853][T17019]  should_fail_ex+0x512/0x640
[  645.416872][T17019]  should_failslab+0xc2/0x120
[  645.416883][T17019]  __kmalloc_cache_noprof+0x72/0x780
[  645.416897][T17019]  ? sctp_add_bind_addr+0xae/0x3f0
[  645.416931][T17019]  ? sctp_add_bind_addr+0xae/0x3f0
[  645.416944][T17019]  sctp_add_bind_addr+0xae/0x3f0
[  645.416959][T17019]  sctp_copy_local_addr_list+0x349/0x550
[  645.416978][T17019]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  645.416996][T17019]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  645.417014][T17019]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  645.417030][T17019]  sctp_bind_addr_copy+0xe0/0x530
[  645.417047][T17019]  sctp_connect_new_asoc+0x1c9/0x770
[  645.417060][T17019]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  645.417071][T17019]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  645.417090][T17019]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  645.417105][T17019]  sctp_sendmsg+0x1557/0x1e00
[  645.417120][T17019]  ? __pfx_sctp_sendmsg+0x10/0x10
[  645.417133][T17019]  ? __pfx___might_resched+0x10/0x10
[  645.417158][T17019]  ? aa_sk_perm+0x2f4/0xb10
[  645.417182][T17019]  ? __pfx_aa_sk_perm+0x10/0x10
[  645.417201][T17019]  ? __might_fault+0xe3/0x190
[  645.417235][T17019]  ? __pfx_sctp_sendmsg+0x10/0x10
[  645.417250][T17019]  inet_sendmsg+0x11c/0x140
[  645.417265][T17019]  __sys_sendto+0x43c/0x520
[  645.417281][T17019]  ? __pfx___sys_sendto+0x10/0x10
[  645.417307][T17019]  ? ksys_write+0x1ac/0x250
[  645.417321][T17019]  ? __pfx_ksys_write+0x10/0x10
[  645.417338][T17019]  __ia32_sys_sendto+0xdd/0x1b0
[  645.417352][T17019]  ? lockdep_hardirqs_on+0x7c/0x110
[  645.417367][T17019]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  645.417384][T17019]  __do_fast_syscall_32+0x7c/0x300
[  645.417402][T17019]  do_fast_syscall_32+0x32/0x80
[  645.417418][T17019]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  645.417431][T17019] RIP: 0023:0xf701d579
[  645.417439][T17019] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  645.417450][T17019] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  645.417460][T17019] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  645.417466][T17019] RDX: 0000000000000001 RSI: 00000000a154b0c0 RDI: 0000000080000000
[  645.417472][T17019] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  645.417478][T17019] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  645.417484][T17019] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  645.417497][T17019]  </TASK>
[  645.697292][T17023] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  646.336314][T17049] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  646.338420][T17049] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  646.341110][T17049] vhci_hcd vhci_hcd.0: Device attached
[  646.355123][T17049] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3008'.
[  646.362594][T17049] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3008'.
[  646.366499][T17049] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3008'.
[  646.369932][T17049] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3008'.
[  646.813479][T17050] vhci_hcd: connection closed
[  646.813934][   T12] vhci_hcd: stop threads
[  646.818169][   T12] vhci_hcd: release socket
[  646.819696][   T12] vhci_hcd: disconnect device
[  646.827520][T17056] overlayfs: failed to resolve './file1/file0': -13
[  646.832817][T17056] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  646.837562][T17056] overlayfs: missing 'lowerdir'
[  646.843719][T13391] usb 39-1: new low-speed USB device number 22 using vhci_hcd
[  646.846104][T13391] usb 39-1: enqueue for inactive port 0
[  646.957357][T13391] vhci_hcd: vhci_device speed not set
[  651.587052][T17140] tipc: Started in network mode
[  651.589095][T17140] tipc: Node identity 1ec36dc6f828, cluster identity 4711
[  651.591998][T17140] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  651.594675][T17140] syzkaller0: entered promiscuous mode
[  651.596394][T17140] syzkaller0: entered allmulticast mode
[  651.603747][T17139] tipc: Resetting bearer <eth:syzkaller0>
[  651.635233][T17139] tipc: Disabling bearer <eth:syzkaller0>
[  651.836610][   T40] audit: type=1326 audit(1760401350.333:2600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17150 comm="syz.1.3040" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  651.843460][   T40] audit: type=1326 audit(1760401350.333:2601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17150 comm="syz.1.3040" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7ffc0000
[  653.057919][T17177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3048'.
[  653.551928][T17177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3048'.
[  654.420182][T17198] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  654.422397][T17198] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  654.425183][T17198] vhci_hcd vhci_hcd.0: Device attached
[  654.444209][   T40] audit: type=1800 audit(1760401352.943:2602): pid=17198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3051" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  654.650403][T17200] vhci_hcd: connection closed
[  654.650750][ T1172] vhci_hcd: stop threads
[  654.654653][ T1172] vhci_hcd: release socket
[  654.657340][ T1172] vhci_hcd: disconnect device
[  654.693878][ T6202] usb 46-1: enqueue for inactive port 0
[  655.194276][ T6202] usb usb46-port1: attempt power cycle
[  655.314480][T17211] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3055'.
[  655.786560][ T6202] usb usb46-port1: unable to enumerate USB device
[  656.063693][T17232] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3061'.
[  656.527559][T17232] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3061'.
[  657.330835][T17256] bridge3: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  657.566549][T17265] loop3: detected capacity change from 0 to 7
[  657.569571][T17265] Dev loop3: unable to read RDB block 7
[  657.572087][T17265]  loop3: AHDI p1
[  657.573498][T17265] loop3: partition table partially beyond EOD, truncated
[  657.805021][T17283] bridge2: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  659.258268][T17301] Bluetooth: hci2: Frame reassembly failed (-84)
[  659.261047][   T46] Bluetooth: hci2: Frame reassembly failed (-84)
[  659.264548][   T46] Bluetooth: hci2: Frame reassembly failed (-84)
[  659.617342][T17309] netlink: 'syz.3.3084': attribute type 10 has an invalid length.
[  660.521112][T17317] bridge5: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  660.586371][T17320] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3087'.
[  661.283680][ T5952] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  661.286093][T13315] Bluetooth: hci2: command 0x1003 tx timeout
[  661.518500][ T5986] usb 9-1: new high-speed USB device number 31 using dummy_hcd
[  661.793925][ T5986] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  661.796986][ T5986] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  661.800101][ T5986] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  661.804636][ T5986] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  661.808882][ T5986] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  661.813614][ T5986] usb 9-1: config 0 descriptor??
[  661.817850][ T5986] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  662.321112][T17348] Bluetooth: MGMT ver 1.23
[  662.433458][T17352] syz.4.3089 (17352): /proc/17325/oom_adj is deprecated, please use /proc/17325/oom_score_adj instead.
[  663.723404][T17381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3105'.
[  663.728172][T17381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3105'.
[  663.734695][T17381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3105'.
[  663.983702][T12871] usb 8-1: new high-speed USB device number 54 using dummy_hcd
[  663.996477][    T9] usb 9-1: USB disconnect, device number 31
[  664.113698][T12871] usb 8-1: device descriptor read/64, error -71
[  664.308577][T17399] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3111'.
[  664.311500][T17399] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3111'.
[  664.340928][T17402] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  664.373720][T12871] usb 8-1: new high-speed USB device number 55 using dummy_hcd
[  664.513646][T12871] usb 8-1: device descriptor read/64, error -71
[  664.623882][T12871] usb usb8-port1: attempt power cycle
[  664.752250][T17415] loop3: detected capacity change from 0 to 7
[  664.755181][T17415] Dev loop3: unable to read RDB block 7
[  664.756955][T17415]  loop3: AHDI p1
[  664.758185][T17415] loop3: partition table partially beyond EOD, truncated
[  664.964182][T12871] usb 8-1: new high-speed USB device number 56 using dummy_hcd
[  664.984931][T12871] usb 8-1: device descriptor read/8, error -71
[  665.243790][T12871] usb 8-1: new high-speed USB device number 57 using dummy_hcd
[  665.326071][T12871] usb 8-1: device descriptor read/8, error -71
[  665.444404][T12871] usb usb8-port1: unable to enumerate USB device
[  667.228201][T17464] netlink: 'syz.1.3127': attribute type 1 has an invalid length.
[  667.230723][T17464] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3127'.
[  667.323752][ T6202] usb 8-1: new high-speed USB device number 58 using dummy_hcd
[  667.475154][ T6202] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  667.478376][ T6202] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  667.482656][ T6202] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  667.486703][ T6202] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  667.490436][ T6202] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  667.495161][ T6202] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  667.498090][ T6202] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  667.501901][ T6202] usb 8-1: config 0 descriptor??
[  667.504099][T17454] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  667.911625][ T6202] plantronics 0003:047F:FFFF.0017: reserved main item tag 0xd
[  667.916634][ T6202] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  668.112815][T17454] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3128'.
[  668.185102][ T9336] usb 8-1: USB disconnect, device number 58
[  668.766016][T17497] netlink: 'syz.3.3140': attribute type 1 has an invalid length.
[  669.242367][T17497] 8021q: adding VLAN 0 to HW filter on device bond1
[  669.243970][T17507] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  669.280447][T17501] bond1: (slave ip6gretap1): making interface the new active one
[  669.288276][T17501] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  669.336782][T17509] binder: 17508:17509 ioctl 4018620d 0 returned -22
[  669.789567][T17521] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3145'.
[  670.618968][T17540] loop3: detected capacity change from 0 to 7
[  670.621492][T17540] Dev loop3: unable to read RDB block 7
[  670.623657][T17540]  loop3: AHDI p1
[  670.624838][T17540] loop3: partition table partially beyond EOD, truncated
[  670.660981][T17543] 9pnet_fd: Insufficient options for proto=fd
[  672.423771][ T6006] usb 8-1: new high-speed USB device number 59 using dummy_hcd
[  672.608220][ T6006] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  672.610936][ T6006] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  672.614629][ T6006] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  672.617988][ T6006] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  672.621770][ T6006] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  672.626563][ T6006] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  672.629406][ T6006] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  672.635846][ T6006] usb 8-1: config 0 descriptor??
[  672.639065][T17574] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  673.051783][ T6006] usbhid 8-1:0.0: can't add hid device: -71
[  673.054011][ T6006] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  673.058114][ T6006] usb 8-1: USB disconnect, device number 59
[  673.929920][T17602] bridge4: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  673.969684][T17606] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  673.990756][T17604] bridge3: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  674.096766][T17612] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3175'.
[  674.362700][T17615] loop3: detected capacity change from 0 to 7
[  674.370799][T17615] Dev loop3: unable to read RDB block 7
[  674.372624][T17615]  loop3: AHDI p1
[  674.374022][T17615] loop3: partition table partially beyond EOD, truncated
[  674.395295][T17616] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  674.397370][T17616] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  674.400578][T17616] vhci_hcd vhci_hcd.0: Device attached
[  674.405309][T17616] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3168'.
[  674.408937][T17616] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3168'.
[  674.412438][T17616] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3168'.
[  674.424392][T17616] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3168'.
[  674.545942][T17617] vhci_hcd: connection closed
[  674.546272][   T46] vhci_hcd: stop threads
[  674.549143][   T46] vhci_hcd: release socket
[  674.550696][   T46] vhci_hcd: disconnect device
[  674.573780][T13391] vhci_hcd: vhci_device speed not set
[  674.656736][T17612] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3175'.
[  675.292137][T17636] bridge4: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  675.913672][T12871] usb 8-1: new high-speed USB device number 60 using dummy_hcd
[  676.073699][T12871] usb 8-1: Using ep0 maxpacket: 8
[  676.077698][T12871] usb 8-1: config 0 interface 0 has no altsetting 0
[  676.080547][T12871] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  676.084588][T12871] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.094421][T12871] usb 8-1: config 0 descriptor??
[  676.558261][T12871] mcp2221 0003:04D8:00DD.0018: unknown main item tag 0x0
[  676.560853][T12871] mcp2221 0003:04D8:00DD.0018: unknown main item tag 0x0
[  676.563038][T12871] mcp2221 0003:04D8:00DD.0018: unknown main item tag 0x0
[  676.565754][T12871] mcp2221 0003:04D8:00DD.0018: unknown main item tag 0x0
[  676.568370][T12871] mcp2221 0003:04D8:00DD.0018: unknown main item tag 0x0
[  676.571400][T12871] mcp2221 0003:04D8:00DD.0018: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  676.707898][T17648] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3185'.
[  676.759476][ T6006] usb 8-1: USB disconnect, device number 60
[  679.066604][T17698] netlink: 'syz.3.3199': attribute type 11 has an invalid length.
[  679.070050][T17698] netlink: 'syz.3.3199': attribute type 5 has an invalid length.
[  679.073544][T17698] netlink: 4112 bytes leftover after parsing attributes in process `syz.3.3199'.
[  679.080487][T17699] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  679.083029][T17699] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  679.087134][T17699] vhci_hcd vhci_hcd.0: Device attached
[  679.129258][T17700] vhci_hcd: connection closed
[  679.130221][   T96] vhci_hcd: stop threads
[  679.133719][   T96] vhci_hcd: release socket
[  679.135225][   T96] vhci_hcd: disconnect device
[  679.668572][T17717] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  679.741542][T17712] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3203'.
[  680.898449][T17745] netlink: 7 bytes leftover after parsing attributes in process `syz.1.3215'.
[  680.906084][T17745] netlink: 7 bytes leftover after parsing attributes in process `syz.1.3215'.
[  680.919873][T17747] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  680.993341][   T40] audit: type=1326 audit(1760401379.483:2603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17750 comm="syz.0.3218" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa2579 code=0x0
[  681.032787][T17758] netlink: 'syz.1.3221': attribute type 1 has an invalid length.
[  681.143080][T17767] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3224'.
[  681.216097][T17770] FAULT_INJECTION: forcing a failure.
[  681.216097][T17770] name failslab, interval 1, probability 0, space 0, times 0
[  681.221124][T17770] CPU: 3 UID: 0 PID: 17770 Comm: syz.1.3225 Not tainted syzkaller #0 PREEMPT(full) 
[  681.221151][T17770] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  681.221162][T17770] Call Trace:
[  681.221170][T17770]  <TASK>
[  681.221178][T17770]  dump_stack_lvl+0x16c/0x1f0
[  681.221209][T17770]  should_fail_ex+0x512/0x640
[  681.221260][T17770]  should_failslab+0xc2/0x120
[  681.221278][T17770]  __kmalloc_cache_noprof+0x72/0x780
[  681.221302][T17770]  ? sctp_add_bind_addr+0xae/0x3f0
[  681.221330][T17770]  ? sctp_add_bind_addr+0xae/0x3f0
[  681.221352][T17770]  sctp_add_bind_addr+0xae/0x3f0
[  681.221378][T17770]  sctp_copy_local_addr_list+0x349/0x550
[  681.221409][T17770]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  681.221453][T17770]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  681.221483][T17770]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  681.221509][T17770]  sctp_bind_addr_copy+0xe0/0x530
[  681.221539][T17770]  sctp_connect_new_asoc+0x1c9/0x770
[  681.221562][T17770]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  681.221583][T17770]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  681.221614][T17770]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  681.221641][T17770]  sctp_sendmsg+0x1557/0x1e00
[  681.221673][T17770]  ? __pfx_sctp_sendmsg+0x10/0x10
[  681.221692][T17770]  ? __pfx___might_resched+0x10/0x10
[  681.221723][T17770]  ? aa_sk_perm+0x2f4/0xb10
[  681.221748][T17770]  ? __pfx_aa_sk_perm+0x10/0x10
[  681.221768][T17770]  ? __might_fault+0xe3/0x190
[  681.221799][T17770]  ? __pfx_sctp_sendmsg+0x10/0x10
[  681.221820][T17770]  inet_sendmsg+0x11c/0x140
[  681.221845][T17770]  __sys_sendto+0x43c/0x520
[  681.221871][T17770]  ? __pfx___sys_sendto+0x10/0x10
[  681.221915][T17770]  ? ksys_write+0x1ac/0x250
[  681.221941][T17770]  ? __pfx_ksys_write+0x10/0x10
[  681.221969][T17770]  __ia32_sys_sendto+0xdd/0x1b0
[  681.221993][T17770]  ? lockdep_hardirqs_on+0x7c/0x110
[  681.222018][T17770]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  681.222045][T17770]  __do_fast_syscall_32+0x7c/0x300
[  681.222074][T17770]  do_fast_syscall_32+0x32/0x80
[  681.222101][T17770]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  681.222123][T17770] RIP: 0023:0xf7f45579
[  681.222138][T17770] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  681.222154][T17770] RSP: 002b:00000000f543655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  681.222171][T17770] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  681.222181][T17770] RDX: 0000000000000001 RSI: 00000000a154b0c0 RDI: 0000000080000000
[  681.222193][T17770] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  681.222203][T17770] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  681.222214][T17770] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  681.222238][T17770]  </TASK>
[  681.429767][T17773] mkiss: ax0: crc mode is auto.
[  681.930370][T17777] netlink: 7 bytes leftover after parsing attributes in process `syz.4.3228'.
[  681.933939][T17777] netlink: 7 bytes leftover after parsing attributes in process `syz.4.3228'.
[  681.954837][T17779] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  683.427242][T17806] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  683.429887][T17806] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  683.439915][T17806] vhci_hcd vhci_hcd.0: Device attached
[  683.456894][T17806] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3235'.
[  683.460636][T17806] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3235'.
[  683.464874][T17806] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3235'.
[  683.468856][T17806] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3235'.
[  683.537346][T17814] sctp: [Deprecated]: syz.1.3239 (pid 17814) Use of struct sctp_assoc_value in delayed_ack socket option.
[  683.537346][T17814] Use struct sctp_sack_info instead
[  683.673867][ T5986] usb 45-1: new low-speed USB device number 19 using vhci_hcd
[  684.029707][T17826] bridge6: entered promiscuous mode
[  684.047762][T17807] vhci_hcd: connection reset by peer
[  684.052500][   T46] vhci_hcd: stop threads
[  684.055108][   T46] vhci_hcd: release socket
[  684.056907][   T46] vhci_hcd: disconnect device
[  684.603960][T17836] batadv1: entered allmulticast mode
[  684.715193][T17839] ------------[ cut here ]------------
[  684.718072][T17839] WARNING: CPU: 2 PID: 17839 at fs/nsfs.c:493 nsfs_fh_to_dentry+0x9de/0xe10
[  684.721722][T17839] Modules linked in:
SYZFAIL: failed to recv rpc
[  684.724460][T17839] CPU: 2 UID: 0 PID: 17839 Comm: syz.4.3248 Not tainted syzkaller #0 PREEMPT(full) 
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  684.730000][T17839] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  684.734799][T17839] RIP: 0010:nsfs_fh_to_dentry+0x9de/0xe10
[  684.737175][T17839] Code: da 4f ff e9 63 fe ff ff e8 ff 30 74 ff 90 0f 0b 90 e9 7b f8 ff ff e8 f1 30 74 ff 90 0f 0b 90 e9 ce f8 ff ff e8 e3 30 74 ff 90 <0f> 0b 90 e9 32 f9 ff ff e8 d5 30 74 ff 49 8d 7d 10 48 b8 00 00 00
[  684.744749][T17839] RSP: 0018:ffffc90006537b08 EFLAGS: 00010283
[  684.746693][T17839] RAX: 0000000000000083 RBX: 0000000000000000 RCX: ffffc9000c375000
[  684.749164][T17839] RDX: 0000000000080000 RSI: ffffffff8248777d RDI: 0000000000000004
[  684.751697][T17839] RBP: ffff88806c0dcd08 R08: 0000000000000004 R09: 00000000effffffe
[  684.754632][T17839] R10: 0000000000000000 R11: 000000000000001e R12: 1ffff92000ca6f62
[  684.757107][T17839] R13: ffffffff90686ff8 R14: 00000000effffffe R15: 0000000000000001
[  684.759578][T17839] FS:  0000000000000000(0000) GS:ffff8880979e1000(0063) knlGS:00000000f53edb40
[  684.762386][T17839] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  684.764573][T17839] CR2: 00000000f53ece7c CR3: 00000000564e5000 CR4: 0000000000352ef0
[  684.767073][T17839] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000083
[  684.769569][T17839] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  684.772143][T17839] Call Trace:
[  684.773306][T17839]  <TASK>
[  684.774412][T17839]  ? kasan_save_stack+0x33/0x60
[  684.775973][T17839]  ? __pfx_nsfs_fh_to_dentry+0x10/0x10
[  684.777833][T17839]  ? do_handle_open+0x564/0xc90
[  684.779424][T17839]  ? __do_fast_syscall_32+0x7c/0x300
[  684.781334][T17839]  ? do_fast_syscall_32+0x32/0x80
[  684.783513][T17839]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  684.786428][T17839]  exportfs_decode_fh_raw+0x167/0x7d0
[  684.788187][T17839]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[  684.790050][T17839]  ? __pfx_nsfs_fh_to_dentry+0x10/0x10
[  684.791835][T17839]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[  684.794407][T17839]  do_handle_open+0x702/0xc90
[  684.795902][T17839]  ? __pfx_do_handle_open+0x10/0x10
[  684.797561][T17839]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  684.799424][T17839]  ? __do_fast_syscall_32+0x7c/0x300
[  684.801075][T17839]  __do_fast_syscall_32+0x7c/0x300
[  684.802710][T17839]  do_fast_syscall_32+0x32/0x80
[  684.804408][T17839]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  684.806423][T17839] RIP: 0023:0xf6ffd579
[  684.807721][T17839] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  684.814885][T17839] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000156
[  684.818440][T17839] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  684.822717][T17839] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  684.826644][T17839] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  684.829975][T17839] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  684.833287][T17839] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  684.836754][T17839]  </TASK>
[  684.838104][T17839] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  684.841217][T17839] CPU: 2 UID: 0 PID: 17839 Comm: syz.4.3248 Not tainted syzkaller #0 PREEMPT(full) 
[  684.845004][T17839] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  684.849496][T17839] Call Trace:
[  684.850734][T17839]  <TASK>
[  684.851720][T17839]  dump_stack_lvl+0x3d/0x1f0
[  684.853417][T17839]  vpanic+0x640/0x6f0
[  684.854745][T17839]  ? nsfs_fh_to_dentry+0x9de/0xe10
[  684.856903][T17839]  panic+0xca/0xd0
[  684.858556][T17839]  ? __pfx_panic+0x10/0x10
[  684.860444][T17839]  check_panic_on_warn+0xab/0xb0
[  684.862532][T17839]  __warn+0xf6/0x3c0
[  684.864210][T17839]  ? nsfs_fh_to_dentry+0x9de/0xe10
[  684.866377][T17839]  report_bug+0x3c3/0x580
[  684.868203][T17839]  ? nsfs_fh_to_dentry+0x9de/0xe10
[  684.870371][T17839]  handle_bug+0x184/0x210
[  684.872195][T17839]  exc_invalid_op+0x17/0x50
[  684.874127][T17839]  asm_exc_invalid_op+0x1a/0x20
[  684.876181][T17839] RIP: 0010:nsfs_fh_to_dentry+0x9de/0xe10
[  684.878607][T17839] Code: da 4f ff e9 63 fe ff ff e8 ff 30 74 ff 90 0f 0b 90 e9 7b f8 ff ff e8 f1 30 74 ff 90 0f 0b 90 e9 ce f8 ff ff e8 e3 30 74 ff 90 <0f> 0b 90 e9 32 f9 ff ff e8 d5 30 74 ff 49 8d 7d 10 48 b8 00 00 00
[  684.885525][T17839] RSP: 0018:ffffc90006537b08 EFLAGS: 00010283
[  684.887423][T17839] RAX: 0000000000000083 RBX: 0000000000000000 RCX: ffffc9000c375000
[  684.889874][T17839] RDX: 0000000000080000 RSI: ffffffff8248777d RDI: 0000000000000004
[  684.892422][T17839] RBP: ffff88806c0dcd08 R08: 0000000000000004 R09: 00000000effffffe
[  684.894886][T17839] R10: 0000000000000000 R11: 000000000000001e R12: 1ffff92000ca6f62
[  684.897367][T17839] R13: ffffffff90686ff8 R14: 00000000effffffe R15: 0000000000000001
[  684.900054][T17839]  ? nsfs_fh_to_dentry+0x9dd/0xe10
[  684.901727][T17839]  ? nsfs_fh_to_dentry+0x9dd/0xe10
[  684.903916][T17839]  ? kasan_save_stack+0x33/0x60
[  684.906022][T17839]  ? __pfx_nsfs_fh_to_dentry+0x10/0x10
[  684.907886][T17839]  ? do_handle_open+0x564/0xc90
[  684.909436][T17839]  ? __do_fast_syscall_32+0x7c/0x300
[  684.911096][T17839]  ? do_fast_syscall_32+0x32/0x80
[  684.912745][T17839]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  684.915039][T17839]  exportfs_decode_fh_raw+0x167/0x7d0
[  684.917350][T17839]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[  684.919807][T17839]  ? __pfx_nsfs_fh_to_dentry+0x10/0x10
[  684.922017][T17839]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[  684.923934][T17839]  do_handle_open+0x702/0xc90
[  684.925447][T17839]  ? __pfx_do_handle_open+0x10/0x10
[  684.927093][T17839]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  684.928966][T17839]  ? __do_fast_syscall_32+0x7c/0x300
[  684.930644][T17839]  __do_fast_syscall_32+0x7c/0x300
[  684.932281][T17839]  do_fast_syscall_32+0x32/0x80
[  684.933857][T17839]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  684.935835][T17839] RIP: 0023:0xf6ffd579
[  684.937138][T17839] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  684.944278][T17839] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000156
[  684.946888][T17839] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  684.949357][T17839] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  684.951952][T17839] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  684.954683][T17839] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  684.957222][T17839] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  684.959727][T17839]  </TASK>
[  684.961400][T17839] Kernel Offset: disabled
[  684.962784][T17839] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:22:58  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=0000000000000009 RCX=ffffffff95af85c0 RDX=b92e420ba84b2700
RSI=ffff8880222a0b58 RDI=ffff8880222a0000 RBP=ffffc90003346d28 RSP=ffffc90003346c90
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000028 R11=0000000000000001
R12=ffff8880222a0b58 R13=0000000000000200 R14=0000000000000001 R15=ffff8880222a0000
RIP=ffffffff81987506 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f7802db3300 ffffffff 00c00000
GS =0000 ffff8880977e1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055646471fec8 CR3=0000000024a23000 CR4=00352ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=3fca07f8643ce5d8 b06dc77a11bcfd2b 3fca07f8643ce5d8 b06dc77a11bcfd2b 3fca07f8643ce5d8 b06dc77a11bcfd2b 3fca07f8643ce5d8 b06dc77a11bcfd2b
ZMM18=aa461b638795bd57 8fbc0dde69d72890 aa461b638795bd57 8fbc0dde69d72890 aa461b638795bd57 8fbc0dde69d72890 aa461b638795bd57 8fbc0dde69d72890
ZMM19=361e000000000000 0000000000000004 361e000000000000 0000000000000003 361e000000000000 0000000000000002 361e000000000000 0000000000000001
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff81850b32ffffff ff818500b1ffffff ff81850068ffffff ff81850c95ffffff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff818509efffffff ff81850838ffffff ff818504eeffffff ff81850674ffffff
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff818501aaffffff ff8161a3abffffff ff816197afffffff ff816198cbffffff
ZMM24=6440d5326440d532 6440d5326440d532 6440d5326440d532 6440d5326440d532 6440d5326440d532 6440d5326440d532 6440d5326440d532 6440d5326440d532
ZMM25=24a8d0be24a8d0be 24a8d0be24a8d0be 24a8d0be24a8d0be 24a8d0be24a8d0be 24a8d0be24a8d0be 24a8d0be24a8d0be 24a8d0be24a8d0be 24a8d0be24a8d0be
ZMM26=844d6546844d6546 844d6546844d6546 844d6546844d6546 844d6546844d6546 844d6546844d6546 844d6546844d6546 844d6546844d6546 844d6546844d6546
ZMM27=40e80c4a40e80c4a 40e80c4a40e80c4a 40e80c4a40e80c4a 40e80c4a40e80c4a 40e80c4a40e80c4a 40e80c4a40e80c4a 40e80c4a40e80c4a 40e80c4a40e80c4a
ZMM28=000001600000015f 0000015e0000015d 0000015c0000015b 0000015a00000159 0000015800000157 0000015600000155 0000015400000153 0000015200000151
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=fd3c0000fd3c0000 fd3c0000fd3c0000 fd3c0000fd3c0000 fd3c0000fd3c0000 fd3c0000fd3c0000 fd3c0000fd3c0000 fd3c0000fd3c0000 fd3c0000fd3c0000
info registers vcpu 1

CPU#1
RAX=0000000001ef5da7 RBX=0000000000000001 RCX=ffffffff8b6302a9 RDX=0000000000000000
RSI=ffffffff8db0011e RDI=ffffffff8bf1e7c0 RBP=ffffed1003b5d490 RSP=ffffc9000046fde8
R8 =0000000000000001 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000001
R12=0000000000000001 R13=ffff88801daea480 R14=ffffffff908363d0 R15=0000000000000000
RIP=ffffffff8b62ed5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978e1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000058c67000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff852db115 RDI=ffffffff9adf1e40 RBP=ffffffff9adf1e00 RSP=ffffc90006537470
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000033 R14=ffffffff9adf1e00 R15=ffffffff852db0b0
RIP=ffffffff852db13f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979e1000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f53ece7c CR3=00000000564e5000 CR4=00352ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000b4de2b RBX=0000000000000003 RCX=ffffffff8b6302a9 RDX=0000000000000000
RSI=ffffffff8db0011e RDI=ffffffff8bf1e7c0 RBP=ffffed10037e1000 RSP=ffffc9000048fde8
R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000001
R12=0000000000000003 R13=ffff88801bf08000 R14=ffffffff908363d0 R15=0000000000000000
RIP=ffffffff8b62ed5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ae1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080000000 CR3=0000000061521000 CR4=00352ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000