last executing test programs:

1m20.253999981s ago: executing program 3 (id=2239):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0})
dup3(r1, r0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x8000, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x6, 0xc, &(0x7f0000001480)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x1c, 0x2, 0x1, 0x301, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_ID={0x8, 0xc, 0x1, 0x0, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040000}, 0x4004010)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/devices.allow\x00', 0x2, 0x118)
epoll_create1(0x80000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
socket(0xa, 0x3, 0x3a)
syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042)
socket$inet6(0xa, 0x80002, 0x0)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141102)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})

1m20.098943742s ago: executing program 3 (id=2240):
r0 = openat$ndctl0(0xffffff9c, &(0x7f0000000000), 0x800, 0x0)
write$khugepaged_scan(r0, &(0x7f0000000040), 0x8)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r0, 0x8008f512, &(0x7f0000000080))
sendmmsg$unix(r0, &(0x7f00000000c0), 0x0, 0x1)
r1 = socket(0x1a, 0x1, 0x0)
sendmsg$IPSET_CMD_RENAME(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x5, 0x6, 0x6, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x40c0}, 0x20000800)
setsockopt$inet6_buf(r0, 0x29, 0x2a, &(0x7f0000000200)="f752796c6b2d1237c6cfba5859f804a475013594e6d8047e34a72a42926f47afa5c75638ad8da3ee79a8147e557482b8ca1a24419efa1e364d00d399633bd9cab54ac433b92322f1135c284fe49dae914c1d23ebc128166c158bca69278672aa8356468cfa4ee81093c85c3e6dcd00247339d4b81d6edff622a641c1c90ca458dd42ac2337a28309c765496877f4ba0069424244171347d0146bc8edce05cec6202ab83292ba3913f981303a83b3cb140f22453356ace4a5970a0dd135a207e6e1d2f6402a3571129cfac7214666fe272316f2f60dcb52a43334cb5f4e022757b16d015e89fc91704d3090871999a7", 0xef)
r2 = socket(0x1a, 0x1, 0x6)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
r4 = syz_clone3(&(0x7f0000001440)={0x40000000, &(0x7f0000000300)=<r5=>0xffffffffffffffff, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000380)=<r7=>0x0, {0x33}, &(0x7f00000003c0)=""/49, 0x31, &(0x7f0000000400)=""/4096, &(0x7f0000001400)=[0x0, 0x0, 0xffffffffffffffff], 0x3, {r0}}, 0x58)
ioctl$sock_SIOCSPGRP(r3, 0x8902, &(0x7f00000014c0)=r4)
r8 = openat$full(0xffffff9c, &(0x7f0000001500), 0x321000, 0x0)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r8, 0x81785501, &(0x7f0000001540)=""/4096)
fcntl$addseals(r5, 0x409, 0x10)
fstat(r0, &(0x7f0000002540)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
r10 = getgid()
ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0186405, &(0x7f00000025c0)={0x1, 0x8000, {r4}, {<r11=>0x0}, 0x10000, 0xbae})
statx(r0, &(0x7f0000002600)='./file0\x00', 0x2000, 0x400, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0})
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000002740)={{0x0, r9, r10, r11, r12, 0x1, 0x6}, 0x9, 0xffffffff, 0x1, 0x6, r7, r6, 0x3})
r13 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r13, 0x0, 0x40, &(0x7f00000027c0)=@security={'security\x00', 0xe, 0x4, 0x3e4, 0xffffffff, 0x1f0, 0x1f0, 0x1f0, 0xffffffff, 0xffffffff, 0x350, 0x350, 0x350, 0xffffffff, 0x4, &(0x7f0000002780), {[{{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x7, 0x4, 0x1, 0x0, 0x1, 0x4], 0x4, 0x6}, {0x3, [0x2, 0x1, 0x0, 0xd, 0x2, 0x1], 0x4, 0x2}}}}, {{@ip={@local, @empty, 0xffffffff, 0xff, 'rose0\x00', 'dvmrp0\x00', {}, {0xff}, 0x5c, 0x7, 0x28}, 0x0, 0xc0, 0x120, 0x0, {}, [@common=@icmp={{0x24}, {0x8, "a34a", 0x1}}, @common=@addrtype={{0x2c}, {0x80, 0x2, 0x0, 0x1}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x4, [0x7, 0x1, 0x2, 0x4, 0x0, 0x4], 0x5, 0x2}, {0x2, [0x4, 0xec67ee0f4e3d24d4, 0x2, 0x4, 0x3, 0x2], 0x1, 0x3}}}}, {{@uncond, 0x0, 0x100, 0x160, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00', 0x0, 0xe, 0x0, 0x1}}, @common=@set={{0x40}, {{0xffffffffffffffff, [0x6, 0x5, 0x2, 0x0, 0x1], 0x4, 0x2}}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x4, [0x0, 0x0, 0x2, 0x6, 0x4, 0x2], 0x4, 0x4}, {0x4, [0x2, 0x6, 0x0, 0x6, 0x6, 0x5], 0x1, 0xa}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x440)
r14 = openat$sndseq(0xffffff9c, &(0x7f0000002c00), 0x2001)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r14, 0xc0bc5351, &(0x7f0000002c40)={0x4, 0x0, 'client0\x00', 0x2, "612fcbb4409c06b0", "aead6d2b11582fd8ac6ae7d724901c0485bb5a3b00f97eac5666b190175344f5", 0xfffffff7, 0x6})
r15 = syz_genetlink_get_family_id$team(&(0x7f0000002d40), r2)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000002e00)={'ip6_vti0\x00', &(0x7f0000002d80)={'ip6_vti0\x00', <r16=>0x0, 0x4, 0x7, 0x8, 0xf9a, 0x20, @private2={0xfc, 0x2, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x700, 0x8000, 0x541, 0xb88}})
sendmsg$TEAM_CMD_OPTIONS_SET(r8, &(0x7f0000002ec0)={&(0x7f0000002d00)={0x10, 0x0, 0x0, 0x1400080}, 0xc, &(0x7f0000002e80)={&(0x7f0000002e40)={0x20, r15, 0x2, 0x70bd26, 0x25dfdbfd, {}, [{{0x8, 0x1, r16}, {0x4}}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000000}, 0x20044000)
openat$tun(0xffffff9c, &(0x7f0000002f00), 0x101000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000002f40)={0xffffffffffffffff, 0x2, 0x8, 0x0, 0xfffffffa})
ptrace$PTRACE_SETSIGMASK(0x420b, r4, 0x8, &(0x7f0000002f80)={[0xae, 0x5]})
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000002fc0)={@empty, 0x64, r16})

1m19.837151484s ago: executing program 3 (id=2241):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
setpriority(0x0, 0x0, 0xacf0165)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r3 = openat$sndseq(0xffffff9c, &(0x7f0000000040), 0x109002)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r3, 0xc0605345, &(0x7f0000000300)={0x5, 0x1, {0x3, 0x2, 0x1, 0x3, 0x3}, 0x48})
r4 = socket$l2tp6(0xa, 0x2, 0x73)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x4e22, 0x2, @private2, 0x8b01}, 0x1c)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
mkdir(0x0, 0x0)
r5 = open(0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, 0x0)
r6 = getpgid(0xffffffffffffffff)
ptrace$peekuser(0x3, r6, 0x99)

1m19.670206648s ago: executing program 3 (id=2243):
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x121100)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0105502, &(0x7f0000000300)={0x1, 0x1}) (fail_nth: 4)

1m19.559889344s ago: executing program 3 (id=2244):
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xf, "0040001e1d113c812e5d6000"})
r1 = syz_open_pts(r0, 0x40)
ioctl$TIOCGETD(r1, 0x5424, &(0x7f00000000c0))
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x401, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r2, 0xc0f8565c, &(0x7f0000000440)={0xfffffffc, 0x400005, 0x4, {0x1, @raw_data="e5ca06de20588dda19f22adc384e41a7160ff2fb94e39db5eff62627ee6c53971f6e8b51368aee92194193828cbe187cf186026d0a47f13748bc27104b50e20d1fc144bc626e1950f0e7a0a02a5f27b79b593c4ece08816ce7c179d98ed0b3f32d8591771b1982eda6ca938d25dfef06f37d582f2940d7382a7ab4a45b2ebf1c59f6f324085fd53699be555d1a900581ade690c775d84fcdf1ee28d73208d48a3ecfe65acbe808e6f329ae315df0f9a5d2171328e6926db6ea4b46873a509b9f1e9c59a4b76aa28b"}, 0x959})
r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x289)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='binder\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r3, 0x40049366, 0x0)

1m19.454332947s ago: executing program 3 (id=2246):
socket$packet(0x11, 0x3, 0x300)
r0 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0x2, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfd, 0x0, 0x1, 0x2, 0xfe, 0x0, 0x3, 0x2], 0x1, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x9, 0x8, 0x0, 0x0, 0x2, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x3]}}]}}]}, 0x8c}}, 0x4000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
syz_open_dev$tty20(0xc, 0x4, 0x1)
creat(0x0, 0xecf86c37d53049cc)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x200003, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000380)={0x7, 0x1, 0x0, "6eccdf9b2ed51e03e6cdde42e5b9b568a530b0f30894c86c95a533c225abce37"})
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x1c, 0x3, 0x6, 0x101, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x4)
accept4$unix(r2, &(0x7f00000003c0), 0x0, 0x800)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000004000000060000008000000042"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000340), 0x619, r6}, 0x38)
openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r0)
getsockname$packet(r0, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
socket$netlink(0x10, 0x3, 0x0)

1m4.396016564s ago: executing program 32 (id=2246):
socket$packet(0x11, 0x3, 0x300)
r0 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0x2, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfd, 0x0, 0x1, 0x2, 0xfe, 0x0, 0x3, 0x2], 0x1, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x9, 0x8, 0x0, 0x0, 0x2, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x3]}}]}}]}, 0x8c}}, 0x4000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
syz_open_dev$tty20(0xc, 0x4, 0x1)
creat(0x0, 0xecf86c37d53049cc)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x200003, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000380)={0x7, 0x1, 0x0, "6eccdf9b2ed51e03e6cdde42e5b9b568a530b0f30894c86c95a533c225abce37"})
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x1c, 0x3, 0x6, 0x101, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x4)
accept4$unix(r2, &(0x7f00000003c0), 0x0, 0x800)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000004000000060000008000000042"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000340), 0x619, r6}, 0x38)
openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r0)
getsockname$packet(r0, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
socket$netlink(0x10, 0x3, 0x0)

5.328339964s ago: executing program 2 (id=2703):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x1a003})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x339)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @link_local})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @dev}) (fail_nth: 4)

5.031248854s ago: executing program 2 (id=2706):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='mode=00000000000000060000007,\x00'])
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000380)={'pimreg\x00', 0x1000})
write$tun(r1, &(0x7f0000000040)={@void, @val={0x3, 0x4, 0x8, 0x5, 0x19, 0xc}, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @broadcast, @val={@void, {0x8100, 0x6, 0x0, 0x1}}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @loopback, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}, @multicast1}}}}}, 0x38)
syz_open_dev$video(&(0x7f00000009c0), 0x7, 0x0)
syz_usb_connect(0x3, 0x24, &(0x7f0000002040)=ANY=[@ANYBLOB="12010000fe76181004160780a6af011703010902120001000000000904"], 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000100), 0xfffffffffffffffd, 0x183003)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r2, 0x80dc5521, &(0x7f00000011c0)=""/230)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo\x00')
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r6 = accept4$alg(r5, 0x0, 0x0, 0x0)
sendmmsg$alg(r6, &(0x7f0000007e40)=[{0x0, 0x0, &(0x7f0000002540)=[{&(0x7f00000002c0)="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", 0x1000}, {&(0x7f00000000c0)="4789d3aefc1a4d0334", 0x9}, {0x0}], 0x3, 0x0, 0x0, 0x20000000}], 0x1, 0x4000080)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112})
ioctl$TUNSETPERSIST(r4, 0x400454cb, 0x201)
r7 = syz_open_procfs(0x0, &(0x7f0000001300)='stat\x00')
io_setup(0x400, &(0x7f0000001380))
ioctl$BLKRAGET(r7, 0x1263, &(0x7f00000000c0))
ioctl$BLKSSZGET(r3, 0x1268, &(0x7f0000001100))
fchdir(r3)
read$msr(r3, &(0x7f0000002080)=""/4096, 0x1000)
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1bd)

4.068376038s ago: executing program 4 (id=2712):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x200000000000000)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r2, 0x7ffffffd, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)

4.066182842s ago: executing program 4 (id=2713):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r0 = gettid()
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000580), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x8, 0x8e}}]}, 0x4c}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r5 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xd146, 0x0, 0x1, 0x288}, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000000)=<r7=>0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0xfff, 0x7, 0x1000}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r9}, 0x18)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_UNLINKAT={0x24, 0xd, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r5, 0x3516, 0x0, 0x4, 0x0, 0x0)

3.562442774s ago: executing program 0 (id=2717):
socket$nl_generic(0x10, 0x3, 0x10)
dup(0xffffffffffffffff)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x1, 0x2}, {0x1}}}}, 0xf)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00', <r4=>0x0})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x48e02, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000000)={'pimreg1\x00', 0x42a5e4b325a47b01})
io_setup(0x2, &(0x7f00000002c0)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000440)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, r5, 0x0, 0x0, 0x283}])
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f000000bb80)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xfff0, 0xe}, {}, {0x4, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r7 = openat$hpet(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r7, 0xc038943b, &(0x7f0000000380)={0x7, 0x40, '\x00', 0x0, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r8 = socket$unix(0x1, 0x1, 0x0)
r9 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r9, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0xf7}, 'port0\x00', 0x3df, 0x4022f, 0x1000003, 0x7, 0x800, 0x1, 0xb, 0x0, 0x0, 0x2})
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x80d02, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x21dfdbfc, {0x0, 0x0, 0x0, r10, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x200c4004)
sendmsg$inet(r0, &(0x7f0000000100)={0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000140)="600000002e000d190a762d7f089e", 0xfca2}, {&(0x7f0000000280)="68cabf2dfb58fc0a1d6b689866f05d490d010088a8ffff0200258f2e4409b8f9e6aaeb88bea123dc2c6726e89b1ae2f6e8bcb5ee52dcd7298d39093c510293bca0b646a3ce904f6e6b788b3204c233e60ddc", 0x52}], 0x2}, 0x0)

3.477382938s ago: executing program 1 (id=2718):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x23, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

3.358728388s ago: executing program 1 (id=2719):
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2132, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000f)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_io_uring_setup(0x52c2, &(0x7f0000000300)={0x0, 0x79af, 0x4, 0x40, 0x2da}, &(0x7f00000000c0), 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000240)={[0x3, 0x10000, 0x0, 0x3, 0x9, 0x6, 0x30002, 0x739, 0x1, 0x73e, 0x7, 0x100000000, 0x935b, 0x6, 0x3ff, 0xf6], 0x1001, 0x80440})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x1000000000, 0x7, 0x41, 0x4, 0x0, 0x2004cb, 0x0, 0x8c9b, 0x68ff, 0x7, 0x0, 0x7, 0x4, 0x0, 0x1], 0x1000, 0x202})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f00000001c0)={0x0, @rand_addr=0x64010102, 0x4e20, 0x1, 'lc\x00', 0xa, 0x1ff, 0x1e}, 0x2c)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)={0x14, 0x3d, 0x301, 0x270bd24, 0x25dfdbfa, {0x1, 0x0, 0xf000}}, 0x14}}, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x800, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x8000)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x84}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=@base={0x17, 0x80, 0x3, 0xfd, 0x22, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4000}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=<r6=>r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000280)=ANY=[@ANYRESHEX=0x0, @ANYRESDEC=r6], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x50, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='mm_migrate_pages\x00', r7, 0x0, 0x5}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x4000000, 0x2)
syz_open_dev$sndctrl(&(0x7f0000000400), 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r8, 0x0, 0xd}, 0x18)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f0000001380)={0x0, 0x183, 0x0, 'queue1\x00', 0x1})
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r10, 0x404c534a, &(0x7f0000000540)={0x0, 0x0, 0x9})

3.12899348s ago: executing program 1 (id=2720):
socket(0x2b, 0x80801, 0x1)
socket$phonet_pipe(0x23, 0x5, 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/5, 0x1c000, 0x800, 0x8, 0x2}, 0x1c)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000940)=0x129188, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000002500), 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r5, 0x6804, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{0x1, <r6=>0xffffffffffffffff}, &(0x7f0000000100), &(0x7f0000000140)=r4}, 0x1c)
r7 = syz_open_procfs(0x0, &(0x7f0000000280)='attr/fscreate\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x25, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000001000000000000000400000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000182a0000", @ANYRES32=r5, @ANYBLOB, @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000", @ANYRES32=r7, @ANYBLOB], &(0x7f0000000340)='GPL\x00', 0x3, 0x88, &(0x7f0000000400)=""/136, 0x40f00, 0x7, '\x00', r3, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x8, 0x1}, 0x8, 0x10, &(0x7f00000007c0)={0x3, 0x1, 0x3, 0x8}, 0x10, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000800)=[{0x4, 0x1, 0x5, 0x3}, {0x5, 0x4, 0x8, 0x1}], 0x10, 0x8}, 0x94)
bind$xdp(r1, &(0x7f00000001c0)={0x2c, 0x0, r3}, 0x10)
r8 = signalfd4(r6, &(0x7f00000009c0)={[0x9, 0x2]}, 0x8, 0x80800)
mknodat$loop(r8, &(0x7f0000000980)='\x00', 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'team0\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
pselect6(0x40, &(0x7f00000000c0)={0x3, 0x4, 0xa799, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x5, 0x0, 0xf, 0x80000005}, 0x0, 0x0)

3.128470497s ago: executing program 4 (id=2721):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$dri(0x0, 0xd21, 0x4000)
r2 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x41, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="840000001000010029bd7000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="4db20200201a0100140003006e657464657673696d30000000000000480016804400018040000c8014000104ff0300ff88a8000014000100390e00003f0000000d000000810000001400010006000000af0600000700000088a8000005001100060000000000000000000000337289ae8504346600e663960b2466b8aeb6d543ca7b0ab342095dd8aa80a9436ac2f322cd6bb964e3248157af44c58b53fb284ad18ee521b78b0b06ef2dad6158"], 0x84}, 0x1, 0x0, 0x0, 0xc1}, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000040))
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_open_dev$swradio(&(0x7f0000000240), 0x0, 0x2)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7}, {0x0, 0x4, 0x9, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}]})
r6 = msgget$private(0x0, 0x4a0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c000000100005040000", @ANYRES32=0x0, @ANYBLOB="5d580000000000001c001a8018000a801400070000000000000000000000000000000001140003006970766c616e310000000000000000001c0012800b0001006970766c616e00000c0002800600010000000000"], 0x6c}, 0x1, 0x0, 0x0, 0x840}, 0x0)
msgctl$IPC_STAT(r6, 0x2, 0x0)
msgsnd(r6, &(0x7f0000000440)=ANY=[@ANYBLOB], 0xe3, 0x0)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000380)={[0xf, 0x3, 0x4, 0x1000000000000002, 0x102000000000002, 0x8000000d, 0x2004c8, 0xffff, 0x3, 0xffffffff, 0x10001, 0x7fffffffffffffff, 0x7ff, 0xfffffffffffffff9, 0x2000000000000003, 0x5], 0x60000, 0x4284})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r7, 0x40505331, &(0x7f0000000540)={{}, {0x18}, 0x0, 0x7})
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
socket(0x400000000010, 0x3, 0x0)

2.629203846s ago: executing program 0 (id=2722):
socket$nl_generic(0x10, 0x3, 0x10)
dup(0xffffffffffffffff)
r0 = socket$kcm(0x10, 0x400000002, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f000000bb80)=@newtfilter={0x2c, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xfff0, 0xe}, {}, {0x7}}, [@TCA_CHAIN={0x8, 0xb, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x21dfdbfc, {0x0, 0x0, 0x0, r6, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x200c4004)
sendmsg$inet(r0, &(0x7f0000000100)={0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000140)="230000002e000d190a762d7f089e", 0xfca2}, {&(0x7f0000000280)="68cabf2dfb58fc0a1d6b689866f05d490d010088a8ffff0200258f2e4409b8f9e6aaeb88bea123dc2c6726e89b1ae2f6e8bcb5ee52dcd7298d39093c510293bca0b646a3ce904f6e6b788b3204c233e60ddc", 0x52}], 0x2}, 0x0)

2.13897117s ago: executing program 1 (id=2723):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = socket$inet(0x2, 0x2, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r5 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000340)=0x10001)
add_key(&(0x7f0000000080)='dns_resolver\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000003a00098027bd72000200000012000000"], 0x14}, 0x1, 0x0, 0x0, 0x42804}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x8, &(0x7f0000000180)=@raw=[@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x0, 0x1}, 0x8}, 0x94)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r5, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r7 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r7, 0xc0045627, &(0x7f00000001c0)=0x2)
ioctl$VIDIOC_TRY_FMT(r7, 0xc0d05640, &(0x7f0000000280)={0x4, @win={{0x6123, 0x9, 0x8, 0x2}, 0x8, 0x1, &(0x7f0000000000)={{0x101, 0x8, 0x10000000, 0x9}}, 0x2, 0x0, 0x9}})

2.08021897s ago: executing program 0 (id=2724):
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl2\x00', <r1=>0x0, 0x29, 0x8, 0x3, 0x7fff, 0x21, @private2, @remote, 0x700, 0x700, 0x560, 0x1e5}})
bind$packet(r0, &(0x7f0000000540)={0x11, 0x1c, r1, 0x1, 0x8}, 0x14)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000580)=@gcm_256={{0x303}, "3585557e1ef954d5", "6c43980b534feb5e0271336d34be2c470efa1d12171d408bb630c119a32413d2", "9db9c8a8", "1c3f5549a41ad4dc"}, 0x38)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ptrace$setregs(0xf, r2, 0xa419, &(0x7f0000000040)="f25d0003ca2171465716")
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r6, 0xc048aec8, &(0x7f0000000180)={0x20000083, 0xffffffffffffffff, 0xfffffffe})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f00000001c0)={'wpan1\x00', <r10=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="3f9d000000000000000017000000", @ANYRES32=r10, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c000180050002000000000008000400050000000800010002000000240003"], 0x7c}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
sendmsg$NL802154_CMD_SET_PAN_ID(r7, &(0x7f0000000680)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x704214}, 0xc, &(0x7f0000000640)={&(0x7f00000006c0)=ANY=[@ANYBLOB="1476e5006b415d1fe90776cce6080b8718e8b27e9baef2d3a49fef8b347ab6eb20a16580e7bbba960b26fab6c6857800c6cd105d5f75f0357015e9d525bfad4c9b441b926ac903bf3fed29d10f6ae566839b1256324c7ec1853dce0d172ebc44209bba8fc922a051840f00000000000000ab535319730c718d664ff6a3cc5469ea0ea3507683fc169e849546f522bf2ebf6133023cd724f6c43207887dd49945492a79e090a196bdaea5db129e5bb6624024305ac3947d37d2d02e56871a407205ebe3cb634dbd588c72566e38de1b2aa3a3", @ANYRES16=r9, @ANYBLOB="000228bd7000fcdbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x810}, 0x80)
openat$comedi(0xffffffffffffff9c, 0x0, 0x401, 0x0)
mkdir(0x0, 0x0)
write$fb(0xffffffffffffffff, &(0x7f0000000440)="bba35ed6cde14b3a5436b204a0751393483fd2648f28ca068c2bcf136fc443c78faffd4b778db160b8c91a27e6b099dac754419b66b5f99ddab939a72270f4c2f7e2005340e3b7b3dd76ea936318970ecf91b3e39791782f671d34dc7093c818907364e4c8c492642d97bc8a05f920fb4171e292e66b638206fda6b7da2fb31da5064185f8561b97e2105f63b1f2fa0bad3568009c94d6426084219172d4ccaf5101df1a12c942f89cb29d3014bc94c58ed2d46f96cf4d76439e3a26dd8c3099caa2a441648b47fed159796a20b00e6c2073f7ba5511d3eabb45430f07e8", 0xde)

1.946528228s ago: executing program 2 (id=2725):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="01000000080000000100"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b70300000000ecff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000000c0)={0x2c, r3, 0x1, 0xffffffff, 0x0, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7ffb}]}, 0x2c}}, 0x20000000)

1.819383943s ago: executing program 4 (id=2726):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
setpriority(0x0, 0x0, 0xacf0165)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
ptrace$peekuser(0x3, 0x0, 0x99)

1.811040927s ago: executing program 2 (id=2727):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x70bd2c, 0x25dfdbff, {0xa, 0x18, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_ADDRESS={0x14, 0x1, @local}]}, 0x40}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000f40)=@ipv6_newaddr={0x40, 0x14, 0x101, 0x70bd26, 0x25dffbf8, {0xa, 0x38, 0x78, 0xff, r4}, [@IFA_ADDRESS={0x14, 0x1, @remote}, @IFA_LOCAL={0x14, 0x2, @loopback}]}, 0x40}, 0x1, 0x0, 0x0, 0x4c051}, 0x4)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
ioctl$SIOCSIFHWADDR(r6, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r10 = socket$netlink(0x10, 0x3, 0x0)
r11 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newqdisc={0x58, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r12, {}, {0xffff, 0x9}, {0x2, 0x1}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x2, 0x10001, 0x7a, 0xa640, 0xdbbd, 0x0, 0x38, 0x400, 0xcc8}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

1.707643614s ago: executing program 2 (id=2728):
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x2132, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000f)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_io_uring_setup(0x52c2, &(0x7f0000000300)={0x0, 0x79af, 0x4, 0x40, 0x2da}, &(0x7f00000000c0), 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000240)={[0x3, 0x10000, 0x0, 0x3, 0x9, 0x6, 0x30002, 0x739, 0x1, 0x73e, 0x7, 0x100000000, 0x935b, 0x6, 0x3ff, 0xf6], 0x1001, 0x80440})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x1000000000, 0x7, 0x41, 0x4, 0x0, 0x2004cb, 0x0, 0x8c9b, 0x68ff, 0x7, 0x0, 0x7, 0x4, 0x0, 0x1], 0x1000, 0x202})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f00000001c0)={0x0, @rand_addr=0x64010102, 0x4e20, 0x1, 'lc\x00', 0xa, 0x1ff, 0x1e}, 0x2c)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)={0x14, 0x3d, 0x301, 0x270bd24, 0x25dfdbfa, {0x1, 0x0, 0xf000}}, 0x14}}, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x800, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x8000)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x84}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=@base={0x17, 0x80, 0x3, 0xfd, 0x22, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4000}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=<r6=>r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000280)=ANY=[@ANYRESHEX=0x0, @ANYRESDEC=r6], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x50, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='mm_migrate_pages\x00', r7, 0x0, 0x5}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x4000000, 0x2)
syz_open_dev$sndctrl(&(0x7f0000000400), 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r8, 0x0, 0xd}, 0x18)
r9 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r9, 0xc08c5332, &(0x7f0000001380)={0x0, 0x183, 0x0, 'queue1\x00', 0x1})
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r10, 0x404c534a, &(0x7f0000000540)={0x0, 0x0, 0x9})

1.234918086s ago: executing program 4 (id=2729):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x45c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x445, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0xfff, 0x9, 0x3, 0x8, 0xf, 0x7ff, 0x3, 0x4, 0x6, 0x5d01, 0x9, 0x9, 0x1, 0x1ff, 0x10, 0x9, 0xfffffffa, 0xbd41, 0xfff, 0x1, 0x4, 0x6, 0x3, 0xb, 0x4, 0x5fe, 0x4, 0x9, 0x5, 0x7, 0x3, 0x4, 0xffffffff, 0x84, 0x400, 0x8000, 0x9, 0x2ff5, 0xffff, 0x7, 0x4, 0xd5, 0x4, 0x5, 0x8, 0x3ff, 0x4, 0x1, 0x8001, 0x8, 0xa85, 0x4, 0x7, 0x7, 0x1, 0x0, 0x8, 0xffff7fff, 0x1, 0xff, 0x7, 0x1, 0x4, 0x4, 0x0, 0xe6, 0x3, 0x1a, 0x1ff, 0xe, 0x57, 0x7, 0x6, 0x8000008, 0x400, 0x6, 0x8000, 0xfffffffe, 0x7, 0x0, 0x80000001, 0x400000, 0x6, 0x401, 0x3, 0x200, 0x1, 0x0, 0x1ff, 0x10001, 0x0, 0x3, 0x4, 0xc7, 0xb0, 0xae, 0x8, 0x1, 0x80000000, 0x4, 0x0, 0x6, 0x8, 0x245, 0xfc, 0x8b, 0x80000000, 0x0, 0x5, 0x80000000, 0x5, 0x80000000, 0xa976362a, 0x9, 0x9, 0x8, 0xff, 0x80000000, 0x9, 0x8, 0xc869, 0xffff8001, 0xf7, 0x6, 0x40, 0x8, 0x1, 0xf1, 0x6, 0x7, 0x200, 0x2, 0x200, 0x8, 0x5, 0x8, 0x5, 0x7, 0x1, 0x9, 0x918, 0xc035, 0xe, 0x2, 0x3, 0x4, 0x5, 0x5, 0x7a5e, 0x9d, 0xfffffffb, 0x1, 0x0, 0x5, 0x5, 0x1, 0x9, 0x8, 0x4, 0x6, 0xc93, 0x13e, 0xbf, 0x4, 0xfffffffe, 0x7, 0xcd3, 0x6, 0x4, 0xe, 0xffffa776, 0x401, 0x4, 0x8000, 0x3, 0xdbf, 0x10001, 0x0, 0x4, 0x5683e473, 0x13, 0x81, 0xa187, 0x4, 0x1ff, 0x66c, 0x7ff, 0x3610, 0xfffffffd, 0x5, 0x0, 0x9, 0x5, 0xfffff801, 0x0, 0x81, 0xfffffffb, 0x401, 0x6, 0x6, 0xe, 0x101, 0x4, 0x9, 0x4, 0x97c, 0xdb, 0x1, 0x7, 0x7, 0x8, 0x4fbf, 0x160, 0x2, 0x1, 0x5, 0x3, 0x3, 0x1ff, 0x7, 0x8, 0x1, 0x4, 0xa, 0x4, 0x6, 0x400, 0x0, 0x9, 0x2d29, 0x1, 0xffffffff, 0x8001, 0x5, 0x7, 0x109, 0xa, 0xec, 0x5, 0x9, 0xffff8acb, 0x4, 0x9, 0x4, 0x2, 0xffffff35, 0x9, 0x9, 0x5, 0x9, 0x7fff, 0x1, 0x6b, 0x81, 0x1, 0x5]}, @TCA_TBF_PARMS={0x28, 0x1, {{}, {0x0, 0x1, 0x0, 0x2}, 0x0, 0x8001, 0x7f5}}]}}]}, 0x45c}, 0x1, 0x0, 0x0, 0x24000040}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x15)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'authencesn(sha224-neon,xts(serpent))\x00'}, 0x58)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="04010000100053"], 0x104}, 0x1, 0x0, 0x0, 0x20040890}, 0x200080c0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000200)=@updpolicy={0x278, 0x19, 0x1, 0x0, 0x0, {{@in6=@dev={0xfe, 0x7}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x200}}, [@tmpl={0x1c4, 0x5, [{{@in6=@remote}, 0x0, @in=@broadcast}, {{@in6=@mcast2, 0x4d6}, 0x0, @in=@dev}, {{@in=@multicast2}, 0x0, @in6=@loopback}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}}, 0x0, @in6=@dev}, {{@in=@remote}, 0x0, @in6=@loopback}, {{}, 0x0, @in6=@private1={0xfc, 0x1, '\x00', 0x1}}, {{@in6=@dev={0xfe, 0x80, '\x00', 0x1b}}, 0x0, @in=@rand_addr=0x64010102}]}]}, 0x278}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=@delneigh={0x5c, 0x1d, 0x2, 0x70bd2d, 0x25dfdbfe, {0x1c, 0x0, 0x0, r2, 0x4, 0x46, 0x4}, [@NDA_DST_IPV4={0x8, 0x1, @empty}, @NDA_PORT={0x6, 0x6, 0x4e24}, @NDA_FLAGS_EXT={0x8}, @NDA_LINK_NETNSID={0x8, 0xa, 0xfff}, @NDA_NH_ID={0x8, 0xd, 0x6}, @NDA_MASTER={0x8, 0x9, 0x1000}, @NDA_PROBES={0x8, 0x4, 0x7}, @NDA_PROBES={0x8, 0x4, 0x7}]}, 0x5c}}, 0x0)

929.130717ms ago: executing program 1 (id=2730):
timer_create(0x0, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xffffffed, 0x200006}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000091}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x7fffe, {0x0, 0x0, 0x0, r7, {}, {0xb, 0xb}, {0xe, 0xb}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x80, 0x808, 0x5, 0x1, 0xc}, 0xb, 0x0, 0x5, 0x5, 0x9, 0x2, 0x9, 0xd, 0x2, 0x1, {0xffff1c72, 0x10000003, 0x1000, 0x101, 0xfffffffe, 0x5}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4008810}, 0x8000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="430000004ec6"})

928.686249ms ago: executing program 4 (id=2731):
socket(0x2b, 0x80801, 0x1)
socket$phonet_pipe(0x23, 0x5, 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/5, 0x1c000, 0x800, 0x8, 0x2}, 0x1c)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000940)=0x129188, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000002500), 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r5, 0x6804, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{0x1, <r6=>0xffffffffffffffff}, &(0x7f0000000100), &(0x7f0000000140)=r4}, 0x1c)
r7 = syz_open_procfs(0x0, &(0x7f0000000280)='attr/fscreate\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x25, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000001000000000000000400000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000182a0000", @ANYRES32=r5, @ANYBLOB, @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000", @ANYRES32=r7, @ANYBLOB], &(0x7f0000000340)='GPL\x00', 0x3, 0x88, &(0x7f0000000400)=""/136, 0x40f00, 0x7, '\x00', r3, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x8, 0x1}, 0x8, 0x10, &(0x7f00000007c0)={0x3, 0x1, 0x3, 0x8}, 0x10, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000800)=[{0x4, 0x1, 0x5, 0x3}, {0x5, 0x4, 0x8, 0x1}], 0x10, 0x8}, 0x94)
bind$xdp(r1, &(0x7f00000001c0)={0x2c, 0x0, r3}, 0x10)
r8 = signalfd4(r6, &(0x7f00000009c0)={[0x9, 0x2]}, 0x8, 0x80800)
mknodat$loop(r8, &(0x7f0000000980)='\x00', 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'team0\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
pselect6(0x40, &(0x7f00000000c0)={0x3, 0x4, 0xa799, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x5, 0x0, 0xf, 0x80000005}, 0x0, 0x0)

749.204615ms ago: executing program 1 (id=2732):
ioctl$VIDIOC_S_DV_TIMINGS(0xffffffffffffffff, 0xc0845657, &(0x7f0000000740)={0x0, @bt={0x2d0, 0x18f, 0x1, 0x2, 0x2000dd9f83, 0x1, 0x10009, 0x1, 0x3, 0x5, 0x722, 0x13, 0x7, 0x7d, 0x1048a4b19fe9db8a, 0xb763599953cb0936, {0x0, 0x6fd8e84b}, 0x7, 0xed}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x13f, 0xf886267d8fac22c5}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000000c0)={0xe, 0x18, 0xfa00, @id_tos={0x0, r1, 0x0, 0x3}}, 0x20)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
sendmsg$nl_netfilter(r3, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={&(0x7f0000000980)={0x10a0, 0xb, 0xb, 0x801, 0x70bd27, 0x25dfdbfe, {0x5, 0x0, 0x4}, [@nested={0x1004, 0x53, 0x0, 0x1, [@generic="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"]}, @generic="680408a2880c06a007680769cb28d2e06024cdc08ee88e44f695a3e0a9c1d0ecb4c20d19d4625e2fa3338944303610222d025b9d5f016e98f662c0e7dad419fb18f49cfd3b0c3554ae5f99a9cede984fd03ff4847a4d95bb97eaf8d4b257fe557fc95c996edceae1de2e854a", @typed={0x10, 0x27, 0x0, 0x0, @str='/dev/userio\x00'}, @typed={0xc, 0xf3, 0x0, 0x0, @u64=0x8}]}, 0x10a0}}, 0x0)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x38ff, &(0x7f0000000480)={0x0, 0x200003, 0x10100}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r2})
io_setup(0x2, &(0x7f0000000000)=<r7=>0x0)
r8 = eventfd(0x0)
io_submit(r7, 0x2, &(0x7f00000002c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x8, r8, 0x0, 0x0, 0x79f, 0x0, 0x1, r8}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x7, 0xfffe, r8, 0x0, 0x0, 0x7, 0x0, 0x3, r8}])
io_uring_enter(r4, 0x2def, 0x4000, 0x0, 0x0, 0x0)
r9 = openat$userio(0xffffffffffffff9c, &(0x7f0000000240), 0x440803, 0x0)
preadv(r9, &(0x7f0000000280)=[{&(0x7f0000000880)=""/220, 0xdc}], 0x1, 0xbffffffe, 0x10a2)
bind$rds(r3, &(0x7f0000000200)={0x2, 0x4e21, @local}, 0x10)

679.116669ms ago: executing program 2 (id=2733):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='mode=00000000000000060000007,\x00'])
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000380)={'pimreg\x00', 0x1000})
write$tun(r1, &(0x7f0000000040)={@void, @val={0x3, 0x4, 0x8, 0x5, 0x19, 0xc}, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @broadcast, @val={@void, {0x8100, 0x6, 0x0, 0x1}}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @loopback, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}, @multicast1}}}}}, 0x38)
syz_open_dev$video(&(0x7f00000009c0), 0x7, 0x0)
syz_usb_connect(0x3, 0x24, &(0x7f0000002040)=ANY=[@ANYBLOB="12010000fe76181004160780a6af011703010902120001000000000904"], 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000100), 0xfffffffffffffffd, 0x183003)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r2, 0x80dc5521, &(0x7f00000011c0)=""/230)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo\x00')
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r6 = accept4$alg(r5, 0x0, 0x0, 0x0)
sendmmsg$alg(r6, &(0x7f0000007e40)=[{0x0, 0x0, &(0x7f0000002540)=[{&(0x7f00000002c0)="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", 0x1000}, {&(0x7f00000000c0)="4789d3aefc1a4d0334", 0x9}, {0x0}], 0x3, 0x0, 0x0, 0x20000000}], 0x1, 0x4000080)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112})
ioctl$TUNSETPERSIST(r4, 0x400454cb, 0x201)
r7 = syz_open_procfs(0x0, &(0x7f0000001300)='stat\x00')
io_setup(0x400, &(0x7f0000001380))
ioctl$BLKRAGET(r7, 0x1263, &(0x7f00000000c0))
ioctl$BLKSSZGET(r3, 0x1268, &(0x7f0000001100))
fchdir(r3)
read$msr(r3, &(0x7f0000002080)=""/4096, 0x1000)
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1bd)

309.009023ms ago: executing program 0 (id=2734):
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x2, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b0000001f0000000200000022bf000001000000", @ANYRES32, @ANYBLOB="08000000dd0000000000000000c8d05300000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
openat$zero(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100))
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

158.824045ms ago: executing program 0 (id=2735):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = epoll_create1(0x80000)
r4 = fcntl$dupfd(r2, 0x406, r3)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000000))
r5 = getpid()
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(r5, r6, 0x7, r4, &(0x7f0000000100)={r3, r4})
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r10 = socket$netlink(0x10, 0x3, 0x0)
r11 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r12, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xa406}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r13 = socket$netlink(0x10, 0x3, 0x0)
r14 = socket$unix(0x1, 0x1, 0x0)
quotactl_fd$Q_SYNC(r10, 0xffffffff80000100, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r15=>0x0})
sendmsg$nl_route_sched(r13, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r15, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

0s ago: executing program 0 (id=2736):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8, 0x2, 0xa406}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) (fail_nth: 4)

kernel console output (not intermixed with test programs):

[  569.348453][T13228] Bluetooth: hci1: command tx timeout
.

ýfile0ßÞƒùm
˜#„èÖ‰!œ¹f›ÛªyŸ‚êÉ&jAcaŽÔùAC¤àò|Düï9  ³€^Ô瀘ØhœÇyØfHÒ8fC2”�‡†l�%�ü
˜S«Ùí`¹Ÿ¦®-½$«m¼ëÛRF�ZÎ|Å£²†HüÚ7M[ >Q×,EäÝãéîšGÿäXº÷»IQ5¨J¡ð¨?¢«íV9��Úÿg–4a”Sõ3ò%ƒ¦à¤Ü	éÞFhM^
6â)Q7Ï:LÐ]>]<Až8¨¥Pà‚©ÅýÌ&»^ŽEžt{ï¼\k`¬èô··Œõ~[9„ðÍÝÆÅàTÓô¡–ûmªbœð°$_•º•�†ÜVøÍ:Äs}Ã¥ÿq—3&5
ôFŽ~ÍHÖ‰¸,Ò*åñ…ƒ¡´ÏÞ�ÓG©�ÜÞ@ÑÄ�›P™ûÌðžx"¾K,ãj+ÃÉîyJ¿þr¥PlO?h·GaÿÖb	"J;ñe]­µÈ¥�;ûFƒšÆ‚_]‰‘Rë:XÀ݂ДùMÒÈVfö„¨ô7»ÐækŸM6a¶zM!,O¼(xHËx95ÕÖ±M™¢ãߎŠ-]é›Îüªµ»\Ç=Ýf³yÁdŽ(¡€Ó®ÌT#W]K§ÛóÇÚ{‡ÝEKnüÓl‘ª¦1[؇#Ò!u/+ÀǬl\zÖtzô
¶Óž«{’´FƒÅ†8jÐ
Ï`û�›¬Unµº·1{]‰öM±Ù
�úmeÙ8bèQ¯¼0ýpþ_ã"F Er1…,¨NxÚOêyº5C3l‹Ç}0Š�%jìEÒŒf‘ÓùªÂ�í6Jeî䛩YœîèE4»aÐ-¦s/'×)b÷KYóR+øDÅ)†ÕY4䋆�·õ·S#‘DŒ®ï1](2
FؽxTNKù”áJQœ&Tÿ ´+ÛiÂb‰~(ì¥(ð™˜@°Ø%e—Ò|ü ×_@лÊuŸu”ÆJ¡áj„í/­Ü0:a"WqO‚:ü^¢AÔ‚ÓXWYb:øÉ|¦¨J 3³×1N ï{©²ˆ³b¢”É,‹—6‚œöZàJÊ–]q"’'E•êbÉ‘Ž‚yÉŸ](0ÆÅ‚ýtR3
„¹B�^ÁÕÍuÝÌmã2oÜpè‘K;
<0ÿÌúó0�–q°k
“¬ RÆó˜¦b�Ôj¬ûP¾ÇÔm
ãçDó¼Ã'Ã]Ä<økt=·�ò哱™##^ÖF)›q�á„§H“]ÿ”Pû³s³{ù¯\†Ì�ž"šƒ.Nò^Éq+>�bHYv€¢Ñr8`)âò¤€—ü ¡5í¬õݺŦ.‹±=ÑW&W¨!¨s’—÷.)#�Ýß>0Ëé¯1Aò'^ä®…ØnȈþšgQòR~•¸¾°UâvC•�¯î“ÍDñé/på÷%E:¶b‘�û±&•	ûÕéZìq�`ÖC†J½jÑÌM×ù37š`x¨l!XÛ€vç¶`6oÊ{FÐ�,Žg¦IKûL,gPçe“‰[^++Ç€“„<J€x&¼'P©kNÕ¸+I+²!UÉ dÑv<7&å.súÃôQyS®ìû±˜àÚzûêžê òVêíËša÷Ðê\Ô–�EË
HòȈÕÂ!|ðöšuw˜ƒµsR»ˆƒÌXH‘•ny%7OOÄ3z¡››öíÙ9Ò‰ûJkz¦Æm¢tâIÊOw�<‘šŽL8¯jÞ̇ÕHÖ`#ÿÿ$oN%V²þ�¬ëâuñÞo&[m…¥5"9kðâò±SĘä‹6Ño‹›ÕoE×õ¹9}9zm­hèh$Óá�â|�Âþ¹\ƺ†­GñáY½C‰ã«(t½'î¼VM«™s±?>‚ªb§à¡Q×=䌸ã+æ?ý0?Zn¦ð—ív?¿6Ä0‚EFÞy’#H5Lâ…¯	—¿<fæï”.$¸ñÌÝT/	Ïæ\ 	L_Òk¼8´^Ò˳�î)±
Kzi`	ᵸlDÀ¥a¢WÁTþ®±C>¢uínK"…þqîYBfQdú®Öiq kàþxc®½K¾•]ꢔ۠y1–8_MQAÉÖÄ°ú"²âÏ·R¬£UçZWlËŒË[dtŠ©�í»�¨±®¼g¾vçá—b-˜€BŸl¥\[;æºÎ‘‘åÅ�¿qõ”ËýM°éö’?Xÿ”d¦r
]O	Æ"ÃÎ?]:�ô±nž¯6ÃSq\ÓR`V¿ÐU]QÎ\@»Û|•Î®­­¸�)tÞP°†3H8dõêh.g‚† jo9jòš|³:5yâX5–6óÀÔÏ6�…•š
ÞÚ”ÓX$oºƒùgX?q=wƒ2<péL›ã1ø`Û9]½æúÎ[ý¶üï©Æ°icÚ¨@£õT¤XÀÅµàŸ‘õOc#E‰ÞÊô[¿ºïËÿJææ\¢jSađ¨U¡×F3‘ɶkélòL<2好ÈWöX&ƒÆ®7u¶*Ÿÿ�¥€ÊŠ*<mç�õr{¡ %çær:#¨|¦åL{8ÿdˆ#]!çîRX•=Ëùâ©bðÊOþ‡Y$,…ºä"+;rÄøi47›¢êÑÜÞ�bA¹”Ù\ˆ5Zõ©£
Îœ“:iBóA­"Ø%„j�ÔLâê©1&áZ×˺–"ï#×ëº4ÎÅï	±Îr�J—ã;ÒŸ=žÈ
OEÑÒ”†¬ÏÁ€ØIçbog‚u×Ǭ°,ÀæãK·fºkuíü©5.	ö“�ÀEÏÈBÿšÞŒ¦“À­Çz”nnW:ü[P–A9]ÚÜ-Y H4�Ô/Ïãɵ®E?P†»A»¤È£åãUK?’0%ÝrÎËô1—‹4¨T|q×19’Px�<aÓ°ÙF”Éý—ÌߢpûlGìˆa¡ÈÙ	î¬çaµ k¤n%x_ø†ww«²7ÆÉ€hy‘ñí
WÕ„’&q,ì4Áü	b9UÛMP�¶è@œóÃÇ�iôûÀ²%
mÍEiiÍ2åB•3¿o‹Ú„À_ @Þ‹S¿¸gnìKvÃßoF±ä72]ÚW~uö@wjéÒñ¯BºF-¬s Å™¿ï
¬Ö ÔÑykË�XQ�ošÙ£ g©MG%¹ˆDìÒæòŠIªD�¸yrü™Z—7™Tn¤1Cê,÷y©Ëèè‘)Û6I!d«%˜ì§æšicغ¨g)Û†ä ý–Ö�±Ü+3›W§@Jå·uêöØ]É4æ¿+KÕŽà´ßW¬ ÿ�´Z˜+W–Cˆ$Q¢çVÜvÛõ3è>H¿µÏ*x¨“xBauÁbÿªrx¤;™21�Á¸ËúƱ­#[‘ùËv#±U~÷¸v£Ãv'ª1êþÑAÌT‘Äö!¦kmƒzMxqœFQ “Ïeüéú¾[ÖÔ™ìëcSŽÎ<ñ�SU
#›ùxÀŒ‡Ÿ™THZN>[í¸K@|í…ÄßÄ×Zñ�Y’ŸÉ'Ä©�ÊäüÉþ¹ìU^ÐB0…S”ÕÌüŽÒdØø;åÞ»p)5Gð~MÄ(ñà
yŽlîâU‹oøÁuŸ�&žâ&3+™¬�ÑÉ ˆáùÎ1˜Àõ›ûuÄ䦗fíC¢œƒU-ãÎmΖúQ¶â0q¤éD"Ñ^._gÚ|¦Êæ¾×t>¿úËŠ�6y#!�¥èr÷bÃÇ6hðԘö¢k®iŒ÷�$ÂÛìÓ™¡�æ¸ÐhN’Ÿ.€ƒv^²Æw“¡­»‰ÓkX¿±—ÍÅóÈ”¬�ˆn�;	6ú½#<	Þ�«€™÷*tÙº\^M9yùä[qU‡·É7Çf�ÅÅüæ!¥:ŸÐ;
NæØÑ«¾.Õa‚
wñ*ÊÐuU@«mÑ`K|0¨e)•«€¸^‘�Þ”8¤c~°)$íKt^x,ÿ˜Q°;çœ*�5¿'e„×\Ý–¹É~sëq:·ÃÁœ,«D—)�Ë0RµÔP=çó1‹æøHT{OM¸,®á�€x¾(P6ªM‘ò�Áó–4>s¥þ‹µÌð£~Ñ÷zÍ¡¤¤�Ìü«�]yð÷ˆ¶Õéø"Š‹ÍÀinkõíÿ¼×éPœ‡ûá÷&¹;øÆØÓt(v>%`Älž‰Os…�ÂZ¼O6‘ëÍ
qàÔ‘]—¢8šíë²ëG\{E_Š¨Q“µÀô;CLÞ
aM&FÍn67óI¤4§WÁÅÖ˜E-™&xÜ¥å’ìÓÊü­„äé�KJÜR[�½hCBˆƒ:n¤ 8È¿µAÿr€'J4ÔÏ�Ÿ-ºágÊ®„qÄ•à´Q”­‘ÄQo!˱&ý]sL×r]õ³ûé)Uô©»;›�:îÿyÖí]¹-ïÐ`¢ÃìŒBÁxo–Å
rI°?Ç’vCf‰J52™Ð¾ùýj$l6£Wƹ…܃£z�›‹šÖCÞ©H`Ëçc»sÌ„"¶�M3"BÈ•@uûq¦g–86«Í´a˜U²jñ`df³SE£¿zâ�Ö®"Iñç¨FBxºáH`"¼ÇÃs�ÈÙ ï°áÏ ÚŽ÷¥àrùšGìÇ^ND(€7Q“ÛI»‚º4�†ÊG>Õ¶>@HÛMÄUçK?Ý.x˜Ê?L:Ô5ÍæêdPU:}Ï"�BW
¯ÅXYõyTçÕŒt†±à*Ál·™·v2Æk·ŽnRáÁsd$úMC?´È�Ò?*Õúã®$3�ˆ�›IjÙ{Ùöâ
…—ÑE*rÜô=»Ú�e…Àm!ûÿåþ{U÷›Ÿ4 +Ð\¦<|ë»�ÒO±‘°Lf]EMÒ‹…Ø!Î~a1‰–x^¨Ú¼H™±&q}ZXí6;�K9Ð/ŒÅãPûð£H­ìÑùâÊt›Øo^´Ž›FðPÞÖB”yF÷øŠš
Fƒ­„ÖN9S¼M�Ì3K—e5)Öh*‡¥úÈ
mFÖç/Â.X¾{�†³7.òb!«ÄHqq²W¬ÿå]Ç…^ž‡­—zg’²1Zž´FŒhd›`ÀÚ·
jÁ­cÍ€¶ì¨üˆ±ä&:ÌI’UÁkHz
øX_œ‰-ÈLAFå¥g|J,²KÞ^‰…J±äÈt’çk~oK½qØK«…Ép(Iç÷(wk”¨ûŒ| aïo 2¢�”›þG?â';‹[:Õ@ñ‡Ic}̼¦ö/
zfq|YlÞôòVh^Þ–{>æ‹Œ•Y®±×VL;�€k,èX8“§™·�~�¾­®0ÿÀ²¶8,ÅQ¤Ee �³QkãyïVj°g?تîìÜñŒ`é¤w¹á7WIŠDÿ“QÑòz¿Ÿ×hù$PFGÑ$wʆ¾bArÃ"mfë+$ŽË>]ܨ›(|WQì@üø�€,ô6Š†ó à4÷¦}KÅI^‡ìßà/xÉ¥š;ù»cd>Àdç´GnÄãh[ú;þžùìÁ-͉š¾<´hh
ÀÀ©Iª&¾Õ}õo+ÅNñš÷ü¼{iuô*Jg¬ù€µh¬²4/B$Ÿ|ãR|+	`dìÒPˆz”-&ö7áÄ–YÒF*hh°C‡£³™ã–¹þtÞ5a%úGТ'7¿6§›oÿ­éC�ÖÏÿK¾Óïï¶Iã/“]b0|º6šÈÂoãÔ…|æÒ@ìåäÑIðXqU¨5Ìï®/ñÛáR¨$™¡™møµF.áp²„2v»åÃôƒ‡dM•ð‡Å˜ãÔo¾'ö?§„½¢9Q!B@E¢ÅÛƼ6bÊs
†Ñ<øöþ'C"L§µ5Êö´p}®œúÓ×)
»º¶ d®n�š	Ÿuûä|žeMŽ;�ÀóÛÿè)æÅoz$VQ6�*…Y«VZ™‘Ʊث̔Ƴ;º1OnP`æWäd–šUÖÅü ÿ]žO@í¼,’~±í•ï%ôå¬Ë¤™“"º9I“ÝXuC:"ƒ\ýBýwýF€·þv}z¥Ã:ÍàJe½:f?ÍäÈŸ*ô˜ñ;ù«º¡Á&^Üi”«ÜÉ"pÀXÍ*�ëï¿ìžK©®\Þ!›“,à4¶Í_¾œû¬O~$ï—fOs
|Ã`<�ÍxÛ%ü4Ybž¯ ßÛ,~P*¦”8„z�%M[ïÄQÍ£`oÈ®bà®é(ùí!רӉžD^àdV=2÷¶»ZÑ—<õ(Ù³)ìg�\mß'Ò¦ÿ§2‹¹“@|Þ=aYýIþF’T¸L)Úê�ùÖ›ï
ŸQ¹¼á“ãxƒ[‚ê_`ÜÝtR·¨ ®|ÖÜ)׬jldq–3‹v‘F²£…Ò‚¿ªæfﯫ-‰¤V{”`Ì"×RøéªÊª·ÈHyõ5–bÕ]öWBtQÇEtÎ×3€|»TWA’9L=ê½ATÐåh�WÃ6ÚÉQùj5ŽœFj\Qó¦2á„õ^ÞôÜÉr–;ë•ß	Þß„‚`ËÁëýÇ@‚êºm,Q’ŒÓ|LŸ2»	”¥iGÏÙd0VÛ]¾¦
$�L“+ÈæE²ì.¹¼Nž/AV)24Ð^pË&¸£p° lukÚmïÁ^³†dSZOûqAhÞüm‚ô�[¨v…7êÕw<S½wœ¨™¢Ý1É…iÿQÂû¸7\;=ɸ(¿ÕP2Šß5�qèjIûŸ^ùàl…\¿ÇѦ,¢êe^Ù¦Ü{¸±†Vè’?Ç¡p*³iGד„Ö�Ã#éŒô	÷v¼+!š|Ížuj�Z£Qæê®�wŠ?–Í\fä×z5y…Un37Ø¥Ã�à×o@�¯éùšØ —k3BõT³t´º©§ò!$Ò¸'IDn0ÙyZËœ<:0Zm':Å(èéÉ\7§Žv_Ý¥Y‚–¼…¡OÀ•§‹FTîmü2˜tšcš¹ÈáU¯:wø¤	ÎE2¤’ïU
wMw×2³´Ê[ĤHŒå•|â°2®XRst��±žÜóæËš“ì$äk<G/›¯<¤l¸¹©ñŠÎ¾}ƒ½DsuO&€m¢ù[ž¤‹4$`¯rš±^Ÿ>Úgþìd_˜]K”‰ÏlîÁ±Ð¿FÇKå<~¡r–ùŵˮsd‘!<“µž½ìüÖF׸ln;^(�+¥†|“n{Ñ°å!‘ë†0ÿ‚̯²zY)Qdu¿tïñåâ«ß<“¼]É�Kè;%bGy5âú0Û~»nÀñ˜øÅëqÇ0³U¡Ý¦H«•¶<Rž
–ÎÈó†€"`‰’mƒ	yly™Mc¶{ûbökJP/0í¾Aè–è‹ÄZ
Ro½_.gs"ñìW@×V<Ò>èSÀ¸I˜ã�ß…VâŠS%s•n|ùÊ$\)Z=^:™êraÑ(“´5ÔÈòõÌàj0‘â¤)‰uÅ=u)·úô-+¬�¸Õ6iÏYÇ	Â^ž@µþ®ÔÃ}Þ‹„Ä–q#&ûjªèvk@·$€ó—ïaÑÑ)gmòGŽw�‰žÓBnÃ>ImÝ.Âq(øúî’‚ŽÚrÖ®è3
yˆêȶNÄز	�†LÅ,KæÐ0K‡Ù{ÿÝœf§@µ"0‰Ùóô«íÅ<v�«’ ¹€æÁ�_ º‰”̈†×½î!4BôVןδ�¿`
flŠÞ$Ñæ2‚QÏ{W¦(\e
˜Pó’±Âšì\�ĉ£��`ÕÞ7}L¸îV%·À,]PÒ¯3—o.*A o’)îõ‡ŽÙŸkç鈒Mºë„Uö'^†˜Ù?µ6âÈ9²ªi¼ìíÛùÅ?ŠÝºSÕ ÷¤ršB¬n·Wñ´­J
GTasæ/v!ë©áhÌëHà£
·¡¿qÕgBÕð4ò×%çêh Û±únïäî	8sÞ6m4ô$ '¢\[—œšÄ}Ñܶí‚Ä®à�Ì#Ï2š†Dø›\ðVƒ“K7WN›9³	òváZ @•Ÿß8Ê?Z±~EfhÐ`Dã¡?:
ohWžPÕ°O�{ÏÍ烖Ï0ð±ß÷m׫ZD²ëª÷;”\WP)®-Î rI‘æU
UÞÖ¤&r`Ÿ$9Ū´ˆ+/ú÷Úx{qÐ]QkÖŒo�y¶u9XEòNèSøwç,¶Æp/{‡uÊú»¼ô
Ÿ{Ìð!1ßÆjz÷ž’¢ÑËá².	çãì¹ÓÂEÂ*W¿à›×5ö6ÚÂHŠà­Çˆ^Üe]ªõ5áޖ̾xiÕ1Ø¿=µûÑ|w#2£øÏ.à .¹š6 ø×!˜ˆ¬»W	Úó²Žbèü.Â7½ñ…’§¯äØ9Ë^Ì1¿Oy~oW	&\ÂèÄY·ÚQj½lŒ[À¾-/PZe7bfV:ǵžó´âW
l°½”ÔjØa1|t<áÞ¿¢)Z˜ÍÞÔAM‡¡XFu»ßs¢,¬J�Emž`Ëý�;ÑÚÄ�ÛIú]ˆ
ÐûD´¯ì«Naú8¦gˆ
Ø9S¾{YÉß×ù7x:è óÇËï§Ò)£|õ#Rž›Òâ@b›d¯-@Gsé‘ zr,2!Î#ºí|¾@¤@Åh±"Ϻ�’þG�…­ËÞ¬·ml¿$‘êúéƒ'²xâg‚Ðnù°2Ž$lØÆ;“2)‰¼Ÿ˜žÿÆuÇš‡
À$uloZ~2º½ib]aHzç9”�·ÐúÞ}p­›W0
-Þw«¯ôö:…5‰ÔNú–ŽÓeaðD­Â'ük/�Lêщ üÊ›.l½åI†Rà³¼�‹y!GDq�ë\ÇPÜpõ©± ®,d ¶¡¨«r+N9àÈiËÜ`ÉF_]VMº/[;ÃàZE‡Dt0Åêà-Øð¦]}ØÙÙ¸qwÒ#šWxq”#û*ì|¨n°|9Þe£K˜�e7ztsé_ו“éi3¿:€$üQ�›ª® xoKFü£UÿÌö\Ì­–0š\Ï VÝT,’˜PÌ‘ÍeYb6ãUz³û7ƒ(÷zÙÚ$D}?¢8.Òèì•) sCLd°·ÃZ ä«QÍÉÀòf«%¶˜C8 º‘`(;cl]~Š?–œáÉ›T»§ÿ6yûîË·IðvH
†|ÄîL¬®£œ€öBS5™Hm/ûw¸Éš�%úåŽÊvO}VFž¹Tp6»ê�\=5´ÁûÃÓš7,+zÑ„–\­8È’�ˆÐ	I”œL“Ó
ÇöfRGÀ‹Ø�ÿ:¯ç€¬fþ¿¬ÈÆ£Ì8}	ÚmçHz€âÈÕmùM~½>žAl_~¶ÚAÆõ)—µ­Gº˜Ra?ßëJ((²HöRﶫ̫.±a¸x¹ÛÀª‘¶özݨ<wH×µ$ÿæ8HŸC-Y.aq½œË,Õ/—qCõ¿*°¸#ÔI®Uð$@—#44LÚ
ƒ{“¯¤ôj/Þþ'é'dÏ•–xFÞ.;¨>bîC±ÀZîg^%65­ßªhçÅ>Ö…A?[©Qñ ЦFät‡,�娇FLøF
èÿÿ$ËQÝ-Ê(Õ—«.¦	IøÛ¾gòcç"ýµÎN2Šõÿáö;�¦Ô½T�–D™²R.£#14‰>­f–b¦j±:ßÏr^ÑC9Ä`Àà@#†´|ÙùýøKÈ^tÓ®|ÅDäÖVp¥T¥7q,né÷Q‘c*LM oÄ#±Õ¸(× 5²—Adõ*¡kîpîP’Pu/OÝkŸ�C߃ h*o€ÿg«zL[;{c€°Çðʦ{ºq1U£·U¯,q†8”8a]ø{%Js?É%¶&‚‡3Àñb]ú Œø=ðC	K{Z	‹;6øµ°ñ
{ø®5y“,
_ ‰…º³Øùu(;ˆ8®\·	¾rµ�÷B^ŸÛôàîQ³Ú
þD–<–ºî^Å�šØ�`óíÙt•*ø³¾Î,/”E“ôÞ}åà]í	k�OÖ]ü.€ox"„³ÛVO±/N^�^«1e‘ðé7LÎŽxrc¼8'¯þg“Á0¸b;»*†ý‡ðpê!q‚�îzìK³»q¯KõrìÑ9ľŒ�ôì�û	¥Ï†¢]9ú©ðd©—Âó4äA	ü;Mg­¨Øz8Àøk¿e=Ý®µ·[0‹Ï×’…‹ïŠ²>4!“œY!)dÉí]Õn!]µŒïSÓ–k¸ÎNÕb‡þË:…ºC^A²¡KœŸ,Iú{¨žÄ~ïé’Ö>✌
Î&dþèí­Ô66¥LHQ›OÏU°Ù6¹$A¥ø\øÅäÐõ�_�70™4½xû¬ð ;E(ÛO|	Þ}
«¯Ê76¸%œ�Œ£8ÊgTàtwÂyMfJ¬ÁéÅ'd£æßsÙuc†0·LÎlI±ºÁdTéhRÄùØ펆ÒñÈÜ3¼ÍJ¾�µèV„ÝÌXçDAÍå�ùð˜|ûuµ¿îÕ;ÿhh˜kVmw
ô�ßÊËÓ%ÈÙ0¼ï&q;ö…ÕÉ‘â¦Ì3̼'÷Ýû¡�™„—Âë7ŒÈòÌ¡´ñAÅàûoRá‚Bå¼öÝ ã:F�jOÕç-©Ð¼Î/ž�ÇÑǶË6(~Êh-ûÿÿsß[  569.698412][ T6005] usb 6-1: Using ep0 maxpacket: 16
[  569.705857][ T6005] usb 6-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  569.710500][ T6005] usb 6-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  569.714095][ T6005] usb 6-1: Product: syz
[  569.723759][ T6005] usb 6-1: Manufacturer: syz
[  569.725954][ T6005] usb 6-1: SerialNumber: syz
[  569.736747][ T6005] usb 6-1: config 0 descriptor??
[  570.689432][ T6056] lo speed is unknown, defaulting to 1000
[  570.691842][ T6056] syz0: Port: 1 Link DOWN
[  570.725928][ T6421] usb 6-1: USB disconnect, device number 44
[  570.726226][T14573] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  570.743954][T14573] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  570.755149][T14573] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  570.766795][T14573] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  570.856133][T14573] 8021q: adding VLAN 0 to HW filter on device bond0
[  570.871078][T14573] 8021q: adding VLAN 0 to HW filter on device team0
[  570.879566][ T3814] bridge0: port 1(bridge_slave_0) entered blocking state
[  570.882453][ T3814] bridge0: port 1(bridge_slave_0) entered forwarding state
[  570.889424][ T3814] bridge0: port 2(bridge_slave_1) entered blocking state
[  570.891783][ T3814] bridge0: port 2(bridge_slave_1) entered forwarding state

ú–‹9±ý8¾7zÉÖÏþ¯¾à
�죪ð>n�=!Ü'øOø™
!,¹×}äœÀŽ eÿfr)fþ_,ž´éÜ<!¦0/d�ü<^óÙGõ½¦0Jþ/…ãêY@ýo2òntVë)¢<Oú¸R2é‡m´
uZN[†ýô2Øé’üÎïÐxF§�À¥Y«£EÊbáÕOº‹*KØ47ô£(©žÊ«â€³{dP0yZtþ@RÐ	žÅKÂ^!«An¬.¾TèþP�ž(‚ô…êr𕔸 Öãk7ï]­
ÈÁ;I?oö)Ï}xðð§ŠB|¦XAñ säé§rZ5dü¶		…e
ÿÿÿÿ[  571.087036][T14573] 8021q: adding VLAN 0 to HW filter on device batadv0
[  571.114958][T14573] veth0_vlan: entered promiscuous mode
[  571.121128][T14573] veth1_vlan: entered promiscuous mode
./file0/file0[  571.138542][T14573] veth0_macvtap: entered promiscuous mode
[  571.142639][T14573] veth1_macvtap: entered promiscuous mode
[  571.163563][T14573] batman_adv: batadv0: Interface activated: batadv_slave_0
[  571.174763][T14573] batman_adv: batadv0: Interface activated: batadv_slave_1
[  571.183926][ T1148] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  571.186975][ T1148] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  571.191279][ T1148] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  571.194305][ T1148] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
./file0fuse[  571.418531][ T5948] Bluetooth: hci1: command tx timeout
.


file0ßÞƒùm
˜#„èÖ‰!œ¹f›ÛªyŸ‚êÉ&jAcaŽÔùAC¤àò|Düï9  ³€^Ô瀘ØhœÇyØfHÒ8fC2”�‡†l�%�ü
˜S«Ùí`¹Ÿ¦®-½$«m¼ëÛRF�ZÎ|Å£²†HüÚ7M[ >Q×,EäÝãéîšGÿäXº÷»IQ5¨J¡ð¨?¢«íV9��Úÿg–4a”Sõ3ò%ƒ¦à¤Ü	éÞFhM^
6â)Q7Ï:LÐ]>]<Až8¨¥Pà‚©ÅýÌ&»^ŽEžt{ï¼\k`¬èô··Œõ~[9„ðÍÝÆÅàTÓô¡–ûmªbœð°$_•º•�†ÜVøÍ:Äs}Ã¥ÿq—3&5
ôFŽ~ÍHÖ‰¸,Ò*åñ…ƒ¡´ÏÞ�ÓG©�ÜÞ@ÑÄ�›P™ûÌðžx"¾K,ãj+ÃÉîyJ¿þr¥PlO?h·GaÿÖb	"J;ñe]­µÈ¥�;ûFƒšÆ‚_]‰‘Rë:XÀ݂ДùMÒÈVfö„¨ô7»ÐækŸM6a¶zM!,O¼(xHËx95ÕÖ±M™¢ãߎŠ-]é›Îüªµ»\Ç=Ýf³yÁdŽ(¡€Ó®ÌT#W]K§ÛóÇÚ{‡ÝEKnüÓl‘ª¦1[؇#Ò!u/+ÀǬl\zÖtzô
¶Óž«{’´FƒÅ†8jÐ
Ï`û�›¬Unµº·1{]‰öM±Ù
�úmeÙ8bèQ¯¼0ýpþ_ã"F Er1…,¨NxÚOêyº5C3l‹Ç}0Š�%jìEÒŒf‘ÓùªÂ�í6Jeî䛩YœîèE4»aÐ-¦s/'×)b÷KYóR+øDÅ)†ÕY4䋆�·õ·S#‘DŒ®ï1](2
FؽxTNKù”áJQœ&Tÿ ´+ÛiÂb‰~(ì¥(ð™˜@°Ø%e—Ò|ü ×_@лÊuŸu”ÆJ¡áj„í/­Ü0:a"WqO‚:ü^¢AÔ‚ÓXWYb:øÉ|¦¨J 3³×1N ï{©²ˆ³b¢”É,‹—6‚œöZàJÊ–]q"’'E•êbÉ‘Ž‚yÉŸ](0ÆÅ‚ýtR3
„¹B�^ÁÕÍuÝÌmã2oÜpè‘K;
<0ÿÌúó0�–q°k
“¬ RÆó˜¦b�Ôj¬ûP¾ÇÔm
ãçDó¼Ã'Ã]Ä<økt=·�ò哱™##^ÖF)›q�á„§H“]ÿ”Pû³s³{ù¯\†Ì�ž"šƒ.Nò^Éq+>�bHYv€¢Ñr8`)âò¤€—ü ¡5í¬õݺŦ.‹±=ÑW&W¨!¨s’—÷.)#�Ýß>0Ëé¯1Aò'^ä®…ØnȈþšgQòR~•¸¾°UâvC•�¯î“ÍDñé/på÷%E:¶b‘�û±&•	ûÕéZìq�`ÖC†J½jÑÌM×ù37š`x¨l!XÛ€vç¶`6oÊ{FÐ�,Žg¦IKûL,gPçe“‰[^++Ç€“„<J€x&¼'P©kNÕ¸+I+²!UÉ dÑv<7&å.súÃôQyS®ìû±˜àÚzûêžê òVêíËša÷Ðê\Ô–�EË
HòȈÕÂ!|ðöšuw˜ƒµsR»ˆƒÌXH‘•ny%7OOÄ3z¡››öíÙ9Ò‰ûJkz¦Æm¢tâIÊOw�<‘šŽL8¯jÞ̇ÕHÖ`#ÿÿ$oN%V²þ�¬ëâuñÞo&[m…¥5"9kðâò±SĘä‹6Ño‹›ÕoE×õ¹9}9zm­hèh$Óá�â|�Âþ¹\ƺ†­GñáY½C‰ã«(t½'î¼VM«™s±?>‚ªb§à¡Q×=䌸ã+æ?ý0?Zn¦ð—ív?¿6Ä0‚EFÞy’#H5Lâ…¯	—¿<fæï”.$¸ñÌÝT/	Ïæ\ 	L_Òk¼8´^Ò˳�î)±
Kzi`	ᵸlDÀ¥a¢WÁTþ®±C>¢uínK"…þqîYBfQdú®Öiq kàþxc®½K¾•]ꢔ۠y1–8_MQAÉÖÄ°ú"²âÏ·R¬£UçZWlËŒË[dtŠ©�í»�¨±®¼g¾vçá—b-˜€BŸl¥\[;æºÎ‘‘åÅ�¿qõ”ËýM°éö’?Xÿ”d¦r
]O	Æ"ÃÎ?]:�ô±nž¯6ÃSq\ÓR`V¿ÐU]QÎ\@»Û|•Î®­­¸�)tÞP°†3H8dõêh.g‚† jo9jòš|³:5yâX5–6óÀÔÏ6�…•š
ÞÚ”ÓX$oºƒùgX?q=wƒ2<péL›ã1ø`Û9]½æúÎ[ý¶üï©Æ°icÚ¨@£õT¤XÀÅµàŸ‘õOc#E‰ÞÊô[¿ºïËÿJææ\¢jSađ¨U¡×F3‘ɶkélòL<2好ÈWöX&ƒÆ®7u¶*Ÿÿ�¥€ÊŠ*<mç�õr{¡ %çær:#¨|¦åL{8ÿdˆ#]!çîRX•=Ëùâ©bðÊOþ‡Y$,…ºä"+;rÄøi47›¢êÑÜÞ�bA¹”Ù\ˆ5Zõ©£
Îœ“:iBóA­"Ø%„j�ÔLâê©1&áZ×˺–"ï#×ëº4ÎÅï	±Îr�J—ã;ÒŸ=žÈ
OEÑÒ”†¬ÏÁ€ØIçbog‚u×Ǭ°,ÀæãK·fºkuíü©5.	ö“�ÀEÏÈBÿšÞŒ¦“À­Çz”nnW:ü[P–A9]ÚÜ-Y H4�Ô/Ïãɵ®E?P†»A»¤È£åãUK?’0%ÝrÎËô1—‹4¨T|q×19’Px�<aÓ°ÙF”Éý—ÌߢpûlGìˆa¡ÈÙ	î¬çaµ k¤n%x_ø†ww«²7ÆÉ€hy‘ñí
WÕ„’&q,ì4Áü	b9UÛMP�¶è@œóÃÇ�iôûÀ²%
mÍEiiÍ2åB•3¿o‹Ú„À_ @Þ‹S¿¸gnìKvÃßoF±ä72]ÚW~uö@wjéÒñ¯BºF-¬s Å™¿ï
¬Ö ÔÑykË�XQ�ošÙ£ g©MG%¹ˆDìÒæòŠIªD�¸yrü™Z—7™Tn¤1Cê,÷y©Ëèè‘)Û6I!d«%˜ì§æšicغ¨g)Û†ä ý–Ö�±Ü+3›W§@Jå·uêöØ]É4æ¿+KÕŽà´ßW¬ ÿ�´Z˜+W–Cˆ$Q¢çVÜvÛõ3è>H¿µÏ*x¨“xBauÁbÿªrx¤;™21�Á¸ËúƱ­#[‘ùËv#±U~÷¸v£Ãv'ª1êþÑAÌT‘Äö!¦kmƒzMxqœFQ “Ïeüéú¾[ÖÔ™ìëcSŽÎ<ñ�SU
#›ùxÀŒ‡Ÿ™THZN>[í¸K@|í…ÄßÄ×Zñ�Y’ŸÉ'Ä©�ÊäüÉþ¹ìU^ÐB0…S”ÕÌüŽÒdØø;åÞ»p)5Gð~MÄ(ñà
yŽlîâU‹oøÁuŸ�&žâ&3+™¬�ÑÉ ˆáùÎ1˜Àõ›ûuÄ䦗fíC¢œƒU-ãÎmΖúQ¶â0q¤éD"Ñ^._gÚ|¦Êæ¾×t>¿úËŠ�6y#!�¥èr÷bÃÇ6hðԘö¢k®iŒ÷�$ÂÛìÓ™¡�æ¸ÐhN’Ÿ.€ƒv^²Æw“¡­»‰ÓkX¿±—ÍÅóÈ”¬�ˆn�;	6ú½#<	Þ�«€™÷*tÙº\^M9yùä[qU‡·É7Çf�ÅÅüæ!¥:ŸÐ;
NæØÑ«¾.Õa‚
wñ*ÊÐuU@«mÑ`K|0¨e)•«€¸^‘�Þ”8¤c~°)$íKt^x,ÿ˜Q°;çœ*�5¿'e„×\Ý–¹É~sëq:·ÃÁœ,«D—)�Ë0RµÔP=çó1‹æøHT{OM¸,®á�€x¾(P6ªM‘ò�Áó–4>s¥þ‹µÌð£~Ñ÷zÍ¡¤¤�Ìü«�]yð÷ˆ¶Õéø"Š‹ÍÀinkõíÿ¼×éPœ‡ûá÷&¹;øÆØÓt(v>%`Älž‰Os…�ÂZ¼O6‘ëÍ
qàÔ‘]—¢8šíë²ëG\{E_Š¨Q“µÀô;CLÞ
aM&FÍn67óI¤4§WÁÅÖ˜E-™&xÜ¥å’ìÓÊü­„äé�KJÜR[�½hCBˆƒ:n¤ 8È¿µAÿr€'J4ÔÏ�Ÿ-ºágÊ®„qÄ•à´Q”­‘ÄQo!˱&ý]sL×r]õ³ûé)Uô©»;›�:îÿyÖí]¹-ïÐ`¢ÃìŒBÁxo–Å
rI°?Ç’vCf‰J52™Ð¾ùýj$l6£Wƹ…܃£z�›‹šÖCÞ©H`Ëçc»sÌ„"¶�M3"BÈ•@uûq¦g–86«Í´a˜U²jñ`df³SE£¿zâ�Ö®"Iñç¨FBxºáH`"¼ÇÃs�ÈÙ ï°áÏ ÚŽ÷¥àrùšGìÇ^ND(€7Q“ÛI»‚º4�†ÊG>Õ¶>@HÛMÄUçK?Ý.x˜Ê?L:Ô5ÍæêdPU:}Ï"�BW
¯ÅXYõyTçÕŒt†±à*Ál·™·v2Æk·ŽnRáÁsd$úMC?´È�Ò?*Õúã®$3�ˆ�›IjÙ{Ùöâ
…—ÑE*rÜô=»Ú�e…Àm!ûÿåþ{U÷›Ÿ4 +Ð\¦<|ë»�ÒO±‘°Lf]EMÒ‹…Ø!Î~a1‰–x^¨Ú¼H™±&q}ZXí6;�K9Ð/ŒÅãPûð£H­ìÑùâÊt›Øo^´Ž›FðPÞÖB”yF÷øŠš
Fƒ­„ÖN9S¼M�Ì3K—e5)Öh*‡¥úÈ
mFÖç/Â.X¾{�†³7.òb!«ÄHqq²W¬ÿå]Ç…^ž‡­—zg’²1Zž´FŒhd›`ÀÚ·
jÁ­cÍ€¶ì¨üˆ±ä&:ÌI’UÁkHz
øX_œ‰-ÈLAFå¥g|J,²KÞ^‰…J±äÈt’çk~oK½qØK«…Ép(Iç÷(wk”¨ûŒ| aïo 2¢�”›þG?â';‹[:Õ@ñ‡Ic}̼¦ö/
zfq|YlÞôòVh^Þ–{>æ‹Œ•Y®±×VL;�€k,èX8“§™·�~�¾­®0ÿÀ²¶8,ÅQ¤Ee �³QkãyïVj°g?تîìÜñŒ`é¤w¹á7WIŠDÿ“QÑòz¿Ÿ×hù$PFGÑ$wʆ¾bArÃ"mfë+$ŽË>]ܨ›(|WQì@üø�€,ô6Š†ó à4÷¦}KÅI^‡ìßà/xÉ¥š;ù»cd>Àdç´GnÄãh[ú;þžùìÁ-͉š¾<´hh
ÀÀ©Iª&¾Õ}õo+ÅNñš÷ü¼{iuô*Jg¬ù€µh¬²4/B$Ÿ|ãR|+	`dìÒPˆz”-&ö7áÄ–YÒF*hh°C‡£³™ã–¹þtÞ5a%úGТ'7¿6§›oÿ­éC�ÖÏÿK¾Óïï¶Iã/“]b0|º6šÈÂoãÔ…|æÒ@ìåäÑIðXqU¨5Ìï®/ñÛáR¨$™¡™møµF.áp²„2v»åÃôƒ‡dM•ð‡Å˜ãÔo¾'ö?§„½¢9Q!B@E¢ÅÛƼ6bÊs
†Ñ<øöþ'C"L§µ5Êö´p}®œúÓ×)
»º¶ d®n�š	Ÿuûä|žeMŽ;�ÀóÛÿè)æÅoz$VQ6�*…Y«VZ™‘Ʊث̔Ƴ;º1OnP`æWäd–šUÖÅü ÿ]žO@í¼,’~±í•ï%ôå¬Ë¤™“"º9I“ÝXuC:"ƒ\ýBýwýF€·þv}z¥Ã:ÍàJe½:f?ÍäÈŸ*ô˜ñ;ù«º¡Á&^Üi”«ÜÉ"pÀXÍ*�ëï¿ìžK©®\Þ!›“,à4¶Í_¾œû¬O~$ï—fOs
|Ã`<�ÍxÛ%ü4Ybž¯ ßÛ,~P*¦”8„z�%M[ïÄQÍ£`oÈ®bà®é(ùí!רӉžD^àdV=2÷¶»ZÑ—<õ(Ù³)ìg�\mß'Ò¦ÿ§2‹¹“@|Þ=aYýIþF’T¸L)Úê�ùÖ›ï
ŸQ¹¼á“ãxƒ[‚ê_`ÜÝtR·¨ ®|ÖÜ)׬jldq–3‹v‘F²£…Ò‚¿ªæfﯫ-‰¤V{”`Ì"×RøéªÊª·ÈHyõ5–bÕ]öWBtQÇEtÎ×3€|»TWA’9L=ê½ATÐåh�WÃ6ÚÉQùj5ŽœFj\Qó¦2á„õ^ÞôÜÉr–;ë•ß	Þß„‚`ËÁëýÇ@‚êºm,Q’ŒÓ|LŸ2»	”¥iGÏÙd0VÛ]¾¦
$�L“+ÈæE²ì.¹¼Nž/AV)24Ð^pË&¸£p° lukÚmïÁ^³†dSZOûqAhÞüm‚ô�[¨v…7êÕw<S½wœ¨™¢Ý1É…iÿQÂû¸7\;=ɸ(¿ÕP2Šß5�qèjIûŸ^ùàl…\¿ÇѦ,¢êe^Ù¦Ü{¸±†Vè’?Ç¡p*³iGד„Ö�Ã#éŒô	÷v¼+!š|Ížuj�Z£Qæê®�wŠ?–Í\fä×z5y…Un37Ø¥Ã�à×o@�¯éùšØ —k3BõT³t´º©§ò!$Ò¸'IDn0ÙyZËœ<:0Zm':Å(èéÉ\7§Žv_Ý¥Y‚–¼…¡OÀ•§‹FTîmü2˜tšcš¹ÈáU¯:wø¤	ÎE2¤’ïU
wMw×2³´Ê[ĤHŒå•|â°2®XRst��±žÜóæËš“ì$äk<G/›¯<¤l¸¹©ñŠÎ¾}ƒ½DsuO&€m¢ù[ž¤‹4$`¯rš±^Ÿ>Úgþìd_˜]K”‰ÏlîÁ±Ð¿FÇKå<~¡r–ùŵˮsd‘!<“µž½ìüÖF׸ln;^(�+¥†|“n{Ñ°å!‘ë†0ÿ‚̯²zY)Qdu¿tïñåâ«ß<“¼]É�Kè;%bGy5âú0Û~»nÀñ˜øÅëqÇ0³U¡Ý¦H«•¶<Rž
–ÎÈó†€"`‰’mƒ	yly™Mc¶{ûbökJP/0í¾Aè–è‹ÄZ
Ro½_.gs"ñìW@×V<Ò>èSÀ¸I˜ã�ß…VâŠS%s•n|ùÊ$\)Z=^:™êraÑ(“´5ÔÈòõÌàj0‘â¤)‰uÅ=u)·úô-+¬�¸Õ6iÏYÇ	Â^ž@µþ®ÔÃ}Þ‹„Ä–q#&ûjªèvk@·$€ó—[  571.818441][T13228] Bluetooth: hci2: Opcode 0x0401 failed: -110
ïaÑÑ)gmòGŽw�‰žÓBnÃ>ImÝ.Âq(øúî’‚ŽÚrÖ®è3
yˆêȶNÄز	�†LÅ,KæÐ0K‡Ù{ÿÝœf§@µ"0‰Ùóô«íÅ<v�«’ ¹€æÁ�_ º‰”̈†×½î!4BôVןδ�¿`
flŠÞ$Ñæ2‚QÏ{W¦(\e
˜Pó’±Âšì\�ĉ£��`ÕÞ7}L¸îV%·À,]PÒ¯3—o.*A o’)îõ‡ŽÙŸkç鈒Mºë„Uö'^†˜Ù?µ6âÈ9²ªi¼ìíÛùÅ?ŠÝºSÕ ÷[  571.828692][T13228] Bluetooth: hci2: command 0x0401 tx timeout
¤ršB¬n·Wñ´­J
GTasæ/v!ë©áhÌëHà£
·¡¿qÕgBÕð4ò×%çêh Û±únïäî	8sÞ6m4ô$ '¢\[—œšÄ}Ñܶí‚Ä®à�Ì#Ï2š†Dø›\ðVƒ“K7WN›9³	òváZ @•Ÿß8Ê?Z±~EfhÐ`Dã¡?:
ohWžPÕ°O�{ÏÍ烖Ï0ð±ß÷m׫ZD²ëª÷;”\WP)®-Î rI‘æU
UÞÖ¤&r`Ÿ$9Ū´ˆ+/ú÷Úx{qÐ]QkÖŒo�y¶u9XEòNèSøwç,¶Æp/{‡uÊú»¼ô
Ÿ{Ìð!1ßÆjz÷ž’¢ÑËá².	çãì¹ÓÂEÂ*W¿à›×5ö6ÚÂHŠà­Çˆ^Üe]ªõ5áޖ̾xiÕ1Ø¿=µûÑ|w#2£øÏ.à .¹š6 ø×!˜ˆ¬»W	Úó²Žbèü.Â7½ñ…’§¯äØ9Ë^Ì1¿Oy~oW	&\ÂèÄY·ÚQj½lŒ[À¾-/PZe7bfV:ǵžó´âW
l°½”ÔjØa1|t<áÞ¿¢)Z˜ÍÞÔAM‡¡XFu»ßs¢,¬J�Emž`Ëý�;ÑÚÄ�ÛIú]ˆ
ÐûD´¯ì«Naú8¦gˆ
Ø9S¾{YÉß×ù7x:è óÇËï§Ò)£|õ#Rž›Òâ@b›d¯-@Gsé‘ zr,2!Î#ºí|¾@¤@Åh±"Ϻ�’þG�…­ËÞ¬·ml¿$‘êúéƒ'²xâg‚Ðnù°2Ž$lØÆ;“2)‰¼Ÿ˜žÿÆuÇš‡
À$uloZ~2º½ib]aHzç9”�·ÐúÞ}p­›W0
-Þw«¯ôö:…5‰ÔNú–ŽÓeaðD­Â'ük/�Lêщ üÊ›.l½åI†Rà³¼�‹y!GDq�ë\ÇPÜpõ©± ®,d ¶¡¨«r+N9àÈiËÜ`ÉF_]VMº/[;ÃàZE‡Dt0Åêà-Øð¦]}ØÙÙ¸qwÒ#šWxq”#û*ì|¨n°|9Þe£K˜�e7ztsé_ו“éi3¿:€$üQ�›ª® xoKFü£UÿÌö\Ì­–0š\Ï VÝT,’˜PÌ‘ÍeYb6ãUz³û7ƒ(÷zÙÚ$D}?¢8.Òèì•) sCLd°·ÃZ ä«QÍÉÀòf«%¶˜C8 º‘`(;cl]~Š?–œáÉ›T»§ÿ6yûîË·IðvH
†|ÄîL¬®£œ€öBS5™Hm/ûw¸Éš�%úåŽÊvO}VFž¹Tp6»ê�\=5´ÁûÃÓš7,+zÑ„–\­8È’�ˆÐ	I”œL“Ó
ÇöfRGÀ‹Ø�ÿ:¯ç€¬fþ¿¬ÈÆ£Ì8}	ÚmçHz€âÈÕmùM~½>žAl_~¶ÚAÆõ)—µ­Gº˜Ra?ßëJ((²HöRﶫ̫.±a¸x¹ÛÀª‘¶özݨ<wH×µ$ÿæ8HŸC-Y.aq½œË,Õ/—qCõ¿*°¸#ÔI®Uð$@—#44LÚ
ƒ{“¯¤ôj/Þþ'é'dÏ•–xFÞ.;¨>bîC±ÀZîg^%65­ßªhçÅ>Ö…A?[©Qñ ЦFät‡,�娇FLøF
èÿÿ$ËQÝ-Ê(Õ—«.¦	IøÛ¾gòcç"ýµÎN2Šõÿáö;�¦Ô½T�–D™²R.£#14‰>­f–b¦j±:ßÏr^ÑC9Ä`Àà@#†´|ÙùýøKÈ^tÓ®|ÅDäÖVp¥T¥7q,né÷Q‘c*LM oÄ#±Õ¸(× 5²—Adõ*¡kîpîP’Pu/OÝkŸ�C߃ h*o€ÿg«zL[;{c€°Çðʦ{ºq1U£·U¯,q†8”8a]ø{%Js?É%¶&‚‡3Àñb]ú Œø=ðC	K{Z	‹;6øµ°ñ
{ø®5y“,
_ ‰…º³Øùu(;ˆ8®\·	¾rµ�÷B^ŸÛôàîQ³Ú
þD–<–ºî^Å�šØ�`óíÙt•*ø³¾Î,/”E“ôÞ}åà]í	k�OÖ]ü.€ox"„³ÛVO±/N^�^«1e‘ðé7LÎŽxrc¼8'¯þg“Á0¸b;»*†ý‡ðpê!q‚�îzìK³»q¯KõrìÑ9ľŒ�ôì�û	¥Ï†¢]9ú©ðd©—Âó4äA	ü;Mg­¨Øz8Àøk¿e=Ý®µ·[0‹Ï×’…‹ïŠ²>4!“œY!)dÉí]Õn!]µŒïSÓ–k¸ÎNÕb‡þË:…ºC^A²¡KœŸ,Iú{¨žÄ~ïé’Ö>✌
Î&dþèí­Ô66¥LHQ›OÏU°Ù6¹$A¥ø\øÅäÐõ�_�70™4½xû¬ð ;E(ÛO|	Þ}
«¯Ê76¸%œ�Œ£8ÊgTàtwÂyMfJ¬ÁéÅ'd£æßsÙuc†0·LÎlI±ºÁdTéhRÄùØ펆ÒñÈÜ3¼ÍJ¾�µèV„ÝÌXçDAÍå�ùð˜|ûuµ¿îÕ;ÿhh˜kVmw
ô�ßÊËÓ%ÈÙ0¼ï&q;ö…ÕÉ‘â¦Ì3̼'÷Ýû¡�™„—Âë7ŒÈòÌ¡´ñAÅàûoRá‚Bå¼öÝ ã:F�jOÕç-©Ð¼Î/ž�ÇÑǶË6(~Êh-ûÿÿsß[  572.213752][ T1232] IPVS: stop unused estimator thread 0...
[  572.225998][   T91] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  572.229119][   T91] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  572.251431][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  572.254022][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  572.648507][ T6421] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  572.811028][ T6421] usb 5-1: config 0 has no interfaces?
[  572.813636][ T6421] usb 5-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  572.817498][ T6421] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  572.827101][ T6421] usb 5-1: config 0 descriptor??
[  573.048053][ T6421] usb 5-1: USB disconnect, device number 58
[  573.590503][T14771] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  573.595477][T13228] Bluetooth: hci2: Opcode 0x0401 failed: -112
[  573.597776][T14771] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  573.602795][T14771] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  573.610441][T14771] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  573.614551][T14771] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  573.617184][T14771] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  573.621631][T14771] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  573.629212][T14771] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  573.631887][T14771] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  573.635671][T14771] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  575.419174][T13228] Bluetooth: hci4: command 0x0c1a tx timeout

ú–‹9±ý8¾7zÉÖÏþ¯¾à
�죪ð>n�=!Ü'øOø™
!,¹×}äœÀŽ eÿfr)fþ_,ž´éÜ<!¦0/d�ü<^óÙGõ½¦0Jþ/…ãêY@ýo2òntVë)¢<Oú¸R2é‡m´
uZN[†ýô2Øé’üÎïÐxF§�À¥Y«£EÊbáÕOº‹*KØ47ô£(©žÊ«â€³{dP0yZtþ@RÐ	žÅKÂ^!«An¬.¾TèþP�ž(‚ô…êr𕔸 Öãk7ï]­
ÈÁ;I?oö)Ï}xðð§ŠB|¦XAñ säé§rZ5dü¶		…e
ÿÿÿÿ./file0/file0[  575.658386][T13228] Bluetooth: hci1: command 0x0c1a tx timeout
[  575.660738][T13228] Bluetooth: hci3: command 0x0c1a tx timeout
[  575.663182][T13228] Bluetooth: hci2: command 0x0401 tx timeout
./file0fuse[  575.868490][   T53] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[  576.039830][   T53] usb 5-1: config 0 has no interfaces?
[  576.042579][   T53] usb 5-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  576.046546][   T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  576.052917][   T53] usb 5-1: config 0 descriptor??
.

Yfile0ßÞƒùm
˜#„èÖ‰!œ¹f›ÛªyŸ‚êÉ&jAcaŽÔùAC¤àò|Düï9  ³€^Ô瀘ØhœÇyØfHÒ8fC2”�‡†l�%�ü
˜S«Ùí`¹Ÿ¦®-½$«m¼ëÛRF�ZÎ|Å£²†HüÚ7M[ >Q×,EäÝãéîšGÿäXº÷»IQ5¨J¡ð¨?¢«íV9��Úÿg–4a”Sõ3ò%ƒ¦à¤Ü	éÞFhM^
6â)Q7Ï:LÐ]>]<Až8¨¥Pà‚©ÅýÌ&»^ŽEžt{ï¼\k`¬èô··Œõ~[9„ðÍÝÆÅàTÓô¡–ûmªbœð°$_•º•�†ÜVøÍ:Äs}Ã¥ÿq—3&5
ôFŽ~ÍHÖ‰¸,Ò*åñ…ƒ¡´ÏÞ�ÓG©�ÜÞ@ÑÄ�›P™ûÌðžx"¾K,ãj+ÃÉîyJ¿þr¥PlO?h·GaÿÖb	"J;ñe]­µÈ¥�;ûFƒšÆ‚_]‰‘Rë:XÀ݂ДùMÒÈVfö„¨ô7»ÐækŸM6a¶zM!,O¼(xHËx95ÕÖ±M™¢ãߎŠ-]é›Îüªµ»\Ç=Ýf³yÁdŽ(¡€Ó®ÌT#W]K§ÛóÇÚ{‡ÝEKnüÓl‘ª¦1[؇#Ò!u/+ÀǬl\zÖtzô
¶Óž«{’´FƒÅ†8jÐ
Ï`û�›¬Unµº·1{]‰öM±Ù
�úmeÙ8bèQ¯¼0ýpþ_ã"F Er1…,¨NxÚOêyº5C3l‹Ç}0Š�%jìEÒŒf‘ÓùªÂ�í6Jeî䛩YœîèE4»aÐ-¦s/'×)b÷KYóR+øDÅ)†ÕY4䋆�·õ·S#‘DŒ®ï1](2
FؽxTNKù”áJQœ&Tÿ ´+ÛiÂb‰~(ì¥(ð™˜@°Ø%e—Ò|ü ×_@лÊuŸu”ÆJ¡áj„í/­Ü0:a"WqO‚:ü^¢AÔ‚ÓXWYb:øÉ|¦¨J 3³×1N ï{©²ˆ³b¢”É,‹—6‚œöZàJÊ–]q"’'E•êbÉ‘Ž‚yÉŸ](0ÆÅ‚ýtR3
„¹B�^ÁÕÍuÝÌmã2oÜpè‘K;
<0ÿÌúó0�–q°k
“¬ RÆó˜¦b�Ôj¬ûP¾ÇÔm
ãçDó¼Ã'Ã]Ä<økt=·�ò哱™##^ÖF)›q�á„§H“]ÿ”Pû³s³{ù¯\†Ì�ž"šƒ.Nò^Éq+>�bHYv€¢Ñr8`)âò¤€—ü ¡5í¬õݺŦ.‹±=ÑW&W¨!¨s’—÷.)#�Ýß>0Ëé¯1Aò'^ä®…ØnȈþšgQòR~•¸¾°UâvC•�¯î“ÍDñé/på÷%E:¶b‘�û±&•	ûÕéZìq�`ÖC†J½jÑÌM×ù37š`x¨l!XÛ€vç¶`6oÊ{FÐ�,Žg¦IKûL,gPçe“‰[^++Ç€“„<J€x&¼'P©kNÕ¸+I+²!UÉ dÑv<7&å.súÃôQyS®ìû±˜àÚzûêžê òVêíËša÷Ðê\Ô–�EË
HòȈÕÂ!|ðöšuw˜ƒµsR»ˆƒÌXH‘•ny%7OOÄ3z¡››öíÙ9Ò‰ûJkz¦Æm¢tâIÊOw�<‘šŽL8¯jÞ̇ÕHÖ`#ÿÿ$oN%V²þ�¬ëâuñÞo&[m…¥5"9kðâò±SĘä‹6Ño‹›ÕoE×õ¹9}9zm­hèh$Óá�â|�Âþ¹\ƺ†­GñáY½C‰ã«(t½'î¼VM«™s±?>‚ªb§à¡Q×=䌸ã+æ?ý0?Zn¦ð—ív?¿6Ä0‚EFÞy’#H5Lâ…¯	—¿<fæï”.$¸ñÌÝT/	Ïæ\ 	L_Òk¼8´^Ò˳�î)±
Kzi`	ᵸlDÀ¥a¢WÁTþ®±C>¢uínK"…þqîYBfQdú®Öiq kàþxc®½K¾•]ꢔ۠y1–8_MQAÉÖÄ°ú"²âÏ·R¬£UçZWlËŒË[dtŠ©�í»�¨±®¼g¾vçá—b-˜€BŸl¥\[;æºÎ‘‘åÅ�¿qõ”ËýM°éö’?Xÿ”d¦r
]O	Æ"ÃÎ?]:�ô±nž¯6ÃSq\ÓR`V¿ÐU]QÎ\@»Û|•Î®­­¸�)tÞP°†3H8dõêh.g‚† jo9jòš|³:5yâX5–6óÀÔÏ6�…•š
ÞÚ”ÓX$oºƒùgX?q=wƒ2<péL›ã1ø`Û9]½æúÎ[ý¶üï©Æ°icÚ¨@£õT¤XÀÅµàŸ‘õOc#E‰ÞÊô[¿ºïËÿJææ\¢jSađ¨U¡×F3‘ɶkélòL<2好ÈWöX&ƒÆ®7u¶*Ÿÿ�¥€ÊŠ*<mç�õr{¡ %çær:#¨|¦åL{8ÿdˆ#]!çîRX•=Ëùâ©bðÊOþ‡Y$,…ºä"+;rÄøi47›¢êÑÜÞ�bA¹”Ù\ˆ5Zõ©£
Îœ“:iBóA­"Ø%„j�ÔLâê©1&áZ×˺–"ï#×ëº4ÎÅï	±Îr�J—ã;ÒŸ=žÈ
OEÑÒ”†¬ÏÁ€ØIçbog‚u×Ǭ°,ÀæãK·fºkuíü©5.	ö“�ÀEÏÈBÿšÞŒ¦“À­Çz”nnW:ü[P–A9]ÚÜ-Y H4�Ô/Ïãɵ®E?P†»A»¤È£åãUK?’0%ÝrÎËô1—‹4¨T|q×19’Px�<aÓ°ÙF”Éý—ÌߢpûlGìˆa¡ÈÙ	î¬çaµ k¤n%x_ø†ww«²7ÆÉ€hy‘ñí
WÕ„’&q,ì4Áü	b9UÛMP�¶è@œóÃÇ�iôûÀ²%
mÍEiiÍ2åB•3¿o‹Ú„À_ @Þ‹S¿¸gnìKvÃßoF±ä72]ÚW~uö@wjéÒñ¯BºF-¬s Å™¿ï
¬Ö ÔÑykË�XQ�ošÙ£ g©MG%¹ˆDìÒæòŠIªD�¸yrü™Z—7™Tn¤1Cê,÷y©Ëèè‘)Û6I!d«%˜ì§æšicغ¨g)Û†ä ý–Ö�±Ü+3›W§@Jå·uêöØ]É4æ¿+KÕŽà´ßW¬ ÿ�´Z˜+W–Cˆ$Q¢çVÜvÛõ3è>H¿µÏ*x¨“xBauÁbÿªrx¤;™21�Á¸ËúƱ­#[‘ùËv#±U~÷¸v£Ãv'ª1êþÑAÌT‘Äö!¦kmƒzMxqœFQ “Ïeüéú¾[ÖÔ™ìëcSŽÎ<ñ�SU
#›ùxÀŒ‡Ÿ™THZN>[í¸K@|í…ÄßÄ×Zñ�Y’ŸÉ'Ä©�ÊäüÉþ¹ìU^ÐB0…S”ÕÌüŽÒdØø;åÞ»p)5Gð~MÄ(ñà
yŽlîâU‹oøÁuŸ�&žâ&3+™¬�ÑÉ ˆáùÎ1˜Àõ›ûuÄ䦗fíC¢œƒU-ãÎmΖúQ¶â0q¤éD"Ñ^._gÚ|¦Êæ¾×t>¿úËŠ�6y#!�¥èr÷bÃÇ6hðԘö¢k®iŒ÷�$ÂÛìÓ™¡�æ¸ÐhN’Ÿ.€ƒv^²Æw“¡­»‰ÓkX¿±—ÍÅóÈ”¬�ˆn�;	6ú½#<	Þ�«€™÷*tÙº\^M9yùä[qU‡·É7Çf�ÅÅüæ!¥:ŸÐ;
NæØÑ«¾.Õa‚
wñ*ÊÐuU@«mÑ`K|0¨e)•«€¸^‘�Þ”8¤c~°)$íKt^x,ÿ˜Q°;çœ*�5¿'e„×\Ý–¹É~sëq:·ÃÁœ,«D—)�Ë0RµÔP=çó1‹æøHT{OM¸,®á�€x¾(P6ªM‘ò�Áó–4>s¥þ‹µÌð£~Ñ÷zÍ¡¤¤�Ìü«�]yð÷ˆ¶Õéø"Š‹ÍÀinkõíÿ¼×éPœ‡ûá÷&¹;øÆØÓt(v>%`Älž‰Os…�ÂZ¼O6‘ëÍ
qàÔ‘]—¢8šíë²ëG\{E_Š¨Q“µÀô;CLÞ
aM&FÍn67óI¤4§WÁÅÖ˜E-™&xÜ¥å’ìÓÊü­„äé�KJÜR[�½hCBˆƒ:n¤ 8È¿µAÿr€'J4ÔÏ�Ÿ-ºágÊ®„qÄ•à´Q”­‘ÄQo!˱&ý]sL×r]õ³ûé)Uô©»;›�:îÿyÖí]¹-ïÐ`¢ÃìŒBÁxo–Å
rI°?Ç’vCf‰J52™Ð¾ùýj$l6£Wƹ…܃£z�›‹šÖCÞ©H`Ëçc»sÌ„"¶�M3"BÈ•@uûq¦g–86«Í´a˜U²jñ`df³SE£¿zâ�Ö®"Iñç¨FBxºáH`"¼ÇÃs�ÈÙ ï°áÏ ÚŽ÷¥àrùšGìÇ^ND(€7Q“ÛI»‚º4�†ÊG>Õ¶>@HÛMÄUçK?Ý.x˜Ê?L:Ô5ÍæêdPU:}Ï"�BW
¯ÅXYõyTçÕŒt†±à*Ál·™·v2Æk·ŽnRáÁsd$úMC?´È�Ò?*Õúã®$3�ˆ�›IjÙ{Ùöâ
…—ÑE*rÜô=»Ú�e…Àm!ûÿåþ{U÷›Ÿ4 +Ð\¦<|ë»�ÒO±‘°Lf]EMÒ‹…Ø!Î~a1‰–x^¨Ú¼H™±&q}ZXí6;�K9Ð/ŒÅãPûð£H­ìÑùâÊt›Øo^´Ž›FðPÞÖB”yF÷øŠš
Fƒ­„ÖN9S¼M�Ì3K—e5)Öh*‡¥úÈ
mFÖç/Â.X¾{�†³7.òb!«ÄHqq²W¬ÿå]Ç…^ž‡­—zg’²1Zž´FŒhd›`ÀÚ·
jÁ­cÍ€¶ì¨üˆ±ä&:ÌI’UÁkHz
øX_œ‰-ÈLAFå¥g|J,²KÞ^‰…J±äÈt’çk~oK½qØK«…Ép(Iç÷(wk”¨ûŒ| aïo 2¢�”›þG?â';‹[:Õ@ñ‡Ic}̼¦ö/
zfq|YlÞôòVh^Þ–{>æ‹Œ•Y®±×VL;�€k,èX8“§™·�~�¾­®0ÿÀ²¶8,ÅQ¤Ee �³QkãyïVj°g?تîìÜñŒ`é¤w¹á7WIŠDÿ“QÑòz¿Ÿ×hù$PFGÑ$wʆ¾bArÃ"mfë+$ŽË>]ܨ›(|WQì@üø�€,ô6Š†ó à4÷¦}KÅI^‡ìßà/xÉ¥š;ù»cd>Àdç´GnÄãh[ú;þžùìÁ-͉š¾<´hh
ÀÀ©Iª&¾Õ}õo+ÅNñš÷ü¼{iuô*Jg¬ù€µh¬²4/B$Ÿ|ãR|+	`dìÒPˆz”-&ö7áÄ–YÒF*hh°C‡£³™ã–¹þtÞ5a%úGТ'7¿6§›oÿ­éC�ÖÏÿK¾Óïï¶Iã/“]b0|º6šÈÂoãÔ…|æÒ@ìåäÑIðXqU¨5Ìï®/ñÛáR¨$™¡™møµF.áp²„2v»åÃôƒ‡dM•ð‡Å˜ãÔo¾'ö?§„½¢9Q!B@E¢ÅÛƼ6bÊs
†Ñ<øöþ'C"L§µ5Êö´p}®œúÓ×)
»º¶ d®n�š	Ÿuûä|žeMŽ;�ÀóÛÿè)æÅoz$VQ6�*…Y«VZ™‘Ʊث̔Ƴ;º1OnP`æWäd–šUÖÅü ÿ]žO@í¼,’~±í•ï%ôå¬Ë¤™“"º9I“ÝXuC:"ƒ\ýBýwýF€·þv}z¥Ã:ÍàJe½:f?ÍäÈŸ*ô˜ñ;ù«º¡Á&^Üi”«ÜÉ"pÀXÍ*�ëï¿ìžK©®\Þ!›“,à4¶Í_¾œû¬O~$ï—fOs
|Ã`<�ÍxÛ%ü4Ybž¯ ßÛ,~P*¦”8„z�%M[ïÄQÍ£`oÈ®bà®é(ùí!רӉžD^àdV=2÷¶»ZÑ—<õ(Ù³)ìg�\mß'Ò¦ÿ§2‹¹“@|Þ=aYýIþF’T¸L)Úê�ùÖ›ï
ŸQ¹¼á“ãxƒ[‚ê_`ÜÝtR·¨ ®|ÖÜ)׬jldq–3‹v‘F²£…Ò‚¿ªæfﯫ-‰¤V{”`Ì"×RøéªÊª·ÈHyõ5–bÕ]öWBtQÇEtÎ×3€|»TWA’9L=ê½ATÐåh�WÃ6ÚÉQùj5ŽœFj\Qó¦2á„õ^ÞôÜÉr–;ë•ß	Þß„‚`ËÁëýÇ@‚êºm,Q’ŒÓ|LŸ2»	”¥iGÏÙd0VÛ]¾¦
$�L“+ÈæE²ì.¹¼Nž/AV)24Ð^pË&¸£p° lukÚmïÁ^³†dSZOûqAhÞüm‚ô�[¨v…7êÕw<S½wœ¨™¢Ý1É…iÿQÂû¸7\;=ɸ(¿ÕP2Šß5�qèjIûŸ^ùàl…\¿ÇѦ,¢êe^Ù¦Ü{¸±†Vè’?Ç¡p*³iGד„Ö�Ã#éŒô	÷v¼+!š|Ížuj�Z£Qæê®�wŠ?–Í\fä×z5y…Un37Ø¥Ã�à×o@�¯éùšØ —k3BõT³t´º©§ò!$Ò¸'IDn0ÙyZËœ<:0Zm':Å(èéÉ\7§Žv_Ý¥Y‚–¼…¡OÀ•§‹FTîmü2˜tšcš¹ÈáU¯:wø¤	ÎE2¤’ïU
wMw×2³´Ê[ĤHŒå•|â°2®XRst��±žÜóæËš“ì$äk<G/›¯<¤l¸¹©ñŠÎ¾}ƒ½DsuO&€m¢ù[ž¤‹4$`¯rš±^Ÿ>Úgþìd_˜]K”‰ÏlîÁ±Ð¿FÇKå<~¡r–ùŵˮsd‘!<“µž½ìüÖF׸ln;^(�+¥†|“n{Ñ°å!‘ë†0ÿ‚̯²zY)Qdu¿tïñåâ«ß<“¼]É�Kè;%bGy5âú0Û~»nÀñ˜øÅëqÇ0³U¡Ý¦H«•¶<Rž
–ÎÈó†€"`‰’mƒ	yly™Mc¶{ûbökJP/0í¾Aè–è‹ÄZ
Ro½_.gs"ñìW@×V<Ò>èSÀ¸I˜ã�ß…VâŠS%s•n|ùÊ$\)Z=^:™êraÑ(“´5ÔÈòõÌàj0‘â¤)‰uÅ=u)·úô-+¬�¸Õ6iÏYÇ	Â^ž@µþ®ÔÃ}Þ‹„Ä–q#&ûjªèvk@·$€ó—ïaÑÑ)gmòGŽw�‰žÓBnÃ>ImÝ.Âq(øúî’‚ŽÚrÖ®è3
yˆêȶNÄز	�†LÅ,KæÐ0K‡Ù{ÿÝœf§@µ"0‰Ùóô«íÅ<v�«’ ¹€æÁ�_ º‰”̈†×½î!4BôVןδ�¿`
flŠÞ$Ñæ2‚QÏ{W¦(\e
˜Pó’±Âšì\�ĉ£��`ÕÞ7}L¸îV%·À,]PÒ¯3—o.*A o’)îõ‡ŽÙŸkç鈒Mºë„Uö'^†˜Ù?µ6âÈ9²ªi¼ìíÛùÅ?ŠÝºSÕ ÷¤ršB¬n·Wñ´­J
GTasæ/v!ë©áhÌëHà£
·¡¿qÕgBÕð4ò×%çêh Û±únïäî	8sÞ6m4ô$ '¢\[—œšÄ}Ñܶí‚Ä®à�Ì#Ï2š†Dø›\ðVƒ“K7WN›9³	òváZ @•Ÿß8Ê?Z±~EfhÐ`Dã¡?:
ohWžPÕ°O�{ÏÍ烖Ï0ð±ß÷m׫ZD²ëª÷;”\WP)®-Î rI‘æU
UÞÖ¤&r`Ÿ$9Ū´ˆ+/ú÷Úx{qÐ]QkÖŒo�y¶u9XEòNèSøwç,¶Æp/{‡uÊú»¼ô
Ÿ{Ìð!1ßÆjz÷ž’¢ÑËá².	çãì¹ÓÂEÂ*W¿à›×5ö6ÚÂHŠà­Çˆ^Üe]ªõ5áޖ̾xiÕ1Ø¿=µûÑ|w#2£øÏ.à .¹š6 ø×!˜ˆ¬»W	Úó²Žbèü.Â7½ñ…’§¯äØ9Ë^Ì1¿Oy~oW	&\ÂèÄY·ÚQj½lŒ[À¾-/PZe7bfV:ǵžó´âW
l°½”ÔjØa1|t<áÞ¿¢)Z˜ÍÞÔAM‡¡XFu»ßs¢,¬J�Emž`Ëý�;ÑÚÄ�ÛIú]ˆ
ÐûD´¯ì«Naú8¦gˆ
Ø9S¾{YÉß×ù7x:è óÇËï§Ò)£|õ#Rž›Òâ@b›d¯-@Gsé‘ zr,2!Î#ºí|¾@¤@Åh±"Ϻ�’þG�…­ËÞ¬·ml¿$‘êúéƒ'²xâg‚Ðnù°2Ž$lØÆ;“2)‰¼Ÿ˜žÿÆuÇš‡
À$uloZ~2º½ib]aHzç9”�·ÐúÞ}p­›W0
-Þw«¯ôö:…5‰ÔNú–ŽÓeaðD­Â'ük/�Lêщ üÊ›.l½åI†Rà³¼�‹y!GDq�ë\ÇPÜpõ©± ®,d ¶¡¨«r+N9àÈiËÜ`ÉF_]VMº/[;ÃàZE‡Dt0Åêà-Øð¦]}ØÙÙ¸qwÒ#šWxq”#û*ì|¨n°|9Þe£K˜�e7ztsé_ו“éi3¿:€$üQ�›ª® xoKFü£UÿÌö\Ì­–0š\Ï VÝT,’˜PÌ‘ÍeYb6ãUz³û7ƒ(÷zÙÚ$D}?¢8.Òèì•) sCLd°·ÃZ ä«QÍÉÀòf«%¶˜C8 º‘`(;cl]~Š?–œáÉ›T»§ÿ6yûîË·IðvH
†|ÄîL¬®£œ€öBS5™Hm/ûw¸Éš�%úåŽÊvO}VFž¹Tp6»ê�\=5´ÁûÃÓš7,+zÑ„–\­8È’�ˆÐ	I”œL“Ó
ÇöfRGÀ‹Ø�ÿ:¯ç€¬fþ¿¬ÈÆ£Ì8}	ÚmçHz€âÈÕmùM~½>žAl_~¶ÚAÆõ)—µ­Gº˜Ra?ßëJ((²HöRﶫ̫.±a¸x¹ÛÀª‘¶özݨ<wH×µ$ÿæ8HŸC-Y.aq½œË,Õ/—qCõ¿*°¸#ÔI®Uð$@—#44LÚ
ƒ{“¯¤ôj/Þþ'é'dÏ•–xFÞ.;¨>bîC±ÀZîg^%65­ßªhçÅ>Ö…A?[©Qñ ЦFät‡,�娇FLøF
èÿÿ$ËQÝ-Ê(Õ—«.¦	IøÛ¾gòcç"ýµÎN2Šõÿáö;�¦Ô½T�–D™²R.£#14‰>­f–b¦j±:ßÏr^ÑC9Ä`Àà@#†´|ÙùýøKÈ^tÓ®|ÅDäÖVp¥T¥7q,né÷Q‘c*LM oÄ#±Õ¸(× 5²—Adõ*¡kîpîP’Pu/OÝkŸ�C߃ h*o€ÿg«zL[;{c€°Çðʦ{ºq1U£·U¯,q†8”8a]ø{%Js?É%¶&‚‡3Àñb]ú Œø=ðC	K{Z	‹;6øµ°ñ
{ø®5y“,
_ ‰…º³Øùu(;ˆ8®\·	¾rµ�÷B^ŸÛôàîQ³Ú
þD–<–ºî^Å�šØ�`óíÙt•*ø³¾Î,/”E“ôÞ}åà]í	k�OÖ]ü.€ox"„³ÛVO±/N^�^«1e‘ðé7LÎŽxrc¼8'¯þg“Á0¸b;»*†ý‡ðpê!q‚�îzìK³»q¯KõrìÑ9ľŒ�ôì�û	¥Ï†¢]9ú©ðd©—Âó4äA	ü;Mg­¨Øz8Àøk¿e=Ý®µ·[0‹Ï×’…‹ïŠ²>4!“œY!)dÉí]Õn!]µŒïSÓ–k¸ÎNÕb‡þË:…ºC^A²¡KœŸ,Iú{¨žÄ~ïé’Ö>✌
Î&dþèí­Ô66¥LHQ›OÏU°Ù6¹$A¥ø\øÅäÐõ�_�70™4½xû¬ð ;E(ÛO|	Þ}
«¯Ê76¸%œ�Œ£8ÊgTàtwÂyMfJ¬ÁéÅ'd£æßsÙuc†0·LÎlI±ºÁdTéhRÄùØ펆ÒñÈÜ3¼ÍJ¾�µèV„ÝÌXçDAÍå�ùð˜|ûuµ¿îÕ;ÿhh˜kVmw
ô�ßÊËÓ%ÈÙ0¼ï&q;ö…ÕÉ‘â¦Ì3̼'÷Ýû¡�™„—Âë7ŒÈòÌ¡´ñAÅàûoRá‚Bå¼öÝ ã:F�jOÕç-©Ð¼Î/ž�ÇÑǶË6(~Êh-ûÿÿsß[  576.425049][T14806] usb 5-1: USB disconnect, device number 59
[  577.356396][T14857] FAULT_INJECTION: forcing a failure.
[  577.356396][T14857] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  577.361451][T14857] CPU: 0 UID: 0 PID: 14857 Comm: syz.0.2515 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  577.361482][T14857] Tainted: [L]=SOFTLOCKUP
[  577.361488][T14857] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  577.361498][T14857] Call Trace:
[  577.361505][T14857]  <TASK>
[  577.361512][T14857]  dump_stack_lvl+0x16c/0x1f0
[  577.361545][T14857]  should_fail_ex+0x512/0x640
[  577.361566][T14857]  _copy_from_iter+0x2a4/0x16c0
[  577.361581][T14857]  ? __alloc_skb+0x220/0x410
[  577.361593][T14857]  ? __alloc_skb+0x35d/0x410
[  577.361604][T14857]  ? __pfx__copy_from_iter+0x10/0x10
[  577.361617][T14857]  ? netlink_autobind.isra.0+0x158/0x370
[  577.361639][T14857]  netlink_sendmsg+0x820/0xdd0
[  577.361657][T14857]  ? __pfx_netlink_sendmsg+0x10/0x10
[  577.361675][T14857]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  577.361697][T14857]  ____sys_sendmsg+0xa5d/0xc30
[  577.361716][T14857]  ? __pfx_____sys_sendmsg+0x10/0x10
[  577.361732][T14857]  ? get_compat_msghdr+0x11a/0x170
[  577.361753][T14857]  ___sys_sendmsg+0x134/0x1d0
[  577.361768][T14857]  ? __pfx____sys_sendmsg+0x10/0x10
[  577.361788][T14857]  ? find_held_lock+0x2b/0x80
[  577.361812][T14857]  __sys_sendmsg+0x16d/0x220
[  577.361826][T14857]  ? __pfx___sys_sendmsg+0x10/0x10
[  577.361849][T14857]  __do_fast_syscall_32+0xe8/0x680
[  577.361868][T14857]  do_fast_syscall_32+0x32/0x80
[  577.361878][T14857]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  577.361893][T14857] RIP: 0023:0xf7f15579
[  577.361903][T14857] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  577.361914][T14857] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  577.361926][T14857] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800001c0
[  577.361933][T14857] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  577.361939][T14857] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  577.361945][T14857] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  577.361952][T14857] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  577.361965][T14857]  </TASK>
[  577.476629][T14860] FAULT_INJECTION: forcing a failure.
[  577.476629][T14860] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  577.482279][T14860] CPU: 3 UID: 0 PID: 14860 Comm: syz.1.2517 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  577.482307][T14860] Tainted: [L]=SOFTLOCKUP
[  577.482313][T14860] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  577.482324][T14860] Call Trace:
[  577.482330][T14860]  <TASK>
[  577.482337][T14860]  dump_stack_lvl+0x16c/0x1f0
[  577.482366][T14860]  should_fail_ex+0x512/0x640
[  577.482394][T14860]  _copy_from_iter+0x2a4/0x16c0
[  577.482416][T14860]  ? __alloc_skb+0x220/0x410
[  577.482434][T14860]  ? __alloc_skb+0x35d/0x410
[  577.482452][T14860]  ? __pfx__copy_from_iter+0x10/0x10
[  577.482470][T14860]  ? netlink_autobind.isra.0+0x158/0x370
[  577.482502][T14860]  netlink_sendmsg+0x820/0xdd0
[  577.482527][T14860]  ? __pfx_netlink_sendmsg+0x10/0x10
[  577.482553][T14860]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  577.482585][T14860]  ____sys_sendmsg+0xa5d/0xc30
[  577.482613][T14860]  ? __pfx_____sys_sendmsg+0x10/0x10
[  577.482637][T14860]  ? get_compat_msghdr+0x11a/0x170
[  577.482669][T14860]  ___sys_sendmsg+0x134/0x1d0
[  577.482692][T14860]  ? __pfx____sys_sendmsg+0x10/0x10
[  577.482724][T14860]  ? find_held_lock+0x2b/0x80
[  577.482754][T14860]  __sys_sendmsg+0x16d/0x220
[  577.482777][T14860]  ? __pfx___sys_sendmsg+0x10/0x10
[  577.482806][T14860]  ? do_user_addr_fault+0x843/0x1370
[  577.482831][T14860]  __do_fast_syscall_32+0xe8/0x680
[  577.482859][T14860]  do_fast_syscall_32+0x32/0x80
[  577.482873][T14860]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  577.482892][T14860] RIP: 0023:0xf7fb1579
[  577.482907][T14860] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  577.482923][T14860] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  577.482940][T14860] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  577.482951][T14860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  577.482960][T14860] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  577.482971][T14860] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  577.482981][T14860] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  577.483001][T14860]  </TASK>
[  577.739487][ T5948] Bluetooth: hci2: command 0x0401 tx timeout
[  577.739751][T13228] Bluetooth: hci3: command 0x0c1a tx timeout
[  577.742510][ T5948] Bluetooth: hci1: command 0x0c1a tx timeout
[  577.843076][T14875] FAULT_INJECTION: forcing a failure.
[  577.843076][T14875] name failslab, interval 1, probability 0, space 0, times 0
[  577.848113][T14875] CPU: 3 UID: 0 PID: 14875 Comm: syz.4.2522 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  577.848132][T14875] Tainted: [L]=SOFTLOCKUP
[  577.848136][T14875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  577.848144][T14875] Call Trace:
[  577.848150][T14875]  <TASK>
[  577.848156][T14875]  dump_stack_lvl+0x16c/0x1f0
[  577.848177][T14875]  should_fail_ex+0x512/0x640
[  577.848190][T14875]  ? __kmalloc_noprof+0xca/0x910
[  577.848205][T14875]  should_failslab+0xc2/0x120
[  577.848222][T14875]  __kmalloc_noprof+0xeb/0x910
[  577.848234][T14875]  ? vb2_core_allocated_buffers_storage+0xc4/0x220
[  577.848250][T14875]  ? vb2_core_allocated_buffers_storage+0xc4/0x220
[  577.848285][T14875]  vb2_core_allocated_buffers_storage+0xc4/0x220
[  577.848305][T14875]  vb2_core_reqbufs+0x398/0xfe0
[  577.848327][T14875]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  577.848362][T14875]  __vb2_init_fileio+0x3f1/0x1100
[  577.848382][T14875]  ? lockdep_hardirqs_on+0x7c/0x110
[  577.848404][T14875]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  577.848420][T14875]  ? __pollwait+0x271/0x460
[  577.848437][T14875]  vb2_core_poll+0x5ec/0x700
[  577.848450][T14875]  vb2_poll+0x4b/0xe0
[  577.848461][T14875]  vb2_fop_poll+0x10f/0x2c0
[  577.848474][T14875]  ? __pfx_vb2_fop_poll+0x10/0x10
[  577.848484][T14875]  v4l2_poll+0x163/0x320
[  577.848500][T14875]  ? __pfx_v4l2_poll+0x10/0x10
[  577.848514][T14875]  do_sys_poll+0x55c/0xdf0
[  577.848536][T14875]  ? __pfx_do_sys_poll+0x10/0x10
[  577.848566][T14875]  ? __pfx___pollwait+0x10/0x10
[  577.848582][T14875]  ? __pfx_pollwake+0x10/0x10
[  577.848617][T14875]  ? __mutex_unlock_slowpath+0x161/0x790
[  577.848637][T14875]  ? set_compat_user_sigmask+0x213/0x2a0
[  577.848652][T14875]  ? __pfx_set_compat_user_sigmask+0x10/0x10
[  577.848667][T14875]  ? __fget_files+0x20e/0x3c0
[  577.848685][T14875]  __ia32_compat_sys_ppoll_time32+0x248/0x2c0
[  577.848703][T14875]  ? __pfx___ia32_compat_sys_ppoll_time32+0x10/0x10
[  577.848720][T14875]  ? ksys_write+0x1ac/0x250
[  577.848736][T14875]  ? __pfx_ksys_write+0x10/0x10
[  577.848752][T14875]  ? do_user_addr_fault+0x843/0x1370
[  577.848769][T14875]  __do_fast_syscall_32+0xe8/0x680
[  577.848788][T14875]  do_fast_syscall_32+0x32/0x80
[  577.848799][T14875]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  577.848813][T14875] RIP: 0023:0xf7f93579
[  577.848823][T14875] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  577.848834][T14875] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000135
[  577.848846][T14875] RAX: ffffffffffffffda RBX: 0000000080000200 RCX: 0000000000000001
[  577.848853][T14875] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  577.848859][T14875] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  577.848866][T14875] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  577.848872][T14875] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  577.848886][T14875]  </TASK>
[  577.968629][ T7909] usb 6-1: new high-speed USB device number 45 using dummy_hcd
[  578.001143][T14877] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2523'.
[  578.068432][T14806] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  578.129789][ T7909] usb 6-1: config 0 has no interfaces?
[  578.131840][ T7909] usb 6-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  578.135062][ T7909] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  578.139025][ T7909] usb 6-1: config 0 descriptor??
[  578.218435][T14806] usb 5-1: Using ep0 maxpacket: 16
[  578.223760][T14806] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  578.226676][T14806] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  578.229593][T14806] usb 5-1: Product: syz
[  578.230928][T14806] usb 5-1: Manufacturer: syz
[  578.232464][T14806] usb 5-1: SerialNumber: syz
[  578.235615][T14806] usb 5-1: config 0 descriptor??
[  578.355855][T14397] usb 6-1: USB disconnect, device number 45
[  578.466841][   T10] usb 5-1: USB disconnect, device number 60
[  579.286020][T14895] openvswitch: netlink: EtherType 50a is less than min 600
[  579.818402][ T5951] Bluetooth: hci3: command 0x0c1a tx timeout
[  579.818466][ T5948] Bluetooth: hci1: command 0x0c1a tx timeout
[  579.822849][T14871] Bluetooth: hci2: command 0x0401 tx timeout
[  581.635139][T14949] FAULT_INJECTION: forcing a failure.
[  581.635139][T14949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  581.640180][T14949] CPU: 1 UID: 0 PID: 14949 Comm: syz.2.2545 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  581.640200][T14949] Tainted: [L]=SOFTLOCKUP
[  581.640204][T14949] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  581.640212][T14949] Call Trace:
[  581.640216][T14949]  <TASK>
[  581.640221][T14949]  dump_stack_lvl+0x16c/0x1f0
[  581.640242][T14949]  should_fail_ex+0x512/0x640
[  581.640258][T14949]  _copy_from_iter+0x2a4/0x16c0
[  581.640274][T14949]  ? __alloc_skb+0x220/0x410
[  581.640286][T14949]  ? __alloc_skb+0x35d/0x410
[  581.640297][T14949]  ? __pfx__copy_from_iter+0x10/0x10
[  581.640315][T14949]  ? netlink_autobind.isra.0+0x158/0x370
[  581.640337][T14949]  netlink_sendmsg+0x820/0xdd0
[  581.640355][T14949]  ? __pfx_netlink_sendmsg+0x10/0x10
[  581.640373][T14949]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  581.640394][T14949]  ____sys_sendmsg+0xa5d/0xc30
[  581.640413][T14949]  ? __pfx_____sys_sendmsg+0x10/0x10
[  581.640429][T14949]  ? get_compat_msghdr+0x11a/0x170
[  581.640449][T14949]  ___sys_sendmsg+0x134/0x1d0
[  581.640465][T14949]  ? __pfx____sys_sendmsg+0x10/0x10
[  581.640485][T14949]  ? find_held_lock+0x2b/0x80
[  581.640508][T14949]  __sys_sendmsg+0x16d/0x220
[  581.640522][T14949]  ? __pfx___sys_sendmsg+0x10/0x10
[  581.640541][T14949]  ? fput+0x70/0xf0
[  581.640554][T14949]  __do_fast_syscall_32+0xe8/0x680
[  581.640574][T14949]  do_fast_syscall_32+0x32/0x80
[  581.640584][T14949]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  581.640598][T14949] RIP: 0023:0xf7f75579
[  581.640607][T14949] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  581.640618][T14949] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  581.640630][T14949] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  581.640637][T14949] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  581.640644][T14949] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  581.640650][T14949] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  581.640657][T14949] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  581.640670][T14949]  </TASK>
[  582.527937][T14976] FAULT_INJECTION: forcing a failure.
[  582.527937][T14976] name failslab, interval 1, probability 0, space 0, times 0
[  582.532517][T14976] CPU: 3 UID: 0 PID: 14976 Comm: syz.4.2554 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  582.532537][T14976] Tainted: [L]=SOFTLOCKUP
[  582.532541][T14976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  582.532553][T14976] Call Trace:
[  582.532558][T14976]  <TASK>
[  582.532565][T14976]  dump_stack_lvl+0x16c/0x1f0
[  582.532586][T14976]  should_fail_ex+0x512/0x640
[  582.532599][T14976]  ? __kmalloc_noprof+0xca/0x910
[  582.532614][T14976]  should_failslab+0xc2/0x120
[  582.532631][T14976]  __kmalloc_noprof+0xeb/0x910
[  582.532643][T14976]  ? __kernel_text_address+0xd/0x40
[  582.532657][T14976]  ? constrain_params_by_rules+0x175/0xca0
[  582.532678][T14976]  ? constrain_params_by_rules+0x175/0xca0
[  582.532696][T14976]  constrain_params_by_rules+0x175/0xca0
[  582.532716][T14976]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  582.532733][T14976]  ? lockdep_hardirqs_on+0x7c/0x110
[  582.532752][T14976]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  582.532773][T14976]  ? __kasan_kmalloc+0xaa/0xb0
[  582.532788][T14976]  ? snd_pcm_oss_change_params_locked+0x247/0x3ab0
[  582.532799][T14976]  ? snd_pcm_oss_make_ready_locked+0xb7/0x130
[  582.532809][T14976]  ? snd_pcm_oss_sync+0x32e/0x840
[  582.532824][T14976]  ? rcu_is_watching+0x12/0xc0
[  582.532839][T14976]  ? snd_interval_refine+0x2fa/0x580
[  582.532856][T14976]  snd_pcm_hw_refine+0x7de/0xad0
[  582.532876][T14976]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  582.532899][T14976]  ? __asan_memset+0x23/0x50
[  582.532912][T14976]  ? _snd_pcm_hw_param_min+0x259/0x630
[  582.532932][T14976]  snd_pcm_oss_change_params_locked+0x7d7/0x3ab0
[  582.532947][T14976]  ? find_held_lock+0x2b/0x80
[  582.532967][T14976]  ? snd_pcm_oss_sync+0x30c/0x840
[  582.532983][T14976]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  582.533014][T14976]  ? __pfx___mutex_lock+0x10/0x10
[  582.533041][T14976]  ? get_pid_task+0x106/0x250
[  582.533068][T14976]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  582.533087][T14976]  snd_pcm_oss_sync+0x32e/0x840
[  582.533110][T14976]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  582.533130][T14976]  snd_pcm_oss_release+0x28b/0x310
[  582.533148][T14976]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  582.533165][T14976]  __fput+0x402/0xb70
[  582.533192][T14976]  fput_close_sync+0x118/0x260
[  582.533213][T14976]  ? __pfx_fput_close_sync+0x10/0x10
[  582.533227][T14976]  ? dnotify_flush+0x79/0x4c0
[  582.533242][T14976]  __ia32_sys_close+0x8b/0x120
[  582.533256][T14976]  __do_fast_syscall_32+0xe8/0x680
[  582.533276][T14976]  do_fast_syscall_32+0x32/0x80
[  582.533286][T14976]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  582.533303][T14976] RIP: 0023:0xf7f93579
[  582.533313][T14976] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  582.533324][T14976] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000006
[  582.533336][T14976] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  582.533343][T14976] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  582.533350][T14976] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  582.533356][T14976] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  582.533363][T14976] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  582.533377][T14976]  </TASK>
[  582.906230][T14986] FAULT_INJECTION: forcing a failure.
[  582.906230][T14986] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  582.912038][T14986] CPU: 3 UID: 0 PID: 14986 Comm: syz.2.2558 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  582.912068][T14986] Tainted: [L]=SOFTLOCKUP
[  582.912074][T14986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  582.912086][T14986] Call Trace:
[  582.912094][T14986]  <TASK>
[  582.912101][T14986]  dump_stack_lvl+0x16c/0x1f0
[  582.912134][T14986]  should_fail_ex+0x512/0x640
[  582.912159][T14986]  _copy_to_user+0x32/0xd0
[  582.912181][T14986]  simple_read_from_buffer+0xcb/0x170
[  582.912209][T14986]  proc_fail_nth_read+0x197/0x240
[  582.912240][T14986]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  582.912271][T14986]  ? rw_verify_area+0xcf/0x6c0
[  582.912295][T14986]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  582.912329][T14986]  vfs_read+0x1e4/0xcf0
[  582.912357][T14986]  ? __pfx___mutex_lock+0x10/0x10
[  582.912387][T14986]  ? __pfx_vfs_read+0x10/0x10
[  582.912410][T14986]  ? find_held_lock+0x2b/0x80
[  582.912441][T14986]  ? __fget_files+0x20e/0x3c0
[  582.912475][T14986]  ksys_read+0x12a/0x250
[  582.912499][T14986]  ? __pfx_ksys_read+0x10/0x10
[  582.912533][T14986]  __do_fast_syscall_32+0xe8/0x680
[  582.912565][T14986]  do_fast_syscall_32+0x32/0x80
[  582.912582][T14986]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  582.912605][T14986] RIP: 0023:0xf7f75579
[  582.912619][T14986] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  582.912637][T14986] RSP: 002b:00000000f5466590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  582.912655][T14986] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5466620
[  582.912666][T14986] RDX: 000000000000000f RSI: 00000000f7406ff4 RDI: 0000000000000000
[  582.912677][T14986] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  582.912687][T14986] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  582.912698][T14986] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  582.912723][T14986]  </TASK>
[  583.431851][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  583.431868][   T40] audit: type=1804 audit(1766826638.664:895): pid=15001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2564" name="/newroot/19/file1" dev="fuse" ino=1 res=1 errno=0
[  583.593678][T14999] netlink: 124 bytes leftover after parsing attributes in process `syz.1.2563'.
[  585.479843][T15032] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  585.482536][T15032] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  585.486002][T15032] vhci_hcd vhci_hcd.0: Device attached
[  585.494032][T15039] vhci_hcd: connection closed
[  585.494839][ T6125] vhci_hcd vhci_hcd.1: stop threads
[  585.500062][ T6125] vhci_hcd vhci_hcd.1: release socket
[  585.526493][ T6125] vhci_hcd vhci_hcd.1: disconnect device
[  585.578366][ T5948] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  585.578426][T14871] Bluetooth: hci2: command 0x0401 tx timeout
[  586.121171][ T6678] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  586.268386][ T6678] usb 9-1: Using ep0 maxpacket: 16
[  586.274530][ T6678] usb 9-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  586.278060][ T6678] usb 9-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  586.285235][ T6678] usb 9-1: Product: syz
[  586.286594][ T6678] usb 9-1: Manufacturer: syz
[  586.288598][ T6678] usb 9-1: SerialNumber: syz
[  586.291613][ T6678] usb 9-1: config 0 descriptor??
[  586.519387][ T6678] usb 9-1: USB disconnect, device number 5
[  586.621717][T14397] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[  586.780091][T14397] usb 6-1: config 0 has no interfaces?
[  586.782258][T14397] usb 6-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  586.785887][T14397] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  586.791403][T14397] usb 6-1: config 0 descriptor??
[  587.046311][T14397] usb 6-1: USB disconnect, device number 46
[  588.038510][ T7909] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[  588.190157][ T7909] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  588.194227][ T7909] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  588.197938][ T7909] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  588.201368][ T7909] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  588.206125][ T7909] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  588.209382][ T7909] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  588.214720][ T7909] usb 6-1: config 0 descriptor??
[  588.538465][T14871] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  588.539373][ T5948] Bluetooth: hci2: command 0x0401 tx timeout
[  588.629513][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.632029][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.634467][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.658353][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.660864][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.663651][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.666154][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.670610][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.673095][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.675657][ T7909] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  588.700411][ T7909] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  589.060667][ T6678] usb 6-1: USB disconnect, device number 47
[  589.278506][  T142] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[  589.368403][ T6470] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  589.438407][  T142] usb 5-1: Using ep0 maxpacket: 16
[  589.442828][  T142] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  589.445825][  T142] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  589.448945][  T142] usb 5-1: Product: syz
[  589.450332][  T142] usb 5-1: Manufacturer: syz
[  589.451901][  T142] usb 5-1: SerialNumber: syz
[  589.454679][  T142] usb 5-1: config 0 descriptor??
[  589.518434][ T6470] usb 9-1: Using ep0 maxpacket: 16
[  589.525093][ T6470] usb 9-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  589.529833][ T6470] usb 9-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  589.533400][ T6470] usb 9-1: Product: syz
[  589.535201][ T6470] usb 9-1: Manufacturer: syz
[  589.537180][ T6470] usb 9-1: SerialNumber: syz
[  589.541543][ T6470] usb 9-1: config 0 descriptor??
[  589.666374][  T142] usb 5-1: USB disconnect, device number 61
[  589.783325][ T7909] usb 9-1: USB disconnect, device number 6
[  591.568401][ T6678] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[  591.748380][ T6678] usb 5-1: Using ep0 maxpacket: 16
[  591.756204][ T6678] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  591.760079][ T6678] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  591.763637][ T6678] usb 5-1: Product: syz
[  591.765505][ T6678] usb 5-1: Manufacturer: syz
[  591.767564][ T6678] usb 5-1: SerialNumber: syz
[  591.780185][ T6678] usb 5-1: config 0 descriptor??
[  591.787104][T15160] mac80211_hwsim hwsim16 syzkaller0: entered promiscuous mode
[  591.789943][T15160] mac80211_hwsim hwsim16 syzkaller0: entered allmulticast mode
[  591.830241][   T40] audit: type=1326 audit(1766826647.064:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.837711][   T40] audit: type=1326 audit(1766826647.064:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.845125][   T40] audit: type=1326 audit(1766826647.064:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.855140][   T40] audit: type=1326 audit(1766826647.064:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.863068][   T40] audit: type=1326 audit(1766826647.064:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.870449][   T40] audit: type=1326 audit(1766826647.074:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=233 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.880228][   T40] audit: type=1326 audit(1766826647.074:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.888024][   T40] audit: type=1326 audit(1766826647.074:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.898224][   T40] audit: type=1326 audit(1766826647.084:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.909483][   T40] audit: type=1326 audit(1766826647.084:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15156 comm="syz.2.2615" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75579 code=0x7ffc0000
[  591.995685][T15090] usb 5-1: USB disconnect, device number 62
[  592.593293][T15174] tipc: Started in network mode
[  592.595057][T15174] tipc: Node identity ee9207c4ba0f, cluster identity 4711
[  592.597561][T15174] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  592.600990][T15174] syzkaller0: entered promiscuous mode
[  592.602905][T15174] syzkaller0: entered allmulticast mode
[  592.636941][T15174] tipc: Resetting bearer <eth:syzkaller0>
[  592.658683][T15173] tipc: Resetting bearer <eth:syzkaller0>
[  592.696493][T15173] tipc: Disabling bearer <eth:syzkaller0>
[  592.778423][ T5948] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  592.788489][ T5948] Bluetooth: hci2: command 0x0401 tx timeout
[  593.140402][T15204] FAULT_INJECTION: forcing a failure.
[  593.140402][T15204] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  593.147049][T15204] CPU: 3 UID: 0 PID: 15204 Comm: syz.2.2629 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  593.147082][T15204] Tainted: [L]=SOFTLOCKUP
[  593.147089][T15204] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  593.147101][T15204] Call Trace:
[  593.147109][T15204]  <TASK>
[  593.147118][T15204]  dump_stack_lvl+0x16c/0x1f0
[  593.147170][T15204]  should_fail_ex+0x512/0x640
[  593.147249][T15204]  _copy_from_user+0x2e/0xd0
[  593.147269][T15204]  kstrtouint_from_user+0xd6/0x1d0
[  593.147293][T15204]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  593.147316][T15204]  ? __lock_acquire+0x436/0x2890
[  593.147346][T15204]  proc_fail_nth_write+0x83/0x220
[  593.147366][T15204]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  593.147386][T15204]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  593.147400][T15204]  vfs_write+0x2a0/0x11d0
[  593.147429][T15204]  ? __pfx___mutex_lock+0x10/0x10
[  593.147467][T15204]  ? __pfx_vfs_write+0x10/0x10
[  593.147487][T15204]  ? find_held_lock+0x2b/0x80
[  593.147519][T15204]  ? __fget_files+0x20e/0x3c0
[  593.147553][T15204]  ksys_write+0x12a/0x250
[  593.147578][T15204]  ? __pfx_ksys_write+0x10/0x10
[  593.147609][T15204]  __do_fast_syscall_32+0xe8/0x680
[  593.147639][T15204]  do_fast_syscall_32+0x32/0x80
[  593.147657][T15204]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  593.147679][T15204] RIP: 0023:0xf7f75579
[  593.147695][T15204] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  593.147713][T15204] RSP: 002b:00000000f5466590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  593.147731][T15204] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5466620
[  593.147744][T15204] RDX: 0000000000000001 RSI: 00000000f7406ff4 RDI: 0000000000000000
[  593.147756][T15204] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  593.147766][T15204] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  593.147778][T15204] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  593.147802][T15204]  </TASK>
[  593.410451][ T6027] usb 6-1: new high-speed USB device number 48 using dummy_hcd
[  593.589905][ T6027] usb 6-1: Using ep0 maxpacket: 16
[  593.595682][ T6027] usb 6-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  593.599816][ T6027] usb 6-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  593.612581][ T6027] usb 6-1: Product: syz
[  593.614582][ T6027] usb 6-1: Manufacturer: syz
[  593.616330][ T6027] usb 6-1: SerialNumber: syz
[  593.619308][ T6027] usb 6-1: config 0 descriptor??
[  593.836025][ T6027] usb 6-1: USB disconnect, device number 48
[  594.716802][T15256] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.719456][T15256] bridge0: port 1(bridge_slave_0) entered disabled state
[  594.841125][T15256] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  594.849383][T15256] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  594.955041][T12717] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  594.961422][T12717] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  594.966684][T12717] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  594.970868][T12717] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  595.018015][T15262] syzkaller0: entered promiscuous mode
[  595.020212][T15262] syzkaller0: entered allmulticast mode
[  595.528362][T15090] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  595.718357][T15090] usb 9-1: Using ep0 maxpacket: 16
[  595.730922][T15090] usb 9-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  595.734261][T15090] usb 9-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  595.737435][T15090] usb 9-1: Product: syz
[  595.739559][T15090] usb 9-1: Manufacturer: syz
[  595.741152][T15090] usb 9-1: SerialNumber: syz
[  595.744756][T15090] usb 9-1: config 0 descriptor??
[  596.019009][  T142] usb 9-1: USB disconnect, device number 7
[  596.707879][T15295] serio: Serial port ptm0
[  598.068417][T15090] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  598.246670][T15090] usb 9-1: config 0 has no interfaces?
[  598.385473][T15329] syzkaller0: entered promiscuous mode
[  598.387932][T15329] syzkaller0: entered allmulticast mode
[  598.478360][T14806] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[  598.577473][T15090] usb 9-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  598.628340][T14806] usb 6-1: Using ep0 maxpacket: 16
[  598.984619][T15090] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  599.001593][T15090] usb 9-1: config 0 descriptor??
[  599.251597][ T6864] usb 9-1: USB disconnect, device number 8
[  599.282950][T14806] usb 6-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  599.285950][T14806] usb 6-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  599.290653][T14806] usb 6-1: Product: syz
[  599.298424][T14806] usb 6-1: Manufacturer: syz
[  599.300079][T14806] usb 6-1: SerialNumber: syz
[  599.310313][T14806] usb 6-1: config 0 descriptor??
[  599.525486][  T142] usb 6-1: USB disconnect, device number 49
[  600.023698][T15350] FAULT_INJECTION: forcing a failure.
[  600.023698][T15350] name failslab, interval 1, probability 0, space 0, times 0
[  600.027854][T15350] CPU: 0 UID: 0 PID: 15350 Comm: syz.2.2680 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  600.027872][T15350] Tainted: [L]=SOFTLOCKUP
[  600.027876][T15350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  600.027883][T15350] Call Trace:
[  600.027888][T15350]  <TASK>
[  600.027893][T15350]  dump_stack_lvl+0x16c/0x1f0
[  600.027914][T15350]  should_fail_ex+0x512/0x640
[  600.027928][T15350]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  600.027944][T15350]  should_failslab+0xc2/0x120
[  600.027961][T15350]  kmem_cache_alloc_node_noprof+0x86/0x800
[  600.027975][T15350]  ? __alloc_skb+0x156/0x410
[  600.027991][T15350]  ? __alloc_skb+0x156/0x410
[  600.028002][T15350]  __alloc_skb+0x156/0x410
[  600.028013][T15350]  ? __alloc_skb+0x35d/0x410
[  600.028025][T15350]  ? __pfx___alloc_skb+0x10/0x10
[  600.028037][T15350]  ? netlink_autobind.isra.0+0x158/0x370
[  600.028057][T15350]  netlink_alloc_large_skb+0x69/0x140
[  600.028074][T15350]  netlink_sendmsg+0x698/0xdd0
[  600.028093][T15350]  ? __pfx_netlink_sendmsg+0x10/0x10
[  600.028111][T15350]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  600.028137][T15350]  ____sys_sendmsg+0xa5d/0xc30
[  600.028157][T15350]  ? __pfx_____sys_sendmsg+0x10/0x10
[  600.028173][T15350]  ? get_compat_msghdr+0x11a/0x170
[  600.028194][T15350]  ___sys_sendmsg+0x134/0x1d0
[  600.028209][T15350]  ? __pfx____sys_sendmsg+0x10/0x10
[  600.028229][T15350]  ? find_held_lock+0x2b/0x80
[  600.028253][T15350]  __sys_sendmsg+0x16d/0x220
[  600.028290][T15350]  ? __pfx___sys_sendmsg+0x10/0x10
[  600.028321][T15350]  ? syscall_user_dispatch+0x78/0x140
[  600.028347][T15350]  __do_fast_syscall_32+0xe8/0x680
[  600.028367][T15350]  do_fast_syscall_32+0x32/0x80
[  600.028377][T15350]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  600.028391][T15350] RIP: 0023:0xf7f75579
[  600.028401][T15350] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  600.028412][T15350] RSP: 002b:00000000f544555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  600.028423][T15350] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000000
[  600.028430][T15350] RDX: 0000000000004040 RSI: 0000000000000000 RDI: 0000000000000000
[  600.028449][T15350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  600.028456][T15350] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  600.028462][T15350] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  600.028476][T15350]  </TASK>
[  601.806901][T15384] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2690'.
[  601.848451][   T53] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[  601.880825][T15389] binder: 15386:15389 ioctl 5000943a 0 returned -22
[  601.884468][T15389] FAULT_INJECTION: forcing a failure.
[  601.884468][T15389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  601.890626][T15389] CPU: 0 UID: 0 PID: 15389 Comm: syz.2.2691 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  601.890654][T15389] Tainted: [L]=SOFTLOCKUP
[  601.890660][T15389] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  601.890670][T15389] Call Trace:
[  601.890677][T15389]  <TASK>
[  601.890684][T15389]  dump_stack_lvl+0x16c/0x1f0
[  601.890714][T15389]  should_fail_ex+0x512/0x640
[  601.890738][T15389]  _copy_from_user+0x2e/0xd0
[  601.890759][T15389]  binder_thread_write+0xa5c/0x4e40
[  601.890794][T15389]  ? __lock_acquire+0x436/0x2890
[  601.890813][T15389]  ? __pfx_binder_thread_write+0x10/0x10
[  601.890841][T15389]  ? binder_debug+0xde/0x1a0
[  601.890866][T15389]  ? binder_debug+0xde/0x1a0
[  601.890887][T15389]  ? __pfx_binder_debug+0x10/0x10
[  601.890910][T15389]  ? find_held_lock+0x2b/0x80
[  601.890955][T15389]  ? __pfx_binder_ioctl+0x10/0x10
[  601.890980][T15389]  binder_ioctl+0x2916/0x7360
[  601.891013][T15389]  ? tomoyo_path_number_perm+0x295/0x580
[  601.891035][T15389]  ? tomoyo_path_number_perm+0x18d/0x580
[  601.891058][T15389]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  601.891108][T15389]  ? __pfx_binder_ioctl+0x10/0x10
[  601.891139][T15389]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  601.891166][T15389]  ? do_vfs_ioctl+0x128/0x14f0
[  601.891187][T15389]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  601.891215][T15389]  ? find_held_lock+0x2b/0x80
[  601.891238][T15389]  ? hook_file_ioctl_common+0x144/0x410
[  601.891265][T15389]  ? __fget_files+0x20e/0x3c0
[  601.891288][T15389]  ? __fput_deferred+0x480/0x480
[  601.891308][T15389]  ? __pfx_binder_ioctl+0x10/0x10
[  601.891333][T15389]  compat_ptr_ioctl+0x6e/0xa0
[  601.891354][T15389]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  601.891375][T15389]  __ia32_compat_sys_ioctl+0x242/0x370
[  601.891406][T15389]  __do_fast_syscall_32+0xe8/0x680
[  601.891435][T15389]  do_fast_syscall_32+0x32/0x80
[  601.891452][T15389]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  601.891475][T15389] RIP: 0023:0xf7f75579
[  601.891490][T15389] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  601.891508][T15389] RSP: 002b:00000000f53e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  601.891525][T15389] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0306201
[  601.891535][T15389] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  601.891546][T15389] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  601.891557][T15389] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  601.891567][T15389] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  601.891592][T15389]  </TASK>
[  601.891601][T15389] binder: 15386:15389 ioctl c0306201 800001c0 returned -14
[  601.978427][T14871] Bluetooth: hci2: command 0x0401 tx timeout
[  601.990978][ T5948] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  602.028431][   T53] usb 5-1: Using ep0 maxpacket: 16
[  602.032941][   T53] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  602.036016][   T53] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  602.039440][   T53] usb 5-1: Product: syz
[  602.041175][   T53] usb 5-1: Manufacturer: syz
[  602.043419][   T53] usb 5-1: SerialNumber: syz
[  602.046635][   T53] usb 5-1: config 0 descriptor??
[  602.266637][ T6027] usb 5-1: USB disconnect, device number 63
[  602.548436][   T10] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[  602.688444][   T10] usb 6-1: device descriptor read/64, error -71
[  602.958049][T15402] genirq: Flags mismatch irq 4. 00200000 (aio_iiro_16) vs. 00200080 (ttyS0)
[  603.011644][   T10] usb 6-1: new high-speed USB device number 51 using dummy_hcd
[  603.148402][   T10] usb 6-1: device descriptor read/64, error -71
[  603.269080][   T10] usb usb6-port1: attempt power cycle
[  603.608584][   T10] usb 6-1: new high-speed USB device number 52 using dummy_hcd
[  603.629268][   T10] usb 6-1: device descriptor read/8, error -71
[  603.845922][T15417] pim6reg1: entered allmulticast mode
[  603.849106][T15417] FAULT_INJECTION: forcing a failure.
[  603.849106][T15417] name failslab, interval 1, probability 0, space 0, times 0
[  603.854443][T15417] CPU: 1 UID: 0 PID: 15417 Comm: syz.2.2703 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  603.854471][T15417] Tainted: [L]=SOFTLOCKUP
[  603.854477][T15417] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  603.854488][T15417] Call Trace:
[  603.854495][T15417]  <TASK>
[  603.854503][T15417]  dump_stack_lvl+0x16c/0x1f0
[  603.854534][T15417]  should_fail_ex+0x512/0x640
[  603.854558][T15417]  should_failslab+0xc2/0x120
[  603.854584][T15417]  kmem_cache_alloc_node_noprof+0x86/0x800
[  603.854606][T15417]  ? __alloc_skb+0x156/0x410
[  603.854631][T15417]  ? __alloc_skb+0x156/0x410
[  603.854648][T15417]  __alloc_skb+0x156/0x410
[  603.854667][T15417]  ? __alloc_skb+0x35d/0x410
[  603.854685][T15417]  ? __pfx___alloc_skb+0x10/0x10
[  603.854705][T15417]  ? rtnl_prop_list_size+0x295/0x2d0
[  603.854730][T15417]  ? if_nlmsg_size+0x4a7/0xb30
[  603.854757][T15417]  rtmsg_ifinfo_build_skb+0x81/0x280
[  603.854790][T15417]  rtmsg_ifinfo+0x9f/0x1a0
[  603.854822][T15417]  __dev_notify_flags+0x24c/0x2e0
[  603.854846][T15417]  ? __pfx___dev_notify_flags+0x10/0x10
[  603.854868][T15417]  ? __dev_change_flags+0x3d5/0x6f0
[  603.854893][T15417]  ? __pfx___dev_change_flags+0x10/0x10
[  603.854918][T15417]  ? __pfx_osq_unlock+0x10/0x10
[  603.854942][T15417]  netif_change_flags+0x108/0x160
[  603.854968][T15417]  dev_change_flags+0xba/0x250
[  603.854997][T15417]  dev_ifsioc+0x148f/0x1ee0
[  603.855022][T15417]  ? __pfx_dev_ifsioc+0x10/0x10
[  603.855041][T15417]  ? __pfx___mutex_lock+0x10/0x10
[  603.855109][T15417]  ? dev_load+0x8e/0x240
[  603.855136][T15417]  dev_ioctl+0x223/0x1060
[  603.855160][T15417]  sock_do_ioctl+0x19d/0x280
[  603.855186][T15417]  ? __pfx_sock_do_ioctl+0x10/0x10
[  603.855212][T15417]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  603.855244][T15417]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  603.855270][T15417]  ? unix_ioctl+0x9f/0x580
[  603.855304][T15417]  compat_sock_ioctl+0x301/0x730
[  603.855325][T15417]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  603.855341][T15417]  ? hook_file_ioctl_common+0x144/0x410
[  603.855369][T15417]  ? __fget_files+0x20e/0x3c0
[  603.855393][T15417]  ? __fput_deferred+0x480/0x480
[  603.855417][T15417]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  603.855433][T15417]  __ia32_compat_sys_ioctl+0x242/0x370
[  603.855475][T15417]  __do_fast_syscall_32+0xe8/0x680
[  603.855503][T15417]  do_fast_syscall_32+0x32/0x80
[  603.855517][T15417]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  603.855536][T15417] RIP: 0023:0xf7f75579
[  603.855549][T15417] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  603.855564][T15417] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  603.855579][T15417] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008914
[  603.855589][T15417] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  603.855598][T15417] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  603.855606][T15417] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  603.855616][T15417] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  603.855636][T15417]  </TASK>
[  603.868559][   T10] usb 6-1: new high-speed USB device number 53 using dummy_hcd
[  604.001705][   T10] usb 6-1: device descriptor read/8, error -71
[  604.121030][   T10] usb usb6-port1: unable to enumerate USB device
[  604.158696][T15419] FAULT_INJECTION: forcing a failure.
[  604.158696][T15419] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  604.164673][T15419] CPU: 1 UID: 0 PID: 15419 Comm: syz.0.2705 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  604.164705][T15419] Tainted: [L]=SOFTLOCKUP
[  604.164712][T15419] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  604.164725][T15419] Call Trace:
[  604.164733][T15419]  <TASK>
[  604.164741][T15419]  dump_stack_lvl+0x16c/0x1f0
[  604.164777][T15419]  should_fail_ex+0x512/0x640
[  604.164803][T15419]  _copy_from_iter+0x2a4/0x16c0
[  604.164829][T15419]  ? __alloc_skb+0x220/0x410
[  604.164850][T15419]  ? __alloc_skb+0x35d/0x410
[  604.164870][T15419]  ? __pfx__copy_from_iter+0x10/0x10
[  604.164892][T15419]  ? netlink_autobind.isra.0+0x158/0x370
[  604.164931][T15419]  netlink_sendmsg+0x820/0xdd0
[  604.164963][T15419]  ? __pfx_netlink_sendmsg+0x10/0x10
[  604.164995][T15419]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  604.165033][T15419]  ____sys_sendmsg+0xa5d/0xc30
[  604.165065][T15419]  ? __pfx_____sys_sendmsg+0x10/0x10
[  604.165094][T15419]  ? get_compat_msghdr+0x11a/0x170
[  604.165129][T15419]  ___sys_sendmsg+0x134/0x1d0
[  604.165156][T15419]  ? __pfx____sys_sendmsg+0x10/0x10
[  604.165190][T15419]  ? find_held_lock+0x2b/0x80
[  604.165240][T15419]  __sys_sendmsg+0x16d/0x220
[  604.165264][T15419]  ? __pfx___sys_sendmsg+0x10/0x10
[  604.165303][T15419]  __do_fast_syscall_32+0xe8/0x680
[  604.165403][T15419]  do_fast_syscall_32+0x32/0x80
[  604.165419][T15419]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  604.165439][T15419] RIP: 0023:0xf7f15579
[  604.165454][T15419] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  604.165471][T15419] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  604.165488][T15419] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  604.165498][T15419] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  604.165509][T15419] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  604.165519][T15419] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  604.165530][T15419] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  604.165550][T15419]  </TASK>
[  604.352049][T15433] FAULT_INJECTION: forcing a failure.
[  604.352049][T15433] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  604.356438][T15433] CPU: 0 UID: 0 PID: 15433 Comm: syz.0.2709 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  604.356458][T15433] Tainted: [L]=SOFTLOCKUP
[  604.356463][T15433] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  604.356470][T15433] Call Trace:
[  604.356475][T15433]  <TASK>
[  604.356481][T15433]  dump_stack_lvl+0x16c/0x1f0
[  604.356502][T15433]  should_fail_ex+0x512/0x640
[  604.356518][T15433]  _copy_from_iter+0x2a4/0x16c0
[  604.356533][T15433]  ? __alloc_skb+0x220/0x410
[  604.356545][T15433]  ? __alloc_skb+0x35d/0x410
[  604.356557][T15433]  ? __pfx__copy_from_iter+0x10/0x10
[  604.356570][T15433]  ? netlink_autobind.isra.0+0x158/0x370
[  604.356592][T15433]  netlink_sendmsg+0x820/0xdd0
[  604.356610][T15433]  ? __pfx_netlink_sendmsg+0x10/0x10
[  604.356628][T15433]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  604.356649][T15433]  ____sys_sendmsg+0xa5d/0xc30
[  604.356668][T15433]  ? __pfx_____sys_sendmsg+0x10/0x10
[  604.356684][T15433]  ? get_compat_msghdr+0x11a/0x170
[  604.356704][T15433]  ___sys_sendmsg+0x134/0x1d0
[  604.356720][T15433]  ? __pfx____sys_sendmsg+0x10/0x10
[  604.356740][T15433]  ? find_held_lock+0x2b/0x80
[  604.356764][T15433]  __sys_sendmsg+0x16d/0x220
[  604.356778][T15433]  ? __pfx___sys_sendmsg+0x10/0x10
[  604.356798][T15433]  ? do_user_addr_fault+0x843/0x1370
[  604.356814][T15433]  __do_fast_syscall_32+0xe8/0x680
[  604.356834][T15433]  do_fast_syscall_32+0x32/0x80
[  604.356844][T15433]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  604.356858][T15433] RIP: 0023:0xf7f15579
[  604.356868][T15433] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  604.356879][T15433] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  604.356890][T15433] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000000
[  604.356897][T15433] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  604.356903][T15433] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  604.356910][T15433] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  604.356916][T15433] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  604.356930][T15433]  </TASK>
[  604.768612][T15439] binder: 15436:15439 ioctl 5000943a 0 returned -22
[  605.364402][T15446] pim6reg1: entered allmulticast mode
[  605.648930][ T5948] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  605.680187][T15453] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2717'.
[  606.172887][T15464] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2721'.
[  606.176003][T15464] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  606.194083][T15464] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  606.265937][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  606.265951][   T40] audit: type=1326 audit(1766826661.494:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15460 comm="syz.4.2721" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f93579 code=0x0
[  607.272983][T15480] netlink: 'syz.1.2723': attribute type 4 has an invalid length.
[  607.299194][T15480] netlink: 'syz.1.2723': attribute type 4 has an invalid length.
[  607.380528][T15485] mac80211_hwsim hwsim16 syzkaller0: Caught tx_queue_len zero misconfig
[  607.979963][T15490] netlink: 1072 bytes leftover after parsing attributes in process `syz.4.2729'.
[  608.038174][T15492] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2729'.
[  608.225644][T15501] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  608.228560][T15501] syzkaller0: entered promiscuous mode
[  608.230331][T15501] syzkaller0: entered allmulticast mode
[  608.262904][T15501] syzkaller0: mtu less than device minimum
[  608.266873][T15500] tipc: Resetting bearer <eth:syzkaller0>
[  608.282635][T15500] tipc: Disabling bearer <eth:syzkaller0>
[  609.049289][T15520] FAULT_INJECTION: forcing a failure.
[  609.049289][T15520] name failslab, interval 1, probability 0, space 0, times 0
[  609.053110][T15520] CPU: 2 UID: 0 PID: 15520 Comm: syz.0.2736 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  609.053129][T15520] Tainted: [L]=SOFTLOCKUP
[  609.053133][T15520] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  609.053140][T15520] Call Trace:
[  609.053145][T15520]  <TASK>
[  609.053149][T15520]  dump_stack_lvl+0x16c/0x1f0
[  609.053243][T15520]  should_fail_ex+0x512/0x640
[  609.053277][T15520]  ? __kmalloc_cache_noprof+0x5f/0x800
[  609.053296][T15520]  should_failslab+0xc2/0x120
[  609.053315][T15520]  __kmalloc_cache_noprof+0x80/0x800
[  609.053328][T15520]  ? qfq_change_class+0xcf8/0x1da0
[  609.053347][T15520]  ? qfq_change_class+0xcf8/0x1da0
[  609.053363][T15520]  qfq_change_class+0xcf8/0x1da0
[  609.053382][T15520]  ? __pfx_qfq_change_class+0x10/0x10
[  609.053400][T15520]  ? qdisc_match_from_root+0x16f/0x260
[  609.053418][T15520]  ? __pfx_qfq_change_class+0x10/0x10
[  609.053434][T15520]  tc_ctl_tclass+0x59d/0x16c0
[  609.053447][T15520]  ? __pfx_tc_ctl_tclass+0x10/0x10
[  609.053457][T15520]  ? __mutex_lock+0x27b/0x1ca0
[  609.053475][T15520]  ? rtnetlink_rcv_msg+0x371/0xe90
[  609.053491][T15520]  ? __lock_acquire+0x436/0x2890
[  609.053512][T15520]  ? __pfx_tc_ctl_tclass+0x10/0x10
[  609.053523][T15520]  rtnetlink_rcv_msg+0x3c9/0xe90
[  609.053540][T15520]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  609.053558][T15520]  ? __lock_acquire+0x436/0x2890
[  609.053571][T15520]  netlink_rcv_skb+0x158/0x420
[  609.053587][T15520]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  609.053604][T15520]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  609.053624][T15520]  ? netlink_deliver_tap+0x1ae/0xd30
[  609.053642][T15520]  netlink_unicast+0x5aa/0x870
[  609.053660][T15520]  ? __pfx_netlink_unicast+0x10/0x10
[  609.053681][T15520]  netlink_sendmsg+0x8c8/0xdd0
[  609.053699][T15520]  ? __pfx_netlink_sendmsg+0x10/0x10
[  609.053717][T15520]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  609.053738][T15520]  ____sys_sendmsg+0xa5d/0xc30
[  609.053757][T15520]  ? __pfx_____sys_sendmsg+0x10/0x10
[  609.053774][T15520]  ? get_compat_msghdr+0x11a/0x170
[  609.053794][T15520]  ___sys_sendmsg+0x134/0x1d0
[  609.053809][T15520]  ? __pfx____sys_sendmsg+0x10/0x10
[  609.053830][T15520]  ? find_held_lock+0x2b/0x80
[  609.053852][T15520]  __sys_sendmsg+0x16d/0x220
[  609.053866][T15520]  ? __pfx___sys_sendmsg+0x10/0x10
[  609.053886][T15520]  ? do_user_addr_fault+0x843/0x1370
[  609.053902][T15520]  __do_fast_syscall_32+0xe8/0x680
[  609.053921][T15520]  do_fast_syscall_32+0x32/0x80
[  609.053931][T15520]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  609.053945][T15520] RIP: 0023:0xf7f15579
[  609.053954][T15520] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  609.053965][T15520] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  609.053976][T15520] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000000
[  609.053983][T15520] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  609.053990][T15520] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  609.053996][T15520] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  609.054003][T15520] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  609.054016][T15520]  </TASK>
[  609.179854][T15518] ==================================================================
[  609.182738][T15518] BUG: KASAN: slab-use-after-free in qfq_reset_qdisc+0x323/0x420
[  609.185588][T15518] Read of size 8 at addr ffff8880706d9750 by task syz.0.2735/15518
[  609.189605][T15518] 
[  609.190903][T15518] CPU: 3 UID: 0 PID: 15518 Comm: syz.0.2735 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  609.190922][T15518] Tainted: [L]=SOFTLOCKUP
[  609.190927][T15518] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  609.190935][T15518] Call Trace:
[  609.190940][T15518]  <TASK>
[  609.190944][T15518]  dump_stack_lvl+0x116/0x1f0
[  609.190966][T15518]  print_report+0xcd/0x630
[  609.190984][T15518]  ? __virt_addr_valid+0x81/0x610
[  609.191029][T15518]  ? __phys_addr+0xe8/0x180
[  609.191048][T15518]  ? qfq_reset_qdisc+0x323/0x420
[  609.191100][T15518]  kasan_report+0xe0/0x110
[  609.191130][T15518]  ? qfq_reset_qdisc+0x323/0x420
[  609.191147][T15518]  qfq_reset_qdisc+0x323/0x420
[  609.191164][T15518]  ? synchronize_rcu_expedited+0x3b9/0x460
[  609.191178][T15518]  ? __pfx_qfq_reset_qdisc+0x10/0x10
[  609.191195][T15518]  qdisc_reset+0xe0/0x630
[  609.191209][T15518]  __qdisc_destroy+0xd3/0x4a0
[  609.191222][T15518]  qdisc_put+0xab/0xe0
[  609.191234][T15518]  dev_shutdown+0x1d0/0x430
[  609.191250][T15518]  unregister_netdevice_many_notify+0xb37/0x2590
[  609.191272][T15518]  ? do_raw_spin_unlock+0x172/0x230
[  609.191287][T15518]  ? ref_tracker_alloc+0x305/0x5b0
[  609.191301][T15518]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  609.191319][T15518]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  609.191333][T15518]  ? linkwatch_fire_event+0x20c/0x270
[  609.191344][T15518]  ? netif_carrier_off+0xa3/0xc0
[  609.191358][T15518]  unregister_netdevice_queue+0x305/0x3c0
[  609.191376][T15518]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  609.191394][T15518]  ? linkwatch_schedule_work+0x181/0x1c0
[  609.191405][T15518]  ? linkwatch_fire_event+0x6f/0x270
[  609.191417][T15518]  __tun_detach+0x119c/0x1490
[  609.191430][T15518]  ? __pfx_tun_chr_close+0x10/0x10
[  609.191440][T15518]  tun_chr_close+0xc2/0x230
[  609.191451][T15518]  __fput+0x402/0xb70
[  609.191464][T15518]  task_work_run+0x150/0x240
[  609.191477][T15518]  ? __pfx_task_work_run+0x10/0x10
[  609.191490][T15518]  ? do_raw_spin_unlock+0x172/0x230
[  609.191504][T15518]  do_exit+0x87f/0x2bd0
[  609.191515][T15518]  ? common_nsleep+0xa1/0xd0
[  609.191528][T15518]  ? __pfx_do_exit+0x10/0x10
[  609.191541][T15518]  __ia32_sys_exit+0x42/0x50
[  609.191552][T15518]  ia32_sys_call+0x1c11/0x1c90
[  609.191564][T15518]  __do_fast_syscall_32+0xe8/0x680
[  609.191583][T15518]  do_fast_syscall_32+0x32/0x80
[  609.191593][T15518]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  609.191608][T15518] RIP: 0023:0xf7f15579
[  609.191617][T15518] Code: Unable to access opcode bytes at 0xf7f1554f.
[  609.191623][T15518] RSP: 002b:00000000f540651c EFLAGS: 00000282 ORIG_RAX: 0000000000000001
[  609.191634][T15518] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  609.191642][T15518] RDX: 0000000021fb9700 RSI: 00000000f73a6ff4 RDI: 00000000f7210170
[  609.191649][T15518] RBP: 00000000f7034979 R08: 0000000000000000 R09: 0000000000000000
[  609.191656][T15518] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  609.191663][T15518] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  609.191674][T15518]  </TASK>
[  609.191678][T15518] 
[  609.290151][T15518] Allocated by task 15517:
[  609.291705][T15518]  kasan_save_stack+0x33/0x60
[  609.293297][T15518]  kasan_save_track+0x14/0x30
[  609.294864][T15518]  __kasan_kmalloc+0xaa/0xb0
[  609.296265][T15518]  qfq_change_class+0x2ba/0x1da0
[  609.297823][T15518]  tc_ctl_tclass+0x59d/0x16c0
[  609.299599][T15518]  rtnetlink_rcv_msg+0x3c9/0xe90
[  609.301266][T15518]  netlink_rcv_skb+0x158/0x420
[  609.302866][T15518]  netlink_unicast+0x5aa/0x870
[  609.304475][T15518]  netlink_sendmsg+0x8c8/0xdd0
[  609.306061][T15518]  ____sys_sendmsg+0xa5d/0xc30
[  609.307658][T15518]  ___sys_sendmsg+0x134/0x1d0
[  609.309262][T15518]  __sys_sendmsg+0x16d/0x220
[  609.310878][T15518]  __do_fast_syscall_32+0xe8/0x680
[  609.312713][T15518]  do_fast_syscall_32+0x32/0x80
[  609.314342][T15518]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  609.316543][T15518] 
[  609.317349][T15518] Freed by task 15520:
[  609.318658][T15518]  kasan_save_stack+0x33/0x60
[  609.320240][T15518]  kasan_save_track+0x14/0x30
[  609.321796][T15518]  kasan_save_free_info+0x3b/0x60
[  609.323458][T15518]  __kasan_slab_free+0x5f/0x80
[  609.324986][T15518]  kfree+0x2f8/0x6e0
[  609.326292][T15518]  qfq_change_class+0x1576/0x1da0
[  609.327980][T15518]  tc_ctl_tclass+0x59d/0x16c0
[  609.329550][T15518]  rtnetlink_rcv_msg+0x3c9/0xe90
[  609.331237][T15518]  netlink_rcv_skb+0x158/0x420
[  609.332829][T15518]  netlink_unicast+0x5aa/0x870
[  609.334433][T15518]  netlink_sendmsg+0x8c8/0xdd0
[  609.336056][T15518]  ____sys_sendmsg+0xa5d/0xc30
[  609.337644][T15518]  ___sys_sendmsg+0x134/0x1d0
[  609.339215][T15518]  __sys_sendmsg+0x16d/0x220
[  609.340762][T15518]  __do_fast_syscall_32+0xe8/0x680
[  609.342504][T15518]  do_fast_syscall_32+0x32/0x80
[  609.344141][T15518]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  609.346217][T15518] 
[  609.347021][T15518] The buggy address belongs to the object at ffff8880706d9700
[  609.347021][T15518]  which belongs to the cache kmalloc-128 of size 128
[  609.351541][T15518] The buggy address is located 80 bytes inside of
[  609.351541][T15518]  freed 128-byte region [ffff8880706d9700, ffff8880706d9780)
[  609.355956][T15518] 
[  609.356771][T15518] The buggy address belongs to the physical page:
[  609.359100][T15518] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x706d9
[  609.362000][T15518] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  609.364483][T15518] page_type: f5(slab)
[  609.365831][T15518] raw: 04fff00000000000 ffff88801b442a00 ffffea0001c013c0 dead000000000003
[  609.368719][T15518] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  609.371545][T15518] page dumped because: kasan: bad access detected
[  609.373854][T15518] page_owner tracks the page as allocated
[  609.375898][T15518] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6335, tgid 6334 (syz.1.78), ts 87452788492, free_ts 76096216670
[  609.382065][T15518]  post_alloc_hook+0x1af/0x220
[  609.383685][T15518]  get_page_from_freelist+0xd0b/0x31a0
[  609.385493][T15518]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  609.387526][T15518]  alloc_pages_mpol+0x1fb/0x550
[  609.389008][T15518]  new_slab+0x2c3/0x430
[  609.390400][T15518]  ___slab_alloc+0xe18/0x1c90
[  609.392039][T15518]  __slab_alloc.constprop.0+0x63/0x110
[  609.393864][T15518]  __kmalloc_noprof+0x4fc/0x910
[  609.395512][T15518]  hash_netportnet6_resize+0x1260/0x1db0
[  609.397375][T15518]  call_ad.constprop.0+0x36d/0x940
[  609.399098][T15518]  ip_set_ad.constprop.0.isra.0+0x3ce/0x870
[  609.401081][T15518]  nfnetlink_rcv_msg+0x9fc/0x1200
[  609.402790][T15518]  netlink_rcv_skb+0x158/0x420
[  609.404411][T15518]  nfnetlink_rcv+0x1b3/0x430
[  609.405950][T15518]  netlink_unicast+0x5aa/0x870
[  609.407556][T15518]  netlink_sendmsg+0x8c8/0xdd0
[  609.409151][T15518] page last free pid 6233 tgid 6232 stack trace:
[  609.411295][T15518]  free_unref_folios+0xa22/0x1610
[  609.412957][T15518]  folios_put_refs+0x4be/0x750
[  609.414553][T15518]  shmem_undo_range+0x58f/0x1140
[  609.416213][T15518]  shmem_evict_inode+0x39e/0xbe0
[  609.417880][T15518]  evict+0x3c2/0xad0
[  609.419204][T15518]  iput.part.0+0x621/0x1190
[  609.420740][T15518]  iput+0x35/0x40
[  609.422021][T15518]  dentry_unlink_inode+0x29c/0x480
[  609.423738][T15518]  __dentry_kill+0x1d0/0x600
[  609.425274][T15518]  finish_dput+0x76/0x480
[  609.426735][T15518]  dput.part.0+0x451/0x570
[  609.428243][T15518]  dput+0x1f/0x30
[  609.429456][T15518]  __fput+0x51c/0xb70
[  609.430787][T15518]  task_work_run+0x150/0x240
[  609.432187][T15518]  exit_to_user_mode_loop+0xfb/0x540
[  609.433864][T15518]  __do_fast_syscall_32+0x4a4/0x680
[  609.435600][T15518] 
[  609.436411][T15518] Memory state around the buggy address:
[  609.438325][T15518]  ffff8880706d9600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  609.441015][T15518]  ffff8880706d9680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  609.443868][T15518] >ffff8880706d9700: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  609.446717][T15518]                                                  ^
[  609.448932][T15518]  ffff8880706d9780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  609.451621][T15518]  ffff8880706d9800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  609.454238][T15518] ==================================================================
[  609.465313][   T40] audit: type=1326 audit(1766826664.694:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15525 comm="syz.1.2739" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  609.488333][T15518] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  609.490723][T15518] CPU: 3 UID: 0 PID: 15518 Comm: syz.0.2735 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  609.494298][T15518] Tainted: [L]=SOFTLOCKUP
[  609.495723][T15518] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  609.499237][T15518] Call Trace:
[  609.500476][T15518]  <TASK>
[  609.501433][T15518]  dump_stack_lvl+0x3d/0x1f0
[  609.502895][T15518]  vpanic+0x640/0x6f0
[  609.504199][T15518]  panic+0xca/0xd0
[  609.505406][T15518]  ? __pfx_panic+0x10/0x10
[  609.506833][T15518]  ? qfq_reset_qdisc+0x323/0x420
[  609.508489][T15518]  ? preempt_schedule_common+0x44/0xc0
[  609.510304][T15518]  ? preempt_schedule_thunk+0x16/0x30
[  609.512280][T15518]  ? check_panic_on_warn+0x1f/0xb0
[  609.514125][T15518]  check_panic_on_warn+0xab/0xb0
[  609.515783][T15518]  end_report+0x107/0x160
[  609.517056][T15518]  kasan_report+0xee/0x110
[  609.518511][T15518]  ? qfq_reset_qdisc+0x323/0x420
[  609.520163][T15518]  qfq_reset_qdisc+0x323/0x420
[  609.521791][T15518]  ? synchronize_rcu_expedited+0x3b9/0x460
[  609.523745][T15518]  ? __pfx_qfq_reset_qdisc+0x10/0x10
[  609.525564][T15518]  qdisc_reset+0xe0/0x630
[  609.527041][T15518]  __qdisc_destroy+0xd3/0x4a0
[  609.528613][T15518]  qdisc_put+0xab/0xe0
[  609.529965][T15518]  dev_shutdown+0x1d0/0x430
[  609.531502][T15518]  unregister_netdevice_many_notify+0xb37/0x2590
[  609.533582][T15518]  ? do_raw_spin_unlock+0x172/0x230
[  609.535319][T15518]  ? ref_tracker_alloc+0x305/0x5b0
[  609.537039][T15518]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  609.539266][T15518]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  609.541063][T15518]  ? linkwatch_fire_event+0x20c/0x270
[  609.542864][T15518]  ? netif_carrier_off+0xa3/0xc0
[  609.544505][T15518]  unregister_netdevice_queue+0x305/0x3c0
[  609.546368][T15518]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  609.548422][T15518]  ? linkwatch_schedule_work+0x181/0x1c0
[  609.550256][T15518]  ? linkwatch_fire_event+0x6f/0x270
[  609.552033][T15518]  __tun_detach+0x119c/0x1490
[  609.553590][T15518]  ? __pfx_tun_chr_close+0x10/0x10
[  609.555314][T15518]  tun_chr_close+0xc2/0x230
[  609.556828][T15518]  __fput+0x402/0xb70
[  609.558162][T15518]  task_work_run+0x150/0x240
[  609.559713][T15518]  ? __pfx_task_work_run+0x10/0x10
[  609.561419][T15518]  ? do_raw_spin_unlock+0x172/0x230
[  609.563133][T15518]  do_exit+0x87f/0x2bd0
[  609.564490][T15518]  ? common_nsleep+0xa1/0xd0
[  609.566033][T15518]  ? __pfx_do_exit+0x10/0x10
[  609.567567][T15518]  __ia32_sys_exit+0x42/0x50
[  609.569099][T15518]  ia32_sys_call+0x1c11/0x1c90
[  609.570678][T15518]  __do_fast_syscall_32+0xe8/0x680
[  609.572425][T15518]  do_fast_syscall_32+0x32/0x80
[  609.574036][T15518]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  609.576132][T15518] RIP: 0023:0xf7f15579
[  609.577489][T15518] Code: Unable to access opcode bytes at 0xf7f1554f.
[  609.579670][T15518] RSP: 002b:00000000f540651c EFLAGS: 00000282 ORIG_RAX: 0000000000000001
[  609.582602][T15518] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  609.585202][T15518] RDX: 0000000021fb9700 RSI: 00000000f73a6ff4 RDI: 00000000f7210170
[  609.587790][T15518] RBP: 00000000f7034979 R08: 0000000000000000 R09: 0000000000000000
[  609.590372][T15518] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  609.592990][T15518] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  609.595579][T15518]  </TASK>
[  609.597510][T15518] Kernel Offset: disabled
[  609.598934][T15518] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:11:04  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000cb6785 RBX=0000000000000000 RCX=ffffffff8b7576d9 RDX=0000000000000000
RSI=ffffffff8daca977 RDI=ffffffff8bf2b580 RBP=fffffbfff1c12f68 RSP=ffffffff8e007df8
R8 =0000000000000001 R9 =ffffed100564673d R10=ffff88802b2339eb R11=ffffffff8e098670
R12=0000000000000000 R13=ffffffff8e097b40 R14=ffffffff9088e8d0 R15=0000000000000000
RIP=ffffffff8b755dcf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880976fc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008086b000 CR3=00000000581e2000 CR4=00352ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffc900041d7950 RBX=ffffffff9aeb2a08 RCX=ffffffff8199cdbc RDX=0000000000000001
RSI=0000000000000004 RDI=ffffc900041d7950 RBP=1ffff9200083af26 RSP=ffffc900041d7918
R8 =0000000000000001 R9 =fffffbfff35d6541 R10=ffffffff9aeb2a0b R11=ffff888027280b30
R12=ffffffff9aeb2a10 R13=ffffffff9aeb2a18 R14=ffffc900041d7af8 R15=1ffff9200083af40
RIP=ffffffff82273316 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977fc000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080b7d000 CR3=00000000581e2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=ffffc900046d70b8 RCX=ffffc900046d700c RDX=1ffff920008dae17
RSI=ffffffff8215de07 RDI=ffffc900046d70b8 RBP=ffffc900046d7148 RSP=ffffc900046d7098
R8 =0000000000000001 R9 =00000000591c8d43 R10=0000000000000002 R11=00000000000115ba
R12=ffffffff81a8e9b0 R13=ffffc900046d70b8 R14=0000000000000000 R15=ffff888026c18000
RIP=ffffffff816c75ce RFL=00000a06 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978fc000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73a7250 CR3=000000005b8f7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000004fffffff3 0000012800000094
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853010e5 RDI=ffffffff9aed9260 RBP=ffffffff9aed9220 RSP=ffffc90004b37378
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3730383838666666
R12=0000000000000000 R13=0000000000000038 R14=ffffffff9aed9220 R15=ffffffff85301080
RIP=ffffffff8530110f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979fc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000800012c0 CR3=000000005e7ec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559dd0566c50 0000559dd0566c50
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff723ddb80 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 303030303030203a 3431522030303030 3030303030303030 30303030203a3331
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030203030203030 2030302036322034 6220643820303020 3030203030203030
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2036322034622064 3820303920303920 3039203039203363 203935206135203e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 64353c2030382064 6320343320663020 3565203938203535 2032352031352030
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3020303020303020 3030203030203030 2030302030302030 3020303020303020
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000