last executing test programs: 7m21.721381381s ago: executing program 1 (id=1515): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$sndmidi(0x0, 0x2, 0x141101) socket$nl_generic(0x10, 0x3, 0x10) r0 = getpgid(0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0) r1 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014}) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r1, &(0x7f0000000000)={0xa0000001}) sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x8084) r5 = syz_open_dev$tty1(0xc, 0x4, 0x1) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0700000004800000180000007bb2531cc35495a293d9ffff9d984933f0", @ANYRES32, @ANYBLOB='\x00'/20, @ANYBLOB="0f938f686ae7fbd4970c4cb7d5d476e53f2dbc2c3f4e90a35ff83036bd6bd1b2a71d057e8d739f9de0ab3421779c88346044a4818903b86f49c4a6bc73efb91b181b7fe7a3071e26d8138ed7ce48607452", @ANYRESHEX, @ANYBLOB="000000001800"/28], 0x48) socketpair$unix(0x1, 0x2, 0x0, 0x0) unshare(0x22020400) r6 = memfd_create(&(0x7f00000001c0)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t;\xfc\x02\x00\x00\x009\xa0\v\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\xd5)5\x98\xa3\xfa\a\xf9\x98\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajn\xd7\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)', 0x0) execveat(r6, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r7 = dup(r5) write$UHID_INPUT(r7, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006) ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000040)=@x86={0x5, 0x3, 0x6, 0x0, 0x8, 0x7, 0x6, 0x0, 0x4, 0x9, 0x48, 0x9, 0x0, 0x7, 0x1, 0xa, 0x1, 0x40, 0x10, '\x00', 0x4d, 0x1f}) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x23011, r1, 0x6a855000) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r8, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x1}, 0x1c) fchown(r4, 0x0, 0x0) sendmmsg$inet6(r8, &(0x7f0000003a00)=[{{&(0x7f0000000100)={0xa, 0x4e21, 0xfffffb27, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x3aa}, 0x1c, 0x0}}, {{&(0x7f0000000180)={0xa, 0x4e24, 0x0, @loopback, 0xa}, 0x1c, 0x0, 0x0, &(0x7f0000001f40)=[@pktinfo={{0x20, 0x29, 0x32, {@dev={0xfe, 0x80, '\x00', 0xe}}}}], 0x20}}], 0x2, 0x1000) epoll_pwait(r1, &(0x7f00000000c0)=[{}, {}], 0x2, 0xfe, 0x0, 0x0) 7m20.536533428s ago: executing program 1 (id=1520): openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@remote, 0x200000, 0x0, 0xff, 0x1, 0x0, 0xfffe}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0x200000, 0x0, 0xff, 0x2, 0x3ff, 0x72}, 0x20) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) userfaultfd(0x80001) r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0301, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000001340)) ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000180)=0x6f) r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) read$dsp(r4, &(0x7f00000002c0)=""/4096, 0x1000) write$dsp(r3, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000) pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0) 7m19.082245593s ago: executing program 1 (id=1525): openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="09000000070000002a00000005"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0x0, &(0x7f0000000180)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 7m18.847164935s ago: executing program 1 (id=1527): r0 = openat(0xffffffffffffff9c, 0x0, 0x40, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) r2 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000480)={'vcan0\x00', 0x0}) bind$can_j1939(r2, &(0x7f0000000100)={0x1d, r3, 0x0, {0x1, 0x1, 0x4}, 0x1}, 0x18) sendmsg$can_j1939(r2, 0x0, 0x20048805) mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=0000000000000000010000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) syz_open_pts(r0, 0x200000) setuid(0xee01) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x10}, 0x50) mq_open(&(0x7f0000000380)='&\x00w\xb4N6Bf\xa9\xc2\xd0\b\x06L\xbbQ\xd6T\xe3+SD\xa8\x0f\xefwHw\xdab\xc4\x1a\xe55@hA5\xd6\xec.)\x8f}\xc5#L\x99\"\x84;{\xfa\x04~\xf1\x17\x1d\x90\x83\xfc\x1e\xae\xb0/(\xbb\xd3\xb7\xca\x13j\xab\xfa\xc5Mq\xb7ks\xe0 \x9d\xf8\x7f\x84b\xa4h\xeekc\xffZ\x9fg\x84lm\xd7F\x97\xdcd\v\x00\x00\x90\x03\x12^\xf2{\xf1\xbe\x12[~\xe7\xca\xe4\x13\xd6k\xa6\xf3v5F\xc9.\xce\x87z\xd4<\xa8\xba\xd0\x9c\ff\xe1\xe2\xf9\x18\xc0\xd0\xa1\x02K\xdd0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8}) io_uring_enter(r4, 0x47bc, 0x0, 0x0, 0x0, 0x0) r7 = syz_io_uring_setup(0x2b9, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x400000, 0x0, r3}, &(0x7f0000000180)=0x0, &(0x7f0000000080)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {}, 0x1}) io_uring_enter(r7, 0x2ded, 0x4000, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r10 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r10, 0x84, 0x6b, &(0x7f0000000080)=[@in={0x2, 0x4e21, @private=0xa010102}], 0x10) readv(r10, &(0x7f0000000600)=[{&(0x7f0000000180)=""/135, 0x87}], 0x1) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x2e, &(0x7f00000001c0)=0xb1e0, 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x7ffff, &(0x7f0000006680)) madvise(&(0x7f00001c1000/0x3000)=nil, 0x40000, 0x9) madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x9) ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000300)={0x28, 0x4, 0x0, 0x0, &(0x7f0000807000/0x1000)=nil, 0x1000, 0x26}) 7m18.36730311s ago: executing program 1 (id=1529): r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x9, 0xfffffffffffffffd, 0x10000000, 0x10000, 0x3, 0x4002004c2, 0x1000, 0x9, 0x0, 0x400, 0x80, 0x3, 0x0, 0x8, 0x8d], 0x100000, 0x80}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 7m3.318731621s ago: executing program 32 (id=1529): r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x9, 0xfffffffffffffffd, 0x10000000, 0x10000, 0x3, 0x4002004c2, 0x1000, 0x9, 0x0, 0x400, 0x80, 0x3, 0x0, 0x8, 0x8d], 0x100000, 0x80}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 4m59.511055136s ago: executing program 0 (id=2110): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newtclass={0x30, 0x28, 0x800, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x5, 0x9}, {0xfff8, 0x16}, {0x8, 0xffff}}, [@tclass_kind_options=@c_qfq={{0x8}, {0x4}}]}, 0x30}}, 0x20040084) r0 = socket$key(0xf, 0x3, 0x2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xfffffffd, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0) r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) accept4$netrom(r4, &(0x7f0000000300)={{0x3, @bcast}, [@null, @rose, @netrom, @bcast, @null, @remote, @default, @netrom]}, 0x0, 0x800) bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) socket$netlink(0x10, 0x3, 0x10) socket$netlink(0x10, 0x3, 0x10) sendmsg$key(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020a000907000000000000000000000005001a"], 0x38}}, 0x40000) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="bc1b0000400007012bbd700000000000017c00000400c2800c00018006000600843b0000"], 0x1bbc}, 0x1, 0x0, 0x0, 0x4048011}, 0x20008054) 4m58.228319994s ago: executing program 0 (id=2112): r0 = openat$drirender128(0xffffff9c, &(0x7f0000000140), 0x4e0180, 0x0) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000180)={0x2}) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r1, 0x0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0xc2240, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xf) ioctl$TCFLSH(r2, 0x400455c8, 0x4) close(r2) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x17, 0x5, &(0x7f0000000040)=ANY=[], 0x0, 0x8f5e}, 0x94) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_usb_connect(0x2, 0x2d, &(0x7f0000000240)=ANY=[@ANYBLOB="120100000c9768405e0483020b9901e4020109021b000100000000090400fb0160291d00090509a9143c"], 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000200)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, 0x0, 0x0, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x0, 0x8, 0x8001, 0x0, 0x2, 0x7, 0xfffffe0001000001, 0xfa11, 0xffffffff}, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) r5 = syz_open_dev$sg(0x0, 0x0, 0x20c02) r6 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000001c0), 0x82002, 0x0) ioctl$SNDCTL_DSP_SETFMT(r6, 0xc0045005, &(0x7f0000000080)=0x40000) ioctl$SNDCTL_DSP_STEREO(r6, 0xc0045003, &(0x7f00000000c0)=0x1) writev(r5, &(0x7f0000000000)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, 0x0, 0x0) read(r5, 0x0, 0x0) syz_open_dev$audion(&(0x7f0000000000), 0x3, 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) 4m54.973758441s ago: executing program 0 (id=2124): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="180000000000000000000095000000000010009c07b346cb5e13f8772644f4971e732de04fedad572bac3404f614c6921cc6566233111a04388a1dd9abd53082a556d3870cc36484b7afd31929aee457d4af6b6ec2d0aec2be5822d676d4d9c11f086b9ee55435fa635bf655e9a79e6ef3c3e8ad04cf1da9c1a928f766b975a31f0c49d8b56581c9304a570a7c27812e5da8d9143ea1ecc8e0f700befc1d70bf4fa9b153672e1e6924fddc5f747e8013"], &(0x7f0000000140)='syzkaller\x00'}, 0x94) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="180000000000000000000095000000000010009c07b346cb5e13f8772644f4971e732de04fedad572bac3404f614c6921cc6566233111a04388a1dd9abd53082a556d3870cc36484b7afd31929aee457d4af6b6ec2d0aec2be5822d676d4d9c11f086b9ee55435fa635bf655e9a79e6ef3c3e8ad04cf1da9c1a928f766b975a31f0c49d8b56581c9304a570a7c27812e5da8d9143ea1ecc8e0f700befc1d70bf4fa9b153672e1e6924fddc5f747e8013"], &(0x7f0000000140)='syzkaller\x00'}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) (async) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$kcm(0x10, 0x400000002, 0x0) io_setup(0x6, &(0x7f00000000c0)) (async) io_setup(0x6, &(0x7f00000000c0)=0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/pm_print_times', 0x20001, 0x0) io_submit(r3, 0x1, &(0x7f0000000040)=[&(0x7f0000001500)={0x0, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f0000000100)='9', 0x20000101}]) sendmsg$inet(r2, &(0x7f0000000100)={0x0, 0x3f, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0) recvmsg(r2, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x40002002) (async) recvmsg(r2, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x40002002) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000001cc0)={'ipvlan1\x00', 0x0}) socket$nl_route(0x10, 0x3, 0x0) (async) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, 0x0, 0x8880) bind$packet(r5, &(0x7f0000000300)={0x11, 0x6, r7}, 0x14) r9 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r9, 0xaf01, 0x0) (async) ioctl$VHOST_SET_OWNER(r9, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r9, 0x4028af11, &(0x7f0000000200)={0x0, 0x1, 0x0, &(0x7f00000001c0)=""/29, 0x0, 0x8000000}) (async) ioctl$VHOST_SET_VRING_ADDR(r9, 0x4028af11, &(0x7f0000000200)={0x0, 0x1, 0x0, &(0x7f00000001c0)=""/29, 0x0, 0x8000000}) ioctl$VHOST_SET_MEM_TABLE(r9, 0x4008af03, &(0x7f0000000680)) syz_open_procfs(0x0, &(0x7f0000000040)='statm\x00') (async) syz_open_procfs(0x0, &(0x7f0000000040)='statm\x00') 4m54.446789165s ago: executing program 0 (id=2129): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0xc831, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, 0x0, 0x0, 0x0) recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) mkdir(0x0, 0x100) r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r5 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff) close(r5) execveat$binfmt(0xffffffffffffff9c, r4, 0x0, 0x0, 0x0) r6 = openat$binfmt(0xffffffffffffff9c, r4, 0x2, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) setsockopt$sock_int(r7, 0x1, 0x12, &(0x7f0000000300)=0x20, 0x4) r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) keyctl$instantiate(0xc, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="5265772064656661756c74207c72757374f107bdc165643373797a7f1c9e469d638613ffff00", @ANYRESHEX=r1, @ANYRES16=r5], 0x2d, 0xfffffffffffffff9) r9 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$read(0xb, r9, &(0x7f0000000380)=""/135, 0xfffffffffffffe10) preadv2(r8, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1fee00}], 0x2, 0x0, 0x0, 0x0) write$binfmt_misc(r7, &(0x7f0000000300), 0x6) close(r6) execveat$binfmt(0xffffffffffffff9c, r4, 0x0, 0x0, 0x0) 4m53.516866154s ago: executing program 0 (id=2133): madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x20) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x40800, 0x0) lseek(r2, 0x101, 0x2) getdents64(r2, 0x0, 0x0) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) openat$cdrom(0xffffff9c, 0x0, 0x880, 0x0) r3 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000040)={0x200000000000001}, 0x8) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c) sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) socket$can_bcm(0x1d, 0x2, 0x2) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4b, 0x9, 0x8, 0x0, 0x400003}, 0x0) r4 = socket$inet_mptcp(0x2, 0x1, 0x106) r5 = syz_io_uring_setup(0x10e, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff}, &(0x7f00000003c0)=0x0, &(0x7f0000000140)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r4, 0x0, 0x0, 0x0, 0x80000}) socketpair$unix(0x1, 0x1, 0x0, 0x0) io_uring_enter(r5, 0x47f5, 0x0, 0x0, 0x0, 0x4000) r8 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00') preadv(r8, &(0x7f00000000c0)=[{&(0x7f0000000640)=""/4112, 0x1010}], 0x1, 0x4000, 0x0) unshare(0x26020480) openat$procfs(0xffffff9c, 0x0, 0x0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x40011, 0x0, 0x0, 0x0, 0x0, 0x0) 4m52.581509153s ago: executing program 0 (id=2139): r0 = socket$inet6_udp(0xa, 0x2, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x300000a, 0x11, r0, 0x646ea000) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x86, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0xffffffff, @loopback, 0xbf}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f00000000c0)=0x2, 0x4) setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000200)=0xa, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80800, 0x0) r2 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x5]}, 0x8) mount$9p_fd(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x10, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f0000000040), 0x4) recvmmsg(r0, &(0x7f0000000140)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002000)=""/4110, 0x100e}, 0x7ffffffe}], 0x1, 0x40002000, 0x0) 4m37.384757474s ago: executing program 33 (id=2139): r0 = socket$inet6_udp(0xa, 0x2, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x300000a, 0x11, r0, 0x646ea000) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x86, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0xffffffff, @loopback, 0xbf}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f00000000c0)=0x2, 0x4) setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000200)=0xa, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80800, 0x0) r2 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x5]}, 0x8) mount$9p_fd(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x10, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f0000000040), 0x4) recvmmsg(r0, &(0x7f0000000140)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002000)=""/4110, 0x100e}, 0x7ffffffe}], 0x1, 0x40002000, 0x0) 6.693996854s ago: executing program 4 (id=3378): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0x4, 0x0, 0x0, 0x6, 0x0, 0x0, 0xad9840d16f7c11f3, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @empty}, 0x10) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe200}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @sit={{0x8}, {0x20, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @rand_addr=0x64010101}, @IFLA_IPTUN_6RD_PREFIX={0x14, 0xb, @private0={0xfc, 0x0, '\x00', 0x1}}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4100}, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4) 6.61078036s ago: executing program 4 (id=3379): openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fanotify_init(0x200, 0x40000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, 0x0, 0xc000) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x7, 0xd, 0x5, 0x1, 0x3}, 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)=ANY=[@ANYBLOB="e6643d", @ANYRESHEX=r2, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) read$FUSE(r2, &(0x7f000000a3c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r2, &(0x7f0000000080)={0x50, 0x0, r3, {0x7, 0x29, 0x9, 0xffffffff90adedc4, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x10}}, 0x50) syz_fuse_handle_req(r2, &(0x7f00000083c0)="c91443d5daaf04b192358b692f84d66c60492a57cffd585b0068ccde45d94ded1e86d3670791c21f8e0b2153d10d45d37b72ee2fa06ad61b0a9354045a8dae1bd1cfb49f3c11fe54c17eee632d95574681e6c472eb8a1beaf3a4b88561847a0a0f05fa4a26639d7e74a0c1c2790d6a59d4073b1c55539b7c21b8550efbd5f835c56642f4be57d170e36a6bf3a995f418554f0cab342769089d0777b28daad5c0c4ba56a0bd6c0515d9bf488fdcf49a9a7bbfcf5ad78733f8119f2568daefbd0985a9916c0d048e38765cc7bb1c82e0f3c81d98e7179ec782331bc3cfb2caf58a99668420795e6a00ef41dcf5283bbb61ebaedbb7a675be4fb2d11c31f9b76936d1112c68978c73f42e145b094490d748c1456a14c23fe25e2fdaeaaa7dc0d35dcc9bbfe86361f99f4d04090d1e66aa9714ee9f4608ad66c60f500bf06a1b5b90fbe2f6c42c4b5f337393b0bb201473712c48f898c514fff84c46b50d3aaf44578f41d312bb5a73526db7818617dcb938ebdb17f92423ca2cf7ea2c611483e0baff012fd97e28558317049e4fe2d27f72796d7260b33900cd61f984c087d3c54f6aa11e389a49069ef99ca86c279598b42dd3485f09fc7e119f707438498316cf2f2bc8a293eeb1a35635989327d4f6c9ba6b2d5b9b8ee89a1e13d538b954479663223bb704af6a63ee497734410ea43bfdb0ad3708cb7155df2432c44e8468a7b77b807d345c9b94fedadfdeba12f4b6d11d16fd6dd5fff6cf896d0f40785ffca538dae61d8a5ffee814e96628cd945553e788b8d915762ca3b40124149b3c186ddd5f7af5b75f4725444f2f7e54b999c93e8c5fd4d4fbd7a3b3d7e85df3053c866f1dd247cac6912ed8b0e491101ca5a0b999a21014b573ba3996c76065c9d8bebf431f8be6435837193efd6e5a565b2ced30d04355435f166b09f9dc91ee50412d0daf72b28ec14c505cb155de1a46362f140ac2b633fa42b12109f0a29fa8ba271d6fc2a77af3b16032ee46b3ddead76a481ef52f6bd25cab4494681f0abc2ffc60ebb36cffcc058a067fcdae6c9de670cd6fde6eb8086a65fc05df17cf69f654516ba30ee04a1427b40fb8e81fe46787d557046854ad342442bacd781c7a6063892402fb0d765397448991206b28193e20f285e50d9219ace39b311e572ebcd80702164315656e7fa92960d0fd28c6489406f0b3061218417548e7e78b8aaaf5a623eb47c92aebfebd1c78343bc781f184e0122a28f56b18832da5646ee8405fa2fc040ab30377c447b42d0bfdddc65e064ccdf1ad52a94309a819caeb523e22b25d1ba288b7f2c726290d50021b9839c5d3c471aadb08025d97619935a9880942cf653508a0b2c43838e5aada8b84d22042928dd372dedec14672266ddceb0744c7464ab282d7fbfb2767e891832aa25d1425b33a60c6894a8d5292fdd73e05a868b8e50cb1a412d1249a77ccfc3d3eb35a67221f80bb8960fd93ceb74e102f2a6946b50caae3ccb86a8ec441d6e58dbf24b3eb962c8a28cffeded9b7cf4a54f524a1ef49fbdc91e125aad65a54df6a0f10cd8799f48aa144f7aec977b4a347c5c9628c4805ecf71f305adc9e5ca7c1f313f9ea3e99b3590efd94d831e1ff5cd7a26b72281109547facfa3abac2cfc9177b117a3757b778e95b5069236abb25d8fb032c38d296f87388fdd364b491cb828732177a2c6bcaaf831d138c898bb60c0d9d8a02d8b4b8e7efa87d3ed66221ac52e31ba9c2da488b999eaf82994bc8f1ac29d5e60b8b1cdc30a1c9829aca1cd7881c8aaac9ede0f5d8b85538d2b13751cfc6b37587b0223b9f6b6dd9340753106b1eecdf4f63c51cc2c63a1f86235bad7602e115d1e0ed78a6b170b88eb9584d2098b187695627612189998171d245797391b2b79bb690a79dac4b769e3f18c4d49359f7b460d997c03c793f51a830d5b21faed2ae1c3eb0fce0cdadde3c789ec931b6397c2a2fb2eda87756fec031e5f50f07619130f8e39f1e00004a1f204e5d87780542bdedf0b1ca5168779ad7cb2ebf27e0a5d760a2492b4d92eab24f2bc9af0a3e51140c415a6f885d0faa38ee6dcffc41652b28e628b859db0e7a0f961e37c5806df137e68c5316667f36051eb05c971e208721fdb8a49b8c49f85114be9dd7288f4e95c5f6fb8c1bc1bc7d79f32ba5419d90130a0328ba70d10c770a1540718f7d890dba9c39a116623d492275a1268c91149bfe026ca1c6a458449d4004d653f4b0a234eacd1f4da495fd1f936b4b335f64514fc8091b1dab132f599e26cb127e25011efa30a922b5a3e8807db9a00a9cc732fd323708767c905c8a3cd53e2e8d377d3b43cb971cbd0e66e2e47f3d601d49e29941b2ea4d3c8b7f5698e1a633ebba00f6c178d6d04b9f1544f04cd173e2d49f129a8725a647e1a9e798b5581c6a461b585012a302353178188e55f8102a49343c9c370ee505d09e4be8580d95f5bf39267b00e93adb6b52b2029160d78ac271e4e0c70ed835484e80302b93efd599707d4d22c806476fd04d18ebd6a9bf88c11dc2c96041ac8c3e04ac0aa5d2ac6740972717b543fb871884a7a0434a433571fd621977777984ea9c06914be966da9f349cb1ef3a116c49f0c716eae1df118cd3d5b350b917c06d853c1e1514213f5a29071e42eecee264ff20529c53c3a060a18a680ade2a08b4549e6998f06e61e4f4c36d578e9ad83dd38d1eeb100e7ab023edb38426d5165b867b9507a6b644aa0322da335b208105f2e74a9841ea7c629ea20cef740f6364e9d84a4485d3bb6b5f4e14c7764f78b65c0647870638a8f618381ec0823faed0424a448f753a59fb22e5138e0ca537b6935befb99fc6eea2d9457c01345afbbaaf3a7a96a39478b222af322f86730d137c3f570b38c7363bb9a89bb4b3b8979b9afd232927becbc91c8d4a276febe47bacd4a84c0bfdd54e685080f2c3be0b1e37bc6d21b13b7b1bfd507880f6ad7fa39bf99eaf6b7088d758d9383e38326381088e9e3e792f75d682cf61cf1176953960b0e160b2a535495d52c28f14fa45ed7a3f91e219dcd05afdda2b7e6c1b742b29f6c5f62a040a5fe6606433fce7de757ed76372dfc0b1af9af10c0128bcd335eff1c6c9660b0893730c3ef8de6e50dba419b35d1766eb9a5dce4c2fa518f8e3e2a27855e04d06b89e97578a4406ac03f3314575143db5e43ae3d03a7e90a590b4c188a5acbe1cf23cd4cf60ca98248d4e740122a55ac6e463511b4c4cd47040aafc0bed7878348a4caad4d977671cf4ac319773767ee28f8ccc4c9deae531b029eff5345470f20865549b2f2c4089306304e13e42ca37fbca6839bbcd2f10bd20c81d44ab73ad5ffcc55f51b53efb00d3c68d8d8505e005247ba23e86a803b199f36447fd01f192994b2fa27c9db59ae66b56b30c1ae5cd717407068a9b13ca941b82db254f4ecdbd1751a3f8f1061031bb41af5c04a33ffc98509f456830cf3c94c14451f04d84844e41c618e82958710d07daeba666329b914f2cc7c1d34ffbf6b50620b7c78c25c5d82a5aadcc4d824b3b68c34231fa7c0befe5241c447f90111c55848feed9d1ee67f61095ec2c0b4ac82f5cf169201516082a804c9d1775990d430d21bc65877041905caf385918f44191c134e493d960724b28f01e79fbf3b99eac1e75fbc8ab8dcfdd98b573fa6d7e6a6ead6b15ed78e2a8d564f61d8c52be8104306c104146696e16c9e9bff79a5fc1d92326cf0f2ff5e5c5c252773f2bd2c554bc409aaec03055f71d439daebc1d8b06c9ca0e1fe4729e8e6119616e8fb861b1e2694d1df267cbc496ba4a87013c3317a16b4c1e369748507794a20ad06aad20e4dbfc1834d789d2a8e9395ddad33a74c6c7cf54e61e533cae228909536eba8020f0c3845d2063270cae4d8e8dd8cfe3f112c46751444546ced9f6434741656dcda2185be13eebcc0392c256f384fc16353e89cbdeef8fb2e3cadc1ed2142f3b6485dc2d540fe799d027413128f624aaf8bc1933d3a0e6a954931bfc914921dec7ec822a31ebb652d4f312ab4068cedc6203b0de98e60c5f82296a3482132b288ba0a8eabdd8ac40faf145928e7563dbcb14d0625c92b542860993bb0388d8390dae727ae4086d4de1b7fea9d79f4844374bcd67fa5e1a3a28cd6d8da3f171fcf9d13062bb149fde18917c6650cdfa2be8de33b556ad34fad454db13a446e8a7c40167117e884d874c786768975df0b201ea0077ba735d31d65a832dc122d13c6559601b83899af1f14808f55f077ad465ed61378c63abff3ad742691168fe1e31bfd0dbb9f43d364ddf0bb185f69e69110c9eb1ab808354fdd2cf571838d5ec63bac3d70ca40878dc3c3cea26adffd5a197206d7c80d6a86c202338e72f17dc7185e1df0cfefa9475a2156738f90c6410c1698d1a160fd396548323c796ec5dca3cd59e468ff6a14caf34b4fdb16f1c92acb6bff2e859f9de1266dea0d1828598319b40a3edef657be02188fc94490c1da088d3ec2f315d6b5bb2f262764b67ba321379f4c93bb3ef9bc7db0c0e5f1e680ebfa84463e904d5351ecf25d1d22a98f81f7a1fc4c4fee3934b7672661f0bcd94109706644d0fdac4b7933b5db2acf39b98c0a8106a7a757408404a4c299a077379458e2118fb0a53b798adc1b85d3eb20b539e572741b9855e44a545809f897dde06730145b5caefe9db1c321783450d25d38834532c3e372fa92a53ac9cb4330eaaf65fe1b69a66459058e02d20c6641b7d8edfa8e356baaeb011b61208ef36ed33235144c86d6ce65da89d66da06291d4acc05e3136559ab77a7c4ad229c5307b48ed642d96c28cd06c82dedd4a16ed90bceda81292120438fd5c47b7b41b2646fe0899643f896ddb2d11e7311f8a0cbb9bfa38106507e06f35b3052ad6b6a11ac5f0129bedc59d04aee3737ebbf10f97c80f1a4e3f51ac8ac4488ad9e3f685a7c0dd4074b07774f4efe4b9f2cba400ef49f73b12fc7d96d8f3283a1eaf8c003931fc24a9248e201ac31bb49226c37d535592e00308d86ba0765a7eda13b72686101d352fb959598038b8dec44a0f18e5c8ec089912d325880390ce5186d4585df46e5662987c164f0ccfb8f12f6144f91349051d3ffa35ba597d2b5920e279ca8e139dfe2ba9923c0190fd444c8bf12a627618791a8781d6b54470777e6a5dac8cb505ae1e534b0c3af7db010dd602b1459964e1e15a812f3b4c8038e6bc1dc568ba482ee4944582abeeda1ed012391706ddb1e0ce60efd15acde8283d3612de5d0cf76185ad3a1ce89488e1cea4009573b55a2766d100ecefc5d53c99876cfec65daea82f55cf9687ec70e45cfdba9fe69fc3a822c29ff4be34857bdcd4313fb23d1d01d8a79cbd0057eeb5c1c0b39f75d5a753a2e10bd0ebb91dab1312bdf1a984332d566ab56dfd838d285995bec8726c5d1358fe10b0b6aaa99b9d9b08894c1dbd06356e5c693ddebb9d8b306062defb160db9d8f02ae3df59697866f5adeb34c8c5b27b63b09675030f344197b3bff097b996819dec9059aaf5ec1a6c585a86d16528091543a9e6bca4d850b7963fd1e7d981814dedb165c1a6444ec0a21743a4de8845b386ad4e1e9c9f2873f6a353487d9a8f8f56ae1d0f69124ee56b5c2b2a48c78cc6ba6b313b889adf0acfaebb4e2dc71054a4992366a2b6ff1f5972d7d2f0e9e3b17d7fbe931f43871819dc6e6040ba239ebce2cfa424ff7344b8a880040321909dcd16956594f5d99fdd39ea5d7209b906d2601572c56c72db899f986185194fe5aab45f27d9ac12aa8600b3c2728ef2e589a6886d711edf4d7f95b2e10d9adde3009560ad754f9e7a52808720a973dc475f8177fd5b199b69925f03a44a8bd9f3c3369861802ce5ca4b40cb47d19e2e1bda1b054f16b66ac7b7c0e5205112e011d6957f1df50505003544631ff4385d8128d46838338930aebc0496348045a7c05abd7a56e1079947d3eb1c50e4d8be001d03d8973f8f08f2f21a415174173ccb90f7ab615be5036947e164a434c059637bfeebb8b9f2e87b9774a4595c71122c9fac74347488b9a054e2e7b9c45b7b12fcca0fe789db614c70d4149d44e50fb64aabccee7447288a5b865a60c2640171f89afecda2cb18b7ecea214bd32f43d5ff66e90741697d085f3ee9bfd8662a3cc570999bb151090160d3bf5bf1d85e896d66276cba7ed97f341f595b13c02ac2a1352aec7a5980de2c8f9d890951108947b7602dcf2bdd2aef680667572b87aadf7c54338492eae763df73e89e3c438c196da83d98bc65233a242e08894f2390d8714f0abb801d9e5c42f169555284b6cf079005b373e9938db71a93ee5945c2a43a06e3df580d372318b3d203503c6e968206d7db8116cca2f2a1fae7f5b5195bea92914d66516bc3ceb2d9dc4de59d0d52ab80910aba7ebb696c7deaddcf0fedf56e2a88c3496bb79897c6420a0ef1b03ad89c76b24f67ffd41c9227d464565457bb25f0b32c83e676b0a3284f2acbed39c6875871c5e866a8284f12e383f87f12dd9bbe3078c68b3711eaa9bc17a7ac8413a8ef486922eddf43f01625671b7c3d0a4c6c2dc38217b4135c8cb46df7d936aabfd253e95e0816dd1f92b257e2f96d2a259a320756ba77d99b709711326f2ea42def974d60f817a1f6779121dd32a1cb194c7809e4c8fd052ba357323436491ec45a49fa601ed373aadd2199e4483704fb2f4edd7bf2815b552fb84d09094cab9700b5125887ee508570217c16799bc11d9e3658de8d9812f30dc8078bbecaf887a6527686b026eea70229df1e61759adf19c1b96673419decb382ae29bd685c5f32120b2d56d3e97c9ef00a2c0598c2181b8fa53172312590a9549ff55dffb9070b042c74654b2ae56371b2a6bac8e2808a40fd5d6d0af184c035101394e347521467e0ddb962e0d63614cf1461ac7b9d744084e9f6f26c88d515dbb1b7392b8e9384b81f186224d5c09e266682d8044d8afb1bd6483962b03ed6884759d2647b8f174a6695a437a1f1aac3e6a2f8ca658ee8a8ae44a77393cec61a9f335a1e859825e73df4125828fbde19d3695125992ddb2826ffbc6c7cfbfdbae19ba864c4170c79cce408e8b280a7632c855d802029ebac8627fbd6fec1c3bd858411c969ca035992f2ab909c423158dffd0dd5a407b3e0c2d9b180440996e09e15f17b4e42f365371d9dd58c4609455253c44c2ba73f592e360ab5fcccdb6e90ae0c60ada9325c4824242c0d866e7dfbefe091067d5c7ff0432814f733591eb0096659738b34cfa8c6c988ec628f34fe08f31dc0156dc39866412932d045168f4f3a48f24fb3b884be1384845d496c3009626f1c41b0189e95c9055d24eb5a0390596f6ccf50d3727e607875a3b2cf076a277e12ac07ddc59da78ee16e1952706ac6a1a9ade80b867d889789c935d196cc4da67aa35ba80ef2077ee4dd69c5f31a0410f7fd0739303ddcdbff2f53e0a44ec5de0f062e533444bd946959a1d9c25b297b6fc7675ca4add9e24e8ff390e0375f3b15e1d3e8129007d743e384659f191bd23ffe02140fa64d5c6d75937b28d51afcaa9d207f57c878f2f54493025e9eff5b5ce0c997d11c9690262e38e1e83c7f1a0ed3f200d9d0472739d59dea3cc6e8783758e3e3201731cf27211267702594356345449b42fa64b64c6f00a8f26665524fe2208b1a7c5fbdc822ea611c1811526471e4f52ab5e3a43de8fd4eba2fb2796a206e348de9b0be78ded78204dc82d9e9adccbe408d7ff538aab3d663eab189927a9cd597388e8dc5063d2db42cd65415fa32d20288da017c9f94e788dfe7cc3a0f6b6ab06116ed3f72f3c048cb1e51abf308ed7169908d1ad5b7ab3a86a3316d164084f8d88c6f96142d888ccb158efa586015914c116db114aa82c44a55d4c33bd901dc34e820d3120d57def03ea4f01b263913cc02ca586b208506d149ef03a706fd5360a12b83acb7bf97ac1f1f85389d4fbfdcf38551e9dbce760a05e8e4023d85038570d3697b3e7de73aac9c7feb39b6ccd1a775c8ce01b08d7190e28866aa7bb8d0cff0fc45b452fcb6a290f98f4b5ec125224c8a93918b1f2888befba6de3d294ee1f13a9c56e92eaac0b8e6c6905e77a60ea7e1d1ed979b6b2606652e7d75750a065c57c7efb1ef5708719ef04e354bd861b15e0a1cbc7cfe65c8a3d9a2b790260d6e6eb60bd4e0fb3f040dfa27fa00797664122add0750a23a8b20fcd68b6be1e21620dda4bf0561f4c5ed74f41612a0676dcdbf669df3436cbf2ce253e69319e3ab36e6e6314f11e0d0882ee3d7f3d3b3dcfe3cd7f061e301369207545676e09801f9bc4bc4c3dcaf48e5320a4b3211051a7525868a0ac1278ed6fc9531ed89cf4205458acc05d5351bcab7ea50250b6cb4c6fdd0cd96f30cdc9a820f495d0a3e14eb6c493a85a87e3b7fb8e5f23431c3c5359f5802f1fc11ff71c3172c6b57b5587ab38579b79e328792edb7a81d60762bc6c88693a00712f811cab9b075a97535c904396dbd2fa0994ba9c9b06fe9c042cb6860d22844b94863bf7b68a1ab8639e4487b38d48e40da4a98dedd7d73ca4b575bf4c604a364a9247c2ea5e3b127ff42f9bce1d3d37c2428edab1708ebd71ac0e4a408a9c6eb97407a4a8b5e912e2c63fadd1abad9a772a96fc4666f7d2b604adbde6f1136de2adfe38994491ab0f34ff1fd20cb8034ad39aae4c5c0076da2e7a157764b770e1c5f35b6f323ce809b2e92be1345204021d74712368e0ef77056afd85f065bba085793c9b6950d3c3fc6c445afbdd5a80cf7b0bb13055fd486700be1500bdf8771e286a63962e56d4771ed5eefbf111ba7380f02d6f96eed174246820b73bd772689c072bb3d8e43ef96f5466dce5c9392e34b7176821d2f4df3dab4c6ef5e0238ffe61582812fdacc987fbb6d98cad5a2d7af0e4c8dd3f800cd75c38a515d4d4c7118c5f81c6f7504e7ae452370c56c4b7fb4daa65bf26919c12081485d09e9d142965320211f483ed2a0a6836fa2488a878eaf9653b0528c3680b75a1920a25b5c5c17548c7ceb9a1656a0cf6a404aec14f7ed8a1dcf8ed32e1cf94dc2f60b65aa102650b7a22d9e708c606ce8403ceb81434bd9938b2c4e5a8530a156a1df7d143b2da54071ba3e673ce11760f72c32273b7bcd9a48da2a6caeb4b782cf1c3a044c1731f3ad61ce32bbd0b52cbb187cb3ecc1e85a67ffe27cf86769a0d69fe293dd30f060b8a0f26ccd0287d0b8d941ee7410a7c6aa430add67c2dd60db292e24f294ce80b0321aaa4d054a6f5d9981e1d5e859b454f5005be082bd59baca5775eedb7994333c62c452ef7b2893e4d03a28c0e368928b4bdd6e31f52a83cd7e162975405fd128321e0a8e3e77fd93257b0c46b309e16203974382ced818faac3a02e74141e9ea36c4a1b98bd859fafce43b2984d856c832f61b1ca562cee96f5843adc14b35bec1ccdafedd214f1a344345373f3c9eccee8324950a23c3e77d55dbde9a7ac1b7804927affb8b0e1488dcd8919d227bd1f50a35abf25e3f120c25b0dfb4d85b4c2a2c69cf7047c76c45e4e901e7396140496f9a322c2c2ac777a27adff5a6daf32e852b1bac89f1086739a603cf0f6838f792351c08e38ab130e5a83aa5a4f2da19df131770a308d810eed0059a2e5546a2169b9d0119f6df7c18981f4b4f119c76fdaac031ce7551f25678b5c4d8815a7ea9565e63389fca6ea0bcd40e71ac72124113dc0041ce26a0c9979ff76d7f1f2c0cd2c16d8c7a36930b909ed7e2d4adfa8352b12b99bdcbc25b485f652539fab7ac983c1ae925967c15ba2345e45d6bafe13b3e9d7acf1a592422ea09c3a45f7fe24e235bd70b106cdaa665584e74cdaf9f39b804bc6c4e7f0bf572225acd4dfe010081b91c2d5970d4f43d2e1a0e05f84baaf50642991b3704034aed74572e6a4715b79276432d06660b39c989570fc0d5d0071a7c690658caee447370d3295db3b5dc625e697e1ca2675b5430b9969024835c7d001fbce86c5165c4fe8f2d46b883daaa3fbf42dc5cf61209379013896df740b9cc32638358ea8079a33f04197f650471086e67e5cf9779268d7973c73bbbde2f1c11e1a8e2b154aaa8b4b74f8a03f14ceb7afc4ba35e6620b7af89c969021d20cb260c1868f3fa432ce7e509db06001ae6540531b126c1e3a851acbf0a9c1354bece05c094d69d9bd87f99391e23306911383d2082997339daebd67d8a707c9b496a309b7921696f39a07864f31208802db7188881e346b41c34f4129fca9c6a13172a4dabfe791584d240fc03685057d53c08737aa1d486233318eb4545f2e8d18087705b9d3a7658564592f56aea3aee53d66c249988bf353853728553a1577062e24af533f47dc012ae90c5c085babc121be2993c063e203ab949a088041271ac0527c56edd4b7a87e98323a0137cd493aa05fe38d02754a66d89348b119e6200d5919bc366788eb67115fc57c4c1a9dd42c7411d6709ad82de8662a1849445b39beb2ba8f894860e41a054f61337179a9214b0884f3964c95ed2a4ab37de8038566bba76fbaa7502c0460558ff4bf4793ca68d78e50f384a81da4cfa23723747e906b82290e0b8ea07e3404bee0915800d4c3c07f94c43e7aafbc7a44d923de97963d0d1586bee06fc90aadbe5758fb9933ff7df346d62e082223741f5cb26ef953ca654ab983a72b30b296891c9e3f1ed5216b0e588eb25f5d4ccad6f96973cc2d26196bbd37c83266473071ccd84d9e3c74f22621e8bd60afa4bcad6c853c7591fe5d4298a954ea5006f682a7a65aeb26b230f3866a28a58bf532aca8fd5eaec64f442ac510a7df4114f00fd6ff7e02d77f8e72797222556959958c4c4d166c5af18a6e25588cac9871a3d5bb453889ff8d13db22024a997bf97a5afdf698b1deaff3101e27868d2de47b92c403ce82e15f3239d8923e8ca0c01e3781b5dd6121f57d2238dc3ff8a1bde3e371efd33838c552e43588042b360f55d7ca92f11987630364b263428e18601d7bf23f6432b3a9aa2c500cd9ac5f73cbe309443858a2806956b0cdcfc19904567bb1703641017c6199e768410e03d8ba603eb34249d567370202f39639ae8f6d52d9d5dbfc544c5b85ac8187095c63f1f613fe4af179fc5c837e6e0ccc21e62ac22ac045c4ac3b1ca6a4cbdbe29ea465240fc0aed1f0e086d7580bcf81d4e2a4d55a8e3bc57110e7cf1e1895df07974f0686dd2ea2b12bbfd64e7a9d0c62c662f0370e6ed495eeb2ee5029042147a1f2e5fcd6068b06567be893cb80e2cbb5fbb12847313811c13cf685698d5e2175959579e510279b9e959ac2c3f94fec653c6b521f8909d633ccedbc1109285ecbd52d27cd2891eaf354db2c966d1e3086718848433c12658fe7f6fbfef930b963139a63f6c4caee5a1964d3a038dd0db403c0a251d702c07a0fba4a3576ec6668a78e9e26efc6ad83a670a47608bf4207979bf196b3160c95e7ccc6406d46f529d34676b76d72396262e1448df051130a21484e0e977df1f7f0a259ac762eef9506877498b9998e1286d6294cf60b95352e81c3", 0x2000, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000063c0)=ANY=[@ANYBLOB="000200000000000003000000000000000400000000000000030000000000000000800200000000051e31ded52722afacbc41bfce030000000000000009000000010001000600000000000000010000000000000004000000000000000b000000000000000600000000000000000000000000000006000000010000000600000000800000de004000", @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB="0180000000000080000000000100000000000000010000000000000017000000940154324cc0cdaaa5fb2627f3f7dbd80c7869455363822d7a7321000400000000000000000000000000000004000000000000000000000000000000ff0f0000f4000000040000000000000007000000000000008c00000000000000f9ffffffffffffff000000000000000000000080000000", @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="ff01000000000000000000000400000000000000e6000000000000000200000007000000666400000000000004000000000000000300000000000000ff07000000000000ffffffffffffff7fff0f0000ff07000003000000000000000000000000000000ffffffffffffffff0900000000000000050000000000000002000000000000000200000006000000070000000080000000000000", @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="01000000030000000000000000000000000000000700"], 0x0, 0x0, 0x0}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004080)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@cred={{0x18}}], 0x18, 0x2004c050}}, {{&(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003980)=[{&(0x7f0000000400)="9fcecbbe4334df863c1bc6b92fe7cd78b760ad38792cac2a0a394b65ac12108c6140c0f440f0f7356e0baabb0355f778cb969bd233408fabe1ae5860301546d46994e896107dcd", 0x47}, {&(0x7f0000000480)="ba4b80366a637677d863dffde6e7c468be386a1f1d2091097d25558dfd9c8e90731ffeb00368b42d06d557298666547efb80f6187e9e2e569ebfbe8852702f5fde0733b9db6b95d0b70d62e2c553aeb7c0b42ea69a7543c45d24e4d16300e32e729f8761dff9c8dafc90c4", 0x6b}, {&(0x7f0000000500)="5db18c36920e69ab95228acb74ec539f220eb0fd9a75f71f804c25498eeb9fe15034b889eed0a1a1e932a4d7088545e8732fe80a6aa0e739a1b28b5a4714761bfaa917b5ced385bf378a66d71b67cd87aa56f04f51cbc8467eb879af9ce8dcad431d20f8746e8803021fc950d8c771ae8faa93", 0x73}, {&(0x7f0000000580)="d55ed29eb0c35df9b83236a02473f15c94ec3f94d865e9bcde85da364ba005c0c33d4e52fba825baa624cac64cf7f4c58564ab721a0ce9ae4bf57a52ebe0c771428a18f01130eda000b2d9bb4578715d40b3d110e097ac3970a2a83d1ea7e3195581e0b866a3d3182170c4cd6b0233017a662425d9ebcc63c26659b9513721f332512be6a70e02a8024c95b25708ced8b87d535deadce6c05c4692bb9192c38090df84e26af797bc9fca94d988cdb9443d06ed8eab7ad5", 0xb7}, {&(0x7f0000000640)="dc00ddfc3ae3d84b702459682af855594b1d70abebb3ffcc1f9e1e686d8c84d855d795174c39262fb79a24da0dff128bace44c473f225aef6c183dcc5934fa976a2d352e689182d7b65fa756a619a483c9b1087555e5ddc344f93d5f8b7069fcacdb94cb4607b090fb939ce87c30a315d88ac7faf98e07630b19113fdd0541e33f917f7bdec13d3cc459aa933995d8552ec6b798f3d8fda3cad9e55121e4d66fbe837748ce69d50b496de213d73be45151009d4fbc2aedbe16c84e7621a0dae1db7e19eb389e65f1defc", 0xca}, {&(0x7f0000003780)="b34b87ce18f2bc563f13c45aa90bfc9cff4490dd08d155b9d1416dab593241066d26b0c48d3b87aa411ebf3623a1287fe92ccf2a73e0bb8794afd2d6a49b0d5d9b73e4829db40ca2d4581b0fce483e398df93988bebdf70ccbacc7a61b2fe22a8200e28ae10e2726b5e5bb52416698c7609f349a5de2e6bd3741da3c9162cbb7f8164acb23b723fe09326b095b36afdbec0218b2b1bc72153c1f7f75cf548474028c64a6c491639eccc6e71b626bb74f49b74e6cc9da19c5c2d4851b84c8ad27b9b285005f8af4ea66c5405c8eaa835baa4367ffc1f2c350c837d0427a9c434ada170d0fe2f768a463", 0xe9}, {&(0x7f0000003880)="22d2cbd0b6c1be879ca1a20f80673b1111717431c7c5a4a728750db0be021164f908716734a9c5d9baf9ba2d98c92cb46bd9f89d9cb21d4c228143b3fa84137e8bf0df7b7610cfede3341fa000c3ff789cc67441a15af19d957514bd02fbd4f7af9068711f01cd9dd4d5d6ffd5268302b6dd4be63bda8febdfc78bd0c549002590f816a386c8939d1b74d2a8b795699dbc39fe55672b340e222a9b2afa3d2e69", 0xa0}, {&(0x7f0000003940)="ebecc3f34ba91ff106d754a39063c461a831464e36225da82515083f1e9437c211f9dae13c3bdcdd9dc4fb7e82403c78b762d46432b810", 0x37}], 0x8, 0x0, 0x0, 0x48091}}, {{&(0x7f00000039c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000003ac0)=[{&(0x7f0000003a40)="c97fda28b3b4d6c3e9a3ad3e6f54f350a93c0a4efc74cb9a494f969a3117e3735522504e7972ab043627a354cfeefbc76a0f8c41074089d78b9153ec922b3c94059abdfbdc730b70a1c36a50ac8905ce80609fc81b5fc761d08a32f1498dbed9c7c713e7141b82366fb681aeb322f4dad08068791cbca7d0e69090", 0x7b}], 0x1, &(0x7f0000004000)=ANY=[@ANYBLOB="18e1ffff0000000002200000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="180000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=r5, @ANYRES16, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32, @ANYRES16=r5, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYBLOB="100000000100000001000000", @ANYRES32=r1], 0x68, 0x80}}], 0x3, 0x24004041) r6 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0x5889, 0x0, 0x1, 0xb6}, &(0x7f0000000000)=0x0, &(0x7f0000000280)=0x0) execve(0x0, 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) unshare(0x56040500) syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r6, 0x47f6, 0x0, 0x4, 0x0, 0x0) 6.487171473s ago: executing program 4 (id=3380): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x304, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_GUEST_MEMFD(r2, 0xc040aed4, &(0x7f00000001c0)={0x1000200001ee0000, 0x3}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x0, 0x1000001, 0x11, r3, 0x0) mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x3, 0x2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 5.362846632s ago: executing program 4 (id=3385): socket$unix(0x1, 0x5, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = syz_open_dev$loop(&(0x7f0000000280), 0x80, 0x800) dup3(r1, r0, 0x80000) socket$inet6_mptcp(0xa, 0x1, 0x106) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_io_uring_setup(0x118d7, 0x0, 0x0, &(0x7f00000002c0)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getsockname$inet(0xffffffffffffffff, 0x0, 0x0) mkdir(0x0, 0x22) ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) unshare(0x62040200) syz_usb_connect(0x0, 0x4a, 0x0, 0x0) unshare(0x2000000) r4 = socket(0x28, 0x801, 0x0) shutdown(r4, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)=ANY=[@ANYBLOB="5c0000000a0601080000000000000000070000000900020073797a31000000000500010007000000340007801800018014000240fe8000000000000000000000000000bb060004400e1f00cd05"], 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90) 4.300915714s ago: executing program 2 (id=3392): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0) r3 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0xe8c00) io_setup(0x3, &(0x7f0000000180)=0x0) io_submit(r4, 0x1, &(0x7f0000000100)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0xc, r2, 0x0, 0xfffffffffffffd6b}]) ioctl$IOC_PR_PREEMPT(r3, 0x40046109, &(0x7f0000000040)={0xd0, 0xfffffffffffffffe, 0x1000000}) ioctl$vim2m_VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc044560f, &(0x7f0000000080)=@mmap={0x0, 0x2, 0x4, 0x0, 0x7, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "10110401"}}) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[], [], 0x2f}) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) getdents64(r5, &(0x7f0000000400)=""/4096, 0x1000) bind$bt_hci(0xffffffffffffffff, 0x0, 0x0) io_setup(0x8f0, &(0x7f0000002400)) 2.840827105s ago: executing program 5 (id=3397): r0 = io_uring_setup(0x4822, &(0x7f0000000100)={0x0, 0x0, 0x400, 0x3, 0xfb}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0xff, 0x1, 0x100}, 0x49) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) pipe(0x0) r3 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x80000) r4 = socket(0x2, 0x1, 0x0) ioctl$NBD_SET_SOCK(r3, 0xab00, r4) close_range(r2, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000016c0)={0x6, 0xf, &(0x7f00000000c0)=@ringbuf={{}, {{0x18, 0x1, 0x2, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0xce}}}, &(0x7f0000001540)='GPL\x00'}, 0x90) r5 = socket(0xa, 0x1, 0x0) listen(r5, 0x7f) accept4$packet(r5, 0x0, 0x0, 0x80000) close_range(r0, 0xffffffffffffffff, 0x0) 2.680762634s ago: executing program 2 (id=3398): r0 = socket(0xa, 0x5, 0x0) close(0x3) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) r2 = syz_open_dev$loop(&(0x7f00000000c0), 0x47ffffa, 0x122842) ioctl$LOOP_GET_STATUS64(r2, 0x4c05, 0x0) r3 = socket$caif_seqpacket(0x25, 0x5, 0x0) clock_gettime(0x0, &(0x7f0000003480)={0x0, 0x0}) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="02000000040000000400000001"], 0x50) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000800)={'syztnl0\x00', &(0x7f0000000780)={'ip6gre0\x00', 0x0, 0x2f, 0x1, 0x3, 0x329ca9c5, 0x0, @mcast1, @local, 0xf, 0x20, 0x3, 0x3}}) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000700)=ANY=[@ANYRESHEX=r2, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000010000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r7, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000001c0)={r8, 0xffffffffffffffff, 0x60000000}, 0xc) ioctl$AUTOFS_IOC_ASKUMOUNT(r2, 0x80049370, &(0x7f0000003500)) recvmmsg(r3, &(0x7f0000003400)=[{{&(0x7f0000000100)=@alg, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000600)=""/44, 0x2c}, {&(0x7f0000000200)=""/40, 0x28}, {&(0x7f0000000240)=""/190, 0xbe}, {&(0x7f0000000300)=""/184, 0xb8}, {&(0x7f00000003c0)=""/107, 0x6b}, {&(0x7f0000000440)=""/15, 0xf}, {&(0x7f0000000480)=""/28, 0x1c}], 0x7, &(0x7f0000000500)=""/213, 0xd5}, 0xbc}, {{&(0x7f0000000680)=@isdn, 0x80, &(0x7f0000000d40), 0x0, &(0x7f0000000dc0)=""/205, 0xcd}, 0x401}, {{&(0x7f0000000ec0)=@in={0x2, 0x0, @local}, 0x80, &(0x7f0000002180)=[{&(0x7f0000000f40)=""/4096, 0x1000}, {&(0x7f0000001f40)=""/26, 0x1a}, {&(0x7f0000001f80)=""/21, 0x15}, {&(0x7f0000001fc0)=""/202, 0xca}, {&(0x7f00000020c0)=""/74, 0x4a}, {&(0x7f0000002140)=""/30, 0x1e}], 0x6, &(0x7f00000021c0)=""/73, 0x49}, 0x2}, {{&(0x7f0000002240)=@in={0x2, 0x0, @remote}, 0x80, &(0x7f00000033c0)=[{&(0x7f00000022c0)=""/34, 0x22}, {&(0x7f0000002300)=""/175, 0xaf}, {&(0x7f00000023c0)=""/4096, 0x1000}], 0x3}, 0x8}], 0x4, 0x10001, &(0x7f00000034c0)={r4, r5+60000000}) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) r9 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x500) ioctl$BLKPG(r9, 0x1269, &(0x7f0000000040)={0x1, 0x0, 0x98, &(0x7f00000000c0)={0xffffffffffffffe3, 0x4, 0x9}}) sendmmsg(r1, &(0x7f0000000640)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000a00)='E', 0x1}], 0x1}}], 0x1, 0x4000045) sendto$inet6(r0, &(0x7f0000000080)="ac", 0x1, 0x44004, 0x0, 0x0) 2.510409273s ago: executing program 2 (id=3399): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000c40)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000060000850000001b000000b70000000000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="89ec1a00"/14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 2.510057593s ago: executing program 2 (id=3400): rseq(&(0x7f0000000080), 0x20, 0x0, 0x0) r0 = memfd_create(&(0x7f00000002c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9\xd6\x1c\x1b*\x9a!?\x7f\xa5\xad\x9a,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{&\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+\x02\x00\x00\x00\x00\x00\x00\x00\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc00xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) r4 = syz_io_uring_setup(0x88f, &(0x7f0000000380)={0x0, 0xfd0d, 0x40, 0x2, 0xbfdffffc}, &(0x7f0000000000), &(0x7f0000000280)) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) io_uring_enter(r4, 0x4e14, 0x912a, 0x5f, 0x0, 0xffffffffffffff1d) close(r0) r5 = socket(0x2b, 0x1, 0x1) fcntl$lock(0xffffffffffffffff, 0x6, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) r6 = socket(0x10, 0x2, 0xffffffff) connect$packet(r6, &(0x7f0000000000)={0x28, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14) connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c) 2.247811782s ago: executing program 4 (id=3403): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000700)=0x1, r1, 0x0, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, r1, 0x7}}, 0x48) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r3 = getpid() sched_setaffinity(r3, 0x8, &(0x7f0000000000)=0x9) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setgroups(0x0, 0x0) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4}) r5 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00') preadv(r5, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/121, 0x79}], 0x1, 0x8, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000740)={0xffffffffffffffff}, 0x2, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r6, 0x10, 0x0, @in={0x2, 0x4e23, @empty}}}, 0x90) r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) close_range(r7, 0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) 1.990783737s ago: executing program 5 (id=3405): fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000680)={@mcast2, @dev={0xfe, 0x80, '\x00', 0x32}, @dev={0xfe, 0x80, '\x00', 0x36}, 0x1, 0x6, 0x0, 0x500, 0x4, 0x800d0040, r2}) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000000)={@mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, 0x4, 0x6, 0x0, 0x100, 0x6, 0x110022, r2}) munlockall() madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x8) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 1.779642269s ago: executing program 4 (id=3406): r0 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040)) r1 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000d00)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20", @ANYRESHEX=r0], 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000bc0)=@delpolicy={0x68, 0x14, 0x1, 0x0, 0x25dfdc00, {{@in=@multicast1, @in6=@loopback, 0x0, 0x0, 0x7, 0x0, 0x0, 0x80}, 0x0, 0x2}, [@sec_ctx={0xc, 0x8, {0x62, 0x8, 0x0, 0x5}}, @mark={0xc, 0x15, {0x35075c, 0xfffffffe}}]}, 0x68}}, 0x4004044) syz_usb_connect(0x3, 0xb14, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xf7, 0xa4, 0xb3, 0x40, 0xc45, 0x6253, 0xcd8c, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xb02, 0x3, 0x1, 0x0, 0xc0, 0x9, [{{0x9, 0x4, 0xc, 0x8, 0xf, 0xb3, 0x87, 0x55, 0x8, [@generic={0x91, 0x4, "19fa6ed5b93a8a3b0b1133a665e8714d63e14f35262ea25d82c4ea2dd1fb1dca5c2cb326b900d1d4a506ef71094184bd65183d1d74d20e9b981e90435283707e9b1de249331b4cf7136eb7d18ea5b82d0ea7bd57b185309d670585c42a31e6268b53db293af4beff2a3b1896e6b8b769cd497bc43f776211edaddf51caa6687e9be9e05cafa9486b95020d99e25499"}, @generic={0x3c, 0x22, "776e67d51f23bed5d650910b6c8e81094a963dbeb17700ec4236fce6e721f31c533eadd820b3ab633771cd709e78cf5fbadc41c237af2adce84c"}], [{{0x9, 0x5, 0x8, 0x3, 0x8, 0x5, 0x4, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x2, 0x9}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0x80, 0x3}]}}, {{0x9, 0x5, 0xd, 0x6, 0x40, 0x35, 0x0, 0x27, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x7, 0x5}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0x3, 0x5}]}}, {{0x9, 0x5, 0xb, 0x4, 0x200, 0x9, 0x7, 0xc8}}, {{0x9, 0x5, 0xc, 0x10, 0x400, 0x3, 0x5, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0x40, 0x800}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x70, 0x1000}]}}, {{0x9, 0x5, 0xf, 0xc, 0x3ff, 0x9, 0x7, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x81, 0x7}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x4, 0xfffa}]}}, {{0x9, 0x5, 0x1, 0x0, 0x200, 0x1, 0xf1, 0x1}}, {{0x9, 0x5, 0xb5f4fd27ca31c0d4, 0x2, 0x20, 0x3, 0x40, 0x74}}, {{0x9, 0x5, 0x5, 0x3, 0x20, 0x6, 0x5, 0x8, [@generic={0xe1, 0xd, "419e6b87340c39a2edc57166f351b7ea97daf374ec8c39ba3d664925e69242b3f3c08dd47051e996ed9c128630524322692c090b41c4d0ed99d92660d6e6552347273889b016c536d7105d4cd5b24df71b96c777a75da566db0126e68e9c6eb9eca837ec6b98a22d9809b8b9af5c2d762df21b9ce3bf101b1ee3a76aafe4551db71b4f45b48a4a1b64e3b6f4067d50cafbb62a7708ecd467418a28c31ef0fa52e27f3e66bba28dcf2e0b9bbf2e8f5d2bd9017aba7069af73561c08912b4080c4a17e9ccc839400ad41a1a84b99ca0ba968129897e84632e4bfe3bd4d72710d"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x9, 0xd2}]}}, {{0x9, 0x5, 0x9, 0x0, 0x8, 0x2, 0x5, 0x5, [@generic={0x65, 0xc, "0287706eb44bd5635893b355b352cd9c92e318db3edda917ee71304b85fc3eae48db26cf7b661db879f71e8630729ac46f9e82ed9f5d52043e969d726a1f8fdcf625b109594c30d040e3ffeecdb7b39ddc4a7cbf8fef8be41cd4779782c78885cd345f"}, @generic={0x68, 0x22, "9667557f9801d401413daae6ad53819411fded79f0e0ecab3ab22293e0b4f02cebaccb691ae86c47a07c3508826f03f7a5246d306f532e4ee77257c17cf5b437010f543d6bddfe615e5535bc252b5cc2e77c4e87317f118714fabf68d9071715f09be488dde9"}]}}, {{0x9, 0x5, 0x0, 0x0, 0x400, 0x80, 0x1}}, {{0x9, 0x5, 0x2, 0x2, 0x10, 0x0, 0x7, 0x7}}, {{0x9, 0x5, 0x0, 0x3, 0x10, 0x9, 0x2, 0xd, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0x9, 0x1}]}}, {{0x9, 0x5, 0x9, 0x8, 0x200, 0x8, 0x1, 0x2e, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x8, 0x8001}, @generic={0xcb, 0x6, "04804a715798686f8eb6557f56f84969763397c318b86b215a3a4fa22ee3c6d07a9a3a3e595608ecd2b1f8b656253449b421741b11308faedd27e0cc80a47cda8df4a53c06d055e5b6beec50331b187aa57a71af757827cb33438daecfdb83cb243671c6db7e567bc3a7a7cde35d59ca7de5345b2b2949e83a4a6b6a161ace47c115de9eaac55188118a028d48e2c9ae0176cc79207242bf530ec212b20ec1b100ad0594d6fdd9a12441ba1c6edae44ced520fd5e28bfe4dfec66c9f288c4d544f6a167f927fae9932"}]}}, {{0x9, 0x5, 0x80, 0x0, 0x400, 0x2, 0x9, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0x55}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x3, 0xfff}]}}, {{0x9, 0x5, 0x8, 0x3, 0x200, 0x6, 0xe, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x89, 0x7ff}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0xa5, 0xb}]}}]}}, {{0x9, 0x4, 0xb5, 0x4, 0xa, 0x56, 0x80, 0xa4, 0xfa, [@uac_as={[@format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x20, 0x4, 0x8, 0x6}, @format_type_i_discrete={0xf, 0x24, 0x2, 0x1, 0x54, 0x2, 0xff, 0x1, "6701eea737ff6a"}, @format_type_ii_discrete={0xc, 0x24, 0x2, 0x2, 0x4, 0x3, 0x68, "1caac6"}, @as_header={0x7, 0x24, 0x1, 0x0, 0x2, 0x1002}]}], [{{0x9, 0x5, 0xe, 0x0, 0x8, 0x7, 0x7, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x6f}]}}, {{0x9, 0x5, 0xc, 0x0, 0x3ff, 0xb0, 0x7, 0xa, [@generic={0xd7, 0x0, "be2c2ed9e1b3a27abb43787a0091c17e20feb96447ee4d1eb57530c7cfa28d438ce967ecc4ff113365df859d1a8ad41da855bb799e3b9c3a9fad40a295d3e9d0cd44b5f7dc47a5ef3a056cf455a4712eadd2e8730bc661bace16b99bddcff6f716e6abb0a8d04e95c6515d1fda0840994344b7fbb4fed3dd95e63949ce8eb0481b6769e27e2cddf9761d3e35d81a19ae7a11632c928b64b2cd9a1d0621dd79dbd616a263d322d3d4335eaf1d922eb78ba0919b01415c65d1cf0e23ed859749fa021b9339a765d3f544967661b594bda1240f2eca86"}]}}, {{0x9, 0x5, 0x6, 0x0, 0x10, 0x3, 0xfb, 0x27, [@uac_iso={0x7, 0x25, 0x1, 0x80}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x3, 0x2}]}}, {{0x9, 0x5, 0xc2efd517a8708f9c, 0x14, 0x8, 0x4f, 0xf, 0x9, [@generic={0xe0, 0xf, "f0bf099c3e3495a5584f8a3b8337e53f24f3616b703dafb04e151987afd15a5043994968257872ce3b59077f0a1b889b32db531bb7808cdbbb546e621fc7fcef6da326ee91ae101c39b58fd20ea1f2de26bc5694fe84ad9bd7f7da24731f0f76ca822f47ce1b9d18771945f74e8d683dc3f033a2ec9358c623263bf6e4e493fd7c59989e3355ebe1f0c00f718efe940387bed2c835fabb03704b189875fb4893faa516940b04ce54a35f53ac0ea276376df3ed0610c0edc77643f92973f39394e5915e6baa1c248c2fdb14b19245745a900955093b1a4f3583e2949b78b6"}]}}, {{0x9, 0x5, 0x7, 0x10, 0x40, 0x83, 0x6, 0x6e, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0x81, 0x6}, @generic={0x3, 0xd3013bc80157a32c, 'Y'}]}}, {{0x9, 0x5, 0x80, 0x1, 0x200, 0x7f, 0x7f, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x0, 0xf000}]}}, {{0x9, 0x5, 0x8, 0x3, 0x10, 0x8, 0x7, 0xa6}}, {{0x9, 0x5, 0x6, 0x10, 0x3ff, 0x6, 0x6, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x9, 0x7}]}}, {{0x9, 0x5, 0x5, 0x8, 0x40, 0x6, 0x1, 0x80, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x0, 0x7}]}}, {{0x9, 0x5, 0xf, 0x0, 0x40, 0x43, 0x3, 0x7}}]}}, {{0x9, 0x4, 0xf2, 0x7, 0xa, 0xff, 0xd8, 0x9, 0x9, [@uac_as={[@format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x9, 0x1, 0x80, 0x5, "9ba9", "8e3b"}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x92, 0x0, 0x80, "3155ebe4a4240d1c9c"}, @as_header={0x7, 0x24, 0x1, 0xe, 0x6, 0x3}, @format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x2, 0x4, 0x81, 0x2, "ecff3bef1a"}, @as_header={0x7, 0x24, 0x1, 0x3, 0x80, 0x1}]}], [{{0x9, 0x5, 0x4, 0x0, 0x10, 0x0, 0x8, 0xb4, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x5, 0x1000}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x59, 0x2}]}}, {{0x9, 0x5, 0x9, 0x0, 0x8, 0x81, 0xa, 0x6}}, {{0x9, 0x5, 0x7, 0x1, 0x10, 0x5, 0x7, 0x2}}, {{0x9, 0x5, 0x9, 0x10, 0x40, 0x2, 0xcb, 0x1}}, {{0x9, 0x5, 0xc, 0x4, 0x3ff, 0x3, 0xc4, 0x10}}, {{0x9, 0x5, 0x2, 0x0, 0x40, 0x9, 0xff, 0x10, [@generic={0xd3, 0x7, "bc3972f6f6d6c0d36c9bcde197063193ba1f354046fa05359924b3a38aa0ac676e86e20d36e30249be4013bd70d064657b2c23d616552d5ca44adf756de717968fb3f29e97a4f0406984036bd0f079a64e7a08021e4fc3667843bdc92ef213779b53c9409638f612329dc1314e8d65e6e8cad48eaea66bc9b72fc0b54287830fad10b1fd37dc5930af16d92d20891378d25deddd2d164688042d8c4829ce550def799b22fb291fce815d9eefd82004aef8faeff3154c62f4ec355372f199b2c050351ee4eff32fe14e42d4f776706d3ee3"}]}}, {{0x9, 0x5, 0xb, 0x8, 0x20, 0xfb, 0xa0, 0x2, [@generic={0x74, 0x21, "ab506fb4ef98c23594d703449f3ef0f844e35380929fe046a6fbd6eddaf485b2ad2e68b5cce3f55393e56badf572766b46a8b738f91a882756dbdd44eab3464a8222ea216aed3df8ce0025caedcededc4b2432f58b9d09393422635dbc9ce32bce1767083e0d69eb6735fd770413f76fb8b1"}, @generic={0xf0, 0x11, "1ac0b8deb705a58813db2e9eec25f08976a0d4dca6c4072191fc5e6a357dc888247432d3a547dae8165efccab70eb086d9e6719d03c1de77ae9a67642190d4c5666adb78dc54b740c0cfafd2bbe5085e31d66c8a601ee241a8033a4ec6288d1ad7306a3a3d2df456aa11a1a9c119627fb2a058982eb53b5491d55f61cf845dfbad62627115e31578a0e1910d5d625b84adbde5c868baa8601c87cf08af6f29732145267c9b3e6b8d989c6a43fa7e10ede4a217285b404e15d73518ed1b685795ec790400162f48db2effbbcf425467c92bdbfb9b9693185ef296aa9f36609ec32173178fee9a16be1b29cb4b7076"}]}}, {{0x9, 0x5, 0x6, 0x4, 0x210, 0x60, 0x3e, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0xff, 0x8}]}}, {{0x9, 0x5, 0xd, 0x15, 0x20, 0x3c, 0x3, 0x0, [@generic={0xfc, 0x0, "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"}, @generic={0x57, 0x31, "f3cd51ffb8c755cdb6031b4856af94ae46044d3367fd0d61408cfc8a69e85004b5a230c1919d4a141047fd64dc7bcb5fc58df8a14030a2dff6e34c1fd53879726f8395dc71def11f0f05164966c5fe5fbbd74e9ed4"}]}}, {{0x9, 0x5, 0x8, 0x2, 0x8, 0x8, 0x40, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xb8, 0x3}]}}]}}]}}]}}, &(0x7f0000000080)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x240, 0x5, 0x1f, 0x0, 0x87, 0x4}, 0x16a, &(0x7f0000000d80)={0x5, 0xf, 0x16a, 0x6, [@ssp_cap={0x24, 0x10, 0xa, 0x9, 0x6, 0x0, 0xff00, 0xf, [0xff00c0, 0x18, 0xc000, 0xc000, 0xa000, 0xc0c0]}, @generic={0x6b, 0x10, 0x2, "a791d7c2bd2320b4ccbbdc4c481913fcedd139ee5020febba4741d2c04d27e9cad748475c341e8f0806d3de053f905b2fc7e3c0d4c9ee9c96a263bea7aae7da96e226765cc094bf5182b7ec49283a8a18272a63f980dee7e26481768f19422548763f9a929f8cdca"}, @ext_cap={0x7, 0x10, 0x2, 0x10, 0x8, 0x3, 0x4d}, @generic={0xbb, 0x10, 0x1, "6181e95385044b91084b702a1b6f859fe4b39163fa07d002a584a332e3d9370777e2f33e2e645ea9218664c5de21a1a0d7c1c3f811aed658e80b8be1d3dc8ffca9f29ec2f9cc0f2a6256eece3e614e25611308f3f62590bf46f5a1a3c13d0ffbe171356a5e4eeebadb0b28361fda464ff77fdd0cf3164e083629e1023d1807949574bbb903d27f47bc249d67294e930ad1a34e783f9db3d7078967e7025e03387e0bd38c215746973cca5c2911631ac5891010be339e3794"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0x2, 0xf8, 0x6}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0xe1, 0xc8, 0x8f6c}]}, 0x1, [{0x4, &(0x7f0000000040)=@lang_id={0x4, 0x3, 0x414}}]}) r3 = syz_open_dev$vim2m(&(0x7f0000000180), 0x0, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r3, 0xc0405602, &(0x7f0000000040)={0x0, 0x1, 0x0, "11010000001400000100b64c0000005c4b7c1500", 0x20303159}) syz_usb_control_io$printer(r1, 0x0, 0x0) r4 = syz_init_net_socket$ax25(0x3, 0x3, 0xcb) r5 = syz_open_dev$sndpcmc(&(0x7f0000000f00), 0x8b5, 0x80000) ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r5, 0xc0684113, &(0x7f0000000f40)={0x496d, 0x6, 0xffff, 0x1, 0x2c9, 0x8, 0x8, 0x7fffffff, 0x8, 0x40, 0x9, 0x2}) bind$ax25(r4, &(0x7f0000000540)={{0x3, @bcast, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @null, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48) connect$ax25(r4, &(0x7f00000002c0)={{0x3, @bcast}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default]}, 0x48) syz_usb_control_io$hid(r1, 0x0, 0x0) r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) r7 = syz_open_dev$dri(&(0x7f0000002580), 0x1fe, 0x40000) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f00000010c0)={&(0x7f0000000fc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001080)=[0x0, 0x0, 0x0, 0x0], 0x7, 0xa, 0x9, 0x4}) ioctl$EVIOCGMASK(r6, 0x40015b19, 0x0) r8 = syz_open_dev$loop(&(0x7f0000000cc0), 0x3, 0x22001) ioctl$LOOP_SET_FD(r8, 0x4c00, r6) pipe(&(0x7f0000000000)={0xffffffffffffffff}) vmsplice(r9, &(0x7f00000000c0)=[{&(0x7f0000000300)="a3f1", 0x2}], 0x1, 0x8) getsockopt$bt_BT_RCVMTU(r9, 0x112, 0xd, &(0x7f0000000c40)=0x3, &(0x7f0000000c80)=0x2) 1.633527603s ago: executing program 5 (id=3407): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) bind$netlink(r1, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc) getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=@newlink={0x3c, 0x10, 0x40d, 0x70bd2d, 0x1ffffffc, {0x0, 0x0, 0x0, r2, 0x40046}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MTU={0x8, 0x4, 0x6d}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x1000000, {0x0, 0x0, 0x0, 0x0, 0x0, 0x200e3}, [@IFLA_MASTER={0x8, 0xa, r2}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 1.569579472s ago: executing program 3 (id=3408): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000c40)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000060000850000001b000000b70000000000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="89ec1a00"/14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 1.509054246s ago: executing program 5 (id=3409): r0 = socket(0x10, 0x80805, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x22831, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) r3 = socket$kcm(0x2b, 0x1, 0x0) r4 = syz_io_uring_setup(0x88f, &(0x7f0000000340)={0x0, 0xf09a, 0x1000, 0x2, 0x8}, &(0x7f0000000000)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) keyctl$read(0xb, 0x0, &(0x7f0000000700)=""/198, 0xc6) syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r3, 0x0, &(0x7f00000005c0)="ae46355cee5e06209d8c72583ab6930efc66a0c3b266feaa5a15d7c51e566ca2a36f9d40326dfc7908d9d8257cfa903b30dc728c4987b0840f0b0b45385a2c09c4424e4a569e638d5b3ada44b5829ac71ed2f7d69cf89819a9d8f52ff9653d78a72020108ee72a49313b7f41d6275ab2b30b746869f3bfe4cd2568c3a62908dcbe8589665536eb3c8074df1e5689b1ae2bb01a1928d2e5eb90c19ea0368391ca2fd09b5b77b01ef1141dcfbfc0164761ff5f37519a20ea3135cd64bfa8b3430f952c443f3b", 0xc5, 0x0, 0x1}) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x25a5, 0x0) io_uring_enter(r4, 0x47f6, 0x0, 0x2, 0x0, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008"], 0x7c}}, 0x8850) sendmsg$NFT_BATCH(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020020002400048020000180070001006374000014000280080002400000000d08000440000000160900010073797a30000000000900020073797a320000000014000000110001000000000000000000070000"], 0x78}}, 0x0) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) 1.508704361s ago: executing program 3 (id=3410): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$SG_IO(r4, 0x2285, &(0x7f0000002740)={0x53, 0xfffffffffffffffc, 0x6, 0x0, @buffer={0x29, 0x81, &(0x7f00000002c0)=""/129}, &(0x7f0000000140)="8536b60bfad6", 0x0, 0x9, 0x10000, 0x1, 0x0}) getsockname$packet(r3, &(0x7f0000000940)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="500000001000370400000000ffdbdf2500000000", @ANYBLOB="a4947e071a129b774b3b6dc92a4c6852dda02df2743eb668d0b11377108d367877887e8e82065bf819432caf808900bcde156e69b7382a24ad47c0e20a12eca0aac69e7d2ab6eca9575f700d3ef1187b944a8d36c15eb0b51b26794fd5d0e3c15058bd75ad9d4feb29a1e612115e7642606f738f99c0d025e2b62627fedd2fba0bc974d91f61839edcc1d0c6a8c183eb355ad8791e8da7b00dc3d6f2966ac2bd2ce263c66639b0e125dd1d08f1e09e5ac7b3554ba7dd1f7f99bf60300bd2be414ae2614d250652844ccca84365c5747891421e6ef4", @ANYBLOB="01f5050000000000300012800b00010067656e657665000020000280050004000100"], 0x50}, 0x1, 0x0, 0x0, 0x11}, 0x40004) r6 = socket$packet(0x11, 0x2, 0x300) sendto$packet(r6, &(0x7f0000000100)="ba0455111f", 0x5, 0x0, &(0x7f00000001c0)={0x11, 0x8100, r5, 0x1, 0xd8, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14) r7 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r7, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r7, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c0000001000390427bd70000000000000000000", @ANYRES32=r8, @ANYBLOB="019806001600000000000000000001006970366772080061700084801800028004001200050008000c000000060018000d000000"], 0x4c}}, 0x0) sendto$packet(r0, &(0x7f00000001c0)="11eb0300fc0baf745836da8886dd", 0xe, 0x2404c081, &(0x7f0000000200)={0x11, 0x88a8, r8, 0x1, 0x4, 0x6, @multicast}, 0x14) socketpair$unix(0x1, 0x7, 0x0, &(0x7f00000000c0)) 1.420494295s ago: executing program 3 (id=3411): r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="1400000016000b63d25a80648c2594", 0xf}, {&(0x7f0000000280)="e26248", 0x3}], 0x2}, 0x48050) 1.419877851s ago: executing program 3 (id=3412): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x1, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r0, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000003c0)="7efe4b", 0x3}], 0x1, 0x0, 0x0, 0x4002}}], 0x1, 0x0) 1.130854361s ago: executing program 5 (id=3413): openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) epoll_create1(0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f0000000640)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0xfec0ffffffffffff, 0x1c9ae7fffe9a6f34}}, 0x1c) setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x0, &(0x7f0000000000)=0x41de, 0x4) syz_io_uring_setup(0x7186, 0x0, &(0x7f00000003c0), 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x3, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x59, '\x00', 0x0, @sched_cls}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0xfffff000, 0xe, 0x0, &(0x7f0000000100)="61df712bc884fed5722780b6c2a7", 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000000340)='hugetlb.1GB.limit_in_bytes\x00', 0x2, 0x0) sendfile(r4, r4, 0x0, 0xc92) r5 = socket$inet(0x2, 0x2, 0x0) setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f0000000040)=0x8, 0x4) r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) ioctl$sock_SIOCINQ(r6, 0x541b, &(0x7f0000000000)) sendmsg$TIPC_NL_BEARER_DISABLE(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x4dd11876d04ce31a}, 0x20040800) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xfe, 0x7fff0006}]}) openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0xa2003, 0x0) 631.804101ms ago: executing program 2 (id=3414): ptrace(0x10, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x82, 0x0) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00'}) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x432dc09ca849eebb) sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0) syz_open_dev$radio(&(0x7f0000000100), 0x2, 0x2) bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000400)=ANY=[], 0x20) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) syz_open_dev$tty1(0xc, 0x4, 0x1) socket(0x848000000015, 0x805, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000300)={[0x60000000004, 0x5, 0x100000001, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0xeeee0000, 0x200302}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) socket(0x2, 0x2, 0x1) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff) 504.611958ms ago: executing program 3 (id=3415): fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000680)={@mcast2, @dev={0xfe, 0x80, '\x00', 0x32}, @dev={0xfe, 0x80, '\x00', 0x36}, 0x1, 0x6, 0x0, 0x500, 0x4, 0x800d0040, r2}) ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000000)={@mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, 0x4, 0x6, 0x0, 0x100, 0x6, 0x110022, r2}) munlockall() madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x8) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 190.680582ms ago: executing program 3 (id=3416): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, r1, {0x7, 0x29, 0x9, 0xffffffff90adedc4, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x10}}, 0x50) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18) syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = openat$dir(0xffffff9c, &(0x7f0000000000)='./file0\x00', 0x600003, 0x0) flock(r3, 0x8) syz_fuse_handle_req(r0, &(0x7f00000083c0)="c91443d5daaf04b192358b692f84d66c60492a57cffd585b0068ccde45d94ded1e86d3670791c21f8e0b2153d10d45d37b72ee2fa06ad61b0a9354045a8dae1bd1cfb49f3c11fe54c17eee632d95574681e6c472eb8a1beaf3a4b88561847a0a0f05fa4a26639d7e74a0c1c2790d6a59d4073b1c55539b7c21b8550efbd5f835c56642f4be57d170e36a6bf3a995f418554f0cab342769089d0777b28daad5c0c4ba56a0bd6c0515d9bf488fdcf49a9a7bbfcf5ad78733f8119f2568daefbd0985a9916c0d048e38765cc7bb1c82e0f3c81d98e7179ec782331bc3cfb2caf58a99668420795e6a00ef41dcf5283bbb61ebaedbb7a675be4fb2d11c31f9b76936d1112c68978c73f42e145b094490d748c1456a14c23fe25e2fdaeaaa7dc0d35dcc9bbfe86361f99f4d04090d1e66aa9714ee9f4608ad66c60f500bf06a1b5b90fbe2f6c42c4b5f337393b0bb201473712c48f898c514fff84c46b50d3aaf44578f41d312bb5a73526db7818617dcb938ebdb17f92423ca2cf7ea2c611483e0baff012fd97e28558317049e4fe2d27f72796d7260b33900cd61f984c087d3c54f6aa11e389a49069ef99ca86c279598b42dd3485f09fc7e119f707438498316cf2f2bc8a293eeb1a35635989327d4f6c9ba6b2d5b9b8ee89a1e13d538b954479663223bb704af6a63ee497734410ea43bfdb0ad3708cb7155df2432c44e8468a7b77b807d345c9b94fedadfdeba12f4b6d11d16fd6dd5fff6cf896d0f40785ffca538dae61d8a5ffee814e96628cd945553e788b8d915762ca3b40124149b3c186ddd5f7af5b75f4725444f2f7e54b999c93e8c5fd4d4fbd7a3b3d7e85df3053c866f1dd247cac6912ed8b0e491101ca5a0b999a21014b573ba3996c76065c9d8bebf431f8be6435837193efd6e5a565b2ced30d04355435f166b09f9dc91ee50412d0daf72b28ec14c505cb155de1a46362f140ac2b633fa42b12109f0a29fa8ba271d6fc2a77af3b16032ee46b3ddead76a481ef52f6bd25cab4494681f0abc2ffc60ebb36cffcc058a067fcdae6c9de670cd6fde6eb8086a65fc05df17cf69f654516ba30ee04a1427b40fb8e81fe46787d557046854ad342442bacd781c7a6063892402fb0d765397448991206b28193e20f285e50d9219ace39b311e572ebcd80702164315656e7fa92960d0fd28c6489406f0b3061218417548e7e78b8aaaf5a623eb47c92aebfebd1c78343bc781f184e0122a28f56b18832da5646ee8405fa2fc040ab30377c447b42d0bfdddc65e064ccdf1ad52a94309a819caeb523e22b25d1ba288b7f2c726290d50021b9839c5d3c471aadb08025d97619935a9880942cf653508a0b2c43838e5aada8b84d22042928dd372dedec14672266ddceb0744c7464ab282d7fbfb2767e891832aa25d1425b33a60c6894a8d5292fdd73e05a868b8e50cb1a412d1249a77ccfc3d3eb35a67221f80bb8960fd93ceb74e102f2a6946b50caae3ccb86a8ec441d6e58dbf24b3eb962c8a28cffeded9b7cf4a54f524a1ef49fbdc91e125aad65a54df6a0f10cd8799f48aa144f7aec977b4a347c5c9628c4805ecf71f305adc9e5ca7c1f313f9ea3e99b3590efd94d831e1ff5cd7a26b72281109547facfa3abac2cfc9177b117a3757b778e95b5069236abb25d8fb032c38d296f87388fdd364b491cb828732177a2c6bcaaf831d138c898bb60c0d9d8a02d8b4b8e7efa87d3ed66221ac52e31ba9c2da488b999eaf82994bc8f1ac29d5e60b8b1cdc30a1c9829aca1cd7881c8aaac9ede0f5d8b85538d2b13751cfc6b37587b0223b9f6b6dd9340753106b1eecdf4f63c51cc2c63a1f86235bad7602e115d1e0ed78a6b170b88eb9584d2098b187695627612189998171d245797391b2b79bb690a79dac4b769e3f18c4d49359f7b460d997c03c793f51a830d5b21faed2ae1c3eb0fce0cdadde3c789ec931b6397c2a2fb2eda87756fec031e5f50f07619130f8e39f1e00004a1f204e5d87780542bdedf0b1ca5168779ad7cb2ebf27e0a5d760a2492b4d92eab24f2bc9af0a3e51140c415a6f885d0faa38ee6dcffc41652b28e628b859db0e7a0f961e37c5806df137e68c5316667f36051eb05c971e208721fdb8a49b8c49f85114be9dd7288f4e95c5f6fb8c1bc1bc7d79f32ba5419d90130a0328ba70d10c770a1540718f7d890dba9c39a116623d492275a1268c91149bfe026ca1c6a458449d4004d653f4b0a234eacd1f4da495fd1f936b4b335f64514fc8091b1dab132f599e26cb127e25011efa30a922b5a3e8807db9a00a9cc732fd323708767c905c8a3cd53e2e8d377d3b43cb971cbd0e66e2e47f3d601d49e29941b2ea4d3c8b7f5698e1a633ebba00f6c178d6d04b9f1544f04cd173e2d49f129a8725a647e1a9e798b5581c6a461b585012a302353178188e55f8102a49343c9c370ee505d09e4be8580d95f5bf39267b00e93adb6b52b2029160d78ac271e4e0c70ed835484e80302b93efd599707d4d22c806476fd04d18ebd6a9bf88c11dc2c96041ac8c3e04ac0aa5d2ac6740972717b543fb871884a7a0434a433571fd621977777984ea9c06914be966da9f349cb1ef3a116c49f0c716eae1df118cd3d5b350b917c06d853c1e1514213f5a29071e42eecee264ff20529c53c3a060a18a680ade2a08b4549e6998f06e61e4f4c36d578e9ad83dd38d1eeb100e7ab023edb38426d5165b867b9507a6b644aa0322da335b208105f2e74a9841ea7c629ea20cef740f6364e9d84a4485d3bb6b5f4e14c7764f78b65c0647870638a8f618381ec0823faed0424a448f753a59fb22e5138e0ca537b6935befb99fc6eea2d9457c01345afbbaaf3a7a96a39478b222af322f86730d137c3f570b38c7363bb9a89bb4b3b8979b9afd232927becbc91c8d4a276febe47bacd4a84c0bfdd54e685080f2c3be0b1e37bc6d21b13b7b1bfd507880f6ad7fa39bf99eaf6b7088d758d9383e38326381088e9e3e792f75d682cf61cf1176953960b0e160b2a535495d52c28f14fa45ed7a3f91e219dcd05afdda2b7e6c1b742b29f6c5f62a040a5fe6606433fce7de757ed76372dfc0b1af9af10c0128bcd335eff1c6c9660b0893730c3ef8de6e50dba419b35d1766eb9a5dce4c2fa518f8e3e2a27855e04d06b89e97578a4406ac03f3314575143db5e43ae3d03a7e90a590b4c188a5acbe1cf23cd4cf60ca98248d4e740122a55ac6e463511b4c4cd47040aafc0bed7878348a4caad4d977671cf4ac319773767ee28f8ccc4c9deae531b029eff5345470f20865549b2f2c4089306304e13e42ca37fbca6839bbcd2f10bd20c81d44ab73ad5ffcc55f51b53efb00d3c68d8d8505e005247ba23e86a803b199f36447fd01f192994b2fa27c9db59ae66b56b30c1ae5cd717407068a9b13ca941b82db254f4ecdbd1751a3f8f1061031bb41af5c04a33ffc98509f456830cf3c94c14451f04d84844e41c618e82958710d07daeba666329b914f2cc7c1d34ffbf6b50620b7c78c25c5d82a5aadcc4d824b3b68c34231fa7c0befe5241c447f90111c55848feed9d1ee67f61095ec2c0b4ac82f5cf169201516082a804c9d1775990d430d21bc65877041905caf385918f44191c134e493d960724b28f01e79fbf3b99eac1e75fbc8ab8dcfdd98b573fa6d7e6a6ead6b15ed78e2a8d564f61d8c52be8104306c104146696e16c9e9bff79a5fc1d92326cf0f2ff5e5c5c252773f2bd2c554bc409aaec03055f71d439daebc1d8b06c9ca0e1fe4729e8e6119616e8fb861b1e2694d1df267cbc496ba4a87013c3317a16b4c1e369748507794a20ad06aad20e4dbfc1834d789d2a8e9395ddad33a74c6c7cf54e61e533cae228909536eba8020f0c3845d2063270cae4d8e8dd8cfe3f112c46751444546ced9f6434741656dcda2185be13eebcc0392c256f384fc16353e89cbdeef8fb2e3cadc1ed2142f3b6485dc2d540fe799d027413128f624aaf8bc1933d3a0e6a954931bfc914921dec7ec822a31ebb652d4f312ab4068cedc6203b0de98e60c5f82296a3482132b288ba0a8eabdd8ac40faf145928e7563dbcb14d0625c92b542860993bb0388d8390dae727ae4086d4de1b7fea9d79f4844374bcd67fa5e1a3a28cd6d8da3f171fcf9d13062bb149fde18917c6650cdfa2be8de33b556ad34fad454db13a446e8a7c40167117e884d874c786768975df0b201ea0077ba735d31d65a832dc122d13c6559601b83899af1f14808f55f077ad465ed61378c63abff3ad742691168fe1e31bfd0dbb9f43d364ddf0bb185f69e69110c9eb1ab808354fdd2cf571838d5ec63bac3d70ca40878dc3c3cea26adffd5a197206d7c80d6a86c202338e72f17dc7185e1df0cfefa9475a2156738f90c6410c1698d1a160fd396548323c796ec5dca3cd59e468ff6a14caf34b4fdb16f1c92acb6bff2e859f9de1266dea0d1828598319b40a3edef657be02188fc94490c1da088d3ec2f315d6b5bb2f262764b67ba321379f4c93bb3ef9bc7db0c0e5f1e680ebfa84463e904d5351ecf25d1d22a98f81f7a1fc4c4fee3934b7672661f0bcd94109706644d0fdac4b7933b5db2acf39b98c0a8106a7a757408404a4c299a077379458e2118fb0a53b798adc1b85d3eb20b539e572741b9855e44a545809f897dde06730145b5caefe9db1c321783450d25d38834532c3e372fa92a53ac9cb4330eaaf65fe1b69a66459058e02d20c6641b7d8edfa8e356baaeb011b61208ef36ed33235144c86d6ce65da89d66da06291d4acc05e3136559ab77a7c4ad229c5307b48ed642d96c28cd06c82dedd4a16ed90bceda81292120438fd5c47b7b41b2646fe0899643f896ddb2d11e7311f8a0cbb9bfa38106507e06f35b3052ad6b6a11ac5f0129bedc59d04aee3737ebbf10f97c80f1a4e3f51ac8ac4488ad9e3f685a7c0dd4074b07774f4efe4b9f2cba400ef49f73b12fc7d96d8f3283a1eaf8c003931fc24a9248e201ac31bb49226c37d535592e00308d86ba0765a7eda13b72686101d352fb959598038b8dec44a0f18e5c8ec089912d325880390ce5186d4585df46e5662987c164f0ccfb8f12f6144f91349051d3ffa35ba597d2b5920e279ca8e139dfe2ba9923c0190fd444c8bf12a627618791a8781d6b54470777e6a5dac8cb505ae1e534b0c3af7db010dd602b1459964e1e15a812f3b4c8038e6bc1dc568ba482ee4944582abeeda1ed012391706ddb1e0ce60efd15acde8283d3612de5d0cf76185ad3a1ce89488e1cea4009573b55a2766d100ecefc5d53c99876cfec65daea82f55cf9687ec70e45cfdba9fe69fc3a822c29ff4be34857bdcd4313fb23d1d01d8a79cbd0057eeb5c1c0b39f75d5a753a2e10bd0ebb91dab1312bdf1a984332d566ab56dfd838d285995bec8726c5d1358fe10b0b6aaa99b9d9b08894c1dbd06356e5c693ddebb9d8b306062defb160db9d8f02ae3df59697866f5adeb34c8c5b27b63b09675030f344197b3bff097b996819dec9059aaf5ec1a6c585a86d16528091543a9e6bca4d850b7963fd1e7d981814dedb165c1a6444ec0a21743a4de8845b386ad4e1e9c9f2873f6a353487d9a8f8f56ae1d0f69124ee56b5c2b2a48c78cc6ba6b313b889adf0acfaebb4e2dc71054a4992366a2b6ff1f5972d7d2f0e9e3b17d7fbe931f43871819dc6e6040ba239ebce2cfa424ff7344b8a880040321909dcd16956594f5d99fdd39ea5d7209b906d2601572c56c72db899f986185194fe5aab45f27d9ac12aa8600b3c2728ef2e589a6886d711edf4d7f95b2e10d9adde3009560ad754f9e7a52808720a973dc475f8177fd5b199b69925f03a44a8bd9f3c3369861802ce5ca4b40cb47d19e2e1bda1b054f16b66ac7b7c0e5205112e011d6957f1df50505003544631ff4385d8128d46838338930aebc0496348045a7c05abd7a56e1079947d3eb1c50e4d8be001d03d8973f8f08f2f21a415174173ccb90f7ab615be5036947e164a434c059637bfeebb8b9f2e87b9774a4595c71122c9fac74347488b9a054e2e7b9c45b7b12fcca0fe789db614c70d4149d44e50fb64aabccee7447288a5b865a60c2640171f89afecda2cb18b7ecea214bd32f43d5ff66e90741697d085f3ee9bfd8662a3cc570999bb151090160d3bf5bf1d85e896d66276cba7ed97f341f595b13c02ac2a1352aec7a5980de2c8f9d890951108947b7602dcf2bdd2aef680667572b87aadf7c54338492eae763df73e89e3c438c196da83d98bc65233a242e08894f2390d8714f0abb801d9e5c42f169555284b6cf079005b373e9938db71a93ee5945c2a43a06e3df580d372318b3d203503c6e968206d7db8116cca2f2a1fae7f5b5195bea92914d66516bc3ceb2d9dc4de59d0d52ab80910aba7ebb696c7deaddcf0fedf56e2a88c3496bb79897c6420a0ef1b03ad89c76b24f67ffd41c9227d464565457bb25f0b32c83e676b0a3284f2acbed39c6875871c5e866a8284f12e383f87f12dd9bbe3078c68b3711eaa9bc17a7ac8413a8ef486922eddf43f01625671b7c3d0a4c6c2dc38217b4135c8cb46df7d936aabfd253e95e0816dd1f92b257e2f96d2a259a320756ba77d99b709711326f2ea42def974d60f817a1f6779121dd32a1cb194c7809e4c8fd052ba357323436491ec45a49fa601ed373aadd2199e4483704fb2f4edd7bf2815b552fb84d09094cab9700b5125887ee508570217c16799bc11d9e3658de8d9812f30dc8078bbecaf887a6527686b026eea70229df1e61759adf19c1b96673419decb382ae29bd685c5f32120b2d56d3e97c9ef00a2c0598c2181b8fa53172312590a9549ff55dffb9070b042c74654b2ae56371b2a6bac8e2808a40fd5d6d0af184c035101394e347521467e0ddb962e0d63614cf1461ac7b9d744084e9f6f26c88d515dbb1b7392b8e9384b81f186224d5c09e266682d8044d8afb1bd6483962b03ed6884759d2647b8f174a6695a437a1f1aac3e6a2f8ca658ee8a8ae44a77393cec61a9f335a1e859825e73df4125828fbde19d3695125992ddb2826ffbc6c7cfbfdbae19ba864c4170c79cce408e8b280a7632c855d802029ebac8627fbd6fec1c3bd858411c969ca035992f2ab909c423158dffd0dd5a407b3e0c2d9b180440996e09e15f17b4e42f365371d9dd58c4609455253c44c2ba73f592e360ab5fcccdb6e90ae0c60ada9325c4824242c0d866e7dfbefe091067d5c7ff0432814f733591eb0096659738b34cfa8c6c988ec628f34fe08f31dc0156dc39866412932d045168f4f3a48f24fb3b884be1384845d496c3009626f1c41b0189e95c9055d24eb5a0390596f6ccf50d3727e607875a3b2cf076a277e12ac07ddc59da78ee16e1952706ac6a1a9ade80b867d889789c935d196cc4da67aa35ba80ef2077ee4dd69c5f31a0410f7fd0739303ddcdbff2f53e0a44ec5de0f062e533444bd946959a1d9c25b297b6fc7675ca4add9e24e8ff390e0375f3b15e1d3e8129007d743e384659f191bd23ffe02140fa64d5c6d75937b28d51afcaa9d207f57c878f2f54493025e9eff5b5ce0c997d11c9690262e38e1e83c7f1a0ed3f200d9d0472739d59dea3cc6e8783758e3e3201731cf27211267702594356345449b42fa64b64c6f00a8f26665524fe2208b1a7c5fbdc822ea611c1811526471e4f52ab5e3a43de8fd4eba2fb2796a206e348de9b0be78ded78204dc82d9e9adccbe408d7ff538aab3d663eab189927a9cd597388e8dc5063d2db42cd65415fa32d20288da017c9f94e788dfe7cc3a0f6b6ab06116ed3f72f3c048cb1e51abf308ed7169908d1ad5b7ab3a86a3316d164084f8d88c6f96142d888ccb158efa586015914c116db114aa82c44a55d4c33bd901dc34e820d3120d57def03ea4f01b263913cc02ca586b208506d149ef03a706fd5360a12b83acb7bf97ac1f1f85389d4fbfdcf38551e9dbce760a05e8e4023d85038570d3697b3e7de73aac9c7feb39b6ccd1a775c8ce01b08d7190e28866aa7bb8d0cff0fc45b452fcb6a290f98f4b5ec125224c8a93918b1f2888befba6de3d294ee1f13a9c56e92eaac0b8e6c6905e77a60ea7e1d1ed979b6b2606652e7d75750a065c57c7efb1ef5708719ef04e354bd861b15e0a1cbc7cfe65c8a3d9a2b790260d6e6eb60bd4e0fb3f040dfa27fa00797664122add0750a23a8b20fcd68b6be1e21620dda4bf0561f4c5ed74f41612a0676dcdbf669df3436cbf2ce253e69319e3ab36e6e6314f11e0d0882ee3d7f3d3b3dcfe3cd7f061e301369207545676e09801f9bc4bc4c3dcaf48e5320a4b3211051a7525868a0ac1278ed6fc9531ed89cf4205458acc05d5351bcab7ea50250b6cb4c6fdd0cd96f30cdc9a820f495d0a3e14eb6c493a85a87e3b7fb8e5f23431c3c5359f5802f1fc11ff71c3172c6b57b5587ab38579b79e328792edb7a81d60762bc6c88693a00712f811cab9b075a97535c904396dbd2fa0994ba9c9b06fe9c042cb6860d22844b94863bf7b68a1ab8639e4487b38d48e40da4a98dedd7d73ca4b575bf4c604a364a9247c2ea5e3b127ff42f9bce1d3d37c2428edab1708ebd71ac0e4a408a9c6eb97407a4a8b5e912e2c63fadd1abad9a772a96fc4666f7d2b604adbde6f1136de2adfe38994491ab0f34ff1fd20cb8034ad39aae4c5c0076da2e7a157764b770e1c5f35b6f323ce809b2e92be1345204021d74712368e0ef77056afd85f065bba085793c9b6950d3c3fc6c445afbdd5a80cf7b0bb13055fd486700be1500bdf8771e286a63962e56d4771ed5eefbf111ba7380f02d6f96eed174246820b73bd772689c072bb3d8e43ef96f5466dce5c9392e34b7176821d2f4df3dab4c6ef5e0238ffe61582812fdacc987fbb6d98cad5a2d7af0e4c8dd3f800cd75c38a515d4d4c7118c5f81c6f7504e7ae452370c56c4b7fb4daa65bf26919c12081485d09e9d142965320211f483ed2a0a6836fa2488a878eaf9653b0528c3680b75a1920a25b5c5c17548c7ceb9a1656a0cf6a404aec14f7ed8a1dcf8ed32e1cf94dc2f60b65aa102650b7a22d9e708c606ce8403ceb81434bd9938b2c4e5a8530a156a1df7d143b2da54071ba3e673ce11760f72c32273b7bcd9a48da2a6caeb4b782cf1c3a044c1731f3ad61ce32bbd0b52cbb187cb3ecc1e85a67ffe27cf86769a0d69fe293dd30f060b8a0f26ccd0287d0b8d941ee7410a7c6aa430add67c2dd60db292e24f294ce80b0321aaa4d054a6f5d9981e1d5e859b454f5005be082bd59baca5775eedb7994333c62c452ef7b2893e4d03a28c0e368928b4bdd6e31f52a83cd7e162975405fd128321e0a8e3e77fd93257b0c46b309e16203974382ced818faac3a02e74141e9ea36c4a1b98bd859fafce43b2984d856c832f61b1ca562cee96f5843adc14b35bec1ccdafedd214f1a344345373f3c9eccee8324950a23c3e77d55dbde9a7ac1b7804927affb8b0e1488dcd8919d227bd1f50a35abf25e3f120c25b0dfb4d85b4c2a2c69cf7047c76c45e4e901e7396140496f9a322c2c2ac777a27adff5a6daf32e852b1bac89f1086739a603cf0f6838f792351c08e38ab130e5a83aa5a4f2da19df131770a308d810eed0059a2e5546a2169b9d0119f6df7c18981f4b4f119c76fdaac031ce7551f25678b5c4d8815a7ea9565e63389fca6ea0bcd40e71ac72124113dc0041ce26a0c9979ff76d7f1f2c0cd2c16d8c7a36930b909ed7e2d4adfa8352b12b99bdcbc25b485f652539fab7ac983c1ae925967c15ba2345e45d6bafe13b3e9d7acf1a592422ea09c3a45f7fe24e235bd70b106cdaa665584e74cdaf9f39b804bc6c4e7f0bf572225acd4dfe010081b91c2d5970d4f43d2e1a0e05f84baaf50642991b3704034aed74572e6a4715b79276432d06660b39c989570fc0d5d0071a7c690658caee447370d3295db3b5dc625e697e1ca2675b5430b9969024835c7d001fbce86c5165c4fe8f2d46b883daaa3fbf42dc5cf61209379013896df740b9cc32638358ea8079a33f04197f650471086e67e5cf9779268d7973c73bbbde2f1c11e1a8e2b154aaa8b4b74f8a03f14ceb7afc4ba35e6620b7af89c969021d20cb260c1868f3fa432ce7e509db06001ae6540531b126c1e3a851acbf0a9c1354bece05c094d69d9bd87f99391e23306911383d2082997339daebd67d8a707c9b496a309b7921696f39a07864f31208802db7188881e346b41c34f4129fca9c6a13172a4dabfe791584d240fc03685057d53c08737aa1d486233318eb4545f2e8d18087705b9d3a7658564592f56aea3aee53d66c249988bf353853728553a1577062e24af533f47dc012ae90c5c085babc121be2993c063e203ab949a088041271ac0527c56edd4b7a87e98323a0137cd493aa05fe38d02754a66d89348b119e6200d5919bc366788eb67115fc57c4c1a9dd42c7411d6709ad82de8662a1849445b39beb2ba8f894860e41a054f61337179a9214b0884f3964c95ed2a4ab37de8038566bba76fbaa7502c0460558ff4bf4793ca68d78e50f384a81da4cfa23723747e906b82290e0b8ea07e3404bee0915800d4c3c07f94c43e7aafbc7a44d923de97963d0d1586bee06fc90aadbe5758fb9933ff7df346d62e082223741f5cb26ef953ca654ab983a72b30b296891c9e3f1ed5216b0e588eb25f5d4ccad6f96973cc2d26196bbd37c83266473071ccd84d9e3c74f22621e8bd60afa4bcad6c853c7591fe5d4298a954ea5006f682a7a65aeb26b230f3866a28a58bf532aca8fd5eaec64f442ac510a7df4114f00fd6ff7e02d77f8e72797222556959958c4c4d166c5af18a6e25588cac9871a3d5bb453889ff8d13db22024a997bf97a5afdf698b1deaff3101e27868d2de47b92c403ce82e15f3239d8923e8ca0c01e3781b5dd6121f57d2238dc3ff8a1bde3e371efd33838c552e43588042b360f55d7ca92f11987630364b263428e18601d7bf23f6432b3a9aa2c500cd9ac5f73cbe309443858a2806956b0cdcfc19904567bb1703641017c6199e768410e03d8ba603eb34249d567370202f39639ae8f6d52d9d5dbfc544c5b85ac8187095c63f1f613fe4af179fc5c837e6e0ccc21e62ac22ac045c4ac3b1ca6a4cbdbe29ea465240fc0aed1f0e086d7580bcf81d4e2a4d55a8e3bc57110e7cf1e1895df07974f0686dd2ea2b12bbfd64e7a9d0c62c662f0370e6ed495eeb2ee5029042147a1f2e5fcd6068b06567be893cb80e2cbb5fbb12847313811c13cf685698d5e2175959579e510279b9e959ac2c3f94fec653c6b521f8909d633ccedbc1109285ecbd52d27cd2891eaf354db2c966d1e3086718848433c12658fe7f6fbfef930b963139a63f6c4caee5a1964d3a038dd0db403c0a251d702c07a0fba4a3576ec6668a78e9e26efc6ad83a670a47608bf4207979bf196b3160c95e7ccc6406d46f529d34676b76d72396262e1448df051130a21484e0e977df1f7f0a259ac762eef9506877498b9998e1286d6294cf60b95352e81c3", 0x2000, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getdents64(r2, 0x0, 0x0) 0s ago: executing program 5 (id=3417): mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0xffffffffffffffff, {0xffffffffffffffff, 0x0, 0x101, 0x0, 0x100, 0x10000000, {0x40, 0xd08, 0x0, 0x100, 0x0, 0x0, 0x7, 0x0, 0x122, 0x6000, 0x10000, 0x0, r2, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0xffffffff80000000, 0xfffc, 0x2, 0x6b, 0x2, 0x0, 0x0, 0x0, 0x933}}, 0x50) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0xa0083, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="10000000040000000800000008"], 0x50) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000003000000b704000000000400850000003300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0xe, 0x0, &(0x7f00000003c0)="7993ff01190000e5ffa53b00008f", 0x0, 0x400, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x4}, 0x50) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r8 = syz_open_dev$vim2m(&(0x7f0000000080), 0x9, 0x2) r9 = syz_io_uring_setup(0x890, &(0x7f0000000140)={0x0, 0xaee2, 0x10, 0xfffffffd, 0xbfdffffc}, &(0x7f00000000c0)=0x0, &(0x7f0000000040)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r8, 0x0, 0x0, 0x0, {0x85c3}}) io_uring_enter(r9, 0x7323, 0x0, 0x5, 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING(r12, 0x4068aea3, &(0x7f00000002c0)={0xc0, 0x0, 0x4000}) ioctl$KVM_RESET_DIRTY_RINGS(r12, 0xaec7) r13 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3) ioctl$TIOCGPTPEER(r13, 0x4004092b, 0x200000000005) kernel console output (not intermixed with test programs): .069308][ T1141] vhci_hcd vhci_hcd.5: release socket [ 666.071997][ T1141] vhci_hcd vhci_hcd.5: disconnect device [ 666.463843][ T40] audit: type=1326 audit(2000000349.173:9187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16656 comm="syz.2.2722" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f02579 code=0x0 [ 666.837846][T16670] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2726'. [ 666.880651][ T5746] usb 8-1: new high-speed USB device number 56 using dummy_hcd [ 667.051883][ T5746] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 667.055659][ T5746] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 667.059107][ T5746] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 667.062400][ T5746] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 667.066463][ T5746] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 667.069379][ T5746] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 667.073635][ T5746] usb 8-1: config 0 descriptor?? [ 667.324129][ T5746] usbhid 8-1:0.0: can't add hid device: -71 [ 667.331084][ T5746] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 667.338174][ T5746] usb 8-1: USB disconnect, device number 56 [ 667.640639][ T5746] usb 8-1: new high-speed USB device number 57 using dummy_hcd [ 667.802280][ T5746] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 667.806283][ T5746] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 667.811633][ T5746] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 667.815786][ T5746] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 667.823721][ T5746] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 667.829146][ T5746] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 667.832847][ T5746] usb 8-1: Manufacturer: syz [ 667.836808][ T5746] usb 8-1: config 0 descriptor?? [ 668.340180][ T60] vhci_hcd vhci_hcd.5: vhci_device speed not set [ 668.420912][ T10] usb 10-1: new high-speed USB device number 21 using dummy_hcd [ 668.609592][ T5746] appleir 0003:05AC:8243.0025: unknown main item tag 0x0 [ 668.612819][ T10] usb 10-1: config index 0 descriptor too short (expected 39, got 27) [ 668.616421][ T10] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 668.625632][ T10] usb 10-1: config 0 interface 0 has no altsetting 0 [ 668.628326][ T5746] appleir 0003:05AC:8243.0025: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 668.634396][ T10] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 668.637274][ T10] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 668.645189][ T10] usb 10-1: Product: syz [ 668.646609][ T10] usb 10-1: Manufacturer: syz [ 668.648116][ T10] usb 10-1: SerialNumber: syz [ 668.651458][ T10] usb 10-1: config 0 descriptor?? [ 668.683057][ T10] hub 10-1:0.0: bad descriptor, ignoring hub [ 668.685000][ T10] hub 10-1:0.0: probe with driver hub failed with error -5 [ 668.692195][ T10] usb 10-1: selecting invalid altsetting 0 [ 668.885444][T13178] hid-generic 0103:0004:0000.0026: hidraw2: HID v0.02 Device [syz0] on syz1 [ 669.289521][T16696] usb 10-1: reset high-speed USB device number 21 using dummy_hcd [ 669.456197][T16696] usb 10-1: device firmware changed [ 669.460787][T13178] usb 10-1: USB disconnect, device number 21 [ 669.596160][ T34] hid-generic 0103:0004:0000.0027: hidraw2: HID v0.02 Device [syz0] on syz1 [ 669.619280][T13178] usb 10-1: new high-speed USB device number 22 using dummy_hcd [ 669.804263][T13178] usb 10-1: config index 0 descriptor too short (expected 39, got 27) [ 669.806847][T13178] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 669.812138][T13178] usb 10-1: config 0 interface 0 has no altsetting 0 [ 669.817899][T13178] usb 10-1: string descriptor 0 read error: -22 [ 669.821270][T13178] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 669.824263][T13178] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 669.834155][T13178] usb 10-1: config 0 descriptor?? [ 669.838363][T13178] hub 10-1:0.0: bad descriptor, ignoring hub [ 669.841136][T13178] hub 10-1:0.0: probe with driver hub failed with error -5 [ 669.850541][T13178] usb 10-1: selecting invalid altsetting 0 [ 670.149222][ T34] usb 10-1: USB disconnect, device number 22 [ 670.329066][ T40] audit: type=1326 audit(2000000352.984:9188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16718 comm="syz.4.2738" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf73ed579 code=0x0 [ 670.715336][T13178] usb 8-1: USB disconnect, device number 57 [ 670.720670][T16725] netlink: 'syz.2.2739': attribute type 12 has an invalid length. [ 671.783037][T16747] lo speed is unknown, defaulting to 1000 [ 671.786820][T16747] wlan1 speed is unknown, defaulting to 1000 [ 672.209660][T11248] block nbd0: Possible stuck request ffff888026410000: control (read@0,4096B). Runtime 30 seconds [ 672.384392][T16757] fuse: Unknown parameter 'g¢-' [ 672.519131][T16761] netlink: 7064 bytes leftover after parsing attributes in process `syz.4.2745'. [ 672.522051][T16761] openvswitch: netlink: Flow actions attr not present in new flow. [ 672.659438][T16763] netlink: 'syz.3.2748': attribute type 1 has an invalid length. [ 672.671306][T16763] bond1: entered promiscuous mode [ 672.673242][T16763] 8021q: adding VLAN 0 to HW filter on device bond1 [ 672.703480][T16763] 8021q: adding VLAN 0 to HW filter on device bond1 [ 672.705866][T16763] bond1: (slave xfrm1): The slave device specified does not support setting the MAC address [ 672.709984][T16763] bond1: (slave xfrm1): Setting fail_over_mac to active for active-backup mode [ 672.715565][T16763] bond1: (slave xfrm1): making interface the new active one [ 672.718117][T16763] xfrm1: entered promiscuous mode [ 672.720524][T16763] bond1: (slave xfrm1): Enslaving as an active interface with an up link [ 672.987774][ T10] usb 8-1: new full-speed USB device number 58 using dummy_hcd [ 673.140669][ T10] usb 8-1: config index 0 descriptor too short (expected 9, got 0) [ 673.144323][ T10] usb 8-1: can't read configurations, error -22 [ 673.278039][ T10] usb 8-1: new full-speed USB device number 59 using dummy_hcd [ 673.429376][ T10] usb 8-1: config index 0 descriptor too short (expected 9, got 0) [ 673.432129][ T10] usb 8-1: can't read configurations, error -22 [ 673.434361][ T10] usb usb8-port1: attempt power cycle [ 673.541555][ T40] audit: type=1326 audit(2000000355.376:9189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16758 comm="syz.5.2747" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f07579 code=0x0 [ 673.767441][ T10] usb 8-1: new full-speed USB device number 60 using dummy_hcd [ 673.801712][ T10] usb 8-1: config index 0 descriptor too short (expected 9, got 0) [ 673.804454][ T10] usb 8-1: can't read configurations, error -22 [ 673.955684][ T40] audit: type=1326 audit(2000000356.666:9190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16772 comm="syz.4.2750" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf73ed579 code=0x0 [ 674.318680][ T40] audit: type=1326 audit(2000000357.036:9191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.5.2755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f07598 code=0x7ffc0000 [ 674.325776][ T40] audit: type=1326 audit(2000000357.036:9192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.5.2755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f07598 code=0x7ffc0000 [ 674.333004][ T40] audit: type=1326 audit(2000000357.036:9193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.5.2755" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 674.340095][ T40] audit: type=1326 audit(2000000357.036:9194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.5.2755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f07598 code=0x7ffc0000 [ 674.347091][ T40] audit: type=1326 audit(2000000357.036:9195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.5.2755" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 674.354179][ T40] audit: type=1326 audit(2000000357.036:9196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.5.2755" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 674.361242][ T40] audit: type=1326 audit(2000000357.036:9197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.5.2755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f07598 code=0x7ffc0000 [ 674.603127][ T1216] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 674.674822][ T1216] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 674.743781][ T1216] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 674.845604][ T10] usb 8-1: new full-speed USB device number 61 using dummy_hcd [ 674.868910][ T10] usb 8-1: config index 0 descriptor too short (expected 9, got 0) [ 674.871499][ T10] usb 8-1: can't read configurations, error -22 [ 674.873708][ T10] usb usb8-port1: unable to enumerate USB device [ 674.880428][ T1216] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 675.002157][T16797] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.2757'. [ 675.005102][T16797] openvswitch: netlink: Flow actions attr not present in new flow. [ 675.163051][ T1216] bond1 (unregistering): (slave xfrm1): Releasing backup interface [ 675.167789][ T1216] xfrm1 (unregistering): left promiscuous mode [ 675.422881][ T1216] bond0 (unregistering): Released all slaves [ 675.505937][ T1216] bond1 (unregistering): Released all slaves [ 675.604004][ T1216] bond2 (unregistering): Released all slaves [ 675.712245][ T1216] bond3 (unregistering): Released all slaves [ 675.844999][ T1216] bond4 (unregistering): Released all slaves [ 675.924455][ T1216] bond5 (unregistering): Released all slaves [ 675.928202][T16817] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.2763'. [ 675.932126][T16817] openvswitch: netlink: Flow actions attr not present in new flow. [ 676.002523][ T1216] bond6 (unregistering): Released all slaves [ 676.076792][ T1216] bond7 (unregistering): Released all slaves [ 676.163531][ T1216] bond8 (unregistering): Released all slaves [ 676.266378][ T1216] bond9 (unregistering): Released all slaves [ 676.278981][ T99] bond0: (slave bond_slave_0): interface is now down [ 676.282141][ T99] bond0: (slave bond_slave_1): interface is now down [ 676.290136][ T99] bond0: now running without any active interface! [ 676.388858][ T1216] tipc: Left network mode [ 676.555432][T16837] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2 [ 676.561171][T16837] batman_adv: batadv0: Adding interface: gretap2 [ 676.563750][T16837] batman_adv: batadv0: The MTU of interface gretap2 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 676.573524][T16837] batman_adv: batadv0: Interface activated: gretap2 [ 676.773452][ T1216] hsr_slave_0: left promiscuous mode [ 676.775847][ T1216] hsr_slave_1: left promiscuous mode [ 676.795883][ T1216] veth1_to_team: left promiscuous mode [ 676.798184][ T1216] veth1_macvtap: left promiscuous mode [ 676.800377][ T1216] veth0_macvtap: left promiscuous mode [ 676.817581][ T1216] veth1_vlan: left promiscuous mode [ 676.819296][ T1216] veth0_vlan: left promiscuous mode [ 677.264054][T16853] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 677.266217][T16853] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 677.269917][T16853] vhci_hcd vhci_hcd.0: Device attached [ 677.468287][ T60] vhci_hcd vhci_hcd.2: vhci_device speed not set [ 677.528070][ T60] usb 41-1: new low-speed USB device number 5 using vhci_hcd [ 677.589345][T16872] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.2771'. [ 677.592280][T16872] openvswitch: netlink: Flow actions attr not present in new flow. [ 678.012846][T16862] netlink: 'syz.2.2770': attribute type 4 has an invalid length. [ 678.016173][T16862] netlink: 240 bytes leftover after parsing attributes in process `syz.2.2770'. [ 678.227022][T16854] vhci_hcd: connection reset by peer [ 678.232690][ T46] vhci_hcd vhci_hcd.2: stop threads [ 678.234969][ T46] vhci_hcd vhci_hcd.2: release socket [ 678.239806][ T46] vhci_hcd vhci_hcd.2: disconnect device [ 678.271519][T16862] wlan1 speed is unknown, defaulting to 1000 [ 678.726966][T16898] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.2780'. [ 678.729770][T16898] openvswitch: netlink: Flow actions attr not present in new flow. [ 679.872892][T16926] vivid-007: disconnect [ 680.491251][T16937] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.2787'. [ 680.524053][T16937] openvswitch: netlink: Flow actions attr not present in new flow. [ 680.700919][T16925] vivid-007: reconnect [ 682.373552][ T40] kauditd_printk_skb: 92 callbacks suppressed [ 682.373565][ T40] audit: type=1326 audit(2000000364.199:9290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16953 comm="syz.2.2793" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f02579 code=0x0 [ 683.363692][ T60] vhci_hcd vhci_hcd.2: vhci_device speed not set [ 684.267369][T16989] wlan1 speed is unknown, defaulting to 1000 [ 685.244931][T17002] wlan1 speed is unknown, defaulting to 1000 [ 687.365081][ T7890] hid_parser_main: 18 callbacks suppressed [ 687.365094][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.369826][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.375430][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.377832][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.380194][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.383776][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.386198][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.388550][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.390904][ T7890] hid-generic 0103:0004:0000.0028: unknown main item tag 0x0 [ 687.396471][ T7890] hid-generic 0103:0004:0000.0028: hidraw1: HID v0.02 Device [syz0] on syz1 [ 688.697002][ T7890] hid-generic 0103:0004:0000.0029: unknown main item tag 0x0 [ 688.734664][ T7890] hid-generic 0103:0004:0000.0029: hidraw1: HID v0.02 Device [syz0] on syz1 [ 689.461504][ T829] hid-generic 0103:0004:0000.002A: hidraw1: HID v0.02 Device [syz0] on syz1 [ 689.462513][T17071] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5) [ 689.466650][T17071] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 689.476879][T17071] vhci_hcd vhci_hcd.0: Device attached [ 689.768065][ T34] usb 46-1: SetAddress Request (6) to port 0 [ 689.770061][ T34] usb 46-1: new SuperSpeed USB device number 6 using vhci_hcd [ 689.864623][ T1418] ieee802154 phy0 wpan0: encryption failed: -22 [ 690.493624][T17071] random: crng reseeded on system resumption [ 691.318227][T17072] vhci_hcd: connection reset by peer [ 691.354546][ T99] vhci_hcd vhci_hcd.4: stop threads [ 691.356326][ T99] vhci_hcd vhci_hcd.4: release socket [ 691.369152][ T99] vhci_hcd vhci_hcd.4: disconnect device [ 691.758095][ T5746] hid-generic 0103:0004:0000.002B: hidraw1: HID v0.02 Device [syz0] on syz1 [ 692.675857][T17136] syz.4.2826 (17136): /proc/17123/oom_adj is deprecated, please use /proc/17123/oom_score_adj instead. [ 693.083300][ T59] Bluetooth: hci2: Frame reassembly failed (-84) [ 693.381110][ T7890] usb 8-1: new full-speed USB device number 62 using dummy_hcd [ 694.664932][T17155] netlink: 7064 bytes leftover after parsing attributes in process `syz.4.2831'. [ 694.667843][T17155] openvswitch: netlink: Flow actions attr not present in new flow. [ 694.846947][ T34] usb 46-1: device descriptor read/8, error -110 [ 694.870989][ T7890] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 694.874528][ T7890] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 694.877997][ T7890] usb 8-1: config 0 interface 0 has no altsetting 0 [ 694.881858][ T7890] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 694.884649][ T7890] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 694.887196][ T7890] usb 8-1: Product: syz [ 694.888538][ T7890] usb 8-1: Manufacturer: syz [ 694.891424][ T7890] usb 8-1: SerialNumber: syz [ 694.894814][ T7890] usb 8-1: config 0 descriptor?? [ 694.899271][ T7890] usb 8-1: selecting invalid altsetting 0 [ 695.139669][ T64] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 695.139873][T11475] Bluetooth: hci2: command 0x1003 tx timeout [ 695.236376][ T34] usb usb46-port1: attempt power cycle [ 695.324796][T17167] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2836'. [ 695.335007][T17167] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2836'. [ 695.822822][ T34] usb usb46-port1: unable to enumerate USB device [ 695.943882][T17187] FAULT_INJECTION: forcing a failure. [ 695.943882][T17187] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 695.952780][T17187] CPU: 3 UID: 0 PID: 17187 Comm: syz.4.2841 Tainted: G L syzkaller #0 PREEMPT(full) [ 695.952809][T17187] Tainted: [L]=SOFTLOCKUP [ 695.952816][T17187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 695.952827][T17187] Call Trace: [ 695.952833][T17187] [ 695.952840][T17187] dump_stack_lvl+0x100/0x190 [ 695.952867][T17187] should_fail_ex.cold+0x5/0xa [ 695.952895][T17187] _copy_from_user+0x2e/0xd0 [ 695.952923][T17187] memdup_user+0x6b/0xe0 [ 695.952946][T17187] strndup_user+0x78/0xe0 [ 695.952969][T17187] __ia32_sys_fsopen+0xa0/0x230 [ 695.952996][T17187] __do_fast_syscall_32+0xde/0x660 [ 695.953022][T17187] do_fast_syscall_32+0x32/0x70 [ 695.953043][T17187] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 695.953064][T17187] RIP: 0023:0xf73ed579 [ 695.953077][T17187] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 695.953093][T17187] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 00000000000001ae [ 695.953112][T17187] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000001 [ 695.953123][T17187] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 695.953133][T17187] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 695.953142][T17187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 695.953153][T17187] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 695.953176][T17187] [ 696.211128][ T6240] hid_parser_main: 26 callbacks suppressed [ 696.211141][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.215511][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.217823][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.222204][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.225005][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.228249][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.231138][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.235436][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.241963][ T6240] hid-generic 0103:0004:0000.002C: unknown main item tag 0x0 [ 696.252327][ T6240] hid-generic 0103:0004:0000.002C: hidraw1: HID v0.02 Device [syz0] on syz1 [ 696.779202][ T40] audit: type=1326 audit(2000000379.024:9291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17193 comm="syz.4.2846" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf73ed579 code=0x0 [ 697.455145][T17205] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2848'. [ 697.643135][ T6240] usb 8-1: USB disconnect, device number 62 [ 697.678412][T17208] sch_tbf: burst 19872 is lower than device lo mtu (11337746) ! [ 697.930088][T17207] syzkaller1: entered promiscuous mode [ 697.932540][T17207] syzkaller1: entered allmulticast mode [ 698.785495][T17230] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2855'. [ 699.066663][ T40] audit: type=1326 audit(2000000381.785:9292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.2856" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f02579 code=0x0 [ 700.253372][ T5746] hid-generic 0103:0004:0000.002D: unknown main item tag 0x0 [ 700.275182][ T5746] hid-generic 0103:0004:0000.002D: hidraw1: HID v0.02 Device [syz0] on syz1 [ 700.313124][T17253] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2861'. [ 700.316535][T17253] netlink: 'syz.5.2861': attribute type 4 has an invalid length. [ 700.821991][T17260] syzkaller0: entered promiscuous mode [ 700.839280][T17260] syzkaller0: entered allmulticast mode [ 701.241147][T11475] Bluetooth: hci2: sending frame failed (-49) [ 701.245992][ T64] Bluetooth: hci2: Opcode 0x1003 failed: -49 [ 701.610561][ T6028] usb 8-1: new full-speed USB device number 63 using dummy_hcd [ 701.847713][ T6028] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 701.870780][ T6028] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 701.874425][ T6028] usb 8-1: config 0 interface 0 has no altsetting 0 [ 701.890264][ T6028] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 701.896000][ T6028] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 701.902396][ T6028] usb 8-1: Product: syz [ 701.903971][ T6028] usb 8-1: Manufacturer: syz [ 701.923867][ T6028] usb 8-1: SerialNumber: syz [ 701.931952][ T6028] usb 8-1: config 0 descriptor?? [ 701.948336][ T6028] usb 8-1: selecting invalid altsetting 0 [ 702.225777][ T6028] usb 10-1: new full-speed USB device number 23 using dummy_hcd [ 702.379099][ T6028] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 702.382521][ T6028] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 702.385979][ T6028] usb 10-1: config 0 interface 0 has no altsetting 0 [ 702.390192][ T6028] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 702.393160][ T6028] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 702.396853][ T6028] usb 10-1: Product: syz [ 702.417762][ T6028] usb 10-1: Manufacturer: syz [ 702.419734][ T6028] usb 10-1: SerialNumber: syz [ 702.439306][ T6028] usb 10-1: config 0 descriptor?? [ 702.459836][ T6028] usb 10-1: selecting invalid altsetting 0 [ 702.805309][T11248] block nbd0: Possible stuck request ffff888026410000: control (read@0,4096B). Runtime 60 seconds [ 703.700716][T17296] genirq: Flags mismatch irq 4. 00200000 (aio_iiro_16) vs. 00200080 (ttyS0) [ 703.740966][T17301] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2873'. [ 703.740974][T17300] tipc: Started in network mode [ 703.740998][T17300] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 703.751951][T17300] tipc: New replicast peer: fc00:0000:0000:0000:0000:0000:0000:0000 [ 703.756193][T17300] tipc: Enabled bearer , priority 10 [ 703.796403][T17301] netlink: 'syz.2.2873': attribute type 10 has an invalid length. [ 703.802632][T17301] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2873'. [ 703.805632][T17301] dummy0: entered promiscuous mode [ 703.997480][T17306] FAULT_INJECTION: forcing a failure. [ 703.997480][T17306] name failslab, interval 1, probability 0, space 0, times 0 [ 704.007074][T17306] CPU: 1 UID: 0 PID: 17306 Comm: syz.2.2875 Tainted: G L syzkaller #0 PREEMPT(full) [ 704.007093][T17306] Tainted: [L]=SOFTLOCKUP [ 704.007097][T17306] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 704.007104][T17306] Call Trace: [ 704.007108][T17306] [ 704.007113][T17306] dump_stack_lvl+0x100/0x190 [ 704.007130][T17306] should_fail_ex.cold+0x5/0xa [ 704.007149][T17306] should_failslab+0xc2/0x120 [ 704.007165][T17306] kmem_cache_alloc_node_noprof+0x8c/0x880 [ 704.007181][T17306] ? __alloc_skb+0x156/0x410 [ 704.007199][T17306] ? __alloc_skb+0x156/0x410 [ 704.007213][T17306] __alloc_skb+0x156/0x410 [ 704.007227][T17306] ? __alloc_skb+0x35d/0x410 [ 704.007242][T17306] ? __pfx___alloc_skb+0x10/0x10 [ 704.007259][T17306] ? find_held_lock+0x2b/0x80 [ 704.007272][T17306] netlink_dump+0x19b/0xd30 [ 704.007296][T17306] ? __pfx_netlink_dump+0x10/0x10 [ 704.007311][T17306] ? ip_set_dump_start+0x2e9/0x460 [ 704.007327][T17306] ? __pfx_ip_set_dump_start+0x10/0x10 [ 704.007351][T17306] __netlink_dump_start+0x6d6/0x990 [ 704.007371][T17306] ip_set_dump+0x1c2/0x200 [ 704.007383][T17306] ? __pfx_ip_set_dump+0x10/0x10 [ 704.007395][T17306] ? __pfx_ip_set_dump_start+0x10/0x10 [ 704.007409][T17306] ? __pfx_ip_set_dump_do+0x10/0x10 [ 704.007423][T17306] ? __pfx_ip_set_dump_done+0x10/0x10 [ 704.007441][T17306] nfnetlink_rcv_msg+0x9f4/0x1200 [ 704.007461][T17306] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 704.007477][T17306] ? kfree_skbmem+0x19a/0x210 [ 704.007503][T17306] ? __pfx___dev_queue_xmit+0x10/0x10 [ 704.007520][T17306] netlink_rcv_skb+0x159/0x420 [ 704.007537][T17306] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 704.007552][T17306] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 704.007576][T17306] ? ns_capable+0xd2/0xf0 [ 704.007590][T17306] nfnetlink_rcv+0x1b3/0x440 [ 704.007604][T17306] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 704.007617][T17306] ? netlink_deliver_tap+0x1ae/0xcc0 [ 704.007637][T17306] netlink_unicast+0x5aa/0x870 [ 704.007657][T17306] ? __pfx_netlink_unicast+0x10/0x10 [ 704.007680][T17306] netlink_sendmsg+0x8b0/0xda0 [ 704.007700][T17306] ? __pfx_netlink_sendmsg+0x10/0x10 [ 704.007720][T17306] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 704.007736][T17306] ____sys_sendmsg+0xa54/0xc30 [ 704.007751][T17306] ? __pfx_____sys_sendmsg+0x10/0x10 [ 704.007770][T17306] ___sys_sendmsg+0x190/0x1e0 [ 704.007784][T17306] ? __pfx____sys_sendmsg+0x10/0x10 [ 704.007815][T17306] __sys_sendmsg+0x170/0x220 [ 704.007832][T17306] ? __pfx___sys_sendmsg+0x10/0x10 [ 704.007853][T17306] ? __pfx_ksys_write+0x10/0x10 [ 704.007870][T17306] __do_fast_syscall_32+0xde/0x660 [ 704.007887][T17306] do_fast_syscall_32+0x32/0x70 [ 704.007902][T17306] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 704.007916][T17306] RIP: 0023:0xf7f02579 [ 704.007925][T17306] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 704.007936][T17306] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 704.007948][T17306] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000200 [ 704.007955][T17306] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 704.007961][T17306] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 704.007967][T17306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 704.007974][T17306] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 704.007988][T17306] [ 704.132927][ T5957] Bluetooth: hci2: command 0x1003 tx timeout [ 704.177200][ T64] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 704.278592][T17313] wlan1 speed is unknown, defaulting to 1000 [ 704.349605][ T5746] usb 8-1: USB disconnect, device number 63 [ 704.518071][T17325] genirq: Flags mismatch irq 4. 00200000 (aio_iiro_16) vs. 00200080 (ttyS0) [ 704.521989][T17325] FAULT_INJECTION: forcing a failure. [ 704.521989][T17325] name failslab, interval 1, probability 0, space 0, times 0 [ 704.525987][T17325] CPU: 1 UID: 0 PID: 17325 Comm: syz.3.2881 Tainted: G L syzkaller #0 PREEMPT(full) [ 704.526004][T17325] Tainted: [L]=SOFTLOCKUP [ 704.526008][T17325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 704.526015][T17325] Call Trace: [ 704.526020][T17325] [ 704.526024][T17325] dump_stack_lvl+0x100/0x190 [ 704.526042][T17325] should_fail_ex.cold+0x5/0xa [ 704.526061][T17325] should_failslab+0xc2/0x120 [ 704.526077][T17325] ? comedi_alloc_subdevices+0x4a/0x240 [ 704.526095][T17325] __kmalloc_noprof+0xf6/0x9c0 [ 704.526106][T17325] ? request_threaded_irq+0x356/0x3e0 [ 704.526124][T17325] ? comedi_alloc_subdevices+0x4a/0x240 [ 704.526141][T17325] ? request_threaded_irq+0x27b/0x3e0 [ 704.526154][T17325] comedi_alloc_subdevices+0x4a/0x240 [ 704.526174][T17325] aio_iiro_16_attach+0x12a/0x7a0 [ 704.526190][T17325] comedi_device_attach+0x3d2/0x660 [ 704.526205][T17325] do_devconfig_ioctl+0x1b3/0x6d0 [ 704.526218][T17325] ? comedi_unlocked_ioctl+0x163/0x2e70 [ 704.526235][T17325] ? __pfx_do_devconfig_ioctl+0x10/0x10 [ 704.526256][T17325] ? kasan_save_stack+0x3f/0x50 [ 704.526268][T17325] ? kasan_save_stack+0x30/0x50 [ 704.526281][T17325] ? kasan_save_track+0x14/0x30 [ 704.526298][T17325] ? kasan_save_free_info+0x3b/0x70 [ 704.526308][T17325] ? __kasan_slab_free+0x5f/0x80 [ 704.526321][T17325] ? kfree+0x1c7/0x690 [ 704.526330][T17325] ? tomoyo_path_number_perm+0x46d/0x580 [ 704.526346][T17325] ? security_file_ioctl_compat+0xd3/0x230 [ 704.526366][T17325] comedi_unlocked_ioctl+0x44c/0x2e70 [ 704.526386][T17325] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 704.526412][T17325] ? kasan_quarantine_put+0x104/0x240 [ 704.526426][T17325] ? lockdep_hardirqs_on+0x78/0x100 [ 704.526442][T17325] ? find_held_lock+0x2b/0x80 [ 704.526453][T17325] ? tomoyo_path_number_perm+0x28f/0x580 [ 704.526469][T17325] ? tomoyo_path_number_perm+0x28f/0x580 [ 704.526488][T17325] ? tomoyo_path_number_perm+0x188/0x580 [ 704.526507][T17325] comedi_compat_ioctl+0x438/0xe20 [ 704.526524][T17325] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 704.526548][T17325] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 704.526567][T17325] ? do_vfs_ioctl+0x226/0x13e0 [ 704.526595][T17325] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 704.526627][T17325] ? find_held_lock+0x2b/0x80 [ 704.526646][T17325] ? hook_file_ioctl_common+0x146/0x410 [ 704.526676][T17325] ? __fget_files+0x21f/0x3d0 [ 704.526703][T17325] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 704.526729][T17325] __ia32_compat_sys_ioctl+0x2cf/0x360 [ 704.526751][T17325] __do_fast_syscall_32+0xde/0x660 [ 704.526767][T17325] do_fast_syscall_32+0x32/0x70 [ 704.526782][T17325] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 704.526796][T17325] RIP: 0023:0xf749d579 [ 704.526806][T17325] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 704.526817][T17325] RSP: 002b:00000000f54c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 704.526828][T17325] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400 [ 704.526835][T17325] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 704.526856][T17325] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 704.526863][T17325] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 704.526869][T17325] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 704.526884][T17325] [ 704.787055][ T5746] tipc: Node number set to 1 [ 704.957872][T17333] FAULT_INJECTION: forcing a failure. [ 704.957872][T17333] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 704.958303][ T5746] hid_parser_main: 8 callbacks suppressed [ 704.958315][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 704.964429][T17333] CPU: 2 UID: 0 PID: 17333 Comm: syz.4.2884 Tainted: G L syzkaller #0 PREEMPT(full) [ 704.964448][T17333] Tainted: [L]=SOFTLOCKUP [ 704.964452][T17333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 704.964459][T17333] Call Trace: [ 704.964463][T17333] [ 704.964468][T17333] dump_stack_lvl+0x100/0x190 [ 704.964486][T17333] should_fail_ex.cold+0x5/0xa [ 704.964505][T17333] _copy_from_user+0x2e/0xd0 [ 704.964523][T17333] get_compat_msghdr+0xb3/0x4b0 [ 704.964540][T17333] ? __pfx_get_compat_msghdr+0x10/0x10 [ 704.964561][T17333] ___sys_sendmsg+0x1b6/0x1e0 [ 704.964576][T17333] ? __pfx____sys_sendmsg+0x10/0x10 [ 704.964606][T17333] __sys_sendmsg+0x170/0x220 [ 704.964623][T17333] ? __pfx___sys_sendmsg+0x10/0x10 [ 704.964644][T17333] ? __pfx_ksys_write+0x10/0x10 [ 704.964657][T17333] ? fput+0x79/0x100 [ 704.964674][T17333] __do_fast_syscall_32+0xde/0x660 [ 704.964691][T17333] do_fast_syscall_32+0x32/0x70 [ 704.964706][T17333] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 704.964720][T17333] RIP: 0023:0xf73ed579 [ 704.964729][T17333] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 704.964741][T17333] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 704.964752][T17333] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0 [ 704.964759][T17333] RDX: 0000000020004080 RSI: 0000000000000000 RDI: 0000000000000000 [ 704.964765][T17333] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 704.964772][T17333] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 704.964779][T17333] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 704.964793][T17333] [ 704.980701][ T64] Bluetooth: hci0: command 0x0405 tx timeout [ 704.984159][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 705.047271][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 705.135143][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 705.146808][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 705.149236][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 705.151642][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 705.154341][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 705.160350][ T5746] hid-generic 0103:0004:0000.002E: unknown main item tag 0x0 [ 705.187216][ T5746] hid-generic 0103:0004:0000.002E: hidraw1: HID v0.02 Device [syz0] on syz1 [ 705.998151][T17350] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2889'. [ 706.543484][ T40] audit: type=1326 audit(2000000389.207:9293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.566647][ T40] audit: type=1326 audit(2000000389.217:9294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.573901][ T40] audit: type=1326 audit(2000000389.217:9295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.597824][ T5746] usb 10-1: USB disconnect, device number 23 [ 706.613221][ T40] audit: type=1326 audit(2000000389.217:9296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.643030][ T40] audit: type=1326 audit(2000000389.217:9297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.666172][ T40] audit: type=1326 audit(2000000389.217:9298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.680763][ T40] audit: type=1326 audit(2000000389.217:9299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.689713][ T40] audit: type=1326 audit(2000000389.227:9300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.696758][ T40] audit: type=1326 audit(2000000389.227:9301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.703778][ T40] audit: type=1326 audit(2000000389.327:9302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17353 comm="syz.3.2891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 706.960266][T17365] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2892'. [ 707.396212][ T64] Bluetooth: hci0: command 0x0405 tx timeout [ 709.214247][T17395] syzkaller0: entered promiscuous mode [ 709.216279][T17395] syzkaller0: entered allmulticast mode [ 709.239670][T17405] bridge1: entered allmulticast mode [ 709.259627][T17405] ªªªªª»: renamed from hsr0 (while UP) [ 709.338970][T17407] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.2901'. [ 709.351530][T17407] openvswitch: netlink: Flow actions attr not present in new flow. [ 710.608795][T17426] bridge0: entered allmulticast mode [ 711.330484][T17431] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7) [ 711.332611][T17431] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 711.428017][T17431] vhci_hcd vhci_hcd.0: Device attached [ 711.687772][T17432] vhci_hcd: connection closed [ 711.688098][T17430] vhci_hcd vhci_hcd.4: stop threads [ 711.692314][T17430] vhci_hcd vhci_hcd.4: release socket [ 711.694594][T17430] vhci_hcd vhci_hcd.4: disconnect device [ 711.725176][ T7890] usb 46-1: enqueue for inactive port 0 [ 711.921552][ T40] kauditd_printk_skb: 2 callbacks suppressed [ 711.921596][ T40] audit: type=1326 audit(2000000394.648:9305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17439 comm="syz.3.2910" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf749d579 code=0x0 [ 712.046933][T17445] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.2906'. [ 712.050637][T17445] openvswitch: netlink: Flow actions attr not present in new flow. [ 712.678531][T17449] netlink: 'syz.2.2912': attribute type 2 has an invalid length. [ 712.681999][T17449] netlink: 7964 bytes leftover after parsing attributes in process `syz.2.2912'. [ 713.121574][T17458] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.2914'. [ 713.124545][T17458] openvswitch: netlink: Flow actions attr not present in new flow. [ 713.435371][ T7890] usb usb46-port1: attempt power cycle [ 713.496336][T17464] FAULT_INJECTION: forcing a failure. [ 713.496336][T17464] name failslab, interval 1, probability 0, space 0, times 0 [ 713.504966][T17464] CPU: 1 UID: 0 PID: 17464 Comm: syz.3.2915 Tainted: G L syzkaller #0 PREEMPT(full) [ 713.504986][T17464] Tainted: [L]=SOFTLOCKUP [ 713.504990][T17464] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 713.504996][T17464] Call Trace: [ 713.505001][T17464] [ 713.505006][T17464] dump_stack_lvl+0x100/0x190 [ 713.505023][T17464] should_fail_ex.cold+0x5/0xa [ 713.505042][T17464] should_failslab+0xc2/0x120 [ 713.505059][T17464] kmem_cache_alloc_noprof+0x83/0x780 [ 713.505074][T17464] ? __pfx_map_id_range_down+0x10/0x10 [ 713.505085][T17464] ? security_inode_alloc+0x3b/0x2c0 [ 713.505104][T17464] ? security_inode_alloc+0x3b/0x2c0 [ 713.505118][T17464] security_inode_alloc+0x3b/0x2c0 [ 713.505134][T17464] inode_init_always_gfp+0xced/0x1040 [ 713.505151][T17464] alloc_inode+0x8e/0x250 [ 713.505167][T17464] new_inode+0x22/0x1c0 [ 713.505185][T17464] proc_pid_make_inode+0x22/0x160 [ 713.505201][T17464] proc_fdinfo_instantiate+0x57/0x240 [ 713.505221][T17464] proc_fill_cache+0x361/0x470 [ 713.505237][T17464] ? __pfx_proc_fdinfo_instantiate+0x10/0x10 [ 713.505251][T17464] ? __pfx_proc_fill_cache+0x10/0x10 [ 713.505266][T17464] ? __pfx_vsnprintf+0x10/0x10 [ 713.505282][T17464] ? snprintf+0xc7/0x100 [ 713.505297][T17464] ? fget_task_next+0x2c6/0x5a0 [ 713.505313][T17464] proc_readfd_common+0x1ef/0x5f0 [ 713.505326][T17464] ? __pfx_proc_fdinfo_instantiate+0x10/0x10 [ 713.505341][T17464] ? __pfx_proc_readfd_common+0x10/0x10 [ 713.505354][T17464] ? down_read_killable+0x30e/0x4c0 [ 713.505370][T17464] ? __pfx_down_read_killable+0x10/0x10 [ 713.505385][T17464] ? common_file_perm+0x1ab/0x4f0 [ 713.505406][T17464] iterate_dir+0x296/0xae0 [ 713.505419][T17464] __ia32_compat_sys_getdents+0x13a/0x2b0 [ 713.505432][T17464] ? __pfx___ia32_compat_sys_getdents+0x10/0x10 [ 713.505444][T17464] ? __pfx_compat_filldir+0x10/0x10 [ 713.505456][T17464] ? __pfx_ksys_write+0x10/0x10 [ 713.505473][T17464] __do_fast_syscall_32+0xde/0x660 [ 713.505489][T17464] do_fast_syscall_32+0x32/0x70 [ 713.505503][T17464] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 713.505518][T17464] RIP: 0023:0xf749d579 [ 713.505527][T17464] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 713.505538][T17464] RSP: 002b:00000000f548450c EFLAGS: 00000292 ORIG_RAX: 000000000000008d [ 713.505550][T17464] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000040 [ 713.505557][T17464] RDX: 00000000000000e3 RSI: 0000000000000000 RDI: 0000000000000000 [ 713.505563][T17464] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 713.505570][T17464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 713.505576][T17464] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 713.505590][T17464] [ 713.783688][T17469] veth0: entered promiscuous mode [ 713.787258][T17469] vivid-007: disconnect [ 714.016151][ T7890] usb usb46-port1: unable to enumerate USB device [ 715.104156][T17468] vivid-007: reconnect [ 715.165835][T17468] veth0: left promiscuous mode [ 715.571657][T17486] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.2920'. [ 715.584227][T17486] openvswitch: netlink: Flow actions attr not present in new flow. [ 716.061220][ T40] audit: type=1326 audit(2000000398.779:9306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17492 comm="syz.5.2923" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f07579 code=0x0 [ 717.348997][T17515] tipc: Started in network mode [ 717.350593][T17515] tipc: Node identity 5e67b5126c11, cluster identity 4711 [ 717.352995][T17515] tipc: Enabled bearer , priority 0 [ 717.355908][T17515] syzkaller0: entered promiscuous mode [ 717.375223][T17515] syzkaller0: entered allmulticast mode [ 717.398624][T17515] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2928'. [ 717.403439][T17515] tipc: Resetting bearer [ 717.413197][T17514] tipc: Resetting bearer [ 717.422849][T17514] tipc: Disabling bearer [ 717.776898][T17519] netlink: 188 bytes leftover after parsing attributes in process `syz.2.2929'. [ 717.843047][T17525] sp0: Synchronizing with TNC [ 718.411313][T17543] vivid-007: disconnect [ 718.418355][T17542] vivid-007: reconnect [ 718.713577][ T7890] usb 9-1: new full-speed USB device number 19 using dummy_hcd [ 718.866985][ T7890] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 718.871483][ T7890] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 718.879402][T17558] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 718.984048][ T40] audit: type=1326 audit(2000000401.710:9307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17550 comm="syz.5.2936" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f07579 code=0x0 [ 719.137378][T17558] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 719.300935][T17558] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 719.438971][T17558] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 719.681771][ T7890] usb 9-1: config 0 interface 0 has no altsetting 0 [ 719.937737][ T7890] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 719.937878][ T12] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 719.940580][ T7890] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 719.940594][ T7890] usb 9-1: Product: syz [ 719.940603][ T7890] usb 9-1: Manufacturer: syz [ 719.940610][ T7890] usb 9-1: SerialNumber: syz [ 719.952139][ T7890] usb 9-1: config 0 descriptor?? [ 719.957140][ T7890] usb 9-1: selecting invalid altsetting 0 [ 719.967668][ T12] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 719.992105][ T1145] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 720.023410][ T1145] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 720.326283][T17430] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 720.336504][ T64] Bluetooth: hci2: command 0x1003 tx timeout [ 720.353384][T17430] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 720.435362][T11475] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 721.663451][T17587] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.2942'. [ 721.667818][T17587] openvswitch: netlink: Flow actions attr not present in new flow. [ 721.917719][T17591] mkiss: ax0: crc mode is auto. [ 722.317287][T17596] netlink: 'syz.2.2945': attribute type 1 has an invalid length. [ 722.485960][T17597] /dev/nullb0: Can't open blockdev [ 722.943149][ T829] usb 9-1: USB disconnect, device number 19 [ 723.034055][T17618] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10) [ 723.036201][T17618] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 723.038675][T17618] vhci_hcd vhci_hcd.0: Device attached [ 723.041221][T17623] vhci_hcd: connection closed [ 723.073340][ T59] vhci_hcd vhci_hcd.3: stop threads [ 723.084730][ T59] vhci_hcd vhci_hcd.3: release socket [ 723.086484][ T59] vhci_hcd vhci_hcd.3: disconnect device [ 725.950155][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.952730][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.955300][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.957831][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.960370][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.962916][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.966944][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.969501][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.972148][ T61] hid-generic 0103:0004:0000.002F: unknown main item tag 0x0 [ 725.980078][ T61] hid-generic 0103:0004:0000.002F: hidraw1: HID v0.02 Device [syz0] on syz1 [ 727.911768][ T7890] usb 9-1: new full-speed USB device number 20 using dummy_hcd [ 728.010575][T17682] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.2962'. [ 728.013606][T17682] openvswitch: netlink: Flow actions attr not present in new flow. [ 728.083450][ T7890] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 728.088303][ T7890] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 728.093968][ T7890] usb 9-1: config 0 interface 0 has no altsetting 0 [ 728.098856][ T7890] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 728.103575][ T7890] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 728.107094][ T7890] usb 9-1: Product: syz [ 728.109044][ T7890] usb 9-1: Manufacturer: syz [ 728.110938][ T7890] usb 9-1: SerialNumber: syz [ 728.115482][ T7890] usb 9-1: config 0 descriptor?? [ 728.119789][ T7890] usb 9-1: selecting invalid altsetting 0 [ 728.774365][T17695] vcan0: tx address claim with dest, not broadcast [ 728.889331][ T64] Bluetooth: hci1: connection err: -111 [ 729.131530][ T60] usb 10-1: new high-speed USB device number 24 using dummy_hcd [ 729.281561][ T60] usb 10-1: Using ep0 maxpacket: 32 [ 729.284440][ T60] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 729.288005][ T60] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 729.291102][ T60] usb 10-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 729.294505][ T60] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 729.298287][ T60] usb 10-1: config 0 descriptor?? [ 729.531501][T11475] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 729.531518][ T64] Bluetooth: hci2: command 0x1003 tx timeout [ 729.713696][ T60] savu 0003:1E7D:2D5A.0030: hiddev0,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.5-1/input0 [ 730.051121][T17710] wlan1 speed is unknown, defaulting to 1000 [ 730.123090][ T34] usb 8-1: new high-speed USB device number 64 using dummy_hcd [ 730.177099][ T10] usb 10-1: USB disconnect, device number 24 [ 730.271835][ T34] usb 8-1: too many configurations: 13, using maximum allowed: 8 [ 730.276308][ T34] usb 8-1: config 0 has no interfaces? [ 730.280695][ T34] usb 8-1: config 0 has no interfaces? [ 730.284084][ T34] usb 8-1: config 0 has no interfaces? [ 730.286940][ T34] usb 8-1: config 0 has no interfaces? [ 730.289963][ T34] usb 8-1: config 0 has no interfaces? [ 730.292921][ T34] usb 8-1: config 0 has no interfaces? [ 730.301777][ T34] usb 8-1: config 0 has no interfaces? [ 730.305019][ T34] usb 8-1: config 0 has no interfaces? [ 730.309291][ T34] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 730.313189][ T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 730.316539][ T34] usb 8-1: Product: syz [ 730.318313][ T34] usb 8-1: Manufacturer: syz [ 730.320285][ T34] usb 8-1: SerialNumber: syz [ 730.333580][ T34] usb 8-1: config 0 descriptor?? [ 730.544048][T17701] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 730.546885][T17701] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 730.550807][ T60] usb 8-1: USB disconnect, device number 64 [ 730.655280][ T6011] usb 9-1: USB disconnect, device number 20 [ 731.481134][ T6240] usb 8-1: new high-speed USB device number 65 using dummy_hcd [ 731.671063][ T6240] usb 8-1: Using ep0 maxpacket: 32 [ 731.675667][ T6240] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 731.678808][T17723] tmpfs: Bad value for 'mpol' [ 731.680316][ T6240] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 731.684030][ T6240] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 731.686658][ T6240] usb 8-1: Product: syz [ 731.688031][ T6240] usb 8-1: Manufacturer: syz [ 731.691196][ T6240] usb 8-1: SerialNumber: syz [ 731.694238][ T6240] usb 8-1: config 0 descriptor?? [ 731.696284][T17701] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 731.904215][ T34] usb 8-1: USB disconnect, device number 65 [ 731.991020][T17729] netlink: 'syz.5.2974': attribute type 4 has an invalid length. [ 732.656458][ T40] audit: type=1326 audit(2000000415.383:9308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17730 comm="syz.4.2975" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf73ed579 code=0x0 [ 733.552887][T11248] block nbd0: Possible stuck request ffff888026410000: control (read@0,4096B). Runtime 90 seconds [ 733.780733][ T64] Bluetooth: hci1: command 0x0c1a tx timeout [ 733.878026][T17750] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check. [ 733.916565][T11475] Bluetooth: hci1: Opcode 0x206a failed: -110 [ 734.286380][T17761] wlan1 speed is unknown, defaulting to 1000 [ 734.719399][T17769] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.2983'. [ 734.725793][T17769] openvswitch: netlink: Flow actions attr not present in new flow. [ 735.345189][T17778] 8021q: adding VLAN 0 to HW filter on device bond0 [ 735.355330][T17778] bond0: (slave rose0): Enslaving as an active interface with an up link [ 735.826514][T17804] FAULT_INJECTION: forcing a failure. [ 735.826514][T17804] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 735.834646][T17804] CPU: 0 UID: 0 PID: 17804 Comm: syz.3.2991 Tainted: G L syzkaller #0 PREEMPT(full) [ 735.834664][T17804] Tainted: [L]=SOFTLOCKUP [ 735.834668][T17804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 735.834705][T17804] Call Trace: [ 735.834712][T17804] [ 735.834718][T17804] dump_stack_lvl+0x100/0x190 [ 735.834739][T17804] should_fail_ex.cold+0x5/0xa [ 735.834759][T17804] _copy_from_iter+0x1f4/0x1690 [ 735.834778][T17804] ? __alloc_skb+0x220/0x410 [ 735.834792][T17804] ? __alloc_skb+0x35d/0x410 [ 735.834807][T17804] ? __pfx__copy_from_iter+0x10/0x10 [ 735.834825][T17804] ? __pfx___might_resched+0x10/0x10 [ 735.834848][T17804] netlink_sendmsg+0x808/0xda0 [ 735.834868][T17804] ? __pfx_netlink_sendmsg+0x10/0x10 [ 735.834888][T17804] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 735.834916][T17804] ____sys_sendmsg+0xa54/0xc30 [ 735.834932][T17804] ? __pfx_____sys_sendmsg+0x10/0x10 [ 735.834951][T17804] ___sys_sendmsg+0x190/0x1e0 [ 735.834965][T17804] ? __pfx____sys_sendmsg+0x10/0x10 [ 735.834999][T17804] __sys_sendmsg+0x170/0x220 [ 735.835016][T17804] ? __pfx___sys_sendmsg+0x10/0x10 [ 735.835043][T17804] ? __pfx_ksys_write+0x10/0x10 [ 735.835064][T17804] __do_fast_syscall_32+0xde/0x660 [ 735.835085][T17804] do_fast_syscall_32+0x32/0x70 [ 735.835104][T17804] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 735.835123][T17804] RIP: 0023:0xf749d579 [ 735.835137][T17804] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 735.835153][T17804] RSP: 002b:00000000f54c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 735.835171][T17804] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000440 [ 735.835181][T17804] RDX: 0000000040002084 RSI: 0000000000000000 RDI: 0000000000000000 [ 735.835190][T17804] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 735.835200][T17804] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 735.835209][T17804] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 735.835232][T17804] [ 735.937637][T17808] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 735.939767][T17808] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 735.943344][T17808] vhci_hcd vhci_hcd.0: Device attached [ 735.960139][T17808] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(8) [ 735.962748][T17808] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 735.967650][T17808] vhci_hcd vhci_hcd.0: Device attached [ 735.975752][T17813] vhci_hcd: connection closed [ 735.975857][T11557] vhci_hcd vhci_hcd.3: stop threads [ 735.979083][T11557] vhci_hcd vhci_hcd.3: release socket [ 735.984761][T11557] vhci_hcd vhci_hcd.3: disconnect device [ 736.182346][T11582] usb 43-1: new low-speed USB device number 4 using vhci_hcd [ 736.658632][T17823] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.2994'. [ 736.666457][T17823] openvswitch: netlink: Flow actions attr not present in new flow. [ 737.012888][T17827] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.2995'. [ 737.015874][T17827] openvswitch: netlink: Flow actions attr not present in new flow. [ 737.018990][T17810] vhci_hcd: connection reset by peer [ 737.021991][T11557] vhci_hcd vhci_hcd.3: stop threads [ 737.025449][T11557] vhci_hcd vhci_hcd.3: release socket [ 737.027305][T11557] vhci_hcd vhci_hcd.3: disconnect device [ 737.446977][T17844] FAULT_INJECTION: forcing a failure. [ 737.446977][T17844] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 737.451684][T17844] CPU: 3 UID: 0 PID: 17844 Comm: syz.2.2999 Tainted: G L syzkaller #0 PREEMPT(full) [ 737.451703][T17844] Tainted: [L]=SOFTLOCKUP [ 737.451707][T17844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 737.451713][T17844] Call Trace: [ 737.451717][T17844] [ 737.451722][T17844] dump_stack_lvl+0x100/0x190 [ 737.451739][T17844] should_fail_ex.cold+0x5/0xa [ 737.451758][T17844] _copy_from_user+0x2e/0xd0 [ 737.451780][T17844] __ia32_compat_sys_socketcall+0x187/0x770 [ 737.451799][T17844] ? __fget_files+0x21f/0x3d0 [ 737.451812][T17844] ? __pfx___ia32_compat_sys_socketcall+0x10/0x10 [ 737.451831][T17844] ? fput+0x79/0x100 [ 737.451846][T17844] ? ksys_write+0x1ac/0x250 [ 737.451858][T17844] ? __pfx_ksys_write+0x10/0x10 [ 737.451875][T17844] do_int80_emulation+0x101/0x470 [ 737.451892][T17844] asm_int80_emulation+0x1a/0x20 [ 737.451903][T17844] RIP: 0023:0xf710572b [ 737.451912][T17844] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53 [ 737.451923][T17844] RSP: 002b:00000000f53a434c EFLAGS: 00000246 ORIG_RAX: 0000000000000066 [ 737.451946][T17844] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f53a43f4 [ 737.451953][T17844] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 737.451960][T17844] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 737.451966][T17844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 737.451973][T17844] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 737.451987][T17844] [ 738.155893][T17862] io-wq is not configured for unbound workers [ 738.366187][ T6240] libceph: connect (1)[c::]:6789 error -101 [ 738.374385][ T6240] libceph: mon0 (1)[c::]:6789 connect error [ 738.630759][ T6240] libceph: connect (1)[c::]:6789 error -101 [ 738.634079][ T6240] libceph: mon0 (1)[c::]:6789 connect error [ 738.724636][T17860] ceph: No mds server is up or the cluster is laggy [ 739.001653][T17882] netlink: 548 bytes leftover after parsing attributes in process `syz.2.3009'. [ 740.344288][T17910] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7) [ 740.347091][T17910] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 740.352577][T17910] vhci_hcd vhci_hcd.0: Device attached [ 740.640592][ T6240] usb 48-1: SetAddress Request (7) to port 0 [ 740.642560][ T6240] usb 48-1: new SuperSpeed USB device number 7 using vhci_hcd [ 740.835472][T17911] vhci_hcd: connection reset by peer [ 740.840529][ T12] vhci_hcd vhci_hcd.5: stop threads [ 740.842204][ T12] vhci_hcd vhci_hcd.5: release socket [ 740.850827][ T12] vhci_hcd vhci_hcd.5: disconnect device [ 740.975006][T17918] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3020'. [ 741.280803][T11582] vhci_hcd vhci_hcd.3: vhci_device speed not set [ 741.481867][T17918] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 741.506520][T17918] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 741.761041][T17918] batman_adv: batadv0: Interface deactivated: gretap1 [ 741.766431][T17918] batman_adv: batadv0: Interface deactivated: gretap2 [ 741.789731][T17951] FAULT_INJECTION: forcing a failure. [ 741.789731][T17951] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 741.794959][T17951] CPU: 1 UID: 0 PID: 17951 Comm: syz.5.3023 Tainted: G L syzkaller #0 PREEMPT(full) [ 741.794989][T17951] Tainted: [L]=SOFTLOCKUP [ 741.794993][T17951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 741.795000][T17951] Call Trace: [ 741.795004][T17951] [ 741.795009][T17951] dump_stack_lvl+0x100/0x190 [ 741.795026][T17951] should_fail_ex.cold+0x5/0xa [ 741.795045][T17951] _copy_from_user+0x2e/0xd0 [ 741.795063][T17951] get_compat_msghdr+0xb3/0x4b0 [ 741.795080][T17951] ? __pfx_get_compat_msghdr+0x10/0x10 [ 741.795101][T17951] ___sys_sendmsg+0x1b6/0x1e0 [ 741.795116][T17951] ? __pfx____sys_sendmsg+0x10/0x10 [ 741.795146][T17951] __sys_sendmsg+0x170/0x220 [ 741.795163][T17951] ? __pfx___sys_sendmsg+0x10/0x10 [ 741.795184][T17951] ? __pfx_ksys_write+0x10/0x10 [ 741.795200][T17951] __do_fast_syscall_32+0xde/0x660 [ 741.795217][T17951] do_fast_syscall_32+0x32/0x70 [ 741.795231][T17951] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 741.795247][T17951] RIP: 0023:0xf7f07579 [ 741.795256][T17951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 741.795266][T17951] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 741.795277][T17951] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000 [ 741.795284][T17951] RDX: 0000000020004804 RSI: 0000000000000000 RDI: 0000000000000000 [ 741.795290][T17951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 741.795297][T17951] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 741.795303][T17951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 741.795317][T17951] [ 741.858594][T17430] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 741.863264][ T1141] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 741.865939][ T1141] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 741.868585][ T1141] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 742.131581][T17967] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 742.133684][T17967] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 742.147301][T17967] vhci_hcd vhci_hcd.0: Device attached [ 742.210917][T17969] vhci_hcd: connection closed [ 742.211120][T17430] vhci_hcd vhci_hcd.2: stop threads [ 742.215074][T17430] vhci_hcd vhci_hcd.2: release socket [ 742.217129][T17430] vhci_hcd vhci_hcd.2: disconnect device [ 742.853120][T17990] netlink: 100 bytes leftover after parsing attributes in process `syz.5.3033'. [ 742.856550][T17990] netlink: 100 bytes leftover after parsing attributes in process `syz.5.3033'. [ 742.915352][T17996] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3033'. [ 743.041210][T17983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3031'. [ 744.755882][T18005] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3037'. [ 744.842351][T18016] FAULT_INJECTION: forcing a failure. [ 744.842351][T18016] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 744.846645][T18016] CPU: 0 UID: 0 PID: 18016 Comm: syz.2.3041 Tainted: G L syzkaller #0 PREEMPT(full) [ 744.846663][T18016] Tainted: [L]=SOFTLOCKUP [ 744.846667][T18016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 744.846674][T18016] Call Trace: [ 744.846678][T18016] [ 744.846683][T18016] dump_stack_lvl+0x100/0x190 [ 744.846700][T18016] should_fail_ex.cold+0x5/0xa [ 744.846719][T18016] _copy_from_iter+0x1f4/0x1690 [ 744.846738][T18016] ? __alloc_skb+0x220/0x410 [ 744.846752][T18016] ? __alloc_skb+0x35d/0x410 [ 744.846767][T18016] ? __pfx__copy_from_iter+0x10/0x10 [ 744.846784][T18016] ? netlink_autobind.isra.0+0x120/0x370 [ 744.846807][T18016] netlink_sendmsg+0x808/0xda0 [ 744.846827][T18016] ? __pfx_netlink_sendmsg+0x10/0x10 [ 744.846847][T18016] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 744.846864][T18016] ____sys_sendmsg+0xa54/0xc30 [ 744.846878][T18016] ? __pfx_____sys_sendmsg+0x10/0x10 [ 744.846900][T18016] ___sys_sendmsg+0x190/0x1e0 [ 744.846915][T18016] ? __pfx____sys_sendmsg+0x10/0x10 [ 744.846944][T18016] __sys_sendmsg+0x170/0x220 [ 744.846964][T18016] ? __pfx___sys_sendmsg+0x10/0x10 [ 744.846997][T18016] ? __pfx_ksys_write+0x10/0x10 [ 744.847024][T18016] __do_fast_syscall_32+0xde/0x660 [ 744.847052][T18016] do_fast_syscall_32+0x32/0x70 [ 744.847075][T18016] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 744.847090][T18016] RIP: 0023:0xf7f02579 [ 744.847099][T18016] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 744.847110][T18016] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 744.847122][T18016] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000580 [ 744.847129][T18016] RDX: 0000000004000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 744.847135][T18016] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 744.847142][T18016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 744.847148][T18016] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 744.847162][T18016] [ 745.180487][T11582] usb 10-1: new low-speed USB device number 25 using dummy_hcd [ 745.278563][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.281104][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.283463][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.285831][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.288171][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.290762][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.294957][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.297416][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.299974][ T53] hid-generic 0103:0004:0000.0031: unknown main item tag 0x0 [ 745.317311][ T53] hid-generic 0103:0004:0000.0031: hidraw1: HID v0.02 Device [syz0] on syz1 [ 745.333133][T11582] usb 10-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 745.336050][T11582] usb 10-1: config 1 has no interface number 1 [ 745.338033][T11582] usb 10-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 745.342435][T11582] usb 10-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 1023, setting to 0 [ 745.859224][ T6240] usb 48-1: device descriptor read/8, error -110 [ 745.889892][T18020] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 745.942174][T18029] netlink: 'syz.2.3044': attribute type 1 has an invalid length. [ 745.952917][T18029] bond3: entered promiscuous mode [ 745.954772][T18029] 8021q: adding VLAN 0 to HW filter on device bond3 [ 745.986934][T18020] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 746.002338][T18029] 8021q: adding VLAN 0 to HW filter on device bond3 [ 746.005451][T18029] bond3: (slave xfrm1): The slave device specified does not support setting the MAC address [ 746.009988][T18029] bond3: (slave xfrm1): Setting fail_over_mac to active for active-backup mode [ 746.016384][T18029] bond3: (slave xfrm1): making interface the new active one [ 746.019852][T18029] xfrm1: entered promiscuous mode [ 746.023362][T18029] bond3: (slave xfrm1): Enslaving as an active interface with an up link [ 746.056409][T18020] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 746.114503][T18020] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 746.190420][T17430] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 746.196893][T17430] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 746.204418][T17430] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 746.211445][T17430] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 746.251677][ T6240] usb usb48-port1: attempt power cycle [ 747.162774][ T6240] usb usb48-port1: unable to enumerate USB device [ 747.991009][T11582] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 747.993862][T11582] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 747.996415][T11582] usb 10-1: Product: à – [ 747.997808][T11582] usb 10-1: Manufacturer: á„ [ 748.285690][T18066] wlan1 speed is unknown, defaulting to 1000 [ 748.379660][T11582] usb 10-1: can't set config #1, error -71 [ 748.382379][T11582] usb 10-1: USB disconnect, device number 25 [ 748.415282][ T40] audit: type=1326 audit(2000000012.430:9309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 748.435950][ T40] audit: type=1326 audit(2000000012.430:9310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 748.444318][ T40] audit: type=1326 audit(2000000012.450:9311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=138 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 748.453888][ T40] audit: type=1326 audit(2000000012.450:9312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 748.475905][ T40] audit: type=1326 audit(2000000012.450:9313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 748.485164][ T40] audit: type=1326 audit(2000000012.450:9314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf720572b code=0x7ffc0000 [ 748.494200][ T40] audit: type=1326 audit(2000000012.450:9315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 748.503315][ T40] audit: type=1326 audit(2000000012.450:9316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 748.511766][ T40] audit: type=1326 audit(2000000012.450:9317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 748.520508][ T40] audit: type=1326 audit(2000000012.450:9318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18069 comm="syz.3.3054" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf720572b code=0x7ffc0000 [ 748.520693][T18070] nbd1: detected capacity change from 0 to 127 [ 748.538769][ T64] block nbd1: Receive control failed (result -104) [ 749.697207][ T6240] libceph: connect (1)[c::]:6789 error -101 [ 749.727157][ T6240] libceph: mon0 (1)[c::]:6789 connect error [ 750.041040][ T6240] libceph: connect (1)[c::]:6789 error -101 [ 750.143484][T18101] ceph: No mds server is up or the cluster is laggy [ 750.689509][ T6240] libceph: mon0 (1)[c::]:6789 connect error [ 751.124201][T18124] 8021q: adding VLAN 0 to HW filter on device bond2 [ 751.293300][ T1418] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.884506][T18140] netlink: 7064 bytes leftover after parsing attributes in process `syz.4.3071'. [ 752.887424][T18140] openvswitch: netlink: Flow actions attr not present in new flow. [ 752.998708][T18142] wlan1 speed is unknown, defaulting to 1000 [ 753.316862][T18147] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3073'. [ 753.822388][T18150] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3074'. [ 753.825283][T18150] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3074'. [ 754.194564][T18164] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.3076'. [ 754.197465][T18164] openvswitch: netlink: Flow actions attr not present in new flow. [ 755.450151][T18175] FAULT_INJECTION: forcing a failure. [ 755.450151][T18175] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 755.455386][T18175] CPU: 0 UID: 0 PID: 18175 Comm: syz.3.3082 Tainted: G L syzkaller #0 PREEMPT(full) [ 755.455404][T18175] Tainted: [L]=SOFTLOCKUP [ 755.455408][T18175] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 755.455415][T18175] Call Trace: [ 755.455418][T18175] [ 755.455423][T18175] dump_stack_lvl+0x100/0x190 [ 755.455457][T18175] should_fail_ex.cold+0x5/0xa [ 755.455476][T18175] _copy_from_user+0x2e/0xd0 [ 755.455501][T18175] cmsghdr_from_user_compat_to_kern+0x354/0x7d0 [ 755.455533][T18175] ? __pfx_cmsghdr_from_user_compat_to_kern+0x10/0x10 [ 755.455550][T18175] ? __import_iovec+0x1d2/0x640 [ 755.455570][T18175] ____sys_sendmsg+0x607/0xc30 [ 755.455584][T18175] ? __pfx_____sys_sendmsg+0x10/0x10 [ 755.455603][T18175] ___sys_sendmsg+0x190/0x1e0 [ 755.455616][T18175] ? __pfx____sys_sendmsg+0x10/0x10 [ 755.455645][T18175] __sys_sendmsg+0x170/0x220 [ 755.455662][T18175] ? __pfx___sys_sendmsg+0x10/0x10 [ 755.455683][T18175] ? __pfx_ksys_write+0x10/0x10 [ 755.455700][T18175] __do_fast_syscall_32+0xde/0x660 [ 755.455716][T18175] do_fast_syscall_32+0x32/0x70 [ 755.455730][T18175] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 755.455745][T18175] RIP: 0023:0xf749d579 [ 755.455754][T18175] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 755.455765][T18175] RSP: 002b:00000000f54c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 755.455776][T18175] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080 [ 755.455783][T18175] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 755.455790][T18175] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 755.455796][T18175] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 755.455802][T18175] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 755.455816][T18175] [ 755.820586][T18190] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.3087'. [ 755.823714][T18190] openvswitch: netlink: Flow actions attr not present in new flow. [ 756.364352][T18204] netlink: 7064 bytes leftover after parsing attributes in process `syz.4.3090'. [ 756.367329][T18204] openvswitch: netlink: Flow actions attr not present in new flow. [ 756.828935][T18216] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3095'. [ 757.000197][T18222] netlink: 'syz.4.3097': attribute type 1 has an invalid length. [ 757.013167][T18222] bond0: entered promiscuous mode [ 757.015176][T18222] 8021q: adding VLAN 0 to HW filter on device bond0 [ 757.210867][T18231] wlan1 speed is unknown, defaulting to 1000 [ 757.330374][T11582] usb 9-1: new full-speed USB device number 21 using dummy_hcd [ 757.511918][T11582] usb 9-1: config index 0 descriptor too short (expected 9, got 0) [ 757.514807][T11582] usb 9-1: can't read configurations, error -22 [ 757.640461][T11582] usb 9-1: new full-speed USB device number 22 using dummy_hcd [ 757.801949][T11582] usb 9-1: config index 0 descriptor too short (expected 9, got 0) [ 757.804678][T11582] usb 9-1: can't read configurations, error -22 [ 757.806977][T11582] usb usb9-port1: attempt power cycle [ 758.146164][T18238] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3101'. [ 758.164632][ T40] kauditd_printk_skb: 15 callbacks suppressed [ 758.164675][ T40] audit: type=1326 audit(2000000022.180:9334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18234 comm="syz.5.3100" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f07579 code=0x0 [ 759.059779][T11582] usb 9-1: new full-speed USB device number 23 using dummy_hcd [ 759.082245][T11582] usb 9-1: config index 0 descriptor too short (expected 9, got 0) [ 759.084820][T11582] usb 9-1: can't read configurations, error -22 [ 759.210374][T11582] usb 9-1: new full-speed USB device number 24 using dummy_hcd [ 759.234093][T11582] usb 9-1: config index 0 descriptor too short (expected 9, got 0) [ 759.236714][T11582] usb 9-1: can't read configurations, error -22 [ 759.238995][T11582] usb usb9-port1: unable to enumerate USB device [ 759.586655][T18261] btrfs: Unknown parameter 'barriert/tun' [ 759.637244][T18261] kvm: Disabled LAPIC found during irq injection [ 759.642840][T18261] syzkaller0: entered promiscuous mode [ 759.645757][T18261] syzkaller0: entered allmulticast mode [ 759.856396][ T64] Bluetooth: unknown link type 128 [ 760.681997][ T40] audit: type=1326 audit(2000000024.700:9335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18284 comm="syz.3.3115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 760.691249][ T40] audit: type=1326 audit(2000000024.700:9336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18284 comm="syz.3.3115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 760.700200][ T40] audit: type=1326 audit(2000000024.700:9337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18284 comm="syz.3.3115" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 760.710789][ T40] audit: type=1326 audit(2000000024.700:9338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18284 comm="syz.3.3115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 760.719791][ T40] audit: type=1326 audit(2000000024.700:9339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18284 comm="syz.3.3115" exe="/syz-executor" sig=0 arch=40000003 syscall=439 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 760.732607][ T40] audit: type=1326 audit(2000000024.700:9340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18284 comm="syz.3.3115" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749d579 code=0x7ffc0000 [ 761.072574][T18295] syzkaller0: entered promiscuous mode [ 761.074823][T18295] syzkaller0: entered allmulticast mode [ 761.816924][T18313] bridge0: port 2(bridge_slave_1) entered disabled state [ 761.819380][T18313] bridge0: port 1(bridge_slave_0) entered disabled state [ 761.905809][T18313] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 761.912163][T18313] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 761.930359][T11475] Bluetooth: hci1: command 0x0c1a tx timeout [ 761.954184][T18313] batman_adv: batadv0: Interface deactivated: virt_wifi0 [ 762.408595][T18313] batman_adv: batadv0: Interface deactivated: gretap1 [ 762.413899][T18313] batman_adv: batadv0: Interface deactivated: gretap2 [ 762.430425][T17430] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 762.433455][T17430] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 762.446197][T17430] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 762.460339][T17430] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 763.220510][ T64] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 763.224008][T11475] Bluetooth: hci2: command 0x1003 tx timeout [ 763.442593][T18330] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.3126'. [ 763.445562][T18330] openvswitch: netlink: Flow actions attr not present in new flow. [ 763.822815][T11475] Bluetooth: hci2: sending frame failed (-49) [ 763.825418][ T64] Bluetooth: hci2: Opcode 0x1003 failed: -49 [ 764.130058][T11248] block nbd0: Possible stuck request ffff888026410000: control (read@0,4096B). Runtime 120 seconds [ 764.134693][T18047] usb 10-1: new full-speed USB device number 26 using dummy_hcd [ 764.341328][T18047] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 764.345071][T18047] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 764.348562][T18047] usb 10-1: config 0 interface 0 has no altsetting 0 [ 764.373996][T18047] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 764.376863][T18047] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 764.379429][T18047] usb 10-1: Product: syz [ 764.390409][T18047] usb 10-1: Manufacturer: syz [ 764.391946][T18047] usb 10-1: SerialNumber: syz [ 764.395613][T18047] usb 10-1: config 0 descriptor?? [ 764.400074][T18047] usb 10-1: selecting invalid altsetting 0 [ 764.462646][ T64] Bluetooth: hci5: Invalid handle: 0x20c9 > 0x0eff [ 765.618672][T18364] bond4: entered promiscuous mode [ 765.621033][T18364] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3136'. [ 765.624616][T18364] bridge0: port 3(syz_tun) entered blocking state [ 765.626751][T18364] bridge0: port 3(syz_tun) entered disabled state [ 765.628800][T18364] syz_tun: entered allmulticast mode [ 765.632841][T18364] syz_tun: entered promiscuous mode [ 765.634987][T18364] bridge0: port 3(syz_tun) entered blocking state [ 765.637127][T18364] bridge0: port 3(syz_tun) entered forwarding state [ 765.753163][T18365] netlink: 'syz.2.3136': attribute type 10 has an invalid length. [ 765.756859][T18365] bridge0: port 3(syz_tun) entered disabled state [ 765.759301][T18365] bridge0: port 2(bridge_slave_1) entered disabled state [ 765.761713][T18365] bridge0: port 1(bridge_slave_0) entered disabled state [ 765.764295][T18364] netlink: 'syz.2.3136': attribute type 10 has an invalid length. [ 766.621793][T18384] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.3138'. [ 766.625767][T18384] openvswitch: netlink: Flow actions attr not present in new flow. [ 766.906733][T18388] FAULT_INJECTION: forcing a failure. [ 766.906733][T18388] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 766.911238][T18388] CPU: 0 UID: 0 PID: 18388 Comm: syz.4.3142 Tainted: G L syzkaller #0 PREEMPT(full) [ 766.911257][T18388] Tainted: [L]=SOFTLOCKUP [ 766.911261][T18388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 766.911268][T18388] Call Trace: [ 766.911273][T18388] [ 766.911278][T18388] dump_stack_lvl+0x100/0x190 [ 766.911296][T18388] should_fail_ex.cold+0x5/0xa [ 766.911315][T18388] _copy_to_user+0x32/0xd0 [ 766.911333][T18388] simple_read_from_buffer+0xcb/0x170 [ 766.911346][T18388] proc_fail_nth_read+0x1af/0x230 [ 766.911360][T18388] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 766.911375][T18388] ? rw_verify_area+0xce/0x6d0 [ 766.911386][T18388] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 766.911399][T18388] vfs_read+0x1e4/0xb30 [ 766.911413][T18388] ? __pfx_vfs_read+0x10/0x10 [ 766.911424][T18388] ? find_held_lock+0x2b/0x80 [ 766.911440][T18388] ? __fget_files+0x215/0x3d0 [ 766.911454][T18388] ? __fget_files+0x21f/0x3d0 [ 766.911470][T18388] ksys_read+0x12a/0x250 [ 766.911483][T18388] ? __pfx_ksys_read+0x10/0x10 [ 766.911499][T18388] do_int80_emulation+0x101/0x470 [ 766.911516][T18388] asm_int80_emulation+0x1a/0x20 [ 766.911527][T18388] RIP: 0023:0xf715572b [ 766.911536][T18388] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53 [ 766.911548][T18388] RSP: 002b:00000000f53f54bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 766.911559][T18388] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f53f55d0 [ 766.911566][T18388] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000 [ 766.911572][T18388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 766.911578][T18388] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 766.911585][T18388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 766.911599][T18388] [ 767.006604][T18047] usb 10-1: USB disconnect, device number 26 [ 767.034222][T18390] vlan2: entered promiscuous mode [ 767.036415][T18390] bridge0: entered promiscuous mode [ 767.706437][T18407] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.3149'. [ 767.709293][T18407] openvswitch: netlink: Flow actions attr not present in new flow. [ 767.769291][T11582] IPVS: starting estimator thread 0... [ 767.865323][T18420] syzkaller0: entered promiscuous mode [ 767.867564][T18420] syzkaller0: entered allmulticast mode [ 767.870735][T18416] IPVS: using max 42 ests per chain, 100800 per kthread [ 767.882881][T18420] xt_hashlimit: overflow, try lower: 60585/0 [ 768.111746][T18429] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.3155'. [ 768.115029][T18429] openvswitch: netlink: Flow actions attr not present in new flow. [ 768.291685][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.294291][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.296988][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.299551][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.304611][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.308825][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.320332][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.323120][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.325585][ T60] hid-generic 0103:0004:0000.0032: unknown main item tag 0x0 [ 768.331159][ T60] hid-generic 0103:0004:0000.0032: hidraw1: HID v0.02 Device [syz0] on syz1 [ 768.373702][T18436] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3159'. [ 768.716599][T18453] bond3 (unregistering): Released all slaves [ 769.141295][ T40] audit: type=1326 audit(2000000033.150:9341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.202239][T18469] netlink: 'syz.2.3169': attribute type 1 has an invalid length. [ 769.215514][T18469] bond5: entered promiscuous mode [ 769.217478][T18469] 8021q: adding VLAN 0 to HW filter on device bond5 [ 769.265861][ T40] audit: type=1326 audit(2000000033.280:9342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.274514][ T40] audit: type=1326 audit(2000000033.280:9343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.282238][ T40] audit: type=1326 audit(2000000033.280:9344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.289553][ T40] audit: type=1326 audit(2000000033.280:9345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf710572b code=0x7ffc0000 [ 769.297509][ T40] audit: type=1326 audit(2000000033.280:9346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.305203][ T40] audit: type=1326 audit(2000000033.280:9347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.312796][ T40] audit: type=1326 audit(2000000033.280:9348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.320606][ T40] audit: type=1326 audit(2000000033.300:9349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.327635][ T40] audit: type=1326 audit(2000000033.310:9350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18455 comm="syz.5.3165" exe="/syz-executor" sig=0 arch=40000003 syscall=242 compat=1 ip=0xf7f07579 code=0x7ffc0000 [ 769.629406][T18464] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 770.716247][T18487] wlan1 speed is unknown, defaulting to 1000 [ 771.321061][T18505] wlan1 speed is unknown, defaulting to 1000 [ 772.475310][T18515] netlink: 'syz.2.3179': attribute type 10 has an invalid length. [ 772.483199][T18515] syz_tun: left allmulticast mode [ 772.485358][T18515] syz_tun: left promiscuous mode [ 772.487474][T18515] bridge0: port 3(syz_tun) entered disabled state [ 772.503637][T18515] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 772.631749][T18517] FAULT_INJECTION: forcing a failure. [ 772.631749][T18517] name failslab, interval 1, probability 0, space 0, times 0 [ 772.635722][T18517] CPU: 1 UID: 0 PID: 18517 Comm: syz.3.3180 Tainted: G L syzkaller #0 PREEMPT(full) [ 772.635751][T18517] Tainted: [L]=SOFTLOCKUP [ 772.635756][T18517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 772.635762][T18517] Call Trace: [ 772.635767][T18517] [ 772.635771][T18517] dump_stack_lvl+0x100/0x190 [ 772.635806][T18517] should_fail_ex.cold+0x5/0xa [ 772.635824][T18517] should_failslab+0xc2/0x120 [ 772.635840][T18517] kmem_cache_alloc_node_noprof+0x8c/0x880 [ 772.635857][T18517] ? __alloc_skb+0x156/0x410 [ 772.635879][T18517] ? __alloc_skb+0x35d/0x410 [ 772.635896][T18517] ? __alloc_skb+0x156/0x410 [ 772.635910][T18517] __alloc_skb+0x156/0x410 [ 772.635924][T18517] ? __alloc_skb+0x35d/0x410 [ 772.635938][T18517] ? __pfx___alloc_skb+0x10/0x10 [ 772.635954][T18517] ? apparmor_capable+0x1d7/0x4e0 [ 772.635975][T18517] ? __lock_acquire+0x4a5/0x2630 [ 772.635992][T18517] netlink_alloc_large_skb+0x69/0x150 [ 772.636012][T18517] netlink_sendmsg+0x680/0xda0 [ 772.636032][T18517] ? __pfx_netlink_sendmsg+0x10/0x10 [ 772.636056][T18517] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 772.636077][T18517] ____sys_sendmsg+0xa54/0xc30 [ 772.636095][T18517] ? __pfx_____sys_sendmsg+0x10/0x10 [ 772.636120][T18517] ___sys_sendmsg+0x190/0x1e0 [ 772.636134][T18517] ? __pfx____sys_sendmsg+0x10/0x10 [ 772.636164][T18517] __sys_sendmsg+0x170/0x220 [ 772.636181][T18517] ? __pfx___sys_sendmsg+0x10/0x10 [ 772.636202][T18517] ? __pfx_ksys_write+0x10/0x10 [ 772.636218][T18517] __do_fast_syscall_32+0xde/0x660 [ 772.636235][T18517] do_fast_syscall_32+0x32/0x70 [ 772.636249][T18517] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 772.636263][T18517] RIP: 0023:0xf749d579 [ 772.636273][T18517] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 772.636284][T18517] RSP: 002b:00000000f54c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 772.636295][T18517] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000140 [ 772.636302][T18517] RDX: 0000000004000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 772.636309][T18517] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 772.636315][T18517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 772.636322][T18517] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 772.636336][T18517] [ 774.066153][T18542] netlink: 'syz.3.3187': attribute type 1 has an invalid length. [ 774.089230][T18542] bond3: entered promiscuous mode [ 774.092125][T18542] 8021q: adding VLAN 0 to HW filter on device bond3 [ 774.286439][ T53] kernel write not supported for file /input/event1 (pid: 53 comm: kworker/3:1) [ 774.340510][T17935] usb 8-1: new full-speed USB device number 66 using dummy_hcd [ 774.438801][T18552] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 774.491945][T17935] usb 8-1: config index 0 descriptor too short (expected 9, got 0) [ 774.495057][T17935] usb 8-1: can't read configurations, error -22 [ 774.620347][T17935] usb 8-1: new full-speed USB device number 67 using dummy_hcd [ 774.734523][T18558] netlink: 'syz.2.3191': attribute type 1 has an invalid length. [ 774.757242][T18558] bond6: entered promiscuous mode [ 774.759150][T18558] 8021q: adding VLAN 0 to HW filter on device bond6 [ 774.783476][T17935] usb 8-1: config index 0 descriptor too short (expected 9, got 0) [ 774.787272][T17935] usb 8-1: can't read configurations, error -22 [ 774.796880][T17935] usb usb8-port1: attempt power cycle [ 775.140394][T17935] usb 8-1: new full-speed USB device number 68 using dummy_hcd [ 775.162853][T17935] usb 8-1: config index 0 descriptor too short (expected 9, got 0) [ 775.166367][T17935] usb 8-1: can't read configurations, error -22 [ 775.310430][T17935] usb 8-1: new full-speed USB device number 69 using dummy_hcd [ 775.343098][T17935] usb 8-1: config index 0 descriptor too short (expected 9, got 0) [ 775.346469][T17935] usb 8-1: can't read configurations, error -22 [ 775.360402][T17935] usb usb8-port1: unable to enumerate USB device [ 776.411593][T18572] ALSA: seq fatal error: cannot create timer (-19) [ 776.418901][T18572] ALSA: seq fatal error: cannot create timer (-19) [ 778.830528][T11248] block nbd1: Possible stuck request ffff888026450000: control (read@0,1024B). Runtime 30 seconds [ 778.833870][T11248] block nbd1: Possible stuck request ffff888026450200: control (read@1024,1024B). Runtime 30 seconds [ 778.837576][T11248] block nbd1: Possible stuck request ffff888026450400: control (read@2048,1024B). Runtime 30 seconds [ 778.841433][T11248] block nbd1: Possible stuck request ffff888026450600: control (read@3072,1024B). Runtime 30 seconds [ 779.501100][T18628] netlink: 'syz.5.3209': attribute type 1 has an invalid length. [ 779.512051][T18628] bond3: entered promiscuous mode [ 779.514080][T18628] 8021q: adding VLAN 0 to HW filter on device bond3 [ 779.537050][T18628] 8021q: adding VLAN 0 to HW filter on device bond3 [ 779.539466][T18628] bond3: (slave xfrm1): The slave device specified does not support setting the MAC address [ 779.542853][T18628] bond3: (slave xfrm1): Setting fail_over_mac to active for active-backup mode [ 779.548492][T18628] bond3: (slave xfrm1): making interface the new active one [ 779.551185][T18628] xfrm1: entered promiscuous mode [ 779.553494][T18628] bond3: (slave xfrm1): Enslaving as an active interface with an up link [ 779.800920][ T60] usb 10-1: new full-speed USB device number 27 using dummy_hcd [ 779.962135][ T60] usb 10-1: config index 0 descriptor too short (expected 9, got 0) [ 779.964861][ T60] usb 10-1: can't read configurations, error -22 [ 780.090964][ T60] usb 10-1: new full-speed USB device number 28 using dummy_hcd [ 780.284232][ T60] usb 10-1: config index 0 descriptor too short (expected 9, got 0) [ 780.287647][ T60] usb 10-1: can't read configurations, error -22 [ 780.292543][ T60] usb usb10-port1: attempt power cycle [ 780.640552][ T60] usb 10-1: new full-speed USB device number 29 using dummy_hcd [ 780.662600][ T60] usb 10-1: config index 0 descriptor too short (expected 9, got 0) [ 780.665238][ T60] usb 10-1: can't read configurations, error -22 [ 780.790754][ T60] usb 10-1: new full-speed USB device number 30 using dummy_hcd [ 780.813312][ T60] usb 10-1: config index 0 descriptor too short (expected 9, got 0) [ 780.816464][ T60] usb 10-1: can't read configurations, error -22 [ 780.818887][ T60] usb usb10-port1: unable to enumerate USB device [ 782.096559][T18677] netlink: 7064 bytes leftover after parsing attributes in process `syz.4.3222'. [ 782.100468][T18677] openvswitch: netlink: Flow actions attr not present in new flow. [ 783.319918][T18691] wlan1 speed is unknown, defaulting to 1000 [ 783.472169][T18691] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3225'. [ 783.801204][T18699] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3228'. [ 783.875411][T18699] wlan1 speed is unknown, defaulting to 1000 [ 786.402066][T18722] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.3233'. [ 786.405023][T18722] openvswitch: netlink: Flow actions attr not present in new flow. [ 787.286327][T18748] wlan1 speed is unknown, defaulting to 1000 [ 787.331725][T18749] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3240'. [ 787.444462][T18744] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3242'. [ 788.872501][T18771] netlink: 7064 bytes leftover after parsing attributes in process `syz.4.3249'. [ 788.875476][T18771] openvswitch: netlink: Flow actions attr not present in new flow. [ 790.044878][T18788] comedi comedi2: dmm32at: I/O port conflict (0xfffffffffffffff9,16) [ 790.839717][T18813] FAULT_INJECTION: forcing a failure. [ 790.839717][T18813] name failslab, interval 1, probability 0, space 0, times 0 [ 790.846276][T18813] CPU: 2 UID: 0 PID: 18813 Comm: syz.4.3261 Tainted: G L syzkaller #0 PREEMPT(full) [ 790.846303][T18813] Tainted: [L]=SOFTLOCKUP [ 790.846309][T18813] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 790.846319][T18813] Call Trace: [ 790.846324][T18813] [ 790.846329][T18813] dump_stack_lvl+0x100/0x190 [ 790.846373][T18813] should_fail_ex.cold+0x5/0xa [ 790.846414][T18813] should_failslab+0xc2/0x120 [ 790.846436][T18813] __kmalloc_cache_noprof+0x80/0x810 [ 790.846456][T18813] ? tc_new_tfilter+0xdb0/0x23b0 [ 790.846486][T18813] ? tc_new_tfilter+0xdb0/0x23b0 [ 790.846502][T18813] tc_new_tfilter+0xdb0/0x23b0 [ 790.846520][T18813] ? write_profile+0xc0/0x150 [ 790.846546][T18813] ? orc_sort_cmp+0xf0/0x120 [ 790.846567][T18813] ? arch_stack_walk+0xa6/0xf0 [ 790.846587][T18813] ? __pfx_tc_new_tfilter+0x10/0x10 [ 790.846615][T18813] ? __lock_acquire+0x4a5/0x2630 [ 790.846653][T18813] ? find_held_lock+0x2b/0x80 [ 790.846672][T18813] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 790.846700][T18813] ? __pfx_tc_new_tfilter+0x10/0x10 [ 790.846719][T18813] rtnetlink_rcv_msg+0x95e/0xe90 [ 790.846748][T18813] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 790.846780][T18813] ? __lock_acquire+0x4a5/0x2630 [ 790.846810][T18813] netlink_rcv_skb+0x159/0x420 [ 790.846837][T18813] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 790.846866][T18813] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 790.846903][T18813] ? netlink_deliver_tap+0x1ae/0xcc0 [ 790.846935][T18813] netlink_unicast+0x5aa/0x870 [ 790.846966][T18813] ? __pfx_netlink_unicast+0x10/0x10 [ 790.847002][T18813] netlink_sendmsg+0x8b0/0xda0 [ 790.847035][T18813] ? __pfx_netlink_sendmsg+0x10/0x10 [ 790.847066][T18813] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 790.847101][T18813] ____sys_sendmsg+0xa54/0xc30 [ 790.847125][T18813] ? __pfx_____sys_sendmsg+0x10/0x10 [ 790.847159][T18813] ___sys_sendmsg+0x190/0x1e0 [ 790.847181][T18813] ? __pfx____sys_sendmsg+0x10/0x10 [ 790.847240][T18813] __sys_sendmsg+0x170/0x220 [ 790.847268][T18813] ? __pfx___sys_sendmsg+0x10/0x10 [ 790.847302][T18813] ? __pfx_ksys_write+0x10/0x10 [ 790.847323][T18813] ? fput+0x79/0x100 [ 790.847349][T18813] __do_fast_syscall_32+0xde/0x660 [ 790.847376][T18813] do_fast_syscall_32+0x32/0x70 [ 790.847400][T18813] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 790.847423][T18813] RIP: 0023:0xf73ed579 [ 790.847437][T18813] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 790.847454][T18813] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 790.847473][T18813] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000700 [ 790.847483][T18813] RDX: 0000000024040084 RSI: 0000000000000000 RDI: 0000000000000000 [ 790.847493][T18813] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 790.847504][T18813] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 790.847514][T18813] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 790.847535][T18813] [ 790.976399][T18815] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2 [ 790.981940][T18815] batman_adv: batadv0: Adding interface: gretap2 [ 790.984176][T18815] batman_adv: batadv0: The MTU of interface gretap2 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 790.992198][T18815] batman_adv: batadv0: Interface activated: gretap2 [ 791.586369][T18828] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3267'. [ 791.589400][T18828] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3267'. [ 791.727218][T18832] wlan1 speed is unknown, defaulting to 1000 [ 791.820157][T18832] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3268'. [ 791.836020][T18836] FAULT_INJECTION: forcing a failure. [ 791.836020][T18836] name failslab, interval 1, probability 0, space 0, times 0 [ 791.840171][T18836] CPU: 1 UID: 0 PID: 18836 Comm: syz.2.3270 Tainted: G L syzkaller #0 PREEMPT(full) [ 791.840189][T18836] Tainted: [L]=SOFTLOCKUP [ 791.840193][T18836] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 791.840200][T18836] Call Trace: [ 791.840205][T18836] [ 791.840210][T18836] dump_stack_lvl+0x100/0x190 [ 791.840228][T18836] should_fail_ex.cold+0x5/0xa [ 791.840243][T18836] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 791.840269][T18836] should_failslab+0xc2/0x120 [ 791.840286][T18836] kmem_cache_alloc_noprof+0x83/0x780 [ 791.840301][T18836] ? skb_clone+0x190/0x400 [ 791.840321][T18836] ? skb_clone+0x190/0x400 [ 791.840337][T18836] skb_clone+0x190/0x400 [ 791.840354][T18836] netlink_deliver_tap+0xaed/0xcc0 [ 791.840374][T18836] netlink_unicast+0x650/0x870 [ 791.840394][T18836] ? __pfx_netlink_unicast+0x10/0x10 [ 791.840418][T18836] netlink_sendmsg+0x8b0/0xda0 [ 791.840437][T18836] ? __pfx_netlink_sendmsg+0x10/0x10 [ 791.840457][T18836] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 791.840474][T18836] ____sys_sendmsg+0xa54/0xc30 [ 791.840489][T18836] ? __pfx_____sys_sendmsg+0x10/0x10 [ 791.840504][T18836] ? _parse_integer_limit+0x17f/0x1d0 [ 791.840519][T18836] ? _kstrtoull+0x13c/0x1f0 [ 791.840531][T18836] ? __pfx__kstrtoull+0x10/0x10 [ 791.840545][T18836] ___sys_sendmsg+0x190/0x1e0 [ 791.840559][T18836] ? __pfx____sys_sendmsg+0x10/0x10 [ 791.840572][T18836] ? __lock_acquire+0x4a5/0x2630 [ 791.840593][T18836] ? find_held_lock+0x2b/0x80 [ 791.840613][T18836] __sys_sendmmsg+0x2ff/0x430 [ 791.840632][T18836] ? __pfx___sys_sendmmsg+0x10/0x10 [ 791.840653][T18836] ? __fget_files+0x215/0x3d0 [ 791.840673][T18836] ? fput+0x79/0x100 [ 791.840688][T18836] ? ksys_write+0x1ac/0x250 [ 791.840700][T18836] ? __pfx_ksys_write+0x10/0x10 [ 791.840714][T18836] __ia32_compat_sys_sendmmsg+0x9d/0x100 [ 791.840731][T18836] ? lockdep_hardirqs_on+0x78/0x100 [ 791.840744][T18836] __do_fast_syscall_32+0xde/0x660 [ 791.840760][T18836] do_fast_syscall_32+0x32/0x70 [ 791.840775][T18836] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 791.840789][T18836] RIP: 0023:0xf7f02579 [ 791.840798][T18836] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 791.840809][T18836] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000159 [ 791.840820][T18836] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000000 [ 791.840827][T18836] RDX: 0000000000000235 RSI: 0000000000000000 RDI: 0000000000000000 [ 791.840834][T18836] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 791.840840][T18836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 791.840847][T18836] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 791.840861][T18836] [ 791.936435][T13178] usb 9-1: new high-speed USB device number 25 using dummy_hcd [ 791.957405][T18836] netlink: 'syz.2.3270': attribute type 9 has an invalid length. [ 791.970419][T18836] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3270'. [ 792.008966][T18839] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7) [ 792.011038][T18839] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 792.043455][T18839] vhci_hcd vhci_hcd.0: Device attached [ 792.082943][T13178] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 792.087537][T13178] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 792.090850][T13178] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 792.093981][T13178] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 792.120880][T18828] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 792.132884][T13178] usb 9-1: Quirk or no altset; falling back to MIDI 1.0 [ 792.171198][T18841] vhci_hcd: connection closed [ 792.171593][ T13] vhci_hcd vhci_hcd.5: stop threads [ 792.175744][ T13] vhci_hcd vhci_hcd.5: release socket [ 792.178101][ T13] vhci_hcd vhci_hcd.5: disconnect device [ 792.178387][T18844] wlan1 speed is unknown, defaulting to 1000 [ 792.240450][ T60] vhci_hcd vhci_hcd.5: vhci_device speed not set [ 792.347904][ T53] usb 9-1: USB disconnect, device number 25 [ 792.584543][T18828] binder: 18827:18828 ioctl c4009420 80000ac0 returned -22 [ 792.588050][T18828] binder: 18827:18828 ioctl c4009420 800012c0 returned -22 [ 793.356948][T18868] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3278'. [ 793.663041][T18878] netlink: 7064 bytes leftover after parsing attributes in process `syz.2.3279'. [ 793.666042][T18878] openvswitch: netlink: Flow actions attr not present in new flow. [ 793.924099][ T40] kauditd_printk_skb: 3 callbacks suppressed [ 793.924117][ T40] audit: type=1326 audit(2000000057.940:9354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18875 comm="syz.5.3281" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f07579 code=0x0 [ 794.170726][T11248] block nbd0: Possible stuck request ffff888026410000: control (read@0,4096B). Runtime 150 seconds [ 794.500785][T18887] FAULT_INJECTION: forcing a failure. [ 794.500785][T18887] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 794.505681][T18887] CPU: 3 UID: 0 PID: 18887 Comm: syz.4.3285 Tainted: G L syzkaller #0 PREEMPT(full) [ 794.505707][T18887] Tainted: [L]=SOFTLOCKUP [ 794.505714][T18887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 794.505726][T18887] Call Trace: [ 794.505733][T18887] [ 794.505740][T18887] dump_stack_lvl+0x100/0x190 [ 794.505766][T18887] should_fail_ex.cold+0x5/0xa [ 794.505797][T18887] _copy_from_user+0x2e/0xd0 [ 794.505826][T18887] get_compat_msghdr+0xb3/0x4b0 [ 794.505853][T18887] ? __pfx_get_compat_msghdr+0x10/0x10 [ 794.505878][T18887] ? rcu_is_watching+0x12/0xc0 [ 794.505899][T18887] ? __lock_acquire+0x4a5/0x2630 [ 794.505927][T18887] ___sys_recvmsg+0x193/0x1a0 [ 794.505947][T18887] ? __pfx____sys_recvmsg+0x10/0x10 [ 794.505968][T18887] ? find_held_lock+0x2b/0x80 [ 794.505997][T18887] ? __pfx___might_resched+0x10/0x10 [ 794.506030][T18887] do_recvmmsg+0x563/0x760 [ 794.506055][T18887] ? __pfx_do_recvmmsg+0x10/0x10 [ 794.506079][T18887] ? ksys_write+0x190/0x250 [ 794.506100][T18887] ? ksys_write+0x190/0x250 [ 794.506130][T18887] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 794.506179][T18887] __sys_recvmmsg+0x21f/0x270 [ 794.506208][T18887] ? __pfx___sys_recvmmsg+0x10/0x10 [ 794.506237][T18887] ? ksys_write+0x1ac/0x250 [ 794.506259][T18887] __ia32_compat_sys_recvmmsg_time32+0xc4/0x160 [ 794.506288][T18887] ? __do_fast_syscall_32+0x97/0x660 [ 794.506311][T18887] ? lockdep_hardirqs_on+0x78/0x100 [ 794.506332][T18887] __do_fast_syscall_32+0xde/0x660 [ 794.506357][T18887] do_fast_syscall_32+0x32/0x70 [ 794.506382][T18887] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 794.506404][T18887] RIP: 0023:0xf73ed579 [ 794.506419][T18887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 794.506437][T18887] RSP: 002b:00000000f541650c EFLAGS: 00000292 ORIG_RAX: 0000000000000151 [ 794.506455][T18887] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080003700 [ 794.506465][T18887] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000 [ 794.506477][T18887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 794.506491][T18887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 794.506503][T18887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 794.506527][T18887] [ 794.541038][T18889] wlan1 speed is unknown, defaulting to 1000 [ 794.606030][T18893] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3283'. [ 794.851534][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.855456][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.857792][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.860116][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.865590][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.867949][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.872946][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.880641][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.883260][ T60] hid-generic 0103:0004:0000.0033: unknown main item tag 0x0 [ 794.888833][ T60] hid-generic 0103:0004:0000.0033: hidraw1: HID v0.02 Device [syz0] on syz1 [ 795.862713][T18914] netlink: 7064 bytes leftover after parsing attributes in process `syz.4.3290'. [ 795.865690][T18914] openvswitch: netlink: Flow actions attr not present in new flow. [ 796.106778][ T40] audit: type=1326 audit(2000000060.120:9355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18912 comm="syz.3.3292" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf749d579 code=0x0 [ 796.364147][T18922] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only [ 796.368230][T18922] overlayfs: NFS export requires an index dir, falling back to nfs_export=off. [ 796.454029][T18927] overlay: ./file0 is not a directory [ 796.946735][ T53] hid-generic 0103:0004:0000.0034: unknown main item tag 0x0 [ 796.967619][ T53] hid-generic 0103:0004:0000.0034: hidraw1: HID v0.02 Device [syz0] on syz1 [ 797.791434][T18956] tmpfs: Cannot retroactively limit size [ 797.794556][T18956] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3308'. [ 798.085361][T18971] syzkaller1: entered promiscuous mode [ 798.087143][T18971] syzkaller1: entered allmulticast mode [ 798.536633][ T6187] hid-generic 0103:0004:0000.0035: hidraw1: HID v0.02 Device [syz0] on syz1 [ 798.931048][T18991] FAULT_INJECTION: forcing a failure. [ 798.931048][T18991] name failslab, interval 1, probability 0, space 0, times 0 [ 798.954911][T18991] CPU: 0 UID: 0 PID: 18991 Comm: syz.2.3319 Tainted: G L syzkaller #0 PREEMPT(full) [ 798.954931][T18991] Tainted: [L]=SOFTLOCKUP [ 798.954936][T18991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 798.954942][T18991] Call Trace: [ 798.954947][T18991] [ 798.954952][T18991] dump_stack_lvl+0x100/0x190 [ 798.954970][T18991] should_fail_ex.cold+0x5/0xa [ 798.954988][T18991] should_failslab+0xc2/0x120 [ 798.955017][T18991] __kvmalloc_node_noprof+0x101/0xac0 [ 798.955035][T18991] ? seq_read_iter+0x819/0x1270 [ 798.955049][T18991] ? aa_file_perm+0x268/0x1540 [ 798.955070][T18991] ? seq_read_iter+0x819/0x1270 [ 798.955084][T18991] seq_read_iter+0x819/0x1270 [ 798.955102][T18991] ? aa_file_perm+0x277/0x1540 [ 798.955131][T18991] seq_read+0x33b/0x4c0 [ 798.955149][T18991] ? __pfx_seq_read+0x10/0x10 [ 798.955184][T18991] full_proxy_read+0x135/0x1a0 [ 798.955203][T18991] ? __pfx_full_proxy_read+0x10/0x10 [ 798.955221][T18991] vfs_read+0x1e4/0xb30 [ 798.955236][T18991] ? __pfx_vfs_read+0x10/0x10 [ 798.955248][T18991] ? __fget_files+0x215/0x3d0 [ 798.955264][T18991] ? __fget_files+0x21f/0x3d0 [ 798.955281][T18991] ksys_read+0x12a/0x250 [ 798.955293][T18991] ? __pfx_ksys_read+0x10/0x10 [ 798.955305][T18991] ? __pfx_ksys_write+0x10/0x10 [ 798.955321][T18991] __do_fast_syscall_32+0xde/0x660 [ 798.955338][T18991] do_fast_syscall_32+0x32/0x70 [ 798.955353][T18991] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 798.955368][T18991] RIP: 0023:0xf7f02579 [ 798.955377][T18991] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 798.955388][T18991] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000003 [ 798.955400][T18991] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080006380 [ 798.955407][T18991] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000 [ 798.955413][T18991] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 798.955419][T18991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 798.955425][T18991] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 798.955445][T18991] [ 799.760472][ T6011] usb 9-1: new high-speed USB device number 26 using dummy_hcd [ 799.911981][ T6011] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 799.914948][ T6011] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 799.918322][ T6011] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 799.921294][ T6011] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 799.924973][ T6011] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 799.929849][ T6011] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 799.932938][ T6011] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 799.935567][ T6011] usb 9-1: Product: syz [ 799.937057][ T6011] usb 9-1: Manufacturer: syz [ 799.948333][ T6011] cdc_wdm 9-1:1.0: skipping garbage [ 799.951595][ T6011] cdc_wdm 9-1:1.0: skipping garbage [ 799.957579][ T6011] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device [ 799.959881][ T6011] cdc_wdm 9-1:1.0: Unknown control protocol [ 800.440912][ T6240] hid_parser_main: 17 callbacks suppressed [ 800.440927][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.450589][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.452969][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.455343][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.457750][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.460144][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.470156][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.475456][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.480249][ T6240] hid-generic 0103:0004:0000.0036: unknown main item tag 0x0 [ 800.494709][ T6240] hid-generic 0103:0004:0000.0036: hidraw1: HID v0.02 Device [syz0] on syz1 [ 800.709415][T19007] overlay: Unknown parameter 'smackfstransmute' [ 800.715197][ T6011] usb 9-1: USB disconnect, device number 26 [ 800.870387][T11582] usb 8-1: new high-speed USB device number 70 using dummy_hcd [ 801.024620][T11582] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 801.028637][T11582] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 801.032592][T11582] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 801.033932][T19032] hsr0 speed is unknown, defaulting to 1000 [ 801.036166][T11582] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 801.038516][T19032] hsr0 speed is unknown, defaulting to 1000 [ 801.043646][T11582] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 801.046276][T19032] hsr0 speed is unknown, defaulting to 1000 [ 801.047983][T11582] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 801.054503][T11582] usb 8-1: config 0 descriptor?? [ 801.054746][T19032] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 801.069124][T19032] hsr0 speed is unknown, defaulting to 1000 [ 801.072367][T19032] hsr0 speed is unknown, defaulting to 1000 [ 801.074997][T19032] hsr0 speed is unknown, defaulting to 1000 [ 801.078009][T19032] hsr0 speed is unknown, defaulting to 1000 [ 801.081241][T19032] hsr0 speed is unknown, defaulting to 1000 [ 801.913240][T19045] netlink: 7076 bytes leftover after parsing attributes in process `syz.2.3336'. [ 801.916650][T19045] openvswitch: netlink: Flow key attr not present in new flow. [ 803.257989][T11582] usbhid 8-1:0.0: can't add hid device: -71 [ 803.260003][T11582] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 803.278573][T11582] usb 8-1: USB disconnect, device number 70 [ 803.519248][T17430] Bluetooth: hci2: Frame reassembly failed (-84) [ 805.188879][T19097] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3353'. [ 805.318628][T19102] loop2: detected capacity change from 0 to 7 [ 805.325173][T18845] Dev loop2: unable to read RDB block 7 [ 805.327510][T18845] loop2: unable to read partition table [ 805.329862][T18845] loop2: partition table beyond EOD, truncated [ 805.336164][T19102] Dev loop2: unable to read RDB block 7 [ 805.338182][T19102] loop2: unable to read partition table [ 805.342546][T19102] loop2: partition table beyond EOD, truncated [ 805.350321][T19102] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 805.530354][T11475] Bluetooth: hci2: command 0x1003 tx timeout [ 805.533748][ T64] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 806.338851][T19114] netlink: 'syz.5.3359': attribute type 1 has an invalid length. [ 806.350408][T19114] netlink: 'syz.5.3359': attribute type 2 has an invalid length. [ 806.366037][T19114] netlink: 'syz.5.3359': attribute type 1 has an invalid length. [ 806.368462][T19114] netlink: 'syz.5.3359': attribute type 2 has an invalid length. [ 807.537799][T19135] wlan1 speed is unknown, defaulting to 1000 [ 807.541132][T19135] hsr0 speed is unknown, defaulting to 1000 [ 807.702637][T19137] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3364'. [ 808.893364][T11248] block nbd1: Possible stuck request ffff888026450000: control (read@0,1024B). Runtime 60 seconds [ 808.896783][T11248] block nbd1: Possible stuck request ffff888026450200: control (read@1024,1024B). Runtime 60 seconds [ 808.900224][T11248] block nbd1: Possible stuck request ffff888026450400: control (read@2048,1024B). Runtime 60 seconds [ 808.903960][T11248] block nbd1: Possible stuck request ffff888026450600: control (read@3072,1024B). Runtime 60 seconds [ 809.428412][T19165] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3375'. [ 809.442687][T19165] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms) [ 809.460865][T19165] bridge1: entered promiscuous mode [ 809.661906][T19171] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 809.664414][T19171] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 809.667997][T19171] vhci_hcd vhci_hcd.0: Device attached [ 809.807669][T19176] ntfs3(nullb0): Primary boot signature is not NTFS. [ 809.810749][T19176] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00 [ 809.945265][ T60] usb 44-1: SetAddress Request (14) to port 0 [ 809.947785][ T60] usb 44-1: new SuperSpeed USB device number 14 using vhci_hcd [ 810.210360][T19172] vhci_hcd: connection reset by peer [ 810.212698][ T1145] vhci_hcd vhci_hcd.3: stop threads [ 810.214424][ T1145] vhci_hcd vhci_hcd.3: release socket [ 810.216162][ T1145] vhci_hcd vhci_hcd.3: disconnect device [ 810.835003][T19193] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3381'. [ 810.934791][T19193] vxlan0: entered promiscuous mode [ 810.940239][T17430] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 810.943754][T17430] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 810.950490][T17430] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 810.956370][T17430] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 811.082442][T19200] mkiss: ax1: crc mode is auto. [ 811.100237][T19200] fuse: Unknown parameter '' [ 811.944268][T19208] wlan1 speed is unknown, defaulting to 1000 [ 811.949242][T19208] hsr0 speed is unknown, defaulting to 1000 [ 812.019994][T19211] bond0: (slave syz_tun): Releasing backup interface [ 812.026683][T19211] bridge_slave_0: left allmulticast mode [ 812.028524][T19211] bridge_slave_0: left promiscuous mode [ 812.030660][T19211] bridge0: port 1(bridge_slave_0) entered disabled state [ 812.034753][T19211] bridge_slave_1: left allmulticast mode [ 812.036664][T19211] bridge_slave_1: left promiscuous mode [ 812.038532][T19211] bridge0: port 2(bridge_slave_1) entered disabled state [ 812.043683][T19211] bond0: (slave bond_slave_0): Releasing backup interface [ 812.049006][T19211] bond0: (slave bond_slave_1): Releasing backup interface [ 812.056395][T19211] team0: Port device team_slave_0 removed [ 812.063641][T19211] team0: Port device team_slave_1 removed [ 812.065969][T19211] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 812.068336][T19211] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 812.075050][T19211] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 812.077440][T19211] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 812.083522][T19211] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 812.092681][T19202] Bluetooth: MGMT ver 1.23 [ 812.097009][T19212] team0: Mode changed to "loadbalance" [ 812.742075][ T1418] ieee802154 phy0 wpan0: encryption failed: -22 [ 812.846076][T19232] overlay: Unknown parameter '/' [ 812.851152][T19232] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 812.889958][T19232] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type [ 812.893268][T19232] overlayfs: failed to look up (tracing) for ino (-66) [ 814.135359][T19243] block nbd5: shutting down sockets [ 814.814643][ T40] audit: type=1326 audit(2000000078.820:9356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19252 comm="syz.2.3401" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f02579 code=0x0 [ 815.050384][ T60] usb 44-1: device descriptor read/8, error -110 [ 815.330959][T19273] bond4: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 815.336788][T19273] bond4: (slave lo): Enslaving as an active interface with an up link [ 815.341505][T19273] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check. [ 815.370394][ T6011] usb 9-1: new high-speed USB device number 27 using dummy_hcd [ 815.441042][ T60] usb usb44-port1: attempt power cycle [ 815.444584][T19280] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3410'. [ 815.448002][T19280] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3410'. [ 815.534281][ T6011] usb 9-1: Using ep0 maxpacket: 8 [ 815.538761][ T6011] usb 9-1: config index 0 descriptor too short (expected 301, got 45) [ 815.542522][ T6011] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 815.545388][ T6011] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 815.550631][ T6011] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12320, setting to 1024 [ 815.555146][ T6011] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 815.559175][ T6011] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 815.565594][ T6011] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 815.568880][ T6011] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 815.782660][T19271] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 815.788236][T19271] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 815.811151][ T6011] usb 9-1: usb_control_msg returned -32 [ 815.813021][ T6011] usbtmc 9-1:16.0: can't read capabilities [ 816.011300][ T60] usb usb44-port1: unable to enumerate USB device [ 817.014149][T19306] BUG: unable to handle page fault for address: ffff8880976e3000 [ 817.016927][T19306] #PF: supervisor write access in kernel mode [ 817.020331][T19306] #PF: error_code(0x0002) - not-present page [ 817.023513][T19306] PGD 1b401067 P4D 1b401067 PUD 0 [ 817.025589][T19306] Oops: Oops: 0002 [#1] SMP KASAN NOPTI [ 817.027662][T19306] CPU: 3 UID: 0 PID: 19306 Comm: syz.5.3417 Tainted: G L syzkaller #0 PREEMPT(full) [ 817.031917][T19306] Tainted: [L]=SOFTLOCKUP [ 817.033468][T19306] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 817.037319][T19306] RIP: 0010:bond_rr_gen_slave_id+0x92/0x250 [ 817.039737][T19306] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bd 01 00 00 49 8b 84 24 f0 00 00 00 bb 01 00 00 00 <65> 0f c1 18 e8 45 a7 85 fb 83 c3 01 89 d8 5b 5d 41 5c 41 5d 41 5e [ 817.046994][T19306] RSP: 0018:ffffc9000331f598 EFLAGS: 00010246 [ 817.049207][T19306] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc9002b7c6000 [ 817.052441][T19306] RDX: 1ffff1100eafe1ce RSI: ffffffff8680a342 RDI: ffff8880757f0e70 [ 817.055292][T19306] RBP: ffff88804a0ac170 R08: 0000000000000005 R09: 0000000000000001 [ 817.058518][T19306] R10: 0000000000000001 R11: 0000000000000000 R12: ffff8880757f0d80 [ 817.061679][T19306] R13: 0000000000008f00 R14: ffff8880757f0d80 R15: dffffc0000000000 [ 817.064328][T19306] FS: 0000000000000000(0000) GS:ffff8880976e3000(0063) knlGS:00000000f53a5b40 [ 817.067426][T19306] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 817.070173][T19306] CR2: ffff8880976e3000 CR3: 000000004ddd4000 CR4: 0000000000352ef0 [ 817.072968][T19306] DR0: 0000000000000003 DR1: 00000000000001f8 DR2: 000000000000008e [ 817.076049][T19306] DR3: 000000000000057a DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 817.078737][T19306] Call Trace: [ 817.080128][T19306] [ 817.081271][T19306] bond_xdp_get_xmit_slave+0x296/0x660 [ 817.083084][T19306] xdp_master_redirect+0x161/0x330 [ 817.085201][T19306] xdp_test_run_batch.constprop.0+0xc60/0x1ca0 [ 817.087284][T19306] ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10 [ 817.089890][T19306] ? find_held_lock+0x2b/0x80 [ 817.091631][T19306] ? ktime_get+0x1a7/0x300 [ 817.093180][T19306] bpf_test_run_xdp_live+0x367/0x760 [ 817.095361][T19306] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 817.097244][T19306] ? __mutex_unlock_slowpath+0x15c/0x790 [ 817.099519][T19306] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 817.101607][T19306] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 817.103874][T19306] ? bpf_dispatcher_change_prog+0x2d7/0xa60 [ 817.106114][T19306] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 817.107950][T19306] ? bpf_dispatcher_xdp+0x800/0x1000 [ 817.110136][T19306] ? bpf_dispatcher_xdp+0x800/0x1000 [ 817.111802][T19306] ? bpf_dispatcher_xdp+0x800/0x1000 [ 817.113882][T19306] ? bpf_dispatcher_change_prog+0x2dc/0xa60 [ 817.116042][T19306] bpf_prog_test_run_xdp+0xd7d/0x1670 [ 817.117988][T19306] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 817.120247][T19306] ? fput+0x79/0x100 [ 817.121508][T19306] ? __bpf_prog_get+0x97/0x2a0 [ 817.123540][T19306] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 817.125616][T19306] __sys_bpf+0x1e56/0x5050 [ 817.127235][T19306] ? __pfx___sys_bpf+0x10/0x10 [ 817.129206][T19306] ? __pfx_futex_wait+0x10/0x10 [ 817.130789][T19306] ? putname+0xf5/0x1a0 [ 817.132475][T19306] ? do_futex+0x192/0x350 [ 817.134293][T19306] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 817.136224][T19306] __ia32_sys_bpf+0x79/0xf0 [ 817.138132][T19306] ? lockdep_hardirqs_on+0x78/0x100 [ 817.140050][T19306] __do_fast_syscall_32+0xde/0x660 [ 817.141826][T19306] do_fast_syscall_32+0x32/0x70 [ 817.143853][T19306] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 817.146444][T19306] RIP: 0023:0xf7f07579 [ 817.147767][T19306] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 [ 817.155576][T19306] RSP: 002b:00000000f53a550c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 817.158413][T19306] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600 [ 817.161641][T19306] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 817.164863][T19306] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 817.167593][T19306] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 817.170828][T19306] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 817.173632][T19306] [ 817.174892][T19306] Modules linked in: [ 817.176515][T19306] CR2: ffff8880976e3000 [ 817.178249][T19306] ---[ end trace 0000000000000000 ]--- [ 817.180087][T19306] RIP: 0010:bond_rr_gen_slave_id+0x92/0x250 [ 817.182514][T19306] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bd 01 00 00 49 8b 84 24 f0 00 00 00 bb 01 00 00 00 <65> 0f c1 18 e8 45 a7 85 fb 83 c3 01 89 d8 5b 5d 41 5c 41 5d 41 5e [ 817.189747][T19306] RSP: 0018:ffffc9000331f598 EFLAGS: 00010246 [ 817.189768][T19306] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc9002b7c6000 [ 817.189782][T19306] RDX: 1ffff1100eafe1ce RSI: ffffffff8680a342 RDI: ffff8880757f0e70 [ 817.189811][T19306] RBP: ffff88804a0ac170 R08: 0000000000000005 R09: 0000000000000001 [ 817.189822][T19306] R10: 0000000000000001 R11: 0000000000000000 R12: ffff8880757f0d80 [ 817.204593][T19306] R13: 0000000000008f00 R14: ffff8880757f0d80 R15: dffffc0000000000 [ 817.207290][T19306] FS: 0000000000000000(0000) GS:ffff8880976e3000(0063) knlGS:00000000f53a5b40 [ 817.210903][T19306] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 817.213625][T19306] CR2: ffff8880976e3000 CR3: 000000004ddd4000 CR4: 0000000000352ef0 [ 817.216481][T19306] DR0: 0000000000000003 DR1: 00000000000001f8 DR2: 000000000000008e [ 817.219575][T19306] DR3: 000000000000057a DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 817.222771][T19306] Kernel panic - not syncing: Fatal exception in interrupt [ 817.226511][T19306] Kernel Offset: disabled [ 817.228092][T19306] Rebooting in 86400 seconds.. VM DIAGNOSIS: 04:53:54 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=0000000000000000 RCX=00000000000001d9 RDX=0000000000000000 RSI=ffffffff818ba9f2 RDI=ffff88806b600000 RBP=ffffc90003d97b30 RSP=ffffc90003d979b0 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=ffff888044378038 R13=ffff8880443782f8 R14=dffffc0000000000 R15=ffff888044378000 RIP=ffffffff818ba9f9 RFL=00000087 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] FS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] GS =0000 ffff8880973e3000 ffffffff 00c09300 DPL=0 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000ffff IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000006f099000 CR4=00352ef0 DR0=0000000000000003 DR1=00000000000001f8 DR2=000000000000008e DR3=000000000000057a DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=00000000016fbe0c RBX=ffff88801dae24c0 RCX=ffffffff8b7414b5 RDX=0000000000000001 RSI=ffffffff8bfa32a0 RDI=ffffffff81dc352b RBP=0000000000000001 RSP=ffffc9000046fdf0 R8 =0000000000000000 R9 =ffffed100566673d R10=ffff88802b3339eb R11=0000000000000001 R12=ffffed1003b5c498 R13=0000000000000001 R14=ffffffff90b76fd0 R15=0000000000000000 RIP=ffffffff8b73fe1f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c01300 GS =0000 ffff8880974e3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c34b68e CR3=000000006f099000 CR4=00352ef0 DR0=0000000000000003 DR1=00000000000001f8 DR2=000000000000008e DR3=000000000000057a DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000a52044 RBX=ffff88801dae4980 RCX=ffffffff8b7414b5 RDX=0000000000000001 RSI=ffffffff8bfa32a0 RDI=ffffffff81dc352b RBP=0000000000000002 RSP=ffffc9000047fdf0 R8 =0000000000000000 R9 =ffffed100568673d R10=ffff88802b4339eb R11=0000000000000002 R12=ffffed1003b5c930 R13=0000000000000002 R14=ffffffff90b76fd0 R15=0000000000000000 RIP=ffffffff8b73fe1f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c01300 GS =0000 ffff8880975e3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000563d35124f40 CR3=000000006f099000 CR4=00352ef0 DR0=0000000000000003 DR1=00000000000001f8 DR2=000000000000008e DR3=000000000000057a DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000020c00000000 0000000500000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000000005f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85673cb5 RDI=ffffffff9b1f2260 RBP=ffffffff9b1f2220 RSP=ffffc9000331ede8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=727265203a465023 R12=0000000000000000 R13=000000000000005f R14=0000000000000010 R15=ffffffff85673c50 RIP=ffffffff85673cdf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c01300 GS =0063 ffff8880976e3000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=ffff8880976e3000 CR3=000000004ddd4000 CR4=00352ef0 DR0=0000000000000003 DR1=00000000000001f8 DR2=000000000000008e DR3=000000000000057a DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000037400000000 0000000300000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000