last executing test programs:

4.503338367s ago: executing program 2 (id=4889):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e0000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000006c0)="c1188e19b95d054ef2a629680001", 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r3, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(0xffffffffffffffff, 0x708, 0x41e3, 0x0, 0x0, 0x0)
io_setup(0x8, &(0x7f0000000680)=<r5=>0x0)
io_pgetevents(r5, 0x2, 0x2, &(0x7f00000000c0)=[{}, {}], &(0x7f0000000700)={0x0, 0x3938700}, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x1000, 0xffffff81)
r7 = syz_io_uring_setup(0x106, &(0x7f0000000140)={0x0, 0x8404, 0x1000}, &(0x7f00000003c0)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f0000000380)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x81, 0x23456})
io_uring_enter(r7, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
getsockname$packet(r6, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff34}}], 0x1, 0x40044050)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
r10 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TCFLSH(r10, 0x400455c8, 0x2)
ioctl$TIOCSETD(r10, 0x5412, &(0x7f0000000140)=0xffffffc0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0xdb)

3.718468148s ago: executing program 2 (id=4894):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x4b)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000400)=ANY=[@ANYRESDEC=r0])
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000010c0)=ANY=[@ANYBLOB="b702000000004000bfa300000000000007030000fdfdfff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040000010000400404000001000000b7050000000000006a0a00fe00000000850000000a000000b70000000000000095000000000000009cc6b3fcd62c7d376238975d43a4505f80fc88943c4f0cf0dd467b592f868ee30ad5707bfd2d84aaa3b1d4e984c46ea7e2a447a36f5662403e1b2be4cc7c2683908a0d411a9872971c7c56f0979bd10b6d0e196bf02f46c7953ab1abda45cbe8d0d24b5069f8a98f7dc8f76b74635fc9f9de9ca3c00cb9bf4e4fd8f36e15fdd97870f2bdf4000000000000b0c2940dd8e263aa743f0400000000000000b100400600e1ffff8816326d7d25c32aac1c5d5b5be399f6609876b5887437a172fbc02a74067529194e533583412dff048f0000000000000000b2728a0481e9d6da43bb6cfb851cd364ff19ffcafe3e64be033c9d2f002cc93c1c13caec04a347903420336bec88c24a9fb6a6991ddb737d527d6acb15426415b6e8b1cbf698fce63a4fdfa2c6e94bd0339454c13ad3e328a100000000b515a1000000000000000eb2e9c15b6c8f6198282df27badac8507bc7d202e0990e0000000008919b3efce02a602b4ad38098774d1feaf5f277a4462a2fff2d6ff4780f9a30a2a5f5f284c00ad35e0a6f6a0f9dae214546d24ff6a9b8ced90b508dc3b55a8259614b731af86503e5849dc87ab86ec0f6a48f0d32f0d4a5f6a03c33600000bb44f2d80363dee9163424ac31469266877942abdbbb3729fd59c0ff048ed3fb58c81b76100aeaa4619668a2c4ef4e159d4594396864965422fe5f8c8181309becc88091dd6641c2d7e5a68ecbe778f2aae1742b92dc6854de98da66f8e38d1eca95809b738c8ddcf4cf1693cf61c2ae0a9c27bd1a6f1e72550fbb1f1543a9bcd48de44e837db44e2be1c364f1cdb53a1ed4169434fc8f705e262fb793cf25bcd60310991f0b0634fa08308c7105e2378d42eb22e035a88305f8342834cba801f76f820ed6def799116ce2336cd308544fbd3b74e0600968fce3c425729a77e3d089356654680e715f4ce5c1a39e4a63d8a67d6dbe1d3c26affdb25cbe15923f62849392cf4fb0327877e22a4dc617a5541a7fb89223888c76d65850dd99997e727557a477a1131d06f6f7360cfcf137ccd2e0d516bb31be411b0c7bd1bd24d3dc2d8e3f4cdfa872b66d89332e313934e9e9a3471f7170832a753bb2a8e4aa6321b1a6546a56e4121231380b04eb55337c7edc66d6e3400b06fcb31b659be19cff61cfac6f1b771967a60efb51c206ea0cbab9bef181cc917fca894189514e85d6e1d9249f8caa701b4357ae5b9117225d1f5ca89a4bb7d49086ea61948926db5132f2e29bf45a1429c19ba1adc457e2963d1474d85aeb3cca158e3fd4b7a05250ceafd44f46af924916ce9ce9a8881aad996ddaaf3fbd52e636367e9f90ab1c773fa96e538e7f87a21206a804524e1dc9fea9772b009bc49a8d787a90e78badf58e37b3cf6f64861d416e859994e4deca6f39551e73c7e332de66be92ecb94e63ecbc07f8f799536be0da90fa824b3f4965caa19b5556907746aec5db9fea5e5e69de3bd13a70c1374683a0e63ff6f6f51136d16e04bbd8ba0c96e0b562f5425614d80de6ba5e901587bb5c1f83382aab6efcccef90fdbebcc4ffed3af40365583fb800cf5ec6496a2a47f2217c7160f88b192ddec89558140447ec86726db3bfe9d22390085b1638f9ebf3219b426dcb69ff80f5b5be82803555c8421c17c9d39f9c1de9e8e7dedf826b00fd8860046e36f790e8e6796db3b778ff4f0fc2b79a5ca96ff3907452ed76bc5e63218ea96866ae2b265ab11206301bfb909a7fd77653c73b6d46a242864f839e5646cc5ada07fba0d9cf6f840179c34de5e9aa58d5b1ca5327dc945267524b8c363b7f847491b5939cf608927c797af1300"/1426], &(0x7f0000000340)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0xffff0002, 0xe, 0x0, &(0x7f0000001a40)="2b206d074843b397737ea49da2aa", 0x0, 0x3, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@deltaction={0xd8, 0x31, 0x400, 0x70bd28, 0x25dfdbff, {}, [@TCA_ACT_TAB={0x30, 0x1, [{0xc, 0x7, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0x10, 0x22, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}]}, @TCA_ACT_TAB={0x40, 0x1, [{0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2000009}}, {0x10, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0x10, 0x1f, 0x0, 0x0, @TCA_ACT_KIND={0xffffffffffffff7c, 0x1, 'skbmod\x00'}}, {0x10, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}]}, @TCA_ACT_TAB={0x20, 0x1, [{0xc, 0x16, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}]}, @TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}]}, @TCA_ACT_TAB={0x4, 0x1, [{0x0, 0x14, 0x0, 0x0, @TCA_ACT_KIND={0x0, 0x1, 'tunnel_key\x00'}}]}, @TCA_ACT_TAB={0x20, 0x1, [{0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x14, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x9)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
socket$netlink(0x10, 0x3, 0x15)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYRES16=r2], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$hpet(0xffffff9c, &(0x7f0000000080), 0x101000, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f00000000c0)=@ethtool_gfeatures={0x33}})
creat(0x0, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000480)=ANY=[@ANYRESDEC=r5, @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000100000,User_id=', @ANYRESDEC=0x0])
ioctl$FS_IOC_GETVERSION(r0, 0x80047601, &(0x7f0000000100))
read$FUSE(r6, &(0x7f0000006300)={0x2020}, 0x2020)

3.615995773s ago: executing program 3 (id=4896):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000540)=ANY=[], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a31"], 0x38}, 0x1, 0x0, 0x0, 0x8845}, 0x4000)
r5 = openat$sr(0xffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$SG_IO(r5, 0x2285, 0x0)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r5, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYRES16=r6, @ANYBLOB="100027bd7000fcdbdf250400000000001b404e0000"], 0x24}}, 0x4080)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x4010, r0, 0x2000)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r7 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_TMR_CONTINUE(r7, 0x5404)
socket$nl_netfilter(0x10, 0x3, 0xc)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
mlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000)

2.628334339s ago: executing program 3 (id=4900):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
io_setup(0x7, &(0x7f0000000280)=<r0=>0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000140)='-', 0x1}])
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
pivot_root(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYBLOB="08001b"], 0x30}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000240))
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000000)={'team0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x7, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10104}, [@IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}}, 0x0)

2.415898466s ago: executing program 3 (id=4903):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x1c}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
pread64(r1, &(0x7f00000001c0)=""/142, 0x8e, 0x6)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f00000000c0)={'broute\x00', 0x0, 0x0, 0x0, [0x546, 0x9, 0x7, 0xb, 0x6b, 0x8]}, &(0x7f0000000180)=0x50)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400001, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000bc0)=[{{&(0x7f0000000280)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000440)="ad9408261e64c6096885369f5bdf3e78e4b7ba4e997c62684660aa64891a8b073ed5701dcaa89797ecbc5a914f8c4584d51d8fdc7082b690049997cb10dc5afd947ab3cc4717046f34f16f422fc6afb60a74d3e7f476ed3e555951c203f905d44e7897d6b94973078b82d777ec56171757d827939cb582486ac50605a429320f24f6cf512912", 0x86}], 0x1, &(0x7f00000007c0)=[@rights={{0x10, 0x1, 0x1, [r0]}}, @rights={{0x10, 0x1, 0x1, [r0]}}, @rights={{0x24, 0x1, 0x1, [r8, r1, r3, 0xffffffffffffffff, r5, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}], 0x74, 0x4008}}, {{&(0x7f0000000840)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000680)=[{&(0x7f00000008c0)="bf22eb593aaa2c6e1c436be7c3346f3067385bb8d4a2a8f378c72ca9e4432f267a0aab9a27e24160ce9187de7ce6ff3095f3fd6c60e8537d4ab5335e2008a0eb7e321a", 0x43}, {&(0x7f0000000940)="7dbd227c6da8c18d5da10811893966edbbdb32cd5f6114911d5477856514421b2160651fb86dfb410732db41b2744b6c7c68305be71b53c80db98a4d10b9bb354d354f0575db644905f74c2a701c586d8bb57bfe04d2df228d977e7164fea09c304ca224cddd", 0x66}, {&(0x7f0000000540)="3903f866286046429787172e4b00b3dd88147e05926e240bdb4781c4afe8206ab7a26b958cace40f73ff6f860ed9d0e07af3601bb5af18b08a7d83e43ff71ed38520ec286368abc55f69a13616486312f885faa851e67081b238485d87ad011753b90ea94b2a031a8f6ca57b51da5bd7688037bddfa0f2765dad8089d4ddf0e3c3b4e628493c3d3346fa4a5b18f05e7c06dba705878462617b50bcfcc92dc7263ea3f02a9ffe91a9f82696fa9e53b5ba9d7224a3aa13a0f8d3a3819bb8503bf79a5765603217f3445471b0ed8b5e48913fd6", 0xd2}, {&(0x7f0000000640)="c9d12feaaa8d0d23207c90dbac5e7991", 0x10}], 0x4, &(0x7f0000000b00)=ANY=[@ANYBLOB="000000000100000001000000", @ANYRES32, @ANYRES32=r8, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r6, @ANYRES32, @ANYRES32=r3, @ANYRES32=r3, @ANYBLOB="000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000080000100000002100000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000001000000", @ANYRES32=r0, @ANYRES32], 0x0, 0x4c001}}], 0x2, 0x800)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x100000000, 0x8, 0x0, 0x3}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, 0x0, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r10, 0x10f, 0x81, &(0x7f0000000080), 0x4a)
setsockopt$sock_int(r10, 0x1, 0x8, 0x0, 0x0)
sendmmsg$inet(r10, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r11)
r12 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r12, 0xae60)
r13 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
r14 = signalfd(r0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r14, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="740000000008010100000000000000000300000305000300210000002c00048008000540000000060800014000000002080001400000000408000640000300ae08000840000000eb050002400600000024f8128008000740000000080800074000000006080003ffff08000568eb4000001000000000456baeb1a14e2ef408b6fc18b9b72087a24a3d87d8e039f725baaa0d8f105eec502437b8515fd6a47ad22b747a9136e06e269378b9e4efc5fc5ef582bd7fbf8179dd9353"], 0x74}, 0x1, 0x0, 0x0, 0x8000}, 0x448d0)
ioctl$KVM_GET_MSRS_cpu(r13, 0xc008ae88, &(0x7f0000000140)={0x1, 0x0, [{0x8b0, 0x0, 0x8}]})

2.166069122s ago: executing program 2 (id=4904):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
membarrier(0x0, 0x0)
r0 = socket(0x2, 0x1, 0x0)
setsockopt(r0, 0x6, 0x8, &(0x7f0000000080)="0a1099", 0x3)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = userfaultfd(0x80001)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {0xa1}}, './file0\x00'})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) (fail_nth: 1)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x300000, 0x800, 0x0, 0x3}, 0x1c)
ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r5, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})

2.165618537s ago: executing program 0 (id=4905):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
membarrier(0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x300000, 0x800, 0x0, 0x3}, 0x1c)
ioctl$UFFDIO_COPY(r2, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3}) (fail_nth: 1)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})

1.836098632s ago: executing program 2 (id=4906):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="0f018581c0bc0065666765f36f0f33f0100a660f3a0cb9000000752066b9800000c00f3a32c632c6004000a50f01d70f0901", 0x32}], 0x1, 0x54, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x82, &(0x7f00000002c0)="1a000000020000", 0x7)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x8000000000000000, 0x900000001, 0x800000000, 0x45b, 0x0, 0x0, 0x7, 0x5, 0x0, 0xfc, 0xfffffffdfffffffc, 0xfdfffffffffffffc, 0x0, 0x9, 0x4000000000000004, 0x767], 0xeeef0000, 0x80082})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
flock(0xffffffffffffffff, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)

1.835694717s ago: executing program 0 (id=4907):
socket$inet_udplite(0x2, 0x2, 0x88)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x9, 0x7fff0000}]})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000280)={0x3, 0x0, 0xfdfdffff, 0xff600000})
munlockall()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101)
syz_open_dev$evdev(&(0x7f0000000100), 0x68a4, 0x2080)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r4, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}})
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}, {0x0}], 0x2}, 0x0) (fail_nth: 1)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
mmap$IORING_OFF_CQ_RING(&(0x7f0000696000/0x12000)=nil, 0x12000, 0x2000001, 0x80010, r3, 0x8000000)
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x28, 0x0, 0x7, 0x201, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FLAGS={0x8}]}, 0x28}}, 0x28000)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000300)=""/59, 0x304000, 0x800, 0x8, 0x2}, 0x54)
r5 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x80}, &(0x7f0000000180), &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r5, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10}, 0x94)
io_uring_register$IORING_REGISTER_IOWQ_AFF(r5, 0x11, &(0x7f0000000440)="6fb73e0acea62f5a1d6b96c4fc072e64d8c0c3f34e38737f80a0dffbdbf076c4d6683c43a4c245f8b690594938b40d56c986896ac26b40674b778ce4edf69716a31db962e36f8b01377c97c9349153b696c8f40a00cd01d28f38a6b2309f695c9d60414687daefe6428debf43c96691eddf9db38f36de242610688c634e292c7612185c7b372f13418f0c0aadd769f31e6301de2c8057bc2208c54b2b221f7ebf19fec312840c9527cf5308a69e844ed", 0xb0)

1.529155092s ago: executing program 3 (id=4908):
socket$inet_udplite(0x2, 0x2, 0x88)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x10, &(0x7f0000000240)=[{0x6, 0x0, 0x9, 0xfffffffe}]})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4000)
sendmsg$NFT_BATCH(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x88}, 0x1, 0x0, 0x0, 0x24044800}, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f0000000280)={0x3, 0x0, 0xfdfdffff, 0xff600000})
munlockall()
openat$cuse(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101)
syz_open_dev$evdev(&(0x7f0000000100), 0x68a4, 0x2080)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r5, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}})
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}, {0x0}], 0x2}, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140))
ioctl$KVM_SET_USER_MEMORY_REGION2(0xffffffffffffffff, 0x40a0ae49, &(0x7f0000000500)={0x1fd, 0x4, 0x100000, 0x1000, &(0x7f000047b000/0x1000)=nil, 0x9, r4})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
mmap$IORING_OFF_CQ_RING(&(0x7f0000696000/0x12000)=nil, 0x12000, 0x2000001, 0x80010, r4, 0x8000000)
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x28, 0x0, 0x7, 0x201, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FLAGS={0x8}]}, 0x28}}, 0x28000)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000300)=""/59, 0x304000, 0x800, 0x8, 0x2}, 0x54)
r6 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x13, 0x0, 0x3, 0x80}, &(0x7f0000000180), &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r6, 0x2, 0x0, 0x0)

1.511597931s ago: executing program 1 (id=4909):
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e21, 0x9, @loopback, 0xa523}, 0x1c)
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = socket$phonet(0x23, 0x2, 0x1)
r2 = dup3(r0, r1, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f0000000040))
r3 = socket$inet6(0xa, 0x2, 0x6)
sendto$inet6(r3, &(0x7f0000000080)="ebbcfa861cff3f7fce7c06e0c629773375d547fe69edfec5e60e0dd303f7a769b5acdfaa199c5d0714d95b1043cf9f7fb629e740e621d83cdfd1b0cf9cec469180934266fab42767777e2884678f7ee8948685a1f9f189b851262ed9881829bb804cbb56", 0x64, 0x4008851, &(0x7f0000000100)={0xa, 0x4e23, 0x8001, @local, 0x3}, 0x1c)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f00000005c0)={<r4=>0x0, @empty, @loopback}, &(0x7f0000000600)=0xc)
sendmsg$inet(r2, &(0x7f00000006c0)={&(0x7f0000000140)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000180)="f101947cf655e225bc1089f610d18d8499a3ad5287f7551f7b527cd9c7bbe9b70cbab8278632c860c419ad4e2df1858d0e65b4cfceaddc58cedc6be70ee59c63ab1c12e7f74e09018957a99d94633cf68351fed1831d27f0955841b7a817d00eab29f3e79c3f9de987206deee864e653911231652fc1981a7ac83d2aa25035dd736935abba", 0x85}, {&(0x7f0000000240)="a45a15bcf867dcaa7b0cda976f94b59d9b7fc8f7824bbb4aba8f944c1924ea55c7678cd4065f814bb1e8e3410d95bf33d93ae9fbd3872f0ac65e98cfd9e3d57c6f4cb950fae29db709b042bd1864247761a13af46536de9ba82f37ef797fa62ca06a5facdf2727161d9b9bc96e102bbb60d0042ab3056788dac6a01c69e5213dea390b31922a8263a6d655ff1227aa0c0d851be6bbeae224118774f3f657ba15d4380638f61715eeb409c711c24b984d0d13841ae6d8bd005374e5103b2ad38aa3c84422ba1340c33e4b6ab756d91be967f480474a2aa6b72a14c7ce039ec2c91a7a7527add23df3e60b76", 0xeb}, {&(0x7f0000000340)="03929301fda62bc45c5e26196a21bc068e621edc46a95fa98b07436ba419331c811dc76999fed50c9b887d5f739ae5ac909694b82d5d7c191829e94c1f16f5f0815e23ce7df0c0c2590868b1286310899b9ff903b11d71a9cf2d73b35d5db6e7f1a98067f32205a7c247d1a60e49d1f2c035ba3141baaa8e1d1e82c90873ce4a2f75c88cb1f02d73698d11d2c30240ed39b022f04fedbf3a8a0982cb50586e9013fbc60262c7b2dee6d8c7bd1d94f049f4c58a885395ebd0b5607bf35c2c562df9812235441a68e6495fe8cb083ca2bab1f6d74db09f7e", 0xd7}, {&(0x7f0000000440)="ca421f39d0fdb4818e56221d37de9932c5d3c7600c39fed8faf0eb9019d8ae405bd7664ec659be3e1c97533de3968949ad9f32fdc55c38c7ab40502a98b0526bc3dae839ce985e5c3f89c3548e", 0x4d}, {&(0x7f00000004c0)="2355529b683c1e0a7470072e6212031ed97b31f6b70d9c26eed670d5744c27c453dd33bc5693d9087f90bc6654a715ea1b99175724a9", 0x36}, {&(0x7f0000000500)="372e536da7864396a85f18fa49d396039523ec8ae1513d54ab3d7ddd878f5bb48328c40566d8d8ad16152297b99ff7dc5461b750aebe1b76f413d098ff2012ea0ceb2375ee4451681a9b2a3c440c82487f535caa5096f089097a35f914c05666c57cb9cbca6b5e90", 0x68}], 0x6, &(0x7f0000000640)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r4, @multicast2, @empty}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x9}}, @ip_ttl={{0x10, 0x0, 0x2, 0xc}}, @ip_ttl={{0x10, 0x0, 0x2, 0x1}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x7}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x8}}], 0x68}, 0x40000)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000700)={0x0, 'macvlan1\x00', {0x4}, 0xffff})
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000740)='ext4_ext_handle_unwritten_extents\x00', r2, 0x0, 0x20400000}, 0x18)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f00000007c0)=[r3, r1, r1, r2, r3], 0x5)
ppoll(&(0x7f0000000800)=[{r1, 0x210a}, {r1, 0x200}, {r1, 0xa4}], 0x3, &(0x7f0000000840)={0x0, 0x3938700}, &(0x7f0000000880)={[0x5, 0x3ff]}, 0x8)
syz_io_uring_setup(0x7c56, &(0x7f00000008c0)={0x0, 0xba92, 0x800, 0x3, 0x3cb, 0x0, r2}, &(0x7f0000000940), &(0x7f0000000980))
r6 = openat$audio(0xffffff9c, &(0x7f00000009c0), 0x8040, 0x0)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r6, 0x80089419, &(0x7f0000000a00))
r7 = openat$vhost_vsock(0xffffff9c, &(0x7f0000000a40), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r7, 0x4004af61, &(0x7f0000000a80)=0x1)
r8 = syz_open_dev$vcsa(&(0x7f0000000ac0), 0x8, 0x101200)
sendmsg$BATADV_CMD_SET_MESH(r8, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x4c, 0x0, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x38000000}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7f}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x5a}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="b8f24ef4a1e1"}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000040}, 0x40000)
r9 = openat$vnet(0xffffff9c, &(0x7f0000000c40), 0x2, 0x0)
ioctl$VHOST_SET_LOG_BASE(r9, 0x4008af04, &(0x7f0000000cc0)=&(0x7f0000000c80))
write$binfmt_script(r8, &(0x7f0000000d00)={'#! ', './file0', [{0x20, 'macvlan1\x00'}, {0x20, '^\x84'}], 0xa, "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"}, 0x1018)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000001d40)={@initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x4, [@local, @multicast1, @private=0xa010102, @multicast1]}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000001dc0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001d80)={<r10=>0xffffffffffffffff}, 0x2, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r8, &(0x7f0000001e00)={0x7, 0x8, 0xfa00, {r10, 0x7}}, 0x10)
r11 = syz_genetlink_get_family_id$gtp(&(0x7f0000001e80), r2)
sendmsg$GTP_CMD_ECHOREQ(r2, &(0x7f0000001f80)={&(0x7f0000001e40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001f40)={&(0x7f0000001ec0)={0x44, r11, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@GTPA_FAMILY={0x5, 0xd, 0x8}, @GTPA_FAMILY={0x5, 0xd, 0x18}, @GTPA_FLOW={0x6, 0x6, 0x3}, @GTPA_FAMILY={0x5, 0xd, 0x22}, @GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r2}]}, 0x44}}, 0x800)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002000), r8)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000002200)={&(0x7f0000001fc0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000021c0)={&(0x7f0000002100)={0x84, r12, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x40080)

1.376447266s ago: executing program 1 (id=4910):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
futex(0x0, 0xc, 0x1, 0x0, 0x0, 0x0)
modify_ldt$write2(0x11, &(0x7f0000000100)={0x1d30, 0x0, 0x2003, 0x1}, 0x10)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)
modify_ldt$write(0x1, &(0x7f0000000000)={0x4, 0xffffffffffffffff, 0x1000, 0x0, 0x1, 0x1}, 0x10)

1.27652574s ago: executing program 1 (id=4911):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
io_setup(0x7, &(0x7f0000000280)=<r0=>0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000140)='-', 0x1}])
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
pivot_root(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYBLOB="08001b"], 0x30}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000240))
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000000)={'team0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x7, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10104}, [@IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}}, 0x0)

1.165993316s ago: executing program 0 (id=4912):
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e21, 0x9, @loopback, 0xa523}, 0x1c)
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = socket$phonet(0x23, 0x2, 0x1)
r2 = dup3(r0, r1, 0x80000)
ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f0000000040))
r3 = socket$inet6(0xa, 0x2, 0x6)
sendto$inet6(r3, &(0x7f0000000080)="ebbcfa861cff3f7fce7c06e0c629773375d547fe69edfec5e60e0dd303f7a769b5acdfaa199c5d0714d95b1043cf9f7fb629e740e621d83cdfd1b0cf9cec469180934266fab42767777e2884678f7ee8948685a1f9f189b851262ed9881829bb804cbb56", 0x64, 0x4008851, &(0x7f0000000100)={0xa, 0x4e23, 0x8001, @local, 0x3}, 0x1c)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f00000005c0)={<r4=>0x0, @empty, @loopback}, &(0x7f0000000600)=0xc)
sendmsg$inet(r2, &(0x7f00000006c0)={&(0x7f0000000140)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000180)="f101947cf655e225bc1089f610d18d8499a3ad5287f7551f7b527cd9c7bbe9b70cbab8278632c860c419ad4e2df1858d0e65b4cfceaddc58cedc6be70ee59c63ab1c12e7f74e09018957a99d94633cf68351fed1831d27f0955841b7a817d00eab29f3e79c3f9de987206deee864e653911231652fc1981a7ac83d2aa25035dd736935abba", 0x85}, {&(0x7f0000000240)="a45a15bcf867dcaa7b0cda976f94b59d9b7fc8f7824bbb4aba8f944c1924ea55c7678cd4065f814bb1e8e3410d95bf33d93ae9fbd3872f0ac65e98cfd9e3d57c6f4cb950fae29db709b042bd1864247761a13af46536de9ba82f37ef797fa62ca06a5facdf2727161d9b9bc96e102bbb60d0042ab3056788dac6a01c69e5213dea390b31922a8263a6d655ff1227aa0c0d851be6bbeae224118774f3f657ba15d4380638f61715eeb409c711c24b984d0d13841ae6d8bd005374e5103b2ad38aa3c84422ba1340c33e4b6ab756d91be967f480474a2aa6b72a14c7ce039ec2c91a7a7527add23df3e60b76", 0xeb}, {&(0x7f0000000340)="03929301fda62bc45c5e26196a21bc068e621edc46a95fa98b07436ba419331c811dc76999fed50c9b887d5f739ae5ac909694b82d5d7c191829e94c1f16f5f0815e23ce7df0c0c2590868b1286310899b9ff903b11d71a9cf2d73b35d5db6e7f1a98067f32205a7c247d1a60e49d1f2c035ba3141baaa8e1d1e82c90873ce4a2f75c88cb1f02d73698d11d2c30240ed39b022f04fedbf3a8a0982cb50586e9013fbc60262c7b2dee6d8c7bd1d94f049f4c58a885395ebd0b5607bf35c2c562df9812235441a68e6495fe8cb083ca2bab1f6d74db09f7e", 0xd7}, {&(0x7f0000000440)="ca421f39d0fdb4818e56221d37de9932c5d3c7600c39fed8faf0eb9019d8ae405bd7664ec659be3e1c97533de3968949ad9f32fdc55c38c7ab40502a98b0526bc3dae839ce985e5c3f89c3548e", 0x4d}, {&(0x7f00000004c0)="2355529b683c1e0a7470072e6212031ed97b31f6b70d9c26eed670d5744c27c453dd33bc5693d9087f90bc6654a715ea1b99175724a9", 0x36}, {&(0x7f0000000500)="372e536da7864396a85f18fa49d396039523ec8ae1513d54ab3d7ddd878f5bb48328c40566d8d8ad16152297b99ff7dc5461b750aebe1b76f413d098ff2012ea0ceb2375ee4451681a9b2a3c440c82487f535caa5096f089097a35f914c05666c57cb9cbca6b5e90", 0x68}], 0x6, &(0x7f0000000640)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r4, @multicast2, @empty}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x9}}, @ip_ttl={{0x10, 0x0, 0x2, 0xc}}, @ip_ttl={{0x10, 0x0, 0x2, 0x1}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x7}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x8}}], 0x68}, 0x40000)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000700)={0x0, 'macvlan1\x00', {0x4}, 0xffff})
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000740)='ext4_ext_handle_unwritten_extents\x00', r2, 0x0, 0x20400000}, 0x18)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f00000007c0)=[r3, r1, r1, r2, r3], 0x5)
ppoll(&(0x7f0000000800)=[{r1, 0x210a}, {r1, 0x200}, {r1, 0xa4}], 0x3, &(0x7f0000000840)={0x0, 0x3938700}, &(0x7f0000000880)={[0x5, 0x3ff]}, 0x8)
syz_io_uring_setup(0x7c56, &(0x7f00000008c0)={0x0, 0xba92, 0x800, 0x3, 0x3cb, 0x0, r2}, &(0x7f0000000940), &(0x7f0000000980))
r6 = openat$audio(0xffffff9c, &(0x7f00000009c0), 0x8040, 0x0)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r6, 0x80089419, &(0x7f0000000a00))
r7 = openat$vhost_vsock(0xffffff9c, &(0x7f0000000a40), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r7, 0x4004af61, &(0x7f0000000a80)=0x1)
r8 = syz_open_dev$vcsa(&(0x7f0000000ac0), 0x8, 0x101200)
sendmsg$BATADV_CMD_SET_MESH(r8, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x4c, 0x0, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x38000000}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7f}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x5a}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="b8f24ef4a1e1"}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000040}, 0x40000)
r9 = openat$vnet(0xffffff9c, &(0x7f0000000c40), 0x2, 0x0)
ioctl$VHOST_SET_LOG_BASE(r9, 0x4008af04, &(0x7f0000000cc0)=&(0x7f0000000c80))
write$binfmt_script(r8, &(0x7f0000000d00)={'#! ', './file0', [{0x20, 'macvlan1\x00'}, {0x20, '^\x84'}], 0xa, "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"}, 0x1018)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000001d40)={@initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x4, [@local, @multicast1, @private=0xa010102, @multicast1]}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000001dc0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001d80)={<r10=>0xffffffffffffffff}, 0x2, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r8, &(0x7f0000001e00)={0x7, 0x8, 0xfa00, {r10, 0x7}}, 0x10)
r11 = syz_genetlink_get_family_id$gtp(&(0x7f0000001e80), r2)
sendmsg$GTP_CMD_ECHOREQ(r2, &(0x7f0000001f80)={&(0x7f0000001e40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001f40)={&(0x7f0000001ec0)={0x44, r11, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@GTPA_FAMILY={0x5, 0xd, 0x8}, @GTPA_FAMILY={0x5, 0xd, 0x18}, @GTPA_FLOW={0x6, 0x6, 0x3}, @GTPA_FAMILY={0x5, 0xd, 0x22}, @GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r2}]}, 0x44}}, 0x800)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002000), r8)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000002200)={&(0x7f0000001fc0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000021c0)={&(0x7f0000002100)={0x84, r12, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x40080)

1.093282885s ago: executing program 0 (id=4913):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x44, &(0x7f0000000000)={0x4d, 0x0}, 0x10) (async)
bind$xdp(r0, &(0x7f0000000080)={0x2c, 0x514a6d9ec7eadcc5, 0x0, 0x29}, 0x10) (async)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VHOST_SET_VRING_ERR(r2, 0x4001af84, &(0x7f0000000140)={0x1}) (async)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) (async)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r4)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000300)) (async)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) (async)
dup3(r7, r6, 0x0) (async)
r8 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002140)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
preadv(r8, &(0x7f0000000180)=[{&(0x7f0000000240)=""/52, 0x34}], 0x1, 0x0, 0x0) (async)
sendmsg$NLBL_MGMT_C_ADD(r4, &(0x7f0000000480)={0x0, 0xca, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1401ebff", @ANYRES16=r5, @ANYBLOB="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"], 0x114}}, 0x8800)

1.025602817s ago: executing program 1 (id=4914):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80042, 0x50)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000400)=ANY=[@ANYBLOB="1500000000000000c401100000000000000000000000000038b4e7625ca4399918b7f1f12081bc0cf60e993c50c4edc5e411ce076b040ff43c7ee5245db74712dc206224776dfe3dafe6f7be5df0b1c9306614092cc94b194a8316d0c79e2c6a6756d3dcddb86056f77064eefde7aa"])
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, 0x0, 0xc000)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
syz_io_uring_setup(0x40088f, &(0x7f0000000500)={0x0, 0x66fc, 0x200, 0xfffffffc, 0xb6, 0x0, r0}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280))
r5 = socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x140002, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x10, 0x803, 0x0)
getsockopt$sock_buf(r7, 0x1, 0x47, 0x0, &(0x7f0000000080))
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r5, 0x84, 0x70, &(0x7f0000000140)={<r8=>0x0, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x19}}}, [0x8, 0x9, 0x7ff, 0x6, 0x5, 0x400, 0x1, 0x5, 0xc, 0x0, 0x4, 0xff, 0x8000000000000000, 0x100000000, 0xe]}, &(0x7f0000000000)=0xfc)
r9 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000006c0)="1400000030000b07005a806f8c6394f90424fc60", 0x14}], 0x1}, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r7, 0x84, 0x1f, &(0x7f0000000340)={r8, @in={{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x34}}}, 0x8, 0x8001}, &(0x7f00000000c0)=0x88)
r10 = socket(0x400000000010, 0x3, 0x0)
r11 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r12, {0x0, 0xfffc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x400}}}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'team0\x00', <r13=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r13, {0x0, 0xf}, {}, {0x7, 0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)

1.025277809s ago: executing program 3 (id=4915):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
membarrier(0x0, 0x0)
r0 = socket(0x2, 0x1, 0x0)
setsockopt(r0, 0x6, 0x8, &(0x7f0000000080)="0a1099d1", 0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {0xa1}}, './file0\x00'})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x300000, 0x800, 0x0, 0x3}, 0x1c)
ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r5, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})

983.7888ms ago: executing program 0 (id=4916):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x1c}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
pread64(r1, &(0x7f00000001c0)=""/142, 0x8e, 0x6)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f00000000c0)={'broute\x00', 0x0, 0x0, 0x0, [0x546, 0x9, 0x7, 0xb, 0x6b, 0x8]}, &(0x7f0000000180)=0x50)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400001, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000bc0)=[{{&(0x7f0000000280)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000440)="ad9408261e64c6096885369f5bdf3e78e4b7ba4e997c62684660aa64891a8b073ed5701dcaa89797ecbc5a914f8c4584d51d8fdc7082b690049997cb10dc5afd947ab3cc4717046f34f16f422fc6afb60a74d3e7f476ed3e555951c203f905d44e7897d6b94973078b82d777ec56171757d827939cb582486ac50605a429320f24f6cf512912", 0x86}], 0x1, &(0x7f00000007c0)=[@rights={{0x10, 0x1, 0x1, [r0]}}, @rights={{0x10, 0x1, 0x1, [r0]}}, @rights={{0x24, 0x1, 0x1, [r8, r1, r3, 0xffffffffffffffff, r5, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}], 0x74, 0x4008}}, {{&(0x7f0000000840)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000680)=[{&(0x7f00000008c0)="bf22eb593aaa2c6e1c436be7c3346f3067385bb8d4a2a8f378c72ca9e4432f267a0aab9a27e24160ce9187de7ce6ff3095f3fd6c60e8537d4ab5335e2008a0eb7e321a", 0x43}, {&(0x7f0000000940)="7dbd227c6da8c18d5da10811893966edbbdb32cd5f6114911d5477856514421b2160651fb86dfb410732db41b2744b6c7c68305be71b53c80db98a4d10b9bb354d354f0575db644905f74c2a701c586d8bb57bfe04d2df228d977e7164fea09c304ca224cddd", 0x66}, {&(0x7f0000000540)="3903f866286046429787172e4b00b3dd88147e05926e240bdb4781c4afe8206ab7a26b958cace40f73ff6f860ed9d0e07af3601bb5af18b08a7d83e43ff71ed38520ec286368abc55f69a13616486312f885faa851e67081b238485d87ad011753b90ea94b2a031a8f6ca57b51da5bd7688037bddfa0f2765dad8089d4ddf0e3c3b4e628493c3d3346fa4a5b18f05e7c06dba705878462617b50bcfcc92dc7263ea3f02a9ffe91a9f82696fa9e53b5ba9d7224a3aa13a0f8d3a3819bb8503bf79a5765603217f3445471b0ed8b5e48913fd6", 0xd2}, {&(0x7f0000000640)="c9d12feaaa8d0d23207c90dbac5e7991", 0x10}], 0x4, &(0x7f0000000b00)=ANY=[@ANYBLOB="000000000100000001000000", @ANYRES32, @ANYRES32=r8, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r6, @ANYRES32, @ANYRES32=r3, @ANYRES32=r3, @ANYBLOB="000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000080000100000002100000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000001000000", @ANYRES32=r0, @ANYRES32], 0x0, 0x4c001}}], 0x2, 0x800)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x100000000, 0x8, 0x0, 0x3}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, 0x0, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r10, 0x10f, 0x81, &(0x7f0000000080), 0x4a)
setsockopt$sock_int(r10, 0x1, 0x8, 0x0, 0x0)
sendmmsg$inet(r10, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r11)
r12 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r12, 0xae60)
r13 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
r14 = signalfd(r0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r14, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="740000000008010100000000000000000300000305000300210000002c00048008000540000000060800014000000002080001400000000408000640000300ae08000840000000eb050002400600000024f8128008000740000000080800074000000006080003ffff08000568eb4000001000000000456baeb1a14e2ef408b6fc18b9b72087a24a3d87d8e039f725baaa0d8f105eec502437b8515fd6a47ad22b747a9136e06e269378b9e4efc5fc5ef582bd7fbf8179dd9353"], 0x74}, 0x1, 0x0, 0x0, 0x8000}, 0x448d0)
ioctl$KVM_GET_MSRS_cpu(r13, 0xc008ae88, &(0x7f0000000140)={0x1, 0x0, [{0x8b0, 0x0, 0x8}]})

861.565514ms ago: executing program 2 (id=4917):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x44}}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x7, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}]}, @void, @void, @void, @void, @void, @void}, 0x35)
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, &(0x7f0000000380))
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, &(0x7f0000000480))
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f00000001c0), 0x2, 0x141002)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r3, 0xc0045543, &(0x7f0000000080))
ioctl$sock_ifreq(r2, 0x8932, &(0x7f0000000080)={'dummy0\x00', @ifru_ivalue})
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f00000020c0)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, [{0xdd, 0x21, "268ffcd7858e61f7ce65a47e494060ee3ef64128e3dcf06a4fc1c6e557d82fb391"}, {0xdd, 0xd2, "130fe78a6b4d3bcfe5cf4fddc138e1a974dffb081e5c9137beb4dff970657d318bb5c88595c2df7613b63573eb1c297de90a05686ed8d7bce86944b0b75386763c196f2fdc82d38187aca98db22aedede2de53af85616937bd9c20993e3523299e775c288beac2bfb6579d52e452c0aa3c9b190039b2cff33bc9839ca4970306fddb359d48f179ae0ff25a37562955aa005db06eb89fcf6102d49cd23cc092bdd4061ae11f6cb8d5ba3536198c61a5f9005e7c9683423e1d5c3b6550919a23fab0e995e70f6c6af1d16100fc1f535c4d51de"}, {0xdd, 0xa4, "ce423f3973ae8ef7e0b4858a8aaead0639ef3a43183e1b48d11bd9ec57e01aa652034ebc446d56b61cc7d5fbc26d11fb67f1977874d17fb836fa51659cc7c8e6fb9e2b9568b33221a19cedaf814180c3ae22e69c2521799a1a1a7952cccefc77b09603af01ec565b0f4b6f5c55b4a1cbd7db31e2dc66361300820c5e4e40778296b5d313261cfb96c8d944c93667b99ae58ed1c11136e24040191a39405d12d4d8a88374"}, {0xdd, 0xa1, "4c3429d16876f8ad466ccf8acdecc2066ba022c70b521aec3b2f71bc1baafe08ed8996162edb8e1ea085579ee617bb85b9925d4b35be28be081151c174f2521ca041907682601b80d9bb9e9410c0369e6fdf27afe441e353f6622ba62dfef4666bcae53202c49922223a59866805e640ab9798259a8492615daac5c87e47e87bc4f2a5c29940576e17e042594649060c48565fcba2c80622c36aacc8bb2337143e"}, {0xdd, 0xc7, "4d3d22552adec903cf13b1f4920fdf932fd8641d702dfde4ad827cf9a94eace1730ddfdee3011ce43f7ee7bba638d1845106c9939dd3f538c31a9b1b160d70e78990daf53f082b78b38939d23009b3f56d461f71bf025467a87efaa026f0f86da1af7d778104b42a56f64fb9f2d9e653be5558d701f6f231f405a95f2705df58eb34f0924863bb5c7fda6055a63f6ee8d6d8182a38a1be0a6eda5285095537f54e3bbc03f4a55a433a23014577d897bacc2d60793147733e6471c20a3a421be842a116ea6dd781"}, {0xdd, 0x21, "b82a9d845646d8fcc4f89eb8be9cc5856121a6fc28324995357cf745b932326f18"}, {0xdd, 0xf3, "12f91fe7913641c55ca6bcf7638740a6cad1904f6109f3c1963e55b0419a71a8e1629433ba36246c1d02777da2a9d546946a1edd866b57606840fdec9dc5cbc428983954288530e74fd828acd49ed86d0ecd46bf17c4fb8f6a6ead94995451105fd6845159c0f1dd33c0e067bb5b73cdf76377afc7e320e2e9f18cc9f795bb406a4a3970abf4271808632c434caac83e4943a973f723aedd27d40e5a3cbd5fa9113ea72bab7328fe37ce829bd5f71e7f84371f3d91b210c772801ca5bc93c5226f7035ab4d91db9c29ce0a476c4d79a0a9ff30c4daa7e601d2412a27772eab5d09263a5c8d511adf949d425d0ca5b3339a8421"}]}, 0x449)
r4 = syz_io_uring_setup(0x82e, &(0x7f00000003c0)={0x0, 0xfffffffe, 0x10100}, &(0x7f0000000100), &(0x7f0000002680))
io_uring_register$IORING_REGISTER_PBUF_RING(r4, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}]}, 0x3}, 0x1)
mount(&(0x7f0000000140)=@md0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002580)='v7\x00', 0x200000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000002040)={0x5, &(0x7f0000002000)=[{0x8001, 0x1b, 0x8, 0x1}, {0x1, 0xd4, 0xf, 0x400}, {0x9, 0x29, 0x15}, {0x7ff, 0x2, 0xf4, 0x2}, {0x2, 0xf7, 0xd, 0x4}]})
sendmmsg(0xffffffffffffffff, &(0x7f0000002640)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="c5829078a8c8", 0x6}, {&(0x7f0000000180)="95d905e18edd2be0371e7c7d6aad6e489874d971601f4e20eedb29dc053313dfaf9b3f1c8cd402d86ad8739ca8a4a3f769753f29d2a2f13adbab0d245a20ff72fca68abf5bf17068210aff4b121ad5a9e628cf9e1e22db2b3e2375aaac999827ccde8d862c869b920a2d2282e390b2e2bec1bd1995ae5f", 0x77}, {&(0x7f0000000240)="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", 0x1000}, {&(0x7f0000001240)="278158391994ac10a1e05eeee742be6f53be4f6e93e8ed735edd759daf6028a7fe6acb6eafe197d1eabb954feae69c20247d93bf3ba2073be53268591bbbd039b96a4854f4abc500501458315bfa8cd832e92d856dd3d7f3ddad4214b49e9f7fb2bfe530da89f84f10f8a6e2fe65dd5cf54d0b5bf1707930f2802f199ab1e84a9df822fa13137a286077bc3c3afb7cc5758c55b65f319d04b6f196cbe3eb5c9bbc34098e93b694c09a1afadbb652a7562f2a73810394d75d0b9915329a0fb8304b4efd8fc9d5adf11883cb9d014921aa2fcef39f4430d006d40b59d24367c5f4975317fc0650cb7e6c2a607c2f5d988b61", 0xf1}, {&(0x7f0000001340)="d62abc983ba43ff6ca0b734af03d6de9ffd8f1016899efe4bcdb0f9a84e62af8bdb7e978e5118c7829a61faefae8b764fee30de8579764c45436cd70e2b602a05800b9db3b1aa8bde39f2dab3f36b4f766987245dd7e658120770fa21586bfd47d54b8a38be801e025d7f582578cdd12af650fdfb0e5d119398ff1e950ac04e49320998076caf8e04f0b45072b080163eefa27edee75a4789965f9c484cb0d", 0x9f}], 0x5, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], 0x1224}}], 0x1, 0x1)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x9b}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x14e7}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40}, 0x94)
ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f0000002080)=0x80)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x2000000, 0x11, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r5, 0x0, 0xe, 0x0, &(0x7f0000000300)="d9c1e2ffe2cbb6be679e0e79f378", 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
mount(&(0x7f0000000140)=@sr0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='omfs\x00', 0x200000, 0x0)

86.423825ms ago: executing program 0 (id=4918):
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000080)={0x0, "69dcaf20127e9a854529f45826cb35be51682e30944313e2ca73845d177d601880221daeccfda56b75cfe2bad94f000066b2ddab614fec2236da7d88ea07c9ee"}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000200)=@chain)
r1 = epoll_create1(0x0)
r2 = fcntl$dupfd(r1, 0x2, 0xffffffffffffffff)
r3 = syz_open_dev$vim2m(&(0x7f0000000100), 0x7, 0x2)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
bind$inet6(r4, &(0x7f0000000240)={0xa, 0x2, 0x3, @loopback}, 0x1c)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
set_mempolicy(0x3, &(0x7f0000000100)=0x3, 0x9)
setsockopt$packet_tx_ring(r5, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc, 0x2000000}, 0x1c)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0cc5605, &(0x7f0000000180)={0x1, @vbi={0x0, 0x0, 0x32314241}})
r9 = fanotify_init(0x2, 0x0)
fanotify_mark(r9, 0x1, 0x100b, r2, 0x0)
fanotify_mark(r9, 0x1, 0x800103b, r2, 0x0)

86.190381ms ago: executing program 1 (id=4919):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
futex(0x0, 0xc, 0x1, 0x0, 0x0, 0x0)
modify_ldt$write2(0x11, &(0x7f0000000100)={0x1d30, 0x0, 0x2003, 0x1}, 0x10)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)
modify_ldt$write(0x1, &(0x7f0000000000)={0x4, 0xffffffffffffffff, 0x1000, 0x0, 0x1, 0x1}, 0x10)

3.623367ms ago: executing program 3 (id=4920):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0200000004000000e27f00000400000000000000", @ANYRES32, @ANYBLOB="8376a5eb074576000000f3ffff", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f0000001a00)=[{{&(0x7f0000000440)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000001900)=[{&(0x7f0000000740)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/110, 0x6e}, {&(0x7f0000000540)=""/47, 0x2f}, {&(0x7f00000005c0)=""/103, 0x67}, {&(0x7f0000000640)=""/150, 0x96}, {&(0x7f0000001740)=""/52, 0x34}, {&(0x7f0000001780)=""/141, 0x8d}, {&(0x7f0000001840)=""/116, 0x74}, {&(0x7f00000018c0)=""/20, 0x14}], 0x9, &(0x7f0000001980)=""/94, 0x5e}, 0x6}], 0x1, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000033c0)=ANY=[@ANYBLOB="1200000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB="0000000200000000000004000000000006000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x0, 0x0, 0x5, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNAPSHOT_SET_SWAP_AREA(0xffffffffffffffff, 0x400c330d, &(0x7f0000000240)={0xfffffffffffffff7, 0xfffff2f8})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r4, 0x0, 0x22, 0x0, &(0x7f0000000380)="f6f4e9a1d78ad62ceef1884386dd78bb3fb7dbfc8180ca8395ccfda2e499b3dcf581", 0x0, 0xa1b, 0x0, 0x2f, 0x0, &(0x7f0000000700)="010a", 0x0}, 0x50)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c000000020603000000000000000000000000070900020073797a32000000000900020073797a31000000000c0001800800130000006e9a0500050002000000050004000100000011000300686173683a6e65742c6e657400000000"], 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008c04"])
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x152)
mkdir(&(0x7f0000000000)='./bus\x00', 0x4)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r6 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, &(0x7f00000000c0)=0x3)
write$FUSE_CREATE_OPEN(r6, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x3, 0x3, 0x5, 0x6, 0x3, 0x1, {0x0, 0x9, 0x6, 0x5, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x4}}, {0x0, 0x13}}}, 0xa0)
sendfile(r6, r6, &(0x7f0000000080)=0x1, 0x4)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
socket$inet_udplite(0x2, 0x2, 0x88)

2.831246ms ago: executing program 2 (id=4921):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
membarrier(0x4, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
userfaultfd(0x80001)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
accept4(r2, 0x0, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r3, 0x0, 0x4895)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x39)
r6 = eventfd(0xe)
r7 = dup(r6)
ioctl$IOMMU_VFIO_SET_IOMMU(r7, 0x3b66, 0x1)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f00000000c0)={0x4, 0xeeef0000, 0x8, r6, 0x6})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000000)
r8 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r8, &(0x7f0000000140)={&(0x7f00000007c0)=@hci={0x1f, 0x0, 0x31}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000280)='\x00'/14, 0xe}], 0x1}, 0xc804)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r9 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x3001, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r9, 0x4610, &(0x7f0000000180)={0x1})
ioctl$FBIOPUT_CON2FBMAP(r9, 0x4610, &(0x7f0000000040)={0x1f})

0s ago: executing program 1 (id=4922):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
io_setup(0x7, &(0x7f0000000280)=<r0=>0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000140)='-', 0x1}])
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
pivot_root(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYBLOB="08001b"], 0x30}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000240))
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000000)={'team0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x7, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10104}, [@IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}}, 0x0)

kernel console output (not intermixed with test programs):


[ 1132.003937][ T9347]  do_fast_syscall_32+0x32/0x80
[ 1132.003950][ T9347]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1132.003963][ T9347] RIP: 0023:0xf70bd579
[ 1132.003972][ T9347] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1132.003983][ T9347] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1132.003993][ T9347] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400
[ 1132.004000][ T9347] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1132.004006][ T9347] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1132.004018][ T9347] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1132.004024][ T9347] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1132.004038][ T9347]  </TASK>
[ 1132.004043][ T9347] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1132.205295][   T40] audit: type=1326 audit(1759981802.935:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.1.4170" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70cd579 code=0x0
[ 1133.073089][ T9347] comedi comedi0: reset error (fatal)
[ 1133.787157][ T9370] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(15)
[ 1133.790252][ T9370] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1133.793711][ T9370] vhci_hcd vhci_hcd.0: Device attached
[ 1133.906146][ T9371] vhci_hcd: connection closed
[ 1133.907187][ T2425] vhci_hcd: stop threads
[ 1133.913246][ T2425] vhci_hcd: release socket
[ 1133.915257][ T2425] vhci_hcd: disconnect device
[ 1133.973213][ T4794] vhci_hcd: vhci_device speed not set
[ 1134.154477][ T9379] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4175'.
[ 1134.953139][  T843] vhci_hcd: vhci_device speed not set
[ 1135.833902][ T9400] fuse: Bad value for 'user_id'
[ 1135.835772][ T9400] fuse: Bad value for 'user_id'
[ 1136.840687][ T9414] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4182'.
[ 1137.536957][   T40] audit: type=1326 audit(1759981808.265:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9421 comm="syz.3.4185" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703d579 code=0x0
[ 1137.746035][ T9429] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(15)
[ 1137.748455][ T9429] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1137.750913][ T9429] vhci_hcd vhci_hcd.0: Device attached
[ 1138.003063][  T844] usb 43-1: new high-speed USB device number 15 using vhci_hcd
[ 1138.353351][ T9432] vhci_hcd: connection reset by peer
[ 1138.355453][  T602] vhci_hcd: stop threads
[ 1138.356959][  T602] vhci_hcd: release socket
[ 1138.358483][  T602] vhci_hcd: disconnect device
[ 1141.048395][ T9477] lo speed is unknown, defaulting to 1000
[ 1142.054831][ T9456] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1142.334775][ T9491] 9pnet_fd: Insufficient options for proto=fd
[ 1142.417439][ T9497] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4198'.
[ 1142.433184][    T9] usb 7-1: new full-speed USB device number 24 using dummy_hcd
[ 1142.549834][ T9502] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4202'.
[ 1142.599668][    T9] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1142.603035][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1142.603071][  T845] usb 6-1: new full-speed USB device number 21 using dummy_hcd
[ 1142.608508][    T9] usb 7-1: Product: syz
[ 1142.610124][    T9] usb 7-1: Manufacturer: syz
[ 1142.611814][    T9] usb 7-1: SerialNumber: syz
[ 1142.634275][    T9] usb 7-1: config 0 descriptor??
[ 1142.758456][  T845] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1142.761847][  T845] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1142.764410][  T845] usb 6-1: Product: syz
[ 1142.765698][  T845] usb 6-1: Manufacturer: syz
[ 1142.767404][  T845] usb 6-1: SerialNumber: syz
[ 1142.770438][  T845] usb 6-1: config 0 descriptor??
[ 1143.063868][    T9] usb 7-1: USB disconnect, device number 24
[ 1143.183393][  T844] vhci_hcd: vhci_device speed not set
[ 1143.192106][  T845] usb 6-1: USB disconnect, device number 21
[ 1143.417996][ T9510] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4203'.
[ 1145.426081][ T9531] syz.0.4209 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1145.564093][ T9531] Mount JFS Failure: -22
[ 1145.565627][ T9531] jfs_mount failed w/return code = -22
[ 1145.807209][ T9520] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1145.815541][ T9520] netlink: 'syz.1.4207': attribute type 10 has an invalid length.
[ 1145.836264][ T9520] lo speed is unknown, defaulting to 1000
[ 1146.492411][ T9548] bond5: option arp_validate: invalid value (18446744073709551615)
[ 1146.498687][ T9548] bond5 (unregistering): Released all slaves
[ 1147.498259][ T9574] netlink: 'syz.0.4220': attribute type 1 has an invalid length.
[ 1147.510789][ T9574] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1147.522502][ T9574] bond3: (slave ip6gretap1): making interface the new active one
[ 1147.526905][ T9574] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[ 1147.696349][ T9579] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4217'.
[ 1148.822931][ T9610] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1148.860499][ T9614] loop6: detected capacity change from 0 to 7
[ 1148.873708][ T9614] Dev loop6: unable to read RDB block 7
[ 1148.877275][ T9614]  loop6: AHDI p3 p4
[ 1148.878811][ T9614] loop6: partition table partially beyond EOD, truncated
[ 1148.881991][ T9612] netlink: 'syz.1.4228': attribute type 10 has an invalid length.
[ 1148.883559][ T9614] loop6: p3 start 1886353253 is beyond EOD, truncated
[ 1148.896526][ T9610] lo speed is unknown, defaulting to 1000
[ 1149.196638][ T9625] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4232'.
[ 1149.822009][ T9640] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1149.896972][ T9647] netlink: 'syz.0.4233': attribute type 10 has an invalid length.
[ 1150.052726][ T9647] lo speed is unknown, defaulting to 1000
[ 1151.898664][ T9667] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1151.967710][ T9668] netlink: 'syz.2.4242': attribute type 10 has an invalid length.
[ 1152.061150][ T9667] lo speed is unknown, defaulting to 1000
[ 1152.229823][ T9688] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1152.285953][ T9688] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1152.451825][ T9693] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4247'.
[ 1152.522908][ T9697] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1152.579506][ T9697] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1152.585263][ T9695] /dev/sr0: Can't open blockdev
[ 1152.640267][ T9697] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1152.814164][ T9697] /dev/sr0: Can't open blockdev
[ 1154.360095][    T9] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[ 1155.023230][    T9] usb 7-1: Using ep0 maxpacket: 8
[ 1155.122272][    T9] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1155.125708][    T9] usb 7-1: config 4 interface 0 has no altsetting 0
[ 1155.215895][    T9] usb 7-1: string descriptor 0 read error: -22
[ 1155.218784][    T9] usb 7-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[ 1155.222577][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1155.346951][    T9] usb 7-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[ 1155.378816][    T9] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1155.383932][    T9] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[ 1155.387416][    T9] usb 7-1: media controller created
[ 1155.407689][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1155.545461][    T9] zl10353_read_register: readreg error (reg=127, ret==0)
[ 1155.566560][    T9] usb 7-1: USB disconnect, device number 25
[ 1155.584726][ T9711] warn_alloc: 1 callbacks suppressed
[ 1155.584742][ T9711] syz.0.4253: vmalloc error: size 16777216, failed to allocated page array size 32768, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1155.593313][ T9711] CPU: 1 UID: 0 PID: 9711 Comm: syz.0.4253 Not tainted syzkaller #0 PREEMPT(full) 
[ 1155.593330][ T9711] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1155.593350][ T9711] Call Trace:
[ 1155.593357][ T9711]  <TASK>
[ 1155.593363][ T9711]  dump_stack_lvl+0x16c/0x1f0
[ 1155.593397][ T9711]  warn_alloc+0x248/0x3a0
[ 1155.593412][ T9711]  ? __pfx_warn_alloc+0x10/0x10
[ 1155.593428][ T9711]  ? packet_set_ring+0xb4c/0x17e0
[ 1155.593449][ T9711]  ? __vmalloc_node_noprof+0xad/0xf0
[ 1155.593468][ T9711]  __vmalloc_node_range_noprof+0xfe2/0x1480
[ 1155.593494][ T9711]  ? packet_set_ring+0xb4c/0x17e0
[ 1155.593514][ T9711]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1155.593530][ T9711]  ? alloc_pages_mpol+0x25a/0x550
[ 1155.593545][ T9711]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1155.593559][ T9711]  ? rcu_is_watching+0x12/0xc0
[ 1155.593573][ T9711]  ? packet_set_ring+0xb4c/0x17e0
[ 1155.593589][ T9711]  __vmalloc_node_noprof+0xad/0xf0
[ 1155.593605][ T9711]  ? packet_set_ring+0xb4c/0x17e0
[ 1155.593622][ T9711]  packet_set_ring+0xb4c/0x17e0
[ 1155.593644][ T9711]  packet_setsockopt+0x121b/0x33c0
[ 1155.593663][ T9711]  ? __pfx___might_resched+0x10/0x10
[ 1155.593676][ T9711]  ? __lock_acquire+0x62e/0x1ce0
[ 1155.593692][ T9711]  ? __pfx_packet_setsockopt+0x10/0x10
[ 1155.593709][ T9711]  ? aa_sk_perm+0x2f4/0xb10
[ 1155.593740][ T9711]  ? find_held_lock+0x2b/0x80
[ 1155.593753][ T9711]  ? aa_sock_opt_perm+0xfd/0x1c0
[ 1155.593767][ T9711]  ? __pfx_packet_setsockopt+0x10/0x10
[ 1155.593786][ T9711]  do_sock_setsockopt+0xf0/0x1d0
[ 1155.593805][ T9711]  __sys_setsockopt+0x120/0x1a0
[ 1155.593819][ T9711]  __ia32_sys_setsockopt+0xbc/0x160
[ 1155.593831][ T9711]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1155.593843][ T9711]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1155.593856][ T9711]  __do_fast_syscall_32+0x7c/0x300
[ 1155.593872][ T9711]  do_fast_syscall_32+0x32/0x80
[ 1155.593885][ T9711]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1155.593899][ T9711] RIP: 0023:0xf70bd579
[ 1155.593908][ T9711] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1155.593981][ T9711] RSP: 002b:00000000f546b55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[ 1155.593993][ T9711] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000107
[ 1155.594000][ T9711] RDX: 0000000000000005 RSI: 00000000800000c0 RDI: 000000000000001c
[ 1155.594007][ T9711] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1155.594013][ T9711] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1155.594020][ T9711] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1155.594036][ T9711]  </TASK>
[ 1155.594065][ T9711] Mem-Info:
[ 1155.785432][ T9711] active_anon:11381 inactive_anon:5245 isolated_anon:0
[ 1155.785432][ T9711]  active_file:2120 inactive_file:11419 isolated_file:0
[ 1155.785432][ T9711]  unevictable:1768 dirty:385 writeback:0
[ 1155.785432][ T9711]  slab_reclaimable:6148 slab_unreclaimable:63929
[ 1155.785432][ T9711]  mapped:33401 shmem:10363 pagetables:2228
[ 1155.785432][ T9711]  sec_pagetables:333 bounce:0
[ 1155.785432][ T9711]  kernel_misc_reclaimable:0
[ 1155.785432][ T9711]  free:36255 free_pcp:13396 free_cma:0
[ 1155.800789][ T9711] Node 0 active_anon:1960kB inactive_anon:104kB active_file:500kB inactive_file:380kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:1936kB dirty:8kB writeback:0kB shmem:5456kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7816kB pagetables:1424kB sec_pagetables:1184kB all_unreclaimable? no Balloon:0kB
[ 1155.811441][ T9711] Node 1 active_anon:43564kB inactive_anon:20876kB active_file:7980kB inactive_file:45296kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:131668kB dirty:1532kB writeback:0kB shmem:35996kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6548kB pagetables:7488kB sec_pagetables:148kB all_unreclaimable? no Balloon:0kB
[ 1155.822228][ T9711] Node 0 DMA free:2092kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:44kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:716kB local_pcp:204kB free_cma:0kB
[ 1155.831748][ T9711] lowmem_reserve[]: 0 292 292 292 292
[ 1155.833467][ T9711] Node 0 DMA32 free:15848kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1960kB inactive_anon:104kB active_file:500kB inactive_file:376kB unevictable:3536kB writepending:8kB zspages:240kB present:1032196kB managed:299728kB mlocked:0kB bounce:0kB free_pcp:8340kB local_pcp:2412kB free_cma:0kB
[ 1155.844656][ T9711] lowmem_reserve[]: 0 0 0 0 0
[ 1155.846325][ T9711] Node 1 DMA32 free:127004kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:43572kB inactive_anon:20876kB active_file:7980kB inactive_file:45296kB unevictable:3536kB writepending:1532kB zspages:2632kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:44524kB local_pcp:7492kB free_cma:0kB
[ 1155.863110][ T9711] lowmem_reserve[]: 0 0 0 0 0
[ 1155.864673][ T9711] Node 0 DMA: 27*4kB (U) 24*8kB (U) 4*16kB (UM) 4*32kB (UM) 3*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2092kB
[ 1155.869266][ T9711] Node 0 DMA32: 4*4kB (UE) 25*8kB (UME) 5*16kB (E) 108*32kB (UME) 59*64kB (UME) 13*128kB (UME) 4*256kB (M) 3*512kB (UM) 2*1024kB (UM) 1*2048kB (M) 0*4096kB = 15848kB
[ 1155.874569][ T9711] Node 1 DMA32: 17*4kB (UME) 26*8kB (E) 4*16kB (ME) 26*32kB (UME) 19*64kB (UME) 10*128kB (UE) 26*256kB (UME) 62*512kB (UME) 43*1024kB (UME) 16*2048kB (UM) 2*4096kB (U) = 127060kB
[ 1155.880801][ T9711] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1155.883813][ T9711] Node 0 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1155.886700][ T9711] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1155.889652][ T9711] Node 1 hugepages_total=5 hugepages_free=3 hugepages_surp=2 hugepages_size=2048kB
[ 1155.892892][ T9711] 24144 total pagecache pages
[ 1155.931988][ T9711] 235 pages in swap cache
[ 1155.933717][ T9711] Free swap  = 112732kB
[ 1155.935179][ T9711] Total swap = 124996kB
[ 1155.936643][ T9711] 524155 pages RAM
[ 1155.937824][ T9711] 0 pages HighMem/MovableOnly
[ 1155.939316][ T9711] 208328 pages reserved
[ 1155.940626][ T9711] 0 pages cma reserved
[ 1156.032248][ T9725] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1156.094027][ T9726] netlink: 'syz.3.4258': attribute type 10 has an invalid length.
[ 1156.106259][ T9726] lo speed is unknown, defaulting to 1000
[ 1156.349020][ T9741] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4260'.
[ 1157.483144][  T843] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[ 1157.645161][  T843] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1157.649115][  T843] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1157.652437][  T843] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1157.656071][  T843] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1157.661694][ T9752] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1157.667758][  T843] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[ 1157.729130][   T40] audit: type=1326 audit(1759981828.455:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9766 comm="syz.1.4269" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70cd579 code=0x0
[ 1157.876661][ T5935] usb 8-1: USB disconnect, device number 23
[ 1157.880937][ T9770] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(15)
[ 1157.884083][ T9770] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1157.887538][ T9770] vhci_hcd vhci_hcd.0: Device attached
[ 1158.153152][ T1343] usb 39-1: new high-speed USB device number 16 using vhci_hcd
[ 1158.396260][ T9782] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[ 1158.398498][ T9782] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1158.401793][ T9782] vhci_hcd vhci_hcd.0: Device attached
[ 1159.348171][ T9771] vhci_hcd: connection reset by peer
[ 1159.350304][ T2425] vhci_hcd: stop threads
[ 1159.352377][ T2425] vhci_hcd: release socket
[ 1159.354638][ T2425] vhci_hcd: disconnect device
[ 1159.979596][ T5841] usb 44-1: SetAddress Request (18) to port 0
[ 1159.983773][ T5841] usb 44-1: new SuperSpeed USB device number 18 using vhci_hcd
[ 1160.673253][  T843] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[ 1160.825927][  T843] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1160.842221][  T843] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1160.858301][  T843] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1160.864863][  T843] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1160.867352][  T843] usb 7-1: Product: syz
[ 1160.868677][  T843] usb 7-1: Manufacturer: syz
[ 1160.870239][  T843] usb 7-1: SerialNumber: syz
[ 1160.872921][  T843] usb 7-1: config 0 descriptor??
[ 1160.877532][  T843] usb 7-1: selecting invalid altsetting 0
[ 1160.901370][ T9797] netlink: 'syz.0.4275': attribute type 10 has an invalid length.
[ 1160.934139][ T9796] lo speed is unknown, defaulting to 1000
[ 1161.187098][  T843] usb 7-1: USB disconnect, device number 26
[ 1161.453334][ T9783] vhci_hcd: connection reset by peer
[ 1161.455758][  T102] vhci_hcd: stop threads
[ 1161.464896][  T102] vhci_hcd: release socket
[ 1161.478355][  T102] vhci_hcd: disconnect device
[ 1163.243537][ T1343] vhci_hcd: vhci_device speed not set
[ 1163.523183][    T9] usb 6-1: new full-speed USB device number 22 using dummy_hcd
[ 1163.680074][    T9] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1163.687259][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1163.689920][    T9] usb 6-1: Product: syz
[ 1163.691341][    T9] usb 6-1: Manufacturer: syz
[ 1163.692890][    T9] usb 6-1: SerialNumber: syz
[ 1163.696276][    T9] usb 6-1: config 0 descriptor??
[ 1163.894330][ T9831] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1163.969695][ T9831] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1164.046668][ T9831] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1164.314911][ T9831] /dev/sr0: Can't open blockdev
[ 1164.461251][    T9] usb 6-1: USB disconnect, device number 22
[ 1164.593700][ T9843] 9pnet_virtio: no channels available for device syz
[ 1164.890864][ T9839] netlink: 'syz.1.4286': attribute type 10 has an invalid length.
[ 1164.914417][ T9839] lo speed is unknown, defaulting to 1000
[ 1164.963369][  T843] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1165.023749][ T5841] usb 44-1: device descriptor read/8, error -110
[ 1165.106001][ T9855] loop6: detected capacity change from 0 to 7
[ 1165.122691][ T9855] Dev loop6: unable to read RDB block 7
[ 1165.124651][ T9855]  loop6: AHDI p3 p4
[ 1165.125973][ T9855] loop6: partition table partially beyond EOD, truncated
[ 1165.128588][ T9855] loop6: p3 start 1886353253 is beyond EOD, truncated
[ 1165.136207][  T843] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1165.139826][  T843] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1165.142915][  T843] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1165.146117][  T843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1165.152247][ T9841] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1165.160442][  T843] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1165.242432][ T9862] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[ 1165.248000][ T9862] Error validating options; rc = [-22]
[ 1165.368493][    T9] usb 5-1: USB disconnect, device number 23
[ 1165.450443][ T5841] usb usb44-port1: attempt power cycle
[ 1166.852177][   T40] audit: type=1326 audit(1759981837.575:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9875 comm="syz.0.4297" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[ 1166.863653][ T5841] usb usb44-port1: unable to enumerate USB device
[ 1167.087920][ T9888] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(15)
[ 1167.091020][ T9888] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1167.094828][ T9888] vhci_hcd vhci_hcd.0: Device attached
[ 1167.223388][ T9897] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4299'.
[ 1167.273171][ T9889] vhci_hcd: connection closed
[ 1167.275417][ T2424] vhci_hcd: stop threads
[ 1167.279697][ T2424] vhci_hcd: release socket
[ 1167.281364][ T2424] vhci_hcd: disconnect device
[ 1167.642041][ T9903] 9pnet_virtio: no channels available for device syz
[ 1168.061444][ T9912] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[ 1168.076156][ T9912] netlink: 'syz.0.4305': attribute type 1 has an invalid length.
[ 1168.131447][ T9913] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4305'.
[ 1168.333869][ T9912] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1168.336343][ T9908] netlink: 'syz.1.4303': attribute type 10 has an invalid length.
[ 1168.475689][ T9913] bond4 (unregistering): Released all slaves
[ 1168.574281][  T843] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[ 1168.622212][ T9917] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[ 1168.627300][ T9917] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[ 1168.630857][ T9917] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[ 1168.638037][ T9921] lo speed is unknown, defaulting to 1000
[ 1169.627338][  T843] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1169.630510][  T843] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1169.737470][  T843] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1169.740497][  T843] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1169.743798][  T843] usb 5-1: Product: syz
[ 1169.745333][  T843] usb 5-1: Manufacturer: syz
[ 1169.747060][  T843] usb 5-1: SerialNumber: syz
[ 1169.750824][  T843] usb 5-1: config 0 descriptor??
[ 1169.757200][  T843] usb 5-1: selecting invalid altsetting 0
[ 1171.133150][  T845] usb 8-1: new full-speed USB device number 24 using dummy_hcd
[ 1171.286909][  T845] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1171.290752][  T845] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1171.297086][  T845] usb 8-1: Product: syz
[ 1171.299434][  T845] usb 8-1: Manufacturer: syz
[ 1171.301462][  T845] usb 8-1: SerialNumber: syz
[ 1171.305854][  T845] usb 8-1: config 0 descriptor??
[ 1171.703458][  T845] usb 5-1: USB disconnect, device number 24
[ 1171.733451][ T1343] usb 8-1: USB disconnect, device number 24
[ 1173.296311][ T9999] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4327'.
[ 1173.538423][T10005] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1173.605365][T10006] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[ 1173.612585][T10006] netlink: 'syz.1.4329': attribute type 1 has an invalid length.
[ 1173.661544][T10005] XFS (nullb0): Invalid superblock magic number
[ 1173.709568][T10006] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1173.747553][T10006] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4329'.
[ 1174.203437][ T4794] usb 6-1: new full-speed USB device number 23 using dummy_hcd
[ 1174.354523][ T4794] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1174.357775][ T4794] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1174.363348][ T4794] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1174.366281][ T4794] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1174.368758][ T4794] usb 6-1: Product: syz
[ 1174.370027][ T4794] usb 6-1: Manufacturer: syz
[ 1174.371556][ T4794] usb 6-1: SerialNumber: syz
[ 1174.377834][ T4794] usb 6-1: config 0 descriptor??
[ 1174.382310][ T4794] usb 6-1: selecting invalid altsetting 0
[ 1174.441762][T10006] bond2 (unregistering): Released all slaves
[ 1176.790071][ T1343] usb 6-1: USB disconnect, device number 23
[ 1177.303130][ T1343] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[ 1177.453068][ T1343] usb 6-1: Using ep0 maxpacket: 8
[ 1177.494978][ T1343] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1177.498564][ T1343] usb 6-1: config 4 interface 0 has no altsetting 0
[ 1177.506635][ T1343] usb 6-1: string descriptor 0 read error: -22
[ 1177.508956][ T1343] usb 6-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[ 1177.511700][ T1343] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1177.523961][ T1343] usb 6-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[ 1177.529303][ T1343] usb 6-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1177.535596][ T1343] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[ 1177.538171][ T1343] usb 6-1: media controller created
[ 1177.549940][ T1343] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1177.806401][ T1343] zl10353_read_register: readreg error (reg=127, ret==0)
[ 1177.869570][ T1343] usb 6-1: USB disconnect, device number 24
[ 1178.443134][ T1343] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[ 1178.735853][ T1343] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1178.740364][ T1343] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1178.743607][ T1343] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1178.746453][ T1343] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1178.750695][T10083] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1178.754754][ T1343] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1178.964281][ T4794] usb 7-1: USB disconnect, device number 27
[ 1181.063815][T10120] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1181.072583][T10111] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[ 1181.075748][T10111] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1181.084705][T10111] vhci_hcd vhci_hcd.0: Device attached
[ 1181.123900][T10125] netlink: 'syz.3.4360': attribute type 10 has an invalid length.
[ 1181.138068][T10120] lo speed is unknown, defaulting to 1000
[ 1181.306504][T10134] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4363'.
[ 1181.373141][ T4794] usb 42-1: SetAddress Request (6) to port 0
[ 1181.375355][ T4794] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[ 1181.616833][T10148] fuse: Invalid rootmode
[ 1181.621144][T10147] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1181.999543][   T40] audit: type=1326 audit(1759981852.725:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10155 comm="syz.0.4369" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[ 1182.057100][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.173065][T10122] vhci_hcd: connection reset by peer
[ 1182.175307][  T602] vhci_hcd: stop threads
[ 1182.177422][T10160] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(14)
[ 1182.177587][  T602] vhci_hcd: release socket
[ 1182.180026][T10160] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1182.182278][  T602] vhci_hcd: disconnect device
[ 1182.223888][T10160] vhci_hcd vhci_hcd.0: Device attached
[ 1182.493137][  T843] usb 37-1: new high-speed USB device number 14 using vhci_hcd
[ 1183.483458][T10164] vhci_hcd: connection reset by peer
[ 1183.485622][ T2425] vhci_hcd: stop threads
[ 1183.487575][ T2425] vhci_hcd: release socket
[ 1183.489228][ T2425] vhci_hcd: disconnect device
[ 1184.876644][T10219] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4388'.
[ 1184.909631][T10221] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[ 1186.455131][ T4794] usb 42-1: device descriptor read/8, error -110
[ 1186.473665][T10246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1186.529671][T10246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1186.549011][T10250] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4398'.
[ 1186.587007][T10246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1186.733935][T10246] /dev/sr0: Can't open blockdev
[ 1186.854084][ T4794] usb usb42-port1: attempt power cycle
[ 1187.143832][   T40] audit: type=1326 audit(1759981857.875:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10254 comm="syz.0.4400" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[ 1187.203406][T10257] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(14)
[ 1187.206006][T10257] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1187.208899][T10257] vhci_hcd vhci_hcd.0: Device attached
[ 1187.335004][ T1343] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[ 1187.413668][ T4794] usb usb42-port1: unable to enumerate USB device
[ 1187.494661][ T1343] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1187.501242][ T1343] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1187.505036][ T1343] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1187.508430][ T1343] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1187.519108][ T1343] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1187.524288][ T1343] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1187.527110][ T1343] usb 6-1: Product: syz
[ 1187.528607][ T1343] usb 6-1: Manufacturer: syz
[ 1187.534383][ T1343] cdc_wdm 6-1:1.0: skipping garbage
[ 1187.537441][ T1343] cdc_wdm 6-1:1.0: skipping garbage
[ 1187.539851][ T1343] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1187.957050][T10258] vhci_hcd: connection reset by peer
[ 1187.959539][  T602] vhci_hcd: stop threads
[ 1187.961713][  T602] vhci_hcd: release socket
[ 1187.966448][  T602] vhci_hcd: disconnect device
[ 1188.033210][  T843] vhci_hcd: vhci_device speed not set
[ 1189.267792][T10293] FAULT_INJECTION: forcing a failure.
[ 1189.267792][T10293] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1189.272264][T10293] CPU: 2 UID: 0 PID: 10293 Comm: syz.2.4409 Not tainted syzkaller #0 PREEMPT(full) 
[ 1189.272281][T10293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1189.272289][T10293] Call Trace:
[ 1189.272294][T10293]  <TASK>
[ 1189.272299][T10293]  dump_stack_lvl+0x16c/0x1f0
[ 1189.272332][T10293]  should_fail_ex+0x512/0x640
[ 1189.272353][T10293]  _copy_from_user+0x2e/0xd0
[ 1189.272367][T10293]  copy_mount_options+0x76/0x190
[ 1189.272384][T10293]  __ia32_sys_mount+0x1ab/0x310
[ 1189.272397][T10293]  ? __pfx___ia32_sys_mount+0x10/0x10
[ 1189.272410][T10293]  ? rcu_is_watching+0x12/0xc0
[ 1189.272424][T10293]  __do_fast_syscall_32+0x7c/0x300
[ 1189.272439][T10293]  do_fast_syscall_32+0x32/0x80
[ 1189.272451][T10293]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1189.272467][T10293] RIP: 0023:0xf70ad579
[ 1189.272476][T10293] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1189.272487][T10293] RSP: 002b:00000000f549d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[ 1189.272497][T10293] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800020c0
[ 1189.272504][T10293] RDX: 0000000080002100 RSI: 0000000000000000 RDI: 00000000800003c0
[ 1189.272510][T10293] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1189.272516][T10293] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1189.272522][T10293] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1189.272536][T10293]  </TASK>
[ 1190.175580][  T843] usb 6-1: USB disconnect, device number 25
[ 1190.235653][T10301] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1190.291551][T10301] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1190.364098][T10301] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1190.495227][T10301] /dev/sr0: Can't open blockdev
[ 1190.650816][   T40] audit: type=1326 audit(1759981861.375:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.4412" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[ 1190.709902][T10308] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(14)
[ 1190.712403][T10308] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1190.717297][T10308] vhci_hcd vhci_hcd.0: Device attached
[ 1190.953123][ T1343] usb 37-1: new high-speed USB device number 15 using vhci_hcd
[ 1191.467344][T10309] vhci_hcd: connection reset by peer
[ 1191.469994][ T2424] vhci_hcd: stop threads
[ 1191.471751][ T2424] vhci_hcd: release socket
[ 1191.473791][ T2424] vhci_hcd: disconnect device
[ 1192.574824][T10359] netlink: del zone limit has 8 unknown bytes
[ 1195.093657][T10401] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1195.183498][T10400] netlink: 'syz.3.4439': attribute type 10 has an invalid length.
[ 1195.198630][T10400] lo speed is unknown, defaulting to 1000
[ 1195.214891][T10404] gtp0: entered promiscuous mode
[ 1195.216820][T10404] gtp0: entered allmulticast mode
[ 1195.889222][T10414] netlink: 84 bytes leftover after parsing attributes in process `syz.1.4444'.
[ 1196.146468][T10434] tipc: Invalid UDP bearer configuration
[ 1196.146502][T10434] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1196.239092][  T602] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1196.490294][T10445] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1196.549445][T10446] netlink: 'syz.1.4454': attribute type 10 has an invalid length.
[ 1196.549906][ T1343] vhci_hcd: vhci_device speed not set
[ 1196.564265][T10446] lo speed is unknown, defaulting to 1000
[ 1196.881501][   T40] audit: type=1326 audit(1759981867.605:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.888715][   T40] audit: type=1326 audit(1759981867.605:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.895572][   T40] audit: type=1326 audit(1759981867.605:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.902090][   T40] audit: type=1326 audit(1759982096.623:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.910653][   T40] audit: type=1326 audit(1759982096.623:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.919082][  T843] IPVS: starting estimator thread 0...
[ 1196.919847][   T40] audit: type=1326 audit(1759982096.623:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.930321][   T40] audit: type=1326 audit(1759982096.623:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.938284][   T40] audit: type=1326 audit(1759982096.623:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.946475][   T40] audit: type=1326 audit(1759982096.623:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=170 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1196.953212][   T40] audit: type=1326 audit(1759982096.623:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10461 comm="syz.0.4460" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[ 1197.013127][T10466] IPVS: using max 46 ests per chain, 110400 per kthread
[ 1197.877550][T10480] 9pnet_virtio: no channels available for device syz
[ 1198.133082][  T843] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[ 1198.214503][T10486] loop6: detected capacity change from 0 to 7
[ 1198.217700][T10486] Dev loop6: unable to read RDB block 7
[ 1198.219757][T10486]  loop6: unable to read partition table
[ 1198.221530][T10486] loop6: partition table beyond EOD, truncated
[ 1198.223830][T10486] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1198.293331][  T843] usb 5-1: Using ep0 maxpacket: 8
[ 1198.296651][  T843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1198.300146][  T843] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1198.303366][  T843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1198.307551][  T843] usb 5-1: config 0 descriptor??
[ 1198.463149][    T9] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[ 1198.515743][  T843] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[ 1198.627973][    T9] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1198.632431][    T9] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1198.637291][    T9] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1198.640975][    T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1198.648511][    T9] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1198.651931][    T9] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1198.655028][    T9] usb 6-1: Product: syz
[ 1198.656582][    T9] usb 6-1: Manufacturer: syz
[ 1198.660498][    T9] cdc_wdm 6-1:1.0: skipping garbage
[ 1198.662463][    T9] cdc_wdm 6-1:1.0: skipping garbage
[ 1198.664942][    T9] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1199.229785][T10510] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1199.232421][T10510] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1199.237596][T10510] vhci_hcd vhci_hcd.0: Device attached
[ 1199.283946][T10510] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4474'.
[ 1199.513214][  T845] usb 42-1: SetAddress Request (10) to port 0
[ 1199.515513][  T845] usb 42-1: new SuperSpeed USB device number 10 using vhci_hcd
[ 1199.561547][T10518] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1199.622388][T10519] netlink: 'syz.3.4475': attribute type 10 has an invalid length.
[ 1199.635654][T10519] lo speed is unknown, defaulting to 1000
[ 1199.857961][T10511] vhci_hcd: connection reset by peer
[ 1199.860779][   T46] vhci_hcd: stop threads
[ 1199.862308][   T46] vhci_hcd: release socket
[ 1199.863945][   T46] vhci_hcd: disconnect device
[ 1200.451210][T10532] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1200.509263][T10534] netlink: 'syz.2.4481': attribute type 3 has an invalid length.
[ 1200.902224][ T5841] usb 5-1: USB disconnect, device number 25
[ 1201.456465][ T5841] usb 6-1: USB disconnect, device number 26
[ 1201.840004][T10551] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1201.906907][T10555] netlink: 'syz.1.4484': attribute type 10 has an invalid length.
[ 1201.934387][T10555] lo speed is unknown, defaulting to 1000
[ 1202.249689][   T40] kauditd_printk_skb: 33 callbacks suppressed
[ 1202.249700][   T40] audit: type=1326 audit(1759982101.983:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10567 comm="syz.3.4491" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703d579 code=0x0
[ 1202.602055][T10575] syz_tun: entered allmulticast mode
[ 1202.936778][T10581] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1203.309935][T10573] syz_tun: left allmulticast mode
[ 1203.568706][T10594] loop6: detected capacity change from 0 to 7
[ 1203.572413][T10594] Dev loop6: unable to read RDB block 7
[ 1203.574926][T10594]  loop6: AHDI p3 p4
[ 1203.576604][T10594] loop6: partition table partially beyond EOD, truncated
[ 1203.579598][T10594] loop6: p3 start 1886353253 is beyond EOD, truncated
[ 1203.775456][   T40] audit: type=1326 audit(1759982103.513:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10601 comm="syz.0.4502" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[ 1203.837122][T10606] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(14)
[ 1203.839815][T10606] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1203.844454][T10606] vhci_hcd vhci_hcd.0: Device attached
[ 1203.972497][T10609] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1204.073681][T10603] netlink: 'syz.3.4500': attribute type 10 has an invalid length.
[ 1204.083155][  T843] usb 37-1: new high-speed USB device number 16 using vhci_hcd
[ 1204.093903][T10603] lo speed is unknown, defaulting to 1000
[ 1204.507922][T10607] vhci_hcd: connection reset by peer
[ 1204.518667][ T2424] vhci_hcd: stop threads
[ 1204.520571][ T2424] vhci_hcd: release socket
[ 1204.522731][ T2424] vhci_hcd: disconnect device
[ 1204.613423][  T845] usb 42-1: device descriptor read/8, error -110
[ 1205.015249][  T845] usb usb42-port1: attempt power cycle
[ 1205.352322][T10631] cgroup: fork rejected by pids controller in /syz0
[ 1205.583678][  T845] usb usb42-port1: unable to enumerate USB device
[ 1205.603395][T10918] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1205.709873][T10918] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1205.842686][   T40] audit: type=1326 audit(1759982105.573:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10932 comm="syz.2.4515" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ad579 code=0x0
[ 1205.903873][T10937] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(14)
[ 1205.906136][T10937] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1205.908836][T10937] vhci_hcd vhci_hcd.0: Device attached
[ 1205.978200][T10941] syz_tun: entered allmulticast mode
[ 1206.153106][    T9] usb 41-1: new high-speed USB device number 10 using vhci_hcd
[ 1206.543087][T10951] 9pnet_virtio: no channels available for device syz
[ 1206.616453][T10939] vhci_hcd: connection reset by peer
[ 1206.619573][ T2425] vhci_hcd: stop threads
[ 1206.621745][ T2425] vhci_hcd: release socket
[ 1206.624165][ T2425] vhci_hcd: disconnect device
[ 1206.716228][T10936] syz_tun: left allmulticast mode
[ 1206.811885][T10957] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[ 1206.814711][T10957] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1206.818928][T10957] vhci_hcd vhci_hcd.0: Device attached
[ 1206.901447][T10964] loop6: detected capacity change from 0 to 7
[ 1206.904869][T10964] Dev loop6: unable to read RDB block 7
[ 1206.908052][T10964]  loop6: unable to read partition table
[ 1206.910240][T10964] loop6: partition table beyond EOD, truncated
[ 1206.912582][T10964] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1206.962250][T10966] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1207.085561][T10966] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1207.093409][  T845] usb 40-1: SetAddress Request (20) to port 0
[ 1207.095614][  T845] usb 40-1: new SuperSpeed USB device number 20 using vhci_hcd
[ 1207.181818][T10971] 9pnet_virtio: no channels available for device syz
[ 1207.184489][T10973] overlayfs: failed to clone lowerpath
[ 1207.234408][T10966] /dev/sr0: Can't open blockdev
[ 1207.369172][T10979] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4529'.
[ 1207.429779][T10958] vhci_hcd: connection reset by peer
[ 1207.432006][ T2425] vhci_hcd: stop threads
[ 1207.436065][ T2425] vhci_hcd: release socket
[ 1207.438705][ T2425] vhci_hcd: disconnect device
[ 1208.255190][T10995] loop6: detected capacity change from 0 to 7
[ 1208.262317][T10995] Dev loop6: unable to read RDB block 7
[ 1208.272718][T10995]  loop6: unable to read partition table
[ 1208.276339][T10995] loop6: partition table beyond EOD, truncated
[ 1208.278743][T10995] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1208.309418][T10997] syz_tun: entered allmulticast mode
[ 1208.463867][T18087] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[ 1208.624052][T18087] usb 6-1: too many configurations: 9, using maximum allowed: 8
[ 1208.628404][T18087] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1208.631863][T18087] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1208.638091][T18087] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1208.641197][T18087] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1208.644175][T18087] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1208.647937][T18087] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1208.652112][T18087] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1208.657531][T18087] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1208.661782][T18087] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1208.665483][T18087] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1208.668717][T18087] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1208.672799][T18087] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1208.676229][T18087] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1208.679593][T18087] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1208.683470][T18087] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1208.686514][T18087] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1208.689542][T18087] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1208.694392][T18087] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1208.698149][T18087] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1208.701028][T18087] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1208.704919][T18087] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1208.708400][T18087] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1208.712039][T18087] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1208.716442][T18087] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1208.720903][T18087] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[ 1208.724161][T18087] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[ 1208.727393][T18087] usb 6-1: Product: syz
[ 1208.728853][T18087] usb 6-1: Manufacturer: syz
[ 1208.730639][T18087] usb 6-1: SerialNumber: syz
[ 1208.733873][T18087] usb 6-1: config 0 descriptor??
[ 1208.763699][T18087] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[ 1209.039101][T10997] syz_tun: left allmulticast mode
[ 1209.066984][T18087] usb 6-1: USB disconnect, device number 27
[ 1209.071737][T18087] yurex 6-1:0.0: USB YUREX #0 now disconnected
[ 1209.163179][  T843] vhci_hcd: vhci_device speed not set
[ 1209.437668][T11024] loop6: detected capacity change from 0 to 7
[ 1209.440082][T11024] Dev loop6: unable to read RDB block 7
[ 1209.441863][T11024]  loop6: AHDI p3 p4
[ 1209.443353][T11024] loop6: partition table partially beyond EOD, truncated
[ 1209.445736][T11024] loop6: p3 start 1886353253 is beyond EOD, truncated
[ 1211.623249][    T9] vhci_hcd: vhci_device speed not set
[ 1212.133202][  T845] usb 40-1: device descriptor read/8, error -110
[ 1212.523666][  T845] usb usb40-port1: attempt power cycle
[ 1213.097274][  T845] usb usb40-port1: unable to enumerate USB device
[ 1213.448186][ T1210] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1213.498224][ T1210] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1213.514294][ T1210] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1213.518652][ T1210] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1213.521743][ T1210] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1213.588389][T11060] lo speed is unknown, defaulting to 1000
[ 1213.683161][  T843] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[ 1213.731749][T11060] chnl_net:caif_netlink_parms(): no params data found
[ 1213.836393][  T843] usb 6-1: Using ep0 maxpacket: 8
[ 1213.866295][  T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[ 1213.893418][  T843] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[ 1213.916576][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1213.941579][  T843] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1213.953090][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1213.958153][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1213.969578][  T843] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[ 1213.980870][  T843] usb 6-1: config 168 interface 0 has no altsetting 0
[ 1213.991953][  T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[ 1214.001311][  T843] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[ 1214.007629][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1214.013054][  T843] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1214.018800][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1214.023817][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1214.029579][  T843] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[ 1214.034881][  T843] usb 6-1: config 168 interface 0 has no altsetting 0
[ 1214.037737][T11060] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1214.040373][  T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[ 1214.042099][T11060] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1214.045031][  T843] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[ 1214.045056][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1214.045070][  T843] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1214.045083][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1214.045095][  T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1214.045109][  T843] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[ 1214.045122][  T843] usb 6-1: config 168 interface 0 has no altsetting 0
[ 1214.048774][  T843] usb 6-1: string descriptor 0 read error: -22
[ 1214.055568][T11060] bridge_slave_0: entered allmulticast mode
[ 1214.058809][  T843] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1214.065835][T11060] bridge_slave_0: entered promiscuous mode
[ 1214.067710][  T843] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1214.100404][T11060] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1214.104779][T11060] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1214.104939][  T843] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[ 1214.107278][T11060] bridge_slave_1: entered allmulticast mode
[ 1214.116015][T11060] bridge_slave_1: entered promiscuous mode
[ 1214.195581][  T602] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1214.210043][T11060] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1214.219221][T11060] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1214.309379][  T843] usb 6-1: USB disconnect, device number 28
[ 1214.318325][  T602] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1214.334446][T11060] team0: Port device team_slave_0 added
[ 1214.338688][T11060] team0: Port device team_slave_1 added
[ 1214.375463][T11060] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1214.377813][T11060] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1214.386130][T11060] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1214.391013][T11060] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1214.394826][T11060] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1214.403526][T11060] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1214.420006][  T602] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1214.477308][T11060] hsr_slave_0: entered promiscuous mode
[ 1214.481166][T11060] hsr_slave_1: entered promiscuous mode
[ 1214.485030][T11060] debugfs: 'hsr0' already exists in 'hsr'
[ 1214.487781][T11060] Cannot create hsr debugfs directory
[ 1214.984453][  T602] dvmrp8 (unregistering): left allmulticast mode
[ 1215.011176][  T602] bond1 (unregistering): (slave geneve2): Releasing active interface
[ 1215.382362][  T602] bond0 (unregistering): left promiscuous mode
[ 1215.384799][  T602] mac80211_hwsim hwsim11 wlan1: left promiscuous mode
[ 1215.388967][  T602] bond0 (unregistering): (slave wlan1): Releasing backup interface
[ 1215.392373][  T602] bond0 (unregistering): Released all slaves
[ 1215.399225][  T602] bond1 (unregistering): Released all slaves
[ 1215.554994][  T602] tipc: Disabling bearer <eth:team0>
[ 1215.558893][  T602] tipc: Left network mode
[ 1215.573230][  T608] Bluetooth: hci1: command tx timeout
[ 1216.362794][  T602] batadv0: left promiscuous mode
[ 1216.371282][  T602] hsr_slave_0: left promiscuous mode
[ 1216.374669][  T602] hsr_slave_1: left promiscuous mode
[ 1216.425669][  T602] veth1_macvtap: left promiscuous mode
[ 1216.428921][  T602] veth1_vlan: left promiscuous mode
[ 1216.700283][ T5935] usb 5-1: new full-speed USB device number 26 using dummy_hcd
[ 1216.767379][  T602] team0 (unregistering): Port device vlan0 removed
[ 1216.887063][ T5935] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1216.910181][ T5935] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1216.935303][ T5935] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1216.940373][ T5935] usb 5-1: Product: syz
[ 1216.944091][ T5935] usb 5-1: Manufacturer: syz
[ 1216.946378][ T5935] usb 5-1: SerialNumber: syz
[ 1216.974454][ T5935] usb 5-1: config 0 descriptor??
[ 1217.204298][ T5935] snd-usb-audio 5-1:0.0: probe with driver snd-usb-audio failed with error -22
[ 1217.280503][ T5935] usb 5-1: USB disconnect, device number 26
[ 1217.653111][  T608] Bluetooth: hci1: command tx timeout
[ 1219.131991][T11120] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1219.137781][T11120] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1219.143475][T11060] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1219.158666][T11060] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1219.173487][T11060] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1219.180774][T11060] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1219.195527][T11120] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1219.265470][T11060] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1219.280626][T11060] 8021q: adding VLAN 0 to HW filter on device team0
[ 1219.290717][ T2425] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1219.294274][ T2425] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1219.303489][ T2424] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1219.306129][ T2424] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1219.397704][T11120] /dev/sr0: Can't open blockdev
[ 1219.509386][T11060] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1219.545282][T11060] veth0_vlan: entered promiscuous mode
[ 1219.551320][T11060] veth1_vlan: entered promiscuous mode
[ 1219.570556][T11060] veth0_macvtap: entered promiscuous mode
[ 1219.575521][T11060] veth1_macvtap: entered promiscuous mode
[ 1219.586054][T11060] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1219.591141][T11060] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1219.733321][  T608] Bluetooth: hci1: command tx timeout
[ 1220.420695][ T2425] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1220.443924][ T2425] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1220.468609][ T2425] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1220.480930][ T2425] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1220.490159][  T602] IPVS: stop unused estimator thread 0...
[ 1220.540668][ T2424] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1220.547877][ T2424] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1220.571509][ T2424] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1220.575718][ T2424] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1220.772202][ T2424] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1221.813134][ T1210] Bluetooth: hci1: command tx timeout
[ 1222.774207][  T608] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1222.800062][T11180] vlan1: entered promiscuous mode
[ 1222.803132][T11180] vlan1: entered allmulticast mode
[ 1222.805079][T11180] veth0_vlan: entered allmulticast mode
[ 1223.207568][T11190] batadv1: entered allmulticast mode
[ 1223.211447][T11190] 8021q: adding VLAN 0 to HW filter on device batadv1
[ 1223.214169][T11190] bridge0: port 1(batadv1) entered blocking state
[ 1223.216782][T11190] bridge0: port 1(batadv1) entered disabled state
[ 1223.220383][T11190] batadv1: entered promiscuous mode
[ 1223.224011][T11190] bridge0: port 1(batadv1) entered blocking state
[ 1223.227257][T11190] bridge0: port 1(batadv1) entered forwarding state
[ 1223.704062][  T596] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[ 1223.707841][  T596] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[ 1225.662519][T11193] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1225.727184][T11196] netlink: 'syz.1.4576': attribute type 10 has an invalid length.
[ 1225.752422][T11196] lo speed is unknown, defaulting to 1000
[ 1227.306794][T11246] vlan1: entered promiscuous mode
[ 1227.309618][T11246] vlan1: entered allmulticast mode
[ 1227.311952][T11246] veth0_vlan: entered allmulticast mode
[ 1227.963288][T11259] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1228.027552][T11267] netlink: 'syz.3.4596': attribute type 10 has an invalid length.
[ 1228.047151][T11267] lo speed is unknown, defaulting to 1000
[ 1228.855268][ T2424] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1229.683282][    T9] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[ 1229.813135][    T9] usb 6-1: device descriptor read/64, error -71
[ 1230.073402][    T9] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[ 1230.203216][    T9] usb 6-1: device descriptor read/64, error -71
[ 1230.242574][T11298] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1230.306741][T11298] netlink: 'syz.3.4606': attribute type 10 has an invalid length.
[ 1230.323314][    T9] usb usb6-port1: attempt power cycle
[ 1230.323484][T11298] lo speed is unknown, defaulting to 1000
[ 1230.663130][    T9] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[ 1230.683625][    T9] usb 6-1: device descriptor read/8, error -71
[ 1230.863470][ T1210] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1230.933200][    T9] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[ 1230.953588][    T9] usb 6-1: device descriptor read/8, error -71
[ 1231.051667][T11313] vlan0: entered promiscuous mode
[ 1231.060964][T11313] team0: Port device vlan0 added
[ 1231.078679][    T9] usb usb6-port1: unable to enumerate USB device
[ 1231.289811][T11307] syz.2.4611 (11307): drop_caches: 1
[ 1232.389859][T11335] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1232.468114][T11335] netlink: 'syz.3.4617': attribute type 10 has an invalid length.
[ 1232.488733][T11335] lo speed is unknown, defaulting to 1000
[ 1232.521774][T11344] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1232.857846][T11358] syz.1.4624 (11358): drop_caches: 1
[ 1233.009572][T11334] netlink: 'syz.0.4618': attribute type 10 has an invalid length.
[ 1233.039943][T11334] lo speed is unknown, defaulting to 1000
[ 1233.302565][   T40] audit: type=1326 audit(1759982133.033:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11377 comm="syz.1.4627" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70cd579 code=0x0
[ 1233.420780][T11384] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(15)
[ 1233.423122][T11384] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1233.440207][T11384] vhci_hcd vhci_hcd.0: Device attached
[ 1233.673117][T18087] usb 39-1: new high-speed USB device number 17 using vhci_hcd
[ 1234.108660][T11385] vhci_hcd: connection reset by peer
[ 1234.113416][T11144] vhci_hcd: stop threads
[ 1234.115147][T11144] vhci_hcd: release socket
[ 1234.116901][T11144] vhci_hcd: disconnect device
[ 1234.331366][T11388] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1234.387719][T11388] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1234.446922][T11388] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1234.623738][T11388] /dev/sr0: Can't open blockdev
[ 1235.043335][T11408] syz.2.4635 (11408): drop_caches: 1
[ 1235.061572][T11406] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1235.124859][T11409] netlink: 'syz.1.4634': attribute type 10 has an invalid length.
[ 1235.146120][T11409] lo speed is unknown, defaulting to 1000
[ 1235.250029][T11415] FAULT_INJECTION: forcing a failure.
[ 1235.250029][T11415] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1235.256719][T11415] CPU: 0 UID: 0 PID: 11415 Comm: syz.0.4637 Not tainted syzkaller #0 PREEMPT(full) 
[ 1235.256749][T11415] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1235.256760][T11415] Call Trace:
[ 1235.256767][T11415]  <TASK>
[ 1235.256774][T11415]  dump_stack_lvl+0x16c/0x1f0
[ 1235.256829][T11415]  should_fail_ex+0x512/0x640
[ 1235.256860][T11415]  _copy_from_user+0x2e/0xd0
[ 1235.256883][T11415]  get_compat_msghdr+0xa7/0x170
[ 1235.256909][T11415]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1235.256932][T11415]  ___sys_sendmsg+0x1ae/0x1d0
[ 1235.256955][T11415]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1235.256985][T11415]  ? find_held_lock+0x2b/0x80
[ 1235.257010][T11415]  __sys_sendmsg+0x16d/0x220
[ 1235.257023][T11415]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1235.257041][T11415]  ? rcu_is_watching+0x12/0xc0
[ 1235.257056][T11415]  __do_fast_syscall_32+0x7c/0x300
[ 1235.257071][T11415]  do_fast_syscall_32+0x32/0x80
[ 1235.257084][T11415]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1235.257099][T11415] RIP: 0023:0xf70bd579
[ 1235.257108][T11415] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1235.257119][T11415] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1235.257131][T11415] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000800002c0
[ 1235.257138][T11415] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[ 1235.257144][T11415] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1235.257161][T11415] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1235.257168][T11415] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1235.257182][T11415]  </TASK>
[ 1235.257944][T11415] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4637'.
[ 1235.459439][   T40] audit: type=1326 audit(1759982135.193:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11418 comm="syz.0.4639" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[ 1235.520218][T11422] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(15)
[ 1235.523122][T11422] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1235.527204][T11422] vhci_hcd vhci_hcd.0: Device attached
[ 1235.763122][ T6002] usb 37-1: new high-speed USB device number 17 using vhci_hcd
[ 1235.921731][T11431] lo speed is unknown, defaulting to 1000
[ 1235.924204][T11431] lo speed is unknown, defaulting to 1000
[ 1235.927084][T11431] lo speed is unknown, defaulting to 1000
[ 1235.937101][T11431] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1235.952331][T11431] lo speed is unknown, defaulting to 1000
[ 1235.956014][T11431] lo speed is unknown, defaulting to 1000
[ 1235.959221][T11431] lo speed is unknown, defaulting to 1000
[ 1235.962464][T11431] lo speed is unknown, defaulting to 1000
[ 1235.971385][T11431] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4642'.
[ 1236.206110][T11436] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1236.264375][T11436] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1236.269202][T11423] vhci_hcd: connection reset by peer
[ 1236.272210][ T2424] vhci_hcd: stop threads
[ 1236.274734][ T2424] vhci_hcd: release socket
[ 1236.277818][ T2424] vhci_hcd: disconnect device
[ 1236.335040][T11436] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1236.504409][T11443] /dev/sr0: Can't open blockdev
[ 1236.874964][T11448] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4648'.
[ 1238.735360][T11483] infiniband syz1: set down
[ 1238.737050][T11483] infiniband syz1: added syz_tun
[ 1238.760456][T11483] RDS/IB: syz1: added
[ 1238.762393][T11483] smc: adding ib device syz1 with port count 1
[ 1238.764513][T11483] smc:    ib device syz1 port 1 has no pnetid
[ 1238.770772][T18087] vhci_hcd: vhci_device speed not set
[ 1238.809628][T11486] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4655'.
[ 1239.003800][T11490] lo speed is unknown, defaulting to 1000
[ 1239.007209][T11490] lo speed is unknown, defaulting to 1000
[ 1239.353290][    T9] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[ 1239.523130][    T9] usb 5-1: Using ep0 maxpacket: 8
[ 1239.526786][    T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[ 1239.529418][    T9] usb 5-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[ 1239.538581][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1239.544488][    T9] usb 5-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1239.551102][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1239.555839][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1239.562719][    T9] usb 5-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[ 1239.569697][    T9] usb 5-1: config 168 interface 0 has no altsetting 0
[ 1239.577376][    T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[ 1239.582192][    T9] usb 5-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[ 1239.587545][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1239.596298][    T9] usb 5-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1239.602936][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1239.609862][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1239.615809][    T9] usb 5-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[ 1239.623277][    T9] usb 5-1: config 168 interface 0 has no altsetting 0
[ 1239.628521][    T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[ 1239.630945][    T9] usb 5-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[ 1239.638826][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1239.645576][    T9] usb 5-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1239.651487][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1239.658160][    T9] usb 5-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1239.665567][    T9] usb 5-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[ 1239.672812][    T9] usb 5-1: config 168 interface 0 has no altsetting 0
[ 1239.682485][    T9] usb 5-1: string descriptor 0 read error: -22
[ 1239.686137][    T9] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1239.693104][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1239.713234][    T9] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[ 1239.916362][T11492] netlink: 332 bytes leftover after parsing attributes in process `syz.0.4658'.
[ 1239.920317][T11492] netlink: 'syz.0.4658': attribute type 9 has an invalid length.
[ 1239.923552][T11492] netlink: 108 bytes leftover after parsing attributes in process `syz.0.4658'.
[ 1239.926857][T11492] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4658'.
[ 1239.931732][ T5935] usb 5-1: USB disconnect, device number 27
[ 1240.209871][T11521] siw: device registration error -23
[ 1240.214889][T11521] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4666'.
[ 1241.023157][ T6002] vhci_hcd: vhci_device speed not set
[ 1241.806521][T11537] sd 0:0:0:0: PR command failed: 1026
[ 1241.809117][T11537] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[ 1241.812346][T11537] sd 0:0:0:0: Add. Sense: Invalid command operation code
[ 1241.903143][T11550] lo speed is unknown, defaulting to 1000
[ 1241.907314][T11550] lo speed is unknown, defaulting to 1000
[ 1241.939133][T11549] FAULT_INJECTION: forcing a failure.
[ 1241.939133][T11549] name failslab, interval 1, probability 0, space 0, times 0
[ 1241.943433][T11549] CPU: 3 UID: 0 PID: 11549 Comm: syz.0.4674 Not tainted syzkaller #0 PREEMPT(full) 
[ 1241.943452][T11549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1241.943459][T11549] Call Trace:
[ 1241.943463][T11549]  <TASK>
[ 1241.943468][T11549]  dump_stack_lvl+0x16c/0x1f0
[ 1241.943486][T11549]  should_fail_ex+0x512/0x640
[ 1241.943501][T11549]  ? fs_reclaim_acquire+0xae/0x150
[ 1241.943517][T11549]  should_failslab+0xc2/0x120
[ 1241.943532][T11549]  __kmalloc_noprof+0xdd/0x880
[ 1241.943550][T11549]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1241.943565][T11549]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1241.943576][T11549]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1241.943589][T11549]  ? tomoyo_profile+0x47/0x60
[ 1241.943603][T11549]  tomoyo_path_number_perm+0x245/0x580
[ 1241.943619][T11549]  ? tomoyo_path_number_perm+0x237/0x580
[ 1241.943637][T11549]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1241.943672][T11549]  ? find_held_lock+0x2b/0x80
[ 1241.943685][T11549]  ? hook_file_ioctl_common+0x145/0x410
[ 1241.943706][T11549]  ? __fget_files+0x20e/0x3c0
[ 1241.943720][T11549]  security_file_ioctl_compat+0x9b/0x240
[ 1241.943738][T11549]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1241.943757][T11549]  __do_fast_syscall_32+0x7c/0x300
[ 1241.943773][T11549]  do_fast_syscall_32+0x32/0x80
[ 1241.943786][T11549]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1241.943799][T11549] RIP: 0023:0xf70bd579
[ 1241.943809][T11549] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1241.943820][T11549] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1241.943831][T11549] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000401070cd
[ 1241.943838][T11549] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1241.943844][T11549] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1241.943850][T11549] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1241.943857][T11549] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1241.943871][T11549]  </TASK>
[ 1241.943876][T11549] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1242.022650][T11549] sd 0:0:0:0: PR command failed: 1026
[ 1242.043098][T11549] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[ 1242.052851][T11549] sd 0:0:0:0: Add. Sense: Invalid command operation code
[ 1243.495823][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[ 1243.772145][T11584] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1243.845672][T11553] Set syz1 is full, maxelem 65536 reached
[ 1243.957868][T11584] netlink: 'syz.0.4685': attribute type 10 has an invalid length.
[ 1243.973556][T11584] lo speed is unknown, defaulting to 1000
[ 1243.976362][T11584] lo speed is unknown, defaulting to 1000
[ 1244.066524][T11595] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4687'.
[ 1244.077981][T11595] team0: No ports can be present during mode change
[ 1244.954910][T11614] netlink: 'syz.1.4694': attribute type 1 has an invalid length.
[ 1244.958660][T11614] netlink: 208 bytes leftover after parsing attributes in process `syz.1.4694'.
[ 1245.008794][T11618] IPVS: set_ctl: invalid protocol: 18 172.30.1.3:20002
[ 1245.276394][T11628] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1245.351387][T11620] netlink: 'syz.3.4697': attribute type 10 has an invalid length.
[ 1245.367971][T11620] lo speed is unknown, defaulting to 1000
[ 1245.371354][T11620] lo speed is unknown, defaulting to 1000
[ 1247.581110][T11674] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1247.688942][T11673] netlink: 'syz.0.4711': attribute type 10 has an invalid length.
[ 1249.730626][T11705] overlayfs: failed to resolve 'fsname=kfree': -2
[ 1251.333218][ T1210] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1251.670293][T11737] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1251.744501][T11737] netlink: 'syz.1.4723': attribute type 10 has an invalid length.
[ 1251.838056][T11744] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1251.894777][T11744] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1251.951730][T11744] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1252.345560][T11744] /dev/sr0: Can't open blockdev
[ 1253.403470][T11776] bridge_slave_0: left allmulticast mode
[ 1253.406209][T11776] bridge_slave_0: left promiscuous mode
[ 1253.408248][T11776] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1253.421195][T11776] bridge_slave_1: left allmulticast mode
[ 1253.424505][T11776] bridge_slave_1: left promiscuous mode
[ 1253.429107][T11776] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1253.482338][T11776] bond0: (slave bond_slave_0): Releasing backup interface
[ 1253.488851][T11776] bond0: (slave bond_slave_1): Releasing backup interface
[ 1253.502571][T11776] team0: Port device team_slave_0 removed
[ 1253.522202][T11776] team0: Port device team_slave_1 removed
[ 1253.525222][T11776] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1253.528181][T11776] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1253.533731][T11776] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1253.538042][T11776] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1253.548746][T11776] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 1253.550533][T11784] netlink: 'syz.2.4737': attribute type 10 has an invalid length.
[ 1253.562631][T11781] bond0: entered promiscuous mode
[ 1253.566343][T11781] batadv0: entered promiscuous mode
[ 1253.568764][T11781] debugfs: 'hsr1' already exists in 'hsr'
[ 1253.570826][T11781] Cannot create hsr debugfs directory
[ 1253.573874][T11781] 8021q: adding VLAN 0 to HW filter on device hsr1
[ 1253.609278][T11784] mac80211_hwsim hwsim23 wlan1: entered promiscuous mode
[ 1253.621097][T11784] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1253.705430][T11785] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1253.741916][T11776] lo speed is unknown, defaulting to 1000
[ 1253.747345][T11776] lo speed is unknown, defaulting to 1000
[ 1253.783565][T11785] netlink: 'syz.0.4738': attribute type 10 has an invalid length.
[ 1254.163486][T11796] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1254.218325][T11796] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1254.276138][T11796] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1254.423919][T11796] /dev/sr0: Can't open blockdev
[ 1255.118966][T11809] 9pnet_virtio: no channels available for device syz
[ 1255.275082][T11814] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[ 1255.277255][T11814] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1255.280543][T11814] vhci_hcd vhci_hcd.0: Device attached
[ 1255.287873][T11814] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4742'.
[ 1255.553162][ T5841] usb 42-1: SetAddress Request (14) to port 0
[ 1255.558833][ T5841] usb 42-1: new SuperSpeed USB device number 14 using vhci_hcd
[ 1255.645958][  T596] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1255.649124][  T596] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1255.683221][T11815] vhci_hcd: connection reset by peer
[ 1255.686780][   T46] vhci_hcd: stop threads
[ 1255.688354][   T46] vhci_hcd: release socket
[ 1255.691864][   T46] vhci_hcd: disconnect device
[ 1256.203312][ T5951] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[ 1256.382328][ T5951] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1256.386579][ T5951] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1256.391737][ T5951] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1256.423078][ T5951] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1256.438706][T11833] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1256.460065][ T5951] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1256.465935][ T5951] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1256.469463][ T5951] usb 5-1: Product: syz
[ 1256.471360][ T5951] usb 5-1: Manufacturer: syz
[ 1256.484682][ T5951] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1256.496700][T11833] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1256.555148][T11833] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1256.673913][T11833] /dev/sr0: Can't open blockdev
[ 1256.817182][T11839] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1256.879727][T11840] netlink: 'syz.3.4752': attribute type 10 has an invalid length.
[ 1256.896920][T11840] lo speed is unknown, defaulting to 1000
[ 1256.899895][T11840] lo speed is unknown, defaulting to 1000
[ 1258.215955][T11872] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1258.258499][T11870] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1258.273315][T11872] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1258.319652][T11873] netlink: 'syz.3.4762': attribute type 10 has an invalid length.
[ 1258.335466][T11872] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1258.352256][T11873] lo speed is unknown, defaulting to 1000
[ 1258.357844][T11873] lo speed is unknown, defaulting to 1000
[ 1258.523904][T11872] /dev/sr0: Can't open blockdev
[ 1259.045840][T11101] usb 5-1: USB disconnect, device number 28
[ 1259.379836][T11897] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1259.480609][T11897] netlink: 'syz.1.4767': attribute type 10 has an invalid length.
[ 1259.546335][T11897] lo speed is unknown, defaulting to 1000
[ 1259.549321][T11897] lo speed is unknown, defaulting to 1000
[ 1260.423215][    T9] usb 7-1: new full-speed USB device number 28 using dummy_hcd
[ 1260.614664][ T5841] usb 42-1: device descriptor read/8, error -110
[ 1261.013837][T11919] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1261.070814][T11919] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1261.128936][T11919] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1261.313327][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1261.319376][    T9] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1261.323413][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1261.326361][    T9] usb 7-1: Product: syz
[ 1261.327684][    T9] usb 7-1: Manufacturer: syz
[ 1261.329128][    T9] usb 7-1: SerialNumber: syz
[ 1261.331857][    T9] usb 7-1: config 0 descriptor??
[ 1261.383679][T11919] /dev/sr0: Can't open blockdev
[ 1261.424792][ T5841] usb usb42-port1: attempt power cycle
[ 1261.540449][T11927] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1261.601956][T11930] netlink: 'syz.3.4778': attribute type 10 has an invalid length.
[ 1261.621104][T11930] lo speed is unknown, defaulting to 1000
[ 1261.623917][T11930] lo speed is unknown, defaulting to 1000
[ 1261.740761][    T9] usb 7-1: USB disconnect, device number 28
[ 1261.894112][T11934] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1261.979262][T11931] netlink: 'syz.0.4779': attribute type 10 has an invalid length.
[ 1261.994103][ T5841] usb usb42-port1: unable to enumerate USB device
[ 1261.998434][T11931] lo speed is unknown, defaulting to 1000
[ 1262.002733][T11931] lo speed is unknown, defaulting to 1000
[ 1262.086290][T11144] Bluetooth: hci2: Frame reassembly failed (-84)
[ 1263.485288][T11950] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1263.554273][T11950] netlink: 'syz.2.4783': attribute type 10 has an invalid length.
[ 1263.588239][T11950] lo speed is unknown, defaulting to 1000
[ 1263.591787][T11950] lo speed is unknown, defaulting to 1000
[ 1264.133676][  T608] Bluetooth: hci2: command 0x1003 tx timeout
[ 1264.177194][ T1210] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 1264.202744][T11964] fuse: Unknown parameter 'groupXTÛ—00000000000000000000'
[ 1264.208356][T11964] fuse: Bad value for 'group_id'
[ 1264.210764][T11964] fuse: Bad value for 'group_id'
[ 1264.357338][  T608] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1264.384712][  T608] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1264.399484][  T608] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1264.424045][T11967] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1264.426796][T11967] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1264.435241][T11969] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1264.490947][T11965] lo speed is unknown, defaulting to 1000
[ 1264.493354][T11969] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1264.493549][T11965] lo speed is unknown, defaulting to 1000
[ 1264.571452][T11969] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1264.784284][T11969] /dev/sr0: Can't open blockdev
[ 1264.795949][T11965] chnl_net:caif_netlink_parms(): no params data found
[ 1264.919714][T11965] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1264.922261][T11965] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1264.923475][T11101] usb 5-1: new full-speed USB device number 29 using dummy_hcd
[ 1264.925666][T11965] bridge_slave_0: entered allmulticast mode
[ 1264.933330][T11965] bridge_slave_0: entered promiscuous mode
[ 1264.939246][T11965] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1264.941837][T11965] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1264.954278][T11965] bridge_slave_1: entered allmulticast mode
[ 1264.958697][T11965] bridge_slave_1: entered promiscuous mode
[ 1265.016446][ T2425] smc: removing ib device syz1
[ 1265.030256][T11965] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1265.044959][T11965] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1265.077317][T11101] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1265.082188][T11101] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1265.085501][T11101] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1265.088579][T11101] usb 5-1: Product: syz
[ 1265.090227][T11101] usb 5-1: Manufacturer: syz
[ 1265.092025][T11101] usb 5-1: SerialNumber: syz
[ 1265.113109][T11101] usb 5-1: config 0 descriptor??
[ 1265.139686][T11965] team0: Port device team_slave_0 added
[ 1265.146276][T11965] team0: Port device team_slave_1 added
[ 1265.261543][T11965] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1265.264121][T11965] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1265.273237][T11965] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1265.279747][T11965] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1265.282763][T11965] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1265.294268][T11965] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1265.378099][T11985] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1265.440737][T11965] hsr_slave_0: entered promiscuous mode
[ 1265.453172][T11965] hsr_slave_1: entered promiscuous mode
[ 1265.455874][T11965] debugfs: 'hsr0' already exists in 'hsr'
[ 1265.457802][T11965] Cannot create hsr debugfs directory
[ 1265.548805][  T844] usb 5-1: USB disconnect, device number 29
[ 1265.584785][T11986] lo speed is unknown, defaulting to 1000
[ 1265.665783][T11986] lo speed is unknown, defaulting to 1000
[ 1266.044398][T11990] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1266.099543][T11990] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1266.178734][ T2425] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1266.180481][T11990] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1266.184296][ T2425] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1266.336007][T11965] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1266.339398][T11990] /dev/sr0: Can't open blockdev
[ 1266.349298][T11965] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1266.360292][T11965] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1266.366867][T11965] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1266.382273][T11993] bridge_slave_0: entered promiscuous mode
[ 1266.439254][T11967] Bluetooth: hci4: unexpected event for opcode 0x0c2d
[ 1266.463149][T11967] Bluetooth: hci2: command tx timeout
[ 1266.599112][T11965] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1266.604086][T11992] bridge_slave_0: left promiscuous mode
[ 1266.623907][T11965] 8021q: adding VLAN 0 to HW filter on device team0
[ 1266.631023][  T596] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1266.633545][  T596] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1266.640937][ T2425] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1266.644143][ T2425] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1266.827482][T11965] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1266.866323][T11965] veth0_vlan: entered promiscuous mode
[ 1266.879206][T11965] veth1_vlan: entered promiscuous mode
[ 1266.908844][T11965] veth0_macvtap: entered promiscuous mode
[ 1266.918906][T11965] veth1_macvtap: entered promiscuous mode
[ 1266.941161][T11965] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1266.956765][T11965] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1266.969096][   T46] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.972380][   T46] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.983682][   T46] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.988486][   T46] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1267.065642][ T2425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1267.069261][ T2425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1267.091388][ T2425] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1267.095037][ T2425] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1267.102125][T12017] overlayfs: workdir and upperdir must be separate subtrees
[ 1267.106204][T12020] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 0, id = 0
[ 1267.137529][T12019] lo speed is unknown, defaulting to 1000
[ 1267.140342][T12019] lo speed is unknown, defaulting to 1000
[ 1267.232623][T12031] vlan0: entered promiscuous mode
[ 1267.244481][T12031] team0: Port device vlan0 added
[ 1267.462344][T12037] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1267.533107][ T5951] usb 7-1: new full-speed USB device number 29 using dummy_hcd
[ 1267.537118][T12038] lo speed is unknown, defaulting to 1000
[ 1267.539937][T12038] lo speed is unknown, defaulting to 1000
[ 1267.704557][ T5951] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1267.710148][ T5951] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1267.713091][ T5951] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1267.715826][ T5951] usb 7-1: Product: syz
[ 1267.717219][ T5951] usb 7-1: Manufacturer: syz
[ 1267.718980][ T5951] usb 7-1: SerialNumber: syz
[ 1267.722709][ T5951] usb 7-1: config 0 descriptor??
[ 1268.131970][ T5951] usb 7-1: USB disconnect, device number 29
[ 1268.184007][  T843] usb 8-1: new low-speed USB device number 25 using dummy_hcd
[ 1268.335562][  T843] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[ 1268.337883][  T843] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 1268.343274][  T843] usb 8-1: config 168 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1268.350003][  T843] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[ 1268.353658][  T843] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 1268.358171][  T843] usb 8-1: config 168 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1268.363959][  T843] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[ 1268.367174][  T843] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 1268.373313][  T843] usb 8-1: config 168 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1268.381117][  T843] usb 8-1: string descriptor 0 read error: -22
[ 1268.384257][  T843] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1268.389655][  T843] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1268.400668][  T843] adutux 8-1:168.0: interrupt endpoints not found
[ 1268.533196][T11967] Bluetooth: hci2: command tx timeout
[ 1268.631524][T12075] lo speed is unknown, defaulting to 1000
[ 1268.639659][T12075] lo speed is unknown, defaulting to 1000
[ 1268.679476][T12078] FAULT_INJECTION: forcing a failure.
[ 1268.679476][T12078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1268.686298][T12078] CPU: 2 UID: 0 PID: 12078 Comm: syz.0.4815 Not tainted syzkaller #0 PREEMPT(full) 
[ 1268.686325][T12078] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1268.686337][T12078] Call Trace:
[ 1268.686344][T12078]  <TASK>
[ 1268.686351][T12078]  dump_stack_lvl+0x16c/0x1f0
[ 1268.686378][T12078]  should_fail_ex+0x512/0x640
[ 1268.686404][T12078]  _copy_from_user+0x2e/0xd0
[ 1268.686429][T12078]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[ 1268.686470][T12078]  snd_rawmidi_write+0x26e/0xc10
[ 1268.686494][T12078]  ? __pfx_snd_rawmidi_write+0x10/0x10
[ 1268.686513][T12078]  ? common_file_perm+0x1a9/0x340
[ 1268.686541][T12078]  ? bpf_lsm_file_permission+0x9/0x10
[ 1268.686558][T12078]  ? security_file_permission+0x71/0x210
[ 1268.686574][T12078]  ? rw_verify_area+0xcf/0x6c0
[ 1268.686602][T12078]  ? __pfx_snd_rawmidi_write+0x10/0x10
[ 1268.686618][T12078]  vfs_writev+0x5dc/0xde0
[ 1268.686641][T12078]  ? __pfx_vfs_writev+0x10/0x10
[ 1268.686659][T12078]  ? find_held_lock+0x2b/0x80
[ 1268.686689][T12078]  ? __fget_files+0x20e/0x3c0
[ 1268.686711][T12078]  ? __fget_files+0x1b0/0x3c0
[ 1268.686730][T12078]  ? do_writev+0x28c/0x340
[ 1268.686745][T12078]  do_writev+0x28c/0x340
[ 1268.686762][T12078]  ? __pfx_do_writev+0x10/0x10
[ 1268.686780][T12078]  ? rcu_is_watching+0x12/0xc0
[ 1268.686800][T12078]  __do_fast_syscall_32+0x7c/0x300
[ 1268.686824][T12078]  do_fast_syscall_32+0x32/0x80
[ 1268.686844][T12078]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1268.686865][T12078] RIP: 0023:0xf70bd579
[ 1268.686880][T12078] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1268.686895][T12078] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[ 1268.686912][T12078] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000840
[ 1268.686923][T12078] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[ 1268.686930][T12078] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1268.686942][T12078] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1268.686952][T12078] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1268.686978][T12078]  </TASK>
[ 1269.118888][T12094] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1269.198634][T12097] lo speed is unknown, defaulting to 1000
[ 1269.201216][T12097] lo speed is unknown, defaulting to 1000
[ 1270.453605][T11967] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[ 1270.458750][T11967] Bluetooth: hci4: Injecting HCI hardware error event
[ 1270.464880][ T1210] Bluetooth: hci4: hardware error 0x00
[ 1270.613237][T11967] Bluetooth: hci2: command tx timeout
[ 1270.653456][  T844] usb 5-1: new full-speed USB device number 30 using dummy_hcd
[ 1270.815942][  T844] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1271.029953][ T5841] usb 8-1: USB disconnect, device number 25
[ 1271.314028][  T844] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1271.316993][  T844] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1271.319710][  T844] usb 5-1: Product: syz
[ 1271.321306][  T844] usb 5-1: Manufacturer: syz
[ 1271.360420][  T844] usb 5-1: SerialNumber: syz
[ 1271.363419][  T844] usb 5-1: config 0 descriptor??
[ 1271.846759][ T5935] usb 5-1: USB disconnect, device number 30
[ 1272.066723][T12150] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1272.179944][T12151] lo speed is unknown, defaulting to 1000
[ 1272.204297][T12151] lo speed is unknown, defaulting to 1000
[ 1272.533131][ T1210] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1272.693342][ T1210] Bluetooth: hci2: command tx timeout
[ 1273.093430][T12190] fuse: Unknown parameter 'groupXTÛ—00000000000000000000'
[ 1273.097338][T12190] fuse: Bad value for 'group_id'
[ 1273.099115][T12190] fuse: Bad value for 'group_id'
[ 1273.263182][  T843] usb 7-1: new full-speed USB device number 30 using dummy_hcd
[ 1273.425796][  T843] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1273.432668][  T843] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1273.436998][  T843] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1273.451663][  T843] usb 7-1: Product: syz
[ 1273.453559][  T843] usb 7-1: Manufacturer: syz
[ 1273.455240][  T843] usb 7-1: SerialNumber: syz
[ 1273.458148][  T843] usb 7-1: config 0 descriptor??
[ 1273.780311][T12192] bridge_slave_0: left allmulticast mode
[ 1273.782938][T12192] bridge_slave_0: left promiscuous mode
[ 1273.786060][T12192] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1273.796299][T12192] bridge_slave_1: left allmulticast mode
[ 1273.798917][T12192] bridge_slave_1: left promiscuous mode
[ 1273.801696][T12192] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1273.812139][T12192] bond0: (slave bond_slave_0): Releasing backup interface
[ 1273.821322][T12192] bond0: (slave bond_slave_1): Releasing backup interface
[ 1273.838721][T12192] team0: Port device team_slave_0 removed
[ 1273.849935][T12192] team0: Port device team_slave_1 removed
[ 1273.853333][T12192] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1273.856229][T12192] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1273.860497][T12192] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1273.865320][T12192] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1273.869770][T12192] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[ 1273.870422][ T5951] usb 7-1: USB disconnect, device number 30
[ 1273.896844][T12193] bond0: entered promiscuous mode
[ 1273.899839][T12193] batadv0: entered promiscuous mode
[ 1273.903277][T12193] debugfs: 'hsr1' already exists in 'hsr'
[ 1273.905822][T12193] Cannot create hsr debugfs directory
[ 1273.908236][T12193] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[ 1273.912680][T12193] 8021q: adding VLAN 0 to HW filter on device hsr1
[ 1273.922929][T12192] netlink: 'syz.3.4846': attribute type 10 has an invalid length.
[ 1273.939659][T12192] mac80211_hwsim hwsim25 wlan1: entered promiscuous mode
[ 1273.943434][T12192] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1273.965887][T12192] lo speed is unknown, defaulting to 1000
[ 1273.969087][T12192] lo speed is unknown, defaulting to 1000
[ 1274.027069][T12203] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1274.085315][T12203] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1274.148335][T12203] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1274.296259][T12203] /dev/sr0: Can't open blockdev
[ 1274.386287][T12218] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1274.396167][T12215] /dev/sr0: Can't open blockdev
[ 1274.411305][T12221] fuse: Bad value for 'fd'
[ 1274.413290][T12221] fuse: Bad value for 'fd'
[ 1274.415661][T12221] fuse: Bad value for 'fd'
[ 1274.417326][T12221] fuse: Bad value for 'fd'
[ 1274.418992][T12221] fuse: Bad value for 'fd'
[ 1274.435501][T12225] netlink: 'syz.1.4856': attribute type 10 has an invalid length.
[ 1274.483877][T12230] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4856'.
[ 1274.693870][T12225] bridge0: entered promiscuous mode
[ 1274.697490][T12225] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 1274.801054][T12230] bond0: (slave bridge0): Releasing backup interface
[ 1274.804429][T12230] bridge0 (unregistering): left promiscuous mode
[ 1274.917781][T12216] lo speed is unknown, defaulting to 1000
[ 1274.921765][T12216] lo speed is unknown, defaulting to 1000
[ 1274.942045][T12237] fuse: Unknown parameter 'groupXTÛ—00000000000000000000'
[ 1274.956303][T12237] fuse: Bad value for 'group_id'
[ 1274.959272][T12237] fuse: Bad value for 'group_id'
[ 1275.011292][T12240] FAULT_INJECTION: forcing a failure.
[ 1275.011292][T12240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1275.016972][T12240] CPU: 0 UID: 0 PID: 12240 Comm: syz.1.4860 Not tainted syzkaller #0 PREEMPT(full) 
[ 1275.016998][T12240] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1275.017010][T12240] Call Trace:
[ 1275.017017][T12240]  <TASK>
[ 1275.017025][T12240]  dump_stack_lvl+0x16c/0x1f0
[ 1275.017050][T12240]  should_fail_ex+0x512/0x640
[ 1275.017075][T12240]  _copy_from_user+0x2e/0xd0
[ 1275.017099][T12240]  get_compat_msghdr+0xa7/0x170
[ 1275.017120][T12240]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1275.017148][T12240]  ___sys_sendmsg+0x1ae/0x1d0
[ 1275.017171][T12240]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1275.017204][T12240]  ? find_held_lock+0x2b/0x80
[ 1275.017240][T12240]  __sys_sendmsg+0x16d/0x220
[ 1275.017260][T12240]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1275.017290][T12240]  ? rcu_is_watching+0x12/0xc0
[ 1275.017312][T12240]  __do_fast_syscall_32+0x7c/0x300
[ 1275.017336][T12240]  do_fast_syscall_32+0x32/0x80
[ 1275.017364][T12240]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1275.017386][T12240] RIP: 0023:0xf70cd579
[ 1275.017400][T12240] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1275.017417][T12240] RSP: 002b:00000000f54bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1275.017435][T12240] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000440
[ 1275.017447][T12240] RDX: 0000000020008040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1275.017457][T12240] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1275.017468][T12240] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1275.017478][T12240] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1275.017502][T12240]  </TASK>
[ 1275.386629][  T602] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1276.232944][T12260] binder: BINDER_SET_CONTEXT_MGR already set
[ 1276.235636][T12260] binder: 12259:12260 ioctl 4018620d 800002c0 returned -16
[ 1276.291840][T12262] binder: 12259:12262 ioctl c0306201 800001c0 returned -14
[ 1276.302136][T12262] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4865'.
[ 1277.413217][ T1210] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1277.622229][T12291] netlink: 'syz.1.4875': attribute type 1 has an invalid length.
[ 1277.637675][T12291] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1277.656932][T12291] bond2: (slave geneve2): making interface the new active one
[ 1277.662758][T12291] bond2: (slave geneve2): Enslaving as an active interface with an up link
[ 1277.667723][  T602] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1277.678129][  T602] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1277.681455][  T602] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1277.686599][  T602] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1277.801159][T12300] FAULT_INJECTION: forcing a failure.
[ 1277.801159][T12300] name failslab, interval 1, probability 0, space 0, times 0
[ 1277.803332][T12294] sctp: [Deprecated]: syz.0.4876 (pid 12294) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1277.803332][T12294] Use struct sctp_sack_info instead
[ 1277.807816][T12300] CPU: 1 UID: 0 PID: 12300 Comm: syz.1.4877 Not tainted syzkaller #0 PREEMPT(full) 
[ 1277.807842][T12300] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1277.807852][T12300] Call Trace:
[ 1277.807858][T12300]  <TASK>
[ 1277.807863][T12300]  dump_stack_lvl+0x16c/0x1f0
[ 1277.807889][T12300]  should_fail_ex+0x512/0x640
[ 1277.807909][T12300]  ? fs_reclaim_acquire+0xae/0x150
[ 1277.807932][T12300]  should_failslab+0xc2/0x120
[ 1277.807951][T12300]  __kmalloc_noprof+0xdd/0x880
[ 1277.807979][T12300]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1277.808004][T12300]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1277.808022][T12300]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1277.808044][T12300]  ? tomoyo_profile+0x47/0x60
[ 1277.808063][T12300]  tomoyo_path_number_perm+0x245/0x580
[ 1277.808087][T12300]  ? tomoyo_path_number_perm+0x237/0x580
[ 1277.808116][T12300]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1277.808169][T12300]  ? find_held_lock+0x2b/0x80
[ 1277.808189][T12300]  ? hook_file_ioctl_common+0x145/0x410
[ 1277.808218][T12300]  ? __fget_files+0x20e/0x3c0
[ 1277.808242][T12300]  security_file_ioctl_compat+0x9b/0x240
[ 1277.808272][T12300]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1277.808301][T12300]  __do_fast_syscall_32+0x7c/0x300
[ 1277.808322][T12300]  do_fast_syscall_32+0x32/0x80
[ 1277.808343][T12300]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1277.808366][T12300] RIP: 0023:0xf70cd579
[ 1277.808387][T12300] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1277.808404][T12300] RSP: 002b:00000000f549c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1277.808418][T12300] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000c040aed5
[ 1277.808430][T12300] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1277.808441][T12300] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1277.808451][T12300] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1277.808462][T12300] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1277.808490][T12300]  </TASK>
[ 1277.808497][T12300] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1277.953126][ T5841] usb 8-1: new full-speed USB device number 26 using dummy_hcd
[ 1278.116427][ T5841] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[ 1278.124463][ T5841] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1278.128181][ T5841] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[ 1278.132506][ T5841] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[ 1278.151827][ T5841] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1278.163356][ T5841] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1278.172024][ T5841] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1278.193213][ T5841] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1278.200056][ T5841] usb 8-1: Product: syz
[ 1278.201422][ T5841] usb 8-1: Manufacturer: syz
[ 1278.202898][ T5841] usb 8-1: SerialNumber: syz
[ 1278.206263][ T5841] usb 8-1: config 0 descriptor??
[ 1278.208937][T12289] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1278.214188][ T5841] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1278.218136][ T5841] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1278.649499][T11101] usb 8-1: USB disconnect, device number 26
[ 1278.655609][T11101] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[ 1280.077534][T12337] "syz.2.4885" (12337) uses obsolete ecb(arc4) skcipher
[ 1280.457326][T12352] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1280.590221][T12347] lo speed is unknown, defaulting to 1000
[ 1280.594287][T12347] lo speed is unknown, defaulting to 1000
[ 1280.663647][  T602] Bluetooth: (null): Too short H5 packet
[ 1280.665997][  T602] Bluetooth: (null): Invalid header checksum
[ 1280.668315][  T602] Bluetooth: (null): Invalid header checksum
[ 1280.773434][   T46] Bluetooth: (null): Invalid header checksum
[ 1280.833749][   T46] Bluetooth: (null): Too short H5 packet
[ 1280.836039][   T46] Bluetooth: (null): Invalid header checksum
[ 1280.839210][   T46] Bluetooth: (null): Invalid header checksum
[ 1281.027075][T12369] afs: Unknown parameter '00000000000000000003'
[ 1281.316929][T12379] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4895'.
[ 1281.497928][T12382] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4896'.
[ 1281.518400][T12377] FAULT_INJECTION: forcing a failure.
[ 1281.518400][T12377] name failslab, interval 1, probability 0, space 0, times 0
[ 1281.522691][T12377] CPU: 3 UID: 0 PID: 12377 Comm: syz.0.4895 Not tainted syzkaller #0 PREEMPT(full) 
[ 1281.522709][T12377] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1281.522717][T12377] Call Trace:
[ 1281.522721][T12377]  <TASK>
[ 1281.522726][T12377]  dump_stack_lvl+0x16c/0x1f0
[ 1281.522744][T12377]  should_fail_ex+0x512/0x640
[ 1281.522758][T12377]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[ 1281.522772][T12377]  should_failslab+0xc2/0x120
[ 1281.522788][T12377]  kmem_cache_alloc_noprof+0x75/0x6e0
[ 1281.522799][T12377]  ? getname_flags.part.0+0x4c/0x550
[ 1281.522820][T12377]  ? getname_flags.part.0+0x4c/0x550
[ 1281.522836][T12377]  getname_flags.part.0+0x4c/0x550
[ 1281.522853][T12377]  getname_flags+0x93/0xf0
[ 1281.522865][T12377]  do_sys_openat2+0xb8/0x1d0
[ 1281.522881][T12377]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1281.522915][T12377]  ? __fget_files+0x20e/0x3c0
[ 1281.522925][T12377]  ? handle_mm_fault+0x280/0xd10
[ 1281.522945][T12377]  __ia32_compat_sys_openat+0x16d/0x210
[ 1281.522976][T12377]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[ 1281.522994][T12377]  ? ksys_write+0x1ac/0x250
[ 1281.523008][T12377]  ? rcu_is_watching+0x12/0xc0
[ 1281.523024][T12377]  __do_fast_syscall_32+0x7c/0x300
[ 1281.523039][T12377]  do_fast_syscall_32+0x32/0x80
[ 1281.523053][T12377]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1281.523068][T12377] RIP: 0023:0xf70bd579
[ 1281.523078][T12377] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1281.523090][T12377] RSP: 002b:00000000f548c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[ 1281.523101][T12377] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000040
[ 1281.523108][T12377] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1281.523115][T12377] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1281.523121][T12377] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1281.523128][T12377] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1281.523143][T12377]  </TASK>
[ 1281.654996][T12369] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[ 1281.657122][T12369] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1281.660352][T12369] vhci_hcd vhci_hcd.0: Device attached
[ 1281.666264][T12369] fuse: Unknown parameter '000000000000000000100x000000000000000b'
[ 1281.670572][T12385] vhci_hcd: connection closed
[ 1281.673189][  T602] vhci_hcd: stop threads
[ 1281.676937][  T602] vhci_hcd: release socket
[ 1281.678926][  T602] vhci_hcd: disconnect device
[ 1281.787479][T12381] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1281.846379][T12387] netlink: 'syz.1.4897': attribute type 10 has an invalid length.
[ 1281.864997][T12387] lo speed is unknown, defaulting to 1000
[ 1281.871559][T12387] lo speed is unknown, defaulting to 1000
[ 1282.235096][T12390] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4898'.
[ 1282.351995][T12402] netlink: 'syz.1.4901': attribute type 1 has an invalid length.
[ 1282.599044][T12409] FAULT_INJECTION: forcing a failure.
[ 1282.599044][T12409] name failslab, interval 1, probability 0, space 0, times 0
[ 1282.605496][T12409] CPU: 1 UID: 0 PID: 12409 Comm: syz.2.4904 Not tainted syzkaller #0 PREEMPT(full) 
[ 1282.605521][T12409] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1282.605532][T12409] Call Trace:
[ 1282.605539][T12409]  <TASK>
[ 1282.605546][T12409]  dump_stack_lvl+0x16c/0x1f0
[ 1282.605572][T12409]  should_fail_ex+0x512/0x640
[ 1282.605592][T12409]  ? __kmalloc_cache_noprof+0x5f/0x780
[ 1282.605623][T12409]  should_failslab+0xc2/0x120
[ 1282.605643][T12409]  __kmalloc_cache_noprof+0x72/0x780
[ 1282.605667][T12409]  ? __thp_vma_allowable_orders+0x1c8/0xcd0
[ 1282.605689][T12409]  ? madvise_collapse+0x1a9/0xab0
[ 1282.605713][T12409]  ? madvise_collapse+0x1a9/0xab0
[ 1282.605732][T12409]  madvise_collapse+0x1a9/0xab0
[ 1282.605753][T12409]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1282.605784][T12409]  ? mas_data_end+0x162/0x280
[ 1282.605808][T12409]  ? __pfx_madvise_collapse+0x10/0x10
[ 1282.605829][T12409]  ? mas_prev_node+0x17e/0xd90
[ 1282.605856][T12409]  madvise_vma_behavior+0x1096/0x2d50
[ 1282.605910][T12409]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 1282.605931][T12409]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1282.605955][T12409]  ? mas_prev+0x9b/0xf0
[ 1282.605975][T12409]  ? __pfx_mas_prev+0x10/0x10
[ 1282.606002][T12409]  ? find_vma_prev+0xd3/0x150
[ 1282.606024][T12409]  ? __pfx_find_vma_prev+0x10/0x10
[ 1282.606053][T12409]  ? __lock_acquire+0x62e/0x1ce0
[ 1282.606080][T12409]  madvise_walk_vmas+0x31f/0x9c0
[ 1282.606115][T12409]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 1282.606150][T12409]  madvise_do_behavior+0x1e2/0x530
[ 1282.606177][T12409]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 1282.606208][T12409]  ? down_read+0x13d/0x480
[ 1282.606247][T12409]  do_madvise+0x176/0x240
[ 1282.606272][T12409]  ? __pfx_do_madvise+0x10/0x10
[ 1282.606294][T12409]  ? __mutex_unlock_slowpath+0x161/0x7b0
[ 1282.606334][T12409]  ? __fget_files+0x20e/0x3c0
[ 1282.606365][T12409]  ? __pfx_ksys_write+0x10/0x10
[ 1282.606391][T12409]  __ia32_sys_madvise+0xa7/0x110
[ 1282.606418][T12409]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1282.606442][T12409]  __do_fast_syscall_32+0x7c/0x300
[ 1282.606467][T12409]  do_fast_syscall_32+0x32/0x80
[ 1282.606488][T12409]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1282.606510][T12409] RIP: 0023:0xf707d579
[ 1282.606525][T12409] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1282.606559][T12409] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000db
[ 1282.606576][T12409] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000400000
[ 1282.606587][T12409] RDX: 0000000000000019 RSI: 0000000000000000 RDI: 0000000000000000
[ 1282.606597][T12409] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1282.606608][T12409] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1282.606618][T12409] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1282.606646][T12409]  </TASK>
[ 1282.744938][T12411] FAULT_INJECTION: forcing a failure.
[ 1282.744938][T12411] name failslab, interval 1, probability 0, space 0, times 0
[ 1282.750064][T12411] CPU: 2 UID: 0 PID: 12411 Comm: syz.0.4905 Not tainted syzkaller #0 PREEMPT(full) 
[ 1282.750087][T12411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1282.750100][T12411] Call Trace:
[ 1282.750107][T12411]  <TASK>
[ 1282.750117][T12411]  dump_stack_lvl+0x16c/0x1f0
[ 1282.750144][T12411]  should_fail_ex+0x512/0x640
[ 1282.750165][T12411]  ? fs_reclaim_acquire+0xae/0x150
[ 1282.750191][T12411]  should_failslab+0xc2/0x120
[ 1282.750213][T12411]  __kmalloc_noprof+0xdd/0x880
[ 1282.750241][T12411]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1282.750264][T12411]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1282.750279][T12411]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1282.750299][T12411]  ? tomoyo_profile+0x47/0x60
[ 1282.750320][T12411]  tomoyo_path_number_perm+0x245/0x580
[ 1282.750348][T12411]  ? tomoyo_path_number_perm+0x237/0x580
[ 1282.750374][T12411]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1282.750423][T12411]  ? find_held_lock+0x2b/0x80
[ 1282.750442][T12411]  ? hook_file_ioctl_common+0x145/0x410
[ 1282.750476][T12411]  ? __fget_files+0x20e/0x3c0
[ 1282.750497][T12411]  security_file_ioctl_compat+0x9b/0x240
[ 1282.750526][T12411]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1282.750555][T12411]  __do_fast_syscall_32+0x7c/0x300
[ 1282.750578][T12411]  do_fast_syscall_32+0x32/0x80
[ 1282.750598][T12411]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1282.750617][T12411] RIP: 0023:0xf70bd579
[ 1282.750632][T12411] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1282.750649][T12411] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1282.750665][T12411] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c028aa05
[ 1282.750677][T12411] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 1282.750687][T12411] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1282.750697][T12411] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1282.750707][T12411] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1282.750732][T12411]  </TASK>
[ 1282.750740][T12411] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1283.085135][T12421] FAULT_INJECTION: forcing a failure.
[ 1283.085135][T12421] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1283.090887][T12421] CPU: 2 UID: 0 PID: 12421 Comm: syz.0.4907 Not tainted syzkaller #0 PREEMPT(full) 
[ 1283.090903][T12421] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1283.090909][T12421] Call Trace:
[ 1283.090914][T12421]  <TASK>
[ 1283.090931][T12421]  dump_stack_lvl+0x16c/0x1f0
[ 1283.090948][T12421]  should_fail_ex+0x512/0x640
[ 1283.090963][T12421]  _copy_from_user+0x2e/0xd0
[ 1283.090979][T12421]  get_compat_msghdr+0xa7/0x170
[ 1283.090992][T12421]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1283.091002][T12421]  ? __lock_acquire+0xb97/0x1ce0
[ 1283.091022][T12421]  ___sys_sendmsg+0x1ae/0x1d0
[ 1283.091037][T12421]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1283.091063][T12421]  ? find_held_lock+0x2b/0x80
[ 1283.091091][T12421]  __sys_sendmsg+0x16d/0x220
[ 1283.091110][T12421]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1283.091138][T12421]  ? rcu_is_watching+0x12/0xc0
[ 1283.091160][T12421]  __do_fast_syscall_32+0x7c/0x300
[ 1283.091182][T12421]  do_fast_syscall_32+0x32/0x80
[ 1283.091201][T12421]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1283.091220][T12421] RIP: 0023:0xf70bd579
[ 1283.091233][T12421] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1283.091248][T12421] RSP: 002b:00000000f548c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1283.091265][T12421] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000600
[ 1283.091276][T12421] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1283.091286][T12421] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1283.091296][T12421] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1283.091305][T12421] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1283.091327][T12421]  </TASK>
[ 1283.329301][T12425] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4908'.
[ 1283.454756][T12430] netlink: 'syz.3.4908': attribute type 10 has an invalid length.
[ 1283.941072][T12463] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1284.000817][T12463] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1284.058414][T12463] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1284.184164][T12463] /dev/sr0: Can't open blockdev
[ 1284.765407][T12473] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1284.768694][T12473] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1284.795179][T12473] ==================================================================
[ 1284.795191][T12473] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[ 1284.795216][T12473] Write of size 8 at addr ffffc90004b69000 by task syz.2.4921/12473
[ 1284.795227][T12473] 
[ 1284.795235][T12473] CPU: 3 UID: 0 PID: 12473 Comm: syz.2.4921 Not tainted syzkaller #0 PREEMPT(full) 
[ 1284.795250][T12473] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1284.795258][T12473] Call Trace:
[ 1284.795263][T12473]  <TASK>
[ 1284.795294][T12473]  dump_stack_lvl+0x116/0x1f0
[ 1284.795312][T12473]  print_report+0xcd/0x630
[ 1284.795327][T12473]  ? __virt_addr_valid+0x81/0x610
[ 1284.795345][T12473]  ? sys_imageblit+0x1a6f/0x1e60
[ 1284.795363][T12473]  kasan_report+0xe0/0x110
[ 1284.795377][T12473]  ? sys_imageblit+0x1a6f/0x1e60
[ 1284.795395][T12473]  sys_imageblit+0x1a6f/0x1e60
[ 1284.795416][T12473]  ? __pfx_sys_imageblit+0x10/0x10
[ 1284.795432][T12473]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1284.795450][T12473]  ? find_held_lock+0x2b/0x80
[ 1284.795463][T12473]  ? queue_work_on+0x12a/0x1f0
[ 1284.795473][T12473]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1284.795485][T12473]  ? queue_work_on+0x8b/0x1f0
[ 1284.795495][T12473]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1284.795512][T12473]  bit_putcs+0x912/0xde0
[ 1284.795530][T12473]  ? __pfx_bit_putcs+0x10/0x10
[ 1284.795542][T12473]  ? __vmap_pages_range_noflush+0x1d0/0x230
[ 1284.795557][T12473]  ? fb_get_color_depth+0x120/0x250
[ 1284.795570][T12473]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1284.795589][T12473]  ? __pfx_bit_putcs+0x10/0x10
[ 1284.795602][T12473]  fbcon_putcs+0x384/0x450
[ 1284.795614][T12473]  do_update_region+0x2e6/0x3f0
[ 1284.795627][T12473]  invert_screen+0x1e4/0x590
[ 1284.795642][T12473]  ? __pfx_invert_screen+0x10/0x10
[ 1284.795657][T12473]  ? __pfx_complement_pos+0x10/0x10
[ 1284.795672][T12473]  ? vc_do_resize+0x24d/0x10e0
[ 1284.795685][T12473]  ? __vmalloc_node_noprof+0xad/0xf0
[ 1284.795701][T12473]  clear_selection+0x59/0x70
[ 1284.795741][T12473]  vc_do_resize+0xd9b/0x10e0
[ 1284.795759][T12473]  ? __pfx_vc_do_resize+0x10/0x10
[ 1284.795777][T12473]  fbcon_set_disp+0x7ad/0xe50
[ 1284.795789][T12473]  set_con2fb_map+0x703/0x1080
[ 1284.795803][T12473]  fbcon_set_con2fb_map_ioctl+0x16c/0x220
[ 1284.795820][T12473]  ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10
[ 1284.795836][T12473]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1284.795854][T12473]  do_fb_ioctl+0x328/0x7e0
[ 1284.795869][T12473]  ? __pfx_do_fb_ioctl+0x10/0x10
[ 1284.795883][T12473]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1284.795895][T12473]  ? find_held_lock+0x2b/0x80
[ 1284.795913][T12473]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1284.795931][T12473]  fb_compat_ioctl+0x55e/0x670
[ 1284.795946][T12473]  ? __pfx_fb_compat_ioctl+0x10/0x10
[ 1284.795960][T12473]  ? hook_file_ioctl_common+0x145/0x410
[ 1284.795980][T12473]  ? __fget_files+0x20e/0x3c0
[ 1284.795991][T12473]  ? __ia32_compat_sys_openat+0x110/0x210
[ 1284.796009][T12473]  ? __pfx_fb_compat_ioctl+0x10/0x10
[ 1284.796024][T12473]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1284.796045][T12473]  __do_fast_syscall_32+0x7c/0x300
[ 1284.796134][T12473]  do_fast_syscall_32+0x32/0x80
[ 1284.796157][T12473]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1284.796176][T12473] RIP: 0023:0xf707d579
[ 1284.796187][T12473] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1284.796198][T12473] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1284.796209][T12473] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000000004610
[ 1284.796217][T12473] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[ 1284.796225][T12473] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1284.796232][T12473] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1284.796239][T12473] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1284.796249][T12473]  </TASK>
[ 1284.796253][T12473] 
[ 1284.796257][T12473] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc90004869000 allocated at drm_gem_shmem_vmap_locked+0x561/0x7e0
[ 1284.796281][T12473] Memory state around the buggy address:
[ 1284.796288][T12473]  ffffc90004b68f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1284.796296][T12473]  ffffc90004b68f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1284.796305][T12473] >ffffc90004b69000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1284.796311][T12473]                    ^
[ 1284.796324][T12473]  ffffc90004b69080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1284.796333][T12473]  ffffc90004b69100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1284.796340][T12473] ==================================================================
[ 1284.796465][T12473] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1284.796475][T12473] CPU: 3 UID: 0 PID: 12473 Comm: syz.2.4921 Not tainted syzkaller #0 PREEMPT(full) 
[ 1284.796489][T12473] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1284.796497][T12473] Call Trace:
[ 1284.796501][T12473]  <TASK>
[ 1284.796506][T12473]  dump_stack_lvl+0x3d/0x1f0
[ 1284.796521][T12473]  vpanic+0x640/0x6f0
[ 1284.796538][T12473]  panic+0xca/0xd0
[ 1284.796554][T12473]  ? __pfx_panic+0x10/0x10
[ 1284.796571][T12473]  ? sys_imageblit+0x1a6f/0x1e60
[ 1284.796587][T12473]  ? preempt_schedule_common+0x44/0xc0
[ 1284.796601][T12473]  ? preempt_schedule_thunk+0x16/0x30
[ 1284.796617][T12473]  check_panic_on_warn+0xab/0xb0
[ 1284.796634][T12473]  end_report+0x107/0x170
[ 1284.796651][T12473]  kasan_report+0xee/0x110
[ 1284.796665][T12473]  ? sys_imageblit+0x1a6f/0x1e60
[ 1284.796683][T12473]  sys_imageblit+0x1a6f/0x1e60
[ 1284.796702][T12473]  ? __pfx_sys_imageblit+0x10/0x10
[ 1284.796718][T12473]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1284.796736][T12473]  ? find_held_lock+0x2b/0x80
[ 1284.796749][T12473]  ? queue_work_on+0x12a/0x1f0
[ 1284.796759][T12473]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1284.796772][T12473]  ? queue_work_on+0x8b/0x1f0
[ 1284.796782][T12473]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1284.796799][T12473]  bit_putcs+0x912/0xde0
[ 1284.796816][T12473]  ? __pfx_bit_putcs+0x10/0x10
[ 1284.796829][T12473]  ? __vmap_pages_range_noflush+0x1d0/0x230
[ 1284.796844][T12473]  ? fb_get_color_depth+0x120/0x250
[ 1284.796856][T12473]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1284.796877][T12473]  ? __pfx_bit_putcs+0x10/0x10
[ 1284.796890][T12473]  fbcon_putcs+0x384/0x450
[ 1284.796903][T12473]  do_update_region+0x2e6/0x3f0
[ 1284.796916][T12473]  invert_screen+0x1e4/0x590
[ 1284.796932][T12473]  ? __pfx_invert_screen+0x10/0x10
[ 1284.796946][T12473]  ? __pfx_complement_pos+0x10/0x10
[ 1284.796961][T12473]  ? vc_do_resize+0x24d/0x10e0
[ 1284.796976][T12473]  ? __vmalloc_node_noprof+0xad/0xf0
[ 1284.796992][T12473]  clear_selection+0x59/0x70
[ 1284.797005][T12473]  vc_do_resize+0xd9b/0x10e0
[ 1284.797023][T12473]  ? __pfx_vc_do_resize+0x10/0x10
[ 1284.797040][T12473]  fbcon_set_disp+0x7ad/0xe50
[ 1284.797051][T12473]  set_con2fb_map+0x703/0x1080
[ 1284.797065][T12473]  fbcon_set_con2fb_map_ioctl+0x16c/0x220
[ 1284.797079][T12473]  ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10
[ 1284.797094][T12473]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1284.797112][T12473]  do_fb_ioctl+0x328/0x7e0
[ 1284.797127][T12473]  ? __pfx_do_fb_ioctl+0x10/0x10
[ 1284.797142][T12473]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1284.797154][T12473]  ? find_held_lock+0x2b/0x80
[ 1284.797172][T12473]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1284.797189][T12473]  fb_compat_ioctl+0x55e/0x670
[ 1284.797205][T12473]  ? __pfx_fb_compat_ioctl+0x10/0x10
[ 1284.797219][T12473]  ? hook_file_ioctl_common+0x145/0x410
[ 1284.797238][T12473]  ? __fget_files+0x20e/0x3c0
[ 1284.797249][T12473]  ? __ia32_compat_sys_openat+0x110/0x210
[ 1284.797268][T12473]  ? __pfx_fb_compat_ioctl+0x10/0x10
[ 1284.797283][T12473]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 1284.797301][T12473]  __do_fast_syscall_32+0x7c/0x300
[ 1284.797327][T12473]  do_fast_syscall_32+0x32/0x80
[ 1284.797341][T12473]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1284.797356][T12473] RIP: 0023:0xf707d579
[ 1284.797365][T12473] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1284.797378][T12473] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1284.797390][T12473] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000000004610
[ 1284.797397][T12473] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[ 1284.797405][T12473] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1284.797411][T12473] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1284.797418][T12473] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1284.797428][T12473]  </TASK>
[ 1284.798301][T12473] Kernel Offset: disabled

VM DIAGNOSIS:
03:52:27  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff8160a323 RDX=ffffffff8e097a00
RSI=ffffffff8160a36b RDI=ffffffff93a8afe0 RBP=ffff88802b220000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff27515fc R10=ffffffff93a8afe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8160a36c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977e7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000030b16ffc CR3=000000006f109000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff8160a323 RDX=ffff8880270ba480
RSI=ffffffff8160a36b RDI=ffffffff93a8afe0 RBP=ffff88802b320000 RSP=ffffc900035a7f08
R8 =0000000000000001 R9 =fffffbfff27515fc R10=ffffffff93a8afe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8160a36c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978e7000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2affe6 CR3=000000002790d000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000003800000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff8160a323 RDX=ffff888025654900
RSI=ffffffff8160a36b RDI=ffffffff93a8afe0 RBP=ffff88802b420000 RSP=ffffc90000538fd0
R8 =0000000000000001 R9 =fffffbfff27515fc R10=ffffffff93a8afe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8160a36c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fa0add13c80 ffffffff 00c00000
GS =0000 ffff8880979e7000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa0ade14340 CR3=000000004ea5b000 CR4=00350ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ffff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 002b002b002b002c 002b000000004554
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004554
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 002d002b002b002b 002c002b00000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000030
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000018
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa0ae07eb20 00007fa0ae07f050
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff852ca750 RDI=ffffffff9adebe40 RBP=ffffffff9adebe00 RSP=ffffc90003a4ee38
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552033203a555043
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35bd81a R15=dffffc0000000000
RIP=ffffffff852ca777 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097ae7000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa0add7da10 CR3=0000000049ede000 CR4=00352ef0
DR0=ffffffffffffffff DR1=00000000000001f8 DR2=0000000000000083 DR3=ffffffffefffff15 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000003800000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000