last executing test programs:

23.296638345s ago: executing program 0 (id=4838):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=@newtaction={0x17c, 0x30, 0x1, 0x2, 0x25dfdbff, {}, [{0x168, 0x1, [@m_pedit={0x11c, 0x8, 0x0, 0x0, {{0xa}, {0x78, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x74, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}]}]}]}, {0x7b, 0x6, "529e0d6b7e1522285aa2f2e8f461f8e82df572a6175bed0ff6a91fe4280a0490fa7ee9bff783524930a83fa5d0274ae616394d78304e6631a388aa283730409aeaea5baeded64c460e9ef425a61dc79e9b54ca83fc6934ffd13211ff89922151d73a57a6c723dbe550079240ea0cafe5bff50b2c77a61e"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ife={0x48, 0x2, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x7}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid() (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) (async)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
syz_usbip_server_init(0x6) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)=0xff)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) (async)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000340))
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f0000000080)=0x93b) (async)
write$evdev(r4, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x8, 0x0, 0xffff}) (async)
socket$netlink(0x10, 0x3, 0x15) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYRES16=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e3}, 0x94) (async)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106) (async)
mount(&(0x7f0000000180)=@nullb, &(0x7f00000001c0)='./file1/file2\x00', &(0x7f0000000280)='gfs2meta\x00', 0x248000, 0x0)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
unshare(0x8000000)
openat$rdma_cm(0xffffff9c, &(0x7f0000000300), 0x2, 0x0)
r7 = memfd_create(&(0x7f0000000400)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x0)
execveat(r7, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

22.312488521s ago: executing program 0 (id=4864):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x90}, [@ldst={0x2, 0x0, 0xb, 0x0, 0xa}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x5, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffebc}, 0x94)

22.311581607s ago: executing program 0 (id=4865):
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sendmsg$TIPC_CMD_SHOW_STATS(r0, &(0x7f0000000540)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x38c1}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, 0x0, 0x200, 0x70bd29, 0x25dfdbfc}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4088085)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r3)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000480)=@o_path={&(0x7f0000000580)='./file0\x00', 0xffffffffffffffff, 0x4000, r2}, 0x14)
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000680)={0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000940), 0x1, 0x0)
ioctl$SNAPSHOT_S2RAM(r4, 0x3314)
ioctl$MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, &(0x7f0000000080))
add_key$keyring(0x0, &(0x7f00000003c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)

20.724838727s ago: executing program 0 (id=4869):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="500000001000370400"/20, @ANYRES32=0x0, @ANYBLOB="00450200000000001c0012800900010069706970000000000c00f97f08000300ac1e00011400030074756e6c300000000000000000000000cb09c1ef6ec6222ac6358760989a50cbf76f99bdfbdda3f41ca62282bace4b7139ccf9b79d3116f06ea123728fda866ed4cb601713db5dd4a801c10020399afc5bf506e96556d6fcd5ab0555b8011b1d71c46dbebe063c790d0630db01523c1675b81dcae96b"], 0x50}, 0x1, 0x0, 0x0, 0x4008000}, 0x40020)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x6)
ioctl$sock_bt_hci(r3, 0x800448d2, &(0x7f0000000000))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffffcb9}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x6)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x2, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000180)='./file1\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r4, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x4, 0x2, 0x6, 0x3, 0x2, 0xd022, 0x1, 0x6, 0x7fffffff})
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
ioctl$sock_ifreq(r5, 0x8943, &(0x7f0000000080)={'dummy0\x00', @ifru_ivalue})
syz_open_dev$vivid(&(0x7f0000000140), 0x0, 0x2)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r6, 0x7)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r1, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x40, 0x1405, 0x300, 0x70bd2d, 0x25dfdbfd, "", [{{0x8, 0x1, 0x1}, {0x8, 0x3, 0x4}}, {{0x8, 0x1, 0x1}, {0x8, 0x3, 0x2}}, {{0x8, 0x1, 0x2}, {0x8, 0x3, 0x1}}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x4050010)
r7 = socket$kcm(0x29, 0x2, 0x0)
sendmsg$inet(r7, &(0x7f0000000b40)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000600)='\'', 0x1}], 0x1}, 0x81)
sendmmsg$inet(r7, &(0x7f0000000580)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
write(r2, &(0x7f0000000240)="94", 0x1)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000400)="12", 0x1}], 0x1, 0x4)
read(r3, &(0x7f00000001c0)=""/43, 0x2b)
tee(r1, 0xffffffffffffffff, 0x8f5, 0x100000000000000)

20.703075068s ago: executing program 3 (id=4870):
socket(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = syz_io_uring_setup(0x10d5, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000200)={0x3, 0x101, 0x8})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r3 = syz_open_dev$sg(&(0x7f0000000100), 0x0, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000002700)={0x53, 0x0, 0x6, 0x7, @buffer={0x0, 0x19, 0x0}, &(0x7f0000002680)="a0cea1791a1a", 0x0, 0x1000, 0x0, 0x1, 0x0})
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x40, 0x0, 0x0, 0x0, 0x23456})
io_uring_enter(r0, 0x47bc, 0xfffffffb, 0x4, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_exit\x00', r4}, 0x18)
migrate_pages(0x0, 0xa02, 0x0, 0x0)

20.598250442s ago: executing program 0 (id=4871):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000004c0)={0x1, 0x0, [{0x400000f4, 0x0, 0x6}]})
r3 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
write$P9_RLERRORu(r4, &(0x7f0000000300)=ANY=[], 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000380)=[0x5], 0x0, 0x0, 0x1, 0x1}}, 0x40)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r4, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r6, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0}, 0xffffff00}], 0x1, 0x40010003, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
r7 = add_key$fscrypt_provisioning(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000240)={0x2, 0x0, @d}, 0x18, 0xfffffffffffffff8)
keyctl$set_timeout(0xf, r7, 0xfd)

20.399952112s ago: executing program 3 (id=4872):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x14, 0x0, 0x1, 0x4000000}, 0x14}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r2 = syz_io_uring_setup(0x10f, &(0x7f00000000c0)={0x0, 0x211a, 0x80, 0x4, 0x5e}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000040)=0xffefffdc, 0x0, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='>'], 0x38}}, 0x80)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r6, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r7, 0x8983, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000600), 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x8, 0x1, 0xffffffffffffffff, 0x0})
io_uring_enter(r2, 0x3516, 0xc2de, 0x8, 0x0, 0x0)

19.670242749s ago: executing program 0 (id=4875):
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c00000002060500000000000000000000000000050004000000000005000100070000000900020073797a320000000005000500000000001400078005001500d300000008001240000000090d000300686173683a6d6163"], 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
prlimit64(r0, 0x5, &(0x7f0000000000)={0x2b2b, 0x8}, &(0x7f0000000080))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c00000025000901223b3bac98b244d46d5100000800030047"], 0x1c}, 0x1, 0x0, 0x0, 0x449d7}, 0x20000800)

19.616901842s ago: executing program 32 (id=4875):
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c00000002060500000000000000000000000000050004000000000005000100070000000900020073797a320000000005000500000000001400078005001500d300000008001240000000090d000300686173683a6d6163"], 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
prlimit64(r0, 0x5, &(0x7f0000000000)={0x2b2b, 0x8}, &(0x7f0000000080))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c00000025000901223b3bac98b244d46d5100000800030047"], 0x1c}, 0x1, 0x0, 0x0, 0x449d7}, 0x20000800)

19.412573458s ago: executing program 3 (id=4878):
prctl$PR_SVE_GET_VL(0x33, 0x4ef0)
prctl$PR_SVE_GET_VL(0x33, 0xcefa)
prctl$PR_SVE_GET_VL(0x33, 0xa2a)
prctl$PR_SVE_GET_VL(0x33, 0x34f5)
prctl$PR_SVE_GET_VL(0x33, 0x11866)
prctl$PR_SVE_GET_VL(0x33, 0x13e44)
prctl$PR_SVE_GET_VL(0x33, 0x1d5a)
prctl$PR_SVE_GET_VL(0x33, 0x1a787)
prctl$PR_SVE_GET_VL(0x33, 0xbbc3)
prctl$PR_SVE_GET_VL(0x33, 0x8c26)
prctl$PR_SVE_GET_VL(0x33, 0x14ce7)
prctl$PR_SVE_GET_VL(0x33, 0x1dbd2)
prctl$PR_SVE_GET_VL(0x33, 0xeaf1)
prctl$PR_SVE_GET_VL(0x33, 0xd2c6)
prctl$PR_SVE_GET_VL(0x33, 0xc3d7)
prctl$PR_SVE_GET_VL(0x33, 0x63da)
prctl$PR_SVE_GET_VL(0x33, 0xb557)
prctl$PR_SVE_GET_VL(0x33, 0x1bc51)
prctl$PR_SVE_GET_VL(0x33, 0xab84)
prctl$PR_SVE_GET_VL(0x33, 0x1567f)
prctl$PR_SVE_GET_VL(0x33, 0x5fdf)
prctl$PR_SVE_GET_VL(0x33, 0x9b33)
prctl$PR_SVE_GET_VL(0x33, 0x1e296)
prctl$PR_SVE_GET_VL(0x33, 0xf03c)
prctl$PR_SVE_GET_VL(0x33, 0x7a8a)
prctl$PR_SVE_GET_VL(0x33, 0x4139)
prctl$PR_SVE_GET_VL(0x33, 0x19797)
prctl$PR_SVE_GET_VL(0x33, 0xa7a0)
prctl$PR_SVE_GET_VL(0x33, 0x9ccf)
prctl$PR_SVE_GET_VL(0x33, 0x1a2df)

19.319358876s ago: executing program 3 (id=4879):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="500000001000370400"/20, @ANYRES32=0x0, @ANYBLOB="00450200000000001c0012800900010069706970000000000c00f97f08000300ac1e00011400030074756e6c300000000000000000000000cb09c1ef6ec6222ac6358760989a50cbf76f99bdfbdda3f41ca62282bace4b7139ccf9b79d3116f06ea123728fda866ed4cb601713db5dd4a801c10020399afc5bf506e96556d6fcd5ab0555b8011b1d71c46dbebe063c790d0630db01523c1675b81dcae96b"], 0x50}, 0x1, 0x0, 0x0, 0x4008000}, 0x40020)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x6)
ioctl$sock_bt_hci(r3, 0x800448d2, &(0x7f0000000000))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffffcb9}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x6)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x2, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000180)='./file1\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r4, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x4, 0x2, 0x6, 0x3, 0x2, 0xd022, 0x1, 0x6, 0x7fffffff})
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
ioctl$sock_ifreq(r5, 0x8943, &(0x7f0000000080)={'dummy0\x00', @ifru_ivalue})
pipe(&(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r8, 0x7)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r1, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x40, 0x1405, 0x300, 0x70bd2d, 0x25dfdbfd, "", [{{0x8, 0x1, 0x1}, {0x8, 0x3, 0x4}}, {{0x8, 0x1, 0x1}, {0x8, 0x3, 0x2}}, {{0x8, 0x1, 0x2}, {0x8, 0x3, 0x1}}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x4050010)
r9 = socket$kcm(0x29, 0x2, 0x0)
sendmsg$inet(r9, &(0x7f0000000b40)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000600)='\'', 0x1}], 0x1}, 0x81)
sendmmsg$inet(r9, &(0x7f0000000580)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
write(r2, &(0x7f0000000240)="94", 0x1)
vmsplice(r6, &(0x7f0000000100)=[{&(0x7f0000000400)="12", 0x1}], 0x1, 0x4)
read(r3, &(0x7f00000001c0)=""/43, 0x2b)
tee(r1, r7, 0x8f5, 0x100000000000000)

19.176720359s ago: executing program 3 (id=4881):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
r1 = syz_clone3(0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="11000000040000000400000002"], 0x48)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000080)={r2, 0x58, &(0x7f00000003c0)}, 0x10)
tgkill(r1, r1, 0x21)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
kexec_load(0x8, 0x4, &(0x7f00000001c0)=[{&(0x7f00000000c0)="03988687b4d06303e6d639d2b645599822a784eb69cb1dd154310675587c5c0efaffd902a7063c1fc11903e95798087cb32debf60d7364b02db6e943d775e70c7c98d05785a82d46dcf916366c3a46ffd8dab4123bb37bbc3475a170a8f0f6e31701ef02d05b1c505b07ae39b7a7f6e1fcf500e7d9232537adc5314bb629259ac56210915d687df5638bcd687cc8b9639e80cf00a09e1a428450b3181e1dec9a0dfb9a136ba6221c318dd559ac3aedb360ac49509b6369e79ea9962e63415d2c206c37c19157334b49fdc032822813eaa9ea", 0xd2, 0x1, 0x4}, {&(0x7f0000000240)="5ac49674f26d6afc0722d76617505e92e55f134f331b2d08006f616feb40d661837f58ae14b6b4391f4dea6991bfdb7371f08b95ee9d05341c9539c6f6ca8cda610a05ad78d66b6d21889dcdd7ca92c16d9d911eb511c72101c0a3a4bc4b6e9eb404cee7631f44bf5d6e165a569345bad6b61b94", 0x74, 0x40, 0xe}, {&(0x7f0000000340)="abcd2fa338567d2228f1ffb719252d702664e1dfe78287768bed6ec6b9714cdedfbd513137ff3b134137229a9f904c71c503bef8e6e5881a093d9c2ed45d402ca6d279c415b85e40c82de602874413a779f443a045bc1d8087c1030eadd2bb7c8c46dd8ad2504ecd9183f21dbf5cfd90f1c188b255146386b8b135d5e378160142a43894b5c90ebcdc132b1a15f5e122f0de7ebd2618fc44c1f644d91b2b126a1966f9b93fbfd0e5566727f3e796ed1368df5363703d076c821f3d035d52e15971472ec3eeefac", 0xc7, 0xd73, 0x9}, {&(0x7f0000000440)="4a057631c265fc11e2b5730f7f5185de1ec7659164b9e2855fea3dc2dbf8a631da23faabbab31a2494c2e6cfdc87096e7e9ba4daa66298daba358099fffe361990d2da3122f0d9bac02b6a90e77ee4c93f1a8ff23f1a59bcc6e4b18e0c743a740e752220bdcff2f1243979b8a2fcd52f531fce1ae11750410f10bbe9da481a34bda95423e02ed60558a02ff7d4fbf2dafc64136283b604f687f5e0b3390b0fd68979746856e503ae1dc47b85544c561ad1dc1cea573205d6831730", 0xbb, 0x40000}], 0x2a0000)
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4010}, 0x0)

18.799129237s ago: executing program 3 (id=4882):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fc"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)={0x28, r3, 0x1, 0x70bd2a, 0x25cfdbfc, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}, 0x1, 0x198, 0x0, 0x20060001}, 0x4004000)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)

18.624027455s ago: executing program 33 (id=4882):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fc"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)={0x28, r3, 0x1, 0x70bd2a, 0x25cfdbfc, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}, 0x1, 0x198, 0x0, 0x20060001}, 0x4004000)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)

3.591157952s ago: executing program 1 (id=4941):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
openat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x23042, 0x1df)

3.281974878s ago: executing program 2 (id=4942):
openat$ppp(0xffffffffffffff9c, 0x0, 0x2080, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x100000001, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff00030006001000000002000000e0000009f9ff0f0005000000030005007217440502000000e0000001"], 0x40}}, 0x0)
sendmsg$key(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x8, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)

2.7644347s ago: executing program 4 (id=4943):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000519000/0x1000)=nil, 0x1000, 0x66)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x1000000000)
socket$can_bcm(0x1d, 0x2, 0x2)
sysinfo(0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000000)=0x15)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xc, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)

2.499988484s ago: executing program 1 (id=4944):
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={<r4=>0xffffffffffffffff}, 0x111, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x7fe, @empty, 0x1}, {0xa, 0x4e20, 0x1ff, @dev={0xfe, 0x80, '\x00', 0x1d}, 0x2}, r4, 0xb}}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getxattr(0x0, &(0x7f00000001c0)=@known='com.apple.system.Security\x00', 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000c00000/0x1000)=nil, 0x1000, 0x16)
write$RDMA_USER_CM_CMD_DESTROY_ID(r3, &(0x7f0000000f80)={0x1, 0xe, 0xfa00, {&(0x7f0000000300), r4}}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.413471496s ago: executing program 2 (id=4945):
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r5, &(0x7f0000000980), 0xfdef)
timer_settime(r2, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read$FUSE(r4, &(0x7f0000000980)={0x2020}, 0x2020)

1.790051618s ago: executing program 4 (id=4948):
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt(r0, 0x0, 0x4, &(0x7f0000000200)='}\\04', 0x4)

1.712811112s ago: executing program 4 (id=4949):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x108)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x5, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3, 0x0, 0xffff, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x120, 0x2000, 0x0, 0x0, r2, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x14c0348, 0x40, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TCSBRKP(r3, 0x5425, 0x4)

1.582296702s ago: executing program 1 (id=4950):
fsopen(0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a1201, 0x0)
read$dsp(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
connect$l2tp6(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000240)=0x3)
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000080)=0x7f)
read$dsp(r1, &(0x7f0000000100)=""/94, 0xfffffcf7)

1.576774605s ago: executing program 2 (id=4951):
io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x80, 0x5, 0x2b0})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000005c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
rmdir(&(0x7f0000000040)='./file0/../file0/file0\x00')
socket$inet(0x2, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
pwritev(r1, &(0x7f0000000280), 0x0, 0x6, 0x200)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
io_uring_enter(0xffffffffffffffff, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00'})
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0xd5b3, 0x800, 0x2, 0x2028a}, &(0x7f0000000040)=<r4=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, 0x0, 0x0)
io_uring_enter(r3, 0x40f9, 0x217, 0xa7, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006140)={0x2020, 0x0, <r5=>0x0}, 0xfffffe24)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r5, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x40, 0x9, 0xf, 0x0, 0x0, 0x4}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000c280)="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", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)={0x90, 0x0, 0x6, {0x4, 0x0, 0x0, 0x0, 0x1, 0x0, {0x0, 0x0, 0xfffffffffffffff8, 0x3, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4000, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004140)="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", 0x2000, &(0x7f0000001880)={&(0x7f0000000180)={0x50, 0x0, 0x100000, {0x7, 0x29, 0x7, 0x20000000, 0x0, 0x0, 0x0, 0xd4, 0x0, 0x0, 0x40}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x62182, 0x0)

1.232144455s ago: executing program 4 (id=4952):
r0 = socket$inet6(0xa, 0x3, 0x5)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x4000)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0)
socket(0x2, 0x3, 0x100000001)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$dri(0x0, 0x1, 0x400)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x3)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0x806})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000080))
close_range(r1, 0xffffffffffffffff, 0x0)

1.141563669s ago: executing program 2 (id=4953):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x200000b, 0x12, r0, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
writev(r1, &(0x7f0000000980)=[{&(0x7f00000001c0)="12", 0x1}, {&(0x7f0000000c00)="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", 0x401}], 0x2)

1.131361317s ago: executing program 4 (id=4954):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x90)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r2 = socket$inet6(0xa, 0x2, 0x88)
bind$inet6(r2, &(0x7f0000002c80)={0xa, 0x14e24, 0x0, @rand_addr, 0xffff}, 0x1c)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e24, 0x0, @rand_addr, 0xd}, 0x1c)
sendmmsg(r2, &(0x7f00000092c0), 0x4ff, 0x0)

1.083944635s ago: executing program 2 (id=4955):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1e, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x80000000}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x24}, 0x94)

1.082073801s ago: executing program 4 (id=4956):
syz_usb_connect(0x0, 0x36, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000adae6c40fd0b1200c0cc010203010902240001000000000904"], 0x0)

1.065792616s ago: executing program 5 (id=4957):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013040000000200000088060000ff0f0000002e2e"], 0x0, 0x35, 0x0, 0x1}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000eb0626f50000000000080000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x4fa, &(0x7f0000000cc0)=""/4096, 0x40f00, 0x5, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x0, 0x2, 0x4, 0x9}, 0x1, 0x0, 0x0, 0x64, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000240)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xd4}, 0x94)

1.01134068s ago: executing program 2 (id=4958):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x8f, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
fchdir(r5)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)
lseek(r6, 0x104, 0x1)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

1.009830206s ago: executing program 5 (id=4959):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000009e8685000000040000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000cbd520850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

941.870783ms ago: executing program 5 (id=4960):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0x19, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r1, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000001c0)={0x48, 0x5, r1, 0x0, <r2=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r0, 0x3ba0, &(0x7f0000000140)={0x48, 0x7, r2, 0x0, 0x1, 0x0, 0x1000, 0x6})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f00000002c0)={0x48, 0x7, r2, 0x0, 0x10000, 0x0, 0x4, 0xfffffff5, 0x2d9406})

941.136773ms ago: executing program 5 (id=4961):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB="300000000406010400000000000000000f0000010900020073797a310000000005000100070000"], 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0xc000)

862.29698ms ago: executing program 5 (id=4962):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000280)='nv', 0x2)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)

662.064193ms ago: executing program 1 (id=4963):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1002002, 0x0)
r1 = dup(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000f"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x40542, 0x0)
ftruncate(r4, 0xee72)
sendfile(r1, r4, 0x0, 0x8000fffffffe)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0x19)

591.045049ms ago: executing program 1 (id=4964):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000000c0)=ANY=[@ANYBLOB="e5e4"], 0x8)

562.209672ms ago: executing program 1 (id=4965):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0xa4000021)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x21800, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
add_key$user(&(0x7f0000000200), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r2, 0xc01864c6, &(0x7f00000001c0)={0x0, 0x0, 0x80800, 0x0, <r4=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r2, 0xc05064a7, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000})
ioctl$DRM_IOCTL_MODE_GETENCODER(r4, 0xc01464a6, &(0x7f0000000180)={r5})
keyctl$join(0x1, &(0x7f0000000280)={'syz', 0x1})
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0)
socket(0x1d, 0x2, 0x6)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r6 = memfd_create(&(0x7f0000000000)='\x00', 0x1)
sendfile(0xffffffffffffffff, r6, 0x0, 0x8000fb00)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

0s ago: executing program 5 (id=4966):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket(0x848000000015, 0x805, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x10}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @private2, 0x3ff}, 0x1c)
r1 = socket(0x40000000015, 0x5, 0x0)
getsockopt(r1, 0x200000000114, 0x271c, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9)

0s ago: executing program 5 (id=4967):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi0\x00', 0x8080, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000540)={'c6xdigio\x00', [0x109, 0x80008000, 0x86c, 0xa, 0x0, 0x0, 0x1, 0xf, 0x1000, 0x1, 0x8, 0x5, 0x6, 0x1, 0x1138fce9, 0x6, 0xffffffa7, 0x2000001, 0xfffffffd, 0x65c, 0x3ff, 0x10004, 0x800, 0xe2df, 0x9, 0x6, 0x4, 0x3, 0x7, 0x5, 0x5]})
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8, 0x12, r0, 0xfae76000)

kernel console output (not intermixed with test programs):

 878.387111][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  878.395942][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  878.399718][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  878.409811][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  878.413705][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  878.417416][    C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  878.421177][    C2] Buffer I/O error on dev loop7, logical block 0, async page read
[  878.429229][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  878.432862][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  878.564771][T21410] hsr_slave_0: left promiscuous mode
[  878.569139][T21410] hsr_slave_1: left promiscuous mode
[  878.570733][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  878.582957][T21410] veth1_vlan: left promiscuous mode
[  878.630741][T12728] usb 8-1: new low-speed USB device number 28 using dummy_hcd
[  878.646808][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  878.651715][T14167] usb usb40-port1: attempt power cycle
[  878.657748][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  878.661648][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  878.664889][    C0] I/O error, dev loop7, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  878.668634][    C0] Buffer I/O error on dev loop7, logical block 1, async page read
[  878.671979][    C0] I/O error, dev loop7, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  878.675704][    C0] Buffer I/O error on dev loop7, logical block 2, async page read
[  878.678975][    C0] Buffer I/O error on dev loop7, logical block 3, async page read
[  878.682317][    C0] Buffer I/O error on dev loop7, logical block 4, async page read
[  878.741245][T21410] team0 (unregistering): Port device vlan0 removed
[  878.794710][T12728] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  878.798140][T12728] usb 8-1: config 0 has no interface number 0
[  878.801075][T12728] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  878.805449][T12728] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  878.808774][T12728] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  878.811978][T12728] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  878.815552][T12728] usb 8-1: config 0 descriptor??
[  878.820262][T21934] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  878.836830][T12728] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  879.051320][T21934] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN
[  879.070759][ T6021] vhci_hcd: vhci_device speed not set
[  879.078694][T12728] usb 8-1: USB disconnect, device number 28
[  879.231575][T14167] usb usb40-port1: unable to enumerate USB device
[  879.303098][ T3246] usb 6-1: new full-speed USB device number 47 using dummy_hcd
[  879.472412][ T3246] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  879.476168][ T3246] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  879.478965][ T3246] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  879.482163][ T3246] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  879.493256][ T3246] usb 6-1: config 0 descriptor??
[  879.500775][ T3246] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  879.503078][ T3246] dvb-usb: bulk message failed: -22 (3/0)
[  879.508767][ T3246] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  879.512611][ T3246] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  879.515767][ T3246] usb 6-1: media controller created
[  879.518965][ T3246] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  879.530819][ T3246] dvb-usb: bulk message failed: -22 (6/0)
[  879.532707][ T3246] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  879.542716][ T3246] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input45
[  879.548127][ T3246] dvb-usb: schedule remote query interval to 150 msecs.
[  879.550548][ T3246] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  879.610752][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  879.691591][T16152] Bluetooth: hci0: command tx timeout
[  879.711057][ T3246] dvb-usb: bulk message failed: -22 (1/0)
[  879.713306][ T3246] dvb-usb: error while querying for an remote control event.
[  879.874229][ T3246] dvb-usb: bulk message failed: -22 (1/0)
[  879.876695][ T3246] dvb-usb: error while querying for an remote control event.
[  880.051199][ T3246] dvb-usb: bulk message failed: -22 (1/0)
[  880.053619][ T3246] dvb-usb: error while querying for an remote control event.
[  880.230736][ T3246] dvb-usb: bulk message failed: -22 (1/0)
[  880.234585][ T3246] dvb-usb: error while querying for an remote control event.
[  880.390732][ T3246] dvb-usb: bulk message failed: -22 (1/0)
[  880.393166][ T3246] dvb-usb: error while querying for an remote control event.
[  880.550767][ T3246] dvb-usb: bulk message failed: -22 (1/0)
[  880.553624][ T3246] dvb-usb: error while querying for an remote control event.
[  880.583304][ T6021] usb 6-1: USB disconnect, device number 47
[  880.608991][ T6021] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  880.650797][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  880.668434][T21972] FAULT_INJECTION: forcing a failure.
[  880.668434][T21972] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  880.675572][T21972] CPU: 0 UID: 0 PID: 21972 Comm: syz.3.4267 Not tainted syzkaller #0 PREEMPT(full) 
[  880.675596][T21972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  880.675606][T21972] Call Trace:
[  880.675604][T21868] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  880.675613][T21972]  <TASK>
[  880.675625][T21972]  dump_stack_lvl+0x16c/0x1f0
[  880.675663][T21972]  should_fail_ex+0x512/0x640
[  880.675691][T21972]  _copy_to_user+0x32/0xd0
[  880.675730][T21972]  simple_read_from_buffer+0xcb/0x170
[  880.675749][T21972]  proc_fail_nth_read+0x197/0x240
[  880.675762][T21972]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  880.675774][T21972]  ? rw_verify_area+0xcf/0x6c0
[  880.675785][T21972]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  880.675796][T21972]  vfs_read+0x1e4/0xcf0
[  880.675810][T21972]  ? __pfx_vfs_read+0x10/0x10
[  880.675820][T21972]  ? find_held_lock+0x2b/0x80
[  880.675835][T21972]  ? __fget_files+0x20e/0x3c0
[  880.675850][T21972]  ksys_read+0x12a/0x250
[  880.675861][T21972]  ? __pfx_ksys_read+0x10/0x10
[  880.675871][T21972]  ? preempt_schedule_notrace_thunk+0x16/0x30
[  880.675890][T21972]  ? rcu_is_watching+0x12/0xc0
[  880.675903][T21972]  __do_fast_syscall_32+0x7c/0x300
[  880.675917][T21972]  do_fast_syscall_32+0x32/0x80
[  880.675930][T21972]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  880.675944][T21972] RIP: 0023:0xf70cd579
[  880.675953][T21972] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  880.675964][T21972] RSP: 002b:00000000f54bd590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  880.675974][T21972] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f54bd620
[  880.675981][T21972] RDX: 000000000000000f RSI: 00000000f7466ff4 RDI: 0000000000000000
[  880.675987][T21972] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  880.675992][T21972] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  880.675999][T21972] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  880.676012][T21972]  </TASK>
[  880.755676][T21868] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  880.768494][T21868] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  880.777946][T21868] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  880.854008][T21868] 8021q: adding VLAN 0 to HW filter on device bond0
[  880.864078][T21868] 8021q: adding VLAN 0 to HW filter on device team0
[  880.868592][T21412] bridge0: port 1(bridge_slave_0) entered blocking state
[  880.870673][T21412] bridge0: port 1(bridge_slave_0) entered forwarding state
[  880.879468][   T81] bridge0: port 2(bridge_slave_1) entered blocking state
[  880.881889][   T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[  880.989202][T22001] netlink: 'syz.0.4268': attribute type 1 has an invalid length.
[  881.004768][T22001] 8021q: adding VLAN 0 to HW filter on device bond2
[  881.028037][T22001] bond2: (slave ip6gretap1): making interface the new active one
[  881.032861][T22001] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link
[  881.049928][T21868] 8021q: adding VLAN 0 to HW filter on device batadv0
[  881.063952][T21410] IPVS: stop unused estimator thread 0...
[  881.107874][T21868] veth0_vlan: entered promiscuous mode
[  881.121640][T21868] veth1_vlan: entered promiscuous mode
[  881.149982][T21868] veth0_macvtap: entered promiscuous mode
[  881.155577][T21868] veth1_macvtap: entered promiscuous mode
[  881.169290][T21868] batman_adv: batadv0: Interface activated: batadv_slave_0
[  881.178621][T21868] batman_adv: batadv0: Interface activated: batadv_slave_1
[  881.196805][T21411] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  881.201902][T21411] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  881.206155][T21411] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  881.224993][T21411] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  881.277517][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  881.282071][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  881.299542][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  881.302950][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  881.690830][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  881.770828][T16152] Bluetooth: hci0: command tx timeout
[  882.730825][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  883.770818][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  883.852016][T16152] Bluetooth: hci0: command tx timeout
[  884.281785][T22042] binder: 22037:22042 ioctl 0 80000040 returned -22
[  884.810719][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  884.969000][T22051] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4282'.
[  885.010922][T22051] wireguard0: entered promiscuous mode
[  885.014615][T22051] wireguard0: entered allmulticast mode
[  885.860691][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  886.409466][T22066] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  886.411912][T22066] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  886.416931][T22066] vhci_hcd vhci_hcd.0: Device attached
[  886.419908][T22067] vhci_hcd: connection closed
[  886.420176][   T81] vhci_hcd: stop threads
[  886.426070][   T81] vhci_hcd: release socket
[  886.427979][   T81] vhci_hcd: disconnect device
[  886.652647][T22079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4290'.
[  886.900769][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  887.671941][T22088] netlink: 'syz.2.4292': attribute type 1 has an invalid length.
[  887.926452][T22094] can0: slcan on pty26.
[  887.930786][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  888.163128][   T40] audit: type=1326 audit(2000000514.972:14700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.173969][   T40] audit: type=1326 audit(2000000514.972:14701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.191801][   T40] audit: type=1326 audit(2000000514.992:14702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=155 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.199101][   T40] audit: type=1326 audit(2000000514.992:14703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.210032][   T40] audit: type=1326 audit(2000000514.992:14704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.219224][   T40] audit: type=1326 audit(2000000514.992:14705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.226586][   T40] audit: type=1326 audit(2000000514.992:14706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.238799][   T40] audit: type=1326 audit(2000000514.992:14707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=426 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.575025][   T40] audit: type=1326 audit(2000000515.382:14708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.608181][   T40] audit: type=1326 audit(2000000515.382:14709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22106 comm="syz.2.4299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7ffc0000
[  888.980732][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  889.052813][T22127] Bluetooth: MGMT ver 1.23
[  889.271096][T22095] can0 (unregistered): slcan off pty26.
[  889.294710][T22127] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4304'.
[  889.641778][T22149] overlayfs: failed to resolve './file0': -2
[  890.010874][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  890.403512][ T3246] IPVS: starting estimator thread 0...
[  890.545350][T22164] loop6: detected capacity change from 0 to 524287999
[  890.553774][T22163] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4307'.
[  890.556818][T22163] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4307'.
[  890.559737][T22163] netlink: 'syz.1.4307': attribute type 20 has an invalid length.
[  890.571509][T22157] IPVS: using max 41 ests per chain, 98400 per kthread
[  891.050755][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  891.420301][T22195] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  891.422448][T22195] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  891.425106][T22195] vhci_hcd vhci_hcd.0: Device attached
[  891.682489][ T3246] usb 39-1: new high-speed USB device number 3 using vhci_hcd
[  892.091055][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  892.302210][T22196] vhci_hcd: connection reset by peer
[  892.304275][ T1150] vhci_hcd: stop threads
[  892.305681][ T1150] vhci_hcd: release socket
[  892.307201][ T1150] vhci_hcd: disconnect device
[  892.448724][T22214] netlink: 256 bytes leftover after parsing attributes in process `syz.3.4323'.
[  892.507943][T22214] netlink: 'syz.3.4323': attribute type 1 has an invalid length.
[  892.517056][T22214] netlink: 'syz.3.4323': attribute type 4 has an invalid length.
[  892.520207][T22214] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.4323'.
[  892.900841][T22226] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4326'.
[  893.130798][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  893.222344][ T5984] usb 6-1: new full-speed USB device number 48 using dummy_hcd
[  893.373198][ T5984] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 102, changing to 4
[  893.377890][ T5984] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 12078, setting to 1023
[  893.382844][ T5984] usb 6-1: config 0 interface 0 has no altsetting 0
[  893.388972][ T5984] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  893.392716][ T5984] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  893.395474][ T5984] usb 6-1: Product: syz
[  893.396929][ T5984] usb 6-1: Manufacturer: syz
[  893.398444][ T5984] usb 6-1: SerialNumber: syz
[  893.401949][ T5984] usb 6-1: config 0 descriptor??
[  893.406190][ T5984] usb 6-1: selecting invalid altsetting 0
[  893.608331][T22232] usb 6-1: cannot submit urb 0, error -2: endpoint not enabled
[  893.614544][ T5984] usb 6-1: USB disconnect, device number 48
[  894.219233][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  894.423723][T22254] FAULT_INJECTION: forcing a failure.
[  894.423723][T22254] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  894.429480][T22254] CPU: 3 UID: 0 PID: 22254 Comm: syz.2.4336 Not tainted syzkaller #0 PREEMPT(full) 
[  894.429504][T22254] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  894.429514][T22254] Call Trace:
[  894.429528][T22254]  <TASK>
[  894.429535][T22254]  dump_stack_lvl+0x16c/0x1f0
[  894.429561][T22254]  should_fail_ex+0x512/0x640
[  894.429591][T22254]  _copy_from_iter+0x29f/0x1720
[  894.429622][T22254]  ? __alloc_skb+0x200/0x380
[  894.429649][T22254]  ? __pfx__copy_from_iter+0x10/0x10
[  894.429675][T22254]  ? netlink_autobind.isra.0+0x158/0x370
[  894.429705][T22254]  netlink_sendmsg+0x820/0xdd0
[  894.429727][T22254]  ? __pfx_netlink_sendmsg+0x10/0x10
[  894.429748][T22254]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  894.429777][T22254]  ____sys_sendmsg+0xa98/0xc70
[  894.429802][T22254]  ? __pfx_____sys_sendmsg+0x10/0x10
[  894.429821][T22254]  ? get_compat_msghdr+0x11a/0x170
[  894.429858][T22254]  ___sys_sendmsg+0x134/0x1d0
[  894.429878][T22254]  ? __pfx____sys_sendmsg+0x10/0x10
[  894.429906][T22254]  ? find_held_lock+0x2b/0x80
[  894.429940][T22254]  __sys_sendmsg+0x16d/0x220
[  894.429959][T22254]  ? __pfx___sys_sendmsg+0x10/0x10
[  894.429985][T22254]  ? rcu_is_watching+0x12/0xc0
[  894.430008][T22254]  __do_fast_syscall_32+0x7c/0x300
[  894.430032][T22254]  do_fast_syscall_32+0x32/0x80
[  894.430053][T22254]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  894.430073][T22254] RIP: 0023:0xf7f91579
[  894.430087][T22254] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  894.430102][T22254] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  894.430121][T22254] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800005c0
[  894.430131][T22254] RDX: 000000000000c800 RSI: 0000000000000000 RDI: 0000000000000000
[  894.430141][T22254] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  894.430151][T22254] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  894.430161][T22254] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  894.430185][T22254]  </TASK>
[  894.504209][    C3] vkms_vblank_simulate: vblank timer overrun
[  894.533964][T22257] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4337'.
[  894.541043][T22257] SET target dimension over the limit!
[  894.554138][T22247] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  894.559741][T22257] bridge0: port 3(erspan0) entered blocking state
[  894.563630][T22257] bridge0: port 3(erspan0) entered disabled state
[  894.570352][T22257] erspan0: entered allmulticast mode
[  894.574439][T22257] erspan0: entered promiscuous mode
[  894.577147][T22257] bridge0: port 3(erspan0) entered blocking state
[  894.579958][T22257] bridge0: port 3(erspan0) entered forwarding state
[  895.291194][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  895.646822][T21410] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  895.650281][T21410] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  895.771616][T22300] tmpfs: Bad value for 'size'
[  896.340845][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  896.520193][T22310] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4355'.
[  896.789478][T22322] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4360'.
[  896.800822][ T3246] vhci_hcd: vhci_device speed not set
[  897.063409][T22328] netlink: zone id is out of range
[  897.370844][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  897.821477][T22325] orangefs_mount: mount request failed with -4
[  897.869197][T22343] netlink: 6 bytes leftover after parsing attributes in process `syz.3.4365'.
[  897.876254][T22343] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  898.290750][ T3246] usb 6-1: new full-speed USB device number 49 using dummy_hcd
[  898.410806][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  898.442282][ T3246] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 102, changing to 4
[  898.446625][ T3246] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 12078, setting to 1023
[  898.451190][ T3246] usb 6-1: config 0 interface 0 has no altsetting 0
[  898.455835][ T3246] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  898.459592][ T3246] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  898.463176][ T3246] usb 6-1: Product: syz
[  898.465008][ T3246] usb 6-1: Manufacturer: syz
[  898.466948][ T3246] usb 6-1: SerialNumber: syz
[  898.470326][ T3246] usb 6-1: config 0 descriptor??
[  898.475265][ T3246] usb 6-1: selecting invalid altsetting 0
[  898.675643][T22358] usb 6-1: cannot submit urb 0, error -2: endpoint not enabled
[  898.679857][ T3246] usb 6-1: USB disconnect, device number 49
[  899.360577][T22372] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4375'.
[  899.373572][T22379] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4378'.
[  899.393287][T22379] 8021q: adding VLAN 0 to HW filter on device bond3
[  899.411964][T22379] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  899.420500][T22379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4378'.
[  899.450950][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  899.570408][T22379] bond3 (unregistering): (slave gretap1): Releasing backup interface
[  899.583191][T22379] bond3 (unregistering): Released all slaves
[  899.722015][T22388] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4381'.
[  900.490854][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  901.050798][ T5984] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[  901.060312][T22411] FAULT_INJECTION: forcing a failure.
[  901.060312][T22411] name failslab, interval 1, probability 0, space 0, times 0
[  901.064509][T22411] CPU: 2 UID: 0 PID: 22411 Comm: syz.0.4386 Not tainted syzkaller #0 PREEMPT(full) 
[  901.064524][T22411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  901.064531][T22411] Call Trace:
[  901.064535][T22411]  <TASK>
[  901.064553][T22411]  dump_stack_lvl+0x16c/0x1f0
[  901.064570][T22411]  should_fail_ex+0x512/0x640
[  901.064587][T22411]  ? __kmalloc_cache_noprof+0x5f/0x780
[  901.064607][T22411]  should_failslab+0xc2/0x120
[  901.064622][T22411]  __kmalloc_cache_noprof+0x72/0x780
[  901.064639][T22411]  ? drm_mode_duplicate+0x47/0x200
[  901.064655][T22411]  ? drm_mode_duplicate+0x47/0x200
[  901.064666][T22411]  drm_mode_duplicate+0x47/0x200
[  901.064679][T22411]  drm_add_modes_noedid+0x167/0x200
[  901.064699][T22411]  vkms_conn_get_modes+0x20/0x40
[  901.064711][T22411]  drm_helper_probe_single_connector_modes+0x574/0x16d0
[  901.064727][T22411]  ? rcu_is_watching+0x12/0xc0
[  901.064740][T22411]  ? trace_contention_end+0xdd/0x130
[  901.064756][T22411]  ? __pfx_drm_helper_probe_single_connector_modes+0x10/0x10
[  901.064777][T22411]  ? drm_is_current_master+0x2c/0x40
[  901.064795][T22411]  ? __pfx_drm_helper_probe_single_connector_modes+0x10/0x10
[  901.064808][T22411]  drm_mode_getconnector+0x727/0x14d0
[  901.064824][T22411]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  901.064840][T22411]  ? drm_dev_exit+0x41/0x60
[  901.064856][T22411]  drm_ioctl_kernel+0x1f4/0x3e0
[  901.064869][T22411]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  901.064881][T22411]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  901.064899][T22411]  drm_ioctl+0x5c9/0xc30
[  901.064914][T22411]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  901.064926][T22411]  ? __pfx_drm_ioctl+0x10/0x10
[  901.064950][T22411]  drm_compat_ioctl+0x327/0x460
[  901.064968][T22411]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  901.064985][T22411]  __ia32_compat_sys_ioctl+0x242/0x370
[  901.065002][T22411]  __do_fast_syscall_32+0x7c/0x300
[  901.065017][T22411]  do_fast_syscall_32+0x32/0x80
[  901.065030][T22411]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  901.065043][T22411] RIP: 0023:0xf70ad579
[  901.065063][T22411] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  901.065074][T22411] RSP: 002b:00000000f547c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  901.065085][T22411] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000c05064a7
[  901.065092][T22411] RDX: 0000000080000500 RSI: 0000000000000000 RDI: 0000000000000000
[  901.065098][T22411] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  901.065104][T22411] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  901.065110][T22411] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  901.065124][T22411]  </TASK>
[  901.155198][    C2] hpet_rtc_timer_reinit: 2 callbacks suppressed
[  901.155208][    C2] hpet: Lost 4 RTC interrupts
[  901.204091][ T5984] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  901.207892][ T5984] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  901.212514][ T5984] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  901.216398][ T5984] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  901.221712][ T5984] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  901.227984][ T5984] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  901.232189][ T5984] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  901.235679][ T5984] usb 6-1: Product: syz
[  901.237595][ T5984] usb 6-1: Manufacturer: syz
[  901.246459][ T5984] cdc_wdm 6-1:1.0: skipping garbage
[  901.249023][ T5984] cdc_wdm 6-1:1.0: skipping garbage
[  901.255171][ T5984] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  901.258062][ T5984] cdc_wdm 6-1:1.0: Unknown control protocol
[  901.530871][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  901.560119][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  901.562567][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  901.565486][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  901.568052][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  901.571288][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  901.573911][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  901.576705][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  901.579415][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  901.584751][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  901.587350][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  901.589922][T12728] usb 6-1: USB disconnect, device number 50
[  901.592526][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  901.592542][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  901.592553][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  901.945283][T22418] block nbd0: NBD_DISCONNECT
[  902.570886][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  903.610946][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  904.085035][T22451] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  904.586590][T22467] fuse: Bad value for 'fd'
[  904.650892][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  905.452541][T22473] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4405'.
[  905.700793][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  905.998156][T22476] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  906.000140][T22476] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  906.002858][T22476] vhci_hcd vhci_hcd.0: Device attached
[  906.260923][T12728] usb 41-1: new high-speed USB device number 5 using vhci_hcd
[  906.294452][T22481] bond1: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  906.327199][T22481] bond1 (unregistering): Released all slaves
[  906.419490][T22477] vhci_hcd: connection reset by peer
[  906.423919][T21411] vhci_hcd: stop threads
[  906.425370][T21411] vhci_hcd: release socket
[  906.427672][T21411] vhci_hcd: disconnect device
[  906.731070][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  906.837002][T22488] netlink: 64 bytes leftover after parsing attributes in process `syz.1.4408'.
[  906.887702][T22495] tunl0: entered promiscuous mode
[  906.951891][T22494] x_tables: ip_tables: osf match: only valid for protocol 6
[  906.964606][T22494] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4409'.
[  907.095311][T22494] hsr_slave_1 (unregistering): left promiscuous mode
[  907.770900][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  907.815344][T22516] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4417'.
[  907.822584][T22518] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4416'.
[  907.826593][T22518] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4416'.
[  907.830431][T22518] netlink: 'syz.3.4416': attribute type 14 has an invalid length.
[  907.849137][T22518] sit0: entered promiscuous mode
[  907.857254][T22518] netlink: 'syz.3.4416': attribute type 1 has an invalid length.
[  907.860530][T22518] netlink: 1 bytes leftover after parsing attributes in process `syz.3.4416'.
[  907.930229][T22523] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4420'.
[  908.008155][T22521] pim6reg1: entered promiscuous mode
[  908.010029][T22521] pim6reg1: entered allmulticast mode
[  908.220210][T22537] tunl0: entered promiscuous mode
[  908.259707][T22540] FAULT_INJECTION: forcing a failure.
[  908.259707][T22540] name failslab, interval 1, probability 0, space 0, times 0
[  908.264116][T22540] CPU: 0 UID: 0 PID: 22540 Comm: syz.2.4424 Not tainted syzkaller #0 PREEMPT(full) 
[  908.264130][T22540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  908.264136][T22540] Call Trace:
[  908.264140][T22540]  <TASK>
[  908.264144][T22540]  dump_stack_lvl+0x16c/0x1f0
[  908.264161][T22540]  should_fail_ex+0x512/0x640
[  908.264178][T22540]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  908.264191][T22540]  should_failslab+0xc2/0x120
[  908.264206][T22540]  kmem_cache_alloc_node_noprof+0x78/0x770
[  908.264217][T22540]  ? __alloc_skb+0x2b2/0x380
[  908.264236][T22540]  ? __alloc_skb+0x2b2/0x380
[  908.264251][T22540]  __alloc_skb+0x2b2/0x380
[  908.264266][T22540]  ? __pfx___alloc_skb+0x10/0x10
[  908.264288][T22540]  netlink_dump+0x19b/0xd30
[  908.264300][T22540]  ? __pfx_netlink_dump+0x10/0x10
[  908.264310][T22540]  ? pause_parse_request+0xea/0x170
[  908.264325][T22540]  ? __pfx_pause_parse_request+0x10/0x10
[  908.264350][T22540]  ? __pfx_ethnl_default_start+0x10/0x10
[  908.264372][T22540]  ? genl_start+0x67f/0x980
[  908.264392][T22540]  __netlink_dump_start+0x6d6/0x990
[  908.264414][T22540]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  908.264436][T22540]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  908.264461][T22540]  ? __pfx_genl_get_cmd+0x10/0x10
[  908.264475][T22540]  ? __pfx_genl_start+0x10/0x10
[  908.264491][T22540]  ? __pfx_genl_dumpit+0x10/0x10
[  908.264508][T22540]  ? __pfx_genl_done+0x10/0x10
[  908.264528][T22540]  ? ____sys_sendmsg+0xa98/0xc70
[  908.264549][T22540]  ? ___sys_sendmsg+0x134/0x1d0
[  908.264562][T22540]  ? __radix_tree_lookup+0x21f/0x2c0
[  908.264584][T22540]  genl_rcv_msg+0x46e/0x800
[  908.264599][T22540]  ? __pfx_genl_rcv_msg+0x10/0x10
[  908.264612][T22540]  ? __pfx_ethnl_default_start+0x10/0x10
[  908.264627][T22540]  ? __pfx_ethnl_default_dumpit+0x10/0x10
[  908.264649][T22540]  ? __pfx_ethnl_default_done+0x10/0x10
[  908.264666][T22540]  ? __lock_acquire+0x622/0x1c90
[  908.264684][T22540]  netlink_rcv_skb+0x158/0x420
[  908.264694][T22540]  ? __pfx_genl_rcv_msg+0x10/0x10
[  908.264708][T22540]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  908.264725][T22540]  ? netlink_deliver_tap+0x1ae/0xd30
[  908.264737][T22540]  genl_rcv+0x28/0x40
[  908.264748][T22540]  netlink_unicast+0x5aa/0x870
[  908.264761][T22540]  ? __pfx_netlink_unicast+0x10/0x10
[  908.264777][T22540]  netlink_sendmsg+0x8c8/0xdd0
[  908.264790][T22540]  ? __pfx_netlink_sendmsg+0x10/0x10
[  908.264803][T22540]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  908.264821][T22540]  ____sys_sendmsg+0xa98/0xc70
[  908.264835][T22540]  ? __pfx_____sys_sendmsg+0x10/0x10
[  908.264848][T22540]  ? get_compat_msghdr+0x11a/0x170
[  908.264872][T22540]  ___sys_sendmsg+0x134/0x1d0
[  908.264882][T22540]  ? __pfx____sys_sendmsg+0x10/0x10
[  908.264899][T22540]  ? find_held_lock+0x2b/0x80
[  908.264919][T22540]  __sys_sendmsg+0x16d/0x220
[  908.264929][T22540]  ? __pfx___sys_sendmsg+0x10/0x10
[  908.264945][T22540]  ? rcu_is_watching+0x12/0xc0
[  908.264958][T22540]  __do_fast_syscall_32+0x7c/0x300
[  908.264973][T22540]  do_fast_syscall_32+0x32/0x80
[  908.264986][T22540]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  908.264999][T22540] RIP: 0023:0xf7f91579
[  908.265008][T22540] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  908.265018][T22540] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  908.265028][T22540] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000440
[  908.265035][T22540] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  908.265041][T22540] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  908.265047][T22540] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  908.265053][T22540] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  908.265066][T22540]  </TASK>
[  908.811033][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  908.858918][T22553] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4428'.
[  909.813208][T21411] Bluetooth: hci1: Frame reassembly failed (-84)
[  909.851230][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  909.873025][T22566] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  909.874873][T22566] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  909.877186][T22566] vhci_hcd vhci_hcd.0: Device attached
[  910.154737][ T6007] usb 40-1: SetAddress Request (22) to port 0
[  910.179818][T22579] netlink: 'syz.2.4434': attribute type 1 has an invalid length.
[  910.182560][T22579] netlink: 'syz.2.4434': attribute type 3 has an invalid length.
[  910.184990][T22579] netlink: 224 bytes leftover after parsing attributes in process `syz.2.4434'.
[  910.190573][ T6007] usb 40-1: new SuperSpeed USB device number 22 using vhci_hcd
[  910.567610][T22567] vhci_hcd: connection reset by peer
[  910.570063][ T1146] vhci_hcd: stop threads
[  910.572189][ T1146] vhci_hcd: release socket
[  910.574095][ T1146] vhci_hcd: disconnect device
[  910.890819][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  910.963402][T22584] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4436'.
[  910.970382][T22584] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  911.360751][T12728] vhci_hcd: vhci_device speed not set
[  911.777984][T22590] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4439'.
[  911.790611][T22601] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  911.792692][T22601] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  911.802381][   T40] audit: type=1326 audit(2000000538.612:14712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.2.4440" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x0
[  911.802918][T22601] vhci_hcd vhci_hcd.0: Device attached
[  911.850828][T16152] Bluetooth: hci1: Entering manufacturer mode failed (-110)
[  911.853272][T15406] Bluetooth: hci1: command 0xfc11 tx timeout
[  911.941249][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  911.954180][T22606] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4442'.
[  911.959261][T22606] netlink: 'syz.0.4442': attribute type 1 has an invalid length.
[  911.991707][T22606] 8021q: adding VLAN 0 to HW filter on device bond3
[  912.026705][T22606] netlink: 'syz.0.4442': attribute type 15 has an invalid length.
[  912.040179][T22602] vhci_hcd: connection closed
[  912.040449][ T1146] vhci_hcd: stop threads
[  912.050760][ T1146] vhci_hcd: release socket
[  912.052343][ T1146] vhci_hcd: disconnect device
[  912.214015][T22616] netlink: 6 bytes leftover after parsing attributes in process `syz.3.4446'.
[  912.218339][T22616] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  912.328989][T22620] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4447'.
[  912.340148][T22620] FAT-fs (nbd3): unable to read boot sector
[  912.681896][T10959] usb usb42-port1: attempt power cycle
[  912.717724][T22635] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4453'.
[  912.778987][T22640] raw_sendmsg: syz.0.4454 forgot to set AF_INET. Fix it!
[  912.799541][T22640] random: crng reseeded on system resumption
[  912.878442][T22642] fuse: Bad value for 'fd'
[  912.893180][T22644] tunl0: entered promiscuous mode
[  912.916104][T22646] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4456'.
[  912.922677][T22646] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  912.970981][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  913.279981][T10959] usb usb42-port1: unable to enumerate USB device
[  914.010930][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  914.047473][T22672] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4465'.
[  914.055936][T22672] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  914.126182][T22676] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4467'.
[  914.730852][T10959] usb 6-1: new full-speed USB device number 51 using dummy_hcd
[  914.888161][T10959] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  914.893352][T10959] usb 6-1: config 0 has no interfaces?
[  914.895817][T10959] usb 6-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  914.900083][T10959] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  914.912050][T10959] usb 6-1: config 0 descriptor??
[  915.050799][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  915.293182][ T6007] usb 40-1: device descriptor read/8, error -110
[  915.314333][T22717] netlink: 6 bytes leftover after parsing attributes in process `syz.3.4475'.
[  915.319059][T22717] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  915.415588][T10959] usb 6-1: string descriptor 0 read error: -71
[  915.529449][T10959] usb 6-1: USB disconnect, device number 51
[  915.681321][ T6007] usb usb40-port1: attempt power cycle
[  916.090843][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  916.257245][ T6007] usb usb40-port1: unable to enumerate USB device
[  916.973680][T22746] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4483'.
[  917.130850][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  917.143937][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  917.160848][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  917.288342][T22752] fuse: Bad value for 'fd'
[  917.334841][T22753] FAULT_INJECTION: forcing a failure.
[  917.334841][T22753] name failslab, interval 1, probability 0, space 0, times 0
[  917.340126][T22753] CPU: 2 UID: 0 PID: 22753 Comm: syz.3.4484 Not tainted syzkaller #0 PREEMPT(full) 
[  917.340161][T22753] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  917.340171][T22753] Call Trace:
[  917.340177][T22753]  <TASK>
[  917.340184][T22753]  dump_stack_lvl+0x16c/0x1f0
[  917.340207][T22753]  should_fail_ex+0x512/0x640
[  917.340231][T22753]  ? __kmalloc_cache_noprof+0x5f/0x780
[  917.340273][T22753]  should_failslab+0xc2/0x120
[  917.340304][T22753]  __kmalloc_cache_noprof+0x72/0x780
[  917.340330][T22753]  ? drm_mode_duplicate+0x47/0x200
[  917.340353][T22753]  ? drm_mode_duplicate+0x47/0x200
[  917.340370][T22753]  drm_mode_duplicate+0x47/0x200
[  917.340390][T22753]  drm_add_modes_noedid+0x167/0x200
[  917.340420][T22753]  vkms_conn_get_modes+0x20/0x40
[  917.340439][T22753]  drm_helper_probe_single_connector_modes+0x574/0x16d0
[  917.340464][T22753]  ? rcu_is_watching+0x12/0xc0
[  917.340482][T22753]  ? trace_contention_end+0xdd/0x130
[  917.340506][T22753]  ? __pfx_drm_helper_probe_single_connector_modes+0x10/0x10
[  917.340540][T22753]  ? drm_is_current_master+0x2c/0x40
[  917.340569][T22753]  ? __pfx_drm_helper_probe_single_connector_modes+0x10/0x10
[  917.340592][T22753]  drm_mode_getconnector+0x727/0x14d0
[  917.340618][T22753]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  917.340645][T22753]  ? drm_dev_exit+0x41/0x60
[  917.340671][T22753]  drm_ioctl_kernel+0x1f4/0x3e0
[  917.340691][T22753]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  917.340711][T22753]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  917.340740][T22753]  drm_ioctl+0x5c9/0xc30
[  917.340764][T22753]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  917.340784][T22753]  ? __pfx_drm_ioctl+0x10/0x10
[  917.340824][T22753]  drm_compat_ioctl+0x327/0x460
[  917.340852][T22753]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  917.340879][T22753]  __ia32_compat_sys_ioctl+0x242/0x370
[  917.340909][T22753]  __do_fast_syscall_32+0x7c/0x300
[  917.340932][T22753]  do_fast_syscall_32+0x32/0x80
[  917.340952][T22753]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  917.340972][T22753] RIP: 0023:0xf70cd579
[  917.340985][T22753] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  917.341000][T22753] RSP: 002b:00000000f549c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  917.341017][T22753] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00000000c05064a7
[  917.341027][T22753] RDX: 0000000080000500 RSI: 0000000000000000 RDI: 0000000000000000
[  917.341036][T22753] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  917.341045][T22753] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  917.341056][T22753] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  917.341077][T22753]  </TASK>
[  917.444868][    C2] hpet: Lost 6 RTC interrupts
[  917.901593][T22759] netlink: 6 bytes leftover after parsing attributes in process `syz.0.4487'.
[  917.906909][T22759] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  918.170809][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  918.882392][T22783] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4494'.
[  919.136125][T22781] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  919.138515][T22781] overlayfs: failed to set xattr on upper
[  919.140328][T22781] overlayfs: ...falling back to redirect_dir=nofollow.
[  919.142569][T22781] overlayfs: ...falling back to index=off.
[  919.144504][T22781] overlayfs: ...falling back to uuid=null.
[  919.155848][T22781] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  919.210785][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  919.320440][T22797] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4498'.
[  919.328070][T22797] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4498'.
[  919.366872][T22802] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4499'.
[  919.371870][T22802] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  919.485270][T22799] fuse: Bad value for 'fd'
[  919.754289][ T5984] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  919.904064][ T5984] usb 7-1: config 0 has no interfaces?
[  919.907547][ T5984] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  919.910591][ T5984] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  919.913480][ T5984] usb 7-1: Product: syz
[  919.915064][ T5984] usb 7-1: Manufacturer: syz
[  919.916841][ T5984] usb 7-1: SerialNumber: syz
[  919.925001][ T5984] usb 7-1: config 0 descriptor??
[  919.950245][T22812] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4503'.
[  920.079145][T22819] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4505'.
[  920.082339][T22819] bridge_slave_1: left allmulticast mode
[  920.084151][T22819] bridge_slave_1: left promiscuous mode
[  920.086063][T22819] bridge0: port 2(bridge_slave_1) entered disabled state
[  920.090091][T22819] bridge_slave_0: left allmulticast mode
[  920.092461][T22819] bridge_slave_0: left promiscuous mode
[  920.094330][T22819] bridge0: port 1(bridge_slave_0) entered disabled state
[  920.250765][    C0] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  920.331890][T10959] usb 7-1: USB disconnect, device number 34
[  920.885995][T22828] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4508'.
[  920.889032][T22828] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  920.960069][T22835] FAULT_INJECTION: forcing a failure.
[  920.960069][T22835] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  920.965361][T22835] CPU: 3 UID: 0 PID: 22835 Comm: syz.2.4509 Not tainted syzkaller #0 PREEMPT(full) 
[  920.965386][T22835] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  920.965394][T22835] Call Trace:
[  920.965398][T22835]  <TASK>
[  920.965403][T22835]  dump_stack_lvl+0x16c/0x1f0
[  920.965419][T22835]  should_fail_ex+0x512/0x640
[  920.965438][T22835]  _copy_from_user+0x2e/0xd0
[  920.965456][T22835]  futex_parse_waitv+0x101/0x520
[  920.965472][T22835]  ? __pfx_futex_wake_mark+0x10/0x10
[  920.965489][T22835]  ? __pfx_futex_parse_waitv+0x10/0x10
[  920.965503][T22835]  ? rcu_is_watching+0x12/0xc0
[  920.965515][T22835]  ? __kmalloc_noprof+0x34f/0x880
[  920.965532][T22835]  ? __do_sys_futex_waitv+0x221/0x2c0
[  920.965549][T22835]  __do_sys_futex_waitv+0x245/0x2c0
[  920.965564][T22835]  ? __pfx___do_sys_futex_waitv+0x10/0x10
[  920.965591][T22835]  do_int80_emulation+0x104/0x3e0
[  920.965607][T22835]  asm_int80_emulation+0x1a/0x20
[  920.965618][T22835] RIP: 0023:0xf7f91579
[  920.965626][T22835] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  920.965636][T22835] RSP: 002b:00000000f546555c EFLAGS: 00000296 ORIG_RAX: 00000000000001c1
[  920.965647][T22835] RAX: ffffffffffffffda RBX: 0000000080001080 RCX: 0000000000000001
[  920.965653][T22835] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  920.965660][T22835] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  920.965666][T22835] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  920.965672][T22835] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  920.965685][T22835]  </TASK>
[  921.018662][T22839] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4512'.
[  921.255830][T22849] netlink: 'syz.3.4515': attribute type 21 has an invalid length.
[  921.259276][T22849] netlink: 'syz.3.4515': attribute type 5 has an invalid length.
[  921.684212][T22856] binder: 22855:22856 unknown command 0
[  921.685997][T22856] binder: 22855:22856 ioctl c0306201 800001c0 returned -22
[  921.718246][T22858] FAULT_INJECTION: forcing a failure.
[  921.718246][T22858] name failslab, interval 1, probability 0, space 0, times 0
[  921.722396][T22858] CPU: 3 UID: 0 PID: 22858 Comm: syz.1.4518 Not tainted syzkaller #0 PREEMPT(full) 
[  921.722411][T22858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  921.722418][T22858] Call Trace:
[  921.722422][T22858]  <TASK>
[  921.722427][T22858]  dump_stack_lvl+0x16c/0x1f0
[  921.722442][T22858]  should_fail_ex+0x512/0x640
[  921.722459][T22858]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  921.722472][T22858]  should_failslab+0xc2/0x120
[  921.722486][T22858]  kmem_cache_alloc_node_noprof+0x78/0x770
[  921.722497][T22858]  ? __alloc_skb+0x2b2/0x380
[  921.722516][T22858]  ? __alloc_skb+0x2b2/0x380
[  921.722531][T22858]  ? __pfx_netlink_insert+0x10/0x10
[  921.722541][T22858]  __alloc_skb+0x2b2/0x380
[  921.722557][T22858]  ? __pfx___alloc_skb+0x10/0x10
[  921.722578][T22858]  ? netlink_autobind.isra.0+0x158/0x370
[  921.722593][T22858]  netlink_alloc_large_skb+0x69/0x140
[  921.722605][T22858]  netlink_sendmsg+0x698/0xdd0
[  921.722619][T22858]  ? __pfx_netlink_sendmsg+0x10/0x10
[  921.722631][T22858]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  921.722649][T22858]  ____sys_sendmsg+0xa98/0xc70
[  921.722664][T22858]  ? __pfx_____sys_sendmsg+0x10/0x10
[  921.722676][T22858]  ? get_compat_msghdr+0x11a/0x170
[  921.722699][T22858]  ___sys_sendmsg+0x134/0x1d0
[  921.722710][T22858]  ? __pfx____sys_sendmsg+0x10/0x10
[  921.722726][T22858]  ? find_held_lock+0x2b/0x80
[  921.722745][T22858]  __sys_sendmsg+0x16d/0x220
[  921.722756][T22858]  ? __pfx___sys_sendmsg+0x10/0x10
[  921.722771][T22858]  ? rcu_is_watching+0x12/0xc0
[  921.722785][T22858]  __do_fast_syscall_32+0x7c/0x300
[  921.722799][T22858]  do_fast_syscall_32+0x32/0x80
[  921.722812][T22858]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  921.722825][T22858] RIP: 0023:0xf704d579
[  921.722833][T22858] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  921.722844][T22858] RSP: 002b:00000000f543d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  921.722854][T22858] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  921.722861][T22858] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  921.722867][T22858] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  921.722873][T22858] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  921.722879][T22858] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  921.722892][T22858]  </TASK>
[  921.835201][T22862] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  921.840151][T22862] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  921.898838][T22867] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  921.995981][T22871] __nla_validate_parse: 4 callbacks suppressed
[  921.995992][T22871] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4522'.
[  922.010145][T22873] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4523'.
[  923.439476][T22898] fuse: Bad value for 'fd'
[  923.469319][T22902] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4533'.
[  923.716565][T22912] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4537'.
[  924.173070][T22927] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4542'.
[  924.780707][  T841] usb 7-1: new full-speed USB device number 35 using dummy_hcd
[  924.966627][  T841] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  924.987983][  T841] usb 7-1: config 0 interface 0 has no altsetting 0
[  925.007277][  T841] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  925.011499][  T841] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  925.018473][  T841] usb 7-1: Product: syz
[  925.020341][  T841] usb 7-1: Manufacturer: syz
[  925.035011][  T841] usb 7-1: SerialNumber: syz
[  925.042097][  T841] usb 7-1: config 0 descriptor??
[  925.046467][T22955] fuse: Bad value for 'fd'
[  925.052758][  T841] usb 7-1: selecting invalid altsetting 0
[  925.261754][T22937] usb 7-1: cannot submit urb 0, error -2: endpoint not enabled
[  925.282194][T10959] usb 7-1: USB disconnect, device number 35
[  925.437921][T22965] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  925.444152][T22965] syzkaller0: entered promiscuous mode
[  925.446224][T22965] syzkaller0: entered allmulticast mode
[  925.467613][T22965] tipc: Resetting bearer <eth:syzkaller0>
[  925.477840][T22964] tipc: Resetting bearer <eth:syzkaller0>
[  925.493107][T22964] tipc: Disabling bearer <eth:syzkaller0>
[  925.583211][T22967] FAULT_INJECTION: forcing a failure.
[  925.583211][T22967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  925.587841][T22967] CPU: 1 UID: 0 PID: 22967 Comm: syz.1.4555 Not tainted syzkaller #0 PREEMPT(full) 
[  925.587856][T22967] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  925.587862][T22967] Call Trace:
[  925.587866][T22967]  <TASK>
[  925.587871][T22967]  dump_stack_lvl+0x16c/0x1f0
[  925.587887][T22967]  should_fail_ex+0x512/0x640
[  925.587906][T22967]  _copy_to_user+0x32/0xd0
[  925.587924][T22967]  simple_read_from_buffer+0xcb/0x170
[  925.587943][T22967]  proc_fail_nth_read+0x197/0x240
[  925.587955][T22967]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  925.587967][T22967]  ? rw_verify_area+0xcf/0x6c0
[  925.587977][T22967]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  925.587988][T22967]  vfs_read+0x1e4/0xcf0
[  925.588002][T22967]  ? __pfx_vfs_read+0x10/0x10
[  925.588012][T22967]  ? find_held_lock+0x2b/0x80
[  925.588027][T22967]  ? __fget_files+0x20e/0x3c0
[  925.588042][T22967]  ksys_read+0x12a/0x250
[  925.588053][T22967]  ? __pfx_ksys_read+0x10/0x10
[  925.588064][T22967]  ? __do_sys_msync+0x326/0x5c0
[  925.588075][T22967]  ? rcu_is_watching+0x12/0xc0
[  925.588089][T22967]  __do_fast_syscall_32+0x7c/0x300
[  925.588103][T22967]  do_fast_syscall_32+0x32/0x80
[  925.588116][T22967]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  925.588129][T22967] RIP: 0023:0xf704d579
[  925.588138][T22967] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  925.588148][T22967] RSP: 002b:00000000f543d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  925.588159][T22967] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f543d620
[  925.588165][T22967] RDX: 000000000000000f RSI: 00000000f73e6ff4 RDI: 0000000000000000
[  925.588171][T22967] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  925.588178][T22967] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  925.588184][T22967] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  925.588198][T22967]  </TASK>
[  925.610945][ T6007] usb 8-1: new full-speed USB device number 29 using dummy_hcd
[  925.611703][    C1] vkms_vblank_simulate: vblank timer overrun
[  925.835424][ T6007] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  925.841208][ T6007] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  925.844006][ T6007] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[  925.848110][ T6007] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  925.851426][ T6007] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  925.859110][T22963] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  925.863603][ T6007] hub 8-1:1.0: bad descriptor, ignoring hub
[  925.865596][ T6007] hub 8-1:1.0: probe with driver hub failed with error -5
[  925.915344][T22978] netlink: 6 bytes leftover after parsing attributes in process `syz.0.4560'.
[  925.920103][T22978] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  926.085427][T22985] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4562'.
[  926.143665][ T6007] cdc_wdm 8-1:1.0: skipping garbage
[  926.145856][ T6007] cdc_wdm 8-1:1.0: skipping garbage
[  926.149626][ T6007] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  926.151693][ T6007] cdc_wdm 8-1:1.0: Unknown control protocol
[  926.181533][ T6007] usb 8-1: USB disconnect, device number 29
[  926.363696][T22991] netlink: 'syz.2.4564': attribute type 12 has an invalid length.
[  926.538920][T22997] overlayfs: failed to resolve './file1': -2
[  926.832626][T23009] fuse: Bad value for 'fd'
[  927.008074][T23013] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4570'.
[  927.013089][T23013] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  928.020771][ T6021] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[  928.182506][ T6021] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  928.186339][ T6021] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  928.190731][ T6021] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  928.198077][ T6021] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  928.202269][ T6021] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  928.205634][ T6021] usb 8-1: Product: syz
[  928.207306][ T6021] usb 8-1: Manufacturer: syz
[  928.209089][ T6021] usb 8-1: SerialNumber: syz
[  928.426437][ T6021] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 30 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  928.630611][ T6028] usb 8-1: USB disconnect, device number 30
[  928.636839][ T6028] usblp0: removed
[  929.045877][T23040] bridge0: port 3(erspan0) entered disabled state
[  929.079790][T23041] usb usb5: usbfs: process 23041 (syz.2.4578) did not claim interface 0 before use
[  929.086808][T23040] bridge0: port 2(bridge_slave_1) entered disabled state
[  929.089363][T23040] bridge0: port 1(bridge_slave_0) entered disabled state
[  929.242174][T23040] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  929.257436][T23040] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  929.347411][T23049] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  929.446882][T21411] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  929.450408][T21411] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  929.454571][ T1146] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  929.457465][ T1146] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  929.600573][T23055] bond4: Unable to set up delay as MII monitoring is disabled
[  929.606269][T23055] bond4 (unregistering): Released all slaves
[  929.777172][T23066] devtmpfs: Unknown parameter 'inode32'
[  929.785475][T23066] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4584'.
[  929.985092][T23078] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4589'.
[  929.991127][T23078] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  930.164339][T23090] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  930.166528][T23090] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  930.169005][T23090] vhci_hcd vhci_hcd.0: Device attached
[  930.173266][T23091] vhci_hcd: connection closed
[  930.173634][T21411] vhci_hcd: stop threads
[  930.177107][T21411] vhci_hcd: release socket
[  930.178860][T21411] vhci_hcd: disconnect device
[  930.228747][T23087] VFS: Warning: syz.2.4592 using old stat() call. Recompile your binary.
[  930.228969][T23097] netlink: zone id is out of range
[  930.235311][T23097] netlink: zone id is out of range
[  930.238166][T23097] netlink: zone id is out of range
[  930.240404][T23097] netlink: zone id is out of range
[  930.242800][T23097] netlink: set zone limit has 8 unknown bytes
[  930.378002][T23107] netlink: 'syz.2.4598': attribute type 1 has an invalid length.
[  930.400600][T23107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4598'.
[  930.495030][T23111] netlink: 6 bytes leftover after parsing attributes in process `syz.3.4599'.
[  930.499320][T23111] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  930.561064][  T841] usb 6-1: new full-speed USB device number 52 using dummy_hcd
[  930.726373][T23119] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4602'.
[  930.731708][  T841] usb 6-1: config 0 has an invalid descriptor of length 1, skipping remainder of the config
[  930.735919][  T841] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  930.742924][  T841] usb 6-1: New USB device found, idVendor=0403, idProduct=dafe, bcdDevice= 0.c4
[  930.745901][  T841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  930.748528][  T841] usb 6-1: Product: syz
[  930.749912][  T841] usb 6-1: Manufacturer: syz
[  930.755684][  T841] usb 6-1: SerialNumber: syz
[  930.758950][  T841] usb 6-1: config 0 descriptor??
[  930.912841][T23123] netlink: 64 bytes leftover after parsing attributes in process `syz.0.4603'.
[  930.964194][T23102] netlink: 'syz.1.4596': attribute type 10 has an invalid length.
[  930.969350][T23102] team0: Port device dummy0 added
[  930.974043][T23102] afs: Unknown parameter '¬ Étj'
[  931.004194][ T5984] usb 6-1: USB disconnect, device number 52
[  931.132865][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  931.639392][T23139] FAULT_INJECTION: forcing a failure.
[  931.639392][T23139] name failslab, interval 1, probability 0, space 0, times 0
[  931.644145][T23139] CPU: 1 UID: 0 PID: 23139 Comm: syz.3.4606 Not tainted syzkaller #0 PREEMPT(full) 
[  931.644165][T23139] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  931.644174][T23139] Call Trace:
[  931.644179][T23139]  <TASK>
[  931.644185][T23139]  dump_stack_lvl+0x16c/0x1f0
[  931.644205][T23139]  should_fail_ex+0x512/0x640
[  931.644225][T23139]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  931.644241][T23139]  should_failslab+0xc2/0x120
[  931.644259][T23139]  kmem_cache_alloc_noprof+0x75/0x6e0
[  931.644273][T23139]  ? ioctx_alloc+0x1a4/0x2120
[  931.644291][T23139]  ? ioctx_alloc+0x1a4/0x2120
[  931.644304][T23139]  ioctx_alloc+0x1a4/0x2120
[  931.644325][T23139]  ? find_held_lock+0x2b/0x80
[  931.644339][T23139]  ? __pfx_ioctx_alloc+0x10/0x10
[  931.644353][T23139]  ? __might_fault+0x13b/0x190
[  931.644371][T23139]  __ia32_compat_sys_io_setup+0xc8/0x210
[  931.644388][T23139]  __do_fast_syscall_32+0x7c/0x300
[  931.644406][T23139]  do_fast_syscall_32+0x32/0x80
[  931.644427][T23139]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  931.644443][T23139] RIP: 0023:0xf70cd579
[  931.644453][T23139] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  931.644467][T23139] RSP: 002b:00000000f547b55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f5
[  931.644480][T23139] RAX: ffffffffffffffda RBX: 000000000000fffe RCX: 0000000080000040
[  931.644489][T23139] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  931.644497][T23139] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  931.644505][T23139] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  931.644513][T23139] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  931.644532][T23139]  </TASK>
[  931.773715][T23143] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4609'.
[  931.777366][T23143] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  931.874266][T23150] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4611'.
[  931.877268][T23150] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  932.015268][T23155] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4612'.
[  932.391362][T23179] syzkaller1: entered promiscuous mode
[  932.393937][T23179] syzkaller1: entered allmulticast mode
[  932.399552][T23179] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4621'.
[  932.552994][T23184] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4623'.
[  933.174667][T23213] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4632'.
[  933.742531][T23244] fuse: Bad value for 'fd'
[  934.360844][ T6027] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  934.530756][ T6027] usb 7-1: Using ep0 maxpacket: 8
[  934.533898][ T6027] usb 7-1: config 0 has no interfaces?
[  934.536200][ T6027] usb 7-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  934.539140][ T6027] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  934.543400][ T6027] usb 7-1: config 0 descriptor??
[  934.759569][T23256] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  934.762784][T23256] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  934.855194][ T6021] usb 7-1: USB disconnect, device number 36
[  935.495381][T23276] Process accounting resumed
[  935.669295][T23285] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4654'.
[  935.678317][T23285] macsec2: entered promiscuous mode
[  935.680526][T23285] team0: entered promiscuous mode
[  935.683724][T23285] macsec2: entered allmulticast mode
[  935.740976][T23285] team0: entered allmulticast mode
[  935.744133][T23285] team0: Device macsec2 is already an upper device of the team interface
[  935.767777][T23285] team0: left allmulticast mode
[  935.769892][T23285] team0: left promiscuous mode
[  935.828043][T23293] fuse: Bad value for 'fd'
[  935.920243][T23295] Cannot find del_set index 65533 as target
[  935.976037][T19984] udevd[19984]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory
[  937.073388][T23308] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  937.075618][T23308] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  937.078969][T23308] vhci_hcd vhci_hcd.0: Device attached
[  937.120862][T23325] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4664'.
[  937.123874][T23325] FAULT_INJECTION: forcing a failure.
[  937.123874][T23325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  937.130177][T23325] CPU: 0 UID: 0 PID: 23325 Comm: syz.2.4664 Not tainted syzkaller #0 PREEMPT(full) 
[  937.130199][T23325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  937.130210][T23325] Call Trace:
[  937.130217][T23325]  <TASK>
[  937.130224][T23325]  dump_stack_lvl+0x16c/0x1f0
[  937.130248][T23325]  should_fail_ex+0x512/0x640
[  937.130278][T23325]  _copy_to_user+0x32/0xd0
[  937.130306][T23325]  simple_read_from_buffer+0xcb/0x170
[  937.130343][T23325]  proc_fail_nth_read+0x197/0x240
[  937.130364][T23325]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  937.130385][T23325]  ? rw_verify_area+0xcf/0x6c0
[  937.130401][T23325]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  937.130420][T23325]  vfs_read+0x1e4/0xcf0
[  937.130443][T23325]  ? __pfx_vfs_read+0x10/0x10
[  937.130460][T23325]  ? find_held_lock+0x2b/0x80
[  937.130486][T23325]  ? __fget_files+0x20e/0x3c0
[  937.130511][T23325]  ksys_read+0x12a/0x250
[  937.130528][T23325]  ? __pfx_ksys_read+0x10/0x10
[  937.130548][T23325]  ? rcu_is_watching+0x12/0xc0
[  937.130588][T23325]  __do_fast_syscall_32+0x7c/0x300
[  937.130609][T23325]  do_fast_syscall_32+0x32/0x80
[  937.130643][T23325]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  937.130657][T23325] RIP: 0023:0xf7f91579
[  937.130666][T23325] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  937.130676][T23325] RSP: 002b:00000000f5486590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  937.130687][T23325] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5486620
[  937.130693][T23325] RDX: 000000000000000f RSI: 00000000f7426ff4 RDI: 0000000000000000
[  937.130700][T23325] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  937.130706][T23325] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  937.130712][T23325] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  937.130726][T23325]  </TASK>
[  937.193621][    C0] vkms_vblank_simulate: vblank timer overrun
[  937.400903][ T6021] usb 38-1: SetAddress Request (30) to port 0
[  937.402704][ T6021] usb 38-1: new SuperSpeed USB device number 30 using vhci_hcd
[  937.431895][T23315] vhci_hcd: connection reset by peer
[  937.433599][ T1150] vhci_hcd: stop threads
[  937.434792][ T1150] vhci_hcd: release socket
[  937.437920][ T1150] vhci_hcd: disconnect device
[  937.496681][T23344] fuse: Bad value for 'fd'
[  939.561301][T15406] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  939.572795][T15406] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  939.576452][T15406] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  939.579439][T15406] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  939.587576][T15406] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  939.630773][   T40] audit: type=1326 audit(2000000566.432:14713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  939.660835][   T40] audit: type=1326 audit(2000000566.432:14714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ad5a7 code=0x7ffc0000
[  939.669677][   T40] audit: type=1326 audit(2000000566.432:14715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  939.690767][   T40] audit: type=1326 audit(2000000566.432:14716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ad5a7 code=0x7ffc0000
[  939.700004][   T40] audit: type=1326 audit(2000000566.432:14717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  939.731119][   T40] audit: type=1326 audit(2000000566.432:14718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ad5a7 code=0x7ffc0000
[  939.740031][   T40] audit: type=1326 audit(2000000566.432:14719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  939.740474][T23378] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4679'.
[  939.792031][   T40] audit: type=1326 audit(2000000566.432:14720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ad5a7 code=0x7ffc0000
[  939.801675][   T40] audit: type=1326 audit(2000000566.432:14721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  939.813949][   T40] audit: type=1326 audit(2000000566.432:14722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23364 comm="syz.0.4675" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ad5a7 code=0x7ffc0000
[  939.925532][T23383] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4680'.
[  939.928794][T23383] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  940.284605][T23373] chnl_net:caif_netlink_parms(): no params data found
[  940.692184][T23373] bridge0: port 1(bridge_slave_0) entered blocking state
[  940.695842][T23373] bridge0: port 1(bridge_slave_0) entered disabled state
[  940.701320][T23373] bridge_slave_0: entered allmulticast mode
[  940.705428][T23373] bridge_slave_0: entered promiscuous mode
[  940.713571][T23373] bridge0: port 2(bridge_slave_1) entered blocking state
[  940.716836][T23373] bridge0: port 2(bridge_slave_1) entered disabled state
[  940.720944][T23373] bridge_slave_1: entered allmulticast mode
[  940.724626][T23373] bridge_slave_1: entered promiscuous mode
[  940.891964][T23373] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  940.905272][T23373] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  941.106415][T23412] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  941.244495][ T4037] dvmrp8 (unregistering): left allmulticast mode
[  941.282337][ T4037] team0: Port device bridge1 removed
[  941.411531][T23417] fuse: Bad value for 'fd'
[  941.438851][ T4037] bond0 (unregistering): Released all slaves
[  941.486377][T23373] team0: Port device team_slave_0 added
[  941.512210][T23373] team0: Port device team_slave_1 added
[  941.549943][ T4037] tipc: Disabling bearer <udp:s>
[  941.554079][ T4037] tipc: Left network mode
[  941.608207][T23373] batman_adv: batadv0: Adding interface: batadv_slave_0
[  941.610397][T23373] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  941.618687][T23373] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  941.623656][T23373] batman_adv: batadv0: Adding interface: batadv_slave_1
[  941.625969][T23373] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  941.637025][T23373] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  941.655713][T23427] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4689'.
[  941.659425][T23427] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  941.688760][T23425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4690'.
[  941.704841][T15406] Bluetooth: hci1: command tx timeout
[  941.738346][T23373] hsr_slave_0: entered promiscuous mode
[  941.742904][T23373] hsr_slave_1: entered promiscuous mode
[  941.745212][T23373] debugfs: 'hsr0' already exists in 'hsr'
[  941.747697][T23373] Cannot create hsr debugfs directory
[  942.323219][ T4037] hsr_slave_0: left promiscuous mode
[  942.325511][ T4037] hsr_slave_1: left promiscuous mode
[  942.490878][ T6021] usb 38-1: device descriptor read/8, error -110
[  942.901205][ T6021] usb usb38-port1: attempt power cycle
[  943.006282][T23458] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  943.009098][T23458] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  943.046063][T23458] vhci_hcd vhci_hcd.0: Device attached
[  943.068195][T23460] vhci_hcd: connection closed
[  943.068445][T21411] vhci_hcd: stop threads
[  943.071723][T21411] vhci_hcd: release socket
[  943.074307][T21411] vhci_hcd: disconnect device
[  943.483980][ T6021] usb usb38-port1: unable to enumerate USB device
[  943.771685][T15406] Bluetooth: hci1: command tx timeout
[  944.778720][T23480] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4699'.
[  944.784306][T23480] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  944.847091][T23490] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4703'.
[  945.512124][ T4037] IPVS: stop unused estimator thread 0...
[  945.592483][T23373] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  945.648999][T23373] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  945.702010][T23373] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  945.816367][T23373] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  945.870757][T15406] Bluetooth: hci1: command tx timeout
[  945.915341][T23373] 8021q: adding VLAN 0 to HW filter on device bond0
[  945.925466][T23373] 8021q: adding VLAN 0 to HW filter on device team0
[  945.930368][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[  945.932751][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[  945.952753][T21410] bridge0: port 2(bridge_slave_1) entered blocking state
[  945.954913][T21410] bridge0: port 2(bridge_slave_1) entered forwarding state
[  946.090570][T23373] 8021q: adding VLAN 0 to HW filter on device batadv0
[  946.110962][T10959] usb 7-1: new full-speed USB device number 37 using dummy_hcd
[  946.125801][T23546] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4709'.
[  946.171761][T23373] veth0_vlan: entered promiscuous mode
[  946.179568][T23373] veth1_vlan: entered promiscuous mode
[  946.203335][T23552] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4711'.
[  946.207141][T23552] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  946.220036][T23373] veth0_macvtap: entered promiscuous mode
[  946.230356][T23373] veth1_macvtap: entered promiscuous mode
[  946.246468][T23373] batman_adv: batadv0: Interface activated: batadv_slave_0
[  946.257831][T23373] batman_adv: batadv0: Interface activated: batadv_slave_1
[  946.262980][   T40] kauditd_printk_skb: 188 callbacks suppressed
[  946.262995][   T40] audit: type=1326 audit(2000000573.072:14911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.272689][T10959] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 102, changing to 4
[  946.278845][T10959] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 12078, setting to 1023
[  946.290763][T10959] usb 7-1: config 0 interface 0 has no altsetting 0
[  946.295041][   T40] audit: type=1326 audit(2000000573.082:14912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.303741][T10959] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  946.303765][T10959] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  946.303782][T10959] usb 7-1: Product: syz
[  946.303793][T10959] usb 7-1: Manufacturer: syz
[  946.303806][T10959] usb 7-1: SerialNumber: syz
[  946.308248][T10959] usb 7-1: config 0 descriptor??
[  946.310845][ T1146] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  946.319227][   T40] audit: type=1326 audit(2000000573.082:14913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.329428][ T1146] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  946.333314][   T40] audit: type=1326 audit(2000000573.082:14914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.333345][   T40] audit: type=1326 audit(2000000573.082:14915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.333365][   T40] audit: type=1326 audit(2000000573.082:14916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.333385][   T40] audit: type=1326 audit(2000000573.082:14917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.333405][   T40] audit: type=1326 audit(2000000573.082:14918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.333426][   T40] audit: type=1326 audit(2000000573.082:14919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.333446][   T40] audit: type=1326 audit(2000000573.082:14920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23555 comm="syz.1.4713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  946.392527][T10959] usb 7-1: selecting invalid altsetting 0
[  946.396739][T23558] 8021q: VLANs not supported on vxcan1
[  946.399773][ T1146] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  946.410877][ T1146] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  946.455452][T23559] lo speed is unknown, defaulting to 1000
[  946.466769][T23559] lo speed is unknown, defaulting to 1000
[  946.469544][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  946.474293][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  946.477958][T23559] lo speed is unknown, defaulting to 1000
[  946.489544][T23559] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  946.491750][T21411] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  946.495015][T21411] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  946.507351][T23559] lo speed is unknown, defaulting to 1000
[  946.511764][T23559] lo speed is unknown, defaulting to 1000
[  946.514579][T23559] lo speed is unknown, defaulting to 1000
[  946.517133][T23559] lo speed is unknown, defaulting to 1000
[  946.535812][T23532] usb 7-1: cannot submit urb 0, error -2: endpoint not enabled
[  946.541175][  T841] usb 7-1: USB disconnect, device number 37
[  947.118225][T23571] netlink: 204 bytes leftover after parsing attributes in process `syz.2.4716'.
[  947.304759][T23582] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4720'.
[  947.308060][T23582] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  947.656900][T23593] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4723'.
[  947.931496][T15406] Bluetooth: hci1: command tx timeout
[  948.452923][T23616] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4729'.
[  948.455795][T23616] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  948.607270][T23622] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4732'.
[  949.527391][T23642] netlink: 6 bytes leftover after parsing attributes in process `syz.0.4738'.
[  949.531852][T23642] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  951.029739][T23665] siw: device registration error -23
[  951.416563][T23673] netlink: 6 bytes leftover after parsing attributes in process `syz.1.4747'.
[  951.422382][T23673] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  951.706783][T23679] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  952.904588][T23688] fuse: Bad value for 'fd'
[  953.290212][T23694] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4753'.
[  953.481437][T23699] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4754'.
[  953.619641][T23706] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4757'.
[  953.623580][T23706] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  953.802795][T23711] overlayfs: failed to resolve './file2': -2
[  954.974499][T23716] 9pnet_fd: Insufficient options for proto=fd
[  955.993013][T23729] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4764'.
[  957.015919][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  957.015934][   T40] audit: type=1326 audit(2000000583.822:14928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23745 comm="syz.0.4767" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ad579 code=0x0
[  958.336942][T23774] fuse: Bad value for 'fd'
[  959.157076][T23788] lo speed is unknown, defaulting to 1000
[  960.203088][T23820] netlink: 6 bytes leftover after parsing attributes in process `syz.3.4790'.
[  960.208808][T23820] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  961.044207][T23845] fuse: Bad value for 'fd'
[  961.325101][T23851] netlink: 6 bytes leftover after parsing attributes in process `syz.0.4800'.
[  961.331557][T23851] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  961.965007][T23872] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4806'.
[  962.148232][T23879] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4808'.
[  962.359834][T23885] netlink: 6 bytes leftover after parsing attributes in process `syz.3.4810'.
[  962.367920][T23885] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  962.453714][T23891] blktrace: Concurrent blktraces are not allowed on sg0
[  963.895955][T23918] binder: BINDER_SET_CONTEXT_MGR bad uid 60929 != 0
[  963.898636][T23918] binder: 23917:23918 ioctl 4018620d 80000040 returned -1
[  964.030386][T23921] netlink: 'syz.0.4818': attribute type 1 has an invalid length.
[  964.074037][T23921] 8021q: adding VLAN 0 to HW filter on device bond4
[  964.157913][T23921] bond4: (slave veth3): Enslaving as an active interface with a down link
[  964.966066][T23929] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4820'.
[  964.968853][T23929] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  965.466426][T23940] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4825'.
[  965.560724][T23946] netlink: 'syz.3.4826': attribute type 1 has an invalid length.
[  965.585825][T23946] 8021q: adding VLAN 0 to HW filter on device bond1
[  965.655561][T23946] bond1: (slave veth3): Enslaving as an active interface with a down link
[  965.721705][T16152] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  965.723177][T23946] vlan2: entered allmulticast mode
[  965.725970][T23946] veth1: entered allmulticast mode
[  965.728237][T23946] veth1: entered promiscuous mode
[  965.731339][T16152] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  965.732160][T23946] veth1: left promiscuous mode
[  965.735483][T16152] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  965.737044][T23946] bond1: (slave vlan2): making interface the new active one
[  965.739226][T16152] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  965.748261][T23946] veth1: entered promiscuous mode
[  965.753064][T23946] vlan2: entered promiscuous mode
[  965.755187][T23946] bond1: (slave vlan2): Enslaving as an active interface with an up link
[  965.759521][T16152] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  965.874788][T23948] lo speed is unknown, defaulting to 1000
[  965.975594][T23948] chnl_net:caif_netlink_parms(): no params data found
[  966.054228][T23948] bridge0: port 1(bridge_slave_0) entered blocking state
[  966.057008][T23948] bridge0: port 1(bridge_slave_0) entered disabled state
[  966.059384][T23948] bridge_slave_0: entered allmulticast mode
[  966.063280][T23948] bridge_slave_0: entered promiscuous mode
[  966.067713][T23948] bridge0: port 2(bridge_slave_1) entered blocking state
[  966.070488][T23948] bridge0: port 2(bridge_slave_1) entered disabled state
[  966.073917][T23948] bridge_slave_1: entered allmulticast mode
[  966.078162][T23948] bridge_slave_1: entered promiscuous mode
[  966.116020][T23948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  966.120767][T23948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  966.164591][T23948] team0: Port device team_slave_0 added
[  966.168126][T23948] team0: Port device team_slave_1 added
[  966.201111][T23927] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  966.209501][T23948] batman_adv: batadv0: Adding interface: batadv_slave_0
[  966.211862][T23948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  966.219960][T23948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  966.224724][T23948] batman_adv: batadv0: Adding interface: batadv_slave_1
[  966.227070][T23948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  966.235778][T23948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  966.323903][T23948] hsr_slave_0: entered promiscuous mode
[  966.327416][T23948] hsr_slave_1: entered promiscuous mode
[  966.329690][T23948] debugfs: 'hsr0' already exists in 'hsr'
[  966.333046][T23948] Cannot create hsr debugfs directory
[  966.360732][T23927] usb 7-1: Using ep0 maxpacket: 32
[  966.411442][T23927] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  966.418709][T23927] usb 7-1: config 0 has no interface number 0
[  966.424357][T23927] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  966.428631][T23927] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  966.432270][T23927] usb 7-1: Product: syz
[  966.434186][T23927] usb 7-1: Manufacturer: syz
[  966.436278][T23927] usb 7-1: SerialNumber: syz
[  966.440372][T23927] usb 7-1: config 0 descriptor??
[  966.455501][T23927] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  966.460000][T23927] usb 7-1: selecting invalid altsetting 1
[  966.462885][T23927] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  966.467983][T23927] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  966.473261][T23927] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  966.476553][T23927] usb 7-1: media controller created
[  966.512760][T23927] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  966.547760][T23961] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4829'.
[  966.985028][T23948] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  966.992311][T23948] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  967.003694][T23948] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  967.013657][T23948] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  967.050756][T23967] netlink: 6 bytes leftover after parsing attributes in process `syz.0.4830'.
[  967.057819][T23967] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  967.127137][T23948] 8021q: adding VLAN 0 to HW filter on device bond0
[  967.137578][T23948] 8021q: adding VLAN 0 to HW filter on device team0
[  967.144938][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[  967.147051][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[  967.153101][ T4037] bridge0: port 2(bridge_slave_1) entered blocking state
[  967.155299][ T4037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  967.189776][T23948] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  967.311720][T23948] 8021q: adding VLAN 0 to HW filter on device batadv0
[  967.346214][T23948] veth0_vlan: entered promiscuous mode
[  967.354548][T23948] veth1_vlan: entered promiscuous mode
[  967.376976][T23948] veth0_macvtap: entered promiscuous mode
[  967.382584][T23948] veth1_macvtap: entered promiscuous mode
[  967.396043][T23948] batman_adv: batadv0: Interface activated: batadv_slave_0
[  967.403099][T23948] batman_adv: batadv0: Interface activated: batadv_slave_1
[  967.409794][ T4037] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  967.412901][ T4037] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  967.416920][ T4037] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  967.419666][ T4037] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  967.545901][ T4037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  967.549331][ T4037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  967.569997][ T4037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  967.574491][ T4037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  967.612131][T23927] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[  967.616483][T23927] zl10353_read_register: readreg error (reg=127, ret==-110)
[  967.655375][T23988] rdma_rxe: rxe_newlink: failed to add syz_tun
[  967.773641][T15406] Bluetooth: hci2: command tx timeout
[  967.843319][T23988] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4827'.
[  967.853268][T23988] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4827'.
[  968.126711][T23999] fuse: Bad value for 'fd'
[  968.384124][T24008] fuse: Bad value for 'fd'
[  969.165706][T16152] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  969.170812][T16152] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  969.193283][T16152] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  969.198003][T16152] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  969.201411][T16152] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  969.203190][   T46] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  969.208620][   T46] bond0 (unregistering): Released all slaves
[  969.229862][   T46] bond1 (unregistering): Released all slaves
[  969.239899][   T46] bond2 (unregistering): Released all slaves
[  969.355797][T21410] smc: removing ib device syz1
[  969.380295][T13655] syz1: Port: 1 Link DOWN
[  969.380342][   T46] tipc: Disabling bearer <udp:s>
[  969.384997][   T46] tipc: Disabling bearer <eth:team0>
[  969.389922][   T46] tipc: Left network mode
[  969.421569][T24026] overlayfs: failed to resolve 'subj_type=&@V': -2
[  969.447930][T24010] lo speed is unknown, defaulting to 1000
[  969.853355][T15406] Bluetooth: hci2: command tx timeout
[  969.867696][T24010] chnl_net:caif_netlink_parms(): no params data found
[  970.019433][ T6028] usb 7-1: USB disconnect, device number 38
[  970.116765][T24010] bridge0: port 1(bridge_slave_0) entered blocking state
[  970.119836][T24010] bridge0: port 1(bridge_slave_0) entered disabled state
[  970.122948][T24010] bridge_slave_0: entered allmulticast mode
[  970.135178][T24010] bridge_slave_0: entered promiscuous mode
[  970.141066][T24010] bridge0: port 2(bridge_slave_1) entered blocking state
[  970.144358][T24010] bridge0: port 2(bridge_slave_1) entered disabled state
[  970.147495][T24010] bridge_slave_1: entered allmulticast mode
[  970.151512][T24010] bridge_slave_1: entered promiscuous mode
[  970.165218][   T46] hsr_slave_0: left promiscuous mode
[  970.187905][   T46] hsr_slave_1: left promiscuous mode
[  970.217568][   T46] pimreg (unregistering): left allmulticast mode
[  970.398742][   T46] team0 (unregistering): Port device vlan0 removed
[  971.305986][T15406] Bluetooth: hci3: command tx timeout
[  971.644338][   T46] team0 (unregistering): Port device dummy0 removed
[  971.812828][T24040] tunl0: entered promiscuous mode
[  971.818093][T24010] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  971.822961][T24045] tunl0: entered promiscuous mode
[  971.829030][T24050] netlink: 6 bytes leftover after parsing attributes in process `syz.2.4849'.
[  971.833936][T24050] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  971.841547][T24010] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  971.913761][T24056] fuse: Bad value for 'rootmode'
[  971.924354][T24052] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  971.934198][T24052] bridge0: port 2(bridge_slave_1) entered disabled state
[  971.937849][T24052] bridge0: port 1(bridge_slave_0) entered disabled state
[  971.940423][T15406] Bluetooth: hci2: command tx timeout
[  971.946184][T24010] team0: Port device team_slave_0 added
[  971.955641][T24010] team0: Port device team_slave_1 added
[  971.996615][T24010] batman_adv: batadv0: Adding interface: batadv_slave_0
[  971.998837][T24010] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  972.007105][T24010] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  972.012193][T24010] batman_adv: batadv0: Adding interface: batadv_slave_1
[  972.014624][T24010] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  972.030609][T24010] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  972.091295][T24010] hsr_slave_0: entered promiscuous mode
[  972.093518][T24010] hsr_slave_1: entered promiscuous mode
[  972.095947][T24010] debugfs: 'hsr0' already exists in 'hsr'
[  972.097784][T24010] Cannot create hsr debugfs directory
[  972.130833][ T6028] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  972.195434][   T46] IPVS: stop unused estimator thread 0...
[  972.213082][T24010] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  972.225623][  T841] usb 8-1: new full-speed USB device number 31 using dummy_hcd
[  972.302384][T24010] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  972.315717][ T6028] usb 7-1: Using ep0 maxpacket: 16
[  972.351731][T24010] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  972.371479][ T6028] usb 7-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  972.376884][ T6028] usb 7-1: config 0 interface 0 has no altsetting 0
[  972.379786][ T6028] usb 7-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  972.383300][ T6028] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  972.409558][ T6028] usb 7-1: config 0 descriptor??
[  972.413615][T24010] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  972.527834][   T46] tipc: Resetting bearer <eth:syzkaller0>
[  972.623939][   T46] bond2 (unregistering): (slave ip6gretap1): Releasing active interface
[  972.785135][   T46] batman_adv: batadv0: Removing interface: vxlan0
[  972.801183][   T46] tipc: Disabling bearer <eth:syzkaller0>
[  972.901949][ T6028] nzxt-smart2 0003:1E71:2009.000C: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.2-1/input0
[  973.033239][T24054] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  973.036779][T24054] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  973.053303][  T841] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  973.057495][  T841] usb 8-1: config 0 has no interfaces?
[  973.059328][  T841] usb 8-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  973.062111][  T841] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  973.066866][  T841] usb 8-1: config 0 descriptor??
[  973.123715][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  973.130097][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  973.136746][   T46] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[  973.142478][   T46] bond0 (unregistering): Released all slaves
[  973.249964][ T6028] usb 7-1: USB disconnect, device number 39
[  973.251653][   T46] bond1 (unregistering): Released all slaves
[  973.374652][   T46] bond2 (unregistering): Released all slaves
[  973.377949][T15406] Bluetooth: hci3: command tx timeout
[  973.392292][T24056] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4852'.
[  973.402298][  T841] usb 8-1: string descriptor 0 read error: -71
[  973.411191][  T841] usb 8-1: USB disconnect, device number 31
[  973.486867][   T46] bond3 (unregistering): Released all slaves
[  973.590015][   T46] bond4 (unregistering): (slave veth3): Releasing active interface
[  973.593505][   T46] bond4 (unregistering): Released all slaves
[  973.616735][T24065] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4855'.
[  973.652048][T24010] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  973.659741][T24010] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  973.665152][T24010] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  973.672105][T24010] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  973.730142][   T46] tipc: Disabling bearer <udp:s>
[  973.732902][   T46] tipc: Left network mode
[  973.770270][T24010] 8021q: adding VLAN 0 to HW filter on device bond0
[  973.784420][T24010] 8021q: adding VLAN 0 to HW filter on device team0
[  973.792463][T21411] bridge0: port 1(bridge_slave_0) entered blocking state
[  973.795500][T21411] bridge0: port 1(bridge_slave_0) entered forwarding state
[  973.800797][T24080] tunl0: entered promiscuous mode
[  973.808598][T21411] bridge0: port 2(bridge_slave_1) entered blocking state
[  973.811543][T21411] bridge0: port 2(bridge_slave_1) entered forwarding state
[  973.960745][T24010] 8021q: adding VLAN 0 to HW filter on device batadv0
[  974.010417][T24010] veth0_vlan: entered promiscuous mode
[  974.016465][T24010] veth1_vlan: entered promiscuous mode
[  974.019097][T15406] Bluetooth: hci2: command tx timeout
[  974.034709][T24010] veth0_macvtap: entered promiscuous mode
[  974.038716][T24010] veth1_macvtap: entered promiscuous mode
[  974.047817][T24010] batman_adv: batadv0: Interface activated: batadv_slave_0
[  974.054786][T24010] batman_adv: batadv0: Interface activated: batadv_slave_1
[  974.063160][T21411] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  974.066465][T21411] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  974.069934][T21411] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  974.072955][T21411] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  974.442478][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  974.448161][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  974.466711][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  974.470239][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  974.586867][   T46] hsr_slave_0: left promiscuous mode
[  974.590105][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  974.593269][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  974.632913][   T46] veth1_macvtap: left promiscuous mode
[  974.635258][   T46] veth0_macvtap: left promiscuous mode
[  974.637693][   T46] veth1_vlan: left promiscuous mode
[  974.640961][   T46] veth0_vlan: left promiscuous mode
[  974.910183][   T46] pim6reg (unregistering): left allmulticast mode
[  975.453123][T24117] fuse: Bad value for 'fd'
[  975.461522][T15406] Bluetooth: hci3: command tx timeout
[  975.705522][T24126] random: crng reseeded on system resumption
[  975.819953][   T46] team0 (unregistering): Port device team_slave_1 removed
[  975.903150][   T46] team0 (unregistering): Port device team_slave_0 removed
[  976.595659][T24110] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4863'.
[  977.065036][T21411] vlan2: left promiscuous mode
[  977.111501][T24137] tunl0: entered promiscuous mode
[  977.337626][   T46] IPVS: stop unused estimator thread 0...
[  977.870199][T24151] CIFS: VFS: Malformed UNC in devname
[  978.180714][T21411] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.333924][T16152] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  978.337929][T16152] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  978.340980][T16152] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  978.344547][T16152] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  978.347176][T16152] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  978.804970][T24159] chnl_net:caif_netlink_parms(): no params data found
[  979.103970][T24159] bridge0: port 1(bridge_slave_0) entered blocking state
[  979.106812][T24159] bridge0: port 1(bridge_slave_0) entered disabled state
[  979.109136][T24159] bridge_slave_0: entered allmulticast mode
[  979.111769][T24159] bridge_slave_0: entered promiscuous mode
[  979.167273][T24181] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  979.169126][T21411] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  979.170017][T24181] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  979.179251][T24181] vhci_hcd vhci_hcd.0: Device attached
[  979.375363][T24159] bridge0: port 2(bridge_slave_1) entered blocking state
[  979.385394][T24159] bridge0: port 2(bridge_slave_1) entered disabled state
[  979.390301][T24159] bridge_slave_1: entered allmulticast mode
[  979.397622][T24159] bridge_slave_1: entered promiscuous mode
[  979.434195][T21411] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  979.489567][T24159] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  979.495730][T24159] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  979.548382][T21411] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  979.568100][T24184] vhci_hcd: connection closed
[  979.568295][ T4037] vhci_hcd: stop threads
[  979.571885][ T4037] vhci_hcd: release socket
[  979.576983][ T4037] vhci_hcd: disconnect device
[  979.584490][T24159] team0: Port device team_slave_0 added
[  979.589299][T24159] team0: Port device team_slave_1 added
[  979.633705][T24159] batman_adv: batadv0: Adding interface: batadv_slave_0
[  979.636575][T24159] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  979.647118][T24159] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  979.651482][T24159] batman_adv: batadv0: Adding interface: batadv_slave_1
[  979.654948][T24159] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  979.663593][T24159] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  979.720744][T24159] hsr_slave_0: entered promiscuous mode
[  979.723513][T16152] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  979.723860][T24159] hsr_slave_1: entered promiscuous mode
[  979.729491][T24159] debugfs: 'hsr0' already exists in 'hsr'
[  979.729715][T16152] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  979.731413][T24159] Cannot create hsr debugfs directory
[  979.742975][T16152] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  979.753185][T16152] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  979.762355][T16152] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  979.855788][T21411] bridge_slave_1: left allmulticast mode
[  979.857581][T21411] bridge_slave_1: left promiscuous mode
[  979.859462][T21411] bridge0: port 2(bridge_slave_1) entered disabled state
[  979.864717][T21411] bridge_slave_0: left allmulticast mode
[  979.866527][T21411] bridge_slave_0: left promiscuous mode
[  979.870116][T21411] bridge0: port 1(bridge_slave_0) entered disabled state
[  980.304319][T21411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  980.324707][T21411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  980.347754][T21411] bond0 (unregistering): Released all slaves
[  980.425746][T16152] Bluetooth: hci3: command tx timeout
[  980.965681][T21411] hsr_slave_0: left promiscuous mode
[  980.968010][T21411] hsr_slave_1: left promiscuous mode
[  980.970515][T21411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  980.973076][T21411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  980.977477][T21411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  980.980346][T21411] batman_adv: batadv0: Removing interface: batadv_slave_1
[  981.010108][T21411] veth1_macvtap: left promiscuous mode
[  981.012544][T21411] veth0_macvtap: left promiscuous mode
[  981.015012][T21411] veth1_vlan: left promiscuous mode
[  981.016766][T21411] veth0_vlan: left promiscuous mode
[  981.850060][T21411] team0 (unregistering): Port device team_slave_1 removed
[  981.869410][T16152] Bluetooth: hci1: command tx timeout
[  981.943259][T21411] team0 (unregistering): Port device team_slave_0 removed
[  982.495071][T24224] fuse: Bad value for 'fd'
[  982.505500][T16152] Bluetooth: hci3: command tx timeout
[  982.803821][T24159] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  982.821680][T24159] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  982.847487][T24159] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  982.858938][T24191] chnl_net:caif_netlink_parms(): no params data found
[  982.864856][T24159] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  983.027852][T24191] bridge0: port 1(bridge_slave_0) entered blocking state
[  983.030155][T24191] bridge0: port 1(bridge_slave_0) entered disabled state
[  983.034672][T24191] bridge_slave_0: entered allmulticast mode
[  983.037511][T24191] bridge_slave_0: entered promiscuous mode
[  983.047089][T24191] bridge0: port 2(bridge_slave_1) entered blocking state
[  983.054803][T24191] bridge0: port 2(bridge_slave_1) entered disabled state
[  983.066286][T24191] bridge_slave_1: entered allmulticast mode
[  983.076083][ T5984] usb 7-1: new full-speed USB device number 40 using dummy_hcd
[  983.077649][T24191] bridge_slave_1: entered promiscuous mode
[  983.190144][T24191] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  983.201571][T24191] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  983.248977][T24191] team0: Port device team_slave_0 added
[  983.276435][ T5984] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 25353, setting to 64
[  983.276963][T24191] team0: Port device team_slave_1 added
[  983.279911][ T5984] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  983.285740][ T5984] usb 7-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[  983.358422][T24191] batman_adv: batadv0: Adding interface: batadv_slave_0
[  983.360648][T24191] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  983.380049][T24191] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  983.384386][T24191] batman_adv: batadv0: Adding interface: batadv_slave_1
[  983.395367][T24191] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  983.404197][T24191] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  983.436130][T21411] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  983.576253][T21411] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  983.607202][ T5984] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  983.612303][ T5984] usb 7-1: config 0 descriptor??
[  983.613757][T24191] hsr_slave_0: entered promiscuous mode
[  983.614456][T24230] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  983.634293][T24191] hsr_slave_1: entered promiscuous mode
[  983.638383][T24191] debugfs: 'hsr0' already exists in 'hsr'
[  983.640551][T24191] Cannot create hsr debugfs directory
[  983.698384][T21411] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  983.788607][T24159] 8021q: adding VLAN 0 to HW filter on device bond0
[  983.817656][T21411] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  983.903397][T24159] 8021q: adding VLAN 0 to HW filter on device team0
[  983.940586][ T4037] bridge0: port 1(bridge_slave_0) entered blocking state
[  983.942914][ T4037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  983.946608][ T4037] bridge0: port 2(bridge_slave_1) entered blocking state
[  983.948919][ T4037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  983.956861][T16152] Bluetooth: hci1: command tx timeout
[  984.025377][T24159] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  984.048212][T21411] bridge_slave_1: left allmulticast mode
[  984.050100][ T5984] hid_parser_main: 28 callbacks suppressed
[  984.050111][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.052035][T21411] bridge_slave_1: left promiscuous mode
[  984.052168][T21411] bridge0: port 2(bridge_slave_1) entered disabled state
[  984.058269][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.062278][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.064773][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.065240][T21411] bridge_slave_0: left allmulticast mode
[  984.068477][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.069632][T21411] bridge_slave_0: left promiscuous mode
[  984.071868][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.073744][T21411] bridge0: port 1(bridge_slave_0) entered disabled state
[  984.076025][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.083615][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.086101][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.089274][ T5984] hid-multitouch 0003:0457:07DA.000D: unknown main item tag 0x0
[  984.101665][ T5984] hid-multitouch 0003:0457:07DA.000D: hidraw0: USB HID v0.00 Device [HID 0457:07da] on usb-dummy_hcd.2-1/input0
[  984.588000][T16152] Bluetooth: hci3: command tx timeout
[  984.829197][T21411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  984.842383][T21411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  984.850857][T21411] bond0 (unregistering): Released all slaves
[  985.123260][T21411] bond1 (unregistering): (slave veth3): Releasing active interface
[  985.125747][T21411] vlan2: entered promiscuous mode
[  985.170039][T21411] bond1 (unregistering): (slave vlan2): Releasing active interface
[  985.194754][T21411] bond1 (unregistering): Released all slaves
[  985.380758][T24191] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  985.398466][T24191] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  985.426282][T24191] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  985.446305][T24191] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  985.534911][T24159] 8021q: adding VLAN 0 to HW filter on device batadv0
[  985.602520][T21411] hsr_slave_0: left promiscuous mode
[  985.604670][T21411] hsr_slave_1: left promiscuous mode
[  985.606659][T21411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  985.618402][T21411] batman_adv: batadv0: Removing interface: batadv_slave_0
[  985.624854][T21411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  985.627511][T21411] batman_adv: batadv0: Removing interface: batadv_slave_1
[  985.664947][T21411] veth1_macvtap: left promiscuous mode
[  985.666772][T21411] veth0_macvtap: left promiscuous mode
[  985.668837][T21411] veth1_vlan: left promiscuous mode
[  985.670590][T21411] veth0_vlan: left promiscuous mode
[  985.753140][   T10] usb 7-1: USB disconnect, device number 40
[  986.028873][T16152] Bluetooth: hci1: command tx timeout
[  986.523247][T21411] team0 (unregistering): Port device team_slave_1 removed
[  986.617764][T21411] team0 (unregistering): Port device team_slave_0 removed
[  986.669480][T16152] Bluetooth: hci3: command tx timeout
[  987.416724][T24191] 8021q: adding VLAN 0 to HW filter on device bond0
[  987.433160][T24191] 8021q: adding VLAN 0 to HW filter on device team0
[  987.438399][ T4037] bridge0: port 1(bridge_slave_0) entered blocking state
[  987.441425][ T4037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  987.478702][ T4037] bridge0: port 2(bridge_slave_1) entered blocking state
[  987.481028][ T4037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  987.597665][T24159] veth0_vlan: entered promiscuous mode
[  987.610664][T24159] veth1_vlan: entered promiscuous mode
[  987.691282][T24159] veth0_macvtap: entered promiscuous mode
[  987.721356][T24159] veth1_macvtap: entered promiscuous mode
[  987.744635][T24159] batman_adv: batadv0: Interface activated: batadv_slave_0
[  987.766637][T24159] batman_adv: batadv0: Interface activated: batadv_slave_1
[  987.796616][   T81] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  987.805791][   T81] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  987.821247][   T81] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  987.823983][   T81] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  987.951225][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  987.953974][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  988.001384][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  988.020675][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  988.112331][T16152] Bluetooth: hci1: command tx timeout
[  988.216126][T24191] 8021q: adding VLAN 0 to HW filter on device batadv0
[  988.530169][T24191] veth0_vlan: entered promiscuous mode
[  988.537499][T24191] veth1_vlan: entered promiscuous mode
[  988.580026][T24191] veth0_macvtap: entered promiscuous mode
[  988.585596][T24191] veth1_macvtap: entered promiscuous mode
[  988.595680][T24191] batman_adv: batadv0: Interface activated: batadv_slave_0
[  988.603397][T24191] batman_adv: batadv0: Interface activated: batadv_slave_1
[  988.609266][T21411] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  988.613688][T21411] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  988.619049][T21411] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  988.626405][T21411] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  988.663019][T21410] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  988.665524][T21410] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  988.686268][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  988.689426][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  989.001617][ T6021] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[  989.194962][ T6021] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  989.198151][ T6021] usb 10-1: config 0 interface 0 has no altsetting 0
[  989.214747][ T6021] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  989.217614][ T6021] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  989.220246][ T6021] usb 10-1: Product: syz
[  989.221661][ T6021] usb 10-1: Manufacturer: syz
[  989.223483][ T6021] usb 10-1: SerialNumber: syz
[  989.226346][ T6021] usb 10-1: config 0 descriptor??
[  989.233615][ T6021] usb 10-1: selecting invalid altsetting 0
[  989.436300][T24362] usb 10-1: cannot submit urb 0, error -2: endpoint not enabled
[  989.439920][T14167] usb 10-1: USB disconnect, device number 2
[  989.592603][ T6021] usb 6-1: new high-speed USB device number 53 using dummy_hcd
[  989.774922][ T6021] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  989.778568][ T6021] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  989.781765][ T6021] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  989.786136][ T6021] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  989.789771][ T6021] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  989.794337][ T6021] usb 6-1: config 0 descriptor??
[  990.087769][T24398] overlayfs: conflicting lowerdir path
[  990.143059][T12728] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  990.421244][ T6027] libceph: connect (1)[c::]:6789 error -101
[  990.423339][ T6027] libceph: mon0 (1)[c::]:6789 connect error
[  990.582060][T24381] ceph: No mds server is up or the cluster is laggy
[  990.681066][ T6021] usbhid 6-1:0.0: can't add hid device: -71
[  990.683311][ T6021] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  990.688518][ T6021] usb 6-1: USB disconnect, device number 53
[  990.864603][T24426] random: crng reseeded on system resumption
[  991.827085][T24442] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4921'.
[  992.398345][T24452] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4925'.
[  992.561077][T24456] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4927'.
[  992.597265][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  992.956155][T24468] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4930'.
[  994.116374][T24488] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4939'.
[  996.634828][T24537] [U] 
[  996.869770][T24556] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4961'.
[  996.978997][   T10] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  997.142690][   T10] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  997.148482][   T10] usb 9-1: New USB device found, idVendor=0bfd, idProduct=0012, bcdDevice=cc.c0
[  997.151935][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  997.154355][   T10] usb 9-1: Product: syz
[  997.155708][   T10] usb 9-1: Manufacturer: syz
[  997.157300][   T10] usb 9-1: SerialNumber: syz
[  997.164535][   T10] usb 9-1: config 0 descriptor??
[  997.167410][   T10] kvaser_usb 9-1:0.0: error -ENODEV: Cannot get usb endpoint(s)
[  997.371123][T14167] usb 9-1: USB disconnect, device number 2
[  997.828342][T24572] comedi comedi0: c6xdigio: I/O port conflict (0x109,3)
[  997.832070][T24572] Oops: general protection fault, probably for non-canonical address 0xf1299bad2fb13d0f: 0000 [#1] SMP KASAN NOPTI
[  997.835929][T24572] KASAN: maybe wild-memory-access in range [0x894cfd697d89e878-0x894cfd697d89e87f]
[  997.840625][T24572] CPU: 1 UID: 0 PID: 24572 Comm: syz.5.4967 Not tainted syzkaller #0 PREEMPT(full) 
[  997.843693][T24572] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  997.846894][T24572] RIP: 0010:kernfs_root+0xb5/0x2a0
[  997.848503][T24572] Code: f5 00 00 00 e8 bc 3f 59 ff 48 85 db 48 0f 44 dd e8 b0 3f 59 ff 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 78 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 d6 01 00 00 48 8b 6b 78 e8 78 09 fa 08 31 ff 89
[  997.855268][T24572] RSP: 0018:ffffc90006d976d0 EFLAGS: 00010a06
[  997.857698][T24572] RAX: dffffc0000000000 RBX: 894cfd697d89e800 RCX: ffffc9000d742000
[  997.860837][T24572] RDX: 11299fad2fb13d0f RSI: ffffffff82632da0 RDI: 894cfd697d89e878
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  997.863880][T24572] RBP: ffffffff8452ef91 R08: 0000000000000005 R09: 0000000000000000
[  997.867037][T24572] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  997.870128][T24572] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888047813800
[  997.873200][T24572] FS:  0000000000000000(0000) GS:ffff888097910000(0063) knlGS:00000000f53fdb40
[  997.876683][T24572] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  997.879273][T24572] CR2: 00000000f71141c0 CR3: 0000000053b74000 CR4: 0000000000352ef0
[  997.882342][T24572] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000083
[  997.885463][T24572] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  997.888579][T24572] Call Trace:
[  997.889945][T24572]  <TASK>
[  997.891145][T24572]  ? security_unix_may_send+0x71/0x210
[  997.893294][T24572]  kernfs_remove_by_name_ns+0x2e/0x110
[  997.895573][T24572]  driver_remove_file+0x4a/0x60
[  997.897551][T24572]  bus_remove_driver+0x224/0x2c0
[  997.899571][T24572]  driver_unregister+0x76/0xb0
[  997.901516][T24572]  comedi_device_detach_locked+0x12f/0xa50
[  997.903980][T24572]  comedi_device_detach+0x67/0xb0
[  997.906057][T24572]  comedi_device_attach+0x43d/0x900
[  997.908188][T24572]  do_devconfig_ioctl+0x1b1/0x710
[  997.910225][T24572]  ? __mutex_lock+0x1c5/0x1060
[  997.912162][T24572]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  997.914380][T24572]  ? kasan_save_stack+0x42/0x60
[  997.916319][T24572]  ? kasan_save_stack+0x33/0x60
[  997.918284][T24572]  ? kasan_save_track+0x14/0x30
[  997.920275][T24572]  ? __kasan_save_free_info+0x3b/0x60
[  997.922386][T24572]  ? __kasan_slab_free+0x5f/0x80
[  997.924353][T24572]  ? kfree+0x2b8/0x6d0
[  997.925953][T24572]  ? tomoyo_path_number_perm+0x470/0x580
[  997.928129][T24572]  ? security_file_ioctl_compat+0x9b/0x240
[  997.930379][T24572]  comedi_unlocked_ioctl+0x165d/0x2f00
[  997.932519][T24572]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  997.934776][T24572]  ? kasan_quarantine_put+0x10a/0x240
[  997.936898][T24572]  ? lockdep_hardirqs_on+0x7c/0x110
[  997.938693][T24572]  ? find_held_lock+0x2b/0x80
[  997.940123][T24572]  ? tomoyo_path_number_perm+0x295/0x580
[  997.941823][T24572]  ? tomoyo_path_number_perm+0x18d/0x580
[  997.943502][T24572]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  997.945289][T24572]  comedi_compat_ioctl+0x1d0/0x990
[  997.946907][T24572]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  997.948658][T24572]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  997.950471][T24572]  ? do_vfs_ioctl+0x128/0x14f0
[  997.951983][T24572]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  997.953462][T24572]  ? find_held_lock+0x2b/0x80
[  997.954855][T24572]  ? hook_file_ioctl_common+0x145/0x410
[  997.956788][T24572]  ? __fget_files+0x20e/0x3c0
[  997.958721][T24572]  ? __ia32_compat_sys_openat+0x100/0x210
[  997.961063][T24572]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  997.963351][T24572]  __ia32_compat_sys_ioctl+0x242/0x370
[  997.965582][T24572]  __do_fast_syscall_32+0x7c/0x300
[  997.967674][T24572]  do_fast_syscall_32+0x32/0x80
[  997.969637][T24572]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  997.972033][T24572] RIP: 0023:0xf700d579
[  997.973251][T24572] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  997.978802][T24572] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  997.981279][T24572] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400
[  997.983587][T24572] RDX: 0000000080000540 RSI: 0000000000000000 RDI: 0000000000000000
[  997.985864][T24572] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  997.988175][T24572] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  997.990443][T24572] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  997.992804][T24572]  </TASK>
[  997.993740][T24572] Modules linked in:
[  997.995251][T24572] ---[ end trace 0000000000000000 ]---
[  997.998311][T24572] RIP: 0010:kernfs_root+0xb5/0x2a0
[  998.000041][T24572] Code: f5 00 00 00 e8 bc 3f 59 ff 48 85 db 48 0f 44 dd e8 b0 3f 59 ff 48 b8 00 00 00 00 00 fc ff df 48 8d 7b 78 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 d6 01 00 00 48 8b 6b 78 e8 78 09 fa 08 31 ff 89
[  998.006098][T24572] RSP: 0018:ffffc90006d976d0 EFLAGS: 00010a06
[  998.008280][T24572] RAX: dffffc0000000000 RBX: 894cfd697d89e800 RCX: ffffc9000d742000
[  998.010834][T24572] RDX: 11299fad2fb13d0f RSI: ffffffff82632da0 RDI: 894cfd697d89e878
[  998.013525][T24572] RBP: ffffffff8452ef91 R08: 0000000000000005 R09: 0000000000000000
[  998.017384][T24572] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[  998.019952][T24572] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888047813800
[  998.022398][T24572] FS:  0000000000000000(0000) GS:ffff888097a10000(0063) knlGS:00000000f53fdb40
[  998.025479][T24572] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  998.028729][T24572] CR2: 0000000034a1eff8 CR3: 0000000053b74000 CR4: 0000000000352ef0
[  998.033629][T24572] Kernel panic - not syncing: Fatal exception
[  998.036410][T24572] Kernel Offset: disabled
[  998.038080][T24572] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:24:26  Registers:
info registers vcpu 0

CPU#0
RAX=00000000013d872c RBX=0000000000000000 RCX=ffffffff8b5d42a9 RDX=ffffed1005646656
RSI=ffffffff8bf07540 RDI=ffffffff8191d11d RBP=fffffbfff1c12f40 RSP=ffffffff8e007df8
R8 =0000000000000000 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e097a00 R14=ffffffff90823ad0 R15=0000000000000000
RIP=ffffffff8b5d2d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097810000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000005709e4c0 CR3=0000000073b6d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85267ff0 RDI=ffffffff9adc2de0 RBP=ffffffff9adc2da0 RSP=ffffc90006d97078
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6d203a4e4153414b
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35b860e R15=dffffc0000000000
RIP=ffffffff85268017 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097910000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71141c0 CR3=0000000053b74000 CR4=00352ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff84aa95ce RDX=ffff888020cbc900
RSI=0000000000000002 RDI=0000000000000001 RBP=ffffffff8bf09a00 RSP=ffffc9000373f1b0
R8 =0000000000000001 R9 =0000000000000002 R10=0000000000000002 R11=0000000000000012
R12=0000000000000002 R13=0000000000000001 R14=0000000000000003 R15=ffffffff8bf09f86
RIP=ffffffff81bc675b RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f0a7a44b300 ffffffff 00c00000
GS =0000 ffff888097a10000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000557297b4c000 CR3=00000000233bc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000002c00000012 0004000000080024 0000000000280030
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000136e 0000001000000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2080808082080001 8003000800020800 140800060070ec10 0000012600000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0008060c0168d85c 6b97e2a60a080780 0338080006800201 0000000806060104
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8c00080006b00302 04900006a0030004 9000069003298e04 8800068803000484
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0006840314040006 8003080800000228 08000c0800010000 0008060a016cfe04
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8080808080820800 0003080800018002 2608000c08000100 000008060a016d8a
ZMM24=201e58c7201e58c7 201e58c7201e58c7 201e58c7201e58c7 201e58c7201e58c7 201e58c7201e58c7 201e58c7201e58c7 201e58c7201e58c7 201e58c7201e58c7
ZMM25=84c5069484c50694 84c5069484c50694 84c5069484c50694 84c5069484c50694 84c5069484c50694 84c5069484c50694 84c5069484c50694 84c5069484c50694
ZMM26=a27b2eeaa27b2eea a27b2eeaa27b2eea a27b2eeaa27b2eea a27b2eeaa27b2eea a27b2eeaa27b2eea a27b2eeaa27b2eea a27b2eeaa27b2eea a27b2eeaa27b2eea
ZMM27=3a51e1ca3a51e1ca 3a51e1ca3a51e1ca 3a51e1ca3a51e1ca 3a51e1ca3a51e1ca 3a51e1ca3a51e1ca 3a51e1ca3a51e1ca 3a51e1ca3a51e1ca 3a51e1ca3a51e1ca
ZMM28=000001b0000001af 000001ae000001ad 000001ac000001ab 000001aa000001a9 000001a8000001a7 000001a6000001a5 000001a4000001a3 000001a2000001a1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=9365000093650000 9365000093650000 9365000093650000 9365000093650000 9365000093650000 9365000093650000 9365000093650000 9365000093650000
info registers vcpu 3

CPU#3
RAX=0000000000ce68f4 RBX=0000000000000003 RCX=ffffffff8b5d42a9 RDX=ffffed10056a6656
RSI=ffffffff8bf07540 RDI=ffffffff8191d11d RBP=ffffed10037e5000 RSP=ffffc9000048fde8
R8 =0000000000000000 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000001
R12=0000000000000003 R13=ffff88801bf28000 R14=ffffffff90823ad0 R15=0000000000000000
RIP=ffffffff8b5d2d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097b10000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73d6288 CR3=000000002875a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000