last executing test programs:

2m56.771363027s ago: executing program 3 (id=1789):
r0 = openat$autofs(0xffffff9c, &(0x7f0000000000), 0x808000, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
r2 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f0000000080)={0x6, 0x0, 0x0}, 0x0)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x80001, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(r3, 0x400c330d, 0x0)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, 0x1404, 0x2, 0x70bd2c, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x4044090}, 0x90)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r4, 0x1, 0x45, &(0x7f0000000340)=0x7e, 0x4)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@multicast, @link_local, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0xff47, 0xa, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, @remote, @dev, @remote}}}}, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r7=>0x0})
sendto$packet(r6, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x92c0199, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90224fc60100005fd0a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
r8 = socket$kcm(0x29, 0x5, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {r8}}, './file0\x00'})
r9 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x68, 0x24, 0xf0b, 0x0, 0x25dfdc01, {0x0, 0x0, 0x0, r10, {0x0, 0xc}, {0xffff, 0xffff}, {0xd, 0xf}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x34, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xfffffffe}, @TCA_HHF_HH_FLOWS_LIMIT={0x8, 0x3, 0x5}, @TCA_HHF_HH_FLOWS_LIMIT={0xffffffffffffff7c, 0x3, 0x1}, @TCA_HHF_QUANTUM={0x8}, @TCA_HHF_HH_FLOWS_LIMIT={0x8, 0x3, 0x6}, @TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x4}]}}, @TCA_STAB={0x0, 0x8, 0x0, 0x1, [{{0x0, 0x1, {0x8, 0xc5, 0xfffb, 0xfffffff7, 0x0, 0x0, 0xffffffff}}, {0x0, 0x2, [0x4, 0xcc, 0x8, 0xff, 0xfffd, 0xfff, 0x334d, 0xc]}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x44004}, 0x0)

2m56.76030047s ago: executing program 3 (id=1790):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4841}, 0x14040044)

2m56.674978475s ago: executing program 3 (id=1791):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x6, 0x4, 0x5b, 0x8a}, 0x48)
bpf$PROG_LOAD(0x4, &(0x7f0000000680)={0x3, 0x3, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r0, 0x810000000000000, 0xa002a0}, 0x38)

2m56.674819939s ago: executing program 3 (id=1792):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
io_setup(0x8001, &(0x7f0000000000)=<r1=>0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
r3 = signalfd(r0, &(0x7f0000000140)={[0x9, 0xfffffff8]}, 0x8)
write$cgroup_type(r3, &(0x7f0000000200), 0x9)
mount$9p_unix(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12d7498, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
umount2(&(0x7f0000000180)='./file0/file0\x00', 0x0)
ptrace(0x10, r2)
sched_setaffinity(0xffffffffffffffff, 0x8, &(0x7f0000000040)=0x5)
ptrace$poke(0x15, r2, 0x0, 0x200008)
io_submit(r1, 0x3, &(0x7f0000001840)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7fff, r0, &(0x7f0000000240)="9626d730cf41d0d41061f64dc96b7cabd850d526467b62303acb11e90723c927", 0x20, 0x7, 0x0, 0x2}, 0x0, 0x0])

2m55.670385283s ago: executing program 3 (id=1795):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{0x0}], 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000010c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x460, 0x280, 0x268, 0x300, 0x280, 0x268, 0x390, 0x460, 0x460, 0x390, 0x460, 0x9, 0x0, {[{{@uncond, 0x0, 0x240, 0x280, 0x0, {0x9401}, [@common=@inet=@hashlimit2={{0x150}, {'hsr0\x00', {0x0, 0xb, 0x0, 0x3, 0x0, 0x5, 0x9}}}, @common=@unspec=@limit={{0x48}, {0xfff, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x2}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x8, 0x21, "6bb6778f9bdec125b0fb4f26be757b1e6f2fb8e9079627dc6726c4bc85e9"}}}, {{@ipv6={@private2, @remote, [], [], 'ip6gretap0\x00', 'ip6_vti0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x511)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x64010100, 0x4e20, 0x3, 'wrr\x00', 0x1, 0x80005, 0x6f}, 0x2c)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r4, 0x0, 0x487, &(0x7f0000000580)={{0x84, @multicast2, 0x4e23, 0x3, 'sed\x00', 0x6, 0x3, 0x1815}, {@private=0xa010102, 0xce20, 0x4, 0xa, 0x80812f58, 0x12d5c}}, 0x44)

2m55.359317712s ago: executing program 3 (id=1802):
r0 = syz_io_uring_setup(0x7a6e, &(0x7f0000000040)={0x0, 0x80000000}, &(0x7f00000000c0), &(0x7f0000000100))
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0x2, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb, [{0xdbb}, {}, {0x3, 0xb}, {}, {}, {}, {}, {0x0, 0xfffffffe}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB="38000000031404002ab1000f4938c29ebda883bd7000ffdbdf250900020073797a32000000000800410073697700140033007465616d5f73"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
writev(r2, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0cc5605, &(0x7f00000004c0)={0x0, @sdr={0x38414762, 0x9e3f}})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="14f2f20000001605150f00000000fbdbdf250400"], 0x14}], 0x1}, 0x0)
setresuid(0x0, 0xee00, 0x0)
syz_open_dev$usbfs(&(0x7f0000000480), 0xd, 0x141341)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r6=>0x0})
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r7, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r7, 0x540a, 0x2)
ioctl$TIOCSETD(r7, 0x5423, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0x9}}}, 0x24}}, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000000140)=[0xffffffffffffffff]}, 0x1)

2m55.308069633s ago: executing program 32 (id=1802):
r0 = syz_io_uring_setup(0x7a6e, &(0x7f0000000040)={0x0, 0x80000000}, &(0x7f00000000c0), &(0x7f0000000100))
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0x2, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb, [{0xdbb}, {}, {0x3, 0xb}, {}, {}, {}, {}, {0x0, 0xfffffffe}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB="38000000031404002ab1000f4938c29ebda883bd7000ffdbdf250900020073797a32000000000800410073697700140033007465616d5f73"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
writev(r2, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0cc5605, &(0x7f00000004c0)={0x0, @sdr={0x38414762, 0x9e3f}})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=ANY=[@ANYBLOB="14f2f20000001605150f00000000fbdbdf250400"], 0x14}], 0x1}, 0x0)
setresuid(0x0, 0xee00, 0x0)
syz_open_dev$usbfs(&(0x7f0000000480), 0xd, 0x141341)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r6=>0x0})
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r7, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r7, 0x540a, 0x2)
ioctl$TIOCSETD(r7, 0x5423, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0x9}}}, 0x24}}, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000000140)=[0xffffffffffffffff]}, 0x1)

4.67196646s ago: executing program 2 (id=2456):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
rename(0x0, &(0x7f0000000080)='./file1\x00')

4.573154014s ago: executing program 2 (id=2457):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r3, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r5}, 0x10)
socket$inet_mptcp(0x2, 0x1, 0x106)
r6 = syz_io_uring_setup(0x1b7a, &(0x7f0000000080)={0x0, 0xa482, 0x10100, 0x200000, 0x100029}, &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, 0x0, &(0x7f00000001c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x40, 0x0, 0x3, 0x1, 0x0, 0xce})
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r6, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
socket$kcm(0x11, 0x200000000000003, 0x300)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000240)={0x60, 0x3, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x80000000, &(0x7f00000001c0)=[{0x8001, 0x3, 0x4b70}, {0xa8, 0x9, 0x5}, {0x3, 0x6, 0x8001}, {0x7, 0x1, 0x200}], 0x4, 0xa9dc, 0x4, 0x1, 0x3e, 0x7b})
read$FUSE(r1, &(0x7f0000002140)={0x2020, 0x0, <r10=>0x0}, 0x2020)
syz_fuse_handle_req(r1, &(0x7f0000004300)="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", 0x2000, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x78, 0x0, 0x401, {0x88, 0x1, 0x0, {0x1, 0x0, 0xc1d2, 0x20000, 0xfffffffffffffffc, 0x0, 0x0, 0x1, 0x1fffffc, 0x4000, 0x25daa903, 0xffffffffffffffff, 0x0, 0xffffffff, 0x9}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r11 = socket$inet_tcp(0x2, 0x1, 0x0)
write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000140)={0x28, 0x2, 0x0, {0x2, 0x8000000000000001, 0x80000000}}, 0x28)
setsockopt$inet_tcp_int(r11, 0x6, 0x18, &(0x7f00000000c0)=0x40001, 0x4)
write$FUSE_INIT(r1, &(0x7f0000004200)={0x50, 0x0, r10, {0x7, 0x21, 0xfffffffe, 0x80, 0xa, 0x6, 0x7, 0x2, 0x0, 0x0, 0x8, 0x6}}, 0x50)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1ff)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f0000000340)={'wlan0\x00'})

4.022356458s ago: executing program 2 (id=2458):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8110}, 0x8000)

3.85058072s ago: executing program 1 (id=2460):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0xfffffffffffffffe, 0x0, 0x0, 0x0, {0x40, 0x3, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x2, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r2, 0x4004092b, 0x47ffffffff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r3, 0x4004092b, 0x7)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f0000000000)={0x6, 0x3, 0x3, 0x0, 0x9})

3.830656577s ago: executing program 0 (id=2461):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000500)=ANY=[@ANYRESHEX=0x0, @ANYRES32, @ANYRES8=r0, @ANYRES16=r0, @ANYRESOCT, @ANYRESDEC], 0x0, 0x100, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r2}, 0x10)
unlink(0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000200)={0x0, r1}, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075400000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x5, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
modify_ldt$write(0x1, 0x0, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000000206000000000c0007800800065500000000050001002aa0f61a1aad7f594b9a2c06000000050005000a00000005000400000000000900020073797a31400000000d00030068"], 0x54}}, 0x0)
prlimit64(0x0, 0x7, &(0x7f00000001c0), 0x0)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x2f90, &(0x7f0000000180)={0x0, 0xc384, 0x4, 0x5, 0x324}, &(0x7f0000000100)=<r5=>0x0, 0x0)
epoll_create(0xaf2)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000280), 0x8bd, 0x105460)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x38fe, &(0x7f0000000300)={0x0, 0x1ffff5, 0x10000, 0x80003, 0xfffffffd}, &(0x7f0000000240), &(0x7f00000001c0)=<r8=>0x0)
syz_io_uring_submit(r5, r8, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x8})

3.824273627s ago: executing program 2 (id=2462):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x3)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@getchain={0x24, 0x66, 0xfcd66a900070b359, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r2, {0xfff3}, {0xfff1}, {0x3, 0x8}}}, 0x24}}, 0x40020)
r3 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
mprotect(&(0x7f0000ff7000/0x1000)=nil, 0x1000, 0x1000002)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r6 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0)
connect$inet6(r6, &(0x7f0000000140)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3a}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x318, 0x1, 0x24}, 0x9c)
timer_settime(0x0, 0x0, 0x0, 0x0)
r8 = dup3(r4, r5, 0x80000)
write$char_usb(r5, 0x0, 0x0)
syz_usb_disconnect(r3)
write$snddsp(r8, 0x0, 0x0)

3.429760652s ago: executing program 1 (id=2463):
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$alg(0x26, 0x5, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket(0x11, 0xa, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x1f00, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0)

2.958995551s ago: executing program 1 (id=2464):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
rename(0x0, &(0x7f0000000080)='./file1\x00')

2.770412192s ago: executing program 1 (id=2466):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r1 = syz_open_dev$cec(0x0, 0x0, 0x82)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
getsockopt(r3, 0x0, 0x5, &(0x7f0000000140)=""/181, &(0x7f0000000000)=0xb5)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES64, @ANYBLOB, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
r8 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r8, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix_mp={0x0, 0x0, 0x58565559}})
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r7, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000100), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
ioctl$VIDIOC_QBUF(r0, 0xc058565d, 0x0)
openat$ocfs2_control(0xffffff9c, &(0x7f0000000040), 0x151202, 0x0)

2.641474953s ago: executing program 0 (id=2467):
r0 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg$inet(r0, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000200)="c0", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
openat$vcsu(0xffffff9c, &(0x7f0000000200), 0x80000, 0x0)
inotify_init1(0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
open(&(0x7f0000000000)='./file1\x00', 0x10b942, 0x0)
syz_open_procfs(0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x123280, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f0000000040))
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)

2.57340028s ago: executing program 4 (id=2468):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x400, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x354b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x4}}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@newtfilter={0x94, 0x2c, 0xd27, 0xf0ffff, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x64, 0x2, [@TCA_BASIC_EMATCHES={0x60, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x54, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x8, 0x1, 0x6}, {0xa523, 0x0, 0x0, 0x4, 0x4, 0x0, 0x1}}}, @TCF_EM_META={0x38, 0x2, 0x0, 0x0, {{0x0, 0x4, 0x4}, [@TCA_EM_META_RVALUE={0x21, 0x3, [@TCF_META_TYPE_VAR="2d3d9574cea0cb179a", @TCF_META_TYPE_INT=0x9, @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_VAR, @TCF_META_TYPE_INT=0x6]}, @TCA_EM_META_RVALUE={0x8, 0x3, [@TCF_META_TYPE_INT=0x6]}]}}]}]}]}}]}, 0x94}}, 0x0)

2.362372269s ago: executing program 4 (id=2469):
r0 = syz_open_dev$vbi(0x0, 0x1, 0x2)
r1 = syz_open_dev$cec(&(0x7f0000000200), 0x0, 0x82)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
getsockopt(r3, 0x0, 0x5, &(0x7f0000000140)=""/181, &(0x7f0000000000)=0xb5)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES64, @ANYBLOB, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
r8 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r8, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix_mp={0x0, 0x0, 0x58565559}})
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r7, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000100), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
ioctl$VIDIOC_QBUF(r0, 0xc058565d, 0x0)
openat$ocfs2_control(0xffffff9c, &(0x7f0000000040), 0x151202, 0x0)

2.242437905s ago: executing program 0 (id=2470):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8110}, 0x8000)

2.170139871s ago: executing program 0 (id=2471):
syz_io_uring_setup(0x34b7, 0x0, 0x0, &(0x7f0000000500))
socket(0x2, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{0x0}], 0x1)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000000, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x810, 0x4, 0x5}, {0x4a7, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x97, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x8}, {0x0, 0x5, 0x1437, 0x1, 0xee57, 0x9}, {0x77d, 0x8, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x3, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x1, 0x3, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x4}, {0xfffffffc, 0x4, 0xffff, 0x2, 0xffffffff, 0xfffffffa}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x6}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0x0, 0xeac}, {0x9, 0x2, 0xd77, 0x8, 0x113, 0x8d3f}, {0x7, 0xffffffff, 0x4, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x9, 0xe, 0x3, 0xad47, 0xf83b}, {0x1ff, 0x5, 0x7, 0xfff, 0x9}, {0x100, 0x4, 0x200, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0x10001, 0x9, 0x200, 0x9, 0x1}, {0x6, 0x10, 0xf, 0x2, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0x7}, {0x80000000, 0x6, 0x0, 0x6, 0x6, 0xd}, {0x0, 0x9, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x8, 0xffffffff}, {0x4d9, 0x45db8bad, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x1, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x1, 0x7ff, 0x3, 0x4}, {0x3, 0x7, 0x4, 0x4, 0xffff, 0x8}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x2, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x5, 0x4, 0x4, 0x67}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x5, 0x2, 0xffff, 0x2, 0x2}, {0x80000001, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x6, 0x1000, 0x9, 0x9}, {0xa, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0x2, 0x8, 0xfffffff7, 0x1, 0x6, 0xa}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f5, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x8, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x80, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0xe000, 0x8, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x3, 0x9, 0x0, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x5, 0x5, 0x3, 0x3649}, {0x7, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x7, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x100, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0x3, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x0, 0xfc, 0x7, 0x6, 0xc}, {0xf, 0x1, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0xd9, 0x6, 0x1, 0x9, 0xfffffff8}, {0x3, 0x3, 0x7, 0x9, 0x10, 0x1}, {0x8f000000, 0x100, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0xa, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x3}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x7, 0x10000, 0x9, 0x0, 0x88}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0xfce, 0x80000001, 0x5, 0x4, 0x1ff}, {0x3, 0x0, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0x2}, {0x10001, 0x100, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x0, 0x3, 0x6, 0x800, 0x3}, {0x0, 0x0, 0x3, 0x8, 0x1, 0x3}, {0x3, 0x3, 0xffffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0x1, 0x3}, {0x5, 0x7, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0x3, 0x5, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffffa, 0x1, 0x3, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x4, 0x96, 0x81, 0x0, 0x101, 0x7}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x6}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0x1, 0x3}, {0x1, 0xe2, 0x7ff, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x6, 0x0, 0x7, 0x9, 0x7, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6f}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x2, 0x4, 0x2, 0x1, 0x6, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x0, 0xe71, 0xc5c3, 0x3, 0x1}, {0x7, 0x2, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x0, 0x6, 0x10001, 0xce7, 0xec, 0x1000}, {0xffffffff, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0x6}, {0x37, 0x622, 0x2, 0x1, 0x7, 0x2}], [{0x5}, {0xccffbfc290ab3baa}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x2}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x5, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x2}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x3, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159, 0x1}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x5}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x2}, {}, {0x2, 0x1}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x1}, {0x1, 0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x4}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x81}, 0x800)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000004100), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x21, &(0x7f0000000440), 0x1)

1.861859924s ago: executing program 2 (id=2472):
mknod$loop(0x0, 0x10, 0x0) (async)
r0 = socket$kcm(0x21, 0x5, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x43b, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x8001}}, 0x80, 0x0, 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="98aa8f7c7663ed6bb2ad58db100c09b673d9506c74e27272a37bf38dc1a8488dcc1c093d247eb476457ef10cce48e4bd4df6265def4f0abd4717855a47a698f0c891b136c049e8fa517ae474a40e"], 0x10}, 0x8000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid() (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x4000000) (rerun: 32)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async, rerun: 32)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) (rerun: 32)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40186f40, &(0x7f0000000180)=0x2000000) (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000280)='xen_mmu_pte_clear\x00', r4, 0x0, 0xa}, 0xfffffffffffffd57) (rerun: 32)
kexec_load(0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x7ffdd000, 0x8000}], 0x320000) (async, rerun: 64)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup.net/syz0\x00', 0x1ff) (async, rerun: 64)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$ipvs(0xffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) (async)
r6 = openat$cgroup_procs(r5, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000001c0), 0x12) (async)
sync() (async)
r7 = socket$inet6(0xa, 0x80002, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x80882, 0x0) (async)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c) (async, rerun: 32)
bind$inet6(r7, &(0x7f00000001c0)={0xa, 0x4e20, 0xfffffff8, @local, 0x7}, 0x1c) (rerun: 32)
sendmmsg$inet6(r7, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

1.24673985s ago: executing program 0 (id=2473):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000300)={0xb0000000, 0x6, 0x6, 0x8}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1e, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_T4(r3, 0x103, 0x6, &(0x7f0000001a40)=0xb, 0x4)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
chdir(&(0x7f00000001c0)='./bus\x00')
rmdir(&(0x7f0000000380)='./file0/../file0\x00')
r4 = socket$inet(0x2, 0x3, 0x4)
sendmmsg$inet(r4, &(0x7f0000001ac0)=[{{&(0x7f0000000000)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000740)=[{&(0x7f0000000180)="8da1dda4ba944106f5956ec405717be94fe360affae96b2e1643afb2331cde7fd5ca4254f1e717bb09b5685288bb3d28cb", 0x31}, {&(0x7f0000000480)="c881391f2826e0797c5b33679d5bcf664564c9f3a350ba04701d5edd9668f68862d8014b48cf62d4ff94b4b3509f75a9956e45aa2569524426f9823a512a2571bd57a57202b66eab5c53106fc50f6b79110fd6f6d631a9ac305580243fe57d7fd84acb2834e99eafe4826ddad48654e69ecaa6c94c1bc5ed354b3940f94b00bcc3e762e412da181e6d7bb65c076cb55645ceda19ea4ddc320be8f809c06e979d8c002a5c0ea42c7fb76728d88cd8b9", 0xaf}, {&(0x7f0000000540)="effba5efc981eecd7ded11a9d3fd0ab9ffa522e611af86c5a3d4e42ce0548c0fc75755afce15fba420081bf6112d18e76de05199def2e5e06ad8ebbcb52b88", 0x3f}, {&(0x7f0000000580)="7cfd31a0aebae77b42a8b2655f0688ed15b47488ea453261c7111cbabf1c9550954bfeb32204d93258b37f069371acf16308867ac0f01325dabeb7e20522b77b25e4506e94988d91aee52d8234e1e01e45c58a36ebfe3d19e65e287bbf22b21d11e7d206fac003b3b638b63acc134e67753e6304e09b8a06a29c29f81c158f693284cebfd4dca7085741bc06d6a92ca3ea0c1d32e3e56c99", 0x98}, {&(0x7f0000000640)="06d2cdcc88fe9dafaded4ebb8a3ca05da218ba7ddfd992110db08aab5589b8abeebb8d487b03c6dd7c7baa0ce4cdb2c544994496727b17128acaa12e37466f6cde", 0x41}, {&(0x7f00000006c0)="eef3f042ea5d6a178df79d916702c29914e09c5a11d61a07aed50c20a077636e87fc1ad464aabff8c613f66187e92049cb19b9435cdb20ba5ea73f8e9cea2b0077435eca80669d659ee7b5d7cd2f6d3567", 0x51}], 0x6}}, {{&(0x7f0000000780)={0x2, 0x4e22, @multicast2}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000a40)="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", 0x1000}, {&(0x7f0000002080)="fe8ab9d874827a7124e15ada43037f7242f23fc78cb0ccc935143c736b2bb67e8148cd6315c26bd2e7c84d4e55a2335fa3e0c5f6f4cb3b3c2c174231ee6e90fe6bbbef7b9a1b8a3617c68adb3cadcdbd5629e827465b706910323c070d2987187b0d1b6fd9a99a559eef069d96307d498e0175e21ed5f176eadd83bdddd5f6b1db8881b86080833505a953543178ac0eb3d9c5d31114d0b4dcdf0e7dea5530320cac25abee55530d89969075ced0f2c83ab754a94dfe878517ff9817132ef0480e69ffcbf7bfe69a530538fbe91bfa99476e18038191e40304b18cb73b3728c391c71b5b963bda08e40e418f34733b2b07f2de68f0cf205c78b0b480d5061148883933d124e3816c0f62686ee958bca8897ab11496b8eb2249cca2a4090a11609da17c0f8ebf4014e171ebce93774f4411a270e7805147059e3bf2d18863ba844f930e71c176c7249838ae66dff88e706af4fcaee311d755f52ffc0f36ff23a81cad10df00fc59d60d6376d537b0f1cec074bb05974617ecd24d52fbaf91c2f82ebd42fa6f81ba3a8296daa448d2fb11f4bc8dc52d059053de9f81869d4bdcb0925986af2c1fa8ee159ca19c04c8ec100b188fc8e0d22bc063c5cc5169bfc95d6e2926a2888f7a6f8a3c29bb01cd5bd36fd712b44a828eb42dc4970f020dd55f4c367063d3051dba94b74f46fa78f1d76c7c49fe5552e322cc23a40e44519fa1d3b080fb75946ea433aecb12a56bba891ccfb59657950cac43607ae339014041493478e80503380ea23ba59b6d977681a039b4d6f166454d339f26256ad05ea7ffb2304fb5f2d2d61bcae2f33ee59ced2baf6cf3c6b3d2d7c553087a52c69f8dfa23cd70305d82fc3650093f13b572669a5c759c8fccc58eeb4ad6e101ed2e73178dd7d0c80218ffb5209ca89ee3f165d8f3b337c5aabee752c4c8c913d8d166cce33828e0b73ba71a687bbd336a0832d97b80cc0b9d89b82151a3afc58be0681e278768717a28cab06a626382e609585ee30b44787906654d0df90790f87e365bf1907234cdb7935d8018c988af1c893812098278a4b9fa99a3343a9c2babfd8492283853a8606db85d9872df361ada59275acefafc1986a3ccc6df4095b3c9f31c9aad553e2f60b17c5c63ff349a88af6138f979ea063dbf2ef2e1d3965b0749bc944a11cc6e295b752e5a99a5fc659ade1a211ed64e4b87d04ab8fa502e24275e8190d7471fe23a2ec2f1d30f6f2907ab3864291c80ccc9d9f5134a24160f08166b035cd0e1a600d718695850324015877558220f08b63aa7f1250b586740f9e76575ad8dcf5620002ba7c1a2483c5bc9921b3ab80d31d61678b2bc571225e0ea5a81c86474971c9726db5fb75aa0dcd92d1fae8967fa18026512f444df3715a1de7ac632b488fc28b241da8b0973f3e9b6bd77c4219633df07b614645fafe2bec236a22093cf973b3f3902893cb716135b080a7f69c43285af0132a99389037fcae25d746ca3c2cd88c8ac9c6823a006d0e52fe4f35d24488c5e71d594e7be20c50cff97a49bf40f74ed59c46dc88493bbea9df5ee3b4cff8373ac3847cf161ad98fb58d7a82f952e2ef24b4da4bf3ddf5d926e4f36342b412fcf21350b95e7f933d67612a22076e7462aac0a6b748bcec5d6aa11d144627fc823ab7f732f246d62b4af5e624811d9b2f0aa84692f065db2b28806494aa287a7d6e612f43602939c379bdb44482e0568b672fbead815587e94e8ef35fe1f37828c88e2a712eb4aaf522c7881c1ab4ab03f5e5aab82bc9d8a325841a064dc4f1c51aabf2d6572b119775b36c3bfeae9c3b211c97392a638bcdd32bd9b4203beb05c4e3f25ade9e7ccc83324a1a2e95e831e83b01f26d0fc4425c63dabab1bcd418c02bd3c315307805b3e77751de3d11140d8e5ecdfac8a33db0b9913e3f2949111805c2f15baccb0f93fd62a798e47263a9c713a0f770e8d38cce141e4fc0322385d87dcd678e8a4b185644a5e09f1811308d9cff1b96790d286e9ee950fa5048f805c8f073dd06fe29d8ca798a74829628371c91100d67f50198406df4cbd6957f39cd6df171f6b37348629ec36d194d8cdd8b36ee988d63dff9897e1d77f3a0b07e3ec6c3ec59e3b92f34f336fa5cd178fbce40f9a40ccd052a7ec3c30bdab65c5d26a39f913f8630f5db3a07786cb36762e84e9fe9464b4f82e44251766059933442772384e4543247c2f64b47164bbc1f83ce340cbd2a55ea2d621d93a8dd75c77316934b8a8a7511ecd7e263feaea4c99fc6adcbedf0c9d47dab30e6f425786d3d418bbcfe455e4388297a7e624c9a54bcd805b6b5d68efdc2952d47e6a40c3d501620c2534648f972d7ebd788dfbfedfb1ed33873b92f0bb369ed6dfd8ae6c4755a20e0a378a4cd0a93f9c5e7a90c66ce4c832fc7a3f3181316780de82ece700633acea9d1c837c1b3ac0d6bbfa4a5984c14ae74b1c9766aca553d5690c61dc96eab682d6f4c5091b91ed92da9e6057358783b04ac384d7447b1b337d9789702dc087cfcf57c3eb4effe05f3be45fa2ef16087bbd6707958a866281f5db1597a54877d9acc00804c66623a802c88852e1c3ccaa6e32e225a7a4e9c470ded9e791b283df01dff2de064717c8979ec2207f9fe06befaf0f9017399cd328185a96a0f7f2be6362a3360f7b59cc22154210a768a4178ad27037f7a964668327308dae9b7681823809d917f02b1679cfe00d2fbe25e405afaa23b32393c0ef480b93b1104e4c3d26a1a75c91a7ff820b1945917023c31d5332360c49bc43d6ffafcf5829f94f3e5ba155c0acfbeb7191f6e211fea495be29eb979a6afaf2fa40d2c727ec4fd5326372dc0b8d446ce6999afddcb180308ffe6264f36c8b3ddad3a42947a96489ae739b4e50cef09dc9a5cea5023ecdeec5d1ef035942cbb7f4bb1d2c10e188fe2e30b06a334df37ccf82b8a0cd94e0043c8cb99282e4de1749b346c619a4b0258d28621719dd9e4696e8daa7278a568fac060a70a1ca53f17ff4fbe8c31f301ff120a5eaca1eb10987907b43e53fe03909b2e5887861f2ba25b6498487cbec896bbc1a332d43f17ab13f46b45be2a734acd822363b3584d3f3ef975424c20aaf6e7bc096fa9587916f9312aa595edc3c3c07fa1e528d779b25fb7857861d2c22087b96bb6087c71e9071536ca85edfae25cd5863ebeef4e1907dcf47f931c0f7db07235e6e864182d2b92ecee6fb25c28f626f2546f9fa42f7cd5e0f58fc9123a934cc6cf7ec3172e7e73a7276cbd82b2da18caf64c8dcd8cc9816d5d9af296b0b484d0b3d1a1987b13f15a2ed5bc8d31bc6975d0f87225c89315f4f8a8416b7f90195d5236f77b9b5aa0a7c4d9c54fae812ffa69234111bdd1f590868af5926e66ff2586f82298ed6de97ebffcc9bed86f9b52f702da0a7e49c27218b5d188df912b7acef9c09f583ae082a4853755bbb4de1c1d8170761598a27d766dfc1a9149eb6297d53fd1c72b50f16f3042ef95f7e0bd8d09769afaaca2ab3a14c1c3f9fe03d099aac599ab1670b20bf2b35b7f479b38e64c4ed4b46c0fe02071fe062e72ea6705316046db0708bfe051f15c5a7862ad782024731cbdd4cdfdf344762e83009cbb7edf87d4e1012f07f7cc0af77db6bd9b5b430087196b7939b6f1a1686cef74d5c5fb44d69c27a27d47d44e795f7e0e875380d13c784073c8e3c30fb368da3a2ea54f309f5232f3c010bb4a6b65c668941aead518c5ad35225b226036e84604f7582d1dac1acc55c46369d1ff7d6734c9b3b391e4af40ba8cc87cbca1d3763e97c63aa702a9c3df5b56c61551ab2a43990cdb352a9ca7421cff97903831e65fa9f765d9e4a33324e61bd6f6eb01e0f58f4d1447d106d9ed336232420190468d6f782a0f040250d10f2828526f28568b66b8c677f50faec92ebabb4a1730fade1d1563e9f8b8c745ae4af538c3b0a64e1a5d8eaf75c47c4afc10fcf8440671d256c0994b6c5de87a63ebc71846ae34e5c582f891e78c767980eac9ec82b0d96cb607dd2c079c5025ff17b1e3fe3df32e23b504144cb38097358947420efb8554f6fb6bbdfcdf652ed38b3ffbf5da5b3e99ce597ead654328839932f5dda82c95d7673219439c7cc491dfdde53a5fa34c418525a9d73d7829e0b70a1a96845e1b166b5c2eb5d5f96f803955ae690b49472709fc033a18aecc779cc235b57b087c7a9078668fcb446c2be24f3621582c5f72fb0923abda43b9afebbe356dda3777fda1e601a5ca8589d9fd210aa19cf34d9049729848d6747986d0b107e38a93157527482ea2d582535e6610670ef54d085f8d9b8982ab264da39a659682bf133e235a3f45cad6c5eb8b4f0092e024c40edbdd6b93e80ef9129f35bfb1164a8ede808b2c93a8683e726c443639342de9cfb8f4ec8198078c70a7ed1dd056d894f86f93fbef2b456370e926e5a1ba71a8fd752b6e887bc1ad632227f16e8ef67716ad79562e5fbe845b204f942a638455b7e11a67b932af05a68b8371365229c489024cca0c460edfe561b505836a0492d57e974c98a6f649c24353491917334577ec764a8b556d1c6edd32d72d9b7bd39c976565913c2cf066c74e42761e676d13a79018a53e7820082d09bdbda2d51ef13ba133caa0f675025246b9c2ee27cb9b03dae085421ca5cfc05ce612a31dde3c22506c72bb4a27af42e5f64898e544f70fb557703cb5c01c698a91409873a4928b3792005c94c3f95dbd81022336b22376f5dc7f9648dff84ab7881ee96cd5e5875703119347316d2d278e4d7a3efbf6d52ceed53a5f4d3acb9d25d1810d26bf45ee3371b3a7905f91e61f39b83c440fce1e66cad6544c014ee930380cb3ec3ca9960b3daac6281535fa3c26db4cf10bcfce466f5582c4f4be3d777f744557f83e166106bfd696157ea907047eef6989d0ea5539780c252d4d834f3ee37261ef3645e4f7e0a895a0080038b4c5c801bb03c97ea92da8f1823695337cc5c1b3bea8cd49ffd2b69210cf27145431f0e0256c97cfe9a09a55f54bb7f512de376ef2a4ffde2aade0e92d5c8282ab9dab9a48dc9ac6ec4dffb65381822c17a0c534b7f208e8f35a707f6ff827bfff2acffb9244613947cad22eadf67ec832af2674426cf99e25460ab266c90bcf6ba97c725b1cdf75a5f7159a8fc33d9e9d32b7474b7470a6617050acf0d53123a890a44b4a098533fe4879831bae92790f5e7c4b2fdd39a25ed9cf76db36fe9a46828b926cc7d639b395e93894597c337044c50cba00ac5fde76e2036ce1dc1dde48093db79c3a058c5c13478f4c544ac17617ecdea53f62c10b156f47453ee1ce356a991f589c6444b664f3c5ff9c3aac492b8ff2d57b82a158334f8d15b7db85a69a4ac5fb62c98ffeb2abf3d5c4aa7e58c4d66ecca92066effa5ca95884c10c4613af5b78ef7b3397ba5fb66033b02e17614821ae423bf3193e667da1c4083a8f0dd8ec580abe276b7a78ac69b5d562c439c12733783bea3e4fe480e4a031b65a6ab1881d5d7ed041fbda82b3bf2e728977b894ab794230f01ec4ed65c986378287be4700cbf0d327307d068b6671cc2c3546c681ab8580931c72e0d92fa4ac46109fb215a9a93897a9c7c192cf1d83b3687119b3caf7cd0ac74665bbe7c9adaf30bbe1d6ef819a3dc41ccf0a07bdaedb6ec883a5cfabb923ec62e9656b8df30dca17aaed1c0a39254726ae208576fe8211a732b563ca0f0ade8a39b02bc315e93a275fc12bead8342d280dba9d274fcafe9288dc6c69895684c81a9cdcc", 0x1000}], 0x2}}, {{&(0x7f0000000800)={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f0000001a80)=[{&(0x7f0000000840)="47eb7f2e5915de76bdc3d5a57c698f875f6292c4bfb2cfb69ac1ac0ad12d540de0c32cc71b991fa90ddfd8b37c37e0a1763b46f3dcf0361dc74944", 0x3b}, {&(0x7f0000000880)="9b31fedc96d5687fb781cc12b193715465abc2e13c0953f62658030b662467f81d136fcc73fb04fe9cf4b43a6a0653e3b55ac9c17c78b27cae35062c1ba696fa15243c2ca62fcbbb3deff435a0090dd623ac70025b39de93970eee2a55709934a850c64e67c20628d4101fadab4e1f03db04e4316b8d208d9cdf432b708117bde6aec6f48e9f4d49f6ad408ac226", 0x8e}, {&(0x7f0000000940)="c098a148e6f18ef176fe84362e3a5e3ac07daf5f4280c10fa51ba378a19e9d86b7f58f8a62eb2e1e8c59cae14146ee7ae4f313a9103e6abd2edbdd25c6cd92e65f91f07d75b7205929dd0dff349e3f13531a1862bf1c77dce439cfb97e664ee5af77856f8c7e48311e94379f1510c7dec62ec4a132be6ef7a51d6d14d9da509e609239d24d646032f0fd710e1797ac574722d66357ed76b658ecea724041a87cc6044d5a387bafe112ac5cc430", 0xad}, {&(0x7f0000001b40)="e29e65d3f0b0353a521904752af19a157bcae8452805a3a9410eb1decc45ffbd4b43eb8ca6f073b7a70fda782ccc319820784132d8cfc5350784", 0x3a}], 0x4}}], 0x3, 0x400e000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000340)=[{0x20, 0xb, 0x3, 0xf663}, {0x6, 0x0, 0x3, 0x2}]}, 0x8)
syz_io_uring_setup(0x2b2f, &(0x7f00000003c0)={0x0, 0xe63b, 0x20, 0x0, 0x27f}, &(0x7f0000000280), &(0x7f0000000440))
sendmmsg(r5, &(0x7f0000001c00), 0x400000000000159, 0x40840)

1.245255441s ago: executing program 1 (id=2474):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="18ff03000000000000000000000000009500050000000000"], &(0x7f0000000300)='syzkaller\x00'}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@mpls_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_OIF={0x8}]}, 0x24}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000001240)=""/200, 0x0})
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000001500)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000003100)=""/4102, 0xeeef0000})
ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00'})
ioctl(r2, 0x8b22, &(0x7f0000000040))

829.93401ms ago: executing program 4 (id=2475):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
rename(0x0, &(0x7f0000000080)='./file1\x00')

727.355645ms ago: executing program 4 (id=2476):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/power/pm_wakeup_irq', 0x20000, 0x81)
ioctl$FS_IOC_GETFSUUID(r1, 0x80111500, &(0x7f0000000080))
ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f00000000c0)={0xff, 0xfffffffffffffffe, 0x2, 0x0, 0x0, [{{r1}, 0x9}, {{r1}, 0x2}]})
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x8c, r3, 0x10, 0x70bd25, 0xb1b7, {}, [@NLBL_UNLABEL_A_SECCTX={0x23, 0x7, 'system_u:object_r:adjtime_t:s0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @local}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x1e}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @mcast1}]}, 0x8c}, 0x1, 0x0, 0x0, 0x8000}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0xd2, 0x36, &(0x7f0000000300)="84e611c8522723dd5e720d441ee63cc00a1a1d7a0d1bc559b6d3bb91d84f48abd837c40da7a914d147cd4f9d79300b70ceb6262e1311cd7d96657f49da027ea81558a9502a457ad42bd282a3f22f443a2481be606fbdf766d2948432b54de625644e09e4141e2fa0ecb6724977eb225ffe7ba72e503f23e4e7be2d982f40038d9c0f2e58610e39e3c9452376e0700944ca92e519d1d4d9a9e5f5d9870ea429bec3a5af6ba584fea74d56c04b26620640e67659305840528132750c382d7a0c18270cdf0e352d652e0fd07f4f16c5b4610d78", &(0x7f0000000400)=""/54, 0x81e, 0x0, 0x67, 0x21, &(0x7f0000000440)="3ffc5d2c613f0f135f8909f539088fee0644ccbaf467279a868272554eee9be17756b1a9c3980c47e3672356fe5d0320254920b141ba844119884edd119664ef1a57a7a7816762051023c60b096d36795d3bf325d0fbf9a62ebc012896a3d692c6085d72367fec", &(0x7f00000004c0)="41dad360dd79705feea45f0702c2cbdd3f2460718db9eab294007c597a58059b98", 0x2, 0x0, 0x10}, 0x4c)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000580)=0x5, 0x4)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x70, r0, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x60}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x3}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_REG_RULES={0x2c, 0x22, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xc}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xc1}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x2}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x2}]}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}]}, 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x50, r1, 0x5)
acct(&(0x7f0000000700)='./file0\x00')
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000740), r4)
acct(&(0x7f0000000780)='./file0\x00')
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000800)={{{@in=@local, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@loopback}, 0x0, @in6=@remote}}, &(0x7f0000000900)=0xe4)
r6 = fcntl$getown(r4, 0x9)
lstat(&(0x7f0000000a80)='./file0/file0\x00', &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000b40)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, <r8=>0x0}}, './file0\x00'})
ioctl$BLKTRACESETUP(r1, 0xc0401273, &(0x7f0000000b80)={'\x00', 0x800, 0x5, 0x2, 0x3, 0x9, <r9=>0xffffffffffffffff})
r10 = getuid()
stat(&(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
r12 = getpid()
r13 = getuid()
stat(&(0x7f0000000c80)='./file0\x00', &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0})
r15 = fcntl$getown(r4, 0x9)
getresuid(&(0x7f0000000d40)=<r16=>0x0, &(0x7f0000000d80), &(0x7f0000000dc0))
getresgid(&(0x7f0000000e00), &(0x7f0000000e40)=<r17=>0x0, &(0x7f0000000e80))
r18 = fcntl$getown(r4, 0x9)
sendmsg$netlink(r1, &(0x7f0000001200)={&(0x7f00000007c0)=@kern={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000a40)=[{&(0x7f0000000940)={0xd0, 0x36, 0x1, 0x70bd26, 0x25dfdbfe, "", [@typed={0xc, 0x88, 0x0, 0x0, @u64=0x4f3}, @nested={0xb4, 0xf0, 0x0, 0x1, [@typed={0x8, 0x76, 0x0, 0x0, @uid=r5}, @typed={0x10, 0x11e, 0x0, 0x0, @str='(+\xe3.(\\-\\,!;\x00'}, @nested={0x4, 0xd3}, @generic="db0ef577d5547909a809b3010af0ebeb01676098e4cd2f4a608070f09aa2baadb45c74e9782f3ee7cc2e3818775d85fb3c5eb46104290643826bccc4f81e09b3717bc845696f1bfc1ba737c8a56cac5076709d2ff8d5e561978a290ed52583466a2f2f1f5e8f837590147a565961a0e5fdedf5c31a0ba3328f204ff17af631d452bbd4c1f5597ed69ce96bd31b14dacd", @nested={0x4, 0x1c}]}]}, 0xd0}], 0x1, &(0x7f0000001100)=[@cred={{0x18, 0x1, 0x2, {r6, r7, r8}}}, @cred={{0x18, 0x1, 0x2, {r9, r10, r11}}}, @cred={{0x18, 0x1, 0x2, {r12, r13, r14}}}, @cred={{0x18, 0x1, 0x2, {r15, r16, r17}}}, @cred={{0x18, 0x1, 0x2, {r18}}}, @rights={{0x34, 0x1, 0x1, [r1, 0xffffffffffffffff, r1, 0xffffffffffffffff, r4, r4, r4, r4, r1, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [r1, 0xffffffffffffffff, r1, r4, 0xffffffffffffffff, r4, r4]}}, @cred={{0x18}}], 0xec, 0x4004}, 0x40080)

571.791795ms ago: executing program 2 (id=2477):
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x8, 0x4, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r0)
getsockname$packet(r0, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x0, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4b, 0x9, 0x8, 0x0, 0x400003}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = add_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$read(0x20, r3, 0x0, 0x0)
r4 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$FITRIM(r4, 0xc0185879, &(0x7f00000000c0)={0xfffffffffffffffa, 0xd, 0x8})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_GET(r8, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="bb72a466fa01002dbd70000af2f7dfdf2ce02a7d83718bd605df25010000000e0001006e657472657673696d0000000f0000006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x800}, 0xc010)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r7, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f0000001880)=ANY=[@ANYBLOB="080200004223911e27ab6eae18320d2b6d", @ANYRES16=r9, @ANYBLOB="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"], 0x208}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="18ab0078", @ANYRES16=r6, @ANYBLOB="010000000000fcdbdf250100000004000180"], 0x18}}, 0x2000c050)
socket$alg(0x26, 0x5, 0x0)
accept4(0xffffffffffffffff, &(0x7f00000001c0)=@x25={0x9, @remote}, 0x0, 0x400)
getrlimit(0xd, &(0x7f0000000100))
inotify_init1(0x0)
socket$tipc(0x1e, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

403.43837ms ago: executing program 4 (id=2478):
r0 = socket$kcm(0x29, 0x5, 0x0)
sendmmsg$inet(r0, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000200)="c0", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
openat$vcsu(0xffffff9c, &(0x7f0000000200), 0x80000, 0x0)
inotify_init1(0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
open(&(0x7f0000000000)='./file1\x00', 0x10b942, 0x0)
syz_open_procfs(0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x123280, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f0000000040))
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)

183.152174ms ago: executing program 1 (id=2479):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x3}, {0xffff, 0xffff}, {0xd, 0x2}}, [@qdisc_kind_options=@q_gred={{0x9}, {0xfffffffffffffdd9, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x3, 0x1, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x51}, 0x20040000)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8, &(0x7f00000002c0))
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
pipe2$9p(0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, 0x0, 0x22002, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000040), 0xffffffffffffffff)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, 0x0, 0x26, 0x0, 0x8, 0x1}, 0x28)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GETVERSION(0xffffffffffffffff, 0xc040ff0b, &(0x7f0000000180))
inotify_init1(0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r4, 0x400454c9, 0xba98575a95aeb70d)
close(0xffffffffffffffff)
r5 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r5, 0x0, 0x0, 0x4098884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r6, 0x8922, &(0x7f0000000440)={'syz_tun\x00', 0x101})
sendto$inet6(r5, &(0x7f0000000040), 0x3000, 0x0, 0x0, 0x60)

5.006608ms ago: executing program 4 (id=2480):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, &(0x7f0000000700)=ANY=[@ANYBLOB="56c78e3c733d76697274676f2c6e6f65bc33dbde548d51f5638173733d616e792c63616368653d667363616368"])
chdir(&(0x7f0000000300)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x2c0000, 0x28)
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file1\x00')
creat(&(0x7f0000000440)='./file0\x00', 0x0)

0s ago: executing program 0 (id=2481):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0xb8}}, 0x4000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="010000000a000000cd000000e8"], 0x48)
r2 = signalfd4(r1, &(0x7f0000000040)={[0x3]}, 0x8, 0x800)
sendmsg$nl_route_sched_retired(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)=@delqdisc={0xa8, 0x25, 0x8, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xfff2, 0x1}, {0x10, 0xffeb}, {0xfff3, 0x4}}, [@q_dsmark={{0xb}, {0x14, 0x2, [@TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x6}, @TCA_DSMARK_SET_TC_INDEX={0x4}]}}, @q_dsmark={{0xb}, {0x14, 0x2, [@TCA_DSMARK_SET_TC_INDEX={0x4}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x10}, @TCA_DSMARK_SET_TC_INDEX={0x4}]}}, @q_dsmark={{0xb}, {0x14, 0x2, [@TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0x3}, @TCA_DSMARK_INDICES={0x6, 0x1, 0x4}]}}, @q_dsmark={{0xb}, {0x18, 0x2, [@TCA_DSMARK_INDICES={0x6}, @TCA_DSMARK_DEFAULT_INDEX={0x6, 0x2, 0xd}, @TCA_DSMARK_SET_TC_INDEX={0x4}]}}]}, 0xa8}}, 0x40)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
pivot_root(0x0, 0x0)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x2f, 0x2007, @fd, 0x7, 0x0, 0x0, 0x4, 0x0, {0x1}})
fsopen(0x0, 0x0)
write$vga_arbiter(r5, &(0x7f0000000040)=@other={'lock', ' ', 'io+mem'}, 0xc)
write$vga_arbiter(r5, &(0x7f0000000080)=@other={'decodes', ' ', 'none'}, 0xd)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r6 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r6, 0xc100565c, &(0x7f00000013c0)={0x3, 0x2, 0x2, {0x5, @vbi={0xb5, 0x4, 0x3, 0x0, [0x0, 0x18000000], [0x8200, 0x1]}}, 0xe})
ioctl$VIDIOC_QBUF(r6, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x4, 0x0, 0x0, "001500"}, 0x0, 0x2, {}, 0x18603})
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r7, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

229][T12698]  ? fdget_pos+0x2a2/0x370
[  403.906248][T12698]  ? __pfx_vfs_read+0x10/0x10
[  403.906262][T12698]  ? find_held_lock+0x2b/0x80
[  403.906294][T12698]  ? __fget_files+0x20e/0x3c0
[  403.906321][T12698]  ksys_read+0x12a/0x250
[  403.906336][T12698]  ? __pfx_ksys_read+0x10/0x10
[  403.906356][T12698]  ? rcu_is_watching+0x12/0xc0
[  403.906380][T12698]  __do_fast_syscall_32+0x7c/0x3a0
[  403.906403][T12698]  do_fast_syscall_32+0x32/0x80
[  403.906420][T12698]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  403.906442][T12698] RIP: 0023:0xf70ee579
[  403.906457][T12698] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  403.906472][T12698] RSP: 002b:00000000f50de590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  403.906489][T12698] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f50de620
[  403.906499][T12698] RDX: 000000000000000f RSI: 00000000f7454ff4 RDI: 0000000000000000
[  403.906508][T12698] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  403.906518][T12698] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  403.906529][T12698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  403.906551][T12698]  </TASK>
[  404.001166][T12700] warning: `syz.2.1955' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  404.081825][   T40] kauditd_printk_skb: 17 callbacks suppressed
[  404.081834][   T40] audit: type=1326 audit(1752971780.102:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  404.083031][   T40] audit: type=1326 audit(1752971780.102:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  404.124529][   T40] audit: type=1326 audit(1752971780.102:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  404.133959][   T40] audit: type=1326 audit(1752971780.102:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  404.143476][ T6046] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  404.154418][   T40] audit: type=1326 audit(1752971780.111:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  404.161228][   T40] audit: type=1326 audit(1752971780.111:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  404.168264][   T40] audit: type=1326 audit(1752971780.111:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  404.175896][   T40] audit: type=1326 audit(1752971780.111:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  404.182540][   T40] audit: type=1326 audit(1752971780.111:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[  404.189483][   T40] audit: type=1326 audit(1752971780.111:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12703 comm="syz.1.1957" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[  404.333004][ T6046] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  404.336224][ T6046] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  404.339386][ T6046] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  404.342166][ T6046] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  404.345567][ T6046] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  404.358015][ T6046] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  404.360870][ T6046] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  404.363441][ T6046] usb 5-1: Product: syz
[  404.364769][ T6046] usb 5-1: Manufacturer: syz
[  404.372000][ T6046] cdc_wdm 5-1:1.0: skipping garbage
[  404.373724][ T6046] cdc_wdm 5-1:1.0: skipping garbage
[  404.377803][ T6046] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  404.379797][ T6046] cdc_wdm 5-1:1.0: Unknown control protocol
[  404.507836][T12705] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  404.755017][    C0] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  404.755127][T12585] usb 5-1: USB disconnect, device number 29
[  404.757017][    C0] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  404.757035][    C0] cdc_wdm 5-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  404.757971][T12712] cdc_wdm 5-1:1.0: Tx URB error: -19
[  406.000531][T12735] FAULT_INJECTION: forcing a failure.
[  406.000531][T12735] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  406.004998][T12735] CPU: 0 UID: 0 PID: 12735 Comm: syz.1.1965 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  406.005014][T12735] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  406.005021][T12735] Call Trace:
[  406.005025][T12735]  <TASK>
[  406.005029][T12735]  dump_stack_lvl+0x16c/0x1f0
[  406.005045][T12735]  should_fail_ex+0x512/0x640
[  406.005058][T12735]  _copy_from_user+0x2e/0xd0
[  406.005093][T12735]  input_event_from_user+0x137/0x290
[  406.005108][T12735]  ? __pfx_input_event_from_user+0x10/0x10
[  406.005120][T12735]  ? input_inject_event+0x1a5/0x390
[  406.005133][T12735]  evdev_write+0x26b/0x440
[  406.005144][T12735]  ? __pfx_evdev_write+0x10/0x10
[  406.005155][T12735]  ? bpf_lsm_file_permission+0x9/0x10
[  406.005169][T12735]  ? security_file_permission+0x71/0x210
[  406.005186][T12735]  ? rw_verify_area+0xcf/0x680
[  406.005203][T12735]  ? __pfx_evdev_write+0x10/0x10
[  406.005211][T12735]  vfs_write+0x2a0/0x1150
[  406.005224][T12735]  ? __pfx_vfs_write+0x10/0x10
[  406.005233][T12735]  ? find_held_lock+0x2b/0x80
[  406.005244][T12735]  ? __fget_files+0x204/0x3c0
[  406.005256][T12735]  ? __fget_files+0x20e/0x3c0
[  406.005269][T12735]  ksys_write+0x1f8/0x250
[  406.005280][T12735]  ? __pfx_ksys_write+0x10/0x10
[  406.005294][T12735]  ? rcu_is_watching+0x12/0xc0
[  406.005314][T12735]  __do_fast_syscall_32+0x7c/0x3a0
[  406.005334][T12735]  do_fast_syscall_32+0x32/0x80
[  406.005351][T12735]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  406.005374][T12735] RIP: 0023:0xf70ae579
[  406.005386][T12735] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  406.005402][T12735] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  406.005416][T12735] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000040
[  406.005426][T12735] RDX: 00000000000012d8 RSI: 0000000000000000 RDI: 0000000000000000
[  406.005435][T12735] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  406.005446][T12735] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  406.005456][T12735] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  406.005476][T12735]  </TASK>
[  406.201771][T12745] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  406.204189][T12745] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  406.210029][T12745] vhci_hcd vhci_hcd.0: Device attached
[  406.216731][T12746] vhci_hcd: connection closed
[  406.217636][   T12] vhci_hcd: stop threads
[  406.220568][   T12] vhci_hcd: release socket
[  406.221996][   T12] vhci_hcd: disconnect device
[  407.269355][T12762] pim6reg: entered allmulticast mode
[  407.467811][   T53] usb 9-1: new low-speed USB device number 2 using dummy_hcd
[  407.638930][   T53] usb 9-1: Invalid ep0 maxpacket: 64
[  407.673707][T12767] pim6reg: entered allmulticast mode
[  407.788498][   T53] usb 9-1: new low-speed USB device number 3 using dummy_hcd
[  408.182180][   T53] usb 9-1: Invalid ep0 maxpacket: 64
[  408.219919][   T53] usb usb9-port1: attempt power cycle
[  408.579801][   T53] usb 9-1: new low-speed USB device number 4 using dummy_hcd
[  408.601432][   T53] usb 9-1: Invalid ep0 maxpacket: 64
[  408.782820][   T53] usb 9-1: new low-speed USB device number 5 using dummy_hcd
[  408.804856][   T53] usb 9-1: Invalid ep0 maxpacket: 64
[  408.809074][   T53] usb usb9-port1: unable to enumerate USB device
[  409.462228][T12796] 8021q: adding VLAN 0 to HW filter on device bond0
[  409.468476][T12796] bond0: (slave rose0): Enslaving as an active interface with an up link
[  410.544648][T12836] FAULT_INJECTION: forcing a failure.
[  410.544648][T12836] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.552060][T12836] CPU: 3 UID: 0 PID: 12836 Comm: syz.4.1987 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  410.552075][T12836] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  410.552082][T12836] Call Trace:
[  410.552085][T12836]  <TASK>
[  410.552089][T12836]  dump_stack_lvl+0x16c/0x1f0
[  410.552103][T12836]  should_fail_ex+0x512/0x640
[  410.552116][T12836]  _copy_from_user+0x2e/0xd0
[  410.552129][T12836]  get_compat_msghdr+0xa7/0x170
[  410.552140][T12836]  ? __pfx_get_compat_msghdr+0x10/0x10
[  410.552152][T12836]  ? __lock_acquire+0x622/0x1c90
[  410.552170][T12836]  ___sys_recvmsg+0x191/0x1a0
[  410.552182][T12836]  ? __pfx____sys_recvmsg+0x10/0x10
[  410.552193][T12836]  ? find_held_lock+0x2b/0x80
[  410.552209][T12836]  ? __pfx___might_resched+0x10/0x10
[  410.552224][T12836]  do_recvmmsg+0x55d/0x750
[  410.552236][T12836]  ? __pfx_do_recvmmsg+0x10/0x10
[  410.552256][T12836]  ? __fget_files+0x20e/0x3c0
[  410.552265][T12836]  ? handle_mm_fault+0x280/0xd10
[  410.552283][T12836]  __sys_recvmmsg+0x21c/0x280
[  410.552294][T12836]  ? __pfx___sys_recvmmsg+0x10/0x10
[  410.552309][T12836]  ? __pfx_ksys_write+0x10/0x10
[  410.552322][T12836]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  410.552334][T12836]  ? lockdep_hardirqs_on+0x7c/0x110
[  410.552343][T12836]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  410.552354][T12836]  __do_fast_syscall_32+0x7c/0x3a0
[  410.552366][T12836]  do_fast_syscall_32+0x32/0x80
[  410.552377][T12836]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  410.552389][T12836] RIP: 0023:0xf7fa8579
[  410.552398][T12836] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  410.552408][T12836] RSP: 002b:00000000f50a555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  410.552418][T12836] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080003700
[  410.552426][T12836] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[  410.552432][T12836] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  410.552438][T12836] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  410.552444][T12836] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  410.552457][T12836]  </TASK>
[  410.758099][T12846] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1992'.
[  410.885614][T12851] FAULT_INJECTION: forcing a failure.
[  410.885614][T12851] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.890145][T12851] CPU: 0 UID: 0 PID: 12851 Comm: syz.2.1994 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  410.890159][T12851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  410.890166][T12851] Call Trace:
[  410.890170][T12851]  <TASK>
[  410.890174][T12851]  dump_stack_lvl+0x16c/0x1f0
[  410.890189][T12851]  should_fail_ex+0x512/0x640
[  410.890202][T12851]  _copy_from_user+0x2e/0xd0
[  410.890214][T12851]  kstrtouint_from_user+0xd6/0x1d0
[  410.890229][T12851]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  410.890244][T12851]  ? __lock_acquire+0xb8a/0x1c90
[  410.890264][T12851]  proc_fail_nth_write+0x83/0x250
[  410.890280][T12851]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  410.890299][T12851]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  410.890312][T12851]  vfs_write+0x2a0/0x1150
[  410.890326][T12851]  ? __pfx_vfs_write+0x10/0x10
[  410.890335][T12851]  ? find_held_lock+0x2b/0x80
[  410.890349][T12851]  ? __fget_files+0x20e/0x3c0
[  410.890362][T12851]  ksys_write+0x12a/0x250
[  410.890372][T12851]  ? __pfx_ksys_write+0x10/0x10
[  410.890383][T12851]  ? rcu_is_watching+0x12/0xc0
[  410.890396][T12851]  __do_fast_syscall_32+0x7c/0x3a0
[  410.890409][T12851]  do_fast_syscall_32+0x32/0x80
[  410.890420][T12851]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  410.890433][T12851] RIP: 0023:0xf70ee579
[  410.890441][T12851] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  410.890451][T12851] RSP: 002b:00000000f50de590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  410.890467][T12851] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50de620
[  410.890473][T12851] RDX: 0000000000000001 RSI: 00000000f7454ff4 RDI: 0000000000000000
[  410.890479][T12851] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  410.890485][T12851] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  410.890491][T12851] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  410.890504][T12851]  </TASK>
[  410.997884][T12857] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1996'.
[  411.094719][T12585] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  411.304431][T12870] tipc: Resetting bearer <eth:team0>
[  411.343329][T12585] usb 9-1: config 0 has no interfaces?
[  411.348692][T12585] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  411.351586][T12585] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.354189][T12585] usb 9-1: Product: syz
[  411.355610][T12585] usb 9-1: Manufacturer: syz
[  411.357165][T12585] usb 9-1: SerialNumber: syz
[  411.373209][T12585] usb 9-1: config 0 descriptor??
[  411.746175][T12874] binder: 12872:12874 ioctl c00c620f 80000740 returned -22
[  412.125517][T12884] dvmrp0: entered allmulticast mode
[  412.342659][   T53] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  412.510324][   T53] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  412.514065][   T53] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  412.518200][   T53] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  412.521813][   T53] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  412.526356][   T53] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  412.532201][   T53] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  412.532225][   T53] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  412.532242][   T53] usb 5-1: Product: syz
[  412.532263][   T53] usb 5-1: Manufacturer: syz
[  412.537186][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  412.537198][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  412.539726][   T53] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  412.539737][   T53] cdc_wdm 5-1:1.0: Unknown control protocol
[  413.023293][    C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  413.024398][   T34] usb 5-1: USB disconnect, device number 30
[  413.025433][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  413.029956][    C2] cdc_wdm 5-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  413.033332][T12903] cdc_wdm 5-1:1.0: Tx URB error: -19
[  413.304789][ T6046] usb 9-1: USB disconnect, device number 6
[  414.472924][ T6046] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  414.596537][T12926] bridge0: port 2(bridge_slave_1) entered disabled state
[  414.600224][T12926] bridge0: port 1(bridge_slave_0) entered disabled state
[  414.641314][ T6046] usb 6-1: Using ep0 maxpacket: 16
[  414.645021][ T6046] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  414.650603][ T6046] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  414.653804][ T6046] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  414.658963][ T6046] usb 6-1: config 0 descriptor??
[  414.680093][ T6046] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input17
[  414.700707][T12926] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  414.711557][T12926] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  414.766445][T12926] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  414.769629][T12926] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  414.772726][T12926] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  414.775586][T12926] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  415.039128][T12914] netlink: 'syz.1.2010': attribute type 4 has an invalid length.
[  415.061646][   T53] lo speed is unknown, defaulting to 1000
[  415.064810][   T53] syz0: Port: 1 Link DOWN
[  416.051967][ T5356] bcm5974 6-1:0.0: could not read from device
[  416.059903][ T6046] bcm5974 6-1:0.0: could not read from device
[  416.064589][ T5356] bcm5974 6-1:0.0: could not read from device
[  416.075682][ T6046] input: failed to attach handler mousedev to device input17, error: -5
[  416.082734][ T5356] bcm5974 6-1:0.0: could not read from device
[  416.085885][ T6046] usb 6-1: USB disconnect, device number 22
[  416.086019][ T5356] bcm5974 6-1:0.0: could not read from device
[  416.127480][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  416.437605][T12585] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  416.671099][T12585] usb 9-1: config 0 has no interfaces?
[  416.680667][T12585] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  416.687792][T12585] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  416.690521][T12585] usb 9-1: Product: syz
[  416.691919][T12585] usb 9-1: Manufacturer: syz
[  416.693478][T12585] usb 9-1: SerialNumber: syz
[  416.753689][  T153] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0
[  416.758059][  T153] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0
[  416.997140][T12585] usb 9-1: config 0 descriptor??
[  417.313799][   T53] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  417.447233][T12982] binder: 12981:12982 ioctl 4018620d 0 returned -22
[  417.490884][   T53] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  417.499864][   T53] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  417.503491][   T53] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  417.506345][   T53] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  417.509769][   T53] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  417.515128][   T53] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  417.518223][   T53] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  417.520719][   T53] usb 5-1: Product: syz
[  417.522180][   T53] usb 5-1: Manufacturer: syz
[  417.533980][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  417.535719][   T53] cdc_wdm 5-1:1.0: skipping garbage
[  417.538277][   T53] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  417.540125][   T53] cdc_wdm 5-1:1.0: Unknown control protocol
[  417.922705][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  417.925468][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  417.929076][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  417.931839][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  417.936021][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  417.938767][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  417.941348][   T34] usb 5-1: USB disconnect, device number 31
[  417.943897][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  417.943909][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  417.943918][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  418.323344][ T6046] usb 9-1: USB disconnect, device number 7
[  418.856165][T13007] FAULT_INJECTION: forcing a failure.
[  418.856165][T13007] name failslab, interval 1, probability 0, space 0, times 0
[  418.861445][T13007] CPU: 3 UID: 0 PID: 13007 Comm: syz.1.2036 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  418.861480][T13007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  418.861492][T13007] Call Trace:
[  418.861500][T13007]  <TASK>
[  418.861507][T13007]  dump_stack_lvl+0x16c/0x1f0
[  418.861530][T13007]  should_fail_ex+0x512/0x640
[  418.861553][T13007]  should_failslab+0xc2/0x120
[  418.861574][T13007]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  418.861595][T13007]  ? skb_clone+0x190/0x3f0
[  418.861617][T13007]  skb_clone+0x190/0x3f0
[  418.861638][T13007]  netlink_deliver_tap+0xabd/0xd30
[  418.861665][T13007]  netlink_unicast+0x62f/0x850
[  418.861688][T13007]  ? __pfx_netlink_unicast+0x10/0x10
[  418.861717][T13007]  netlink_sendmsg+0x8d1/0xdd0
[  418.861736][T13007]  ? __pfx_netlink_sendmsg+0x10/0x10
[  418.861756][T13007]  ? __import_iovec+0x1dd/0x650
[  418.861784][T13007]  ____sys_sendmsg+0xa95/0xc70
[  418.861808][T13007]  ? __pfx_____sys_sendmsg+0x10/0x10
[  418.861829][T13007]  ? get_compat_msghdr+0x11a/0x170
[  418.861857][T13007]  ___sys_sendmsg+0x134/0x1d0
[  418.861876][T13007]  ? __pfx____sys_sendmsg+0x10/0x10
[  418.861906][T13007]  ? find_held_lock+0x2b/0x80
[  418.861939][T13007]  __sys_sendmsg+0x16d/0x220
[  418.861958][T13007]  ? __pfx___sys_sendmsg+0x10/0x10
[  418.861988][T13007]  ? rcu_is_watching+0x12/0xc0
[  418.862023][T13007]  __do_fast_syscall_32+0x7c/0x3a0
[  418.862041][T13007]  do_fast_syscall_32+0x32/0x80
[  418.862055][T13007]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  418.862071][T13007] RIP: 0023:0xf70ae579
[  418.862082][T13007] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  418.862095][T13007] RSP: 002b:00000000f4fdc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  418.862112][T13007] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000080000140
[  418.862127][T13007] RDX: 0000000000000030 RSI: 0000000000000000 RDI: 0000000000000000
[  418.862136][T13007] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  418.862145][T13007] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  418.862155][T13007] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  418.862179][T13007]  </TASK>
[  418.994555][T13010] FAULT_INJECTION: forcing a failure.
[  418.994555][T13010] name failslab, interval 1, probability 0, space 0, times 0
[  418.998466][T13010] CPU: 1 UID: 0 PID: 13010 Comm: syz.4.2038 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  418.998480][T13010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  418.998486][T13010] Call Trace:
[  418.998490][T13010]  <TASK>
[  418.998494][T13010]  dump_stack_lvl+0x16c/0x1f0
[  418.998509][T13010]  should_fail_ex+0x512/0x640
[  418.998520][T13010]  ? __kmalloc_noprof+0xbf/0x510
[  418.998532][T13010]  ? jent_kcapi_init+0xea/0x230
[  418.998549][T13010]  should_failslab+0xc2/0x120
[  418.998561][T13010]  __kmalloc_noprof+0xd2/0x510
[  418.998574][T13010]  jent_kcapi_init+0xea/0x230
[  418.998590][T13010]  ? __pfx_jent_kcapi_init+0x10/0x10
[  418.998606][T13010]  crypto_create_tfm_node+0x1bd/0x350
[  418.998622][T13010]  crypto_alloc_tfm_node+0x102/0x260
[  418.998636][T13010]  ? kasan_save_track+0x14/0x30
[  418.998647][T13010]  ? __pfx_rng_bind+0x10/0x10
[  418.998659][T13010]  rng_bind+0x6c/0xf0
[  418.998672][T13010]  alg_bind+0x264/0x510
[  418.998683][T13010]  __sys_bind+0x1a4/0x260
[  418.998699][T13010]  ? __pfx___sys_bind+0x10/0x10
[  418.998712][T13010]  ? __fget_files+0x20e/0x3c0
[  418.998726][T13010]  ? __pfx_ksys_write+0x10/0x10
[  418.998740][T13010]  __ia32_sys_bind+0x71/0xb0
[  418.998754][T13010]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  418.998765][T13010]  __do_fast_syscall_32+0x7c/0x3a0
[  418.998777][T13010]  do_fast_syscall_32+0x32/0x80
[  418.998788][T13010]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  418.998802][T13010] RIP: 0023:0xf7fa8579
[  418.998810][T13010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  418.998820][T13010] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000169
[  418.998830][T13010] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000600
[  418.998837][T13010] RDX: 0000000000000058 RSI: 0000000000000000 RDI: 0000000000000000
[  418.998842][T13010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  418.998848][T13010] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  418.998854][T13010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  418.998867][T13010]  </TASK>
[  419.673370][T13019] sg_read: process 1550 (syz.1.2040) changed security contexts after opening file descriptor, this is not allowed.
[  419.679189][T13019] FAULT_INJECTION: forcing a failure.
[  419.679189][T13019] name failslab, interval 1, probability 0, space 0, times 0
[  419.683118][T13019] CPU: 3 UID: 0 PID: 13019 Comm: syz.1.2040 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  419.683132][T13019] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  419.683139][T13019] Call Trace:
[  419.683143][T13019]  <TASK>
[  419.683152][T13019]  dump_stack_lvl+0x16c/0x1f0
[  419.683167][T13019]  should_fail_ex+0x512/0x640
[  419.683178][T13019]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  419.683191][T13019]  should_failslab+0xc2/0x120
[  419.683203][T13019]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  419.683214][T13019]  ? __alloc_skb+0x2b2/0x380
[  419.683227][T13019]  __alloc_skb+0x2b2/0x380
[  419.683236][T13019]  ? __pfx___alloc_skb+0x10/0x10
[  419.683247][T13019]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  419.683264][T13019]  netlink_alloc_large_skb+0x69/0x130
[  419.683277][T13019]  netlink_sendmsg+0x6a1/0xdd0
[  419.683292][T13019]  ? __pfx_netlink_sendmsg+0x10/0x10
[  419.683305][T13019]  ? __import_iovec+0x1dd/0x650
[  419.683320][T13019]  ____sys_sendmsg+0xa95/0xc70
[  419.683335][T13019]  ? __pfx_____sys_sendmsg+0x10/0x10
[  419.683348][T13019]  ? get_compat_msghdr+0x11a/0x170
[  419.683365][T13019]  ___sys_sendmsg+0x134/0x1d0
[  419.683377][T13019]  ? __pfx____sys_sendmsg+0x10/0x10
[  419.683394][T13019]  ? find_held_lock+0x2b/0x80
[  419.683413][T13019]  __sys_sendmsg+0x16d/0x220
[  419.683424][T13019]  ? __pfx___sys_sendmsg+0x10/0x10
[  419.683439][T13019]  ? __secure_computing+0x21c/0x320
[  419.683454][T13019]  __do_fast_syscall_32+0x7c/0x3a0
[  419.683466][T13019]  do_fast_syscall_32+0x32/0x80
[  419.683477][T13019]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  419.683490][T13019] RIP: 0023:0xf70ae579
[  419.683498][T13019] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  419.683508][T13019] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  419.683519][T13019] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000280
[  419.683526][T13019] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  419.683531][T13019] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  419.683537][T13019] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  419.683543][T13019] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  419.683555][T13019]  </TASK>
[  419.782600][T13020] sp0: Synchronizing with TNC
[  419.943146][T13024] netlink: 'syz.2.2042': attribute type 4 has an invalid length.
[  419.948325][T13024] sctp: [Deprecated]: syz.2.2042 (pid 13024) Use of struct sctp_assoc_value in delayed_ack socket option.
[  419.948325][T13024] Use struct sctp_sack_info instead
[  420.077287][T13028] lo speed is unknown, defaulting to 1000
[  420.122917][T13033] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  420.127870][   T53] lo speed is unknown, defaulting to 1000
[  420.129718][   T53] syz0: Port: 1 Link ACTIVE
[  420.131053][T13033] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  420.170423][T13028] lo speed is unknown, defaulting to 1000
[  420.317964][T12585] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  420.501640][T12585] usb 7-1: Using ep0 maxpacket: 32
[  420.512225][T12585] usb 7-1: config 0 has no interfaces?
[  420.514155][T12585] usb 7-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  420.521022][    T9] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  420.545719][T12585] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.608363][T12585] usb 7-1: config 0 descriptor??
[  420.901617][    T9] usb 9-1: config 0 has no interfaces?
[  420.906517][T13032] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[  420.908614][T13032] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  420.933130][T13032] vhci_hcd vhci_hcd.0: Device attached
[  420.982834][T13054] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  421.104159][T13032] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(15)
[  421.106286][T13032] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  421.123709][T13032] vhci_hcd vhci_hcd.0: Device attached
[  421.133758][T12585] vhci_hcd: vhci_device speed not set
[  421.203759][T13032] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(17)
[  421.205855][T13032] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  421.216310][T13032] vhci_hcd vhci_hcd.0: Device attached
[  421.237385][T12585] usb 41-1: new high-speed USB device number 2 using vhci_hcd
[  421.251372][T13032] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2046'.
[  421.342123][    T9] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  421.378933][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.381507][    T9] usb 9-1: Product: syz
[  421.382860][    T9] usb 9-1: Manufacturer: syz
[  421.384343][    T9] usb 9-1: SerialNumber: syz
[  421.388730][    T9] usb 9-1: config 0 descriptor??
[  421.503694][T13057] vhci_hcd: connection closed
[  421.504607][   T12] vhci_hcd: stop threads
[  421.507905][   T12] vhci_hcd: release socket
[  421.509953][T13055] vhci_hcd: connection closed
[  421.510324][T13052] vhci_hcd: connection reset by peer
[  421.511374][   T12] vhci_hcd: disconnect device
[  421.511463][ T6012] usb 7-1: USB disconnect, device number 24
[  421.517620][   T12] vhci_hcd: stop threads
[  421.519468][   T12] vhci_hcd: release socket
[  421.521849][   T12] vhci_hcd: disconnect device
[  421.524760][   T12] vhci_hcd: stop threads
[  421.531313][   T12] vhci_hcd: release socket
[  421.532946][   T12] vhci_hcd: disconnect device
[  421.583018][T13075] lo speed is unknown, defaulting to 1000
[  421.710818][T13075] lo speed is unknown, defaulting to 1000
[  421.783147][T13083] binder: 13079:13083 ioctl c00c620f 0 returned -14
[  422.360156][   T34] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  422.521818][   T34] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  422.524551][   T34] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  422.527804][   T34] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  422.530608][   T34] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  422.534683][   T34] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  422.540911][   T34] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  422.545261][   T34] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  422.547759][   T34] usb 5-1: Product: syz
[  422.549107][   T34] usb 5-1: Manufacturer: syz
[  422.556085][   T34] cdc_wdm 5-1:1.0: skipping garbage
[  422.558069][   T34] cdc_wdm 5-1:1.0: skipping garbage
[  422.561336][   T34] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  422.563612][   T34] cdc_wdm 5-1:1.0: Unknown control protocol
[  422.628731][T13091] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  422.701397][T13091] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  422.772471][T13091] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  422.921327][T13091] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  422.945547][    C0] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  422.945651][   T34] usb 5-1: USB disconnect, device number 32
[  422.947636][    C0] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  422.947646][    C0] cdc_wdm 5-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  422.948869][T13094] cdc_wdm 5-1:1.0: Tx URB error: -19
[  423.023209][T13091] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  423.038817][T13091] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  423.054978][T13091] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  423.065587][T13091] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  423.133463][   T53] usb 9-1: USB disconnect, device number 8
[  424.369997][T13113] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2065'.
[  424.530757][T13117] netfs: Duplicate cookie detected
[  424.532626][T13117] netfs: O-cookie c=00000002 [fl=4008 na=0 nA=0 s=-]
[  424.534721][T13117] netfs: O-cookie V=00000005 [9p,syz,]
[  424.536445][T13117] netfs: O-key=[8] 'e10b260200000000'
[  424.538119][T13117] netfs: N-cookie c=00000004 [fl=8 na=0 nA=0 s=-]
[  424.540165][T13117] netfs: N-cookie V=00000005 [9p,syz,]
[  424.542155][T13117] netfs: N-key=[8] 'e10b260200000000'
[  425.961478][T13151] nfs: Deprecated parameter 'nointr'
[  425.972635][T13146] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2077'.
[  426.218094][T13158] netlink: 1192 bytes leftover after parsing attributes in process `syz.1.2081'.
[  426.230782][T13158] x_tables: ip6_tables: tcp match: only valid for protocol 6
[  426.278129][T13160] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  426.280925][T13160] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  426.283655][T13160] vhci_hcd vhci_hcd.0: Device attached
[  426.301424][T13161] vhci_hcd: connection closed
[  426.312152][   T46] vhci_hcd: stop threads
[  426.322097][   T46] vhci_hcd: release socket
[  426.327260][   T46] vhci_hcd: disconnect device
[  426.678843][T12585] vhci_hcd: vhci_device speed not set
[  427.453338][T13182] netlink: 'syz.2.2088': attribute type 4 has an invalid length.
[  427.464386][   T29] lo speed is unknown, defaulting to 1000
[  427.466388][   T29] s
z1: Port: 1 Link DOWN
[  427.468458][   T29] lo speed is unknown, defaulting to 1000
[  428.095990][T13198] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  428.098084][T13198] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  428.102797][T13198] vhci_hcd vhci_hcd.0: Device attached
[  428.633585][   T54] usb 42-1: SetAddress Request (6) to port 0
[  428.637203][   T54] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[  428.684948][T13199] vhci_hcd: connection reset by peer
[  428.722157][   T96] vhci_hcd: stop threads
[  428.724048][   T96] vhci_hcd: release socket
[  428.725968][   T96] vhci_hcd: disconnect device
[  428.837927][T13216] usb 2-1: USB disconnect, device number 4
[  429.177126][T13223] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2097'.
[  429.273284][T13223] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  429.283100][T13223] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  429.335871][T13224] 8021q: adding VLAN 0 to HW filter on device batadv1
[  429.339406][T13224] team0: Failed to send port change of device batadv1 via netlink (err -105)
[  429.343395][T13224] team0: Failed to send options change via netlink (err -105)
[  429.345919][T13224] team0: Port device batadv1 added
[  429.389248][T13223] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  429.392959][T13223] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  429.474858][T13223] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  429.478522][T13223] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  429.829839][T13223] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[  429.838067][T13223] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  429.935321][T13223] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  429.938988][T13223] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  429.949891][T13223] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  429.959064][T13223] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  429.980740][T13223] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  429.991406][T13223] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  430.010553][T13223] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  430.016330][T13223] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  430.111028][T13236] FAULT_INJECTION: forcing a failure.
[  430.111028][T13236] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  430.115854][T13236] CPU: 0 UID: 0 PID: 13236 Comm: syz.0.2101 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  430.115881][T13236] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  430.115889][T13236] Call Trace:
[  430.115893][T13236]  <TASK>
[  430.115898][T13236]  dump_stack_lvl+0x16c/0x1f0
[  430.115914][T13236]  should_fail_ex+0x512/0x640
[  430.115928][T13236]  _copy_to_user+0x32/0xd0
[  430.115941][T13236]  io_register_resize_rings+0x4d9/0x14f0
[  430.115960][T13236]  ? __pv_queued_spin_lock_slowpath+0x28d/0xcf0
[  430.115974][T13236]  ? __pfx_io_register_resize_rings+0x10/0x10
[  430.116000][T13236]  ? kvm_sched_clock_read+0x11/0x20
[  430.116020][T13236]  ? __lock_acquire+0xb8a/0x1c90
[  430.116040][T13236]  ? __mutex_trylock_common+0xe9/0x250
[  430.116056][T13236]  ? __pfx___mutex_trylock_common+0x10/0x10
[  430.116073][T13236]  __io_uring_register+0x15c0/0x23c0
[  430.116093][T13236]  ? trace_contention_end+0xdd/0x130
[  430.116110][T13236]  ? __pfx___io_uring_register+0x10/0x10
[  430.116121][T13236]  ? __ia32_sys_io_uring_register+0x159/0x280
[  430.116133][T13236]  ? __pfx___mutex_lock+0x10/0x10
[  430.116147][T13236]  ? __fget_files+0x20e/0x3c0
[  430.116161][T13236]  __ia32_sys_io_uring_register+0x169/0x280
[  430.116174][T13236]  __do_fast_syscall_32+0x7c/0x3a0
[  430.116187][T13236]  do_fast_syscall_32+0x32/0x80
[  430.116197][T13236]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  430.116211][T13236] RIP: 0023:0xf705e579
[  430.116220][T13236] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  430.116230][T13236] RSP: 002b:00000000f4e9c55c EFLAGS: 00000296 ORIG_RAX: 00000000000001ab
[  430.116241][T13236] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000021
[  430.116247][T13236] RDX: 0000000080000440 RSI: 0000000000000001 RDI: 0000000000000000
[  430.116253][T13236] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  430.116259][T13236] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  430.116265][T13236] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  430.116278][T13236]  </TASK>
[  430.186366][    C0] vkms_vblank_simulate: vblank timer overrun
[  430.222051][T13232] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2099'.
[  430.945628][T13258] random: crng reseeded on system resumption
[  430.969260][T13264] 9pnet_virtio: no channels available for device syz
[  431.008986][T13266] netlink: 'syz.1.2109': attribute type 4 has an invalid length.
[  431.011437][T13266] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2109'.
[  431.075402][T13269] nfs: Deprecated parameter 'nointr'
[  431.099596][T13270] FAULT_INJECTION: forcing a failure.
[  431.099596][T13270] name failslab, interval 1, probability 0, space 0, times 0
[  431.104552][T13270] CPU: 3 UID: 0 PID: 13270 Comm: syz.2.2110 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  431.104588][T13270] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  431.104596][T13270] Call Trace:
[  431.104601][T13270]  <TASK>
[  431.104605][T13270]  dump_stack_lvl+0x16c/0x1f0
[  431.104621][T13270]  should_fail_ex+0x512/0x640
[  431.104633][T13270]  ? fs_reclaim_acquire+0xae/0x150
[  431.104649][T13270]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  431.104659][T13270]  should_failslab+0xc2/0x120
[  431.104672][T13270]  __kmalloc_noprof+0xd2/0x510
[  431.104686][T13270]  tomoyo_realpath_from_path+0xc2/0x6e0
[  431.104698][T13270]  ? tomoyo_profile+0x47/0x60
[  431.104710][T13270]  tomoyo_path_number_perm+0x245/0x580
[  431.104725][T13270]  ? tomoyo_path_number_perm+0x237/0x580
[  431.104740][T13270]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  431.104769][T13270]  ? find_held_lock+0x2b/0x80
[  431.104781][T13270]  ? hook_file_ioctl_common+0x145/0x410
[  431.104798][T13270]  ? __fget_files+0x20e/0x3c0
[  431.104807][T13270]  ? fput+0x60/0xf0
[  431.104821][T13270]  security_file_ioctl_compat+0x9b/0x240
[  431.104858][T13270]  __ia32_compat_sys_ioctl+0xc3/0x370
[  431.104880][T13270]  __do_fast_syscall_32+0x7c/0x3a0
[  431.104893][T13270]  do_fast_syscall_32+0x32/0x80
[  431.104903][T13270]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  431.104917][T13270] RIP: 0023:0xf70ee579
[  431.104926][T13270] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  431.104936][T13270] RSP: 002b:00000000f50bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  431.104947][T13270] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000c018643a
[  431.104953][T13270] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  431.104959][T13270] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  431.104965][T13270] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  431.104971][T13270] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  431.104984][T13270]  </TASK>
[  431.192673][T13270] ERROR: Out of memory at tomoyo_realpath_from_path.
[  431.659281][T13277] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2111'.
[  432.199880][T13284] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2112'.
[  432.335728][T13286] fuse: Bad value for 'fd'
[  433.232368][T13299] FAULT_INJECTION: forcing a failure.
[  433.232368][T13299] name failslab, interval 1, probability 0, space 0, times 0
[  433.236432][T13299] CPU: 1 UID: 0 PID: 13299 Comm: syz.0.2117 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  433.236458][T13299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  433.236464][T13299] Call Trace:
[  433.236468][T13299]  <TASK>
[  433.236473][T13299]  dump_stack_lvl+0x16c/0x1f0
[  433.236488][T13299]  should_fail_ex+0x512/0x640
[  433.236499][T13299]  ? fs_reclaim_acquire+0xae/0x150
[  433.236519][T13299]  ? tomoyo_encode2+0x100/0x3e0
[  433.236527][T13299]  should_failslab+0xc2/0x120
[  433.236540][T13299]  __kmalloc_noprof+0xd2/0x510
[  433.236551][T13299]  ? d_absolute_path+0x136/0x1a0
[  433.236567][T13299]  tomoyo_encode2+0x100/0x3e0
[  433.236578][T13299]  tomoyo_encode+0x29/0x50
[  433.236590][T13299]  tomoyo_realpath_from_path+0x18f/0x6e0
[  433.236606][T13299]  tomoyo_path_number_perm+0x245/0x580
[  433.236630][T13299]  ? tomoyo_path_number_perm+0x237/0x580
[  433.236646][T13299]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  433.236675][T13299]  ? find_held_lock+0x2b/0x80
[  433.236686][T13299]  ? hook_file_ioctl_common+0x145/0x410
[  433.236708][T13299]  ? __fget_files+0x20e/0x3c0
[  433.236717][T13299]  ? fput+0x60/0xf0
[  433.236731][T13299]  security_file_ioctl_compat+0x9b/0x240
[  433.236748][T13299]  __ia32_compat_sys_ioctl+0xc3/0x370
[  433.236765][T13299]  __do_fast_syscall_32+0x7c/0x3a0
[  433.236778][T13299]  do_fast_syscall_32+0x32/0x80
[  433.236792][T13299]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  433.236811][T13299] RIP: 0023:0xf705e579
[  433.236848][T13299] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  433.236865][T13299] RSP: 002b:00000000f500c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  433.236881][T13299] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000c00c642e
[  433.236891][T13299] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  433.236900][T13299] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  433.236906][T13299] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  433.236911][T13299] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  433.236925][T13299]  </TASK>
[  433.236959][T13299] ERROR: Out of memory at tomoyo_realpath_from_path.
[  433.285868][    C0] vkms_vblank_simulate: vblank timer overrun
[  433.314220][    C0] vkms_vblank_simulate: vblank timer overrun
[  433.979922][T13296] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  433.984015][T13296] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  433.987756][T13296] bond0: (slave ipvlan2): Error -95 calling set_mac_address
[  433.994599][T13307] FAULT_INJECTION: forcing a failure.
[  433.994599][T13307] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  433.999530][T13307] CPU: 1 UID: 0 PID: 13307 Comm: syz.0.2120 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  433.999553][T13307] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  433.999562][T13307] Call Trace:
[  433.999571][T13307]  <TASK>
[  433.999578][T13307]  dump_stack_lvl+0x16c/0x1f0
[  433.999600][T13307]  should_fail_ex+0x512/0x640
[  433.999619][T13307]  _copy_from_iter+0x29f/0x16f0
[  433.999640][T13307]  ? __alloc_skb+0x200/0x380
[  433.999656][T13307]  ? __pfx__copy_from_iter+0x10/0x10
[  433.999683][T13307]  netlink_sendmsg+0x829/0xdd0
[  433.999706][T13307]  ? __pfx_netlink_sendmsg+0x10/0x10
[  433.999724][T13307]  ? __import_iovec+0x1dd/0x650
[  433.999746][T13307]  ____sys_sendmsg+0xa95/0xc70
[  433.999768][T13307]  ? __pfx_____sys_sendmsg+0x10/0x10
[  433.999785][T13307]  ? get_compat_msghdr+0x11a/0x170
[  433.999811][T13307]  ___sys_sendmsg+0x134/0x1d0
[  433.999830][T13307]  ? __pfx____sys_sendmsg+0x10/0x10
[  433.999856][T13307]  ? find_held_lock+0x2b/0x80
[  433.999886][T13307]  __sys_sendmsg+0x16d/0x220
[  433.999902][T13307]  ? __pfx___sys_sendmsg+0x10/0x10
[  433.999927][T13307]  ? rcu_is_watching+0x12/0xc0
[  433.999947][T13307]  __do_fast_syscall_32+0x7c/0x3a0
[  433.999965][T13307]  do_fast_syscall_32+0x32/0x80
[  433.999980][T13307]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  433.999998][T13307] RIP: 0023:0xf705e579
[  434.000011][T13307] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  434.000026][T13307] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  434.000041][T13307] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  434.000051][T13307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  434.000059][T13307] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  434.000068][T13307] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  434.000084][T13307] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  434.000106][T13307]  </TASK>
[  434.071760][   T54] usb 42-1: device descriptor read/8, error -110
[  434.609682][   T54] usb usb42-port1: attempt power cycle
[  434.718514][ T6012] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  434.878605][ T6012] usb 7-1: Using ep0 maxpacket: 32
[  434.881571][ T6012] usb 7-1: config 0 has no interfaces?
[  434.883335][ T6012] usb 7-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  434.886338][ T6012] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  434.893975][ T6012] usb 7-1: config 0 descriptor??
[  435.123628][T13317] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(14)
[  435.126144][T13317] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  435.135568][T13317] vhci_hcd vhci_hcd.0: Device attached
[  435.154220][T13317] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  435.162279][T13317] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(18)
[  435.164411][T13317] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  435.169516][T13317] vhci_hcd vhci_hcd.0: Device attached
[  435.193545][T13317] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(20)
[  435.195659][T13317] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  435.198423][T13317] vhci_hcd vhci_hcd.0: Device attached
[  435.214473][T13317] vhci_hcd vhci_hcd.0: pdev(2) rhport(4) sockfd(22)
[  435.216655][T13317] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  435.219217][T13317] vhci_hcd vhci_hcd.0: Device attached
[  435.221806][T13317] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  435.224968][T13317] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  435.339405][   T54] usb usb42-port1: unable to enumerate USB device
[  435.413008][T12585] vhci_hcd: vhci_device speed not set
[  435.477196][T12585] usb 41-1: new full-speed USB device number 3 using vhci_hcd
[  435.897233][T13335] vhci_hcd: connection closed
[  435.898006][ T6012] usb 7-1: USB disconnect, device number 25
[  435.902805][T13337] vhci_hcd: connection closed
[  435.946069][T13333] vhci_hcd: connection closed
[  435.947684][   T96] vhci_hcd: stop threads
[  435.947695][   T96] vhci_hcd: release socket
[  435.948580][   T96] vhci_hcd: disconnect device
[  435.949509][T13331] vhci_hcd: connection reset by peer
[  435.953035][   T96] vhci_hcd: stop threads
[  435.960311][   T96] vhci_hcd: release socket
[  435.961956][   T96] vhci_hcd: disconnect device
[  435.963952][   T96] vhci_hcd: stop threads
[  435.965285][   T96] vhci_hcd: release socket
[  435.966694][   T96] vhci_hcd: disconnect device
[  435.968234][   T96] vhci_hcd: stop threads
[  435.971635][   T96] vhci_hcd: release socket
[  435.979925][   T96] vhci_hcd: disconnect device
[  436.226214][T13354] lo speed is unknown, defaulting to 1000
[  436.317310][T13354] lo speed is unknown, defaulting to 1000
[  436.463868][T13357] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2134'.
[  436.845866][   T34] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  436.964603][T13370] loop6: detected capacity change from 0 to 524287999
[  437.011916][T13372] FAULT_INJECTION: forcing a failure.
[  437.011916][T13372] name failslab, interval 1, probability 0, space 0, times 0
[  437.016145][T13372] CPU: 0 UID: 0 PID: 13372 Comm: syz.0.2138 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  437.016160][T13372] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  437.016181][T13372] Call Trace:
[  437.016185][T13372]  <TASK>
[  437.016190][T13372]  dump_stack_lvl+0x16c/0x1f0
[  437.016205][T13372]  should_fail_ex+0x512/0x640
[  437.016216][T13372]  ? fs_reclaim_acquire+0xae/0x150
[  437.016233][T13372]  ? tomoyo_encode2+0x100/0x3e0
[  437.016242][T13372]  should_failslab+0xc2/0x120
[  437.016255][T13372]  __kmalloc_noprof+0xd2/0x510
[  437.016269][T13372]  tomoyo_encode2+0x100/0x3e0
[  437.016281][T13372]  tomoyo_encode+0x29/0x50
[  437.016290][T13372]  tomoyo_realpath_from_path+0x18f/0x6e0
[  437.016301][T13372]  ? tomoyo_profile+0x47/0x60
[  437.016315][T13372]  tomoyo_path_number_perm+0x245/0x580
[  437.016329][T13372]  ? tomoyo_path_number_perm+0x237/0x580
[  437.016345][T13372]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  437.016373][T13372]  ? find_held_lock+0x2b/0x80
[  437.016385][T13372]  ? hook_file_ioctl_common+0x145/0x410
[  437.016402][T13372]  ? __fget_files+0x20e/0x3c0
[  437.016412][T13372]  ? fput+0x60/0xf0
[  437.016427][T13372]  security_file_ioctl_compat+0x9b/0x240
[  437.016443][T13372]  __ia32_compat_sys_ioctl+0xc3/0x370
[  437.016460][T13372]  __do_fast_syscall_32+0x7c/0x3a0
[  437.016473][T13372]  do_fast_syscall_32+0x32/0x80
[  437.016484][T13372]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  437.016498][T13372] RIP: 0023:0xf705e579
[  437.016506][T13372] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  437.016516][T13372] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  437.016526][T13372] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  437.016533][T13372] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  437.016539][T13372] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  437.016545][T13372] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  437.016550][T13372] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  437.016563][T13372]  </TASK>
[  437.017388][T13374] netlink: 'syz.4.2137': attribute type 12 has an invalid length.
[  437.021874][T13372] ERROR: Out of memory at tomoyo_realpath_from_path.
[  437.278856][   T34] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  437.281607][   T34] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  437.555810][T13380] random: crng reseeded on system resumption
[  437.574532][   T34] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  437.577826][   T34] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  437.600770][   T34] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  437.607453][   T34] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  437.610736][   T34] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  437.613718][   T34] usb 6-1: Product: syz
[  437.618186][   T34] usb 6-1: Manufacturer: syz
[  437.624859][   T34] cdc_wdm 6-1:1.0: skipping garbage
[  437.627659][   T34] cdc_wdm 6-1:1.0: skipping garbage
[  437.631164][   T34] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  437.633479][   T34] cdc_wdm 6-1:1.0: Unknown control protocol
[  438.121929][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  438.124637][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  438.128424][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  438.131114][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  438.138615][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  438.141293][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  438.144828][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  438.147746][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  438.150744][   T34] usb 6-1: USB disconnect, device number 23
[  438.213298][T13400] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2145'.
[  438.795039][T13415] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  438.820517][T13415] syzkaller0: entered promiscuous mode
[  438.822645][T13415] syzkaller0: entered allmulticast mode
[  438.852029][T13415] tipc: Resetting bearer <eth:syzkaller0>
[  438.862952][T13414] tipc: Resetting bearer <eth:syzkaller0>
[  438.878023][T13414] tipc: Disabling bearer <eth:syzkaller0>
[  439.663727][T13418] capability: warning: `syz.0.2150' uses 32-bit capabilities (legacy support in use)
[  439.909721][T13435] netfs: Couldn't get user pages (rc=-14)
[  439.992525][T13440] 9pnet_virtio: no channels available for device syz
[  439.996601][T13438] FAULT_INJECTION: forcing a failure.
[  439.996601][T13438] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  440.001424][T13438] CPU: 3 UID: 0 PID: 13438 Comm: syz.0.2156 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  440.001439][T13438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  440.001445][T13438] Call Trace:
[  440.001449][T13438]  <TASK>
[  440.001453][T13438]  dump_stack_lvl+0x16c/0x1f0
[  440.001486][T13438]  should_fail_ex+0x512/0x640
[  440.001504][T13438]  _copy_to_user+0x32/0xd0
[  440.001518][T13438]  simple_read_from_buffer+0xcb/0x170
[  440.001535][T13438]  proc_fail_nth_read+0x197/0x270
[  440.001551][T13438]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  440.001567][T13438]  ? rw_verify_area+0xcf/0x680
[  440.001583][T13438]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  440.001597][T13438]  vfs_read+0x1e1/0xc60
[  440.001607][T13438]  ? fdget_pos+0x2a2/0x370
[  440.001619][T13438]  ? __pfx_vfs_read+0x10/0x10
[  440.001627][T13438]  ? find_held_lock+0x2b/0x80
[  440.001643][T13438]  ? __fget_files+0x20e/0x3c0
[  440.001656][T13438]  ksys_read+0x12a/0x250
[  440.001666][T13438]  ? __pfx_ksys_read+0x10/0x10
[  440.001677][T13438]  ? rcu_is_watching+0x12/0xc0
[  440.001690][T13438]  __do_fast_syscall_32+0x7c/0x3a0
[  440.001703][T13438]  do_fast_syscall_32+0x32/0x80
[  440.001713][T13438]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  440.001727][T13438] RIP: 0023:0xf705e579
[  440.001735][T13438] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  440.001745][T13438] RSP: 002b:00000000f504e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  440.001755][T13438] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f504e620
[  440.001762][T13438] RDX: 000000000000000f RSI: 00000000f73c4ff4 RDI: 0000000000000000
[  440.001768][T13438] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  440.001774][T13438] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  440.001780][T13438] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  440.001792][T13438]  </TASK>
[  440.092352][T13443] 9pnet_virtio: no channels available for device syz
[  440.561548][T13460] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2164'.
[  440.642350][T13464] random: crng reseeded on system resumption
[  440.719756][T13466] 9pnet_virtio: no channels available for device syz
[  440.961472][T12585] vhci_hcd: vhci_device speed not set
[  441.007036][T13470] FAULT_INJECTION: forcing a failure.
[  441.007036][T13470] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  441.011152][T13470] CPU: 3 UID: 0 PID: 13470 Comm: syz.0.2168 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  441.011183][T13470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  441.011191][T13470] Call Trace:
[  441.011195][T13470]  <TASK>
[  441.011200][T13470]  dump_stack_lvl+0x16c/0x1f0
[  441.011216][T13470]  should_fail_ex+0x512/0x640
[  441.011230][T13470]  _copy_from_user+0x2e/0xd0
[  441.011243][T13470]  bpf_prog_load+0x1a8d/0x2490
[  441.011265][T13470]  ? __pfx_bpf_prog_load+0x10/0x10
[  441.011294][T13470]  __sys_bpf+0x4d1a/0x4ea0
[  441.011305][T13470]  ? __pfx___sys_bpf+0x10/0x10
[  441.011315][T13470]  ? ksys_write+0x190/0x250
[  441.011329][T13470]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  441.011348][T13470]  ? fput+0x70/0xf0
[  441.011361][T13470]  ? ksys_write+0x1ac/0x250
[  441.011370][T13470]  ? __pfx_ksys_write+0x10/0x10
[  441.011382][T13470]  __ia32_sys_bpf+0x76/0xe0
[  441.011392][T13470]  __do_fast_syscall_32+0x7c/0x3a0
[  441.011405][T13470]  do_fast_syscall_32+0x32/0x80
[  441.011416][T13470]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  441.011430][T13470] RIP: 0023:0xf705e579
[  441.011439][T13470] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  441.011450][T13470] RSP: 002b:00000000f502d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  441.011460][T13470] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000440
[  441.011466][T13470] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  441.011472][T13470] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  441.011478][T13470] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  441.011484][T13470] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  441.011497][T13470]  </TASK>
[  441.122834][T13471] tipc: Resetting bearer <eth:team0>
[  441.684817][T13479] macsec0: left promiscuous mode
[  441.730790][T13485] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  441.790591][T13487] random: crng reseeded on system resumption
[  441.898297][T13491] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2174'.
[  441.946354][ T6012] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  442.173863][T13494] pim6reg1: entered promiscuous mode
[  442.174039][ T6012] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  442.176113][T13494] pim6reg1: entered allmulticast mode
[  442.192972][ T6012] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  442.192998][ T6012] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  442.193037][ T6012] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  442.193058][ T6012] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  442.195760][ T6012] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  442.195786][ T6012] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  442.195804][ T6012] usb 9-1: Product: syz
[  442.195836][ T6012] usb 9-1: Manufacturer: syz
[  442.205091][ T6012] cdc_wdm 9-1:1.0: skipping garbage
[  442.205112][ T6012] cdc_wdm 9-1:1.0: skipping garbage
[  442.206816][ T6012] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  442.319816][ T6012] cdc_wdm 9-1:1.0: Unknown control protocol
[  442.521499][   T34] usb 9-1: USB disconnect, device number 9
[  442.574812][    C1] vkms_vblank_simulate: vblank timer overrun
[  442.687037][T13501] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2179'.
[  442.912985][    C1] vkms_vblank_simulate: vblank timer overrun
[  443.969348][T13509] syz.0.2181 (13509) used greatest stack depth: 17960 bytes left
[  444.120811][T13523] random: crng reseeded on system resumption
[  444.415837][T13527] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  444.511607][T13525] binder: 13524:13525 ioctl c00c620f 80000740 returned -22
[  444.997278][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  445.032410][T13535] netlink: 'syz.2.2188': attribute type 1 has an invalid length.
[  445.085713][T13535] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  445.090262][T13535] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  445.143548][T13540] gretap1: entered promiscuous mode
[  445.148331][T13540] bond1: (slave gretap1): making interface the new active one
[  445.151372][T13540] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  446.564127][T13579] debugfs: Bad value for 'gid'
[  446.565831][T13579] debugfs: Bad value for 'gid'
[  446.670804][ T6012] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  447.818380][T13609] nfs: Deprecated parameter 'nointr'
[  448.361843][T13618] FAULT_INJECTION: forcing a failure.
[  448.361843][T13618] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.367435][T13618] CPU: 0 UID: 0 PID: 13618 Comm: syz.2.2206 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  448.367456][T13618] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  448.367464][T13618] Call Trace:
[  448.367471][T13618]  <TASK>
[  448.367477][T13618]  dump_stack_lvl+0x16c/0x1f0
[  448.367499][T13618]  should_fail_ex+0x512/0x640
[  448.367519][T13618]  _copy_to_user+0x32/0xd0
[  448.367538][T13618]  simple_read_from_buffer+0xcb/0x170
[  448.367564][T13618]  proc_fail_nth_read+0x197/0x270
[  448.367587][T13618]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  448.367611][T13618]  ? rw_verify_area+0xcf/0x680
[  448.367636][T13618]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  448.367659][T13618]  vfs_read+0x1e1/0xc60
[  448.367676][T13618]  ? fdget_pos+0x2a2/0x370
[  448.367694][T13618]  ? __pfx_vfs_read+0x10/0x10
[  448.367707][T13618]  ? find_held_lock+0x2b/0x80
[  448.367732][T13618]  ? __fget_files+0x20e/0x3c0
[  448.367755][T13618]  ksys_read+0x12a/0x250
[  448.367771][T13618]  ? __pfx_ksys_read+0x10/0x10
[  448.367787][T13618]  ? rcu_is_watching+0x12/0xc0
[  448.367806][T13618]  __do_fast_syscall_32+0x7c/0x3a0
[  448.367823][T13618]  do_fast_syscall_32+0x32/0x80
[  448.367837][T13618]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  448.367854][T13618] RIP: 0023:0xf70ee579
[  448.367865][T13618] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  448.367878][T13618] RSP: 002b:00000000f50de590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  448.367892][T13618] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50de620
[  448.367901][T13618] RDX: 000000000000000f RSI: 00000000f7454ff4 RDI: 0000000000000000
[  448.367909][T13618] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  448.367916][T13618] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  448.367925][T13618] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  448.367944][T13618]  </TASK>
[  457.044751][T13648] netlink: 248 bytes leftover after parsing attributes in process `syz.0.2211'.
[  458.481478][T13672] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  458.483604][T13672] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  458.486329][T13672] vhci_hcd vhci_hcd.0: Device attached
[  458.490361][T13672] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(9)
[  458.492428][T13672] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  458.495839][T13672] vhci_hcd vhci_hcd.0: Device attached
[  458.498156][T13672] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  458.502406][T13672] vhci_hcd vhci_hcd.0: pdev(1) rhport(3) sockfd(16)
[  458.504382][T13672] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  458.507680][T13672] vhci_hcd vhci_hcd.0: Device attached
[  458.510620][T13672] vhci_hcd vhci_hcd.0: pdev(1) rhport(4) sockfd(18)
[  458.512895][T13672] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  458.515948][T13672] vhci_hcd vhci_hcd.0: Device attached
[  458.523169][T13672] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(20)
[  458.525355][T13672] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  458.529995][T13672] vhci_hcd vhci_hcd.0: Device attached
[  458.532821][T13672] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  458.675929][ T6012] vhci_hcd: vhci_device speed not set
[  458.740316][ T6012] usb 39-1: new high-speed USB device number 2 using vhci_hcd
[  458.761846][T13672] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  459.338839][T13683] vhci_hcd: connection closed
[  459.340532][T13681] vhci_hcd: connection closed
[  459.341707][T13675] vhci_hcd: connection reset by peer
[  459.342227][T13679] vhci_hcd: connection closed
[  459.344272][T13677] vhci_hcd: connection closed
[  459.347188][   T96] vhci_hcd: stop threads
[  459.350576][   T96] vhci_hcd: release socket
[  459.352059][   T96] vhci_hcd: disconnect device
[  459.355528][   T96] vhci_hcd: stop threads
[  459.357032][   T96] vhci_hcd: release socket
[  459.358496][   T96] vhci_hcd: disconnect device
[  459.361041][   T96] vhci_hcd: stop threads
[  459.362407][   T96] vhci_hcd: release socket
[  459.363855][   T96] vhci_hcd: disconnect device
[  459.366805][   T96] vhci_hcd: stop threads
[  459.368253][   T96] vhci_hcd: release socket
[  459.369826][   T96] vhci_hcd: disconnect device
[  459.373427][   T96] vhci_hcd: stop threads
[  459.374793][   T96] vhci_hcd: release socket
[  459.376333][   T96] vhci_hcd: disconnect device
[  460.776217][T13720] team0: left allmulticast mode
[  460.778360][T13720] team_slave_0: left allmulticast mode
[  460.781339][T13720] team_slave_1: left allmulticast mode
[  460.795292][T13720] team0: left promiscuous mode
[  460.797318][T13720] team_slave_0: left promiscuous mode
[  460.799702][T13720] team_slave_1: left promiscuous mode
[  460.802184][T13720] macsec1: left promiscuous mode
[  460.804782][T13720] macsec1: left allmulticast mode
[  461.417466][T13743] comedi comedi1: comedi_test: 12032 microvolt, 5 microsecond waveform attached
[  462.013811][T13746] nfs: Deprecated parameter 'nointr'
[  462.650438][T13762] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2237'.
[  464.224191][ T6012] vhci_hcd: vhci_device speed not set
[  465.817913][T10677] usb usb40-port1: attempt power cycle
[  466.427507][T10677] usb usb40-port1: unable to enumerate USB device
[  467.034159][T13856] tipc: Started in network mode
[  467.036072][T13856] tipc: Node identity aaaaaaaaaa35, cluster identity 4711
[  467.038383][T13856] tipc: Enabled bearer <eth:macvlan1>, priority 10
[  468.243880][ T6012] tipc: Node number set to 10463914
[  468.318741][    T9] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  468.503159][    T9] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  468.507035][    T9] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  468.510886][    T9] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  468.514051][    T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  468.517483][    T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  468.524648][    T9] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  468.528122][    T9] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  468.531301][    T9] usb 6-1: Product: syz
[  468.532975][    T9] usb 6-1: Manufacturer: syz
[  468.545146][    T9] cdc_wdm 6-1:1.0: skipping garbage
[  468.547568][    T9] cdc_wdm 6-1:1.0: skipping garbage
[  468.552044][    T9] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  468.554971][    T9] cdc_wdm 6-1:1.0: Unknown control protocol
[  468.782715][T13886] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2272'.
[  468.896832][    C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  468.897007][ T6012] usb 6-1: USB disconnect, device number 24
[  468.899444][    C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  468.903766][    C0] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  469.417151][T13908] tipc: Resetting bearer <eth:team0>
[  469.709905][T13912] FAULT_INJECTION: forcing a failure.
[  469.709905][T13912] name failslab, interval 1, probability 0, space 0, times 0
[  469.719936][T13912] CPU: 1 UID: 0 PID: 13912 Comm: syz.2.2280 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  469.719959][T13912] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  469.719969][T13912] Call Trace:
[  469.719975][T13912]  <TASK>
[  469.719981][T13912]  dump_stack_lvl+0x16c/0x1f0
[  469.720003][T13912]  should_fail_ex+0x512/0x640
[  469.720018][T13912]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  469.720045][T13912]  ? __pfx_fl_classify+0x10/0x10
[  469.720066][T13912]  should_failslab+0xc2/0x120
[  469.720084][T13912]  __kmalloc_cache_noprof+0x6a/0x3e0
[  469.720104][T13912]  ? do_raw_read_unlock+0x44/0xe0
[  469.720120][T13912]  ? fl_init+0x45/0x2c0
[  469.720142][T13912]  ? __pfx_fl_classify+0x10/0x10
[  469.720163][T13912]  fl_init+0x45/0x2c0
[  469.720184][T13912]  tc_new_tfilter+0x1147/0x2340
[  469.720219][T13912]  ? __pfx_tc_new_tfilter+0x10/0x10
[  469.720240][T13912]  ? stack_trace_save+0x8e/0xc0
[  469.720277][T13912]  ? find_held_lock+0x2b/0x80
[  469.720294][T13912]  ? __pfx_tc_new_tfilter+0x10/0x10
[  469.720311][T13912]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  469.720330][T13912]  ? __pfx_tc_new_tfilter+0x10/0x10
[  469.720350][T13912]  rtnetlink_rcv_msg+0x95b/0xe90
[  469.720369][T13912]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  469.720392][T13912]  ? ref_tracker_free+0x37c/0x830
[  469.720412][T13912]  netlink_rcv_skb+0x155/0x420
[  469.720430][T13912]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  469.720448][T13912]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  469.720475][T13912]  ? netlink_deliver_tap+0x1ae/0xd30
[  469.720530][T13912]  netlink_unicast+0x58d/0x850
[  469.720554][T13912]  ? __pfx_netlink_unicast+0x10/0x10
[  469.720580][T13912]  netlink_sendmsg+0x8d1/0xdd0
[  469.720603][T13912]  ? __pfx_netlink_sendmsg+0x10/0x10
[  469.720623][T13912]  ? __import_iovec+0x1dd/0x650
[  469.720645][T13912]  ____sys_sendmsg+0xa95/0xc70
[  469.720668][T13912]  ? __pfx_____sys_sendmsg+0x10/0x10
[  469.720687][T13912]  ? get_compat_msghdr+0x11a/0x170
[  469.720721][T13912]  ___sys_sendmsg+0x134/0x1d0
[  469.720742][T13912]  ? __pfx____sys_sendmsg+0x10/0x10
[  469.720772][T13912]  ? find_held_lock+0x2b/0x80
[  469.720809][T13912]  __sys_sendmsg+0x16d/0x220
[  469.720826][T13912]  ? __pfx___sys_sendmsg+0x10/0x10
[  469.720853][T13912]  ? rcu_is_watching+0x12/0xc0
[  469.720875][T13912]  __do_fast_syscall_32+0x7c/0x3a0
[  469.720896][T13912]  do_fast_syscall_32+0x32/0x80
[  469.720914][T13912]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  469.720935][T13912] RIP: 0023:0xf70ee579
[  469.720949][T13912] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  469.720964][T13912] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  469.720982][T13912] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800001c0
[  469.720993][T13912] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000000
[  469.721003][T13912] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  469.721013][T13912] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  469.721023][T13912] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  469.721045][T13912]  </TASK>
[  470.876497][T13926] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  471.856227][T13931] FAULT_INJECTION: forcing a failure.
[  471.856227][T13931] name failslab, interval 1, probability 0, space 0, times 0
[  471.865930][T13931] CPU: 1 UID: 0 PID: 13931 Comm: syz.1.2287 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  471.865954][T13931] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  471.865964][T13931] Call Trace:
[  471.865972][T13931]  <TASK>
[  471.865979][T13931]  dump_stack_lvl+0x16c/0x1f0
[  471.866002][T13931]  should_fail_ex+0x512/0x640
[  471.866017][T13931]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  471.866045][T13931]  should_failslab+0xc2/0x120
[  471.866063][T13931]  __kmalloc_cache_noprof+0x6a/0x3e0
[  471.866086][T13931]  ? snd_pcm_oss_change_params_locked+0x211/0x3a30
[  471.866108][T13931]  ? kasan_save_track+0x14/0x30
[  471.866126][T13931]  snd_pcm_oss_change_params_locked+0x211/0x3a30
[  471.866148][T13931]  ? rcu_is_watching+0x12/0xc0
[  471.866167][T13931]  ? __mutex_lock+0x1ca/0xb90
[  471.866180][T13931]  ? lockdep_hardirqs_on+0x7c/0x110
[  471.866196][T13931]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  471.866218][T13931]  ? __pfx___mutex_lock+0x10/0x10
[  471.866232][T13931]  ? tomoyo_path_number_perm+0x295/0x580
[  471.866262][T13931]  ? __lock_acquire+0xb8a/0x1c90
[  471.866291][T13931]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  471.866315][T13931]  snd_pcm_oss_get_formats+0x7e/0x340
[  471.866334][T13931]  ? find_held_lock+0x2b/0x80
[  471.866351][T13931]  ? __pfx_snd_pcm_oss_get_formats+0x10/0x10
[  471.866371][T13931]  ? __might_fault+0x13b/0x190
[  471.866394][T13931]  snd_pcm_oss_ioctl+0x2efb/0x37a0
[  471.866416][T13931]  ? find_held_lock+0x2b/0x80
[  471.866432][T13931]  ? hook_file_ioctl_common+0x145/0x410
[  471.866454][T13931]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  471.866478][T13931]  ? __fget_files+0x20e/0x3c0
[  471.866492][T13931]  ? fput+0x60/0xf0
[  471.866514][T13931]  ? __pfx_snd_pcm_oss_ioctl_compat+0x10/0x10
[  471.866536][T13931]  __ia32_compat_sys_ioctl+0x242/0x370
[  471.866560][T13931]  __do_fast_syscall_32+0x7c/0x3a0
[  471.866579][T13931]  do_fast_syscall_32+0x32/0x80
[  471.866595][T13931]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  471.866614][T13931] RIP: 0023:0xf70ae579
[  471.866626][T13931] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  471.866641][T13931] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  471.866656][T13931] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000c0045005
[  471.866665][T13931] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  471.866675][T13931] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  471.866684][T13931] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  471.866693][T13931] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  471.866714][T13931]  </TASK>
[  474.074463][T13952] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  474.260605][T13960] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2295'.
[  474.282657][T13960] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2295'.
[  474.541796][T13967] random: crng reseeded on system resumption
[  474.894988][T13974] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2297'.
[  475.332510][T13973] netlink: 'syz.2.2297': attribute type 1 has an invalid length.
[  475.469056][T13982] trusted_key: syz.4.2300 sent an empty control message without MSG_MORE.
[  475.847466][T12585] libceph: connect (1)[c::]:6789 error -101
[  475.867999][T12585] libceph: mon0 (1)[c::]:6789 connect error
[  476.031135][T13984] ceph: No mds server is up or the cluster is laggy
[  476.413476][T13996] afs: Unknown parameter 'pcr'
[  476.685339][T13999] random: crng reseeded on system resumption
[  477.859140][T14023] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  478.088840][T14030] No such timeout policy "syz1"
[  478.192852][T14034] random: crng reseeded on system resumption
[  478.780800][T12585] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  479.278308][T12585] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  479.284899][T12585] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 24623, setting to 1024
[  479.293925][T14045] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  479.304815][T12585] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  479.309422][T14046] IPVS: stopping backup sync thread 14045 ...
[  479.334695][T12585] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  479.338397][T12585] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.507016][T14038] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  479.513438][T12585] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  479.705443][T14050] binder: 14049:14050 ioctl c00c620f 80000740 returned -22
[  480.154159][T14055] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  480.304605][    T9] usb 6-1: USB disconnect, device number 25
[  480.448174][T14063] random: crng reseeded on system resumption
[  480.460769][ T6046] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  480.677142][ T6046] usb 9-1: Using ep0 maxpacket: 8
[  480.690545][ T6046] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  480.694919][ T6046] usb 9-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  480.709116][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  480.730359][ T6046] usb 9-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  480.739499][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  480.764831][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  480.772974][ T6046] usb 9-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  480.825092][ T6046] usb 9-1: config 168 interface 0 has no altsetting 0
[  480.848736][ T6046] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  480.852215][ T6046] usb 9-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  480.895135][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  480.923476][ T6046] usb 9-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  480.932280][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  480.941371][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  480.948590][ T6046] usb 9-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  480.959326][ T6046] usb 9-1: config 168 interface 0 has no altsetting 0
[  480.966850][ T6046] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  480.972701][ T6046] usb 9-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  480.981592][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  480.992416][ T6046] usb 9-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  481.015645][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  481.021763][ T6046] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  481.043541][ T6046] usb 9-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  481.056695][ T6046] usb 9-1: config 168 interface 0 has no altsetting 0
[  481.067249][ T6046] usb 9-1: string descriptor 0 read error: -22
[  481.076265][ T6046] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  481.082230][ T6046] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  481.101028][ T6046] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  481.222115][ T5964] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  481.259071][ T5964] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  481.294356][ T5964] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  481.374422][ T5964] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  481.426085][ T5964] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  481.454366][ T6046] usb 9-1: USB disconnect, device number 10
[  481.492608][   T96] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.513698][ T5963] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  481.596756][ T5963] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  481.610611][ T5963] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  481.651128][ T5963] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  481.659075][ T5963] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  481.703067][   T96] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.771938][T14077] adutux: No device or device unplugged -19
[  481.822862][T14072] lo speed is unknown, defaulting to 1000
[  481.852751][   T96] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.140942][   T96] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.208034][T14072] lo speed is unknown, defaulting to 1000
[  483.187555][   T96] bond1 (unregistering): (slave gretap1): Releasing active interface
[  483.670648][T14109] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2333'.
[  483.907483][ T5964] Bluetooth: hci3: command tx timeout
[  484.225660][   T96] bond0 (unregistering): Released all slaves
[  484.251662][   T96] bond1 (unregistering): Released all slaves
[  484.902199][T14072] chnl_net:caif_netlink_parms(): no params data found
[  485.022989][   T96] tipc: Disabling bearer <udp:syz2>
[  485.058536][   T96] tipc: Disabling bearer <eth:team0>
[  485.780613][   T96] tipc: Left network mode
[  486.129456][ T5964] Bluetooth: hci3: command tx timeout
[  486.848963][T14143] 9pnet_fd: Insufficient options for proto=fd
[  486.997989][T14072] bridge0: port 1(bridge_slave_0) entered blocking state
[  487.003248][T14072] bridge0: port 1(bridge_slave_0) entered disabled state
[  487.009967][T14072] bridge_slave_0: entered allmulticast mode
[  487.020401][T14072] bridge_slave_0: entered promiscuous mode
[  487.029986][T14072] bridge0: port 2(bridge_slave_1) entered blocking state
[  487.036402][T14072] bridge0: port 2(bridge_slave_1) entered disabled state
[  487.044260][T14072] bridge_slave_1: entered allmulticast mode
[  487.050938][T14072] bridge_slave_1: entered promiscuous mode
[  487.208585][T14072] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  487.233307][T14072] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  487.708153][T14072] team0: Port device team_slave_0 added
[  487.844421][T14072] team0: Port device team_slave_1 added
[  488.338932][   T96] batman_adv: batadv0: Interface deactivated: dummy0
[  488.345090][   T96] batman_adv: batadv0: Removing interface: dummy0
[  488.354554][ T5964] Bluetooth: hci3: command tx timeout
[  488.445584][   T96] veth0_macvtap: left promiscuous mode
[  488.448458][   T96] veth1_vlan: left promiscuous mode
[  488.452431][   T96] veth0_vlan: left promiscuous mode
[  490.576707][ T5964] Bluetooth: hci3: command tx timeout
[  495.607857][   T12] smc: removing ib device s
z1
[  495.940044][T14072] batman_adv: batadv0: Adding interface: batadv_slave_0
[  495.997507][T14072] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.039490][T14072] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  496.060033][T14072] batman_adv: batadv0: Adding interface: batadv_slave_1
[  496.063828][T14072] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.091692][T14072] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  496.255433][T14212] netlink: 'syz.4.2353': attribute type 1 has an invalid length.
[  496.356867][T14213] vivid-007: =================  START STATUS  =================
[  496.382326][T14213] vivid-007: Enable Output Cropping: true
[  496.386491][T14213] vivid-007: Enable Output Composing: true
[  496.388886][T14213] vivid-007: Enable Output Scaler: true
[  496.391263][T14213] vivid-007: Tx RGB Quantization Range: Automatic
[  496.425292][T14213] vivid-007: Transmit Mode: HDMI
[  496.427280][T14213] vivid-007: Hotplug Present: 0x00000000
[  496.501845][T14213] vivid-007: RxSense Present: 0x00000000
[  496.504776][T14213] vivid-007: EDID Present: 0x00000000
[  496.507168][T14213] vivid-007: ==================  END STATUS  ==================
[  496.947896][T14072] hsr_slave_0: entered promiscuous mode
[  496.985048][T14072] hsr_slave_1: entered promiscuous mode
[  497.058982][T14221] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  497.068908][T14218] syzkaller0: mtu greater than device maximum
[  497.538530][T14222] syzkaller0: entered promiscuous mode
[  497.541310][T14222] syzkaller0: entered allmulticast mode
[  497.601380][T14217] tipc: Resetting bearer <eth:syzkaller0>
[  497.618686][T14217] tipc: Disabling bearer <eth:syzkaller0>
[  498.084726][T14236] syzkaller1: entered promiscuous mode
[  498.087348][T14236] syzkaller1: entered allmulticast mode
[  498.203011][T14235] fuse: Bad value for 'fd'
[  498.223447][T14241] FAULT_INJECTION: forcing a failure.
[  498.223447][T14241] name failslab, interval 1, probability 0, space 0, times 0
[  498.229427][T14241] CPU: 2 UID: 0 PID: 14241 Comm: syz.1.2360 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  498.229450][T14241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  498.229460][T14241] Call Trace:
[  498.229466][T14241]  <TASK>
[  498.229473][T14241]  dump_stack_lvl+0x16c/0x1f0
[  498.229496][T14241]  should_fail_ex+0x512/0x640
[  498.229514][T14241]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  498.229534][T14241]  should_failslab+0xc2/0x120
[  498.229553][T14241]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  498.229569][T14241]  ? __alloc_skb+0x2b2/0x380
[  498.229588][T14241]  __alloc_skb+0x2b2/0x380
[  498.229602][T14241]  ? __pfx___alloc_skb+0x10/0x10
[  498.229619][T14241]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  498.229645][T14241]  netlink_alloc_large_skb+0x69/0x130
[  498.229673][T14241]  netlink_sendmsg+0x6a1/0xdd0
[  498.229696][T14241]  ? __pfx_netlink_sendmsg+0x10/0x10
[  498.229716][T14241]  ? __import_iovec+0x1dd/0x650
[  498.229739][T14241]  ____sys_sendmsg+0xa95/0xc70
[  498.229762][T14241]  ? __pfx_____sys_sendmsg+0x10/0x10
[  498.229783][T14241]  ? get_compat_msghdr+0x11a/0x170
[  498.229810][T14241]  ___sys_sendmsg+0x134/0x1d0
[  498.229829][T14241]  ? __pfx____sys_sendmsg+0x10/0x10
[  498.229858][T14241]  ? find_held_lock+0x2b/0x80
[  498.229891][T14241]  __sys_sendmsg+0x16d/0x220
[  498.229909][T14241]  ? __pfx___sys_sendmsg+0x10/0x10
[  498.229960][T14241]  ? rcu_is_watching+0x12/0xc0
[  498.229982][T14241]  __do_fast_syscall_32+0x7c/0x3a0
[  498.230002][T14241]  do_fast_syscall_32+0x32/0x80
[  498.230018][T14241]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  498.230040][T14241] RIP: 0023:0xf70ae579
[  498.230055][T14241] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  498.230071][T14241] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  498.230088][T14241] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  498.230099][T14241] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  498.230109][T14241] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  498.230118][T14241] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  498.230128][T14241] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  498.230150][T14241]  </TASK>
[  498.746333][T14245] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  499.272731][T14259] 9pnet_fd: Insufficient options for proto=fd
[  502.019010][T14072] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  502.118765][T14072] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  502.350592][T14072] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  503.026504][T14072] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  503.319145][T14326] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  503.577215][T14072] 8021q: adding VLAN 0 to HW filter on device bond0
[  503.635163][T14072] 8021q: adding VLAN 0 to HW filter on device team0
[  503.645666][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  503.661110][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  503.696086][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  503.702149][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  504.728478][T14072] 8021q: adding VLAN 0 to HW filter on device batadv0
[  504.840330][    C1] vkms_vblank_simulate: vblank timer overrun
[  504.843250][T14072] veth0_vlan: entered promiscuous mode
[  504.892390][T14072] veth1_vlan: entered promiscuous mode
[  504.986059][T14072] veth0_macvtap: entered promiscuous mode
[  505.011755][T14072] veth1_macvtap: entered promiscuous mode
[  505.116525][T14072] batman_adv: batadv0: Interface activated: batadv_slave_0
[  505.177641][T14072] batman_adv: batadv0: Interface activated: batadv_slave_1
[  505.193980][T14072] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  505.197348][T14072] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  505.203225][T14072] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  505.221740][T14072] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  505.306849][    C1] vkms_vblank_simulate: vblank timer overrun
[  505.586639][    C1] vkms_vblank_simulate: vblank timer overrun
[  505.634427][   T98] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  505.645562][   T98] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  505.694677][ T1238] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  505.699141][ T1238] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  506.276837][ T5963] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  506.290353][ T5963] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  506.298750][ T5963] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  506.355717][ T5963] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  506.367308][ T5963] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  506.423592][ T6046] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  506.680692][ T6046] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  506.687033][ T6046] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 24623, setting to 1024
[  506.693039][ T6046] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  506.736354][ T6046] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  506.781951][    C1] vkms_vblank_simulate: vblank timer overrun
[  506.786956][ T6046] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  506.824096][T14381] lo speed is unknown, defaulting to 1000
[  506.827598][T14380] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  506.866922][   T96] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  506.883729][ T6046] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  506.893021][   T96] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  507.084962][    C1] vkms_vblank_simulate: vblank timer overrun
[  507.109177][T14389] FAULT_INJECTION: forcing a failure.
[  507.109177][T14389] name failslab, interval 1, probability 0, space 0, times 0
[  507.114775][T14389] CPU: 3 UID: 0 PID: 14389 Comm: syz.2.2380 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  507.114797][T14389] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  507.114807][T14389] Call Trace:
[  507.114813][T14389]  <TASK>
[  507.114820][T14389]  dump_stack_lvl+0x16c/0x1f0
[  507.114861][T14389]  should_fail_ex+0x512/0x640
[  507.114878][T14389]  ? __kvmalloc_node_noprof+0x124/0x620
[  507.114899][T14389]  should_failslab+0xc2/0x120
[  507.114918][T14389]  __kvmalloc_node_noprof+0x137/0x620
[  507.114934][T14389]  ? rcu_is_watching+0x12/0xc0
[  507.114951][T14389]  ? rtnl_newlink+0x600/0x2000
[  507.114969][T14389]  ? alloc_netdev_mqs+0xd2/0x1570
[  507.114989][T14389]  ? __pfx_ipvlan_link_setup+0x10/0x10
[  507.115013][T14389]  ? alloc_netdev_mqs+0xd2/0x1570
[  507.115030][T14389]  alloc_netdev_mqs+0xd2/0x1570
[  507.115055][T14389]  rtnl_create_link+0xc08/0xf90
[  507.115077][T14389]  rtnl_newlink+0xb69/0x2000
[  507.115102][T14389]  ? __pfx_rtnl_newlink+0x10/0x10
[  507.115126][T14389]  ? kfree_skbmem+0x1a4/0x1f0
[  507.115159][T14389]  ? rcu_is_watching+0x12/0xc0
[  507.115175][T14389]  ? trace_cap_capable+0x18d/0x200
[  507.115201][T14389]  ? find_held_lock+0x2b/0x80
[  507.115217][T14389]  ? __pfx_rtnl_newlink+0x10/0x10
[  507.115233][T14389]  ? __pfx_rtnl_newlink+0x10/0x10
[  507.115248][T14389]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  507.115266][T14389]  ? __pfx_rtnl_newlink+0x10/0x10
[  507.115284][T14389]  rtnetlink_rcv_msg+0x95b/0xe90
[  507.115304][T14389]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  507.115328][T14389]  ? ref_tracker_free+0x37c/0x830
[  507.115348][T14389]  netlink_rcv_skb+0x155/0x420
[  507.115368][T14389]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  507.115388][T14389]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  507.115418][T14389]  ? netlink_deliver_tap+0x1ae/0xd30
[  507.115449][T14389]  netlink_unicast+0x58d/0x850
[  507.115471][T14389]  ? __pfx_netlink_unicast+0x10/0x10
[  507.115497][T14389]  netlink_sendmsg+0x8d1/0xdd0
[  507.115520][T14389]  ? __pfx_netlink_sendmsg+0x10/0x10
[  507.115541][T14389]  ? __import_iovec+0x1dd/0x650
[  507.115563][T14389]  ____sys_sendmsg+0xa95/0xc70
[  507.115586][T14389]  ? __pfx_____sys_sendmsg+0x10/0x10
[  507.115604][T14389]  ? get_compat_msghdr+0x11a/0x170
[  507.115632][T14389]  ___sys_sendmsg+0x134/0x1d0
[  507.115649][T14389]  ? __pfx____sys_sendmsg+0x10/0x10
[  507.115676][T14389]  ? find_held_lock+0x2b/0x80
[  507.115707][T14389]  __sys_sendmsg+0x16d/0x220
[  507.115723][T14389]  ? __pfx___sys_sendmsg+0x10/0x10
[  507.115751][T14389]  ? rcu_is_watching+0x12/0xc0
[  507.115771][T14389]  __do_fast_syscall_32+0x7c/0x3a0
[  507.115790][T14389]  do_fast_syscall_32+0x32/0x80
[  507.115806][T14389]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  507.115826][T14389] RIP: 0023:0xf7f95579
[  507.115840][T14389] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  507.115855][T14389] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  507.115872][T14389] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  507.115881][T14389] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  507.115891][T14389] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  507.115899][T14389] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  507.115909][T14389] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  507.115931][T14389]  </TASK>
[  507.477739][   T96] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  507.481496][   T96] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  507.564280][    C1] vkms_vblank_simulate: vblank timer overrun
[  507.627518][    C1] vkms_vblank_simulate: vblank timer overrun
[  507.768411][   T96] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  507.778550][   T96] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  507.952251][T14381] chnl_net:caif_netlink_parms(): no params data found
[  508.093702][   T96] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  508.101067][   T96] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  508.319672][T14381] bridge0: port 1(bridge_slave_0) entered blocking state
[  508.340422][T14381] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.353742][T14381] bridge_slave_0: entered allmulticast mode
[  508.385594][T14381] bridge_slave_0: entered promiscuous mode
[  508.544526][T14381] bridge0: port 2(bridge_slave_1) entered blocking state
[  508.547837][T14381] bridge0: port 2(bridge_slave_1) entered disabled state
[  508.584606][T14381] bridge_slave_1: entered allmulticast mode
[  508.592817][T14381] bridge_slave_1: entered promiscuous mode
[  508.623814][ T5963] Bluetooth: hci4: command tx timeout
[  508.892238][    C1] vkms_vblank_simulate: vblank timer overrun
[  509.399912][T14381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  509.495017][T14381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  509.528574][T12585] usb 9-1: USB disconnect, device number 11
[  509.877597][T14381] team0: Port device team_slave_0 added
[  509.881806][   T96] bridge_slave_1: left allmulticast mode
[  509.885825][   T96] bridge_slave_1: left promiscuous mode
[  509.890185][   T96] bridge0: port 2(bridge_slave_1) entered disabled state
[  509.919164][   T96] bridge_slave_0: left allmulticast mode
[  509.937350][   T96] bridge_slave_0: left promiscuous mode
[  509.941462][   T96] bridge0: port 1(bridge_slave_0) entered disabled state
[  510.696866][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  510.862575][ T5963] Bluetooth: hci4: command tx timeout
[  510.892909][   T96] dvmrp0 (unregistering): left allmulticast mode
[  511.042747][   T96] team0: Port device geneve0 removed
[  511.625221][   T96] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  511.641635][   T96] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  511.655645][   T96] bond0 (unregistering): Released all slaves
[  511.717339][T14381] team0: Port device team_slave_1 added
[  511.725628][T14428] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  511.743615][T14429] syzkaller0: entered promiscuous mode
[  511.754942][T14429] syzkaller0: entered allmulticast mode
[  511.766804][T14441] syzkaller0: mtu greater than device maximum
[  511.909552][T14451] netlink: 'syz.0.2390': attribute type 10 has an invalid length.
[  511.912705][T14451] veth1_vlan: left promiscuous mode
[  511.919680][T14451] team0: Device veth1_vlan failed to register rx_handler
[  511.984222][T14422] tipc: Resetting bearer <eth:syzkaller0>
[  512.044406][T14422] tipc: Disabling bearer <eth:syzkaller0>
[  512.288853][T14381] batman_adv: batadv0: Adding interface: batadv_slave_0
[  512.292887][T14381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  512.305774][T14381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  512.323696][T14381] batman_adv: batadv0: Adding interface: batadv_slave_1
[  512.328084][T14381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  512.344867][T14381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  512.363532][T14468] sp0: Synchronizing with TNC
[  512.606530][T14381] hsr_slave_0: entered promiscuous mode
[  512.613282][T14381] hsr_slave_1: entered promiscuous mode
[  512.617240][T14381] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  512.622576][T14381] Cannot create hsr debugfs directory
[  513.069704][ T5963] Bluetooth: hci4: command tx timeout
[  513.521729][   T96] : left promiscuous mode
[  513.773911][   T40] kauditd_printk_skb: 2420 callbacks suppressed
[  513.773929][   T40] audit: type=1326 audit(1752971882.706:2651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  513.857889][   T40] audit: type=1326 audit(1752971882.715:2652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf705e579 code=0x7ffc0000
[  513.864722][T12585] usb 7-1: new full-speed USB device number 26 using dummy_hcd
[  513.903763][   T96] tipc: Left network mode
[  513.924614][   T40] audit: type=1326 audit(1752971882.715:2653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  513.956397][   T40] audit: type=1326 audit(1752971882.715:2654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf705e579 code=0x7ffc0000
[  513.998039][   T40] audit: type=1326 audit(1752971882.715:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  514.010489][   T40] audit: type=1326 audit(1752971882.743:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf705e579 code=0x7ffc0000
[  514.088361][T12585] usb 7-1: config 1 interface 0 has no altsetting 0
[  514.115476][T12585] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  514.125222][T12585] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  514.135266][T12585] usb 7-1: Product: syz
[  514.137173][T12585] usb 7-1: Manufacturer: syz
[  514.139468][T12585] usb 7-1: SerialNumber: syz
[  514.380555][   T40] audit: type=1326 audit(1752971883.257:2657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  514.391100][   T40] audit: type=1326 audit(1752971883.257:2658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  514.435932][   T40] audit: type=1326 audit(1752971883.314:2659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf705e579 code=0x7ffc0000
[  514.461192][   T40] audit: type=1326 audit(1752971883.314:2660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14492 comm="syz.0.2397" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  514.658455][T12585] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 26 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  514.683222][T12585] usb 7-1: USB disconnect, device number 26
[  514.744851][T12585] usblp0: removed
[  515.282571][T12585] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  515.304046][ T5963] Bluetooth: hci4: command tx timeout
[  515.429032][T14508] netlink: 240 bytes leftover after parsing attributes in process `syz.0.2401'.
[  515.433556][T14508] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2401'.
[  515.446796][   T96] batman_adv: batadv0: Interface deactivated: dummy0
[  515.477301][   T96] batman_adv: batadv0: Removing interface: dummy0
[  515.509076][   T96] batman_adv: batadv0: Removing interface: batadv_slave_0
[  515.513614][   T96] batman_adv: batadv0: Removing interface: batadv_slave_1
[  515.625789][   T96] team0 (unregistering): Port device batadv1 removed
[  515.642822][   T96] pim6reg (unregistering): left allmulticast mode
[  515.711820][T12585] usb 7-1: device descriptor read/64, error -71
[  515.966920][T12585] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  516.105797][T12585] usb 7-1: device descriptor read/64, error -71
[  516.241445][T12585] usb usb7-port1: attempt power cycle
[  516.639323][T12585] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  516.666283][T12585] usb 7-1: device descriptor read/8, error -71
[  518.878404][   T96] team0 (unregistering): Port device team_slave_1 removed
[  519.218955][   T96] team0 (unregistering): Port device team_slave_0 removed
[  522.041382][T10677] lo speed is unknown, defaulting to 1000
[  522.057274][T10677] infiniband syz0: ib_query_port failed (-19)
[  522.384928][T14381] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  522.593006][T14381] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  522.620831][T14381] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  522.652843][T14381] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  523.008225][T14381] 8021q: adding VLAN 0 to HW filter on device bond0
[  523.187943][T14381] 8021q: adding VLAN 0 to HW filter on device team0
[  523.558234][T14568] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2407'.
[  523.609835][T14568] bridge_slave_1: left allmulticast mode
[  523.614949][T14568] bridge_slave_1: left promiscuous mode
[  523.617651][T14568] bridge0: port 2(bridge_slave_1) entered disabled state
[  523.760335][T14571] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2409'.
[  523.848393][T14568] bridge_slave_0: left allmulticast mode
[  523.851090][T14568] bridge_slave_0: left promiscuous mode
[  523.854047][T14568] bridge0: port 1(bridge_slave_0) entered disabled state
[  524.381824][ T1238] bridge0: port 1(bridge_slave_0) entered blocking state
[  524.384528][ T1238] bridge0: port 1(bridge_slave_0) entered forwarding state
[  524.910681][ T1238] bridge0: port 2(bridge_slave_1) entered blocking state
[  524.914646][ T1238] bridge0: port 2(bridge_slave_1) entered forwarding state
[  524.967003][T14381] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  524.974362][T14381] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  525.624786][T14381] 8021q: adding VLAN 0 to HW filter on device batadv0
[  525.756718][T14381] veth0_vlan: entered promiscuous mode
[  525.795618][T14381] veth1_vlan: entered promiscuous mode
[  525.896374][T14381] veth0_macvtap: entered promiscuous mode
[  525.903876][T14381] veth1_macvtap: entered promiscuous mode
[  525.939003][T14381] batman_adv: batadv0: Interface activated: batadv_slave_0
[  525.959084][T14381] batman_adv: batadv0: Interface activated: batadv_slave_1
[  525.966312][T14381] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  525.971125][T14381] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  525.974550][T14381] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  526.027842][T14381] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  526.233406][T14598] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  526.237001][T14598] syzkaller0: entered promiscuous mode
[  526.248011][T14598] syzkaller0: entered allmulticast mode
[  526.273768][T14598] tipc: Resetting bearer <eth:syzkaller0>
[  526.284476][T14597] tipc: Resetting bearer <eth:syzkaller0>
[  526.310308][T14597] tipc: Disabling bearer <eth:syzkaller0>
[  526.372253][   T96] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  526.420604][   T96] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  526.534372][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  526.539283][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  527.042744][T14616] comedi comedi3: comedi_config --init_data is deprecated
[  527.244017][ T5964] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  527.283467][ T5964] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  527.331042][ T5964] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  527.337782][ T5964] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  527.345496][ T5964] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  527.406324][T14624] Cannot find add_set index 3 as target
[  528.703176][T14621] chnl_net:caif_netlink_parms(): no params data found
[  529.033715][T14646] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  529.038891][T14646] UDF-fs: Scanning with blocksize 2048 failed
[  529.073641][T14646] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  529.078299][T14646] UDF-fs: Scanning with blocksize 4096 failed
[  529.587815][ T5963] Bluetooth: hci0: command tx timeout
[  529.981161][T14621] bridge0: port 1(bridge_slave_0) entered blocking state
[  529.984517][T14621] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.987617][T14621] bridge_slave_0: entered allmulticast mode
[  529.991561][T14621] bridge_slave_0: entered promiscuous mode
[  530.019555][T14621] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.022599][T14621] bridge0: port 2(bridge_slave_1) entered disabled state
[  530.057935][T14621] bridge_slave_1: entered allmulticast mode
[  530.063795][T14621] bridge_slave_1: entered promiscuous mode
[  530.610729][T14621] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  530.651015][T14621] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  530.885309][T14667] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2427'.
[  530.952552][T14621] team0: Port device team_slave_0 added
[  530.978404][T14621] team0: Port device team_slave_1 added
[  531.081338][T14669] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  531.161399][   T81] bridge_slave_1: left allmulticast mode
[  531.164562][   T81] bridge_slave_1: left promiscuous mode
[  531.168532][   T81] bridge0: port 2(bridge_slave_1) entered disabled state
[  531.202966][   T81] bridge_slave_0: left allmulticast mode
[  531.205734][   T81] bridge_slave_0: left promiscuous mode
[  531.208335][   T81] bridge0: port 1(bridge_slave_0) entered disabled state
[  531.221003][T14672] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  531.800614][ T5963] Bluetooth: hci0: command tx timeout
[  533.148733][   T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  533.181856][   T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  533.198503][   T81] bond0 (unregistering): Released all slaves
[  533.539380][T14621] batman_adv: batadv0: Adding interface: batadv_slave_0
[  533.542405][T14621] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.571717][T14621] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  533.602546][T14621] batman_adv: batadv0: Adding interface: batadv_slave_1
[  533.605855][T14621] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.650218][T14621] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  533.655064][   T81] tipc: Left network mode
[  534.023232][ T5963] Bluetooth: hci0: command tx timeout
[  534.316675][T14621] hsr_slave_0: entered promiscuous mode
[  534.319614][T14621] hsr_slave_1: entered promiscuous mode
[  534.326001][T14621] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  534.329627][T14621] Cannot create hsr debugfs directory
[  535.163079][   T81] batman_adv: batadv0: Removing interface: batadv_slave_0
[  535.166727][   T81] batman_adv: batadv0: Removing interface: batadv_slave_1
[  535.213426][   T81] pim6reg (unregistering): left allmulticast mode
[  536.207308][   T29] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  536.252234][ T5963] Bluetooth: hci0: command tx timeout
[  536.387908][   T29] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  536.391556][   T29] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  536.395785][   T29] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  536.417947][   T29] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  536.454564][   T29] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  536.464778][   T29] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  536.473003][   T29] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  536.475665][   T29] usb 7-1: Product: syz
[  536.476565][T14742] random: crng reseeded on system resumption
[  536.477176][   T29] usb 7-1: Manufacturer: syz
[  536.512438][   T29] cdc_wdm 7-1:1.0: skipping garbage
[  536.524570][   T29] cdc_wdm 7-1:1.0: skipping garbage
[  536.533964][   T29] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  536.540203][   T29] cdc_wdm 7-1:1.0: Unknown control protocol
[  536.774305][T14734] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2442'.
[  536.913627][   T34] usb 7-1: USB disconnect, device number 31
[  536.940431][T14744] cdc_wdm 7-1:1.0: Tx URB error: -19
[  537.821955][   T81] team0 (unregistering): Port device team_slave_1 removed
[  538.073332][   T81] team0 (unregistering): Port device team_slave_0 removed
[  541.045629][T10677] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  541.212465][T10677] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  541.224009][T10677] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  541.229554][T10677] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  541.235466][T10677] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  541.240791][T10677] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  541.269456][T10677] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  541.276966][T10677] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  541.285304][T10677] usb 9-1: Product: syz
[  541.290951][T10677] usb 9-1: Manufacturer: syz
[  541.339568][T10677] cdc_wdm 9-1:1.0: skipping garbage
[  541.348124][T10677] cdc_wdm 9-1:1.0: skipping garbage
[  541.352175][T10677] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  541.354140][T10677] cdc_wdm 9-1:1.0: Unknown control protocol
[  541.612766][T14750] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2447'.
[  541.709010][   T29] usb 9-1: USB disconnect, device number 12
[  541.709578][    C3] cdc_wdm 9-1:1.0: nonzero urb status received: -71
[  541.722514][    C3] cdc_wdm 9-1:1.0: wdm_int_callback - 0 bytes
[  541.722531][    C3] cdc_wdm 9-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  542.826395][T14621] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  542.843502][T14621] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  542.866985][T14621] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  542.878716][T14621] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  543.039906][T14061] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  543.160945][T14621] 8021q: adding VLAN 0 to HW filter on device bond0
[  543.206741][T14061] usb 6-1: Using ep0 maxpacket: 8
[  543.217110][T14061] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  543.250539][T14061] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  543.256580][T14061] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  543.268187][T14061] usb 6-1: config 0 descriptor??
[  543.271479][T14621] 8021q: adding VLAN 0 to HW filter on device team0
[  543.306320][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  543.312858][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  543.360220][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  543.363095][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  543.498859][T14061] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  543.950362][T14621] 8021q: adding VLAN 0 to HW filter on device batadv0
[  544.108607][T14621] veth0_vlan: entered promiscuous mode
[  544.141067][T14621] veth1_vlan: entered promiscuous mode
[  544.295067][T14621] veth0_macvtap: entered promiscuous mode
[  544.312799][T14621] veth1_macvtap: entered promiscuous mode
[  544.375473][T14061] usb 6-1: USB disconnect, device number 26
[  544.762889][T14621] batman_adv: batadv0: Interface activated: batadv_slave_0
[  544.778671][T14621] batman_adv: batadv0: Interface activated: batadv_slave_1
[  544.793966][T14621] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  544.808433][T14621] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  544.821126][T14621] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  544.843136][T14621] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  545.022278][   T96] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  545.026928][   T96] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  545.127909][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  545.132932][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  545.314267][T14828] random: crng reseeded on system resumption
[  545.600795][T14837] block device autoloading is deprecated and will be removed.
[  545.697678][   T40] kauditd_printk_skb: 31 callbacks suppressed
[  545.697757][   T40] audit: type=1326 audit(1752971912.564:2692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14835 comm="syz.0.2461" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fd1579 code=0x0
[  545.775167][T14837] md2: using deprecated bitmap file support
[  545.781634][T14837] md2: error: failed to get bitmap file
[  545.879373][T14061] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  545.984521][T14844] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2463'.
[  545.999843][T14844] vlan2: entered promiscuous mode
[  546.001793][T14844] bond0: entered promiscuous mode
[  546.003692][T14844] bond_slave_0: entered promiscuous mode
[  546.009240][T14844] bond_slave_1: entered promiscuous mode
[  546.041413][T14061] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  546.065602][T14061] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  546.071153][T14061] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  546.077203][T14061] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  546.098570][T14061] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  546.116214][T14061] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  546.127465][T14061] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  546.133636][T14061] usb 7-1: Product: syz
[  546.141029][T14061] usb 7-1: Manufacturer: syz
[  546.181480][T14061] cdc_wdm 7-1:1.0: skipping garbage
[  546.187284][T14061] cdc_wdm 7-1:1.0: skipping garbage
[  546.195980][T14061] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  546.199600][T14061] cdc_wdm 7-1:1.0: Unknown control protocol
[  546.410428][T14839] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2462'.
[  546.487317][    C0] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  546.487610][T12585] usb 7-1: USB disconnect, device number 32
[  546.505668][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  546.505692][    C0] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  546.863299][T14855] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2468'.
[  546.870296][T14855] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2468'.
[  547.550354][T14866] 9pnet_fd: Insufficient options for proto=fd
[  549.221121][T14896] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2479'.
[  549.407250][T14899] 9p: Unknown Cache mode or invalid value fscach
[  549.410382][T14899] 9pnet: Tag 65535 still in use
[  549.413458][    C0] ------------[ cut here ]------------
[  549.417154][    C0] refcount_t: underflow; use-after-free.
[  549.421685][    C0] WARNING: CPU: 0 PID: 14621 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210
[  549.431465][    C0] Modules linked in:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  549.435194][    C0] CPU: 0 UID: 0 PID: 14621 Comm: syz-executor Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  549.445201][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  549.461423][    C0] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  549.464579][    C0] Code: ff 89 de e8 68 fb e3 fc 84 db 0f 85 66 ff ff ff e8 7b 00 e4 fc c6 05 2d 5b ba 0b 01 90 48 c7 c7 a0 08 15 8c e8 77 5a a3 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 58 00 e4 fc 0f b6 1d 08 5b ba 0b 31
[  549.480251][    C0] RSP: 0018:ffffc90000007d90 EFLAGS: 00010082
[  549.485893][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817ab108
[  549.490789][    C0] RDX: ffff88801dae2440 RSI: ffffffff817ab115 RDI: 0000000000000001
[  549.498485][    C0] RBP: ffff88804ac69438 R08: 0000000000000001 R09: 0000000000000000
[  549.510625][    C0] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88804ac69438
[  549.515702][    C0] R13: ffff888013ad1400 R14: 0000000000000015 R15: 1ffff1100972500c
[  549.518820][    C0] FS:  0000000000000000(0000) GS:ffff88809752e000(0063) knlGS:00000000571b1440
[  549.538211][    C0] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  549.541038][    C0] CR2: 00000000f7fc55c0 CR3: 000000006691f000 CR4: 0000000000352ef0
[  549.544512][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  549.560228][    C0] DR3: 00000000000032e7 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  549.563220][    C0] Call Trace:
[  549.564660][    C0]  <IRQ>
[  549.565999][    C0]  p9_req_put+0x1ec/0x250
[  549.580730][    C0]  req_done+0x1dc/0x2e0
[  549.582835][    C0]  ? __pfx_req_done+0x10/0x10
[  549.584958][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  549.587507][    C0]  ? __pfx_req_done+0x10/0x10
[  549.589465][    C0]  vring_interrupt+0x31e/0x400
[  549.591649][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  549.594175][    C0]  __handle_irq_event_percpu+0x22c/0x7d0
[  549.596691][    C0]  handle_irq_event+0xab/0x1e0
[  549.613771][    C0]  handle_edge_irq+0x28e/0xab0
[  549.616731][    C0]  __common_interrupt+0xdf/0x250
[  549.620055][    C0]  common_interrupt+0xba/0xe0
[  549.622985][    C0]  </IRQ>
[  549.624675][    C0]  <TASK>
[  549.626359][    C0]  asm_common_interrupt+0x26/0x40
[  549.641310][    C0] RIP: 0010:dup_mmap+0x80c/0x21d0
[  549.643384][    C0] Code: 24 18 4c 29 a0 88 02 00 00 e9 f2 fc ff ff e8 bb 05 b2 ff 48 8b 7c 24 20 be 08 00 00 00 e8 9c 67 16 00 48 8b 44 24 58 80 38 00 <0f> 85 96 17 00 00 48 8b 44 24 20 31 ff 4c 8b 20 49 c1 ec 02 41 83
[  549.650522][    C0] RSP: 0018:ffffc900030e7990 EFLAGS: 00000246
[  549.669515][    C0] RAX: ffffed1003b5c488 RBX: ffff888013cd7900 RCX: ffffffff82094fb4
[  549.673704][    C0] RDX: ffffed1003b5c489 RSI: 0000000000000008 RDI: ffff88801dae2440
[  549.677864][    C0] RBP: ffff888013cd7920 R08: 0000000000000000 R09: ffffed1003b5c488
[  549.681597][    C0] R10: ffff88801dae2447 R11: 0000000000000001 R12: 0000000000000000
[  549.697551][    C0] R13: dffffc0000000000 R14: 0000000000000001 R15: ffff8880277e67a8
[  549.700582][    C0]  ? dup_mmap+0x804/0x21d0
[  549.702326][    C0]  ? __pfx_dup_mmap+0x10/0x10
[  549.704148][    C0]  copy_process+0x4081/0x7650
[  549.705991][    C0]  ? __pfx_copy_process+0x10/0x10
[  549.717814][    C0]  ? do_raw_spin_lock+0x12c/0x2b0
[  549.719855][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  549.722003][    C0]  kernel_clone+0xfc/0x960
[  549.723714][    C0]  ? __pfx_kernel_clone+0x10/0x10
[  549.725621][    C0]  __do_compat_sys_ia32_clone+0xcb/0x110
[  549.728054][    C0]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  549.731017][    C0]  ? find_held_lock+0x2b/0x80
[  549.733756][    C0]  ? rcu_is_watching+0x12/0xc0
[  549.736043][    C0]  __do_fast_syscall_32+0x7c/0x3a0
[  549.738549][    C0]  do_fast_syscall_32+0x32/0x80
[  549.741291][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  549.745442][    C0] RIP: 0023:0xf7fd1579
[  549.748096][    C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  549.758094][    C0] RSP: 002b:00000000ffbfb9ec EFLAGS: 00000292 ORIG_RAX: 0000000000000078
[  549.761966][    C0] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[  549.765547][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000571b14a8
[  549.770057][    C0] RBP: 00000000f7464ff4 R08: 0000000000000000 R09: 0000000000000000
[  549.774585][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  549.779578][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  549.783857][    C0]  </TASK>
[  549.785710][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  549.789691][    C0] CPU: 0 UID: 0 PID: 14621 Comm: syz-executor Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(full) 
[  549.797251][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  549.802435][    C0] Call Trace:
[  549.804256][    C0]  <IRQ>
[  549.805763][    C0]  dump_stack_lvl+0x3d/0x1f0
[  549.808384][    C0]  panic+0x71c/0x800
[  549.810206][    C0]  ? __pfx_panic+0x10/0x10
[  549.812396][    C0]  ? show_trace_log_lvl+0x29b/0x3e0
[  549.814843][    C0]  ? check_panic_on_warn+0x1f/0xb0
[  549.817804][    C0]  ? refcount_warn_saturate+0x14a/0x210
[  549.820301][    C0]  check_panic_on_warn+0xab/0xb0
[  549.822390][    C0]  __warn+0xf6/0x3c0
[  549.823928][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  549.825984][    C0]  ? refcount_warn_saturate+0x14a/0x210
[  549.828622][    C0]  report_bug+0x3c3/0x580
[  549.830732][    C0]  ? refcount_warn_saturate+0x14a/0x210
[  549.832998][    C0]  handle_bug+0x184/0x210
[  549.834893][    C0]  exc_invalid_op+0x17/0x50
[  549.836858][    C0]  asm_exc_invalid_op+0x1a/0x20
[  549.838996][    C0] RIP: 0010:refcount_warn_saturate+0x14a/0x210
[  549.841924][    C0] Code: ff 89 de e8 68 fb e3 fc 84 db 0f 85 66 ff ff ff e8 7b 00 e4 fc c6 05 2d 5b ba 0b 01 90 48 c7 c7 a0 08 15 8c e8 77 5a a3 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 58 00 e4 fc 0f b6 1d 08 5b ba 0b 31
[  549.851959][    C0] RSP: 0018:ffffc90000007d90 EFLAGS: 00010082
[  549.854515][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817ab108
[  549.858189][    C0] RDX: ffff88801dae2440 RSI: ffffffff817ab115 RDI: 0000000000000001
[  549.863036][    C0] RBP: ffff88804ac69438 R08: 0000000000000001 R09: 0000000000000000
[  549.868061][    C0] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88804ac69438
[  549.872263][    C0] R13: ffff888013ad1400 R14: 0000000000000015 R15: 1ffff1100972500c
[  549.877805][    C0]  ? __warn_printk+0x198/0x350
[  549.881068][    C0]  ? __warn_printk+0x1a5/0x350
[  549.884279][    C0]  p9_req_put+0x1ec/0x250
[  549.886780][    C0]  req_done+0x1dc/0x2e0
[  549.889175][    C0]  ? __pfx_req_done+0x10/0x10
[  549.892016][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  549.898085][    C0]  ? __pfx_req_done+0x10/0x10
[  549.901772][    C0]  vring_interrupt+0x31e/0x400
[  549.905089][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  549.908405][    C0]  __handle_irq_event_percpu+0x22c/0x7d0
[  549.912013][    C0]  handle_irq_event+0xab/0x1e0
[  549.915171][    C0]  handle_edge_irq+0x28e/0xab0
[  549.919402][    C0]  __common_interrupt+0xdf/0x250
[  549.923726][    C0]  common_interrupt+0xba/0xe0
[  549.927426][    C0]  </IRQ>
[  549.929391][    C0]  <TASK>
[  549.931238][    C0]  asm_common_interrupt+0x26/0x40
[  549.934365][    C0] RIP: 0010:dup_mmap+0x80c/0x21d0
[  549.938421][    C0] Code: 24 18 4c 29 a0 88 02 00 00 e9 f2 fc ff ff e8 bb 05 b2 ff 48 8b 7c 24 20 be 08 00 00 00 e8 9c 67 16 00 48 8b 44 24 58 80 38 00 <0f> 85 96 17 00 00 48 8b 44 24 20 31 ff 4c 8b 20 49 c1 ec 02 41 83
[  549.951811][    C0] RSP: 0018:ffffc900030e7990 EFLAGS: 00000246
[  549.955998][    C0] RAX: ffffed1003b5c488 RBX: ffff888013cd7900 RCX: ffffffff82094fb4
[  549.960595][    C0] RDX: ffffed1003b5c489 RSI: 0000000000000008 RDI: ffff88801dae2440
[  549.965962][    C0] RBP: ffff888013cd7920 R08: 0000000000000000 R09: ffffed1003b5c488
[  549.970659][    C0] R10: ffff88801dae2447 R11: 0000000000000001 R12: 0000000000000000
[  549.975743][    C0] R13: dffffc0000000000 R14: 0000000000000001 R15: ffff8880277e67a8
[  549.981353][    C0]  ? dup_mmap+0x804/0x21d0
[  549.984268][    C0]  ? __pfx_dup_mmap+0x10/0x10
[  549.988823][    C0]  copy_process+0x4081/0x7650
[  549.992234][    C0]  ? __pfx_copy_process+0x10/0x10
[  549.995450][    C0]  ? do_raw_spin_lock+0x12c/0x2b0
[  549.998618][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  550.002770][    C0]  kernel_clone+0xfc/0x960
[  550.005961][    C0]  ? __pfx_kernel_clone+0x10/0x10
[  550.009377][    C0]  __do_compat_sys_ia32_clone+0xcb/0x110
[  550.013188][    C0]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  550.017190][    C0]  ? find_held_lock+0x2b/0x80
[  550.021058][    C0]  ? rcu_is_watching+0x12/0xc0
[  550.027384][    C0]  __do_fast_syscall_32+0x7c/0x3a0
[  550.031592][    C0]  do_fast_syscall_32+0x32/0x80
[  550.035174][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  550.039542][    C0] RIP: 0023:0xf7fd1579
[  550.042767][    C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  550.057348][    C0] RSP: 002b:00000000ffbfb9ec EFLAGS: 00000292 ORIG_RAX: 0000000000000078
[  550.063072][    C0] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[  550.068884][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000571b14a8
[  550.073013][    C0] RBP: 00000000f7464ff4 R08: 0000000000000000 R09: 0000000000000000
[  550.078384][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  550.084170][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  550.089477][    C0]  </TASK>
[  550.092030][    C0] Kernel Offset: disabled
[  550.094883][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:38:48  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff975ae040 RBX=0000000000000009 RCX=0000000000000016 RDX=ffffffff95d5f1b8
RSI=0000000000000016 RDI=ffffffff975ade10 RBP=0000000000000020 RSP=ffffc900000075f0
R8 =ffffffff95d61b40 R9 =000000000000000e R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=ffff88801dae2ff8 R14=ffffffff8197bb40 R15=ffffffff975ade10
RIP=ffffffff8197b9fa RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809752e000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7fc55c0 CR3=000000006691f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000000032e7 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000d000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000001e25383 RBX=0000000000000001 RCX=ffffffff8b828c69 RDX=0000000000000000
RSI=ffffffff8de296c6 RDI=ffffffff8c155ce0 RBP=ffffed1003bdb488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed1005666645 R10=ffff88802b33322b R11=0000000000000001
R12=0000000000000001 R13=ffff88801deda440 R14=ffffffff90a95850 R15=0000000000000000
RIP=ffffffff8b8277cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809762e000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080001000 CR3=000000004512a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f000000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffc90007740000 RBX=ffff8880238c0000 RCX=ffffffff86a360a2 RDX=00000000ffffffff
RSI=ffffffff86a360af RDI=0000000000000005 RBP=0000000000000000 RSP=ffffc90000538eb8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=ffff8880238c16b8 R14=ffff8880238c12d0 R15=0000000000000000
RIP=ffffffff86a360dc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f2e4f542300 ffffffff 00c00000
GS =0000 ffff88809772e000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f16e40 CR3=0000000048fac000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=a654abc1b742f1c3 394e8cae8044d7dc a654abc1b742f1c3 394e8cae8044d7dc a654abc1b742f1c3 394e8cae8044d7dc a654abc1b742f1c3 394e8cae8044d7dc
ZMM18=70dc0a47f58fb9a5 d5b7e83ea9c04cee 70dc0a47f58fb9a5 d5b7e83ea9c04cee 70dc0a47f58fb9a5 d5b7e83ea9c04cee 70dc0a47f58fb9a5 d5b7e83ea9c04cee
ZMM19=741c000000000000 0000000000000005 741c000000000000 0000000000000004 741c000000000000 0000000000000003 741c000000000000 0000000000000002
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0301800200048c03 01800200048a0301 8002000488030180 0200048603018002
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004840306040004 8003208008000680 020c800201000004 080608060a019008
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0006800300080004 0800060800060473 f008028802050280 0200080002080002
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 02e0020001da0302 d4020001d80302b8 020001d60302a402 0001d40302b00200
ZMM25=0f7e570e0f7e570e 0f7e570e0f7e570e 0f7e570e0f7e570e 0f7e570e0f7e570e 0f7e570e0f7e570e 0f7e570e0f7e570e 0f7e570e0f7e570e 0f7e570e0f7e570e
ZMM26=52946c1152946c11 52946c1152946c11 52946c1152946c11 52946c1152946c11 52946c1152946c11 52946c1152946c11 52946c1152946c11 52946c1152946c11
ZMM27=4da34c324da34c32 4da34c324da34c32 4da34c324da34c32 4da34c324da34c32 4da34c324da34c32 4da34c324da34c32 4da34c324da34c32 4da34c324da34c32
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=6d1200006d120000 6d1200006d120000 6d1200006d120000 6d1200006d120000 6d1200006d120000 6d1200006d120000 6d1200006d120000 6d1200006d120000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff82053f56 RDX=ffff8880230b0000
RSI=ffffffff82053f63 RDI=ffffc90002e47b40 RBP=000000000000005d RSP=ffffc90002e47848
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=00000000f61a3000 R13=ffff888070a53d18 R14=dffffc0000000000 R15=0000000000000000
RIP=ffffffff82053f82 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809782e000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080003000 CR3=000000006aa99000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000