last executing test programs:

7.473781293s ago: executing program 1 (id=2565):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x801, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000008340)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x34014c40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
r3 = socket$inet6(0xa, 0x1, 0x84)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000440)='./binderfs/binder0\x00', 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="7a0a00ff00000000711070000000000094ffffe000000000"], &(0x7f0000000480)='syzkaller\x00'}, 0x94)
prlimit64(0x0, 0x3, &(0x7f0000000280)={0x2, 0x2}, &(0x7f00000003c0))
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
sendmsg$NFNL_MSG_COMPAT_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x4814)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='iso9660\x00', 0x208000, 0x0)
r4 = syz_io_uring_setup(0x496, &(0x7f0000000f80)={0x0, 0x79af, 0x3180, 0x7ffc, 0x40024e}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000080))
r6 = eventfd(0x401)
syz_io_uring_setup(0x641a, &(0x7f0000000300)={0x0, 0x235d, 0x10100, 0x0, 0x400002d8, 0x0, r4}, &(0x7f0000000200)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000140)=@IORING_OP_UNLINKAT={0x24, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_register$IORING_REGISTER_EVENTFD(r4, 0x4, &(0x7f0000000040)=r6, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x80, &(0x7f0000000100)=0xffb, 0x0, 0x4)
io_uring_enter(r4, 0x627, 0x4c1, 0x43, 0x0, 0x0)
shutdown(r3, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
openat$rfkill(0xffffff9c, &(0x7f0000000040), 0x8080, 0x0)
epoll_create1(0x80000)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000080)=0x74000000)
write$dsp(r1, &(0x7f0000002000)='`', 0x88020)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(streebog256-generic)\x00'}, 0x58)

4.928433125s ago: executing program 0 (id=2578):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(r0, &(0x7f00000005c0)=[{{&(0x7f0000000000)=@sco={0x1f, @fixed}, 0x80, &(0x7f0000000740)=[{&(0x7f0000000180)=""/145, 0x91}, {&(0x7f0000000080)=""/53, 0x35}, {&(0x7f0000000100)=""/13, 0xd}, {&(0x7f0000000240)=""/114, 0x72}, {&(0x7f00000002c0)=""/244, 0xf4}, {&(0x7f00000003c0)=""/219, 0xdb}, {&(0x7f00000004c0)=""/151, 0x97}, {&(0x7f0000000680)=""/187, 0xbb}, {&(0x7f0000000580)=""/10, 0xa}], 0x9, &(0x7f00000007c0)=""/163, 0xa3}, 0x6}], 0x1, 0x40000002, &(0x7f0000000880)={0x0, 0x3938700})
r1 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x10001, @ipv4={'\x00', '\xff\xff', @remote}, 0x1}, 0x1c)
socket$inet_sctp(0x2, 0x1, 0x84)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, 0x0, &(0x7f0000000240))
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
fgetxattr(r2, 0x0, &(0x7f00000003c0)=""/67, 0x43)
syz_io_uring_setup(0x8d2, &(0x7f0000000500)={0x0, 0xd80e, 0x3010, 0xfffffffc}, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000080))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_setup(0x5ce, &(0x7f0000000240)={0x0, 0x1007734, 0x80, 0x3, 0x34f}, 0x0, 0x0)
pipe(&(0x7f0000000480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x14, 0x15, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}}, 0x14}}, 0x40010)
vmsplice(r6, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="80000000"], 0x80}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0xc)
splice(r5, 0x0, r7, 0x0, 0x10d00, 0xf)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace$getregset(0x4205, r8, 0x202, &(0x7f0000000240)={0x0})
r9 = shmget$private(0x0, 0x400000, 0x8, &(0x7f000000e000/0x400000)=nil)
shmctl$SHM_LOCK(r9, 0xb)
shmat(r9, &(0x7f0000ffd000/0x1000)=nil, 0x7000)

4.325737692s ago: executing program 1 (id=2571):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, &(0x7f0000000300)={0x2, {{0x2, 0x2, @multicast2}}, 0x1, 0x2, [{{0x2, 0x4e03, @empty}}, {{0x2, 0x4e22, @remote}}]}, 0x18c)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semctl$SETALL(0x0, 0x0, 0x14, &(0x7f0000000740))
ioctl$TCSETS(r0, 0x5402, 0x0)
write$UHID_INPUT(r0, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x400, &(0x7f0000000500)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
chdir(&(0x7f00000001c0)='./bus\x00')
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f0000000300)={{}, {}, [], {}, [], {0x10, 0x2}}, 0x24, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)

3.90295891s ago: executing program 0 (id=2572):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x38, 0x24, 0xd10, 0x70bd2c, 0xfffffffd, {0x60, 0x0, 0x0, 0x0, {0x0, 0xfff2}, {0xfff1, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}, @TCA_EGRESS_BLOCK={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x44080)
shmat(0x0, &(0x7f0000ff7000/0x3000)=nil, 0x400c)
munmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000)

3.810793331s ago: executing program 2 (id=2573):
r0 = socket$nl_crypto(0x10, 0x3, 0x15) (async)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@getstat={0xe0, 0x15, 0x0, 0x70bd29, 0x0, {{'drbg_pr_hmac_sha384\x00'}, '\x00', '\x00', 0x0, 0x2400}}, 0xe0}, 0x1, 0x0, 0x0, 0x1}, 0x4004150) (async)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c00fa40", @ANYRES16=0x0, @ANYBLOB="000000000000000000004c0000000c00a6000000000000000000080001"], 0x3c}}, 0x0) (async)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
sendfile(r1, r1, 0x0, 0x2)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, r2, 0xbba46c444dcdadab, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_SEC_LEVEL={0xc, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x9}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x5}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x8004084}, 0x0)
sendmsg$nl_crypto(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)

3.346015222s ago: executing program 2 (id=2583):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/51, 0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
r4 = dup(r3)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
close_range(r1, 0xffffffffffffffff, 0x0)

2.685303602s ago: executing program 1 (id=2575):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x2, 0x0, &(0x7f0000000100)="7a04", 0x0, 0x91eb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x82}, 0x50)
unlink(&(0x7f0000000000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00')
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000"], 0xfdef)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f000001aa40)=""/102400, 0x19000)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(cast5)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d4", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r4)
sendmsg$NL80211_CMD_SET_POWER_SAVE(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x4000004}, 0x20020005)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000002080)={0xa50, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x7c}}}}, [@NL80211_ATTR_IE={0xd1, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0xbd, 0x7, 0x81}}, @random_vendor={0xdd, 0x93, "b4faecd4311c2829f21fe9dbf95234239151885449c1f1111dbd72d97d3cd1c0fc8cbe5db63bfa7de9577ccec268add0ad72b3096244d1ff386916422fe5b6a196243a7757df417fc940ca636ae8ac5149626e0fcd3ac2d7f92ada0500807ed51e262f1437a4a03d3ccbfe2478459359e2dbfa9c52de0bee4422c8e15b351b1b1feaf989bfbd455210dcd7b364e456710f4413"}, @sec_chan_ofs={0x3e, 0x1, 0x1}, @supported_rates={0x1, 0x1, [{0x4, 0x1}]}, @dsss={0x3, 0x1, 0x3}, @gcr_ga={0xbd, 0x6, @broadcast}, @prep={0x83, 0x1f, {{}, 0xd, 0xe, @device_b, 0x7fff, @void, 0x0, 0x80, @device_b, 0x8}}]}, @NL80211_ATTR_IE={0x951, 0x2a, [@random_vendor={0xdd, 0xea, "2babdaf26c18420908cdbbc3e9737f44b4964e362c06b5c0c908a54a3df233d445dcd6d2436c591bc30463937799cf5944d6a67f87218a3d2a2316d2ed51e0f838d35cdac6b52d4fcd05113032fd782acf6cf29bb4ecda7a1ffc9b0ad3a2a1e912af5fd634b969f23646555a38f6822d68fadff0373e8dafbb5df3b4c7db1e9223a2f20f71c16a4fb729ec52a231a2b2c485632a79ed1e3d2421ef5c19c6105247ff9f08cbb49e33dd1eae7cda18bbf7f2b4de6cc82b591ef8a95a49b2e48c2dd1e94e0dfd12ca869e3eb7b74c2caac5497183c8fa483c22304f84f8f85050686a5d2c594588e7428b27"}, @channel_switch={0x25, 0x3, {0x1, 0x2, 0x3}}, @link_id={0x65, 0x12, {@from_mac=@broadcast, @broadcast, @broadcast}}, @ext_channel_switch={0x3c, 0x4, {0x0, 0xfe, 0x0, 0x1}}, @erp={0x2a, 0x1, {0x1, 0x0, 0x1}}, @channel_switch={0x25, 0x3, {0x0, 0x28}}, @measure_req={0x26, 0x838, {0xff, 0x6, 0xff, "166c267aeeb36bfab6d6688e2e69cce35554b21150afd8aeab3c25c4fdf38b7de365e383678641be3bf8376777f5695baaa5cc9fedc3fdeb66f758719d1f57ec548c50c3bde37573b2fcfbeb8b0c48e5e2aa3c04c09e28959404626f255a9073bd2facf0522d22ae0118e1867504f3c1f87232b38bee5b6d559d4997867ee3b0a6177ca8f0d90d66d97c4aa6fc6ff58c217e8d9ee7e441c5e2ed94d609d52703cc4fb49e688a9bbd78562b2952e9514cc74fb07e2c67e3dc28b10a6e87b33df40bf4d9d9544cc346a54367a4861fe8821309a34f39ca995f1083911c53cbb1143e419d11d8f7ddc66b41e93d4e765048da368252542d6b4d6cce47782b8662a9db2075f4e7694e7fc96200f21d6b17b047f05e939231bc74c872995102adae8179a38bde17056fa1b6518663b730c7d05ab93727f0c1a104c39e8baf01464fae32512553c07700270e7dca46c27d1890bfb0661678eb334279c32c2de904361851d445f0f19a1847922f0e3511c744a3221d05e0a9bb1f59f45772197df7315cbbd76369f2189e16cb49511173a41007539827ed695a28c490c5cfecd79e21ba1184a9068c052166e6d149ae9d19286e026b577f5206be79dc27d206410de04300a5bb78aa8586dc8682fabd5313e10fdd5a01d7ec1ed262845dfbb3d130e531f396d19d9876edc9ae947c8a6da3331b726b9ae399c03a69ed8bad2fd565a273f22d2fe043976c1c0c09a1cc424d5b610ce5135821de5426f3ba06271531068e04c4d7729398c052cfe656ccd25eeac4db40576abf9372627f4aed6299eb9c73bb83d3e3c787f7bd97ce381afd9585d19ea9a645bb44e19cc102c43950471a2efde62a55c9e4e5ea19e1515b96b6e78b6c04e6969fc949c483b7f40b289c44270806a06d66eb7a5a512bbeea0fe653dc018777502cf004040e23baef31cb916493a35be4d1decedbc08bb15af8208404644d896aa4b49bb56b48416f082d8de59daf5caaad75b4bf92bead470a35cfd8b63359466705f3dc79cf1a803b36c487275a02f1b0f985abdecf03f722c6bd06b08035b882da3bcfb7436b855f94a7006a2609036e357eb2bf19b4001827b269c2a3ac5c47267495ce1777287f80416655e5bf67a4e524fa6a5a5f8c47feb31a98a814113d2cf7d0d56102aa9783732806785130619c59dea369873cd9ea3476aa3dd6281032d5648cde4664a0603f60f1139e8eaf09c3aaffc2f5e2a568f7621f5b7abd868658ae5db23354084437602ff8e3fd9b0e6a00150a1bab3bf06d9fe13f2e912e08f03df9dcdac0305e95852d26da38c82c171382d8697d6d495c5015fabad4d00521489eedb99a5e2f38d6d8aa3d7a05bdfc2de5797e52364cd1b002a3900666cdcea91605d72a3e3c918ab0199c4c5f051cbe25cbe18d244c3d181f4e486c4cd9be1671adbbdb964480ce8b5a87c1bea44022a101f1089f8803aa6cc2a65c092cae5ada911ff60ef96ab30f7e1c56e1ce03fa18c8d4ca3c60901fc157bdab867747a957650d30bd2c30a7b06946ac872bf6a56451eb704dcb9fe593a05cebf09b05476a51985da27b5d27a4d91d1ac07d4fe16d2daa89b1fcc24b45056cc06c0330b66505e90a14acf7fc26f7ce0d5546d92894b37f05b2f20912a18762a2900e71ea4a036db497d8642823b522f51826c6870b31f6d856b630342fd36b957ca9c9d9154712bac487785937404f84b8b6f03b29f049505045baa5dabe40dd434f817fe5d985a7ee7b74dab7a310f6f1e0281fd5d5efe71192189212276ac83c630a2ae1e0ba1358b5b1d1bc7b331a4b1bb47fa22207b3fb1a48e51c14c52c76595aab6ae270fa362c6da159c86c53d1beeb411887d82a2bddd121e669c4835bd4aa7cc93248100000e8b779c4496da40c2225785a5d30f67a32e028e621c887c3faade9d0d74b04f4cc0a0c9da4ca206e4ec5611f51b18455e520ca5036654034121df8e4562a0af2621830046c10a590fe9a11c4923008c8c68fa43a090c3a4d17ae89975d1789261b0f8bf3b7c43feaec1553d23f469ecc4f0e66f9de3327ed8a53655295973995162248ce611b9f4054c89b0b29b723bce997b5b1fdd50a10644ded5d45519588a6ea9dbebcdbebae4f968a0085c1975c1a561ae5343fffe11d21fcaf952046a61845b8ec5f32f554768c024b5d275cb506c6cb764f031f6d63536d5bbd65e233f0218f5a8fcbe972863f25e934a64707dd7044e9cfd3219f680247f0b21766bd67823b83b524897793cf48abc06d5c3e180805c2309547622294d33336f3757749bd3bafa8e06cc8e59caedbd877d3089e38ccb2f9adf6cfc9285680155faaef08f49ee6a61733442e2ae5ccae928a9a12246fedaff387ec3a55001ff54f5c387076f9ebe7903730f37c007507abe2280bafb0e8dea86045325766ec30e1c1fcf3f3e883139eb177cff8800fdc4793fbe05c27b48ece1ed0f7b9ce84153e631ab9108e84bf531ce338f8016d62f7449e9a477100614dea5c999a9af7b41c99fc843d0c3dda4d66c6692953f388ebd676db48192482dcdcbf2d8cd3140522afd40e3e071afa07b910a88d44b6ab0eab9dd9cbe0d037d31a6af26c19aa902322bce2941455e0c0b349bf3dd736d8c3a97f4f79a9a54cf28793a274b002be19220e10d48338dc7bb0fce1c4b6dbe7310ebd5d66d201db1e39c774507e1ed50ea341a9f8013905ca6ce211e2b02eab413c7c11ef5e626a01ecddc0f85c2eddaf9273518ce8b85b54ffaa12b2af5d4febc98f19985c1bb46e5432dddc4cd8c10ca0af32184c54b2ff17af0a9376b89eb437a71cbe431ee954d3c395c7dcd63ae639f613116193c5345f1d6b087e60b51d0629aa5e4a9790f9a03392c28f5f84eb1e60ae253a28c5a137d771ed6cd93d53e8e80aea37ea71023af119ce7ce98bc180ec9823167b3f221c3088c897fdcc29df986cc3ef04f00518"}}]}]}, 0xa50}, 0x1, 0x0, 0x0, 0x40c0000}, 0x30000050)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x16, 0x1c, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b80a000500000000", &(0x7f0000000300)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

2.684968848s ago: executing program 2 (id=2576):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000400)='veno', 0x4)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
r2 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
r3 = epoll_create1(0x80000)
prctl$PR_MCE_KILL(0x21, 0x1, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x0, 0x2, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r3, &(0x7f0000000000)={0xa0000001})
r7 = socket(0x22, 0x2, 0x3)
setsockopt$MISDN_TIME_STAMP(r7, 0x0, 0x1, &(0x7f0000000140)=0xfffffffe, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000140)={0x3, &(0x7f0000000040)=[{0x5, 0x8, 0xd7, 0x7}, {0x7, 0x5, 0xc, 0x86}, {0x2, 0x1, 0x9, 0x7a}]})
epoll_wait(r6, &(0x7f0000000340)=[{}], 0x1, 0x1000)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000200)={@rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x8)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
lsm_set_self_attr(0x64, &(0x7f0000002980)={0x64, 0x8, 0x20}, 0x20, 0x0)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
dup(r8)

2.64936438s ago: executing program 0 (id=2577):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, &(0x7f0000000300)={0x2, {{0x2, 0x2, @multicast2}}, 0x1, 0x2, [{{0x2, 0x4e03, @empty}}, {{0x2, 0x4e22, @remote}}]}, 0x18c)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semctl$SETALL(0x0, 0x0, 0x14, &(0x7f0000000740))
ioctl$TCSETS(r0, 0x5402, 0x0)
write$UHID_INPUT(r0, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x400, &(0x7f0000000500)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
chdir(&(0x7f00000001c0)='./bus\x00')
lsetxattr$system_posix_acl(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f0000000300)={{}, {}, [], {}, [], {0x10, 0x2}}, 0x24, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)

1.731110117s ago: executing program 0 (id=2579):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80021}, 0xc, &(0x7f0000000380)={&(0x7f0000000a40)=ANY=[@ANYRES32=0x0, @ANYBLOB="0100000014000e00e0000001000000000000000000000000240009000800000000000000460f0000000000000300000000000000090000000000000028001a0064010102000000000000000000000000fe880000000000000000000000000001060005fb08000c000100000008000c0003000000"], 0xbc}, 0x1, 0x0, 0x0, 0x20000000}, 0x28880)
sched_setattr(0x0, 0x0, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01080000000000000000030000000900010073797a3100000000080002400000000614000000110001"], 0x50}}, 0x20044084)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000020000000900010073797a300000000048000000030a01010000000000000000020000000900010073797a30000000000900030073797a3200000000080007006e617400140004800800014000000000080002400000000014000000020a010800000000060000000000"], 0xa4}}, 0x0)
close(r2)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002d00)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}}, 0x800)
recvmmsg(r4, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001180)=""/4096}, {&(0x7f0000000440)=""/128}], 0x0, &(0x7f00000004c0)=""/193}, 0x7f}, {{&(0x7f00000005c0)=@in, 0x0, &(0x7f0000000700)=[{&(0x7f0000000640)=""/35}, {&(0x7f0000000680)=""/127}], 0x0, &(0x7f0000000740)=""/23}, 0x3}], 0x400000000000054, 0x40012100, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1b000000000000000000000000000400000000007a8c3b236babdb6e3a310fbcb5be21b630231c8510b1a92f764a0900f2e48ef946199cc9a7f0440ac32ebd0ba3c1bcc005843b2743b39017f6a91ac737b687072c70571739850d92cc00e3bf7c7eeb17e4ff33a8434cce751f70adad73949464594b2373b39dbe2d982e192c3fba92fe080ea024c2d291b5d26b4a0cf708460b182922f189b580d37c7b29c0962509544119b7f120d5d9cf13b4ac4b081ce5ae57206cb186b57d29fe150886866010f34a8cc1d76c3200"/218, @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x121042, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r6, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8001}}, '\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x1, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0x6}, {0x6, 0x0, 0x0, 0xb}}, [@printk={@u, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x9}, {0x56}}], {{0x4, 0x1, 0x2, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000780)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000180)="900000001d001f4d154a817393278bff0a80a578020000000404840014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000766436c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee", 0x87, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="f0000000", @ANYRES16=r8, @ANYBLOB="050000000000000000004400000008000300", @ANYRES32=r9, @ANYBLOB="540023800800150049000000060001003c000000050005000600000008001400e3ffffff050008"], 0xf0}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

969.289466ms ago: executing program 2 (id=2580):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x4000)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
accept4$bt_l2cap(r0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x200000000000000)

880.547977ms ago: executing program 2 (id=2581):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000380))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe2(&(0x7f0000001440)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
mkdirat(r3, &(0x7f0000000340)='./file0\x00', 0x90)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2c, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
io_pgetevents(0x0, 0x6, 0x4, &(0x7f0000000480)=[{}, {}, {}, {}], &(0x7f0000000500)={0x77359400}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x11}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
splice(r5, 0x0, r3, 0x0, 0x3, 0x0)
ioctl$KVM_CAP_X2APIC_API(r3, 0x4068aea3, &(0x7f0000000400)={0x81, 0x0, 0x2})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100851000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback=0x33, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r6, 0x0, 0x3}, 0x18)
r7 = openat$rfkill(0xffffff9c, &(0x7f0000000040), 0x402, 0x0)
poll(&(0x7f00000000c0)=[{r7, 0x480}], 0x1, 0xf0)

747.806763ms ago: executing program 3 (id=2582):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x121800, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xd)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x90, 0x0, 0x5, {0x2, 0x0, 0x2, 0xa6, 0x4000, 0x0, {0x3, 0x100000000000, 0x1, 0x0, 0x3, 0x0, 0x0, 0x7d, 0x3ff, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$HDIO_GETGEO(0xffffffffffffffff, 0x301, &(0x7f0000000040))
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)

675.02335ms ago: executing program 1 (id=2584):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c0000001000ffff27bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="17200000212400009c0012800c0001006d6163766c616e000c0002800800070002000000"], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x8000802)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'macvlan1\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYRES64=r0, @ANYRES8=r0], 0x48}, 0x1, 0x0, 0x0, 0x4004855}, 0x4840)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x6000, 0x7fb)
lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f00000003c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x13, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="1802000003000000000000000000000085000000a0000000850000005000000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0xc000802)
r2 = io_uring_setup(0x5ce9, &(0x7f0000000040)={0x0, 0x668f, 0x400, 0x2, 0x1ab})
r3 = openat$mice(0xffffff9c, &(0x7f0000000240), 0x20400)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x34, 0x2, 0x3, 0x201, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFQA_CFG_CMD={0x8, 0x1, {0x0, 0x0, 0x2}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0xffff}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x18}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r2, 0x18, &(0x7f0000000100)={0x6, r0, 0x8, {0x5, 0x1a7}, 0x8}, 0x1)
fcntl$setpipe(r0, 0x407, 0x40)

644.089807ms ago: executing program 0 (id=2585):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYRESHEX])
chdir(&(0x7f0000000300)='./file0\x00')
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file1\x00')

569.363989ms ago: executing program 1 (id=2586):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x2ee, 0x282)
r1 = syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
ioctl$MEDIA_IOC_SETUP_LINK(r1, 0xc0347c03, &(0x7f0000000e80)={{0x80000000, 0x0, 0x2, [0x7, 0x2]}, {0x80000000, 0x0, 0x6, [0x10000, 0x1]}, 0x4, [0x5, 0x1]})
ioctl$VIDIOC_ENUMINPUT(r0, 0xc04c561a, &(0x7f0000000040)={0x6, "53a9d0cc4142f9e44532dfd725b8c4bef9f6b352df4fc9cdc10a4a369b7970ea", 0x3, 0x3, 0x2, 0x0, 0x200, 0x8})
ioctl$VIDIOC_S_STD(r0, 0x40085618, &(0x7f0000000180)=0xf900)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000100)={0x2, &(0x7f0000000000)=[{0x81, 0x4}, {0x6}]}, 0x8)

568.778368ms ago: executing program 0 (id=2587):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000200)=ANY=[], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffff}}, 0x11c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue1\x00', 0x4})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
syz_genetlink_get_family_id$l2tp(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000140)={0x1e6, @tick=0x9, 0x0, {}, 0x4})
sigaltstack(&(0x7f0000000000)={&(0x7f0000000280)=""/4124, 0x80000001, 0x101c}, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000000080)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
munmap(&(0x7f00000ad000/0x2000)=nil, 0x2000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

429.071366ms ago: executing program 1 (id=2588):
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f00000002c0)={0x2, 0x0, [{0xf88e470f}, {0xa6a, 0x0, 0x5}]})
ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000080)={[0xeeee0000, 0x100000, 0xdddd0000, 0xb000], 0x2000000db, 0x2b})
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0x4000, 0x4, 0x5, 0x0, 0x8, 0x3, 0xa, 0x7e, 0x4, 0x11, 0x5, 0x80204}, {0x804, 0xffff, 0x1, 0x45, 0x7, 0x2, 0x1, 0xff, 0x0, 0x4, 0x6, 0x7f, 0x20c}, {0x1, 0x9, 0x38, 0x5, 0x84, 0x7, 0x3, 0x50, 0x0, 0x70, 0x1, 0x5}], 0xffffffff})
r0 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x41, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000200)={0x8f, 0x0, 0xe})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r3 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x20000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="0101000000000008d804dd0000000000000109022400010000a008090400fe01030001000921fffffd0122050009058103"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f0000000040)={0x87, &(0x7f0000000180)=ANY=[@ANYRES64=r4], 0x0, 0x0, 0x0, 0x0}, 0x0)
r6 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
dup(r6)
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x4002004c4, 0x1004, 0xffffffffffffffff, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0x80000004000000, 0x8d], 0xeeee8000, 0x2010d3})
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
openat$userio(0xffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r9 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="0100000000000200000001000000080005000100000014000200776730000000762c5f183a793551bd67"], 0x30}}, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)

427.52979ms ago: executing program 3 (id=2589):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x121800, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xd)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x90, 0x0, 0x5, {0x2, 0x0, 0x2, 0xa6, 0x4000, 0x0, {0x3, 0x100000000000, 0x1, 0x0, 0x3, 0x0, 0x0, 0x7d, 0x3ff, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$HDIO_GETGEO(0xffffffffffffffff, 0x301, &(0x7f0000000040))
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)

275.20347ms ago: executing program 3 (id=2590):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, 0x0, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/51, 0x0})
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
r4 = dup(r3)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
close_range(r1, 0xffffffffffffffff, 0x0)

177.864422ms ago: executing program 3 (id=2591):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) (async)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xa, 0x8000000000002})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) (async)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(r1, r0, 0x0) (async)
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001040)={0x4c, 0x0, &(0x7f0000000ec0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001040)={0x4c, 0x0, &(0x7f0000000ec0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000c00)={0x44, 0x0, &(0x7f0000000a80)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f00000034c0)={0x2020}, 0x2020)

115.571576ms ago: executing program 3 (id=2592):
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000000)={0x0, 0x0, <r0=>0xffffffffffffffff})
ioctl$FS_IOC_GETFSSYSFSPATH(r0, 0x80811501, &(0x7f0000000040)={0x80}) (async)
ioctl$FS_IOC_GETFSSYSFSPATH(r0, 0x80811501, &(0x7f0000000040)={0x80})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7, 0xabfd, 0x1, 'queue0\x00', 0x8}) (async)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x7, 0xabfd, 0x1, 'queue0\x00', 0x8})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=@ipv4_getrule={0x1c, 0x22, 0x800, 0x70bd2a, 0x25dfdbfd, {0x2, 0x0, 0x10, 0x6, 0x4, 0x0, 0x0, 0x8, 0x11}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f00000002c0)={0x0, 0x80000, <r1=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r1, 0xc01064c8, &(0x7f0000000340)={0x4, 0x0, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0]})
r2 = openat$tun(0xffffff9c, &(0x7f0000000380), 0x420001, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r3=>r0, {<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}}, './file0\x00'})
fchown(r0, 0xee00, r5)
ioctl$KVM_CAP_VM_DISABLE_NX_HUGE_PAGES(r3, 0x4068aea3, &(0x7f0000000400))
sendmsg$NFT_BATCH(r3, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1002}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_DELCHAIN={0x58, 0x5, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_FLAGS={0x8}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x80}}, 0x41080) (async)
sendmsg$NFT_BATCH(r3, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1002}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_DELCHAIN={0x58, 0x5, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_CHAIN_FLAGS={0x8}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x80}}, 0x41080)
r6 = dup(r3)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f00000005c0)={{0x1, 0x1, 0x18, r3, {0x1}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f00000005c0)={{0x1, 0x1, 0x18, <r7=>r3, {0x1}}, './file0\x00'})
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000640)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000600), 0x2, 0xb}}, 0x20)
bind$alg(r7, &(0x7f0000000680)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(morus640)\x00'}, 0x58)
setsockopt$inet_sctp6_SCTP_NODELAY(r7, 0x84, 0x3, &(0x7f0000000700)=0x6, 0x4)
syz_init_net_socket$ax25(0x3, 0x5, 0xb) (async)
syz_init_net_socket$ax25(0x3, 0x5, 0xb)
getsockname$l2tp(r6, &(0x7f0000000740)={0x2, 0x0, @loopback}, &(0x7f0000000780)=0x10) (async)
getsockname$l2tp(r6, &(0x7f0000000740)={0x2, 0x0, @loopback}, &(0x7f0000000780)=0x10)
write$P9_RMKNOD(r7, &(0x7f00000007c0)={0x14, 0x13, 0x2, {0x1, 0x0, 0x4}}, 0x14)
quotactl_fd$Q_GETINFO(r2, 0xffffffff80000500, r4, &(0x7f0000000800))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000840))
ioctl$BLKGETSIZE(r7, 0x1260, &(0x7f0000000880))
ioctl$KVM_KVMCLOCK_CTRL(r7, 0xaead)
ioctl$USBDEVFS_SETCONFIGURATION(r6, 0x80045505, &(0x7f00000008c0)=0x8)
ioctl$BLKDISCARD(r7, 0x1277, &(0x7f0000000900)=0x2)
setsockopt$inet6_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f0000000940)=0xffffffffffffffff, 0x4) (async)
setsockopt$inet6_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f0000000940)=0xffffffffffffffff, 0x4)
ioctl$CDROMRESET(r3, 0x5312)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_buf(r6, 0x1, 0x1c, &(0x7f0000000980)=""/213, &(0x7f0000000a80)=0xd5)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r7, 0x408c5333, &(0x7f0000000ac0)={0x8, 0x8001, 0x1, 'queue0\x00', 0x3817a3e4}) (async)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r7, 0x408c5333, &(0x7f0000000ac0)={0x8, 0x8001, 0x1, 'queue0\x00', 0x3817a3e4})

115.227918ms ago: executing program 3 (id=2593):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x2, 0x0, &(0x7f0000000100)="7a04", 0x0, 0x91eb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x82}, 0x50)
unlink(&(0x7f0000000000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00')
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000"], 0xfdef)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f000001aa40)=""/102400, 0x19000)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(cast5)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d4", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r4)
sendmsg$NL80211_CMD_SET_POWER_SAVE(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x4000004}, 0x20020005)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000002080)={0xa50, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x7c}}}}, [@NL80211_ATTR_IE={0xd1, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0xbd, 0x7, 0x81}}, @random_vendor={0xdd, 0x93, "b4faecd4311c2829f21fe9dbf95234239151885449c1f1111dbd72d97d3cd1c0fc8cbe5db63bfa7de9577ccec268add0ad72b3096244d1ff386916422fe5b6a196243a7757df417fc940ca636ae8ac5149626e0fcd3ac2d7f92ada0500807ed51e262f1437a4a03d3ccbfe2478459359e2dbfa9c52de0bee4422c8e15b351b1b1feaf989bfbd455210dcd7b364e456710f4413"}, @sec_chan_ofs={0x3e, 0x1, 0x1}, @supported_rates={0x1, 0x1, [{0x4, 0x1}]}, @dsss={0x3, 0x1, 0x3}, @gcr_ga={0xbd, 0x6, @broadcast}, @prep={0x83, 0x1f, {{}, 0xd, 0xe, @device_b, 0x7fff, @void, 0x0, 0x80, @device_b, 0x8}}]}, @NL80211_ATTR_IE={0x951, 0x2a, [@random_vendor={0xdd, 0xea, "2babdaf26c18420908cdbbc3e9737f44b4964e362c06b5c0c908a54a3df233d445dcd6d2436c591bc30463937799cf5944d6a67f87218a3d2a2316d2ed51e0f838d35cdac6b52d4fcd05113032fd782acf6cf29bb4ecda7a1ffc9b0ad3a2a1e912af5fd634b969f23646555a38f6822d68fadff0373e8dafbb5df3b4c7db1e9223a2f20f71c16a4fb729ec52a231a2b2c485632a79ed1e3d2421ef5c19c6105247ff9f08cbb49e33dd1eae7cda18bbf7f2b4de6cc82b591ef8a95a49b2e48c2dd1e94e0dfd12ca869e3eb7b74c2caac5497183c8fa483c22304f84f8f85050686a5d2c594588e7428b27"}, @channel_switch={0x25, 0x3, {0x1, 0x2, 0x3}}, @link_id={0x65, 0x12, {@from_mac=@broadcast, @broadcast, @broadcast}}, @ext_channel_switch={0x3c, 0x4, {0x0, 0xfe, 0x0, 0x1}}, @erp={0x2a, 0x1, {0x1, 0x0, 0x1}}, @channel_switch={0x25, 0x3, {0x0, 0x28}}, @measure_req={0x26, 0x838, {0xff, 0x6, 0xff, "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"}}]}]}, 0xa50}, 0x1, 0x0, 0x0, 0x40c0000}, 0x30000050)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x16, 0x1c, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000007c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b80a000500000000", &(0x7f0000000300)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

0s ago: executing program 2 (id=2594):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB="020300020900000000000000000000000200080008000000ca00000000000000030006000000007331381af392c75ccca500027e0000000000000000000000000000020001000000"], 0x48}, 0x1, 0x7}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x120)
socket$inet(0xa, 0x801, 0x400)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000010000104000002000000000000000000", @ANYRES32=r3, @ANYBLOB="03800000cf7e7f1cdf4a067faaaaaaaaaabb0000"], 0x2c}, 0x1, 0x0, 0x0, 0x24044005}, 0x4054)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6000050000140600fc020000000000000000000000000000ff"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000500)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003402e60000000000000b94dcf5c0461c1d67f6f94007134cf6ee0800108e8d8ef52a985162f7ce06bbace80170000000000000000090000001fb791643a5ee4d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e97010000000000000000a9b7", 0xd8}], 0x1}, 0x64040084)
sched_setattr(0x0, 0x0, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
r8 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x3001, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r8, 0x4610, &(0x7f0000000180)={0x1})
bind$alg(r7, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-160\x00'}, 0x58)
r9 = accept4(r7, 0x0, 0x0, 0x800)
recvmmsg$unix(r9, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0xc3072, 0xffffffffffffffff, 0x200000)
accept4$tipc(r9, &(0x7f0000001a00)=@name, 0x0, 0x0)
r10 = getpgid(0x0)
fcntl$setown(r8, 0x8, r10)
ioctl$FS_IOC_RESVSP(r1, 0x402c5828, &(0x7f0000000080)={0x0, 0x2, 0x1, 0x7})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1100000004000000040000040000000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/27], 0x48)
socket$key(0xf, 0x3, 0x2)

kernel console output (not intermixed with test programs):

oring
[  494.101161][   T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  494.105482][   T59] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  494.110815][   T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  494.115075][   T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  494.124652][   T59] usb 6-1: string descriptor 0 read error: -22
[  494.127353][   T59] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  494.131538][   T59] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.141043][   T59] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  494.344893][   T59] usb 6-1: USB disconnect, device number 16
[  494.906954][T15575] futex_wake_op: syz.3.1993 tries to shift op by -1; fix this program
[  494.940763][T15576] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  494.943448][T15576] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  494.946406][T15576] vhci_hcd vhci_hcd.0: Device attached
[  495.189747][   T59] usb 41-1: new low-speed USB device number 11 using vhci_hcd
[  495.476772][T15577] vhci_hcd: connection reset by peer
[  495.501637][T10971] vhci_hcd vhci_hcd.2: stop threads
[  495.510007][T10971] vhci_hcd vhci_hcd.2: release socket
[  495.519914][T10971] vhci_hcd vhci_hcd.2: disconnect device
[  497.423413][T15608] lo speed is unknown, defaulting to 1000
[  497.427400][T15608] wg2 speed is unknown, defaulting to 1000
[  497.720862][T15615] overlayfs: failed to resolve './file1': -2
[  498.560321][T15617] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2001'.
[  498.580513][ T6075] libceph: connect (1)[c::]:6789 error -101
[  498.585226][ T6075] libceph: mon0 (1)[c::]:6789 connect error
[  498.667827][T15617] ceph: No mds server is up or the cluster is laggy
[  498.912534][T15632] futex_wake_op: syz.3.2004 tries to shift op by -1; fix this program
[  498.917838][   T40] kauditd_printk_skb: 481 callbacks suppressed
[  498.917851][   T40] audit: type=1326 audit(754.795:16590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  498.934497][   T40] audit: type=1326 audit(754.805:16591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703d579 code=0x7ffc0000
[  498.947540][   T40] audit: type=1326 audit(754.805:16592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703d5a7 code=0x7ffc0000
[  498.958711][   T40] audit: type=1326 audit(754.805:16593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf703d579 code=0x7ffc0000
[  498.968963][   T40] audit: type=1326 audit(754.805:16594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  498.979960][   T40] audit: type=1326 audit(754.805:16595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  498.990340][   T40] audit: type=1326 audit(754.805:16596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf703d579 code=0x7ffc0000
[  499.001079][   T40] audit: type=1326 audit(754.805:16597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  499.011085][   T40] audit: type=1326 audit(754.805:16598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  499.021410][   T40] audit: type=1326 audit(754.805:16599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15631 comm="syz.3.2004" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf703d579 code=0x7ffc0000
[  500.298635][T15649] wireguard0: entered promiscuous mode
[  500.445950][   T59] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  501.149781][   T29] libceph: connect (1)[c::]:6789 error -1
[  501.152605][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  501.514072][   T29] libceph: connect (1)[c::]:6789 error -1
[  501.621737][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  501.770450][T15658] ceph: No mds server is up or the cluster is laggy
[  502.203820][T15675] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2013'.
[  502.209225][T15675] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2013'.
[  502.312461][T15680] futex_wake_op: syz.3.2015 tries to shift op by -1; fix this program
[  502.862838][T15694] 9p: Bad value for 'rfdno'
[  502.943224][T15696] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2018'.
[  503.193390][T15700] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2019'.
[  503.315177][T15702] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2019'.
[  504.336570][T15711] overlayfs: failed to resolve './file1': -2
[  504.418258][T15684] lo speed is unknown, defaulting to 1000
[  504.422347][T15684] wg2 speed is unknown, defaulting to 1000
[  504.661583][T15713] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2022'.
[  504.745543][T15718] netlink: 360 bytes leftover after parsing attributes in process `syz.1.2024'.
[  505.142856][T15721] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  505.145830][T15721] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  505.163122][T15721] vhci_hcd vhci_hcd.0: Device attached
[  505.449428][ T6074] usb 38-1: SetAddress Request (36) to port 0
[  505.452512][ T6074] usb 38-1: new SuperSpeed USB device number 36 using vhci_hcd
[  505.629396][T15723] vhci_hcd: connection reset by peer
[  505.632256][ T1140] vhci_hcd vhci_hcd.0: stop threads
[  505.634638][ T1140] vhci_hcd vhci_hcd.0: release socket
[  505.637295][ T1140] vhci_hcd vhci_hcd.0: disconnect device
[  506.804231][T15751] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2034'.
[  507.175386][T15766] 9p: Bad value for 'rfdno'
[  507.205377][T15767] ubi31: attaching mtd0
[  507.212058][T15767] ubi31: scanning is finished
[  507.410979][   T40] kauditd_printk_skb: 489 callbacks suppressed
[  507.410996][   T40] audit: type=1326 audit(763.277:17089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15769 comm="syz.0.2038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  507.469816][T15767] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  507.481137][T15767] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  507.484163][T15767] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  507.486872][T15767] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  507.501792][T15767] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  507.564516][T15767] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  507.579142][T15767] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 3931648751
[  507.597202][T15767] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  507.631157][T15771] ubi31: background thread "ubi_bgt31d" started, PID 15771
[  508.277125][   T40] audit: type=1326 audit(763.277:17090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15769 comm="syz.0.2038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  508.286546][   T40] audit: type=1326 audit(763.297:17091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15769 comm="syz.0.2038" exe="/syz-executor" sig=0 arch=40000003 syscall=107 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  508.296236][   T40] audit: type=1326 audit(763.297:17092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15769 comm="syz.0.2038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  508.306407][   T40] audit: type=1326 audit(763.297:17093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15769 comm="syz.0.2038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  508.315881][   T40] audit: type=1326 audit(763.297:17094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15769 comm="syz.0.2038" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf70cd579 code=0x7ffc0000
[  509.525482][T15791] overlayfs: failed to resolve './file1': -2
[  510.358283][T15815] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2048'.
[  510.368828][T15816] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2048'.
[  510.554414][ T6074] usb 38-1: device descriptor read/8, error -110
[  510.965399][ T6074] usb usb38-port1: attempt power cycle
[  511.094554][T15822] lo speed is unknown, defaulting to 1000
[  511.097357][T15822] wg2 speed is unknown, defaulting to 1000
[  511.197441][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  511.546057][ T6074] usb usb38-port1: unable to enumerate USB device
[  512.169434][T15836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2051'.
[  512.191711][T15836] wireguard0: entered promiscuous mode
[  512.194296][T15836] wireguard0: entered allmulticast mode
[  512.935150][T15847] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2055'.
[  514.003170][T15864] futex_wake_op: syz.2.2059 tries to shift op by -1; fix this program
[  514.013802][   T40] audit: type=1326 audit(769.871:17095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.026717][   T40] audit: type=1326 audit(769.871:17096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.048485][   T40] audit: type=1326 audit(769.881:17097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.060300][   T40] audit: type=1326 audit(769.881:17098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fc55a7 code=0x7ffc0000
[  514.070115][   T40] audit: type=1326 audit(769.891:17099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.081484][   T40] audit: type=1326 audit(769.891:17100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.096112][   T40] audit: type=1326 audit(769.891:17101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.103609][   T40] audit: type=1326 audit(769.891:17102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.116560][   T40] audit: type=1326 audit(769.891:17103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.124207][   T40] audit: type=1326 audit(769.891:17104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15862 comm="syz.2.2059" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  514.735070][T15874] futex_wake_op: syz.1.2068 tries to shift op by -1; fix this program
[  516.961865][T15905] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2067'.
[  517.425863][T15909] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2072'.
[  517.973472][T15920] overlayfs: failed to resolve './file0': -2
[  518.251125][T15926] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2076'.
[  518.385698][T15940] netlink: 'syz.0.2079': attribute type 2 has an invalid length.
[  518.440340][T15940] netlink: 532 bytes leftover after parsing attributes in process `syz.0.2079'.
[  518.806572][T15958] lo speed is unknown, defaulting to 1000
[  518.809299][T15958] wg2 speed is unknown, defaulting to 1000
[  518.971669][ T6074] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  519.124132][ T6074] usb 6-1: config 0 has no interfaces?
[  519.132807][ T6074] usb 6-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  519.137286][ T6074] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  519.152089][ T6074] usb 6-1: Product: syz
[  519.154105][ T6074] usb 6-1: Manufacturer: syz
[  519.156245][ T6074] usb 6-1: SerialNumber: syz
[  519.169699][ T6074] usb 6-1: config 0 descriptor??
[  519.427587][   T59] usb 6-1: USB disconnect, device number 17
[  520.898609][ T5954] Bluetooth: hci2: Ignoring connect complete event for invalid link type
[  521.492721][T16001] dvmrp0: entered allmulticast mode
[  521.827167][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  521.830831][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  521.836171][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  521.839735][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  521.844072][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  521.847787][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  521.852389][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  521.855278][T16008] futex_wake_op: syz.2.2097 tries to shift op by -1; fix this program
[  521.856031][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  521.862680][   T40] kauditd_printk_skb: 417 callbacks suppressed
[  521.862697][   T40] audit: type=1326 audit(777.714:17522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  521.864551][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  521.868520][   T40] audit: type=1326 audit(777.724:17523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  521.876912][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  521.877279][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  521.885085][   T40] audit: type=1326 audit(777.734:17524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fc55a7 code=0x7ffc0000
[  521.893724][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  521.901426][   T40] audit: type=1326 audit(777.734:17525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  521.901467][   T40] audit: type=1326 audit(777.734:17526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fc55a7 code=0x7ffc0000
[  521.901502][   T40] audit: type=1326 audit(777.734:17527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  521.901537][   T40] audit: type=1326 audit(777.734:17528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  521.901570][   T40] audit: type=1326 audit(777.734:17529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  521.901647][   T40] audit: type=1326 audit(777.734:17530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  521.912758][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  521.917580][   T40] audit: type=1326 audit(777.734:17531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16007 comm="syz.2.2097" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  521.926453][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  521.989790][T16005] __nla_validate_parse: 1 callbacks suppressed
[  521.989806][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  521.997269][T16005] netlink: 'syz.3.2096': attribute type 16 has an invalid length.
[  522.000834][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.005769][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.010298][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.014868][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.019523][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.024502][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.028983][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.033492][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.038142][T16005] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2096'.
[  522.245300][T16018] binder_alloc: binder_alloc_mmap_handler: 16016 80ffd000-80fff000 already mapped failed -16
[  523.385786][T16051] overlayfs: failed to resolve './file0': -2
[  524.343573][T16065] futex_wake_op: syz.0.2113 tries to shift op by -1; fix this program
[  524.356093][T16067] dlm: no local IP address has been set
[  524.362866][T16067] dlm: cannot start dlm midcomms -107
[  526.589150][T16096] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  526.592263][T16096] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  526.595571][T16096] vhci_hcd vhci_hcd.0: Device attached
[  526.756714][T16097] vhci_hcd: connection closed
[  526.757101][ T1251] vhci_hcd vhci_hcd.3: stop threads
[  526.765420][ T1251] vhci_hcd vhci_hcd.3: release socket
[  526.769611][ T1251] vhci_hcd vhci_hcd.3: disconnect device
[  526.830194][ T6075] usb 43-1: new low-speed USB device number 14 using vhci_hcd
[  526.833623][ T6075] usb 43-1: enqueue for inactive port 0
[  526.898861][ T6075] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  526.946408][T16110] fuse: Bad value for 'user_id'
[  526.949928][T16110] fuse: Bad value for 'user_id'
[  527.553584][T16123] futex_wake_op: syz.2.2127 tries to shift op by -1; fix this program
[  527.558031][   T40] kauditd_printk_skb: 420 callbacks suppressed
[  527.558095][   T40] audit: type=1326 audit(783.399:17952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.568352][   T40] audit: type=1326 audit(783.399:17953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.575860][   T40] audit: type=1326 audit(783.399:17954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.583555][   T40] audit: type=1326 audit(783.399:17955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.590608][   T40] audit: type=1326 audit(783.399:17956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.598743][   T40] audit: type=1326 audit(783.399:17957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.606379][   T40] audit: type=1326 audit(783.399:17958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.615074][   T40] audit: type=1326 audit(783.409:17959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.623252][   T40] audit: type=1326 audit(783.409:17960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=313 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  527.632133][   T40] audit: type=1326 audit(783.409:17961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16122 comm="syz.2.2127" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  528.035843][T16135] FAULT_INJECTION: forcing a failure.
[  528.035843][T16135] name failslab, interval 1, probability 0, space 0, times 0
[  528.045232][T16135] CPU: 3 UID: 0 PID: 16135 Comm: syz.3.2131 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  528.045265][T16135] Tainted: [L]=SOFTLOCKUP
[  528.045272][T16135] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  528.045283][T16135] Call Trace:
[  528.045290][T16135]  <TASK>
[  528.045298][T16135]  dump_stack_lvl+0x16c/0x1f0
[  528.045332][T16135]  should_fail_ex+0x512/0x640
[  528.045353][T16135]  ? fs_reclaim_acquire+0xae/0x150
[  528.045386][T16135]  should_failslab+0xc2/0x120
[  528.045414][T16135]  __kmalloc_noprof+0xeb/0x910
[  528.045435][T16135]  ? tomoyo_encode2+0x100/0x3e0
[  528.045465][T16135]  ? tomoyo_encode2+0x100/0x3e0
[  528.045489][T16135]  tomoyo_encode2+0x100/0x3e0
[  528.045516][T16135]  tomoyo_encode+0x29/0x50
[  528.045548][T16135]  tomoyo_realpath_from_path+0x18f/0x6e0
[  528.045574][T16135]  ? tomoyo_profile+0x47/0x60
[  528.045597][T16135]  tomoyo_path_number_perm+0x245/0x580
[  528.045613][T16135]  ? tomoyo_path_number_perm+0x237/0x580
[  528.045638][T16135]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  528.045685][T16135]  ? find_held_lock+0x2b/0x80
[  528.045710][T16135]  ? hook_file_ioctl_common+0x144/0x410
[  528.045739][T16135]  ? __fget_files+0x20e/0x3c0
[  528.045764][T16135]  ? __fput_deferred+0x430/0x480
[  528.045787][T16135]  security_file_ioctl_compat+0x9b/0x240
[  528.045812][T16135]  __ia32_compat_sys_ioctl+0xc3/0x370
[  528.045838][T16135]  __do_fast_syscall_32+0xe8/0x680
[  528.045870][T16135]  do_fast_syscall_32+0x32/0x80
[  528.045888][T16135]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  528.045911][T16135] RIP: 0023:0xf703d579
[  528.045927][T16135] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  528.045945][T16135] RSP: 002b:00000000f542d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  528.045965][T16135] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000c048aec8
[  528.045977][T16135] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  528.045986][T16135] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  528.045997][T16135] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  528.046011][T16135] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  528.046036][T16135]  </TASK>
[  528.046055][T16135] ERROR: Out of memory at tomoyo_realpath_from_path.
[  528.194271][T16138] overlayfs: failed to resolve './file0': -2
[  528.651047][T16149] overlayfs: failed to resolve './file0': -2
[  528.664812][T16153] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  528.667828][T16153] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  528.674336][T16153] vhci_hcd vhci_hcd.0: Device attached
[  528.784040][T16154] vhci_hcd: connection closed
[  528.784435][ T1251] vhci_hcd vhci_hcd.3: stop threads
[  528.788887][ T1251] vhci_hcd vhci_hcd.3: release socket
[  528.793562][ T1251] vhci_hcd vhci_hcd.3: disconnect device
[  528.850597][ T6007] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  529.136074][T16160] __nla_validate_parse: 23 callbacks suppressed
[  529.136092][T16160] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2138'.
[  529.151572][T16160] 8021q: adding VLAN 0 to HW filter on device bond2
[  529.162839][T16160] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2138'.
[  529.167314][T16160] bond2: entered allmulticast mode
[  529.538699][T16178] FAULT_INJECTION: forcing a failure.
[  529.538699][T16178] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  529.543882][T16178] CPU: 2 UID: 0 PID: 16178 Comm: syz.3.2141 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  529.543901][T16178] Tainted: [L]=SOFTLOCKUP
[  529.543905][T16178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  529.543912][T16178] Call Trace:
[  529.543916][T16178]  <TASK>
[  529.543920][T16178]  dump_stack_lvl+0x16c/0x1f0
[  529.543940][T16178]  should_fail_ex+0x512/0x640
[  529.543955][T16178]  _copy_from_user+0x2e/0xd0
[  529.543968][T16178]  kvm_arch_vm_ioctl+0x1414/0x18b0
[  529.543985][T16178]  ? __kernel_text_address+0xd/0x40
[  529.543998][T16178]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[  529.544013][T16178]  ? arch_stack_walk+0xa6/0x100
[  529.544031][T16178]  ? __lock_acquire+0x436/0x2890
[  529.544042][T16178]  ? stack_trace_save+0x8e/0xc0
[  529.544060][T16178]  ? __pfx_stack_trace_save+0x10/0x10
[  529.544078][T16178]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  529.544100][T16178]  ? __lock_acquire+0x436/0x2890
[  529.544120][T16178]  ? __lock_acquire+0x436/0x2890
[  529.544136][T16178]  ? find_held_lock+0x2b/0x80
[  529.544151][T16178]  ? is_bpf_text_address+0x8a/0x1a0
[  529.544166][T16178]  ? bpf_ksym_find+0x124/0x1c0
[  529.544178][T16178]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  529.544195][T16178]  ? is_bpf_text_address+0x94/0x1a0
[  529.544209][T16178]  ? kernel_text_address+0x8d/0x100
[  529.544221][T16178]  ? __kernel_text_address+0xd/0x40
[  529.544232][T16178]  ? unwind_get_return_address+0x59/0xa0
[  529.544247][T16178]  ? arch_stack_walk+0xa6/0x100
[  529.544263][T16178]  kvm_vm_ioctl+0x1b03/0x4090
[  529.544278][T16178]  ? stack_trace_save+0x8e/0xc0
[  529.544294][T16178]  ? __pfx_stack_trace_save+0x10/0x10
[  529.544311][T16178]  ? stack_depot_save_flags+0x29/0x9b0
[  529.544323][T16178]  ? __lock_acquire+0x436/0x2890
[  529.544333][T16178]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  529.544346][T16178]  ? kasan_save_stack+0x42/0x60
[  529.544361][T16178]  ? kasan_save_stack+0x33/0x60
[  529.544374][T16178]  ? kasan_save_track+0x14/0x30
[  529.544387][T16178]  ? kasan_save_free_info+0x3b/0x60
[  529.544399][T16178]  ? __kasan_slab_free+0x5f/0x80
[  529.544413][T16178]  ? kfree+0x2f8/0x6e0
[  529.544423][T16178]  ? tomoyo_path_number_perm+0x470/0x580
[  529.544435][T16178]  ? security_file_ioctl_compat+0x9b/0x240
[  529.544448][T16178]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  529.544462][T16178]  ? __do_fast_syscall_32+0xe8/0x680
[  529.544479][T16178]  ? do_fast_syscall_32+0x32/0x80
[  529.544488][T16178]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  529.544503][T16178]  ? kvm_arch_vm_compat_ioctl+0x2d0/0x470
[  529.544519][T16178]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  529.544579][T16178]  ? kasan_quarantine_put+0x10a/0x240
[  529.544594][T16178]  ? lockdep_hardirqs_on+0x7c/0x110
[  529.544613][T16178]  ? find_held_lock+0x2b/0x80
[  529.544627][T16178]  ? tomoyo_path_number_perm+0x295/0x580
[  529.544641][T16178]  ? tomoyo_path_number_perm+0x18d/0x580
[  529.544655][T16178]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  529.544672][T16178]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  529.544689][T16178]  ? do_vfs_ioctl+0x128/0x14f0
[  529.544701][T16178]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  529.544716][T16178]  kvm_vm_compat_ioctl+0x393/0x3f0
[  529.544730][T16178]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  529.544744][T16178]  ? find_held_lock+0x2b/0x80
[  529.544758][T16178]  ? hook_file_ioctl_common+0x144/0x410
[  529.544774][T16178]  ? __fget_files+0x20e/0x3c0
[  529.544790][T16178]  ? __fput_deferred+0x430/0x480
[  529.544804][T16178]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  529.544818][T16178]  __ia32_compat_sys_ioctl+0x242/0x370
[  529.544833][T16178]  __do_fast_syscall_32+0xe8/0x680
[  529.544851][T16178]  do_fast_syscall_32+0x32/0x80
[  529.544861][T16178]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  529.544874][T16178] RIP: 0023:0xf703d579
[  529.544883][T16178] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  529.544894][T16178] RSP: 002b:00000000f542d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  529.544905][T16178] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000c048aec8
[  529.544911][T16178] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  529.544918][T16178] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  529.544924][T16178] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  529.544930][T16178] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  529.544943][T16178]  </TASK>
[  529.851572][  T141] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  530.031920][  T141] usb 6-1: Using ep0 maxpacket: 32
[  530.460902][  T141] usb 6-1: unable to get BOS descriptor or descriptor too short
[  530.465472][  T141] usb 6-1: unable to read config index 0 descriptor/start: -71
[  530.468847][  T141] usb 6-1: can't read configurations, error -71
[  531.806153][T16220] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2151'.
[  532.218256][T16227] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2160'.
[  532.221728][T16226] futex_wake_op: syz.3.2152 tries to shift op by -1; fix this program
[  532.571015][   T40] kauditd_printk_skb: 362 callbacks suppressed
[  532.571032][   T40] audit: type=1326 audit(788.414:18324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703d579 code=0x7ffc0000
[  532.584023][   T40] audit: type=1326 audit(788.424:18325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703d5a7 code=0x7ffc0000
[  532.594073][   T40] audit: type=1326 audit(788.424:18326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703d579 code=0x7ffc0000
[  532.603427][   T40] audit: type=1326 audit(788.434:18327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703d5a7 code=0x7ffc0000
[  532.613332][   T40] audit: type=1326 audit(788.434:18328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=313 compat=1 ip=0xf703d579 code=0x7ffc0000
[  532.623554][   T40] audit: type=1326 audit(788.434:18329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703d579 code=0x7ffc0000
[  532.633158][   T40] audit: type=1326 audit(788.434:18330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703d5a7 code=0x7ffc0000
[  532.644035][   T40] audit: type=1326 audit(788.434:18331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=313 compat=1 ip=0xf703d579 code=0x7ffc0000
[  532.653306][   T40] audit: type=1326 audit(788.444:18332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703d579 code=0x7ffc0000
[  532.673659][   T40] audit: type=1326 audit(788.444:18333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16225 comm="syz.3.2152" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703d5a7 code=0x7ffc0000
[  532.940347][T16233] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2153'.
[  532.944021][T16233] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2153'.
[  533.064140][T16237] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.2155'.
[  533.325946][T16244] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2158'.
[  533.490540][T16248] openvswitch: netlink: IPv4 tunnel dst address is zero
[  533.809189][ T5954] Bluetooth: hci2: unexpected event for opcode 0x202a
[  533.872119][T16254] FAULT_INJECTION: forcing a failure.
[  533.872119][T16254] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  533.879293][T16254] CPU: 1 UID: 0 PID: 16254 Comm: syz.0.2163 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  533.879324][T16254] Tainted: [L]=SOFTLOCKUP
[  533.879330][T16254] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  533.879341][T16254] Call Trace:
[  533.879348][T16254]  <TASK>
[  533.879372][T16254]  dump_stack_lvl+0x16c/0x1f0
[  533.879406][T16254]  should_fail_ex+0x512/0x640
[  533.879430][T16254]  _copy_to_user+0x32/0xd0
[  533.879451][T16254]  kvm_arch_vm_ioctl+0x1464/0x18b0
[  533.879487][T16254]  ? __pfx_kvm_arch_vm_ioctl+0x10/0x10
[  533.879513][T16254]  ? __update_page_owner_handle+0x395/0x550
[  533.879545][T16254]  ? find_held_lock+0x2b/0x80
[  533.879569][T16254]  ? __page_table_check_zero+0x2e8/0x4a0
[  533.879597][T16254]  ? __page_table_check_zero+0x2f2/0x4a0
[  533.879627][T16254]  ? __lock_acquire+0x436/0x2890
[  533.879663][T16254]  ? __lock_acquire+0x436/0x2890
[  533.879692][T16254]  ? find_held_lock+0x2b/0x80
[  533.879714][T16254]  ? is_bpf_text_address+0x8a/0x1a0
[  533.879737][T16254]  ? bpf_ksym_find+0x124/0x1c0
[  533.879755][T16254]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  533.879783][T16254]  ? is_bpf_text_address+0x94/0x1a0
[  533.879806][T16254]  ? kernel_text_address+0x8d/0x100
[  533.879825][T16254]  ? __kernel_text_address+0xd/0x40
[  533.879842][T16254]  ? unwind_get_return_address+0x59/0xa0
[  533.879863][T16254]  ? arch_stack_walk+0xa6/0x100
[  533.879888][T16254]  kvm_vm_ioctl+0x1b03/0x4090
[  533.879910][T16254]  ? stack_trace_save+0x8e/0xc0
[  533.879934][T16254]  ? __pfx_stack_trace_save+0x10/0x10
[  533.879959][T16254]  ? stack_depot_save_flags+0x29/0x9b0
[  533.879979][T16254]  ? __lock_acquire+0x436/0x2890
[  533.879994][T16254]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  533.880014][T16254]  ? kasan_save_stack+0x42/0x60
[  533.880034][T16254]  ? kasan_save_stack+0x33/0x60
[  533.880054][T16254]  ? kasan_save_track+0x14/0x30
[  533.880074][T16254]  ? kasan_save_free_info+0x3b/0x60
[  533.880090][T16254]  ? __kasan_slab_free+0x5f/0x80
[  533.880111][T16254]  ? kfree+0x2f8/0x6e0
[  533.880127][T16254]  ? tomoyo_path_number_perm+0x470/0x580
[  533.880146][T16254]  ? security_file_ioctl_compat+0x9b/0x240
[  533.880166][T16254]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  533.880187][T16254]  ? __do_fast_syscall_32+0xe8/0x680
[  533.880214][T16254]  ? do_fast_syscall_32+0x32/0x80
[  533.880227][T16254]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  533.880251][T16254]  ? kvm_arch_vm_compat_ioctl+0x2d0/0x470
[  533.880275][T16254]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  533.880318][T16254]  ? kasan_quarantine_put+0x10a/0x240
[  533.880365][T16254]  ? lockdep_hardirqs_on+0x7c/0x110
[  533.880393][T16254]  ? find_held_lock+0x2b/0x80
[  533.880415][T16254]  ? tomoyo_path_number_perm+0x295/0x580
[  533.880439][T16254]  ? tomoyo_path_number_perm+0x18d/0x580
[  533.880461][T16254]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  533.880518][T16254]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  533.880545][T16254]  ? do_vfs_ioctl+0x128/0x14f0
[  533.880567][T16254]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  533.880590][T16254]  kvm_vm_compat_ioctl+0x393/0x3f0
[  533.880613][T16254]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  533.880636][T16254]  ? find_held_lock+0x2b/0x80
[  533.880657][T16254]  ? hook_file_ioctl_common+0x144/0x410
[  533.880683][T16254]  ? __fget_files+0x20e/0x3c0
[  533.880707][T16254]  ? __fput_deferred+0x430/0x480
[  533.880728][T16254]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  533.880751][T16254]  __ia32_compat_sys_ioctl+0x242/0x370
[  533.880776][T16254]  __do_fast_syscall_32+0xe8/0x680
[  533.880805][T16254]  do_fast_syscall_32+0x32/0x80
[  533.880821][T16254]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  533.880842][T16254] RIP: 0023:0xf70cd579
[  533.880857][T16254] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  533.880874][T16254] RSP: 002b:00000000f54bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  533.880891][T16254] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000c048aec8
[  533.880903][T16254] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  533.880913][T16254] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  533.880922][T16254] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  533.880932][T16254] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  533.880956][T16254]  </TASK>
[  534.592190][T16272] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2168'.
[  535.268003][T16281] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(12)
[  535.271593][T16281] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  535.271670][T16281] vhci_hcd vhci_hcd.0: Device attached
[  535.458215][T16287] vhci_hcd: connection closed
[  535.460349][ T1251] vhci_hcd vhci_hcd.1: stop threads
[  535.464950][ T1251] vhci_hcd vhci_hcd.1: release socket
[  535.468047][ T1251] vhci_hcd vhci_hcd.1: disconnect device
[  535.590884][T16290] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2171'.
[  535.873729][T16303] FAULT_INJECTION: forcing a failure.
[  535.873729][T16303] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  535.880945][T16303] CPU: 3 UID: 0 PID: 16303 Comm: syz.2.2174 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  535.880976][T16303] Tainted: [L]=SOFTLOCKUP
[  535.880983][T16303] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  535.880993][T16303] Call Trace:
[  535.881000][T16303]  <TASK>
[  535.881008][T16303]  dump_stack_lvl+0x16c/0x1f0
[  535.881040][T16303]  should_fail_ex+0x512/0x640
[  535.881064][T16303]  _copy_from_user+0x2e/0xd0
[  535.881086][T16303]  kstrtouint_from_user+0xd6/0x1d0
[  535.881111][T16303]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  535.881135][T16303]  ? __lock_acquire+0x436/0x2890
[  535.881167][T16303]  proc_fail_nth_write+0x83/0x220
[  535.881187][T16303]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  535.881213][T16303]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  535.881230][T16303]  vfs_write+0x2a0/0x11d0
[  535.881258][T16303]  ? __pfx___mutex_lock+0x10/0x10
[  535.881288][T16303]  ? __pfx_vfs_write+0x10/0x10
[  535.881311][T16303]  ? find_held_lock+0x2b/0x80
[  535.881340][T16303]  ? __fget_files+0x20e/0x3c0
[  535.881374][T16303]  ksys_write+0x12a/0x250
[  535.881398][T16303]  ? __pfx_ksys_write+0x10/0x10
[  535.881423][T16303]  ? fput+0x70/0xf0
[  535.881445][T16303]  __do_fast_syscall_32+0xe8/0x680
[  535.881475][T16303]  do_fast_syscall_32+0x32/0x80
[  535.881490][T16303]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  535.881510][T16303] RIP: 0023:0xf7fc5579
[  535.881524][T16303] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  535.881540][T16303] RSP: 002b:00000000f54b6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  535.881556][T16303] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f54b6620
[  535.881567][T16303] RDX: 0000000000000001 RSI: 00000000f7456ff4 RDI: 0000000000000000
[  535.881577][T16303] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  535.881585][T16303] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  535.881594][T16303] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  535.881619][T16303]  </TASK>
[  537.274083][T16326] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2179'.
[  538.266601][T16341] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  538.269715][T16341] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  538.294044][T16341] vhci_hcd vhci_hcd.0: Device attached
[  538.301847][T16341] validate_nla: 24 callbacks suppressed
[  538.301858][T16341] netlink: 'syz.0.2182': attribute type 1 has an invalid length.
[  538.375484][T16341] bond3: (slave geneve3): making interface the new active one
[  538.380403][T16341] bond3: (slave geneve3): Enslaving as an active interface with an up link
[  538.383712][T10970] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20004 - 0
[  538.387289][T10970] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20004 - 0
[  538.392283][T10970] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20004 - 0
[  538.415123][T10970] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20004 - 0
[  538.569390][   T24] usb 38-1: SetAddress Request (40) to port 0
[  538.572676][   T24] usb 38-1: new SuperSpeed USB device number 40 using vhci_hcd
[  538.810728][T16353] input: syz0 as /devices/virtual/input/input109
[  538.846330][T16343] vhci_hcd: connection reset by peer
[  538.848926][T10986] vhci_hcd vhci_hcd.0: stop threads
[  538.852565][T10986] vhci_hcd vhci_hcd.0: release socket
[  538.855606][T10986] vhci_hcd vhci_hcd.0: disconnect device
[  539.761273][T16366] xt_bpf: check failed: parse error
[  539.927133][T16372] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2191'.
[  540.097291][T16378] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2192'.
[  540.151332][T16379] syz1: rxe_newlink: already configured on syz_tun
[  540.263404][T16379] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2188'.
[  540.374555][T16373] mkiss: ax0: crc mode is auto.
[  543.613757][   T24] usb 38-1: device descriptor read/8, error -110
[  543.643162][T16426] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2204'.
[  543.768060][T16431] xt_bpf: check failed: parse error
[  543.866404][T16432] mkiss: ax0: crc mode is auto.
[  543.891415][T16432] rdma_rxe: rxe_newlink: failed to add syz_tun
[  543.899879][T16432] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2205'.
[  544.055398][   T24] usb usb38-port1: attempt power cycle
[  544.635141][   T24] usb usb38-port1: unable to enumerate USB device
[  544.717687][T16443] input: syz1 as /devices/virtual/input/input111
[  544.754941][T16444] netlink: 'syz.2.2208': attribute type 9 has an invalid length.
[  544.802721][T16444] netlink: 'syz.2.2208': attribute type 7 has an invalid length.
[  544.813694][T16444] netlink: 'syz.2.2208': attribute type 8 has an invalid length.
[  547.708176][T16491] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2218'.
[  548.167611][   T24] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  548.318331][   T24] usb 5-1: Using ep0 maxpacket: 32
[  548.920056][   T24] usb 5-1: unable to get BOS descriptor or descriptor too short
[  548.926726][   T24] usb 5-1: unable to read config index 0 descriptor/start: -71
[  548.930841][   T24] usb 5-1: can't read configurations, error -71
[  550.798579][T16542] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2229'.
[  552.007759][T16559] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  552.010704][T16559] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  552.015907][T16559] vhci_hcd vhci_hcd.0: Device attached
[  552.077457][T16564] vhci_hcd: connection closed
[  552.078151][T10986] vhci_hcd vhci_hcd.2: stop threads
[  552.082698][T10986] vhci_hcd vhci_hcd.2: release socket
[  552.085102][T10986] vhci_hcd vhci_hcd.2: disconnect device
[  553.403683][T16583] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  553.406926][T16583] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  553.411168][T16583] vhci_hcd vhci_hcd.0: Device attached
[  553.642250][ T6075] usb 39-1: new low-speed USB device number 14 using vhci_hcd
[  553.760165][T16593] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2241'.
[  553.963392][T16584] vhci_hcd: connection reset by peer
[  553.969556][T10970] vhci_hcd vhci_hcd.1: stop threads
[  553.971886][T10970] vhci_hcd vhci_hcd.1: release socket
[  553.978022][T10970] vhci_hcd vhci_hcd.1: disconnect device
[  555.058723][T16604] Bluetooth: hci0: load_link_keys: expected 51203 bytes, got 7 bytes
[  555.191346][   T29] libceph: connect (1)[c::]:6789 error -101
[  555.194848][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  555.464446][   T29] libceph: connect (1)[c::]:6789 error -101
[  555.467327][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  555.975184][   T29] libceph: connect (1)[c::]:6789 error -101
[  555.978457][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  556.009020][T16610] ceph: No mds server is up or the cluster is laggy
[  556.849166][T16632] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2251'.
[  557.836569][T16653] ntfs3(nullb0): Primary boot signature is not NTFS.
[  557.845004][T16653] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  557.914840][T16652] lo speed is unknown, defaulting to 1000
[  557.921720][T16652] wg2 speed is unknown, defaulting to 1000
[  558.736920][ T6075] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  559.443506][   T29] libceph: connect (1)[c::]:6789 error -101
[  559.446415][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  559.488729][T16688] ceph: No mds server is up or the cluster is laggy
[  560.040788][T16705] ubi: mtd0 is already attached to ubi31
[  560.737412][T16713] binder: BINDER_SET_CONTEXT_MGR already set
[  560.758259][T16713] binder: 16711:16713 ioctl 4018620d 800002c0 returned -16
[  560.764584][T16713] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  560.767526][T16713] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  560.772933][T16713] vhci_hcd vhci_hcd.0: Device attached
[  560.776843][T16713] binder: 16711:16713 ioctl c0306201 80000680 returned -11
[  560.785874][T16715] vhci_hcd: connection closed
[  560.786220][T10970] vhci_hcd vhci_hcd.1: stop threads
[  560.792181][T10970] vhci_hcd vhci_hcd.1: release socket
[  560.795422][T10970] vhci_hcd vhci_hcd.1: disconnect device
[  561.096421][T16728] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  561.099800][T16728] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  561.119025][T16728] vhci_hcd vhci_hcd.0: Device attached
[  561.337822][T16742] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2279'.
[  561.358785][ T6075] usb 41-1: new low-speed USB device number 12 using vhci_hcd
[  561.439735][T16746] netlink: 220 bytes leftover after parsing attributes in process `syz.0.2282'.
[  561.442863][T16746] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2282'.
[  562.175278][T16751] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2282'.
[  562.288753][T16730] vhci_hcd: connection reset by peer
[  562.413004][T10971] vhci_hcd vhci_hcd.2: stop threads
[  562.419791][T10971] vhci_hcd vhci_hcd.2: release socket
[  562.422940][T10971] vhci_hcd vhci_hcd.2: disconnect device
[  564.415416][T16769] futex_wake_op: syz.3.2287 tries to shift op by -1; fix this program
[  564.419923][   T40] kauditd_printk_skb: 124 callbacks suppressed
[  564.419938][   T40] audit: type=1326 audit(820.237:18458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  564.436555][   T40] audit: type=1326 audit(820.247:18459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  564.447696][   T40] audit: type=1326 audit(820.257:18460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703d579 code=0x7ffc0000
[  564.458802][   T40] audit: type=1326 audit(820.257:18461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703d5a7 code=0x7ffc0000
[  564.469140][   T40] audit: type=1326 audit(820.257:18462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  564.480077][   T40] audit: type=1326 audit(820.257:18463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf703d579 code=0x7ffc0000
[  564.490404][   T40] audit: type=1326 audit(820.257:18464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  564.500646][   T40] audit: type=1326 audit(820.257:18465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf703d579 code=0x7ffc0000
[  564.514277][   T40] audit: type=1326 audit(820.257:18466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703d579 code=0x7ffc0000
[  564.525017][   T40] audit: type=1326 audit(820.257:18467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16768 comm="syz.3.2287" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703d5a7 code=0x7ffc0000
[  564.793381][T16773] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  564.796556][T16773] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  564.800588][T16773] vhci_hcd vhci_hcd.0: Device attached
[  564.827521][T16773] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2288'.
[  565.286673][T16787] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2290'.
[  565.573439][T16774] vhci_hcd: connection closed
[  565.577158][   T46] vhci_hcd vhci_hcd.2: stop threads
[  565.581728][   T46] vhci_hcd vhci_hcd.2: release socket
[  565.586664][   T46] vhci_hcd vhci_hcd.2: disconnect device
[  566.378882][T16791] lo speed is unknown, defaulting to 1000
[  566.382246][T16791] wg2 speed is unknown, defaulting to 1000
[  566.513138][ T6075] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  566.563777][   T24] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  566.793424][   T24] usb 5-1: Using ep0 maxpacket: 32
[  566.799074][   T24] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  566.803001][   T24] usb 5-1: config 0 has no interface number 0
[  566.805822][   T24] usb 5-1: config 0 interface 12 has no altsetting 0
[  566.812598][   T24] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  566.829294][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  566.833666][   T24] usb 5-1: Product: syz
[  566.838387][   T24] usb 5-1: Manufacturer: syz
[  566.840839][   T24] usb 5-1: SerialNumber: syz
[  566.840959][T16809] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  566.845697][T16809] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  566.849611][T16809] vhci_hcd vhci_hcd.0: Device attached
[  566.858243][   T24] usb 5-1: config 0 descriptor??
[  566.876704][   T24] f81534 5-1:0.12: required endpoints missing
[  567.072480][  T141] usb 5-1: USB disconnect, device number 21
[  567.343922][   T29] usb 42-1: SetAddress Request (35) to port 0
[  567.352540][   T29] usb 42-1: new SuperSpeed USB device number 35 using vhci_hcd
[  567.555404][T16810] vhci_hcd: connection reset by peer
[  567.575180][T10986] vhci_hcd vhci_hcd.2: stop threads
[  567.577888][T10986] vhci_hcd vhci_hcd.2: release socket
[  567.581248][T10986] vhci_hcd vhci_hcd.2: disconnect device
[  568.089292][T16349] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  568.099364][T16349] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  568.104514][T16349] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  568.110686][T16349] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  568.115254][T16349] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  568.547543][T16821] lo speed is unknown, defaulting to 1000
[  568.554562][T16821] wg2 speed is unknown, defaulting to 1000
[  568.601236][T16826] ntfs3: Unknown parameter 'norecovery'
[  569.005375][T16821] chnl_net:caif_netlink_parms(): no params data found
[  569.085226][T16821] bridge0: port 1(bridge_slave_0) entered blocking state
[  569.088283][T16821] bridge0: port 1(bridge_slave_0) entered disabled state
[  569.091248][T16821] bridge_slave_0: entered allmulticast mode
[  569.094958][T16821] bridge_slave_0: entered promiscuous mode
[  569.100338][T16821] bridge0: port 2(bridge_slave_1) entered blocking state
[  569.103563][T16821] bridge0: port 2(bridge_slave_1) entered disabled state
[  569.107227][T16821] bridge_slave_1: entered allmulticast mode
[  569.111011][T16821] bridge_slave_1: entered promiscuous mode
[  569.140596][T16821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  569.147270][T16821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  569.173630][T16821] team0: Port device team_slave_0 added
[  569.178861][T16821] team0: Port device team_slave_1 added
[  569.203524][T16821] batman_adv: batadv0: Adding interface: batadv_slave_0
[  569.206566][T16821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  569.217826][T16821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  569.224069][T16821] batman_adv: batadv0: Adding interface: batadv_slave_1
[  569.227045][T16821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  569.238021][T16821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  569.312903][T16821] hsr_slave_0: entered promiscuous mode
[  569.331228][T16821] hsr_slave_1: entered promiscuous mode
[  569.334371][T16821] debugfs: 'hsr0' already exists in 'hsr'
[  569.348033][T16821] Cannot create hsr debugfs directory
[  570.196203][T16349] Bluetooth: hci4: command tx timeout
[  570.372531][T16846] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2311'.
[  570.955328][T10986] dvmrp0 (unregistering): left allmulticast mode
[  571.240797][T10986] bond0 (unregistering): Released all slaves
[  571.249319][T10986] bond1 (unregistering): Released all slaves
[  571.406388][T10986] bond2 (unregistering): Released all slaves
[  571.806994][T10986] tipc: Left network mode
[  572.083859][T16869] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2309'.
[  572.245415][T16877] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2310'.
[  572.277950][T16349] Bluetooth: hci4: command tx timeout
[  572.448433][   T29] usb 42-1: device descriptor read/8, error -110
[  572.580304][T16881] wireguard0: entered promiscuous mode
[  572.707702][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  572.998615][T16821] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  573.011734][T16821] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  573.015777][   T29] usb usb42-port1: attempt power cycle
[  573.021323][T16821] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  573.110940][T10986] hsr_slave_0: left promiscuous mode
[  573.114736][T10986] hsr_slave_1: left promiscuous mode
[  573.164729][T10986] pimreg (unregistering): left allmulticast mode
[  573.434521][T16905] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  573.437642][T16905] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  573.442063][T16905] vhci_hcd vhci_hcd.0: Device attached
[  573.450306][T16909] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2318'.
[  573.531075][T16912] netlink: 'syz.0.2319': attribute type 1 has an invalid length.
[  573.620058][   T29] usb usb42-port1: unable to enumerate USB device
[  573.645862][T16916] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2319'.
[  573.700503][T16915] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2317'.
[  573.729158][ T6025] usb 44-1: SetAddress Request (38) to port 0
[  573.731979][ T6025] usb 44-1: new SuperSpeed USB device number 38 using vhci_hcd
[  574.142047][T16906] vhci_hcd: connection reset by peer
[  574.145213][T10971] vhci_hcd vhci_hcd.3: stop threads
[  574.147644][T10971] vhci_hcd vhci_hcd.3: release socket
[  574.150659][T10971] vhci_hcd vhci_hcd.3: disconnect device
[  574.306991][T16821] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  574.331498][T16912] bond4: entered promiscuous mode
[  574.333898][T16912] bond4: entered allmulticast mode
[  574.336454][T16912] 8021q: adding VLAN 0 to HW filter on device bond4
[  574.345905][T16914] erspan1: entered allmulticast mode
[  574.352889][T16914] bond4: (slave erspan1): making interface the new active one
[  574.356362][T16914] erspan1: entered promiscuous mode
[  574.359644][T16349] Bluetooth: hci4: command tx timeout
[  574.360495][T16914] bond4: (slave erspan1): Enslaving as an active interface with an up link
[  574.585101][T16821] 8021q: adding VLAN 0 to HW filter on device bond0
[  574.608362][T16821] 8021q: adding VLAN 0 to HW filter on device team0
[  574.634942][T10970] bridge0: port 1(bridge_slave_0) entered blocking state
[  574.637888][T10970] bridge0: port 1(bridge_slave_0) entered forwarding state
[  574.643312][T10970] bridge0: port 2(bridge_slave_1) entered blocking state
[  574.646175][T10970] bridge0: port 2(bridge_slave_1) entered forwarding state
[  574.749046][T10986] IPVS: stop unused estimator thread 0...
[  574.859748][T16821] 8021q: adding VLAN 0 to HW filter on device batadv0
[  574.891570][T16821] veth0_vlan: entered promiscuous mode
[  574.900420][T16821] veth1_vlan: entered promiscuous mode
[  574.936661][T16821] veth0_macvtap: entered promiscuous mode
[  574.946981][T16821] veth1_macvtap: entered promiscuous mode
[  574.971606][T16821] batman_adv: batadv0: Interface activated: batadv_slave_0
[  574.994506][T16821] batman_adv: batadv0: Interface activated: batadv_slave_1
[  575.012223][T10971] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  575.016225][T10971] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  575.025268][T10971] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  575.029538][T10971] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  575.107998][ T1251] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  575.113130][ T1251] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  575.168667][T11009] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  575.173289][T11009] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  575.249876][T16952] futex_wake_op: syz.1.2300 tries to shift op by -1; fix this program
[  575.270717][   T40] kauditd_printk_skb: 235 callbacks suppressed
[  575.270735][   T40] audit: type=1326 audit(831.058:18703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  575.285511][   T40] audit: type=1326 audit(831.058:18704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  575.295108][T16953] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2326'.
[  575.301324][   T40] audit: type=1326 audit(831.058:18705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  575.313098][   T40] audit: type=1326 audit(831.058:18706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  575.324228][   T40] audit: type=1326 audit(831.058:18707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  575.336298][   T40] audit: type=1326 audit(831.058:18708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  575.346021][   T40] audit: type=1326 audit(831.058:18709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  575.376172][   T40] audit: type=1326 audit(831.058:18710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  575.385818][   T40] audit: type=1326 audit(831.058:18711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe45a7 code=0x7ffc0000
[  575.406649][   T40] audit: type=1326 audit(831.058:18712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16951 comm="syz.1.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=313 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  576.167048][T16979] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2335'.
[  576.451498][T16349] Bluetooth: hci4: command tx timeout
[  577.136935][T17007] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2344'.
[  577.328616][T17020] netlink: 'syz.3.2348': attribute type 3 has an invalid length.
[  577.453957][T17021] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2347'.
[  578.760234][T17033] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2353'.
[  578.764432][ T6025] usb 44-1: device descriptor read/8, error -110
[  578.802983][T17033] team0: Port device team_slave_0 removed
[  579.225335][ T6025] usb usb44-port1: attempt power cycle
[  579.311836][T17045] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2357'.
[  579.558018][T17049] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  579.561007][T17049] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  579.564998][T17049] vhci_hcd vhci_hcd.0: Device attached
[  579.789917][ T6025] usb usb44-port1: unable to enumerate USB device
[  579.804590][T16948] usb 39-1: new low-speed USB device number 15 using vhci_hcd
[  580.156648][T17050] vhci_hcd: connection reset by peer
[  580.159354][T10971] vhci_hcd vhci_hcd.1: stop threads
[  580.161987][T10971] vhci_hcd vhci_hcd.1: release socket
[  580.164557][T10971] vhci_hcd vhci_hcd.1: disconnect device
[  580.423900][T17061] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2360'.
[  580.968884][T17067] ntfs3(nullb0): Primary boot signature is not NTFS.
[  580.978738][T17067] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  581.706430][T17087] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2368'.
[  582.829211][T17095] netlink: 186912 bytes leftover after parsing attributes in process `syz.1.2371'.
[  582.838760][T17095] NILFS (nullb0): couldn't find nilfs on the device
[  583.302645][T17101] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  583.305753][T17101] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  583.313500][T17101] vhci_hcd vhci_hcd.0: Device attached
[  583.369675][T17108] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  583.372727][T17108] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  583.376086][T17108] vhci_hcd vhci_hcd.0: Device attached
[  583.419951][T17101] random: crng reseeded on system resumption
[  583.477827][T10986] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  583.482762][T10986] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  583.577239][   T59] usb 42-1: SetAddress Request (39) to port 0
[  583.580563][   T59] usb 42-1: new SuperSpeed USB device number 39 using vhci_hcd
[  583.825276][T17105] vhci_hcd: connection reset by peer
[  583.828068][T11009] vhci_hcd vhci_hcd.2: stop threads
[  583.830329][T11009] vhci_hcd vhci_hcd.2: release socket
[  583.832695][T11009] vhci_hcd vhci_hcd.2: disconnect device
[  584.006029][T17109] vhci_hcd: connection closed
[  584.006357][T11009] vhci_hcd vhci_hcd.1: stop threads
[  584.012067][T11009] vhci_hcd vhci_hcd.1: release socket
[  584.015146][T11009] vhci_hcd vhci_hcd.1: disconnect device
[  584.163409][T17114] Cannot find map_set index 2 as target
[  584.167115][T17114] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2376'.
[  584.630273][ T5954] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  584.636644][ T5954] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  584.642758][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  584.647104][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  584.651118][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  584.775180][ T6538] syz_tun (unregistering): left allmulticast mode
[  584.778327][ T6538] syz_tun (unregistering): left promiscuous mode
[  584.781328][ T6538] bridge0: port 1(syz_tun) entered disabled state
[  584.917224][T10970] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  584.918161][T16948] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  585.046117][T10970] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  585.063351][T17124] lo speed is unknown, defaulting to 1000
[  585.068508][T17124] wg2 speed is unknown, defaulting to 1000
[  585.123089][T10970] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  585.198950][T10970] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  585.667833][T17135] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2382'.
[  586.377943][T10970] bond4 (unregistering): (slave erspan1): Releasing active interface
[  586.383655][T10970] erspan1 (unregistering): left promiscuous mode
[  586.463732][T10970] bond3 (unregistering): (slave geneve3): Releasing active interface
[  586.645910][T17153] Cannot find add_set index 0 as target
[  586.700172][ T5954] Bluetooth: hci1: command tx timeout
[  586.723360][T10970] bond0 (unregistering): Released all slaves
[  586.877041][T10970] bond1 (unregistering): Released all slaves
[  587.094713][T10970] bond2 (unregistering): Released all slaves
[  587.106391][T10970] bond3 (unregistering): Released all slaves
[  587.374700][T10970] bond4 (unregistering): Released all slaves
[  587.467224][T17124] chnl_net:caif_netlink_parms(): no params data found
[  587.608962][T17124] bridge0: port 1(bridge_slave_0) entered blocking state
[  587.612879][T17124] bridge0: port 1(bridge_slave_0) entered disabled state
[  587.616198][T17124] bridge_slave_0: entered allmulticast mode
[  587.620530][T17124] bridge_slave_0: entered promiscuous mode
[  587.626098][T17124] bridge0: port 2(bridge_slave_1) entered blocking state
[  587.629675][T17124] bridge0: port 2(bridge_slave_1) entered disabled state
[  587.633242][T17124] bridge_slave_1: entered allmulticast mode
[  587.637303][T17124] bridge_slave_1: entered promiscuous mode
[  587.641899][T10970] tipc: Left network mode
[  587.740782][T17164] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  587.743551][T17164] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  587.757974][T17164] vhci_hcd vhci_hcd.0: Device attached
[  587.835790][T17124] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  587.851906][T17124] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  587.920496][T17124] team0: Port device team_slave_0 added
[  587.926980][T17124] team0: Port device team_slave_1 added
[  587.954848][T17124] batman_adv: batadv0: Adding interface: batadv_slave_0
[  587.958348][T17124] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  587.971086][T17124] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  587.977506][T17124] batman_adv: batadv0: Adding interface: batadv_slave_1
[  587.990832][T17124] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  588.002820][T17124] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  588.030672][   T24] usb 40-1: SetAddress Request (31) to port 0
[  588.033358][   T24] usb 40-1: new SuperSpeed USB device number 31 using vhci_hcd
[  588.189928][T17124] hsr_slave_0: entered promiscuous mode
[  588.201851][T17124] hsr_slave_1: entered promiscuous mode
[  588.370608][T17168] vhci_hcd: connection reset by peer
[  588.376222][ T1251] vhci_hcd vhci_hcd.1: stop threads
[  588.381545][ T1251] vhci_hcd vhci_hcd.1: release socket
[  588.388426][ T1251] vhci_hcd vhci_hcd.1: disconnect device
[  588.485566][T10970] team0 (unregistering): Port device batadv1 removed
[  588.519602][T10970] pim6reg (unregistering): left allmulticast mode
[  588.623281][   T59] usb 42-1: device descriptor read/8, error -110
[  588.685463][T17198] netlink: 100 bytes leftover after parsing attributes in process `syz.2.2387'.
[  588.778826][ T5954] Bluetooth: hci1: command tx timeout
[  589.032303][   T59] usb usb42-port1: attempt power cycle
[  589.349433][T17211] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2392'.
[  589.662666][   T59] usb usb42-port1: unable to enumerate USB device
[  590.118367][T17206] syzkaller0: entered promiscuous mode
[  590.121382][T17206] syzkaller0: entered allmulticast mode
[  590.588389][T17237] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2397'.
[  590.853706][ T5954] Bluetooth: hci1: command tx timeout
[  591.000616][T17252] netlink: 'syz.1.2398': attribute type 1 has an invalid length.
[  591.004474][T17252] netlink: 228 bytes leftover after parsing attributes in process `syz.1.2398'.
[  591.376059][T17124] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  591.382714][T17124] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  591.387262][T17124] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  591.392448][T17124] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  591.435491][T17124] 8021q: adding VLAN 0 to HW filter on device bond0
[  591.453534][T17124] 8021q: adding VLAN 0 to HW filter on device team0
[  591.462274][T10971] bridge0: port 1(bridge_slave_0) entered blocking state
[  591.465845][T10971] bridge0: port 1(bridge_slave_0) entered forwarding state
[  591.478515][T11004] bridge0: port 2(bridge_slave_1) entered blocking state
[  591.481786][T11004] bridge0: port 2(bridge_slave_1) entered forwarding state
[  591.710118][T17124] 8021q: adding VLAN 0 to HW filter on device batadv0
[  591.726093][T17270] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2400'.
[  591.747990][T17124] veth0_vlan: entered promiscuous mode
[  591.763145][T17124] veth1_vlan: entered promiscuous mode
[  591.795606][T17124] veth0_macvtap: entered promiscuous mode
[  591.802441][T17124] veth1_macvtap: entered promiscuous mode
[  591.819836][T17124] batman_adv: batadv0: Interface activated: batadv_slave_0
[  591.831501][T17124] batman_adv: batadv0: Interface activated: batadv_slave_1
[  591.840508][T11000] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  591.844741][T11000] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  591.851659][T11000] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  591.857122][T11000] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  592.046622][T11000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  592.060750][T11000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  592.112014][T11000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  592.116820][T11000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  592.790432][T17290] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  592.793426][T17290] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  592.833937][T17290] vhci_hcd vhci_hcd.0: Device attached
[  592.936538][ T5954] Bluetooth: hci1: command tx timeout
[  593.094878][   T24] usb 40-1: device descriptor read/8, error -110
[  593.154800][ T6074] usb 38-1: SetAddress Request (44) to port 0
[  593.167178][ T6074] usb 38-1: new SuperSpeed USB device number 44 using vhci_hcd
[  593.170976][T17305] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2404'.
[  593.410226][T16349] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  593.423602][T17291] vhci_hcd: connection reset by peer
[  593.423631][T16349] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  593.437874][T16349] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  593.442131][T16349] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  593.451301][T16349] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  593.487520][   T24] usb usb40-port1: attempt power cycle
[  593.707369][T11000] vhci_hcd vhci_hcd.0: stop threads
[  593.723878][T11000] vhci_hcd vhci_hcd.0: release socket
[  593.730796][T11000] vhci_hcd vhci_hcd.0: disconnect device
[  594.014342][T17301] wg2 speed is unknown, defaulting to 1000
[  594.046303][   T24] usb usb40-port1: unable to enumerate USB device
[  594.353194][T17301] chnl_net:caif_netlink_parms(): no params data found
[  594.395386][T17323] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  594.398314][T17323] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  594.402369][T17323] vhci_hcd vhci_hcd.0: Device attached
[  594.529237][T17301] bridge0: port 1(bridge_slave_0) entered blocking state
[  594.532813][T17301] bridge0: port 1(bridge_slave_0) entered disabled state
[  594.536838][T17301] bridge_slave_0: entered allmulticast mode
[  594.541048][T17301] bridge_slave_0: entered promiscuous mode
[  594.546442][T17301] bridge0: port 2(bridge_slave_1) entered blocking state
[  594.549980][T17301] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.553444][T17301] bridge_slave_1: entered allmulticast mode
[  594.558084][T17301] bridge_slave_1: entered promiscuous mode
[  594.635851][   T24] usb 39-1: new low-speed USB device number 16 using vhci_hcd
[  594.639869][T17301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  594.649327][T17301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  594.682814][T11004] bridge_slave_1: left allmulticast mode
[  594.685697][T11004] bridge_slave_1: left promiscuous mode
[  594.692290][T11004] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.700473][T11004] bridge_slave_0: left allmulticast mode
[  594.703048][T11004] bridge_slave_0: left promiscuous mode
[  594.705734][T11004] bridge0: port 1(bridge_slave_0) entered disabled state
[  595.015393][T17324] vhci_hcd: connection reset by peer
[  595.018898][T11000] vhci_hcd vhci_hcd.1: stop threads
[  595.021358][T11000] vhci_hcd vhci_hcd.1: release socket
[  595.027772][T11000] vhci_hcd vhci_hcd.1: disconnect device
[  595.328943][T11004] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  595.338945][T11004] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  595.344107][T11004] bond0 (unregistering): Released all slaves
[  595.389804][T17301] team0: Port device team_slave_0 added
[  595.408956][T17301] team0: Port device team_slave_1 added
[  595.441804][T17301] batman_adv: batadv0: Adding interface: batadv_slave_0
[  595.444751][T17301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  595.466742][T17301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  595.473125][T17301] batman_adv: batadv0: Adding interface: batadv_slave_1
[  595.475866][T17301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  595.494406][T17301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  595.499203][ T5954] Bluetooth: hci2: command tx timeout
[  595.511854][T11004] tipc: Left network mode
[  595.539490][T17301] hsr_slave_0: entered promiscuous mode
[  595.541841][T17301] hsr_slave_1: entered promiscuous mode
[  595.543879][T17301] debugfs: 'hsr0' already exists in 'hsr'
[  595.545742][T17301] Cannot create hsr debugfs directory
[  596.441606][T17368] futex_wake_op: syz.3.2409 tries to shift op by -1; fix this program
[  596.446306][   T40] kauditd_printk_skb: 240 callbacks suppressed
[  596.446324][   T40] audit: type=1326 audit(852.231:18953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.458780][   T40] audit: type=1326 audit(852.231:18954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.469998][   T40] audit: type=1326 audit(852.231:18955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.480829][   T40] audit: type=1326 audit(852.231:18956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.491640][   T40] audit: type=1326 audit(852.241:18957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.519606][   T40] audit: type=1326 audit(852.241:18958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.534099][   T40] audit: type=1326 audit(852.241:18959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.551720][T11004] hsr_slave_0: left promiscuous mode
[  596.560127][   T40] audit: type=1326 audit(852.241:18960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=313 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.570267][T11004] hsr_slave_1: left promiscuous mode
[  596.573317][T11004] batman_adv: batadv0: Removing interface: batadv_slave_0
[  596.585171][T11004] batman_adv: batadv0: Removing interface: batadv_slave_1
[  596.589206][   T40] audit: type=1326 audit(852.241:18961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703d579 code=0x7ffc0000
[  596.614926][   T40] audit: type=1326 audit(852.241:18962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17367 comm="syz.3.2409" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703d5a7 code=0x7ffc0000
[  597.226545][T11004] team0 (unregistering): Port device team_slave_1 removed
[  597.582886][ T5954] Bluetooth: hci2: command tx timeout
[  598.119394][T17301] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  598.128226][T17301] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  598.131678][T17397] ip6t_srh: unknown srh match flags  448C
[  598.147933][T17301] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  598.157871][T17301] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  598.229177][ T6074] usb 38-1: device descriptor read/8, error -110
[  598.374239][T17301] 8021q: adding VLAN 0 to HW filter on device bond0
[  598.423607][T17301] 8021q: adding VLAN 0 to HW filter on device team0
[  598.450185][T10971] bridge0: port 1(bridge_slave_0) entered blocking state
[  598.450299][T10971] bridge0: port 1(bridge_slave_0) entered forwarding state
[  598.483892][T10970] bridge0: port 2(bridge_slave_1) entered blocking state
[  598.484082][T10970] bridge0: port 2(bridge_slave_1) entered forwarding state
[  598.502708][T11004] IPVS: stop unused estimator thread 0...
[  598.630127][ T6074] usb usb38-port1: attempt power cycle
[  598.810163][T17388] wg2 speed is unknown, defaulting to 1000
[  598.892112][T17301] 8021q: adding VLAN 0 to HW filter on device batadv0
[  598.937058][T17301] veth0_vlan: entered promiscuous mode
[  598.946854][T17301] veth1_vlan: entered promiscuous mode
[  598.977062][T17301] veth0_macvtap: entered promiscuous mode
[  598.985916][T17301] veth1_macvtap: entered promiscuous mode
[  599.092483][T17301] batman_adv: batadv0: Interface activated: batadv_slave_0
[  599.103665][T17301] batman_adv: batadv0: Interface activated: batadv_slave_1
[  599.108513][T17413] wg2 speed is unknown, defaulting to 1000
[  599.116160][T11000] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  599.139664][T11000] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  599.144425][T11000] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  599.148954][T11000] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  599.190365][ T6074] usb usb38-port1: unable to enumerate USB device
[  599.301607][T11004] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  599.316584][T11004] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  599.397271][T10971] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  599.411436][T10971] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  599.662066][ T5954] Bluetooth: hci2: command tx timeout
[  599.683286][T17435] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2419'.
[  599.686733][T17435] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2419'.
[  599.733759][   T24] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  601.741441][ T5954] Bluetooth: hci2: command tx timeout
[  601.846183][T17467] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  601.849387][T17467] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  601.871792][T17467] vhci_hcd vhci_hcd.0: Device attached
[  601.875827][T17469] vhci_hcd: unknown pdu 1
[  601.878894][T10967] vhci_hcd vhci_hcd.1: stop threads
[  601.884141][T10967] vhci_hcd vhci_hcd.1: release socket
[  601.899784][T10967] vhci_hcd vhci_hcd.1: disconnect device
[  601.902464][T17472] tmpfs: Unknown parameter 'xpo'
[  604.690841][T17514] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2440'.
[  604.695210][T17514] tipc: Invalid UDP bearer configuration
[  604.695258][T17514] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  605.098525][T17518] wg2 speed is unknown, defaulting to 1000
[  605.440080][T17518] netlink: 'syz.3.2442': attribute type 13 has an invalid length.
[  605.458043][T17518] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  605.496600][T17528] ip6t_srh: unknown srh match flags  448C
[  606.511157][T17551] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  606.514355][T17551] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  606.519161][T17551] vhci_hcd vhci_hcd.0: Device attached
[  606.527613][T17552] vhci_hcd: connection closed
[  606.527801][   T86] vhci_hcd vhci_hcd.3: stop threads
[  606.531253][   T86] vhci_hcd vhci_hcd.3: release socket
[  606.533450][   T86] vhci_hcd vhci_hcd.3: disconnect device
[  606.605635][T17560] sch_tbf: burst 274 is lower than device lo mtu (65550) !
[  606.654918][   T40] kauditd_printk_skb: 251 callbacks suppressed
[  606.654933][   T40] audit: type=1326 audit(862.433:19214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17554 comm="syz.0.2450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.687187][   T40] audit: type=1326 audit(862.453:19215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17554 comm="syz.0.2450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.697196][   T40] audit: type=1326 audit(862.453:19216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17554 comm="syz.0.2450" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.707884][   T40] audit: type=1326 audit(862.453:19217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17554 comm="syz.0.2450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.717487][   T40] audit: type=1326 audit(862.453:19218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17554 comm="syz.0.2450" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.728486][   T40] audit: type=1326 audit(862.463:19219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17554 comm="syz.0.2450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.738046][   T40] audit: type=1326 audit(862.483:19220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17554 comm="syz.0.2450" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.953864][T17565] futex_wake_op: syz.0.2451 tries to shift op by -1; fix this program
[  606.960936][   T40] audit: type=1326 audit(862.743:19221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17564 comm="syz.0.2451" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.975447][   T40] audit: type=1326 audit(862.743:19222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17564 comm="syz.0.2451" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  606.984699][   T40] audit: type=1326 audit(862.743:19223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17564 comm="syz.0.2451" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f42579 code=0x7ffc0000
[  607.479417][T17572] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2453'.
[  608.778710][T17581] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2456'.
[  608.783174][T17581] bridge_slave_1: left allmulticast mode
[  608.785763][T17581] bridge_slave_1: left promiscuous mode
[  608.798266][T17581] bridge0: port 2(bridge_slave_1) entered disabled state
[  608.839089][T17581] bridge_slave_0: left allmulticast mode
[  608.842426][T17581] bridge_slave_0: left promiscuous mode
[  608.846087][T17581] bridge0: port 1(bridge_slave_0) entered disabled state
[  609.449228][T17606] ip6t_srh: unknown srh match flags  448C
[  611.332361][T17651] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2463'.
[  612.473896][ T5954] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  612.853546][T17667] FAULT_INJECTION: forcing a failure.
[  612.853546][T17667] name fail_futex, interval 1, probability 0, space 0, times 1
[  612.859032][T17667] CPU: 2 UID: 0 PID: 17667 Comm: syz.2.2470 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  612.859066][T17667] Tainted: [L]=SOFTLOCKUP
[  612.859072][T17667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  612.859084][T17667] Call Trace:
[  612.859091][T17667]  <TASK>
[  612.859100][T17667]  dump_stack_lvl+0x16c/0x1f0
[  612.859153][T17667]  should_fail_ex+0x512/0x640
[  612.859183][T17667]  get_futex_key+0x1d0/0x15f0
[  612.859206][T17667]  ? __pfx_get_futex_key+0x10/0x10
[  612.859227][T17667]  ? kasan_save_track+0x14/0x30
[  612.859250][T17667]  ? __kasan_kmalloc+0xaa/0xb0
[  612.859275][T17667]  futex_lock_pi+0x1cc/0x7c0
[  612.859302][T17667]  ? __pfx_futex_lock_pi+0x10/0x10
[  612.859325][T17667]  ? __lock_acquire+0x436/0x2890
[  612.859366][T17667]  ? __pfx_futex_wake_mark+0x10/0x10
[  612.859394][T17667]  ? find_held_lock+0x2b/0x80
[  612.859417][T17667]  ? ksys_write+0x190/0x250
[  612.859446][T17667]  do_futex+0x11a/0x350
[  612.859466][T17667]  ? __pfx_do_futex+0x10/0x10
[  612.859493][T17667]  __ia32_sys_futex_time32+0x1d9/0x460
[  612.859518][T17667]  ? fput+0x70/0xf0
[  612.859534][T17667]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  612.859555][T17667]  ? ksys_write+0x1ac/0x250
[  612.859579][T17667]  ? __pfx_ksys_write+0x10/0x10
[  612.859602][T17667]  ? __do_compat_sys_rt_sigreturn+0x1ba/0x270
[  612.859623][T17667]  ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10
[  612.859647][T17667]  __do_fast_syscall_32+0xe8/0x680
[  612.859678][T17667]  do_fast_syscall_32+0x32/0x80
[  612.859694][T17667]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  612.859717][T17667] RIP: 0023:0xf7f95579
[  612.859732][T17667] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  612.859748][T17667] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  612.859766][T17667] RAX: ffffffffffffffda RBX: 000000008000cffc RCX: 0000000000000086
[  612.859802][T17667] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  612.859810][T17667] RBP: 00000000fffffffc R08: 0000000000000000 R09: 0000000000000000
[  612.859834][T17667] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  612.859845][T17667] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  612.859869][T17667]  </TASK>
[  613.378084][T17679] xt_HMARK: proto mask must be zero with L3 mode
[  614.866536][T17705] 9p: Bad value for 'wfdno'
[  614.882366][T17703] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  615.605521][T17717] futex_wake_op: syz.1.2481 tries to shift op by -1; fix this program
[  615.610199][   T40] kauditd_printk_skb: 229 callbacks suppressed
[  615.610217][   T40] audit: type=1326 audit(871.386:19453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.674149][   T40] audit: type=1326 audit(871.386:19454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.692775][   T40] audit: type=1326 audit(871.386:19455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.701692][   T40] audit: type=1326 audit(871.386:19456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.741849][   T40] audit: type=1326 audit(871.386:19457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.776435][   T40] audit: type=1326 audit(871.386:19458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.869570][   T40] audit: type=1326 audit(871.396:19459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.879637][   T40] audit: type=1326 audit(871.396:19460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=313 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.891351][   T40] audit: type=1326 audit(871.396:19461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fe4579 code=0x7ffc0000
[  615.903485][   T40] audit: type=1326 audit(871.396:19462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17715 comm="syz.1.2481" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fe45a7 code=0x7ffc0000
[  616.698883][T17725] FAULT_INJECTION: forcing a failure.
[  616.698883][T17725] name fail_futex, interval 1, probability 0, space 0, times 0
[  616.704661][T17725] CPU: 3 UID: 0 PID: 17725 Comm: syz.1.2483 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  616.704690][T17725] Tainted: [L]=SOFTLOCKUP
[  616.704696][T17725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  616.704708][T17725] Call Trace:
[  616.704745][T17725]  <TASK>
[  616.704753][T17725]  dump_stack_lvl+0x16c/0x1f0
[  616.704801][T17725]  should_fail_ex+0x512/0x640
[  616.704829][T17725]  should_fail_futex+0x4c/0x60
[  616.704846][T17725]  futex_lock_pi_atomic+0x127/0xc50
[  616.704874][T17725]  futex_lock_pi+0x23f/0x7c0
[  616.704900][T17725]  ? __pfx_futex_lock_pi+0x10/0x10
[  616.704920][T17725]  ? __lock_acquire+0x436/0x2890
[  616.704959][T17725]  ? __pfx_futex_wake_mark+0x10/0x10
[  616.704993][T17725]  ? find_held_lock+0x2b/0x80
[  616.705016][T17725]  ? ksys_write+0x190/0x250
[  616.705044][T17725]  do_futex+0x11a/0x350
[  616.705062][T17725]  ? __pfx_do_futex+0x10/0x10
[  616.705087][T17725]  __ia32_sys_futex_time32+0x1d9/0x460
[  616.705112][T17725]  ? fput+0x70/0xf0
[  616.705127][T17725]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  616.705148][T17725]  ? ksys_write+0x1ac/0x250
[  616.705171][T17725]  ? __pfx_ksys_write+0x10/0x10
[  616.705203][T17725]  __do_fast_syscall_32+0xe8/0x680
[  616.705233][T17725]  do_fast_syscall_32+0x32/0x80
[  616.705250][T17725]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  616.705272][T17725] RIP: 0023:0xf7fe4579
[  616.705288][T17725] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  616.705306][T17725] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  616.705323][T17725] RAX: ffffffffffffffda RBX: 000000008000cffc RCX: 0000000000000086
[  616.705334][T17725] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  616.705344][T17725] RBP: 00000000fffffffc R08: 0000000000000000 R09: 0000000000000000
[  616.705355][T17725] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  616.705366][T17725] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  616.705388][T17725]  </TASK>
[  617.368719][T17728] futex_wake_op: syz.2.2484 tries to shift op by -1; fix this program
[  617.772748][T17737] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2485'.
[  617.916466][T17742] team0: Port device xfrm1 added
[  618.367220][T17756] 9p: Bad value for 'wfdno'
[  618.556122][T17767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2492'.
[  618.670567][T17761] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.938499][T17771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2493'.
[  619.431017][T17761] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.579560][T17761] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.698570][T17761] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.002956][ T1251] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  620.157449][T11004] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  620.602070][ T1140] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  620.626395][ T1140] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  620.768187][T17785] team0: Device xfrm1 is of different type
[  621.099924][T17795] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  621.396543][T17801] ALSA: mixer_oss: invalid OSS volume ''
[  621.407009][T17801] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(13)
[  621.409349][T17801] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  621.412677][T17801] vhci_hcd vhci_hcd.0: Device attached
[  621.472243][T17800] wg1: entered promiscuous mode
[  621.474949][T17800] wg1: entered allmulticast mode
[  621.596598][   T29] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  621.666738][   T29] usb 43-1: new low-speed USB device number 16 using vhci_hcd
[  621.809017][T17802] vhci_hcd: connection reset by peer
[  621.812156][ T1140] vhci_hcd vhci_hcd.3: stop threads
[  621.814541][ T1140] vhci_hcd vhci_hcd.3: release socket
[  621.819391][ T1140] vhci_hcd vhci_hcd.3: disconnect device
[  623.308810][T17830] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  623.312025][T17830] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  623.315858][T17830] vhci_hcd vhci_hcd.0: Device attached
[  623.333322][T17833] vhci_hcd: connection closed
[  623.333656][   T86] vhci_hcd vhci_hcd.2: stop threads
[  623.377945][   T86] vhci_hcd vhci_hcd.2: release socket
[  623.380466][   T86] vhci_hcd vhci_hcd.2: disconnect device
[  623.518008][T17836] IPv6: sit1: Disabled Multicast RS
[  623.533438][T17836] sit1: entered allmulticast mode
[  623.569739][T17836] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  623.988322][T17841] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  623.991129][T17841] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  624.049877][T17841] vhci_hcd vhci_hcd.0: Device attached
[  624.318938][T17827] usb 38-1: SetAddress Request (48) to port 0
[  624.321680][T17827] usb 38-1: new SuperSpeed USB device number 48 using vhci_hcd
[  624.450282][T17853] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2511'.
[  624.613284][T17854] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2511'.
[  624.822772][T17842] vhci_hcd: connection reset by peer
[  624.825786][T10971] vhci_hcd vhci_hcd.0: stop threads
[  624.869188][T10971] vhci_hcd vhci_hcd.0: release socket
[  624.872864][T10971] vhci_hcd vhci_hcd.0: disconnect device
[  625.843011][T17865] loop9: detected capacity change from 0 to 7
[  625.850103][T17865] Dev loop9: unable to read RDB block 7
[  625.852963][T17865]  loop9: unable to read partition table
[  625.854946][T17865] loop9: partition table beyond EOD, truncated
[  625.857633][T17865] loop_reread_partitions: partition scan of loop9 (■швлx№        ) failed (rc=-5)
[  626.242951][T17876] cgroup: fork rejected by pids controller in /syz0
[  626.790487][   T29] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  626.840512][T17989] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  626.843541][T17989] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  626.847803][T17989] vhci_hcd vhci_hcd.0: Device attached
[  626.955793][T17992] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  626.958768][T17992] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  626.968036][T17992] vhci_hcd vhci_hcd.0: Device attached
[  627.033523][T10986] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  627.140889][   T29] usb 43-1: device descriptor read/64, error -110
[  627.163694][T10986] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  627.240810][   T75] usb 40-1: SetAddress Request (35) to port 0
[  627.243817][   T75] usb 40-1: new SuperSpeed USB device number 35 using vhci_hcd
[  627.244614][T10986] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  627.247853][T17993] vhci_hcd: connection closed
[  627.258450][   T86] vhci_hcd vhci_hcd.1: stop threads
[  627.265075][   T86] vhci_hcd vhci_hcd.1: release socket
[  627.268032][   T86] vhci_hcd vhci_hcd.1: disconnect device
[  627.324105][T16349] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  627.332913][T16349] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  627.347450][T16349] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  627.368081][T10986] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  627.374072][T16349] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  627.378240][T16349] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  627.405245][   T29] usb 43-1: new low-speed USB device number 17 using vhci_hcd
[  627.521279][T10986] bridge_slave_1: left allmulticast mode
[  627.526389][T10986] bridge_slave_1: left promiscuous mode
[  627.533692][T10986] bridge0: port 2(bridge_slave_1) entered disabled state
[  627.537585][T17990] vhci_hcd: connection reset by peer
[  627.541531][T10999] vhci_hcd vhci_hcd.3: stop threads
[  627.544068][T10999] vhci_hcd vhci_hcd.3: release socket
[  627.546653][T10999] vhci_hcd vhci_hcd.3: disconnect device
[  627.553910][T10986] bridge_slave_0: left allmulticast mode
[  627.556030][T10986] bridge_slave_0: left promiscuous mode
[  627.558681][T10986] bridge0: port 1(bridge_slave_0) entered disabled state
[  628.104392][T10986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  628.132484][T10986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  628.138016][T10986] bond0 (unregistering): Released all slaves
[  628.152115][T17999] wg2 speed is unknown, defaulting to 1000
[  628.347147][T18011] netlink: 'syz.3.2528': attribute type 1 has an invalid length.
[  628.705151][T17999] chnl_net:caif_netlink_parms(): no params data found
[  629.000813][T17999] bridge0: port 1(bridge_slave_0) entered blocking state
[  629.005810][T17999] bridge0: port 1(bridge_slave_0) entered disabled state
[  629.009814][T17999] bridge_slave_0: entered allmulticast mode
[  629.017128][T17999] bridge_slave_0: entered promiscuous mode
[  629.032966][T17999] bridge0: port 2(bridge_slave_1) entered blocking state
[  629.052137][T17999] bridge0: port 2(bridge_slave_1) entered disabled state
[  629.055402][T17999] bridge_slave_1: entered allmulticast mode
[  629.075501][T17999] bridge_slave_1: entered promiscuous mode
[  629.197998][T10986] hsr_slave_0: left promiscuous mode
[  629.201626][T10986] hsr_slave_1: left promiscuous mode
[  629.207805][T10986] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  629.210812][T10986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  629.215255][T10986] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  629.218195][T10986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  629.242859][T10986] veth1_macvtap: left promiscuous mode
[  629.245588][T10986] veth0_macvtap: left promiscuous mode
[  629.248369][T10986] veth1_vlan: left promiscuous mode
[  629.253002][T10986] veth0_vlan: left promiscuous mode
[  629.372386][T17827] usb 38-1: device descriptor read/8, error -110
[  629.442586][T16349] Bluetooth: hci0: command tx timeout
[  629.481672][T18045] netlink: 172 bytes leftover after parsing attributes in process `syz.2.2533'.
[  629.797420][T17827] usb usb38-port1: attempt power cycle
[  629.952368][T10986] team0 (unregistering): Port device team_slave_1 removed
[  630.038494][T10986] team0 (unregistering): Port device team_slave_0 removed
[  630.353915][T17827] usb usb38-port1: unable to enumerate USB device
[  630.860467][T17999] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  630.899923][T17999] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  630.958448][T17999] team0: Port device team_slave_0 added
[  630.972556][T17999] team0: Port device team_slave_1 added
[  631.002675][T17999] batman_adv: batadv0: Adding interface: batadv_slave_0
[  631.006854][T17999] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  631.019533][T17999] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  631.031467][T17999] batman_adv: batadv0: Adding interface: batadv_slave_1
[  631.036287][T17999] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  631.067590][T17999] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  631.128776][   T40] kauditd_printk_skb: 482 callbacks suppressed
[  631.128795][   T40] audit: type=1800 audit(886.895:19945): pid=18062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2537" name="file0" dev="9p" ino=71827863 res=0 errno=0
[  631.179705][T17999] hsr_slave_0: entered promiscuous mode
[  631.220157][T17999] hsr_slave_1: entered promiscuous mode
[  631.318764][T18064] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2538'.
[  631.525708][T16349] Bluetooth: hci0: command tx timeout
[  632.069455][T17999] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  632.082827][T17999] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  632.101543][T17999] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  632.128373][T17999] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  632.324667][   T75] usb 40-1: device descriptor read/8, error -110
[  632.330023][T17999] 8021q: adding VLAN 0 to HW filter on device bond0
[  632.376421][T17999] 8021q: adding VLAN 0 to HW filter on device team0
[  632.394090][T10967] bridge0: port 1(bridge_slave_0) entered blocking state
[  632.397739][T10967] bridge0: port 1(bridge_slave_0) entered forwarding state
[  632.429492][ T6101] bridge0: port 2(bridge_slave_1) entered blocking state
[  632.432797][ T6101] bridge0: port 2(bridge_slave_1) entered forwarding state
[  632.554775][   T29] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  632.711348][T17999] 8021q: adding VLAN 0 to HW filter on device batadv0
[  632.746083][   T75] usb usb40-port1: attempt power cycle
[  632.761967][T17999] veth0_vlan: entered promiscuous mode
[  632.773595][T17999] veth1_vlan: entered promiscuous mode
[  632.803211][T17999] veth0_macvtap: entered promiscuous mode
[  632.811679][T17999] veth1_macvtap: entered promiscuous mode
[  632.829434][T17999] batman_adv: batadv0: Interface activated: batadv_slave_0
[  632.843779][T17999] batman_adv: batadv0: Interface activated: batadv_slave_1
[  632.854633][ T6101] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  632.861030][ T6101] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  632.865464][ T6101] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  632.869903][ T6101] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  632.947152][T10986] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  632.950758][T10986] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  632.978942][ T6101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  632.983651][ T6101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  633.039655][T18107] openvswitch: netlink: IP tunnel dst address not specified
[  633.051352][T18107] vlan2: entered allmulticast mode
[  633.053948][T18107] macvtap0: entered allmulticast mode
[  633.057516][T18107] veth0_macvtap: entered allmulticast mode
[  633.203653][T18112] futex_wake_op: syz.0.2541 tries to shift op by -1; fix this program
[  633.209195][   T40] audit: type=1326 audit(888.973:19946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd579 code=0x7ffc0000
[  633.220987][   T40] audit: type=1326 audit(888.973:19947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd579 code=0x7ffc0000
[  633.230905][   T40] audit: type=1326 audit(888.973:19948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf70fd579 code=0x7ffc0000
[  633.240800][   T40] audit: type=1326 audit(888.973:19949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd579 code=0x7ffc0000
[  633.251334][   T40] audit: type=1326 audit(888.973:19950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd579 code=0x7ffc0000
[  633.261677][   T40] audit: type=1326 audit(888.973:19951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70fd579 code=0x7ffc0000
[  633.273866][   T40] audit: type=1326 audit(888.973:19952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70fd579 code=0x7ffc0000
[  633.286510][   T40] audit: type=1326 audit(888.973:19953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70fd5a7 code=0x7ffc0000
[  633.298056][   T40] audit: type=1326 audit(888.973:19954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18111 comm="syz.0.2541" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd579 code=0x7ffc0000
[  633.325735][   T75] usb usb40-port1: unable to enumerate USB device
[  633.605612][T16349] Bluetooth: hci0: command tx timeout
[  634.172153][ T5954] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  634.178982][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  634.217943][ T5954] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  634.222610][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  634.227303][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  634.237862][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  634.567472][T18126] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.571125][T18126] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.741857][T18126] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  634.751867][T18126] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  634.931199][ T1251] smc: removing ib device syz1
[  634.938091][T11004] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  634.942135][T11004] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  634.950665][T11004] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  634.954836][T11004] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  634.959620][ T6075] syz1: Port: 1 Link DOWN
[  634.972373][T18120] wg2 speed is unknown, defaulting to 1000
[  635.049082][T18129] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2546'.
[  635.696912][T16349] Bluetooth: hci0: command tx timeout
[  636.257317][T16349] Bluetooth: hci1: command tx timeout
[  637.822777][T18163] futex_wake_op: syz.2.2553 tries to shift op by -1; fix this program
[  637.827571][   T40] kauditd_printk_skb: 254 callbacks suppressed
[  637.827588][   T40] audit: type=1326 audit(893.580:20209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.841962][   T40] audit: type=1326 audit(893.580:20210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.842008][   T40] audit: type=1326 audit(893.580:20211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.842047][   T40] audit: type=1326 audit(893.580:20212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.842084][   T40] audit: type=1326 audit(893.580:20213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.842123][   T40] audit: type=1326 audit(893.580:20214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.842160][   T40] audit: type=1326 audit(893.580:20215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.842197][   T40] audit: type=1326 audit(893.590:20216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=313 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.842234][   T40] audit: type=1326 audit(893.590:20217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  637.931658][   T40] audit: type=1326 audit(893.590:20218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18162 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f955a7 code=0x7ffc0000
[  637.972875][T18120] chnl_net:caif_netlink_parms(): no params data found
[  638.129164][T18120] bridge0: port 1(bridge_slave_0) entered blocking state
[  638.132637][T18120] bridge0: port 1(bridge_slave_0) entered disabled state
[  638.136080][T18120] bridge_slave_0: entered allmulticast mode
[  638.140844][T18120] bridge_slave_0: entered promiscuous mode
[  638.146821][T18120] bridge0: port 2(bridge_slave_1) entered blocking state
[  638.150684][T18120] bridge0: port 2(bridge_slave_1) entered disabled state
[  638.153931][T18120] bridge_slave_1: entered allmulticast mode
[  638.158228][T18120] bridge_slave_1: entered promiscuous mode
[  638.187618][T18120] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  638.196066][T18120] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  638.222720][T18120] team0: Port device team_slave_0 added
[  638.227812][T18120] team0: Port device team_slave_1 added
[  638.253365][T18120] batman_adv: batadv0: Adding interface: batadv_slave_0
[  638.256501][T18120] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  638.267878][T18120] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  638.274921][T18120] batman_adv: batadv0: Adding interface: batadv_slave_1
[  638.278469][T18120] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  638.291662][T18120] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  638.333870][T18120] hsr_slave_0: entered promiscuous mode
[  638.337734][T18120] hsr_slave_1: entered promiscuous mode
[  638.341380][T18120] debugfs: 'hsr0' already exists in 'hsr'
[  638.344157][T18120] Cannot create hsr debugfs directory
[  638.344246][T16349] Bluetooth: hci1: command tx timeout
[  638.383966][   T46] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  638.477641][   T46] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  638.544907][   T46] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  638.624277][   T46] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  638.633425][T18173] fuse: Bad value for 'fd'
[  639.032023][   T34] wg2 speed is unknown, defaulting to 1000
[  639.046423][   T34] syz2: Port: 1 Link DOWN
[  639.095608][T18187] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  639.103886][T18187] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  639.211737][   T46] team0: Port device xfrm1 removed
[  639.696530][T18196] overlay: filesystem on ./bus not supported as upperdir
[  639.982320][   T46] .` (unregistering): Released all slaves
[  640.166390][   T46] bond1 (unregistering): (slave veth3): Releasing active interface
[  640.172835][   T46] bond1 (unregistering): Released all slaves
[  640.410456][T16349] Bluetooth: hci1: command tx timeout
[  640.727189][   T46] bond2 (unregistering): Released all slaves
[  640.858510][   T46] bond3 (unregistering): Released all slaves
[  641.112689][T11004] tipc: Resetting bearer <eth:team0>
[  641.248225][   T34] wg2 speed is unknown, defaulting to 1000
[  641.429632][   T46] : left promiscuous mode
[  641.730476][   T46] tipc: Disabling bearer <eth:team0>
[  641.757255][   T46] tipc: Left network mode
[  641.764814][   T46] IPVS: stopping master sync thread 6635 ...
[  642.355010][   T46] hsr_slave_0: left promiscuous mode
[  642.358634][   T46] hsr_slave_1: left promiscuous mode
[  642.418216][   T46] veth1_vlan: left promiscuous mode
[  642.422878][   T46] veth0_vlan: left promiscuous mode
[  642.513054][T16349] Bluetooth: hci1: command tx timeout
[  643.399962][ T6101] smc: removing ib device syz2
[  643.754564][T18250] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2570'.
[  643.972195][T18120] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  643.988550][T18120] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  644.006138][T18120] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  644.035388][T18120] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  644.124078][T18120] 8021q: adding VLAN 0 to HW filter on device bond0
[  644.135357][T18120] 8021q: adding VLAN 0 to HW filter on device team0
[  644.143211][ T6101] bridge0: port 1(bridge_slave_0) entered blocking state
[  644.146412][ T6101] bridge0: port 1(bridge_slave_0) entered forwarding state
[  644.157868][ T6101] bridge0: port 2(bridge_slave_1) entered blocking state
[  644.161088][ T6101] bridge0: port 2(bridge_slave_1) entered forwarding state
[  644.337481][   T46] IPVS: stop unused estimator thread 0...
[  644.374934][T18120] 8021q: adding VLAN 0 to HW filter on device batadv0
[  644.420580][T18120] veth0_vlan: entered promiscuous mode
[  644.428888][T18120] veth1_vlan: entered promiscuous mode
[  644.455477][T18120] veth0_macvtap: entered promiscuous mode
[  644.461369][T18120] veth1_macvtap: entered promiscuous mode
[  644.474574][T18120] batman_adv: batadv0: Interface activated: batadv_slave_0
[  644.488138][T18120] batman_adv: batadv0: Interface activated: batadv_slave_1
[  644.497306][   T46] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  644.501552][   T46] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  644.508686][   T46] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  644.514050][   T46] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  644.565075][ T6101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  644.568892][ T6101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  644.597030][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  644.601207][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  645.873359][T18284] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2573'.
[  648.198408][T18311] netlink: 128 bytes leftover after parsing attributes in process `syz.0.2579'.
[  648.203053][T18311] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2579'.
[  648.668289][T18316] futex_wake_op: syz.2.2581 tries to shift op by -1; fix this program
[  648.675826][   T40] kauditd_printk_skb: 251 callbacks suppressed
[  648.675843][   T40] audit: type=1326 audit(904.422:20470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.701651][   T40] audit: type=1326 audit(904.452:20471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.722499][   T40] audit: type=1326 audit(904.452:20472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f955a7 code=0x7ffc0000
[  648.733051][   T40] audit: type=1326 audit(904.452:20473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.763521][   T40] audit: type=1326 audit(904.452:20474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.779514][   T40] audit: type=1326 audit(904.452:20475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.796016][   T40] audit: type=1326 audit(904.452:20476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.807325][   T40] audit: type=1326 audit(904.452:20477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.817141][   T40] audit: type=1326 audit(904.452:20478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.827040][   T40] audit: type=1326 audit(904.452:20479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18315 comm="syz.2.2581" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f95579 code=0x7ffc0000
[  648.827548][T18319] fuse: Bad value for 'fd'
[  649.049561][T18330] fuse: Bad value for 'fd'
[  649.377176][T18341] binder_alloc: 18340: pid 18340 spamming oneway? 1 buffers allocated for a total size of 4096
[  649.381704][T18341] binder_alloc: 18340: pid 18340 spamming oneway? 2 buffers allocated for a total size of 5120
[  649.387924][    T9] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  649.537266][    T9] usb 6-1: Using ep0 maxpacket: 8
[  649.546306][    T9] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  649.560570][    T9] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  649.561157][T18350] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2594'.
[  649.563840][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  649.577070][    T9] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  649.580026][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  649.598564][    T9] usb 6-1: config 0 descriptor??
[  649.689119][T18353] netlink: 'syz.2.2594': attribute type 4 has an invalid length.
[  649.692549][T18353] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2594'.
[  649.710403][T18353] .`: renamed from bond0 (while UP)
[  649.947842][   T34] ==================================================================
[  649.947860][   T34] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[  649.947900][   T34] Write of size 8 at addr ffffc90004b410a0 by task kworker/3:0/34
[  649.947917][   T34] 
[  649.947931][   T34] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  649.947958][   T34] Tainted: [L]=SOFTLOCKUP
[  649.947971][   T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  649.947986][   T34] Workqueue: events_power_efficient fb_flashcursor
[  649.948007][   T34] Call Trace:
[  649.948015][   T34]  <TASK>
[  649.948029][   T34]  dump_stack_lvl+0x116/0x1f0
[  649.948059][   T34]  print_report+0xcd/0x630
[  649.948086][   T34]  ? __virt_addr_valid+0x81/0x610
[  649.948116][   T34]  ? sys_imageblit+0x1a6f/0x1e60
[  649.948142][   T34]  kasan_report+0xe0/0x110
[  649.948169][   T34]  ? sys_imageblit+0x1a6f/0x1e60
[  649.948199][   T34]  sys_imageblit+0x1a6f/0x1e60
[  649.948230][   T34]  ? __pfx_sys_imageblit+0x10/0x10
[  649.948264][   T34]  ? trace_kmalloc+0x2b/0xb0
[  649.948292][   T34]  ? __kmalloc_noprof+0x35d/0x910
[  649.948315][   T34]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  649.948345][   T34]  soft_cursor+0x524/0xa10
[  649.948372][   T34]  bit_cursor+0xe8c/0x17e0
[  649.948398][   T34]  ? __pfx_bit_cursor+0x10/0x10
[  649.948425][   T34]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  649.948456][   T34]  ? get_color+0x1da/0x450
[  649.948474][   T34]  ? __pfx_bit_cursor+0x10/0x10
[  649.948496][   T34]  fb_flashcursor+0x333/0x420
[  649.948525][   T34]  process_one_work+0x9ba/0x1b20
[  649.948551][   T34]  ? __pfx_process_one_work+0x10/0x10
[  649.948576][   T34]  ? assign_work+0x1a0/0x250
[  649.948596][   T34]  worker_thread+0x6c8/0xf10
[  649.948623][   T34]  ? __pfx_worker_thread+0x10/0x10
[  649.948643][   T34]  kthread+0x3c5/0x780
[  649.948664][   T34]  ? __pfx_kthread+0x10/0x10
[  649.948684][   T34]  ? rcu_is_watching+0x12/0xc0
[  649.948710][   T34]  ? __pfx_kthread+0x10/0x10
[  649.948750][   T34]  ret_from_fork+0x983/0xb10
[  649.948768][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  649.948787][   T34]  ? __switch_to+0x7af/0x10d0
[  649.948812][   T34]  ? __pfx_kthread+0x10/0x10
[  649.948831][   T34]  ret_from_fork_asm+0x1a/0x30
[  649.948867][   T34]  </TASK>
[  649.948875][   T34] 
[  649.948880][   T34] The buggy address belongs to a vmalloc virtual mapping
[  649.948896][   T34] Memory state around the buggy address:
[  649.948907][   T34]  ffffc90004b40f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  649.948922][   T34]  ffffc90004b41000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  649.948936][   T34] >ffffc90004b41080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  649.948947][   T34]                                ^
[  649.948958][   T34]  ffffc90004b41100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  649.948972][   T34]  ffffc90004b41180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  649.948983][   T34] ==================================================================
[  649.949128][   T34] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  649.949144][   T34] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  649.949171][   T34] Tainted: [L]=SOFTLOCKUP
[  649.949179][   T34] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  649.949193][   T34] Workqueue: events_power_efficient fb_flashcursor
[  649.949211][   T34] Call Trace:
[  649.949217][   T34]  <TASK>
[  649.949223][   T34]  dump_stack_lvl+0x3d/0x1f0
[  649.949250][   T34]  vpanic+0x640/0x6f0
[  649.949270][   T34]  panic+0xca/0xd0
[  649.949288][   T34]  ? __pfx_panic+0x10/0x10
[  649.949307][   T34]  ? sys_imageblit+0x1a6f/0x1e60
[  649.949335][   T34]  ? preempt_schedule_common+0x44/0xc0
[  649.949363][   T34]  ? preempt_schedule_thunk+0x16/0x30
[  649.949382][   T34]  ? check_panic_on_warn+0x1f/0xb0
[  649.949403][   T34]  check_panic_on_warn+0xab/0xb0
[  649.949423][   T34]  end_report+0x107/0x160
[  649.949449][   T34]  kasan_report+0xee/0x110
[  649.949477][   T34]  ? sys_imageblit+0x1a6f/0x1e60
[  649.949512][   T34]  sys_imageblit+0x1a6f/0x1e60
[  649.949542][   T34]  ? __pfx_sys_imageblit+0x10/0x10
[  649.949576][   T34]  ? trace_kmalloc+0x2b/0xb0
[  649.949602][   T34]  ? __kmalloc_noprof+0x35d/0x910
[  649.949625][   T34]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  649.949653][   T34]  soft_cursor+0x524/0xa10
[  649.949680][   T34]  bit_cursor+0xe8c/0x17e0
[  649.949704][   T34]  ? __pfx_bit_cursor+0x10/0x10
[  649.949730][   T34]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  649.949759][   T34]  ? get_color+0x1da/0x450
[  649.949777][   T34]  ? __pfx_bit_cursor+0x10/0x10
[  649.949798][   T34]  fb_flashcursor+0x333/0x420
[  649.949819][   T34]  process_one_work+0x9ba/0x1b20
[  649.949844][   T34]  ? __pfx_process_one_work+0x10/0x10
[  649.949866][   T34]  ? assign_work+0x1a0/0x250
[  649.949887][   T34]  worker_thread+0x6c8/0xf10
[  649.949912][   T34]  ? __pfx_worker_thread+0x10/0x10
[  649.949933][   T34]  kthread+0x3c5/0x780
[  649.949952][   T34]  ? __pfx_kthread+0x10/0x10
[  649.949968][   T34]  ? rcu_is_watching+0x12/0xc0
[  649.949991][   T34]  ? __pfx_kthread+0x10/0x10
[  649.950007][   T34]  ret_from_fork+0x983/0xb10
[  649.950026][   T34]  ? __pfx_ret_from_fork+0x10/0x10
[  649.950046][   T34]  ? __switch_to+0x7af/0x10d0
[  649.950069][   T34]  ? __pfx_kthread+0x10/0x10
[  649.950088][   T34]  ret_from_fork_asm+0x1a/0x30
[  649.950134][   T34]  </TASK>
[  649.950944][   T34] Kernel Offset: disabled

VM DIAGNOSIS:
19:10:19  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010101 RBX=0000000000000000 RCX=ffffffff8161ce33 RDX=ffff888020ca0000
RSI=ffffffff8161ce7b RDI=ffffffff93b76f60 RBP=ffff88802b220000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff276edec R10=ffffffff93b76f67 R11=ffff888020ca0b30
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161ce7c RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880976fc000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f740f020 CR3=00000000238e8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff8161ce33 RDX=ffff888023ff0000
RSI=ffffffff8161ce7b RDI=ffffffff93b76f60 RBP=ffff88802b320000 RSP=ffffc90000590fd0
R8 =0000000000000001 R9 =fffffbfff276edec R10=ffffffff93b76f67 R11=ffff888023ff0b30
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161ce7c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c01300
GS =0063 ffff8880977fc000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008001f000 CR3=00000000238e8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff8161ce33 RDX=ffff888026664980
RSI=ffffffff8161ce7b RDI=ffffffff93b76f60 RBP=ffff88802b420000 RSP=ffffc90000538fd0
R8 =0000000000000001 R9 =fffffbfff276edec R10=ffffffff93b76f67 R11=ffff8880266654b0
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8161ce7c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0000 ffff8880978fc000 ffffffff 00c09300 DPL=0 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000ffff
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000024b88000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000e400000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85301205 RDI=ffffffff9aed9260 RBP=ffffffff9aed9220 RSP=ffffc900005cf2a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=666f206574697257
R12=0000000000000000 R13=0000000000000036 R14=ffffffff9aed9220 R15=ffffffff853011a0
RIP=ffffffff8530122f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979fc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008000f018 CR3=0000000027ddb000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000e400000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000