last executing test programs:

1m41.31937601s ago: executing program 0 (id=420):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x2, &(0x7f0000000100)=[{0xc}, {0x6}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0xfffff000, 0x0, 0x0, 0x0, 0x0}, 0x50)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffc000/0x3000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, 0x0, 0x4040080)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mknodat(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
mmap(&(0x7f0000400000/0x3000)=nil, 0x3000, 0x2000009, 0x4d032, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x672, 0x200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000540)={{0x0, 0xdddd1000, 0x0, 0x2, 0x8, 0x0, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0xd000, 0xb, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0xff}, {0x3000, 0x5000, 0xc, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x1, 0xd000, 0xd, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfe, 0xa1, 0x4}, {0xdddd0000, 0x3000, 0xf, 0x0, 0xff, 0x4, 0x6, 0xe, 0x0, 0x3c}, {0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x80}, {0xdddd1000, 0x0, 0xa, 0x6, 0x0, 0xf1, 0x3}, {0x0, 0x3000, 0x0, 0x0, 0x1, 0x1, 0x83, 0xa, 0x26, 0x5}, {0x80a0000}, {0xdddd1000, 0xff}, 0xddf9ffdb, 0x0, 0x0, 0x70, 0xfffffffffffffffe, 0xd01, 0x0, [0x2, 0x0, 0x1]})
syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)

1m40.319789598s ago: executing program 0 (id=423):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)='GPL\x00'}, 0x48)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000a00)=r1, 0x4)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)=@newsa={0xec, 0x10, 0x713, 0x0, 0x0, {{@in=@broadcast, @in=@dev={0xac, 0x14, 0x14, 0x1}, 0x0, 0x0, 0x0, 0x8}, {@in=@remote, 0x0, 0x32}, @in=@loopback, {0x0, 0x0, 0xfffffffffffffffe}, {}, {0x0, 0x8}, 0x0, 0x0, 0x2}}, 0xec}}, 0x0)
getpgid(0x0)
syz_open_dev$vim2m(&(0x7f00000000c0), 0x1fe, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x2b, 0x80801, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f00000003c0)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x12, 0x1, 0x8, 0xf, 0x2000, 0xffffffffffffffff, 0x1}, 0x50)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82004000000", @ANYRES32=r7, @ANYBLOB="000080000000000018003480050035"], 0x38}, 0x1, 0x300}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB='8\x00\x00\x00m'], 0x38}, 0x1, 0x300}, 0x0)
r8 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r8, &(0x7f0000000140), 0x4924b68, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="3bf81bb9f9bb76541ae0c7ce174a3fe8e1d3d506f1a380939201372892b7e1d2b4d4faaaa2ba0bb38bb6b1d60af93d96da664bbd0b7976f9e666faa99a46721baf5bce112670b105ff0d1c63fdfc93b739f35c9b53882926c7863fd1fae1f838487f7ede02177594442b3e2abad3a91309cb0329de920071ea3057185337059804ed42bc2501936108df9632ea8fc176cd7816adb22b32764f4f2c06e60b436f418cc04d43d5e251fc32c1609a884d870f4c68010b99bb4df39e6675cd864bbc9bde0a89a3a20e2d7bd4e12cf61429573d657194f08beee7f358e0d968a5644c7bdfc28f3f3a330000003754a190aece"], 0x20000600}, 0x1, 0x0, 0x0, 0x44004}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)

1m39.164220778s ago: executing program 0 (id=430):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x6}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_SET_NAME_A(r3, 0x40046201, &(0x7f0000000040)='/dev/dma_heap/system\x00')
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086201, &(0x7f0000000080)=0x20)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a1)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
chroot(&(0x7f00000001c0)='./file0\x00')
sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a3200000000140000001100", @ANYRES8], 0x54}, 0x1, 0x0, 0x0, 0x24068045}, 0x0)
get_mempolicy(&(0x7f0000005a40), &(0x7f0000005a80), 0x3, &(0x7f0000ffc000/0x4000)=nil, 0x4)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003400000000000000002"], 0xcdc}}, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000800)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="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"], 0x44}}, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r8 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCBRDELBR(r8, 0x89a2, &(0x7f0000000000)='bridge0\x00')
ppoll(&(0x7f0000000340)=[{r0, 0x80}, {r6, 0x4000}], 0x2, &(0x7f0000000380)={0x77359400}, &(0x7f00000003c0)={[0xa, 0xe93f]}, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'})
timer_create(0x0, &(0x7f0000000080)={0x0, 0x3d, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})

1m38.236170957s ago: executing program 0 (id=436):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0xc000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})

1m38.151835188s ago: executing program 0 (id=438):
socket$l2tp6(0xa, 0x2, 0x73)
getpgid(0x0)
syz_open_dev$vim2m(&(0x7f0000000180), 0x2, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x2b, 0x80801, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r2, 0xffffffffffffffff, 0x20000000)

1m37.797937521s ago: executing program 0 (id=442):
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x8c, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x60, 0x3, 0x0, 0x1, [{0x5c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x50, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x10}]}}}, {0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfff}]}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x110}}, 0x0) (fail_nth: 19)
chdir(&(0x7f0000000100)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)

1m37.721671085s ago: executing program 32 (id=442):
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x8c, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x60, 0x3, 0x0, 0x1, [{0x5c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x50, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x10}]}}}, {0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfff}]}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x110}}, 0x0) (fail_nth: 19)
chdir(&(0x7f0000000100)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)

5.254035177s ago: executing program 3 (id=763):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_SET_NAME_A(r3, 0x40046201, &(0x7f0000000040)='/dev/dma_heap/system\x00')
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086201, &(0x7f0000000080)=0x20)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a1)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)="d8000000180081064e81f782db44b904021d005c06007c09e8fe55a10a0015400100142603600e120800060000000401a800080008000c4003001100036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='sys_enter\x00', r5, 0x0, 0x400}, 0x18)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
chroot(&(0x7f00000001c0)='./file0\x00')
sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a3200000000140000001100", @ANYRES8], 0x54}, 0x1, 0x0, 0x0, 0x24068045}, 0x0)
get_mempolicy(&(0x7f0000005a40), &(0x7f0000005a80), 0x3, &(0x7f0000ffc000/0x4000)=nil, 0x4)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003400000000000000002"], 0xcdc}}, 0x0)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000009eb000030000380140002000063616e300000000000000000000000080003000000000008000500ac1414aa0800010000000000"], 0x44}}, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r9 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCBRDELBR(r9, 0x89a2, &(0x7f0000000000)='bridge0\x00')
ppoll(&(0x7f0000000340)=[{r0, 0x80}, {r7, 0x4000}], 0x2, &(0x7f0000000380)={0x77359400}, &(0x7f00000003c0)={[0xa, 0xe93f]}, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'})
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

5.178244394s ago: executing program 4 (id=765):
fsopen(0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, &(0x7f0000000400)={'\x00', 0x3, 0x2884d62d, 0x101, 0x3, 0x10000, <r0=>0x0})
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x1002000000000006)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x1ff, 0x80800)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
r3 = accept4$inet(r2, &(0x7f0000000240)={0x2, 0x0, @multicast2}, &(0x7f0000000280)=0x10, 0x80000)
sendto$inet(r3, &(0x7f0000000340)="0d0b5ba10c14c455af5cef17bdded9ef3ef4c405e7002f8f5fefaa73997c75be4136805c4c2ec43bc9483b41d4af7282d1e510a1eaff55ba87ba8e1823bc06c18078df282bedaa7e6dba9ea55889e560f5e0d657539da7d3fc2514363ae92899b157ba0845653de9923a3dcebb31edefb76c6f10c96955419b0043845a9769a2210cce7ecefce056af71670fc261ac11592b13883f2c27555517b39e54", 0x9d, 0x0, 0x0, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x8914, &(0x7f0000000000))
ioctl$sock_rose_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, 0x0, 0x106, 0x9}}, 0x20)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x1a, 0x1, 0x0, 0x0, {0x81}, [@FIB_RULE_POLICY=@FRA_TABLE={0x8, 0xf, 0xfe}]}, 0x24}}, 0x0)
write(r4, &(0x7f00000000c0)="240000001e005f0214fffffffffffff80700", 0x12)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x6, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000feffffff850000007100000095"], &(0x7f0000001080)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r7, 0x0, 0x0, 0x0, 0x0)
read$FUSE(r7, &(0x7f0000002340)={0x2020}, 0x2020)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000040)={0x2, 0x4, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r6, 0x0, 0xe, 0x0, &(0x7f0000000100)="0426063d032bbb006965499a03b9", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7}, 0x50)
r8 = socket$inet6(0x10, 0x3, 0x7)
sendmsg$inet(r8, 0x0, 0x0)

4.890664845s ago: executing program 4 (id=766):
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000500)=<r0=>0x0, &(0x7f0000000540)=0x4)
r1 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x3, &(0x7f0000000640)=ANY=[@ANYRES32=r0, @ANYRESDEC=r1, @ANYRES16=0x0, @ANYRESDEC=r0, @ANYRES32=r0, @ANYRES64=r0], 0x0, 0xff80, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x39, '\x00', r0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000b40)={'wpan0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x1c, r4, 0x7d243a6ea807936d, 0x12, 0x25dfdbf8, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48891}, 0x880)
sendmsg$NL802154_CMD_DEL_SEC_DEV(r2, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="08002abd7000fddbdf251b00000008000300", @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00', @ANYRES32=r3, @ANYBLOB="08000300", @ANYRES32=r3, @ANYBLOB="0c000600000000000000000010002e800c0004000203aaaaaaaaaaaa08000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=r3, @ANYBLOB="10002e800c000400cdbf968a70c27794"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x200409c4)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)={0x38, r6, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008094}, 0x4c014)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x147c40, 0x0)
preadv2(r10, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xffe00}], 0x5, 0x2000, 0x0, 0x1f)
connect$unix(r8, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r7, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r8, 0x0, 0x0, 0x2, 0x0)
r11 = socket$netlink(0x10, 0x3, 0x4)
writev(r11, &(0x7f0000000480), 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
r12 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r9, 0x8983, &(0x7f00000004c0)={0x8, 'sit0\x00', {'veth0_to_team\x00'}, 0x5})
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r12, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="20000000111405012abd70000000000008000100f9ffffff"], 0x20}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)

4.680775132s ago: executing program 3 (id=768):
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0xfffffd10, &(0x7f0000000200)=0x2000000000006)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x1ff, 0x80800)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
r2 = accept4$inet(r1, &(0x7f0000000240)={0x2, 0x0, @multicast2}, &(0x7f0000000280)=0x10, 0x80000)
sendto$inet(r2, &(0x7f0000000340)="0d0b5ba10c14c455af5cef17bdded9ef3ef4c405e7002f8f5fefaa73997c75be4136805c4c2ec43bc9483b41d4af7282d1e510a1eaff55ba87ba8e1823bc06c18078df282bedaa7e6dba9ea55889e560f5e0d657539da7d3fc2514363ae92899b157ba0845653de9923a3dcebb31edefb76c6f10c96955419b0043845a9769a2210cce7ecefce056af71670fc261ac11592b13883f2c27555517b39e54", 0x9d, 0x0, 0x0, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x8914, &(0x7f0000000000))
ioctl$sock_rose_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, 0x0, 0x106, 0x9}}, 0x20)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x1a, 0x1, 0x0, 0x0, {0x81}, [@FIB_RULE_POLICY=@FRA_TABLE={0x8, 0xf, 0xfe}]}, 0x1b}}, 0x0)
write(r3, &(0x7f00000000c0)="240000001e005f0214fffffffffffff80700", 0x12)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x6, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000feffffff850000007100000095"], &(0x7f0000001080)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r6, 0x0, 0x0, 0x0, 0x0)
read$FUSE(r6, &(0x7f0000002340)={0x2020}, 0x2020)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x2, 0x4, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0xe, 0x0, &(0x7f0000000100)="0426063d032bbb006965499a03b9", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7}, 0x50)
r7 = socket$inet6(0x10, 0x3, 0x7)
sendmsg$inet(r7, 0x0, 0x0)

4.539986445s ago: executing program 3 (id=769):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="5c0000001000030400000000fedbdf250cc17400", @ANYRES32=r4, @ANYBLOB="00080000000000003c0012800b00010062726964676500002c00028005001900020000000c002300070000000000000005002a00010000000c002e000000000001000000"], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
ioctl$sock_SIOCGSKNS(r3, 0x894c, &(0x7f0000000380)=0xe0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000800)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='mm_khugepaged_scan_pmd\x00', r7, 0x0, 0x800}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
ppoll(&(0x7f00000000c0)=[{r6, 0x740}], 0x1, 0x0, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r6, 0xc0405405, &(0x7f0000000340)={{0xffffffffffffffff, 0x2, 0x9, 0x4, 0xe68}, 0x2, 0x3, 0x8})
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r8}, 0x10)
setitimer(0x1, 0x0, 0x0)
futex(&(0x7f0000000040), 0x8, 0x0, &(0x7f0000000080)={0x77359400}, &(0x7f0000000300)=0x2, 0x2)

4.497581306s ago: executing program 4 (id=770):
sendmsg$RDMA_NLDEV_CMD_RES_PD_GET(0xffffffffffffffff, 0x0, 0x1)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x5169, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
ioctl$I2C_SLAVE(r0, 0x703, 0x322)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd=r0, 0x0, 0x0})
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f00000002c0)='illinois', 0x8)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r5 = syz_open_dev$sg(&(0x7f0000003180), 0x0, 0x143001)
ioctl$SG_GET_REQUEST_TABLE(r5, 0x2286, 0x0)
r6 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000140)={0x6}, 0x10)
write(r6, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000ff02000200000000", 0x1c)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x14, r9, 0x1}, 0x14}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x2, 0x0, 0x7ffffffb}]})
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=0x0, @ANYBLOB="801000000000000008001b"], 0x28}, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
read(r6, &(0x7f00000000c0)=""/116, 0x74)
io_uring_enter(r1, 0x7368, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_START_NAN(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0xc000020}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x48, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r10}, @val={0xc, 0x99, {0x7, 0x76}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x8}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x20004044}, 0x20000)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r11, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(0x0, r11)
openat$kvm(0xffffff9c, 0x0, 0x301000, 0x0)

4.156914717s ago: executing program 4 (id=771):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001740)={{0x1, 0x1, 0x18, r1, {0xee00, <r2=>0xee00}}, './file0\x00'})
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000000140)="328f7aec2aa2c9fa899f0ab5e7db9797f76851c5b7c1bdbe6afb3c71", 0x1c}], 0x2, &(0x7f0000001780)=[@cred={{0x18}}, @rights={{0xc}}, @cred={{0x18, 0x1, 0x2, {0x0, 0x0, r2}}}], 0x3c, 0x20000040}}], 0x1, 0x40000d0)
write$USERIO_CMD_REGISTER(r1, &(0x7f00000000c0), 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = socket(0x1e, 0x1, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r5, 0x10f, 0x8a, &(0x7f0000000040), 0x4)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r4, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r6 = socket$inet6(0xa, 0x1, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020300090a0000000000000004000000030006000000000002000000ac1414000000000000000000020001000000000000000002fffffffb030005000000000002"], 0x50}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x36}}}, 0x1c)
r8 = socket$key(0xf, 0x3, 0x2)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x44004000)
sendmsg$NFT_BATCH(r10, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x90, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x50, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x40, 0x2, 0x0, 0x1, [@NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TARGET_INFO={0x2c, 0x3, "7339f2f10455afb9fdd672bad09dfb78c7699c74e891a0c700"/40}, @NFTA_TARGET_NAME={0x8, 0x1, 'TEE\x00'}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xb8}, 0x1, 0x0, 0x0, 0x4004}, 0x24000840)
ioctl$KVM_CHECK_EXTENSION(r9, 0xae03, 0xbe)
sendmsg$key(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="02090000020000000000000000006ed50d169fd1259a4008814b921f312bdff9490675285f56e698679723b433298a597a017f02c5d6ebed91840ceb992d349e05fa69"], 0x10}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0xba01}, 0x0)
r11 = socket(0x10, 0x3, 0x0)
write(r11, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

4.060831868s ago: executing program 2 (id=772):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000000), 0x0, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000a00)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r1, 0x0, 0x10000008ebc, 0x0)
splice(r0, 0x0, r3, 0x0, 0x25a5, 0x0)

3.621155853s ago: executing program 3 (id=774):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500"], 0x74}}, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="18080000000000000000001f0000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7060000000000008500000005000000bf0900000000000035090100000000009500000000000000b7020000000000007b9af8ff00000000b5090000000000007baaf0ff00000000ae8900000000000007080000f8ffffffbf8400000000000007040000f0ffffffc70200000800000018260000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf980000000000005608f8ffffff00008500000007000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.321189819s ago: executing program 1 (id=776):
sendmsg$RDMA_NLDEV_CMD_RES_PD_GET(0xffffffffffffffff, 0x0, 0x1)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x5169, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
ioctl$I2C_SLAVE(r0, 0x703, 0x322)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd=r0, 0x0, 0x0})
io_uring_enter(r1, 0x7368, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_START_NAN(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0xc000020}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x60, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x7, 0x76}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x6}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x8}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x6}]}, 0x60}, 0x1, 0x0, 0x0, 0x20004044}, 0x20000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000003900010326bd7000fcffffff0800000086c04e69845392420816ec0d17c4452ef7ac8750ca4af088fe1eafe9dfb86fea77c66c72f94335d319543cb2bcd51963930129f60af50ee05267819740c39883e89323ff5fc316b5799ea2a2a8285f4ff66ebd710c60e3be94f393e4d73a05b371ed8fec1f7a4ea96cd48194843e8978706881da483b8aea1d84e4fe35d599e4973b780fe6a8"], 0x14}, 0x1, 0x0, 0x0, 0x4004097}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r5)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x301000, 0x0)

3.276394442s ago: executing program 1 (id=777):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=ANY=[], 0x180}, 0x1, 0x0, 0x0, 0x4075}, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r5)
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)={0x2c, r6, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1}]}, 0x2c}}, 0x64000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x118)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r7 = openat(0xffffffffffffff9c, 0x0, 0x62881, 0x19d)
write$P9_RREADLINK(r7, &(0x7f0000000180)={0xffffffffffffff9e, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0xd, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4, 0x0, @private1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101}}, @sadb_lifetime={0x4, 0x4}]}, 0xc0}}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
fcntl$lock(r3, 0x24, &(0x7f0000000280)={0x2, 0x3, 0x10000, 0xe3, r2})
chdir(&(0x7f0000000100)='./file0\x00')

2.819936342s ago: executing program 2 (id=778):
capset(&(0x7f0000a31000)={0x20080522}, &(0x7f0000000080))
r0 = socket(0x1, 0x2, 0x0)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000240), 0x2)
r2 = memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x18\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2)
ftruncate(r2, 0x10000)
fcntl$addseals(r2, 0x409, 0x7)
r3 = ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000000)={r2, 0x0, 0x0, 0x8000})
io_setup(0x4, &(0x7f00000014c0)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000040)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x121, r3, 0x0}])
ioctl$SIOCRSGCAUSE(r0, 0x89e0, 0x0)
capset(&(0x7f0000a31000)={0x20080522}, &(0x7f0000000080)) (async)
socket(0x1, 0x2, 0x0) (async)
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000240), 0x2) (async)
memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x18\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2) (async)
ftruncate(r2, 0x10000) (async)
fcntl$addseals(r2, 0x409, 0x7) (async)
ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000000)={r2, 0x0, 0x0, 0x8000}) (async)
io_setup(0x4, &(0x7f00000014c0)) (async)
io_submit(r4, 0x1, &(0x7f0000000040)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x121, r3, 0x0}]) (async)
ioctl$SIOCRSGCAUSE(r0, 0x89e0, 0x0) (async)

2.647079398s ago: executing program 2 (id=779):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x800, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x5e24, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @private0}, 0x1c)
setsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x2, 0x0, 0x3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000002180)={'ip6tnl0\x00', &(0x7f0000002240)={'ip6tnl0\x00', 0x0, 0x4, 0x1, 0x5, 0x7, 0x16, @empty, @local, 0x10, 0x8000, 0x1ff, 0x9}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000002200)={&(0x7f0000002100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000021c0)={0x0}, 0x1, 0x0, 0x0, 0x20040010}, 0x8000)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000020c0), 0x21183, 0x0)
read$FUSE(r1, &(0x7f0000000040)={0x2020}, 0x2084)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x3, 0x0)
bpf$ITER_CREATE(0xb, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}, 0x700}], 0x40000cf, 0x0)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(r2, 0x118, 0x1, 0x0, 0x0)

2.646352006s ago: executing program 3 (id=780):
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
recvmsg(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000380)="1400000036000b63", 0x8}], 0x1}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000001c0)={'broute\x00', 0x0, 0x9, 0x0, [0x1ff, 0x9, 0x7975, 0x3, 0x9, 0xffffffff80000000], 0x0, 0x0, 0x0}, &(0x7f0000000080)=0x78)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, r3, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0)
r6 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, 0x0, &(0x7f0000000000)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r7, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
syz_open_procfs(0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffac}])
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r9 = dup(r8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r9, 0x2000)

2.299466807s ago: executing program 1 (id=781):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = syz_socket_connect_nvme_tcp() (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000000)="48b8b6b70000000000000f23c80f21f835080070000f23f80f01c9660f164700400f01cf0f01ba8f200000b9140800000f32c7442400b4000000c74424020c000000ff2c24c4630168ca0366bad00466b8726f66ef66baf80cb8dacf1e8aef66bafc0cec", 0x64}], 0x1, 0x21, 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
pipe2$9p(&(0x7f0000001900), 0x0) (async)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r4, 0x4048ae9b, &(0x7f0000000080)={0xe0003, 0x0, {[0xffffffffffffffff, 0x1f8, 0x83, 0xffffffffefffff15, 0x3, 0x4, 0x2]}})
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
recvmsg$inet_nvme(r1, &(0x7f00000001c0)={&(0x7f0000000040)=@ax25={{0x3, @rose}, [@rose, @null, @remote, @remote, @default, @rose, @null, @rose]}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000300)=""/96, 0x60}], 0x1, &(0x7f0000000380)=""/102, 0x66}, 0x40)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$sock_int(r5, 0x1, 0x46, &(0x7f0000b4bffc)=0x8, 0x4)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYRESHEX=r0], 0xa0}}, 0x40880)

1.959537453s ago: executing program 2 (id=782):
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
recvmsg(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000036000bdd6800f46508af63650e4da3226175449858f54ce22c73f0000d300318d81390ed662279ac8397ccd43ccbc54b46eca6aac30b84", 0x3b}], 0x255}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000001c0)={'broute\x00', 0x0, 0x9, 0x0, [0x1ff, 0x9, 0x7975, 0x3, 0x9, 0xffffffff80000000], 0x0, 0x0, 0x0}, &(0x7f0000000080)=0x78)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x2000000000000053, &(0x7f0000000240)=[{0x8, 0x0, 0x5, 0x8}, {0x88, 0x2, 0x38, 0x7}]})
close_range(r3, r3, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0x8000, 0xc5f7, @value})
r6 = add_key$user(&(0x7f0000000200), &(0x7f00000002c0)={'syz', 0x2}, &(0x7f0000000480)="a64547f02d24ef452b126e6b4ee0848331", 0x11, 0xffffffffffffffff)
r7 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r6, r7, r6}, &(0x7f00000000c0)=""/80, 0x50, 0x0)
r8 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, 0x0, &(0x7f0000000000)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r9, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r8, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
syz_open_procfs(0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffac}])
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)

1.959164342s ago: executing program 1 (id=783):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r1=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000003c0007010000000000000000010000000400fc80"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = fsopen(&(0x7f0000000100)='binder\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SET_TUNSRC(r5, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x78, r7, 0x0, 0x70bd26, 0x25dfdbfb, {}, [@SEG6_ATTR_DST={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @SEG6_ATTR_SECRET={0x18, 0x4, [0x7, 0x8, 0x6, 0x7, 0xd4f]}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x5}, @SEG6_ATTR_DST={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_DST={0x14, 0x1, @local}]}, 0x78}}, 0x20000080)
landlock_restrict_self(0xffffffffffffffff, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x48}, 0x48)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, r8, 0x1, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r1}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000004}, 0x448d0)

1.730921737s ago: executing program 4 (id=784):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3f}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x3, 0x3}}, @IFLA_BR_VLAN_FILTERING={0x5, 0x7, 0x8}]}}}]}, 0x48}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.stat\x00', 0x275a, 0x0) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10012, r1, 0x0)
setresuid(0xee01, 0xee00, 0x0) (async)
setresuid(0xee01, 0xee00, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1.286194477s ago: executing program 4 (id=785):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r6, 0x0, 0x3)
recvmsg$unix(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x2002)
close(r7)
prlimit64(0x0, 0x7, &(0x7f0000000440), 0x0)
io_uring_setup(0x3819, &(0x7f00000003c0))
acct(&(0x7f00000001c0)='./file0\x00')
ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000140)={'\x00', 0xd5, 0x0, 0x3})
connect$qrtr(r5, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r8 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x288}, &(0x7f0000000340)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r8, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
getpeername$qrtr(r5, 0x0, 0x0)
close_range(r4, r5, 0x0)
socket$inet6(0xa, 0x3, 0xff)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
syz_usb_disconnect(r1)

1.197359388s ago: executing program 3 (id=786):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f000000dd40)=[{{&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000500)="4e1c257da0e363f7011c8582841fd0f0d7ec5c0bdb2b3851b123468c9f04d453598eef4422c9c4479c083d226404194bef859dcf861b97521bc41a37ae21c6daaf62233bc018dab2364b74323be4089310f1c26cf2844e2f66e3802029d8732ac9db143ced586789babaf11116f81f667eff3d1fd3c0d02772ac6fe163b91a9bef3a22468f2d381bf5add65f233ded3eb6265e2fc66c64d3247dd65d16e0a8343c13c72dcfc02617fa1916f0fedb0100ef9112960c4b52bf2a5714a5b7e1", 0xbe}, {&(0x7f0000000640)="f831e0ec568882095259c4cba9ccfeb9bb6e43032d4b75508f795c29ba3e277dbbcd543d1f86af6e680aa1786ed3b5c8cb4d7d3fab802bebfd049b254dcddf9b900b8efe21d6d397fb58f9a10f2bd32a7e9eeb7ab6595ba94c4ea3a3e00655d2c45cbf52b03fa33893550f0037490182a994b049b15902bc3d49c77370f4ae3db98972c7d87bbedb494e924d4b9b5ce78a5fa21dc4993f5eae93617360cf81040d20e564dfd36fe9b819a01b3997986a7e3288f555f3ab1e7b8ff85f7c254e49db16c9f37a", 0xc5}, {&(0x7f0000000740)="b93aee4d14309ff60b3ba8822dda38aedf58f0d309e927b35e4b9069383bd88cf7d146c69950b42347e6f893551ed4bf6bc55a986be8fa1082684dca5ac41ecc19cd80cccd8a6c78ee3ecc1b681853c4c314ddbd0d71142a4447c4986e4151008c736900b8482e52a409c8df967310d154275ce3982444584841c77efbed29bde23fb6e793ce76772450b4465c4e4da4eb1f08cb5aa1cc09e08313c680707b89918c8c643a6854361fe62ae2e8041a6d2bc93b42842af49b6f664a81b7830dd84b51f29930b6eeafef", 0xc9}, {&(0x7f0000000840)="1dee35dc6b1542fa3509e9790d07008580bc9a5be33017814350a66d6018fc109d3085922f44b8a4ef8df0265ac35451ba9d8fb45c9df3fc78c714d4e7ab9de48acc46b5e4f1e81014eee0011947fbc05de011", 0x53}, {&(0x7f0000000300)="93d5dc9cf91975cb3e14b868a1bb0d18fb", 0x11}, {&(0x7f00000009c0)="1a903784d351fbded98eb07ddc53b8d166f94ea13b0d9a8136cb3cfb313ae76979a79b35cefa54840e009a22371baa4c283b89740e30fc4165ced7e98a4aa8ec84411ad1d88805ad6d2ae7442538e59813d66bdf4e13d0bb1781d187f79889e8936fa9053c0acedf589ffdafebb298585a877823874112f5c00a03edb646a262e60f037324496898728377cd41a9163af3bfe9eca6f501e26f0adde67740670f517fbb7ec9b22af085313465b6512609336817f882b6dfdb66e7aa87d4f88798236aca20", 0xc4}, {&(0x7f0000000ac0)="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", 0x1000}], 0x7, &(0x7f0000003b00)=[@rights={{0x14, 0x1, 0x1, [r3, r3]}}, @cred={{0x18, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x10, 0x1, 0x1, [r2]}}, @cred={{0x18}}], 0x54, 0x20008001}}, {{&(0x7f0000003b80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003e40)=[{&(0x7f0000003c00)="705869afd963150f0ec0eae8f6437f5a79d5066fa619408dacea49f8b1835ee4adde4431f6acd79b8242ac265ac056694e743510c70e2dae841c1cf7eb62069c9d", 0x41}, {&(0x7f00000081c0)="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", 0x1000}, {&(0x7f0000003c80)="c2b7843690e3b4a675374c9398a8b22c8fdb3ab2c3c6813109600520fa3056", 0x1f}, {&(0x7f0000003cc0)="0fac1c3c892c4c249e9c479633b974d4e0bfc710a8e7a83b31aef74984ff2d141129431c972471fa95cf721a3a9336324b90744f5e3d1b9454b3fe06521bda6b715f9631131f201bbdc2207e2fef7b7c8ff28038685e690b501fe63cb8ccecf06e1f3135269277e836676b5ac51f0e425f551bf884e3cf1a6920ba1c1abf9a2a1778d47ea1677ec946482d8019", 0x8d}, {&(0x7f0000003d80)="d9d063011e05d63271f9fee040b418d91e8cc936fe5b385bf3916887c90633ad73c52ac2cc8644a54631056f273996f682bfefe40466dc80c4b8117d2158cff39b37efb308f5cf9e7911ba7120e63a5d6606bb34a9436c895d83ca8a3c6be86b472eb21d738bd0206635ee0700d236b452e1eb4da1e55054371ca3cb8e13e7c3cf1a8288593e30e7a63839c1ff10a9fb77a5e5dbd80718e63d42fdffcd223f1ccbff5c653943ed31d4f9a4bd82ddcd7d4d6800c8356d004cedf2", 0xba}], 0x5, &(0x7f0000003e80)=[@cred={{0x18}}], 0x18, 0x4002}}, {{&(0x7f0000003ec0)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000009580)=[{&(0x7f0000003f40)="665a31405cef20aedb1d6171741239109594d4bd416c72813615fc4498aec7a6e279f178a97bb34e55b65edc08e79a6374693f38f24e6aeff5055f71737bf38a39cf27fe4034a78f5e1c1c2c0a013143192d92270c52d13a1a1b0442cecd9cb3d103182c336ca35cc2f9", 0x6a}, {&(0x7f0000003fc0)="cf5e3b6a60fc9e5c76af162dfae100c4f1d0bd6de0ee999b2d0983f55ee02d0a5c085fa79ed2291af3dba9c2fecdd16d46b84ffab2b0e64f5b236472c5c64c0471d1d2c8baa2f1e84d2ddb422749b2f58326977359577f3affd69489cfab8b8266eeecd581815d26960fe421cbb7601e9b9729b9a307", 0x76}, {&(0x7f0000004040)="d1b14e3a998a21c264365d81de58ddb946b5cf", 0x13}, {&(0x7f0000001ac0)="1f7955ec268941746de444ed3a9bc9aa7059b48e3108edc68a6be8cf47715ec65ee63716cec21242f5f5c17dd4bba231f0f34409d271f492e70757189f1ae71a8ff6085399d5972053ab9c17cfe97969a94f66fa4cd018f7120fb65d69e5da195dfe7f6baa3126df18a3c8efc53012d6dbd3ced92bba03704e71174fcd48512462ffde416cc3741fb97ce32546e3581c55c35b4146e96fa1049da43734d49d9472be02cb97bdd671c58b3ca490fc6319b281069b456ddc8198e540a5c0f63f06d127", 0xc2}, {&(0x7f00000091c0)="2af26bb692057227d7e2564540a4624d5301436574f973259372400c9a73814b054a9384129ebe6809d02d28c98d25c2d19c303f50394d516ac0910eca6ccf8b9678a7752cf1a4acba25c7cfa56c8332b24c1bfeeeb39404b7b35834011a8d8c3516aa90b0fa180b571b70837c56ed9a646b05596ba64836e20945498235e7a22e102d871b8ae8cdae9ea0c419e978c3557708e5e613b6fa6d23325556c4b3bacd557e1174e632bd927bcb574e2b960f14007fef674b8a25fe04", 0xba}, {&(0x7f0000009280)="84a279b0521c33adeb02bf6c062b255a0bfd6253aaabfc666d236bd92ba654cc9849d994116ee7b0d6ab2c03545100a796a3021cf92ae5e3c397c557bf943f31e64f34d79e5e990fee3b41039e291eb5d5a0dd258aef0a1309b58954d1c45709317520ba34f0dd01a202f61af1536e17f67ce1f3a31cbd9f057a672a089dff960f4575bd834c168fab5cb1c33086de133b3da154501b985d7a1e7fefe16e79c528931ba50ba39b38ee8929", 0xab}, {&(0x7f0000009340)="e3b668087a62b79707b64709fc2d22d2d0a117ed165407736e527f78f9841ca3d06a45991dffafef8565d4d09e9c330260e3933e65e9dfb87d52cb57a33508ecddc6b07841ebd543459be0cf010403d992b53563adddd612c1e45d0d07f9", 0x5e}, {&(0x7f00000093c0)="669ec9ac4b2246af1ab4421a5f87ee45b4501451fc2842cc4f12093a3bc2a50ffd1bff4426652966f9bf8d0996e92e6a5ea6150fac4d1f0afd868c868a88d26b1a05b5286091a2cee880058b0e4cf04d81b5b4e249e8ff0ec38fecdbd0372ae0ac588db767a4a491e19e473a2bee8fe8e1d6f94779b07a8d822a421ef8266bb7b11715e1bb2a60ceae74ec0271ba6f8c21b4f66793c007ad9dd0a1f5614627ae1e2876e61ce9711894ac131c9bce93f95738b40dc4f63ba9a575af12cc5b4b9c5dc7dabeb38547c3a79fd0e3b9162a6e3c39d12f96a6251b7609818ac36303a8cd67c6f1b104dea730e7d00e568d3ceef7533c", 0xf3}, {&(0x7f00000094c0)="66f33fb3eb261c748655e8a3cfc718e2307e682d93f0113e032a284d41f8bc79a9623a0382f0b9004b082f2d136ac8040e29e0050d775d6e17fbd3b1d5cc99a4769e4c2c7c1f8462407d96f4b6290f2b3c875687ab8b8b4cfd7df0bc7f657b7cc54fbaea4072913a714a597e17078df5e5667ce6fac506768cf679f63122c8d58c54688ccb4a8e7cef377e85d81540a3955d511aef", 0x95}], 0x9, &(0x7f0000009600)=[@cred={{0x18}}, @rights={{0x24, 0x1, 0x1, [r0, r2, r1, 0xffffffffffffffff, r2, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}], 0x6c, 0x1}}, {{&(0x7f0000009680)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f000000ad80)=[{&(0x7f0000009700)="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", 0x1000}, {&(0x7f000000a700)="7b077b3028c5a09872b845f239555c24c5b238602df7bd2339a2b40df3159dd0650bdbc8f9b70d670e934a07cbf24a3eef191035", 0x34}, {&(0x7f000000a740)="c0ef92c7d3ee1dbbd1f5b8eb5a35b8ff94368829d8df67c90445a9367eadd7dc32c1040cf985b10bb3a323d98509c7abe12d9249b7bcf26b4cf334979d668c051d41d9b6c80c550fcb3c544f69847a39269b5bd2b944c3fe5c5d3267fa58dc428134c36a8eb041a73f8e73dd0f5190c126d6bc0c56fddd3a5bc3eec78aa85b4cb93c09ee9d49e87e8d0cd057", 0x8c}, {&(0x7f000000a800)="f4fbc373a7161a972385e3121cd2c1710f9862fb6ed7c2939463f99d4fe86d617985a5037edf3fe047884b68f1b4f925514f4cf6979274f89e73208b094e1c90414d6346d08a0ce626d315399f50af0c0de0fd3ba5ac5afd976ed42a6ee88758524c8f74b5dc0d11fdb4d96fdedca630af8b4b88affb978f1c765b1f0d4986d960766adf9e14e15dcd8e699bd512f61ba3", 0x91}, {&(0x7f000000a8c0)="7c4b7600798d0d37d8c52edef9a4b50517d9475131cfd797f820e212b65f65deb3a902ff4e49e64e8bac97da50e3fe3f7c94257a5fbe30aead8c5c688c059e2c3c708c7bd8a1f49820c6168babd5534afd943586e53aebebe7e44d747502d382e00dc6f9db6457a61577b58d2720e9dbf8b042f444a8669bce7be76857eb3320699ddde045259528e47aa0f7ca06bacbb644da3cc2b802b2432b8e59", 0x9c}, {&(0x7f000000a980)="77d198d8cbc1c09220567046981861eac29b138c30f105c2cbca545071985710cccb68ac32fcdeb2e0aa998507498f6a92f2eb2e37853056a62f7dc57d41fc059bc0f704b875196aee4af0a8b6897ed83ac0eb9511ab6b9409201245c618b0b3e05145458c914995e4cbfdd897b315e7028fb6a0d2253e3f469805bdec0133466a120aeee42296dbb25ff2d8f07ac5f2b0e57f9b4c3e3e63f6841cb0239a3f75c5136bb1e04c54761b08e3455bfcc28dc7051bd8557f1e4b2a16cd9df2be6dda604383464139885dc571f1abf955a3951d39", 0xd2}, {&(0x7f000000aa80)="45ce99ef447b04bbaa69faa0a4040652bf80fcb60452f5208ff24606d9ae60db3ca257fd223d57e378fec924596686827c51", 0x32}, {&(0x7f000000aac0)="94bb4f7f58bfdecece75122684ae59aaffcc9252546ad860e5fc0abdfdd619be13e5446c5ccbb7e3e5ffcfb7dff1ceb26c0a94a0ab8bd869b57ec39b7fcea68f9cdf3f02e6ff847affd84b41c1815ba34415fa05d5756fcc35e43384cbf69d573da287137bf6836b5e2b6c60a78235357a09e577b1518caee9b33840f968ae2e205e0f3991a8fc471f1ceb99fb06ba8f0622877cc64da2ac7c0fb8c39a5d70400af61199041f13daf4c87f6eb5f04c2efffee88aba5f09137b1c51e38d5624ef45", 0xc1}, {&(0x7f000000abc0)="7373f1398ad47711101f56e554036158bb8148c63c9c4e7b2c1d249bdb55549ea8a97634c97f6511f02faa4361bb82252d1e82766629397d313a78c439c903b9cc48c7b98fec6bbd683d14c40e08315253dba0ec95c851777e2bc3d1608cf4b33c306388a2da41b32498a495a57c3c309f7d3555c0c645f54d08d6495263d49a5a76411d44f2417b9d3111d11df56142d55ed11c53ca99", 0x97}, {&(0x7f000000ac80)="d8cce9dd2e5bf09810835965d5394797c0f1a8ae3bdf2348c2ec1790274b12872dceba825275e2434478dd20396897a0982cf49d9f0c3f2c68f44bd8910403ea50aa38bcac0654000e8e418dba2357a37d8286d10ec14de5705920815ac8049abb490696b2fd71bceec0b34e419022d4ef2aad31adcadede85fc276ff70eecc37f48be447d274b6b66c86289db8cde23a1414bfff093136ebde1e6aacbba880b378d88bdb844b2f5249e4fbca857c85b5145612c8771932c8c4affd025f41b2dae056f075ed4e770153decc80e20106d6f3fd61b375eaddcd4678ff59ac1b0db9d", 0xe1}], 0xa, &(0x7f000000ae80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [r1, 0xffffffffffffffff, r2, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0x10, 0x1, 0x1, [r0]}}], 0xac}}, {{&(0x7f000000c280)=@file={0x1, './file0/file0\x00'}, 0x6e, &(0x7f000000c7c0)=[{&(0x7f000000c300)="65c769960e1a6a0880355ab80f791cbf83ff950141e0fb271d7272eb", 0x1c}, {&(0x7f000000c340)="178885c4596595105c5c478c6078bb0fdbaeceff1b3c8fe472795bac9be6ac96228164d14493e35354ee0e7aeb209fa41d6624b949e5bdce7a8380752940c00cab5e102868", 0x45}, {&(0x7f000000c3c0)="0ef0478c3e644ded81d7d52f5bee77048f7e461c60f069554299c8cbebb32460d72bcd365468a99283aa7abb7f2c67db625709efac74380224e3c345e2d897b7b37f0864", 0x44}, {&(0x7f000000c440)="76d9c78aa5bc15c11cb939a9f69c015065cb4f5db98b476f76fe1053c5484cc872f2b73a9cedc9be970fdea73bed08927fa1ee2bd94addd4674f33d9623b50e5d6ed", 0x42}, {&(0x7f000000c4c0)="e483d79df8ffeceeb1942827cb40a8e3e8a91a86c726ba150871287fadafad6f3ea0e01ed462fce2ea9c578d8f11ebd0fb7a", 0x32}, {&(0x7f000000c500)="0cc65e417cf948262d49b2a213b9eeec207ac426f3ea80366338eb39eb344cdbf33675da0d7f7fcc3aa34c489c4d95d711c3a93f92cd93ee841a99e69fd8bbf6746443152809a25c732d6e3080dfa5aa2f0a2c067cf7e4e9a6bd195d96a48fe3da0781106f945aada7c329ff245a0fb7e78d21da885259018106576ba5bd763eeab0c0aa4e71e6cfc1dfdaec5c77e0d50cf1ba69ce0d5198251207c226d7ce32c9bec922bf156a373570e6a30334b06f8f9d595fbca5cc9471cf2f08f9e9163280025d37b9a45039ff24d644f7297d5af193edf982580e1b83bf0319aaae09bca26c034de5", 0xe5}, {&(0x7f000000c600)="158b079b80a271909b5c62ad5f2eea4dfe1bcd90af9dc1ed35d38b3c5c5ec85b818ad4c8c8b25f9325d68a063fd1e65f6cef7ba6a126be444bce4b28cf95b9f90ed652141a8f4d863130920bdc3a9be494a33a5b630756160d6b7bb8b9af8c17ee1a1cdbc69bffd968e74fb1d36e202ae23887d3c6913b01f1bc6aa4c28bd292b8a6d856ec7a17083f87a268bd05b6db117907bce277aefec6617842792c6fbf263b4f3c287337f9bf60da006b5b1d45dfea4799bfa086d11d982f1eb6bc8e296d556df63a2a674c79e6", 0xca}, {&(0x7f000000c700)="155804ff015c9ac8630bdb3cc6f1c1094e28770e2d4e5c6fd54b6e3b6fafd16fbbc934fd4407aedbaedcfd6256f8b33cf831d6a6287c19dac76843669909049e4b834428ce174e0af6a082e461a5af76d220a1889a08974f47ad9f9470c193cedbffb6865bd5b19c3001926d8711daec16bef6489fd3ff7d3e1ebd313a80df51f761faa2f2befc2ea0567440", 0x8c}], 0x8, &(0x7f000000c8c0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff]}}, @cred={{0x18, 0x1, 0x2, {0x0, 0x0, 0xee00}}}], 0x48, 0x4044984}}, {{&(0x7f000000c940)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f000000ca80)=[{&(0x7f000000c9c0)="0e721a83ba652f1f3dc0615442669270b7a2018065792ea1f1a77a381f15ffdb5d9fccdb198af3255b819332fb3142b64cb97dae87fbc12a3487659646c27685a98d3e9ea030f2d0a3f498321fa9e66660939178fd6f108c9d2cb176d8a1c028d687de497aeba6e22acd699d927b013def3a7bc04cf9c92ac7deb2f3483cd10b1db7f953d7bf873bd1c13eea83216595bab825aa618d5d2b3c2859ba9b230a0df69be88b13bdd294aeb348712b3799c9f922e159b4", 0xb5}], 0x1, &(0x7f000000cac0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x14, 0x20000080}}, {{&(0x7f000000cb00)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f000000cdc0)=[{&(0x7f000000cb80)="e0d397fafd8559609b6b755b72f004ad8da1821e3b76834fb6feac56a325cd57f6731720ea47dd720d81ba11a83b7e8e96a1f510ffc9af7dba75bfbf1412d7ccd4b49d51c3173602541343e30c7b7bb816", 0x51}, {&(0x7f000000cc00)="0ebd8c64d1d86b3265944416ca615a343926b01a8aea459cf898343f2215", 0x1e}, {&(0x7f000000cc40)="6a6a52c031806ef7e2d8269c03804d31fa8d758f281bfe88230e4b0d582df304ba7f5c88c3a111efb8bade092b03aba630a95542dec3ca1ae69aa94b00cf74d5f59ad2cfb4687895f4a7861aa04d8154389ff9", 0x53}, {&(0x7f000000ccc0)="238db63f0c1f5d99bd7a5f640679ac2ea493af96d810e3f255a47ca4fa1ef802ba8368d7d4bd11042aa64bf065f741323b72f05b48639751f4ecaf26c176fb3608bdb7a5d1fe3ed50cfd079211f10dba9023ea554f6369ea21ca511129849d865f593eefdc994a6f0eae392da073d5aabb919d139981ffff9689132bff2737db58b32ef9eb03f3b1b84f066dc28d67eb7446323700a1050909e4ce4b1dbcba8556d5563d3e48cc9115fc543033d43ff8b8b77b53996e425313d7a8add1e531e92370774851543df428", 0xc9}], 0x4, 0x0, 0x0, 0x40}}, {{&(0x7f000000ce00)=@file={0x1, './file0/file0\x00'}, 0x6e, &(0x7f000000cec0)=[{&(0x7f000000ce80)="0f5a8e9d40b59f34608b113d766cccc8885008b887cb9c1ca4c30c081544b83514fc090ef11696a63e7932ca1141b961fd5002d6312ab20187662618f1df", 0x3e}], 0x1, &(0x7f000000d180)=[@cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}], 0x60, 0x8040}}, {{&(0x7f000000d200)=@file={0x1, './file0/file0/file0\x00'}, 0x6e, &(0x7f000000d9c0)=[{&(0x7f000000d280)="f58c21a57479a3a8c88a21da3205bba4e65001b1ee07c08ef330a04e808b982a6db8bb02629dc6340491e008a36b8af20f28b3eda0837095a87f883055eac03c5067e8b975ac76d95e9b8b0855b09f7e2b555528fd5737891bdeccd5acaed32f8de71db3a73631a7271680fad2a380cdcace4ed6f10d49ac15c335bfed7e1894a7ebb5d0b95716e893e748ba9b432f8c45ee969191a29fa2c76a676c7f477e216e9cb48b7b3a125f4ae33e06ce8be93bfadc6608864c9f21fda52c2f334711b7aadebeacc1f9d6a22d95c46e46be598f903690b83058410e6146cb2b12fcd7a8", 0xe0}, {&(0x7f000000d380)="e1f52c414fca1cfc3cd666ec3302699fdb484007605c1583283488cc0f3fbcdb8e63b50cef912aeab1a96072378f7bc4d75613b7b20357286190d1391b2ff88d771dbacf49dffce927191ca83cee79c0d0471ad3da300e9fd21f3a12c86c42f3c52f5ae56de5aa56b95b08ec48a37680d9997c6312427fef8798f7ec494f32ed1a0ac8814d43cfb50c6d08a7b6f5f578ecc573c32d938834d1e37732544818759820bd923c7d050c00239011051efc5ae89a64111dc40665e876271adf64c9f1d0d01802fb06c542582eabaac0f431def47bf026b6efe96d7fef4a61cadaaa0cfd56fc5aa59f17c0ac08f2e1ff", 0xed}, {&(0x7f000000d480)="24b5effc99ff92e0a434e8e27dd4109eaebb4cc15238dee97960c55cc4236c40b41faaba92f1bd51062612cb3f86dff0c4438fe5f95e925dc7453b7b5bc77fba47fd196e5b81c87107052ee8c3f9fd8f605edf1e2828f12bdc6ca7cba2b5e1bae57974cc34cac939e1d1fa0b3b331df11ba6bd5377e610f1d36039510639e1023466982f45f359", 0x87}, {&(0x7f000000d540)="dee8e1d4c41cf4533c252b9d645a218d549bd29950e4db21ca57757de41e35980533146fb0f7da898ba7c8be7390d83d6d6a417dfb06151c90523bbb063661ebe3cd616d06b6cf94113e70b8500ebb9816a64634baf2ee2807a21ddad39bef0601da37a711e4862aac984ecd6fe340236f172c982880fe0ba0a86f68d4d6ad2b208688ea1bb7417ccbd89080484d7ce86374286c6ba12f515bee89bc9f4a68c1dfe7cb60d8f7bbee3109057530c420920f4dc61cece77711e2b1e29e8ac1900e56f22539852b7c41d3bb9bf04536b8c65fbe79f98ab6bfb8a0ee7f6ef31d3dd9444fda07a2c2af11bac39650c7051047be2d0ea5d3f83a5c", 0xf8}, {&(0x7f000000d640)="8c6938255c2c4891c2147066e97388c070de0b64d86b15785d989c72080bef2883c5c6eaf3c76fcbcb27c80196f0133771660c38524141228e2f813ff55d65d8d65e46af124f36d68471c0357002fd38e511c09169d72c70d8ede04f4cf72380f0a8d8a7b2845ff67822d4fcb7aa55e6ed8fe009f8aeb8d02c1ffeaaf9eeda2bd60141c7b855c45f440dc1a0bc9ddc257574d5f93e3c26a485440352a58ee99c96e631c4a40342d9f15e3c72485457", 0xaf}, {&(0x7f000000d700)="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", 0xff}, {&(0x7f000000d800)="da4a497793e44d6579eb7231c9eaeffe7aeea346ede2c6f71f4563b569d123d22381207250f227f5de1bdbf025d00d61eb09784074c50226ad43ceed047b4dd3ce15d14afe2bc78acdfa02afc6a8c02f5ce901694c3f03451363d1c3e417c2603a70da19a1d50ca91e7a244505037a3fd353fdc1943cf89d403bf4bf4fbf99ac70513928982bacb19b40a5a20a37eb7b77e29a70c76f351efc39f874a506ba8f9c606b214837b9a7d519f861b520ee8ed331f6178427ed8f9a5660b7d09d05622485ca1799d166ea3e7b", 0xca}, {&(0x7f000000d900)="ab35bd2c6a1923210f5e94e5db47913ad74317ba504d50570264efe59b798df7e516ecce6bf91bb31c8093df2f46bea9ec3d3f98097c76818c8b608f8764ef4ac54c534f3a41c29968e1050fcfd15fc1aaf3e7ac33bed066eb8cbfe5fa7139b7aa99db27e8e1657f1193e393ba415165faca4b9e11aefe857718a7b497e065d3363ff1d610ee", 0x86}], 0x8, &(0x7f000000dac0)=[@cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}], 0x48, 0x20004811}}, {{&(0x7f000000db40)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f000000dc00)=[{&(0x7f000000dbc0)="48a1a733881f985da8142fa29c6b862302126f5b3ff56173c2609c9410a09129cdfebe293cb0a3efc4f26c", 0x2b}], 0x1, &(0x7f000000dcc0)=[@cred={{0x18}}, @cred={{0x18}}, @rights={{0x18, 0x1, 0x1, [r3, r1, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x74, 0x805}}], 0xa, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f00000000c0), 0x8000)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r7, 0x0, 0x3)
recvmsg$unix(r7, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x2002)
close(r8)
prlimit64(0x0, 0x7, &(0x7f0000000440), 0x0)
io_uring_setup(0x3819, &(0x7f00000003c0))
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'gcm_base(ctr(aes-aesni),ghash-generic)\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r9, 0x117, 0x5, 0x0, 0x8)
acct(&(0x7f00000001c0)='./file0\x00')
ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000140)={'\x00', 0xd5, 0x0, 0x3})
connect$qrtr(r6, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r10 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x356}, &(0x7f0000000340)=<r11=>0x0, &(0x7f0000000280)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r11, r12, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r6, 0x0, 0x0})
io_uring_enter(r10, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
getpeername$qrtr(r6, 0x0, 0x0)
close_range(r5, r6, 0x0)
socket$inet6(0xa, 0x3, 0xff)

1.000165402s ago: executing program 1 (id=787):
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
sendmsg$NL80211_CMD_SET_PMK(0xffffffffffffffff, 0x0, 0x20000000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010026bd7000fbdbdf251900005f338895357ecaa9e789240008000300ef0654e7f137d09422e834120ed68b6f74eadad4f724b7839fa1e25f8ee1c5f69f50af6c1b8805df795d2ebdf81309a30a12fbd8cbe53eafc2e6d0c27618944dc0ee417305516d763981a2bbc66c4455499781191ebc73a4edff5999c1de2d108e244415c991c28ebe00fde884ed9af790ee97b5cb8b", @ANYRES32=r2, @ANYBLOB="06006d0004000000"], 0x24}, 0x1, 0x0, 0x0, 0x60000}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x8abb29e09f442f35, 0xffffffffffffffff, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r4}, &(0x7f0000000180)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r3, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r5, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r8 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200), 0xa2442, 0x0)
ioctl$SNDCTL_DSP_SYNC(r8, 0x5001, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@mask_fadd={0x58, 0x114, 0x8, {{0xf, 0x1}, 0x0, 0x0, 0x5, 0xfffffffffffffffe, 0x7, 0x3, 0x28, 0x5}}], 0x58}, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000200)={0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x3, 0x62})
r9 = socket$netlink(0x10, 0x3, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8b34, &(0x7f0000000000)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000340)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

900.593062ms ago: executing program 2 (id=788):
r0 = socket$kcm(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, r2, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r4 = fanotify_init(0x200, 0x0)
fanotify_mark(r4, 0x1, 0x4800003e, r3, 0x0)
r5 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000000)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r5, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r9 = dup(r8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r9, 0x2000)

91.324148ms ago: executing program 1 (id=789):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=ANY=[], 0x180}, 0x1, 0x0, 0x0, 0x4075}, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r5)
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)={0x2c, r6, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1}]}, 0x2c}}, 0x64000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x118)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r7 = openat(0xffffffffffffff9c, 0x0, 0x62881, 0x19d)
write$P9_RREADLINK(r7, &(0x7f0000000180)={0xffffffffffffff9e, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0xd, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4, 0x0, @private1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101}}, @sadb_lifetime={0x4, 0x4}]}, 0xc0}}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
fcntl$lock(r3, 0x24, &(0x7f0000000280)={0x2, 0x3, 0x10000, 0xe3, r2})
chdir(&(0x7f0000000100)='./file0\x00')

0s ago: executing program 2 (id=790):
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
recvmsg(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000380)="1400000036000b63", 0x8}], 0x1}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000001c0)={'broute\x00', 0x0, 0x9, 0x0, [0x1ff, 0x9, 0x7975, 0x3, 0x9, 0xffffffff80000000], 0x0, 0x0, 0x0}, &(0x7f0000000080)=0x78)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) (fail_nth: 2)
close_range(r3, r3, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0)
r6 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, 0x0, &(0x7f0000000000)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r7, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
syz_open_procfs(0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffac}])
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r9 = dup(r8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r9, 0x2000)

kernel console output (not intermixed with test programs):

6.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.433714][ T6216] Call Trace:
[   69.433718][ T6216]  <TASK>
[   69.433723][ T6216]  dump_stack_lvl+0x16c/0x1f0
[   69.433750][ T6216]  should_fail_ex+0x512/0x640
[   69.433790][ T6216]  _copy_to_user+0x32/0xd0
[   69.433826][ T6216]  simple_read_from_buffer+0xcb/0x170
[   69.433846][ T6216]  proc_fail_nth_read+0x197/0x240
[   69.433865][ T6216]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   69.433882][ T6216]  ? rw_verify_area+0xcf/0x6c0
[   69.433922][ T6216]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   69.433938][ T6216]  vfs_read+0x1e4/0xcf0
[   69.433958][ T6216]  ? __pfx_vfs_read+0x10/0x10
[   69.433978][ T6216]  ? find_held_lock+0x2b/0x80
[   69.434005][ T6216]  ? __fget_files+0x20e/0x3c0
[   69.434030][ T6216]  ksys_read+0x12a/0x250
[   69.434046][ T6216]  ? __pfx_ksys_read+0x10/0x10
[   69.434063][ T6216]  ? rcu_is_watching+0x12/0xc0
[   69.434084][ T6216]  __do_fast_syscall_32+0x7c/0x300
[   69.434105][ T6216]  do_fast_syscall_32+0x32/0x80
[   69.434123][ T6216]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   69.434139][ T6216] RIP: 0023:0xf707d579
[   69.434150][ T6216] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   69.434161][ T6216] RSP: 002b:00000000f544c590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   69.434174][ T6216] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f544c620
[   69.434181][ T6216] RDX: 000000000000000f RSI: 00000000f7415ff4 RDI: 0000000000000000
[   69.434188][ T6216] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   69.434194][ T6216] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   69.434200][ T6216] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   69.434216][ T6216]  </TASK>
[   69.515085][    C0] vkms_vblank_simulate: vblank timer overrun
[   69.817151][ T6231] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   69.819485][ T6231] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   69.823016][ T6231] vhci_hcd vhci_hcd.0: Device attached
[   70.175948][   T29] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[   70.624032][ T6232] vhci_hcd: connection reset by peer
[   70.628512][   T95] vhci_hcd: stop threads
[   70.630524][   T95] vhci_hcd: release socket
[   70.633618][   T95] vhci_hcd: disconnect device
[   71.165458][ T6244] netlink: 'syz.1.51': attribute type 10 has an invalid length.
[   71.179199][ T6244] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.186037][ T6244] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.224892][ T6244] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.226228][ T6248] netlink: 4 bytes leftover after parsing attributes in process `syz.1.51'.
[   71.227978][ T6244] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.235563][ T6244] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.238269][ T6244] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.245574][ T6244] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   71.251221][ T6248] bridge_slave_1: left allmulticast mode
[   71.253402][ T6248] bridge_slave_1: left promiscuous mode
[   71.256904][ T6248] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.264202][ T6248] bridge_slave_0: left allmulticast mode
[   71.267587][ T6248] bridge_slave_0: left promiscuous mode
[   71.270253][ T6248] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.298236][ T6248] bond0: (slave bridge0): Releasing backup interface
[   72.549836][ T6244] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'.
[   73.133461][ T6270] tipc: Started in network mode
[   73.135279][ T6270] tipc: Node identity ac1414aa, cluster identity 4711
[   73.153307][ T6270] tipc: Enabled bearer <udp:s>, priority 10
[   74.237519][   T53] tipc: Node number set to 2886997162
[   74.253711][   T40] audit: type=1804 audit(1760529543.588:2): pid=6287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.60" name="/newroot/18/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[   74.411389][   T40] audit: type=1326 audit(1760529543.788:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6291 comm="syz.1.66" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x0
[   75.091058][ T6297] Illegal XDP return value 4294967274 on prog  (id 10) dev N/A, expect packet loss!
[   75.160865][ T6299] netlink: 'syz.0.68': attribute type 2 has an invalid length.
[   75.164330][ T6299] netlink: 'syz.0.68': attribute type 11 has an invalid length.
[   75.168421][ T6299] netlink: 132 bytes leftover after parsing attributes in process `syz.0.68'.
[   75.337792][   T29] vhci_hcd: vhci_device speed not set
[   75.622485][ T6309] netfs: Couldn't get user pages (rc=-14)
[   75.907629][   T40] audit: type=1326 audit(1760529545.288:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6296 comm="syz.2.67" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7fc00000
[   76.353754][ T6320] 9pnet_virtio: no channels available for device syz
[   76.381773][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[   76.384365][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[   77.649808][ T6331] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   77.652731][ T6331] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   77.662105][ T6331] vhci_hcd vhci_hcd.0: Device attached
[   77.718562][ T6332] vhci_hcd: connection closed
[   77.719134][   T46] vhci_hcd: stop threads
[   77.723591][   T46] vhci_hcd: release socket
[   77.725905][   T46] vhci_hcd: disconnect device
[   77.745463][   T40] audit: type=1326 audit(1760529547.118:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6340 comm="syz.3.80" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x0
[   79.763315][   T40] audit: type=1804 audit(1760529548.758:6): pid=6371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.86" name="/newroot/13/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[   81.291670][ T6390] capability: warning: `syz.1.91' uses deprecated v2 capabilities in a way that may be insecure
[   81.977722][ T6406] 9pnet_virtio: no channels available for device syz
[   81.994211][   T53] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   82.145934][   T53] usb 7-1: Using ep0 maxpacket: 32
[   82.163853][   T53] usb 7-1: config 0 has an invalid interface number: 72 but max is 0
[   82.177624][   T53] usb 7-1: config 0 has no interface number 0
[   82.181716][   T53] usb 7-1: config 0 interface 72 has no altsetting 0
[   82.188458][   T53] usb 7-1: New USB device found, idVendor=6069, idProduct=0f39, bcdDevice=e8.f9
[   82.193664][   T53] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.198479][   T53] usb 7-1: Product: syz
[   82.200394][   T53] usb 7-1: Manufacturer: syz
[   82.202480][   T53] usb 7-1: SerialNumber: syz
[   82.212162][   T53] usb 7-1: config 0 descriptor??
[   82.314544][ T6408] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   84.621924][   T53] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   84.624955][   T53] usb 7-1: MIDIStreaming interface descriptor not found
[   84.783402][   T53] usb 7-1: USB disconnect, device number 3
[   85.007047][ T6160] udevd[6160]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.72/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   85.091202][ T6448] =======================================================
[   85.091202][ T6448] WARNING: The mand mount option has been deprecated and
[   85.091202][ T6448]          and is ignored by this kernel. Remove the mand
[   85.091202][ T6448]          option from the mount to silence this warning.
[   85.091202][ T6448] =======================================================
[   86.632901][   T60] cfg80211: failed to load regulatory.db
[   86.967835][ T6486] netlink: 8 bytes leftover after parsing attributes in process `syz.2.118'.
[   87.591205][ T6496] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   87.593447][ T6496] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   87.635988][ T6496] vhci_hcd vhci_hcd.0: Device attached
[   87.724454][   T40] audit: type=1800 audit(1760529557.098:7): pid=6496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.121" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   87.965958][ T5996] usb 38-1: SetAddress Request (2) to port 0
[   87.968189][ T5996] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[   88.501786][ T6499] vhci_hcd: connection reset by peer
[   88.506597][   T46] vhci_hcd: stop threads
[   88.508373][   T46] vhci_hcd: release socket
[   88.510155][   T46] vhci_hcd: disconnect device
[   88.789220][ T6521] loop3: detected capacity change from 0 to 7
[   88.805172][ T6444] Dev loop3: unable to read RDB block 7
[   88.807922][ T6444]  loop3: unable to read partition table
[   88.810527][ T6444] loop3: partition table beyond EOD, truncated
[   88.858194][ T6521] Dev loop3: unable to read RDB block 7
[   88.860611][ T6521]  loop3: unable to read partition table
[   88.862828][ T6521] loop3: partition table beyond EOD, truncated
[   88.866231][ T6521] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[   88.969980][ T6529] netlink: 212 bytes leftover after parsing attributes in process `syz.2.132'.
[   88.973138][ T6529] netlink: 4 bytes leftover after parsing attributes in process `syz.2.132'.
[   89.773330][ T6549] netfs: Couldn't get user pages (rc=-14)
[   90.588216][ T6555] tipc: Started in network mode
[   90.590782][ T6555] tipc: Node identity ac1414aa, cluster identity 4711
[   90.597018][ T6555] tipc: Enabled bearer <udp:s>, priority 10
[   90.992473][ T6565] 9pnet_virtio: no channels available for device syz
[   91.276776][ T6569] 9pnet_virtio: no channels available for device syz
[   91.641992][ T1024] tipc: Node number set to 2886997162
[   92.256212][ T6583] netlink: 8 bytes leftover after parsing attributes in process `syz.3.148'.
[   92.682081][   T40] audit: type=1804 audit(1760529562.058:8): pid=6592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.149" name="/newroot/31/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[   92.994153][ T6595] tipc: Invalid UDP bearer configuration
[   92.994398][ T6595] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   93.206458][ T5996] usb 38-1: device descriptor read/8, error -110
[   93.607647][ T5996] usb usb38-port1: attempt power cycle
[   93.733265][   T40] audit: type=1804 audit(1760529563.108:9): pid=6611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.153" name="/newroot/42/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[   94.278132][ T5996] usb usb38-port1: unable to enumerate USB device
[   94.403931][   T40] audit: type=1326 audit(1760529563.778:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[   94.422216][   T40] audit: type=1326 audit(1760529563.778:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[   94.437353][   T40] audit: type=1326 audit(1760529563.788:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.159" exe="/syz-executor" sig=0 arch=40000003 syscall=299 compat=1 ip=0xf70bd579 code=0x7ffc0000
[   94.444649][   T40] audit: type=1326 audit(1760529563.788:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[   94.461778][   T40] audit: type=1326 audit(1760529563.788:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[   94.552865][ T6621] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   94.726869][ T6628] loop3: detected capacity change from 0 to 7
[   94.728581][ T6628] Dev loop3: unable to read RDB block 7
[   94.728628][ T6628]  loop3: unable to read partition table
[   94.728810][ T6628] loop3: partition table beyond EOD, truncated
[   94.728828][ T6628] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[   96.059098][ T6653] binder: Unknown parameter 'maxŠQN¦00000000000000100006'
[   96.085869][   T40] audit: type=1804 audit(1760529565.458:15): pid=6647 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.167" name="/newroot/38/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[   96.591984][ T6675] capability: warning: `syz.3.176' uses 32-bit capabilities (legacy support in use)
[   96.711475][   T40] audit: type=1326 audit(1760529566.088:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6678 comm="syz.3.177" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x1ff0000
[   97.645556][ T6691] team0 (unregistering): Port device team_slave_0 removed
[   97.672854][ T6691] team0 (unregistering): Port device team_slave_1 removed
[   98.083596][   T40] audit: type=1804 audit(1760529567.458:17): pid=6698 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.181" name="/newroot/45/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[   98.697936][ T6713] netlink: 12 bytes leftover after parsing attributes in process `syz.0.186'.
[   99.118617][ T6723] loop8: detected capacity change from 0 to 7
[   99.123774][ T6723] Dev loop8: unable to read RDB block 7
[   99.125756][ T6723]  loop8: AHDI p1 p2 p3
[   99.127305][ T6723] loop8: partition table partially beyond EOD, truncated
[   99.129759][ T6723] loop8: p1 start 1601398130 is beyond EOD, truncated
[   99.131978][ T6723] loop8: p2 start 1702059890 is beyond EOD, truncated
[   99.203854][   T40] audit: type=1326 audit(1760529568.578:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6729 comm="syz.2.191" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[   99.270316][ T6723] Dev loop8: unable to read RDB block 7
[   99.272880][ T6723]  loop8: AHDI p1 p2 p3
[   99.274347][ T6723] loop8: partition table partially beyond EOD, truncated
[   99.277849][ T6723] loop8: p1 start 1601398130 is beyond EOD, truncated
[   99.280917][ T6723] loop8: p2 start 1702059890 is beyond EOD, truncated
[  100.902064][ T6748] loop3: detected capacity change from 0 to 7
[  100.909289][ T6749] tipc: Started in network mode
[  100.911189][ T6749] tipc: Node identity ac1414aa, cluster identity 4711
[  100.916058][ T6749] tipc: Enabled bearer <udp:s>, priority 10
[  101.123599][ T6748] Dev loop3: unable to read RDB block 7
[  101.127675][ T6748]  loop3: unable to read partition table
[  101.130450][ T6748] loop3: partition table beyond EOD, truncated
[  101.132870][ T6748] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  101.529699][ T6756] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.533175][ T6756] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.656169][ T6752] syz.2.198 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  102.556241][ T1024] tipc: Node number set to 2886997162
[  102.965340][ T6777] loop2: detected capacity change from 0 to 7
[  102.987847][ T6777] Dev loop2: unable to read RDB block 7
[  102.989711][ T6777]  loop2: unable to read partition table
[  102.991625][ T6777] loop2: partition table beyond EOD, truncated
[  102.993821][ T6777] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  103.004636][   T40] audit: type=1326 audit(1760529572.378:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6778 comm="syz.0.206" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x0
[  103.571346][ T6780] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  103.574321][ T6780] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  103.598187][ T6780] vhci_hcd vhci_hcd.0: Device attached
[  103.778243][ T6790] vhci_hcd: connection closed
[  103.781945][   T76] vhci_hcd: stop threads
[  103.796483][   T76] vhci_hcd: release socket
[  103.798585][   T76] vhci_hcd: disconnect device
[  103.835941][ T2299] usb 41-1: new high-speed USB device number 4 using vhci_hcd
[  103.839043][ T2299] usb 41-1: enqueue for inactive port 0
[  103.905929][ T2299] vhci_hcd: vhci_device speed not set
[  104.638015][ T6811] netlink: 20 bytes leftover after parsing attributes in process `syz.3.212'.
[  106.382811][   T40] audit: type=1326 audit(1760529575.758:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.0.224" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x0
[  107.444082][ T6864] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  107.917702][ T6874] 9pnet_virtio: no channels available for device syz
[  109.290001][ T6899] hsr0: entered promiscuous mode
[  109.293201][ T6899] netlink: 4 bytes leftover after parsing attributes in process `syz.2.235'.
[  109.300960][ T6899] hsr_slave_0: left promiscuous mode
[  109.306536][ T6899] hsr_slave_1: left promiscuous mode
[  109.321543][ T6899] hsr0 (unregistering): left promiscuous mode
[  109.350014][ T6906] 9pnet_virtio: no channels available for device syz
[  109.353061][ T6906] FAULT_INJECTION: forcing a failure.
[  109.353061][ T6906] name failslab, interval 1, probability 0, space 0, times 0
[  109.360076][ T6906] CPU: 2 UID: 0 PID: 6906 Comm: syz.0.237 Not tainted syzkaller #0 PREEMPT(full) 
[  109.360091][ T6906] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.360098][ T6906] Call Trace:
[  109.360119][ T6906]  <TASK>
[  109.360123][ T6906]  dump_stack_lvl+0x16c/0x1f0
[  109.365871][ T6906]  should_fail_ex+0x512/0x640
[  109.366012][ T6906]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  109.366075][ T6906]  should_failslab+0xc2/0x120
[  109.366097][ T6906]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  109.366114][ T6906]  ? kasprintf+0xc7/0x100
[  109.366140][ T6906]  ? kvasprintf+0xbc/0x160
[  109.366149][ T6906]  kvasprintf+0xbc/0x160
[  109.366159][ T6906]  ? __pfx_kvasprintf+0x10/0x10
[  109.366174][ T6906]  kasprintf+0xc7/0x100
[  109.366184][ T6906]  ? __pfx_kasprintf+0x10/0x10
[  109.366195][ T6906]  ? __kvmalloc_node_noprof+0x3c0/0x9c0
[  109.366210][ T6906]  ? nla_strdup+0xc6/0x150
[  109.366222][ T6906]  ? __asan_memcpy+0x3c/0x60
[  109.366243][ T6906]  nf_tables_newset+0x2b4b/0x4320
[  109.366396][ T6906]  ? __pfx_nf_tables_newset+0x10/0x10
[  109.366418][ T6906]  ? __nla_validate_parse+0x600/0x2880
[  109.366444][ T6906]  ? __nla_parse+0x40/0x60
[  109.366457][ T6906]  nfnetlink_rcv_batch+0x190d/0x2350
[  109.366479][ T6906]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  109.366495][ T6906]  ? __local_bh_enable_ip+0xa4/0x120
[  109.366599][ T6906]  ? __dev_queue_xmit+0xaf1/0x4490
[  109.366617][ T6906]  ? __dev_queue_xmit+0xb12/0x4490
[  109.366639][ T6906]  ? __pfx___dev_queue_xmit+0x10/0x10
[  109.366667][ T6906]  ? __nla_parse+0x40/0x60
[  109.366681][ T6906]  nfnetlink_rcv+0x3c1/0x430
[  109.366694][ T6906]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  109.366710][ T6906]  netlink_unicast+0x5aa/0x870
[  109.366733][ T6906]  ? __pfx_netlink_unicast+0x10/0x10
[  109.366757][ T6906]  netlink_sendmsg+0x8c8/0xdd0
[  109.366777][ T6906]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.366800][ T6906]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  109.366875][ T6906]  ____sys_sendmsg+0xa98/0xc70
[  109.366919][ T6906]  ? __pfx_____sys_sendmsg+0x10/0x10
[  109.366931][ T6906]  ? get_compat_msghdr+0x11a/0x170
[  109.366953][ T6906]  ___sys_sendmsg+0x134/0x1d0
[  109.366973][ T6906]  ? __pfx____sys_sendmsg+0x10/0x10
[  109.367000][ T6906]  ? find_held_lock+0x2b/0x80
[  109.367050][ T6906]  __sys_sendmsg+0x16d/0x220
[  109.367066][ T6906]  ? __pfx___sys_sendmsg+0x10/0x10
[  109.367087][ T6906]  ? rcu_is_watching+0x12/0xc0
[  109.367134][ T6906]  __do_fast_syscall_32+0x7c/0x300
[  109.367158][ T6906]  do_fast_syscall_32+0x32/0x80
[  109.367177][ T6906]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.367225][ T6906] RIP: 0023:0xf7fa6579
[  109.367235][ T6906] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.367245][ T6906] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  109.367282][ T6906] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  109.367288][ T6906] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  109.367294][ T6906] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  109.367299][ T6906] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  109.367305][ T6906] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  109.367319][ T6906]  </TASK>
[  110.175081][ T6915] syz.1.233(6915): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  110.209268][ T6916] tipc: Started in network mode
[  110.211844][ T6916] tipc: Node identity ac1414aa, cluster identity 4711
[  110.216482][ T6916] tipc: Enabled bearer <udp:s>, priority 10
[  111.336141][ T1024] tipc: Node number set to 2886997162
[  111.757226][ T6945] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  111.762646][ T6945] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.765460][ T6945] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.939537][ T6979] netlink: 8 bytes leftover after parsing attributes in process `syz.1.257'.
[  114.919890][ T5953] Bluetooth: hci2: ACL packet for unknown connection handle 4
[  114.930979][ T5953] Bluetooth: hci2: link tx timeout
[  114.938283][ T5953] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  115.486446][ T7008] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  117.126164][ T5953] Bluetooth: hci2: command 0x0406 tx timeout
[  118.153125][ T7055] input: syz0 as /devices/virtual/input/input6
[  120.090763][    C3] vkms_vblank_simulate: vblank timer overrun
[  120.100135][   T29] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  120.277365][   T40] audit: type=1326 audit(1760529589.658:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7078 comm="syz.2.282" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  120.295943][   T29] usb 6-1: Using ep0 maxpacket: 16
[  120.316423][   T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  120.340287][   T29] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  120.345626][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.349346][   T29] usb 6-1: Product: syz
[  120.351363][   T29] usb 6-1: Manufacturer: syz
[  120.353685][   T29] usb 6-1: SerialNumber: syz
[  120.389407][   T29] usb 6-1: config 0 descriptor??
[  120.406266][   T29] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  120.410214][   T29] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  121.726211][   T29] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  121.789915][   T29] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  121.793338][   T29] em28xx 6-1:0.0: board has no eeprom
[  121.799199][   T40] audit: type=1326 audit(1760529591.178:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.3.288" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x0
[  121.855940][   T29] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  121.858801][   T29] em28xx 6-1:0.0: dvb set to bulk mode.
[  121.860800][ T5996] em28xx 6-1:0.0: Binding DVB extension
[  121.868319][   T29] usb 6-1: USB disconnect, device number 2
[  121.870856][   T29] em28xx 6-1:0.0: Disconnecting em28xx
[  121.899050][ T5996] em28xx 6-1:0.0: Registering input extension
[  121.902833][   T29] em28xx 6-1:0.0: Closing input extension
[  121.949557][   T29] em28xx 6-1:0.0: Freeing device
[  122.935923][ T6009] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  123.097452][ T6009] usb 8-1: Using ep0 maxpacket: 16
[  123.216413][ T6009] usb 8-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  123.220106][ T6009] usb 8-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  123.223339][ T6009] usb 8-1: Product: syz
[  123.224990][ T6009] usb 8-1: Manufacturer: syz
[  123.227564][ T6009] usb 8-1: SerialNumber: syz
[  123.232393][ T6009] usb 8-1: config 0 descriptor??
[  123.408981][   T40] audit: type=1804 audit(1760529592.788:23): pid=7126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.292" name="/newroot/68/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  123.538406][ T5303] Bluetooth: hci2: unexpected event for opcode 0x0c03
[  124.008241][ T7112] netlink: 'syz.3.289': attribute type 4 has an invalid length.
[  124.019966][ T7112] netlink: 'syz.3.289': attribute type 4 has an invalid length.
[  124.045318][   T29] usb 8-1: USB disconnect, device number 4
[  125.157462][ T7140] FAULT_INJECTION: forcing a failure.
[  125.157462][ T7140] name failslab, interval 1, probability 0, space 0, times 0
[  125.162825][ T7140] CPU: 2 UID: 0 PID: 7140 Comm: syz.2.296 Not tainted syzkaller #0 PREEMPT(full) 
[  125.162850][ T7140] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.162862][ T7140] Call Trace:
[  125.162887][ T7140]  <TASK>
[  125.162894][ T7140]  dump_stack_lvl+0x16c/0x1f0
[  125.163212][ T7140]  should_fail_ex+0x512/0x640
[  125.163361][ T7140]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[  125.163443][ T7140]  should_failslab+0xc2/0x120
[  125.163472][ T7140]  __kvmalloc_node_noprof+0x141/0x9c0
[  125.163496][ T7140]  ? bucket_table_alloc.isra.0+0x88/0x460
[  125.163541][ T7140]  ? bucket_table_alloc.isra.0+0x88/0x460
[  125.163561][ T7140]  bucket_table_alloc.isra.0+0x88/0x460
[  125.163585][ T7140]  rhashtable_init_noprof+0x41a/0x7e0
[  125.163610][ T7140]  nft_rhash_init+0x148/0x410
[  125.163734][ T7140]  ? __pfx_nft_rhash_init+0x10/0x10
[  125.163757][ T7140]  ? __pfx_nft_rhash_key+0x10/0x10
[  125.163776][ T7140]  ? __pfx_nft_rhash_obj+0x10/0x10
[  125.163794][ T7140]  ? __pfx_nft_rhash_cmp+0x10/0x10
[  125.163816][ T7140]  ? __asan_memcpy+0x3c/0x60
[  125.163844][ T7140]  nf_tables_newset+0x321b/0x4320
[  125.163875][ T7140]  ? __pfx_nf_tables_newset+0x10/0x10
[  125.163902][ T7140]  ? __nla_validate_parse+0x600/0x2880
[  125.163935][ T7140]  ? __nla_parse+0x40/0x60
[  125.163959][ T7140]  nfnetlink_rcv_batch+0x190d/0x2350
[  125.163997][ T7140]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  125.164022][ T7140]  ? __local_bh_enable_ip+0xa4/0x120
[  125.164088][ T7140]  ? __dev_queue_xmit+0xaf1/0x4490
[  125.164109][ T7140]  ? __dev_queue_xmit+0xb12/0x4490
[  125.164137][ T7140]  ? __pfx___dev_queue_xmit+0x10/0x10
[  125.164182][ T7140]  ? __nla_parse+0x40/0x60
[  125.164224][ T7140]  nfnetlink_rcv+0x3c1/0x430
[  125.164242][ T7140]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  125.164266][ T7140]  netlink_unicast+0x5aa/0x870
[  125.164296][ T7140]  ? __pfx_netlink_unicast+0x10/0x10
[  125.164332][ T7140]  netlink_sendmsg+0x8c8/0xdd0
[  125.164360][ T7140]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.164386][ T7140]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  125.164431][ T7140]  ____sys_sendmsg+0xa98/0xc70
[  125.164468][ T7140]  ? __pfx_____sys_sendmsg+0x10/0x10
[  125.164488][ T7140]  ? get_compat_msghdr+0x11a/0x170
[  125.164520][ T7140]  ___sys_sendmsg+0x134/0x1d0
[  125.164544][ T7140]  ? __pfx____sys_sendmsg+0x10/0x10
[  125.164577][ T7140]  ? find_held_lock+0x2b/0x80
[  125.164632][ T7140]  __sys_sendmsg+0x16d/0x220
[  125.164655][ T7140]  ? __pfx___sys_sendmsg+0x10/0x10
[  125.164687][ T7140]  ? rcu_is_watching+0x12/0xc0
[  125.164725][ T7140]  __do_fast_syscall_32+0x7c/0x300
[  125.164754][ T7140]  do_fast_syscall_32+0x32/0x80
[  125.164782][ T7140]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.164826][ T7140] RIP: 0023:0xf707d579
[  125.164840][ T7140] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.164854][ T7140] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  125.164885][ T7140] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  125.164895][ T7140] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  125.164906][ T7140] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.164916][ T7140] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.164927][ T7140] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.164951][ T7140]  </TASK>
[  125.340738][ T7140] netfs: Couldn't get user pages (rc=-14)
[  125.410187][ T7143] bond0: entered promiscuous mode
[  125.412274][ T7143] bond_slave_0: entered promiscuous mode
[  125.415270][ T7143] bond_slave_1: entered promiscuous mode
[  125.422214][ T7143] batadv0: entered promiscuous mode
[  125.426700][ T7143] 8021q: adding VLAN 0 to HW filter on device hsr1
[  125.489887][ T7145] netlink: 4 bytes leftover after parsing attributes in process `syz.1.298'.
[  125.495738][ T7145] netlink: 277 bytes leftover after parsing attributes in process `syz.1.298'.
[  125.499158][ T7145] netlink: 277 bytes leftover after parsing attributes in process `syz.1.298'.
[  125.549154][ T7147] 9pnet_virtio: no channels available for device syz
[  125.561768][ T7149] FAULT_INJECTION: forcing a failure.
[  125.561768][ T7149] name failslab, interval 1, probability 0, space 0, times 0
[  125.567331][ T7149] CPU: 2 UID: 0 PID: 7149 Comm: syz.0.300 Not tainted syzkaller #0 PREEMPT(full) 
[  125.567353][ T7149] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.567362][ T7149] Call Trace:
[  125.567369][ T7149]  <TASK>
[  125.567378][ T7149]  dump_stack_lvl+0x16c/0x1f0
[  125.567412][ T7149]  should_fail_ex+0x512/0x640
[  125.567438][ T7149]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  125.567462][ T7149]  should_failslab+0xc2/0x120
[  125.567478][ T7149]  kmem_cache_alloc_noprof+0x75/0x6e0
[  125.567497][ T7149]  ? mas_ascend+0x4f6/0x900
[  125.567519][ T7149]  ? vm_area_dup+0x27/0x8d0
[  125.567571][ T7149]  ? vm_area_dup+0x27/0x8d0
[  125.567587][ T7149]  vm_area_dup+0x27/0x8d0
[  125.567607][ T7149]  __split_vma+0x18e/0x1070
[  125.567631][ T7149]  ? __pfx___split_vma+0x10/0x10
[  125.567649][ T7149]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[  125.567683][ T7149]  vms_gather_munmap_vmas+0x3aa/0x1340
[  125.567716][ T7149]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  125.567739][ T7149]  ? mas_walk+0x6f5/0x980
[  125.567767][ T7149]  __mmap_region+0x434/0x27a0
[  125.567790][ T7149]  ? __pfx___mmap_region+0x10/0x10
[  125.567811][ T7149]  ? find_held_lock+0x2b/0x80
[  125.567834][ T7149]  ? is_bpf_text_address+0x8a/0x1a0
[  125.567875][ T7149]  ? bpf_ksym_find+0x124/0x1c0
[  125.567906][ T7149]  ? unwind_get_return_address+0x59/0xa0
[  125.567947][ T7149]  ? arch_stack_walk+0xa6/0x100
[  125.567989][ T7149]  ? __lock_acquire+0x622/0x1c90
[  125.568011][ T7149]  ? process_measurement+0x1e6/0x23e0
[  125.568062][ T7149]  ? __lock_acquire+0xb8a/0x1c90
[  125.568083][ T7149]  mmap_region+0x32b/0x3f0
[  125.568108][ T7149]  do_mmap+0xa3e/0x1210
[  125.568128][ T7149]  ? __pfx_do_mmap+0x10/0x10
[  125.568145][ T7149]  ? __pfx_down_write_killable+0x10/0x10
[  125.568211][ T7149]  vm_mmap_pgoff+0x29e/0x470
[  125.568244][ T7149]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  125.568272][ T7149]  ? __fget_files+0x20e/0x3c0
[  125.568318][ T7149]  ksys_mmap_pgoff+0x32c/0x5c0
[  125.568345][ T7149]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  125.568405][ T7149]  __do_fast_syscall_32+0x7c/0x300
[  125.568432][ T7149]  do_fast_syscall_32+0x32/0x80
[  125.568457][ T7149]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.568480][ T7149] RIP: 0023:0xf7fa6579
[  125.568496][ T7149] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.568510][ T7149] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  125.568527][ T7149] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000003000
[  125.568537][ T7149] RDX: 000000000300000d RSI: 0000000000000013 RDI: 0000000000000006
[  125.568547][ T7149] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.568555][ T7149] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.568564][ T7149] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.568585][ T7149]  </TASK>
[  125.821827][ T7154] vivid-000: =================  START STATUS  =================
[  125.825445][ T7154] vivid-000: Test Pattern: 75% Colorbar
[  125.829937][ T7154] vivid-000: Fill Percentage of Frame: 100
[  125.832879][ T7154] vivid-000: Horizontal Movement: No Movement
[  125.835164][ T7154] vivid-000: Vertical Movement: No Movement
[  125.838240][ T7154] vivid-000: OSD Text Mode: All
[  125.840110][ T7154] vivid-000: Show Border: false
[  125.842063][ T7154] vivid-000: Show Square: false
[  125.843838][ T7154] vivid-000: Sensor Flipped Horizontally: false
[  125.846111][ T7154] vivid-000: Sensor Flipped Vertically: false
[  125.848176][ T7154] vivid-000: Insert SAV Code in Image: false
[  125.850360][ T7154] vivid-000: Insert EAV Code in Image: false
[  125.852511][ T7154] vivid-000: Insert Video Guard Band: false
[  125.854637][ T7154] vivid-000: Reduced Framerate: false
[  125.856600][ T7154] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  125.859854][ T7154] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  125.863050][ T7154] vivid-000: Enable Capture Cropping: true grabbed
[  125.866075][ T7154] vivid-000: Enable Capture Composing: true grabbed
[  125.869604][ T7154] vivid-000: Enable Capture Scaler: true grabbed
[  125.872806][ T7154] vivid-000: Timestamp Source: End of Frame
[  125.875034][ T7154] vivid-000: Colorspace: sRGB
[  125.877607][ T7154] vivid-000: Transfer Function: Default
[  125.880891][ T7154] vivid-000: Y'CbCr Encoding: Default
[  125.884347][ T7154] vivid-000: HSV Encoding: Hue 0-179
[  125.886566][ T7154] vivid-000: Quantization: Default
[  125.888715][ T7154] vivid-000: Apply Alpha To Red Only: false
[  125.891942][ T7154] vivid-000: Standard Aspect Ratio: 4x3
[  125.895446][ T7154] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  125.899476][ T7154] vivid-000: DV Timings: 640x480p59 inactive
[  125.902970][ T7154] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  125.910854][ T7154] vivid-000: Maximum EDID Blocks: 2
[  125.914132][ T7154] vivid-000: Limited RGB Range (16-235): false
[  125.919154][ T7154] vivid-000: Rx RGB Quantization Range: Automatic
[  125.923238][ T7154] vivid-000: Power Present: 0x00000001
[  125.926587][ T7154] tpg source WxH: 320x240 (Y'CbCr)
[  125.929467][ T7154] tpg field: 1
[  125.931489][ T7154] tpg crop: (0,0)/320x240
[  125.934494][ T7154] tpg compose: (0,0)/320x240
[  125.948525][ T7154] tpg colorspace: 8
[  125.954037][ T7154] tpg transfer function: 0/2
[  125.965632][ T7154] tpg Y'CbCr encoding: 0/1
[  125.968346][ T7154] tpg quantization: 0/2
[  125.970939][ T7154] tpg RGB range: 0/2
[  125.972901][ T7154] vivid-000: ==================  END STATUS  ==================
[  127.707386][   T40] audit: type=1326 audit(1760529597.088:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7176 comm="syz.0.308" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x0
[  128.176027][   T60] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  128.328067][   T60] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.332000][   T60] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.335648][   T60] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  128.341100][   T60] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  128.346084][   T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.355059][   T60] usb 8-1: config 0 descriptor??
[  128.864765][    C3] vkms_vblank_simulate: vblank timer overrun
[  128.919031][ T7189] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  128.921889][ T7189] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  128.926078][ T7189] vhci_hcd vhci_hcd.0: Device attached
[  129.255453][ T7184] netlink: 8 bytes leftover after parsing attributes in process `syz.3.310'.
[  129.266138][   T34] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  129.456765][ T7191] vhci_hcd: connection reset by peer
[  129.472842][ T1144] vhci_hcd: stop threads
[  129.474550][ T1144] vhci_hcd: release socket
[  129.489800][ T1144] vhci_hcd: disconnect device
[  130.001766][   T60] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  130.018773][   T60] usb 8-1: USB disconnect, device number 5
[  130.106256][ T7201] fido_id[7201]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb8/report_descriptor': No such file or directory
[  130.412706][ T7222] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  130.415016][ T7222] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  130.417873][ T7222] vhci_hcd vhci_hcd.0: Device attached
[  130.433709][ T7222] netlink: 32 bytes leftover after parsing attributes in process `syz.1.319'.
[  130.554835][ T7225] overlayfs: failed to resolve './file0': -2
[  130.735970][   T29] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  131.312773][ T7223] vhci_hcd: connection reset by peer
[  131.317431][ T1143] vhci_hcd: stop threads
[  131.319002][ T1143] vhci_hcd: release socket
[  131.329818][ T1143] vhci_hcd: disconnect device
[  131.376208][   T60] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  133.756037][   T60] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  133.915917][   T60] usb 5-1: Using ep0 maxpacket: 16
[  133.919963][   T60] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  133.930185][   T60] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  133.933896][   T60] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.937848][   T60] usb 5-1: Product: syz
[  133.939616][   T60] usb 5-1: Manufacturer: syz
[  133.951884][   T60] usb 5-1: SerialNumber: syz
[  133.963050][   T60] usb 5-1: config 0 descriptor??
[  134.035249][   T60] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  134.055149][   T60] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  135.026007][   T34] vhci_hcd: vhci_device speed not set
[  135.032905][   T60] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  135.118087][   T60] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  135.123510][   T60] em28xx 5-1:0.0: board has no eeprom
[  135.156037][   T40] audit: type=1326 audit(1760529604.518:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.3.334" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x0
[  135.215926][   T60] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  135.219032][   T60] em28xx 5-1:0.0: dvb set to bulk mode.
[  135.225105][ T5983] em28xx 5-1:0.0: Binding DVB extension
[  135.248989][   T60] usb 5-1: USB disconnect, device number 2
[  135.254391][   T60] em28xx 5-1:0.0: Disconnecting em28xx
[  135.441646][ T5983] em28xx 5-1:0.0: Registering input extension
[  135.443774][   T60] em28xx 5-1:0.0: Closing input extension
[  135.450960][   T60] em28xx 5-1:0.0: Freeing device
[  135.967114][   T29] vhci_hcd: vhci_device speed not set
[  136.188544][ T7296] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  137.867740][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  137.871375][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  138.345963][   T34] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  138.496150][   T34] usb 8-1: Using ep0 maxpacket: 16
[  138.501385][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  138.511047][   T34] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  138.514825][   T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.518392][   T34] usb 8-1: Product: syz
[  138.520200][   T34] usb 8-1: Manufacturer: syz
[  138.522121][   T34] usb 8-1: SerialNumber: syz
[  138.526398][   T34] usb 8-1: config 0 descriptor??
[  138.535504][   T34] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  138.539688][   T34] em28xx 8-1:0.0: DVB interface 0 found: bulk
[  138.598024][ T7318] netlink: 20 bytes leftover after parsing attributes in process `syz.1.345'.
[  138.706425][ T7328] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  138.709030][ T7328] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  138.712402][ T7328] vhci_hcd vhci_hcd.0: Device attached
[  139.186305][   T59] usb 41-1: new low-speed USB device number 5 using vhci_hcd
[  139.191994][   T34] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  139.306660][   T34] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  139.310006][   T34] em28xx 8-1:0.0: board has no eeprom
[  139.386036][   T34] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  139.389832][   T34] em28xx 8-1:0.0: dvb set to bulk mode.
[  139.430724][ T6134] em28xx 8-1:0.0: Binding DVB extension
[  139.450769][   T34] usb 8-1: USB disconnect, device number 7
[  139.481094][   T34] em28xx 8-1:0.0: Disconnecting em28xx
[  139.590541][ T7329] vhci_hcd: connection reset by peer
[  139.618343][ T1144] vhci_hcd: stop threads
[  139.620107][ T1144] vhci_hcd: release socket
[  139.622529][ T1144] vhci_hcd: disconnect device
[  139.814894][ T6134] em28xx 8-1:0.0: Registering input extension
[  139.825063][   T34] em28xx 8-1:0.0: Closing input extension
[  139.961410][   T34] em28xx 8-1:0.0: Freeing device
[  142.378551][   T40] audit: type=1326 audit(1760529611.758:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.2.359" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  142.976799][ T7378] 9pnet_virtio: no channels available for device syz
[  143.101008][ T7380] netlink: 36 bytes leftover after parsing attributes in process `syz.1.360'.
[  143.113088][ T7378] /dev/sr0: Can't open blockdev
[  143.895695][ T7400] FAULT_INJECTION: forcing a failure.
[  143.895695][ T7400] name failslab, interval 1, probability 0, space 0, times 0
[  143.901245][ T7400] CPU: 0 UID: 0 PID: 7400 Comm: syz.0.361 Not tainted syzkaller #0 PREEMPT(full) 
[  143.901264][ T7400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.901271][ T7400] Call Trace:
[  143.901294][ T7400]  <TASK>
[  143.901300][ T7400]  dump_stack_lvl+0x16c/0x1f0
[  143.901614][ T7400]  should_fail_ex+0x512/0x640
[  143.901754][ T7400]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  143.901821][ T7400]  should_failslab+0xc2/0x120
[  143.901846][ T7400]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  143.901864][ T7400]  ? kasprintf+0xc7/0x100
[  143.901892][ T7400]  ? kvasprintf+0xbc/0x160
[  143.901902][ T7400]  kvasprintf+0xbc/0x160
[  143.901914][ T7400]  ? __pfx_kvasprintf+0x10/0x10
[  143.901932][ T7400]  kasprintf+0xc7/0x100
[  143.901943][ T7400]  ? __pfx_kasprintf+0x10/0x10
[  143.901954][ T7400]  ? __kvmalloc_node_noprof+0x3c0/0x9c0
[  143.901971][ T7400]  ? nla_strdup+0xc6/0x150
[  143.901983][ T7400]  ? __asan_memcpy+0x3c/0x60
[  143.902002][ T7400]  nf_tables_newset+0x2b4b/0x4320
[  143.902117][ T7400]  ? __pfx_nf_tables_newset+0x10/0x10
[  143.902138][ T7400]  ? __nla_validate_parse+0x600/0x2880
[  143.902162][ T7400]  ? __nla_parse+0x40/0x60
[  143.902177][ T7400]  nfnetlink_rcv_batch+0x190d/0x2350
[  143.902202][ T7400]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  143.902218][ T7400]  ? __local_bh_enable_ip+0xa4/0x120
[  143.902275][ T7400]  ? __dev_queue_xmit+0xaf1/0x4490
[  143.902292][ T7400]  ? __dev_queue_xmit+0xb12/0x4490
[  143.902312][ T7400]  ? __pfx___dev_queue_xmit+0x10/0x10
[  143.902340][ T7400]  ? __nla_parse+0x40/0x60
[  143.902355][ T7400]  nfnetlink_rcv+0x3c1/0x430
[  143.902369][ T7400]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  143.902387][ T7400]  netlink_unicast+0x5aa/0x870
[  143.902410][ T7400]  ? __pfx_netlink_unicast+0x10/0x10
[  143.902433][ T7400]  netlink_sendmsg+0x8c8/0xdd0
[  143.902454][ T7400]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.902480][ T7400]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  143.902517][ T7400]  ____sys_sendmsg+0xa98/0xc70
[  143.902545][ T7400]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.902558][ T7400]  ? get_compat_msghdr+0x11a/0x170
[  143.902583][ T7400]  ___sys_sendmsg+0x134/0x1d0
[  143.902601][ T7400]  ? __pfx____sys_sendmsg+0x10/0x10
[  143.902625][ T7400]  ? find_held_lock+0x2b/0x80
[  143.902667][ T7400]  __sys_sendmsg+0x16d/0x220
[  143.902684][ T7400]  ? __pfx___sys_sendmsg+0x10/0x10
[  143.902708][ T7400]  ? rcu_is_watching+0x12/0xc0
[  143.902740][ T7400]  __do_fast_syscall_32+0x7c/0x300
[  143.902762][ T7400]  do_fast_syscall_32+0x32/0x80
[  143.902780][ T7400]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  143.902820][ T7400] RIP: 0023:0xf7fa6579
[  143.902832][ T7400] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  143.902843][ T7400] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  143.902869][ T7400] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  143.902876][ T7400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  143.902882][ T7400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  143.902889][ T7400] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  143.902895][ T7400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  143.902910][ T7400]  </TASK>
[  144.036053][ T7402] warning: `syz.2.366' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  144.096238][ T5996] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  144.295930][   T59] vhci_hcd: vhci_device speed not set
[  144.327368][ T5996] usb 8-1: Using ep0 maxpacket: 16
[  144.333433][ T5996] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  144.343650][ T5996] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  144.347415][ T5996] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.352236][ T5996] usb 8-1: Product: syz
[  144.353829][ T5996] usb 8-1: Manufacturer: syz
[  144.357375][ T5996] usb 8-1: SerialNumber: syz
[  144.401717][ T5996] usb 8-1: config 0 descriptor??
[  144.417738][ T5996] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  144.435958][ T5996] em28xx 8-1:0.0: DVB interface 0 found: bulk
[  145.567511][ T5996] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  145.610155][ T7417] qnx6: unable to read the first superblock
[  145.613324][ T7417] qnx6: unable to read the first superblock
[  145.615894][ T7417] qnx6: unable to read the first superblock
[  145.873707][ T7420] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3093053321 (395910825088 ns) > initial count (247409990272 ns). Using initial count to start timer.
[  146.012049][ T5996] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  146.015138][ T5996] em28xx 8-1:0.0: board has no eeprom
[  146.594248][   T60] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  146.666643][ T5996] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  146.669259][ T5996] em28xx 8-1:0.0: dvb set to bulk mode.
[  146.671190][   T29] em28xx 8-1:0.0: Binding DVB extension
[  146.727859][   T29] em28xx 8-1:0.0: Registering input extension
[  146.764958][ T5996] usb 8-1: USB disconnect, device number 8
[  146.767839][ T5996] em28xx 8-1:0.0: Disconnecting em28xx
[  146.769659][ T5996] em28xx 8-1:0.0: Closing input extension
[  146.788908][ T5996] em28xx 8-1:0.0: Freeing device
[  146.945020][ T7441] netlink: 8 bytes leftover after parsing attributes in process `syz.3.373'.
[  146.974660][ T7434] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  150.262817][ T7502] netlink: 16 bytes leftover after parsing attributes in process `syz.2.385'.
[  150.585873][ T7511] loop2: detected capacity change from 0 to 7
[  150.593420][ T6444] Dev loop2: unable to read RDB block 7
[  150.596803][ T6444]  loop2: unable to read partition table
[  150.599832][ T6444] loop2: partition table beyond EOD, truncated
[  150.609557][ T7511] Dev loop2: unable to read RDB block 7
[  150.611518][ T7511]  loop2: unable to read partition table
[  150.618983][ T7511] loop2: partition table beyond EOD, truncated
[  150.622720][ T7511] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  150.655136][ T7517] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  150.657460][ T7517] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  150.660656][ T7517] vhci_hcd vhci_hcd.0: Device attached
[  150.744384][ T7516] misc userio: No port type given on /dev/userio
[  150.751727][ T7518] vhci_hcd: connection closed
[  150.752751][   T12] vhci_hcd: stop threads
[  150.757223][   T12] vhci_hcd: release socket
[  150.758785][   T12] vhci_hcd: disconnect device
[  150.868931][ T7524] netlink: 4 bytes leftover after parsing attributes in process `syz.2.390'.
[  150.872014][ T7524] bridge_slave_1: left allmulticast mode
[  150.873881][ T7524] bridge_slave_1: left promiscuous mode
[  150.876521][ T7524] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.881674][ T7524] bridge_slave_0: left allmulticast mode
[  150.883768][ T7524] bridge_slave_0: left promiscuous mode
[  150.886477][ T7524] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.843524][   T40] audit: type=1326 audit(1760529621.218:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7530 comm="syz.2.393" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  152.421152][ T7546] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  152.423901][ T7546] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  152.432413][ T7546] vhci_hcd vhci_hcd.0: Device attached
[  153.325982][   T29] usb 40-1: SetAddress Request (2) to port 0
[  153.328789][   T29] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[  153.461343][ T7547] vhci_hcd: connection reset by peer
[  153.466447][   T12] vhci_hcd: stop threads
[  153.468182][   T12] vhci_hcd: release socket
[  153.472406][   T12] vhci_hcd: disconnect device
[  153.602019][ T7559] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  153.605503][ T7559] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  153.612539][ T7559] vhci_hcd vhci_hcd.0: Device attached
[  153.855996][ T6027] usb 41-1: new low-speed USB device number 6 using vhci_hcd
[  153.859715][ T7572] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  153.864380][ T7572] block device autoloading is deprecated and will be removed.
[  154.361595][ T7560] vhci_hcd: connection reset by peer
[  154.365055][   T12] vhci_hcd: stop threads
[  154.367642][   T12] vhci_hcd: release socket
[  154.369313][   T12] vhci_hcd: disconnect device
[  154.824575][   T40] audit: type=1326 audit(1760529624.198:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.0.406" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x0
[  156.533528][    C3] vkms_vblank_simulate: vblank timer overrun
[  157.618736][ T7597] netlink: 'syz.2.410': attribute type 1 has an invalid length.
[  157.622829][ T7597] netlink: 224 bytes leftover after parsing attributes in process `syz.2.410'.
[  157.649864][ T7599] netlink: 52 bytes leftover after parsing attributes in process `syz.1.411'.
[  157.843562][ T7610] netlink: 8 bytes leftover after parsing attributes in process `syz.3.414'.
[  157.898674][ T7611] netlink: 8 bytes leftover after parsing attributes in process `syz.1.413'.
[  157.984659][ T7619] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  157.987614][ T7619] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  157.992121][ T7619] vhci_hcd vhci_hcd.0: Device attached
[  158.108477][ T7621] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  158.276057][ T2299] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[  158.352219][   T40] audit: type=1326 audit(1760529627.728:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7631 comm="syz.0.420" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x0
[  158.376084][   T29] usb 40-1: device descriptor read/8, error -110
[  158.776653][ T7622] vhci_hcd: connection reset by peer
[  158.848355][   T62] vhci_hcd: stop threads
[  158.850273][   T62] vhci_hcd: release socket
[  158.865174][   T62] vhci_hcd: disconnect device
[  159.006467][ T6027] vhci_hcd: vhci_device speed not set
[  159.376646][   T29] usb usb40-port1: attempt power cycle
[  159.543071][   T40] audit: type=1326 audit(1760529628.918:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7659 comm="syz.2.426" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  159.740539][ T7669] Mount JFS Failure: -22
[  159.742520][ T7669] jfs_mount failed w/return code = -22
[  160.401429][   T29] usb usb40-port1: unable to enumerate USB device
[  160.550443][   T40] audit: type=1326 audit(1760529629.928:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7677 comm="syz.0.430" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x0
[  160.596526][   T40] audit: type=1326 audit(1760529629.978:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7682 comm="syz.2.431" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  160.630393][ T7685] loop2: detected capacity change from 0 to 7
[  160.633924][ T6444] Dev loop2: unable to read RDB block 7
[  160.635671][ T6444]  loop2: unable to read partition table
[  160.638512][ T6444] loop2: partition table beyond EOD, truncated
[  160.643508][ T7685] Dev loop2: unable to read RDB block 7
[  160.646318][ T7685]  loop2: unable to read partition table
[  160.649080][ T7685] loop2: partition table beyond EOD, truncated
[  160.651835][ T7685] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  160.671839][ T7686] netlink: 8 bytes leftover after parsing attributes in process `syz.0.430'.
[  160.748753][   T40] audit: type=1326 audit(1760529630.128:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7677 comm="syz.0.430" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7ffc0000
[  160.756162][   T40] audit: type=1326 audit(1760529630.128:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7677 comm="syz.0.430" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7ffc0000
[  160.764910][   T40] audit: type=1326 audit(1760529630.128:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7677 comm="syz.0.430" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa6579 code=0x7ffc0000
[  161.791336][ T7701] netlink: 20 bytes leftover after parsing attributes in process `syz.1.435'.
[  162.079325][   T95] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.196502][ T5953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  162.206658][ T5953] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  162.212246][ T5953] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  162.224307][ T5953] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  162.232503][ T5953] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  162.428328][ T7726] netlink: 20 bytes leftover after parsing attributes in process `syz.1.444'.
[  162.547828][   T95] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.651044][   T95] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.889522][   T95] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.015150][ T7722] chnl_net:caif_netlink_parms(): no params data found
[  163.418517][ T2299] vhci_hcd: vhci_device speed not set
[  163.626054][ T7722] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.628474][ T7722] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.630845][ T7722] bridge_slave_0: entered allmulticast mode
[  163.633665][ T7722] bridge_slave_0: entered promiscuous mode
[  163.652031][ T7722] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.654360][ T7722] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.657881][ T7722] bridge_slave_1: entered allmulticast mode
[  163.661059][ T7722] bridge_slave_1: entered promiscuous mode
[  163.713159][   T95] bridge_slave_1: left allmulticast mode
[  163.715248][   T95] bridge_slave_1: left promiscuous mode
[  163.728521][   T95] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.735610][   T95] bridge_slave_0: left allmulticast mode
[  163.753884][   T95] bridge_slave_0: left promiscuous mode
[  163.762189][   T95] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.159758][   T95] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  164.182551][   T95] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  164.203007][   T95] bond0 (unregistering): Released all slaves
[  164.268198][ T7722] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  164.296724][ T5953] Bluetooth: hci0: command tx timeout
[  164.486518][ T7722] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  165.295953][   T95] tipc: Disabling bearer <udp:s>
[  165.301425][   T95] tipc: Left network mode
[  165.364294][ T7722] team0: Port device team_slave_0 added
[  165.428576][ T7722] team0: Port device team_slave_1 added
[  165.741428][ T7722] batman_adv: batadv0: Adding interface: batadv_slave_0
[  165.744516][ T7722] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  165.763397][ T7722] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  165.790389][ T7722] batman_adv: batadv0: Adding interface: batadv_slave_1
[  165.794290][ T7722] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  165.809600][ T7722] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  166.377160][ T5953] Bluetooth: hci0: command tx timeout
[  166.549257][ T7722] hsr_slave_0: entered promiscuous mode
[  166.551671][ T7722] hsr_slave_1: entered promiscuous mode
[  166.582195][   T95] hsr_slave_0: left promiscuous mode
[  166.587483][   T95] hsr_slave_1: left promiscuous mode
[  166.594684][   T95] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  166.599375][   T95] batman_adv: batadv0: Removing interface: batadv_slave_0
[  166.618695][   T95] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  166.622157][   T95] batman_adv: batadv0: Removing interface: batadv_slave_1
[  166.679170][   T95] veth1_macvtap: left promiscuous mode
[  166.681259][   T95] veth0_macvtap: left promiscuous mode
[  166.683294][   T95] veth1_vlan: left promiscuous mode
[  166.685293][   T95] veth0_vlan: left promiscuous mode
[  166.806103][ T7798] netlink: 'syz.3.458': attribute type 1 has an invalid length.
[  166.808864][ T7798] netlink: 'syz.3.458': attribute type 2 has an invalid length.
[  166.846169][ T5983] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  167.000824][ T5983] usb 6-1: Using ep0 maxpacket: 16
[  167.012266][ T5983] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  167.034212][ T5983] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  167.037915][ T5983] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.045516][ T5983] usb 6-1: Product: syz
[  167.057263][ T5983] usb 6-1: Manufacturer: syz
[  167.058860][ T5983] usb 6-1: SerialNumber: syz
[  167.068003][ T5983] usb 6-1: config 0 descriptor??
[  167.077778][ T5983] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  167.080854][ T5983] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  167.313255][ T7800] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  167.316201][ T7800] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  167.321148][ T7800] vhci_hcd vhci_hcd.0: Device attached
[  167.466437][ T5983] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  167.489503][ T7801] vhci_hcd: connection closed
[  167.498124][   T12] vhci_hcd: stop threads
[  167.501887][   T12] vhci_hcd: release socket
[  167.503765][   T12] vhci_hcd: disconnect device
[  167.544908][ T5983] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  167.547691][ T5983] em28xx 6-1:0.0: board has no eeprom
[  167.616064][ T5983] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  167.619593][ T5983] em28xx 6-1:0.0: dvb set to bulk mode.
[  167.628394][   T60] em28xx 6-1:0.0: Binding DVB extension
[  167.636042][ T5983] usb 6-1: USB disconnect, device number 3
[  167.638818][ T5983] em28xx 6-1:0.0: Disconnecting em28xx
[  167.666501][   T60] em28xx 6-1:0.0: Registering input extension
[  167.670086][ T5983] em28xx 6-1:0.0: Closing input extension
[  167.682557][ T5983] em28xx 6-1:0.0: Freeing device
[  168.301525][ T7722] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  168.309058][ T7722] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  168.316261][ T7722] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  168.335235][ T7722] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  168.418307][ T7722] 8021q: adding VLAN 0 to HW filter on device bond0
[  168.429408][ T7722] 8021q: adding VLAN 0 to HW filter on device team0
[  168.437606][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.439976][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.450128][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.452491][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.469713][ T5953] Bluetooth: hci0: command tx timeout
[  168.680888][ T7722] 8021q: adding VLAN 0 to HW filter on device batadv0
[  169.599335][ T7722] veth0_vlan: entered promiscuous mode
[  169.605228][ T7722] veth1_vlan: entered promiscuous mode
[  169.634333][ T7722] veth0_macvtap: entered promiscuous mode
[  169.640151][ T7722] veth1_macvtap: entered promiscuous mode
[  169.651317][ T7722] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.663823][ T7722] batman_adv: batadv0: Interface activated: batadv_slave_1
[  169.680004][   T76] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.684223][   T76] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.694686][   T76] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.697745][   T76] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.831794][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  169.835081][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  169.891594][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  169.894502][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.072336][ T7869] netfs: Couldn't get user pages (rc=-14)
[  170.536315][ T5953] Bluetooth: hci0: command tx timeout
[  171.137218][ T7885] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  171.195964][ T6134] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  171.365939][ T6134] usb 6-1: Using ep0 maxpacket: 16
[  171.371290][ T6134] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  171.378979][ T6134] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  171.382893][ T6134] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.387088][ T6134] usb 6-1: Product: syz
[  171.389236][ T6134] usb 6-1: Manufacturer: syz
[  171.391835][ T6134] usb 6-1: SerialNumber: syz
[  171.397815][ T6134] usb 6-1: config 0 descriptor??
[  171.411512][ T6134] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  171.416848][ T6134] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  171.808968][ T6134] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  171.869366][ T6134] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  171.871963][ T6134] em28xx 6-1:0.0: board has no eeprom
[  171.936046][ T6134] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  171.938986][ T6134] em28xx 6-1:0.0: dvb set to bulk mode.
[  171.941083][  T843] em28xx 6-1:0.0: Binding DVB extension
[  171.957972][ T6134] usb 6-1: USB disconnect, device number 4
[  171.962773][ T6134] em28xx 6-1:0.0: Disconnecting em28xx
[  172.273876][  T843] em28xx 6-1:0.0: Registering input extension
[  172.313547][ T6134] em28xx 6-1:0.0: Closing input extension
[  172.319603][ T6134] em28xx 6-1:0.0: Freeing device
[  173.949043][ T7910] netlink: 20 bytes leftover after parsing attributes in process `syz.2.478'.
[  174.164029][ T7927] loop3: detected capacity change from 0 to 7
[  174.168151][ T7927] Dev loop3: unable to read RDB block 7
[  174.170017][ T7927]  loop3: unable to read partition table
[  174.172034][ T7927] loop3: partition table beyond EOD, truncated
[  174.174174][ T7927] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  174.183673][ T5352] Dev loop3: unable to read RDB block 7
[  174.186169][ T5352]  loop3: unable to read partition table
[  174.189338][ T5352] loop3: partition table beyond EOD, truncated
[  174.307280][   T40] audit: type=1326 audit(1760529643.688:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.2.486" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  174.336997][   T40] audit: type=1326 audit(1760529643.708:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7938 comm="syz.1.487" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x0
[  175.736058][ T5303] Bluetooth: hci2: command 0x0406 tx timeout
[  175.745965][   T64] Bluetooth: hci1: command 0x0406 tx timeout
[  176.330423][ T7958] FAULT_INJECTION: forcing a failure.
[  176.330423][ T7958] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.334906][ T7958] CPU: 1 UID: 0 PID: 7958 Comm: syz.2.489 Not tainted syzkaller #0 PREEMPT(full) 
[  176.334926][ T7958] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.334933][ T7958] Call Trace:
[  176.334954][ T7958]  <TASK>
[  176.334959][ T7958]  dump_stack_lvl+0x16c/0x1f0
[  176.335280][ T7958]  should_fail_ex+0x512/0x640
[  176.335406][ T7958]  _copy_to_user+0x32/0xd0
[  176.335431][ T7958]  simple_read_from_buffer+0xcb/0x170
[  176.335489][ T7958]  proc_fail_nth_read+0x197/0x240
[  176.335518][ T7958]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  176.335534][ T7958]  ? rw_verify_area+0xcf/0x6c0
[  176.335557][ T7958]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  176.335572][ T7958]  vfs_read+0x1e4/0xcf0
[  176.335590][ T7958]  ? __pfx_vfs_read+0x10/0x10
[  176.335603][ T7958]  ? find_held_lock+0x2b/0x80
[  176.335657][ T7958]  ? __fget_files+0x20e/0x3c0
[  176.335675][ T7958]  ksys_read+0x12a/0x250
[  176.335691][ T7958]  ? __pfx_ksys_read+0x10/0x10
[  176.335728][ T7958]  ? rcu_is_watching+0x12/0xc0
[  176.335759][ T7958]  __do_fast_syscall_32+0x7c/0x300
[  176.335792][ T7958]  do_fast_syscall_32+0x32/0x80
[  176.335809][ T7958]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  176.335845][ T7958] RIP: 0023:0xf707d579
[  176.335864][ T7958] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  176.335874][ T7958] RSP: 002b:00000000f544c590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  176.335898][ T7958] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f544c620
[  176.335905][ T7958] RDX: 000000000000000f RSI: 00000000f7415ff4 RDI: 0000000000000000
[  176.335911][ T7958] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  176.335921][ T7958] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  176.335927][ T7958] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  176.335941][ T7958]  </TASK>
[  176.400208][    C1] vkms_vblank_simulate: vblank timer overrun
[  176.675943][ T5996] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  176.836011][ T5996] usb 8-1: Using ep0 maxpacket: 16
[  176.839889][ T5996] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  176.846659][ T5996] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  176.850861][ T5996] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.854020][ T5996] usb 8-1: Product: syz
[  176.856332][ T5996] usb 8-1: Manufacturer: syz
[  176.858129][ T5996] usb 8-1: SerialNumber: syz
[  176.867610][ T5996] usb 8-1: config 0 descriptor??
[  176.882410][ T5996] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  176.886919][ T5996] em28xx 8-1:0.0: DVB interface 0 found: bulk
[  177.524480][ T5996] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  177.595918][ T5996] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  177.599453][ T5996] em28xx 8-1:0.0: board has no eeprom
[  177.797350][ T5996] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  177.801161][ T5996] em28xx 8-1:0.0: dvb set to bulk mode.
[  177.804101][   T29] em28xx 8-1:0.0: Binding DVB extension
[  177.828825][ T5996] usb 8-1: USB disconnect, device number 9
[  177.832641][ T5996] em28xx 8-1:0.0: Disconnecting em28xx
[  177.866022][   T29] em28xx 8-1:0.0: Registering input extension
[  177.890341][ T7978] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  177.895310][ T5996] em28xx 8-1:0.0: Closing input extension
[  178.154796][ T5996] em28xx 8-1:0.0: Freeing device
[  180.650991][ T8016] 9pnet_virtio: no channels available for device syz
[  181.584448][   T40] audit: type=1326 audit(1760529650.958:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.2.508" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707d579 code=0x0
[  181.646629][ T8042] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  181.742964][ T8062] block nbd2: shutting down sockets
[  182.092943][   T40] audit: type=1804 audit(1760529651.468:39): pid=8072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.511" name="/newroot/121/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  183.625146][   T40] audit: type=1804 audit(1760529652.998:40): pid=8096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.516" name="/newroot/123/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  183.866350][ T8100] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  183.868956][ T8100] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  183.872132][ T8100] vhci_hcd vhci_hcd.0: Device attached
[  184.516003][  T842] usb 39-1: new low-speed USB device number 3 using vhci_hcd
[  184.518670][ T8105] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  184.539158][   T46] vhci_hcd: stop threads
[  184.540648][   T46] vhci_hcd: release socket
[  184.542515][   T46] vhci_hcd: disconnect device
[  186.045877][   T59] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  186.196043][   T59] usb 6-1: Using ep0 maxpacket: 16
[  186.200550][   T59] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  186.207353][   T59] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  186.211713][   T59] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.215027][   T59] usb 6-1: Product: syz
[  186.236484][   T59] usb 6-1: Manufacturer: syz
[  186.238691][   T59] usb 6-1: SerialNumber: syz
[  186.244727][   T59] usb 6-1: config 0 descriptor??
[  186.259440][   T59] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  186.263837][   T59] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  186.526297][ T8143] 9pnet_virtio: no channels available for device syz
[  187.469108][   T59] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  187.532475][   T59] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  187.535899][   T59] em28xx 6-1:0.0: board has no eeprom
[  187.595883][   T59] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  187.598856][   T59] em28xx 6-1:0.0: dvb set to bulk mode.
[  187.600953][   T34] em28xx 6-1:0.0: Binding DVB extension
[  187.614434][   T59] usb 6-1: USB disconnect, device number 5
[  187.622359][   T59] em28xx 6-1:0.0: Disconnecting em28xx
[  187.651253][   T34] em28xx 6-1:0.0: Registering input extension
[  187.653560][   T59] em28xx 6-1:0.0: Closing input extension
[  187.662638][   T59] em28xx 6-1:0.0: Freeing device
[  187.846476][   T40] audit: type=1326 audit(1760529657.228:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.2.531" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  189.204571][ T8163] overlay: ./file0 is not a directory
[  189.423739][   T40] audit: type=1326 audit(1760529658.798:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.2.538" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  190.018327][  T842] vhci_hcd: vhci_device speed not set
[  191.796121][ T6027] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  191.946334][ T6027] usb 8-1: Using ep0 maxpacket: 16
[  191.952092][ T6027] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  191.957490][ T6027] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  191.960983][ T6027] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.964184][ T6027] usb 8-1: Product: syz
[  191.966519][ T6027] usb 8-1: Manufacturer: syz
[  191.968489][ T6027] usb 8-1: SerialNumber: syz
[  191.978186][ T6027] usb 8-1: config 0 descriptor??
[  191.988285][ T6027] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  192.002306][ T6027] em28xx 8-1:0.0: DVB interface 0 found: bulk
[  192.067342][ T8215] nfs: Unknown parameter 'fsuuid'
[  192.446274][ T6027] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  192.520879][ T6027] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  192.523703][ T6027] em28xx 8-1:0.0: board has no eeprom
[  192.595975][ T6027] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  192.599436][ T6027] em28xx 8-1:0.0: dvb set to bulk mode.
[  192.612512][ T6009] em28xx 8-1:0.0: Binding DVB extension
[  192.615274][ T6027] usb 8-1: USB disconnect, device number 10
[  192.618770][ T6027] em28xx 8-1:0.0: Disconnecting em28xx
[  192.640811][ T6009] em28xx 8-1:0.0: Registering input extension
[  192.643682][ T6027] em28xx 8-1:0.0: Closing input extension
[  192.651827][ T6027] em28xx 8-1:0.0: Freeing device
[  194.076288][ T5996] IPVS: starting estimator thread 0...
[  194.186122][ T8245] IPVS: using max 41 ests per chain, 98400 per kthread
[  195.295910][   T60] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  195.445886][   T60] usb 9-1: Using ep0 maxpacket: 16
[  195.449133][   T60] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  195.454831][   T60] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  195.458426][   T60] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.461040][   T60] usb 9-1: Product: syz
[  195.462389][   T60] usb 9-1: Manufacturer: syz
[  195.463935][   T60] usb 9-1: SerialNumber: syz
[  195.469254][   T60] usb 9-1: config 0 descriptor??
[  195.478111][   T60] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  195.481117][   T60] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  195.900625][   T60] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  196.051599][   T60] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  196.058933][   T60] em28xx 9-1:0.0: board has no eeprom
[  196.087598][ T8283] netlink: 52 bytes leftover after parsing attributes in process `syz.2.566'.
[  196.166300][   T60] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  196.174337][   T60] em28xx 9-1:0.0: dvb set to bulk mode.
[  196.175296][  T842] em28xx 9-1:0.0: Binding DVB extension
[  196.305302][   T60] usb 9-1: USB disconnect, device number 2
[  196.333050][  T842] em28xx 9-1:0.0: Registering input extension
[  196.387344][   T60] em28xx 9-1:0.0: Disconnecting em28xx
[  196.390279][   T60] em28xx 9-1:0.0: Closing input extension
[  196.507087][   T60] em28xx 9-1:0.0: Freeing device
[  196.730755][ T8288] fuse: Unknown parameter '000000000000000000000030x0000000000000003'
[  197.747416][ T8301] Bluetooth: MGMT ver 1.23
[  197.831765][ T8304] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 0, id = 0
[  198.121311][ T8306] tmpfs: Bad value for 'huge'
[  198.421782][ T8310] netlink: 40 bytes leftover after parsing attributes in process `syz.1.573'.
[  198.428021][ T8310] netlink: 120 bytes leftover after parsing attributes in process `syz.1.573'.
[  198.484362][ T8312] netfs: Couldn't get user pages (rc=-14)
[  199.122489][ T8329] fuse: Bad value for 'fd'
[  199.261815][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  199.265052][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  199.432871][ T8335] netlink: 8 bytes leftover after parsing attributes in process `syz.4.578'.
[  199.543616][ T8335] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  199.615902][   T34] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  199.785951][   T34] usb 6-1: Using ep0 maxpacket: 16
[  199.791544][   T34] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  199.804848][   T34] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  199.813108][   T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.816069][ T5953] Bluetooth: hci0: command 0x1407 tx timeout
[  199.816094][ T5957] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  199.824766][   T34] usb 6-1: Product: syz
[  199.831122][   T34] usb 6-1: Manufacturer: syz
[  199.834590][   T34] usb 6-1: SerialNumber: syz
[  199.842109][   T34] usb 6-1: config 0 descriptor??
[  199.854884][   T34] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  199.858556][   T34] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  200.207363][   T40] audit: type=1326 audit(1760529669.588:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8339 comm="syz.3.581" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x0
[  200.246874][   T34] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  200.314483][   T34] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  200.321179][   T34] em28xx 6-1:0.0: board has no eeprom
[  200.386398][   T34] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  200.390273][   T34] em28xx 6-1:0.0: dvb set to bulk mode.
[  200.393159][ T6134] em28xx 6-1:0.0: Binding DVB extension
[  200.408207][   T34] usb 6-1: USB disconnect, device number 6
[  200.418570][   T34] em28xx 6-1:0.0: Disconnecting em28xx
[  200.432089][ T6134] em28xx 6-1:0.0: Registering input extension
[  200.436463][   T34] em28xx 6-1:0.0: Closing input extension
[  200.451810][   T34] em28xx 6-1:0.0: Freeing device
[  201.462317][ T8355] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  203.658594][ T8375] netlink: 52 bytes leftover after parsing attributes in process `syz.1.590'.
[  203.712364][   T40] audit: type=1326 audit(1760529673.088:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8376 comm="syz.2.591" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  204.263916][ T8381] netlink: 8 bytes leftover after parsing attributes in process `syz.4.588'.
[  204.572402][   T40] audit: type=1326 audit(1760529673.948:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8382 comm="syz.1.592" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x0
[  204.886414][ T8391] 9pnet_virtio: no channels available for device syz
[  204.975873][ T6134] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  205.936398][ T6134] usb 7-1: Using ep0 maxpacket: 16
[  205.946343][ T6134] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  205.967418][ T8395] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  205.969743][ T8395] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  205.973497][ T8395] vhci_hcd vhci_hcd.0: Device attached
[  205.976512][ T6134] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  205.981226][ T6134] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.985326][ T6134] usb 7-1: Product: syz
[  205.998502][ T6134] usb 7-1: Manufacturer: syz
[  206.000507][ T6134] usb 7-1: SerialNumber: syz
[  206.021520][ T6134] usb 7-1: config 0 descriptor??
[  206.074521][ T6134] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  206.080229][ T6134] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  206.246632][   T34] usb 39-1: new low-speed USB device number 4 using vhci_hcd
[  206.977229][ T8396] vhci_hcd: connection reset by peer
[  207.109365][ T8392] vhci_hcd: stop threads
[  207.121827][ T8392] vhci_hcd: release socket
[  207.128229][ T8392] vhci_hcd: disconnect device
[  207.167577][ T6134] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  207.238178][ T6134] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  207.243791][ T6134] em28xx 7-1:0.0: board has no eeprom
[  207.326252][ T6134] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  207.335741][ T8418] netlink: 52 bytes leftover after parsing attributes in process `syz.4.601'.
[  207.336983][ T6134] em28xx 7-1:0.0: dvb set to bulk mode.
[  207.349378][ T8407] em28xx 7-1:0.0: Binding DVB extension
[  207.382677][ T6134] usb 7-1: USB disconnect, device number 5
[  207.387204][ T6134] em28xx 7-1:0.0: Disconnecting em28xx
[  207.407029][ T8407] em28xx 7-1:0.0: Registering input extension
[  207.407347][ T6134] em28xx 7-1:0.0: Closing input extension
[  207.435711][ T6134] em28xx 7-1:0.0: Freeing device
[  207.451507][ T8424] fuse: Unknown parameter '000000000000000000000030x0000000000000003'
[  207.493127][ T8422] netfs: Couldn't get user pages (rc=-14)
[  208.701827][ T8435] 9pnet_virtio: no channels available for device syz
[  208.735976][ T6009] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  208.885887][ T6009] usb 6-1: Using ep0 maxpacket: 16
[  208.890689][ T6009] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  208.896135][ T6009] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  208.899112][ T6009] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.901831][ T6009] usb 6-1: Product: syz
[  208.903522][ T6009] usb 6-1: Manufacturer: syz
[  208.905446][ T6009] usb 6-1: SerialNumber: syz
[  208.911760][ T6009] usb 6-1: config 0 descriptor??
[  208.923239][ T6009] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  208.926600][ T6009] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  209.806303][ T6009] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  209.870422][ T6009] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  209.875118][ T6009] em28xx 6-1:0.0: board has no eeprom
[  209.935957][ T6009] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  209.939312][ T6009] em28xx 6-1:0.0: dvb set to bulk mode.
[  209.942795][ T2299] em28xx 6-1:0.0: Binding DVB extension
[  209.980261][ T6009] usb 6-1: USB disconnect, device number 7
[  210.009837][ T2299] em28xx 6-1:0.0: Registering input extension
[  210.097208][ T6009] em28xx 6-1:0.0: Disconnecting em28xx
[  210.100355][ T6009] em28xx 6-1:0.0: Closing input extension
[  210.113704][ T6009] em28xx 6-1:0.0: Freeing device
[  210.454505][ T8452] ceph: No mds server is up or the cluster is laggy
[  210.480899][ T8455] vxfs: WRONG superblock magic 00000000 at 1
[  210.483959][ T8455] vxfs: WRONG superblock magic 00000000 at 8
[  210.486540][ T8455] vxfs: can't find superblock.
[  210.492769][ T5996] libceph: connect (1)[c::]:6789 error -101
[  210.497368][ T5996] libceph: mon0 (1)[c::]:6789 connect error
[  211.615929][   T34] vhci_hcd: vhci_device speed not set
[  211.625006][ T5957] Bluetooth: hci3: command 0x0406 tx timeout
[  211.950722][ T8464] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  211.963333][ T8467] Bluetooth: MGMT ver 1.23
[  212.014282][ T8471] FAULT_INJECTION: forcing a failure.
[  212.014282][ T8471] name failslab, interval 1, probability 0, space 0, times 0
[  212.019806][ T8471] CPU: 2 UID: 0 PID: 8471 Comm: syz.1.616 Not tainted syzkaller #0 PREEMPT(full) 
[  212.019825][ T8471] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.019834][ T8471] Call Trace:
[  212.019857][ T8471]  <TASK>
[  212.019863][ T8471]  dump_stack_lvl+0x16c/0x1f0
[  212.020172][ T8471]  should_fail_ex+0x512/0x640
[  212.020311][ T8471]  ? __kmalloc_noprof+0xca/0x880
[  212.020377][ T8471]  should_failslab+0xc2/0x120
[  212.020403][ T8471]  __kmalloc_noprof+0xdd/0x880
[  212.020418][ T8471]  ? __memcg_slab_post_alloc_hook+0x47c/0x940
[  212.020433][ T8471]  ? io_cache_alloc_new+0x45/0xf0
[  212.020473][ T8471]  ? io_cache_alloc_new+0x45/0xf0
[  212.020485][ T8471]  io_cache_alloc_new+0x45/0xf0
[  212.020497][ T8471]  __io_prep_rw+0x21d/0x1090
[  212.020514][ T8471]  ? __pfx___io_prep_rw+0x10/0x10
[  212.020530][ T8471]  ? __io_alloc_req_refill+0x33a/0x5e0
[  212.020547][ T8471]  ? mark_held_locks+0x49/0x80
[  212.020601][ T8471]  io_prep_rw+0x76/0x2c0
[  212.020616][ T8471]  ? __pfx_io_prep_rw+0x10/0x10
[  212.020635][ T8471]  io_submit_sqes+0x855/0x2710
[  212.020667][ T8471]  __do_sys_io_uring_enter+0xd69/0x1630
[  212.020688][ T8471]  ? __fget_files+0x20e/0x3c0
[  212.020717][ T8471]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  212.020736][ T8471]  ? fput+0x9b/0xd0
[  212.020750][ T8471]  ? ksys_write+0x1ac/0x250
[  212.020767][ T8471]  ? __pfx_ksys_write+0x10/0x10
[  212.020786][ T8471]  ? rcu_is_watching+0x12/0xc0
[  212.020823][ T8471]  __do_fast_syscall_32+0x7c/0x300
[  212.020854][ T8471]  do_fast_syscall_32+0x32/0x80
[  212.020878][ T8471]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.020927][ T8471] RIP: 0023:0xf700d579
[  212.020938][ T8471] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.020950][ T8471] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  212.020977][ T8471] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000007368
[  212.020985][ T8471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  212.020992][ T8471] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.020999][ T8471] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.021006][ T8471] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.021022][ T8471]  </TASK>
[  213.518172][ T8484] loop3: detected capacity change from 0 to 7
[  213.524504][ T6444] Dev loop3: unable to read RDB block 7
[  213.531087][ T6444]  loop3: unable to read partition table
[  213.533984][ T6444] loop3: partition table beyond EOD, truncated
[  213.540845][ T8484] Dev loop3: unable to read RDB block 7
[  213.543945][ T8484]  loop3: unable to read partition table
[  213.549051][ T8484] loop3: partition table beyond EOD, truncated
[  213.557601][ T8484] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  214.116727][   T29] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  214.276146][   T29] usb 8-1: Using ep0 maxpacket: 16
[  214.281478][   T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  214.291497][   T29] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  214.294811][   T29] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.310152][   T29] usb 8-1: Product: syz
[  214.313383][   T29] usb 8-1: Manufacturer: syz
[  214.315429][   T29] usb 8-1: SerialNumber: syz
[  214.361299][   T29] usb 8-1: config 0 descriptor??
[  214.412041][   T29] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  214.429964][   T29] em28xx 8-1:0.0: DVB interface 0 found: bulk
[  215.036387][   T29] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  215.101497][   T29] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  215.270665][   T29] em28xx 8-1:0.0: board has no eeprom
[  215.407105][   T29] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  215.417841][   T29] em28xx 8-1:0.0: dvb set to bulk mode.
[  215.424436][ T5996] em28xx 8-1:0.0: Binding DVB extension
[  215.437383][   T29] usb 8-1: USB disconnect, device number 11
[  215.449228][   T29] em28xx 8-1:0.0: Disconnecting em28xx
[  215.472833][ T5996] em28xx 8-1:0.0: Registering input extension
[  215.479167][   T29] em28xx 8-1:0.0: Closing input extension
[  215.512032][   T29] em28xx 8-1:0.0: Freeing device
[  216.978237][   T40] audit: type=1800 audit(1760529686.358:46): pid=8508 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.624" name="blkio.throttle.io_service_bytes_recursive" dev="9p" ino=71827935 res=0 errno=0
[  217.436739][ T8513] netlink: 8 bytes leftover after parsing attributes in process `syz.2.633'.
[  218.041193][ T6027] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  218.573747][ T6027] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  218.579603][ T6027] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  218.583804][ T6027] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  218.596171][ T6027] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.615218][ T8531] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  218.631617][ T6027] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  219.155730][ T6042] usb 6-1: USB disconnect, device number 8
[  219.213004][ T8538] FAULT_INJECTION: forcing a failure.
[  219.213004][ T8538] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.226940][ T8538] CPU: 2 UID: 0 PID: 8538 Comm: syz.4.632 Not tainted syzkaller #0 PREEMPT(full) 
[  219.226962][ T8538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  219.226970][ T8538] Call Trace:
[  219.227039][ T8538]  <TASK>
[  219.227044][ T8538]  dump_stack_lvl+0x16c/0x1f0
[  219.227373][ T8538]  should_fail_ex+0x512/0x640
[  219.227519][ T8538]  _copy_from_user+0x2e/0xd0
[  219.227549][ T8538]  get_compat_msghdr+0xa7/0x170
[  219.227656][ T8538]  ? __pfx_get_compat_msghdr+0x10/0x10
[  219.227678][ T8538]  ___sys_sendmsg+0x1ae/0x1d0
[  219.227708][ T8538]  ? __pfx____sys_sendmsg+0x10/0x10
[  219.227733][ T8538]  ? find_held_lock+0x2b/0x80
[  219.227805][ T8538]  __sys_sendmsg+0x16d/0x220
[  219.227823][ T8538]  ? __pfx___sys_sendmsg+0x10/0x10
[  219.227847][ T8538]  ? rcu_is_watching+0x12/0xc0
[  219.227879][ T8538]  __do_fast_syscall_32+0x7c/0x300
[  219.227901][ T8538]  do_fast_syscall_32+0x32/0x80
[  219.227923][ T8538]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  219.227963][ T8538] RIP: 0023:0xf70ad579
[  219.227984][ T8538] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  219.227996][ T8538] RSP: 002b:00000000f549d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  219.228032][ T8538] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000140
[  219.228039][ T8538] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  219.228046][ T8538] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  219.228052][ T8538] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  219.228059][ T8538] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  219.228074][ T8538]  </TASK>
[  219.695638][   T40] audit: type=1804 audit(1760529689.068:47): pid=8546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.634" name="/newroot/39/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  219.715945][ T5983] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  219.803136][ T8548] 9pnet_virtio: no channels available for device syz
[  219.867331][ T5983] usb 7-1: Using ep0 maxpacket: 16
[  219.871186][ T5983] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  219.876114][ T5983] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  219.878969][ T5983] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.881492][ T5983] usb 7-1: Product: syz
[  219.882887][ T5983] usb 7-1: Manufacturer: syz
[  219.884478][ T5983] usb 7-1: SerialNumber: syz
[  219.888387][ T5983] usb 7-1: config 0 descriptor??
[  219.895958][ T5983] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  219.898973][ T5983] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  220.017821][ T8553] FAULT_INJECTION: forcing a failure.
[  220.017821][ T8553] name failslab, interval 1, probability 0, space 0, times 0
[  220.021908][ T8553] CPU: 3 UID: 0 PID: 8553 Comm: syz.1.638 Not tainted syzkaller #0 PREEMPT(full) 
[  220.021924][ T8553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  220.021932][ T8553] Call Trace:
[  220.021936][ T8553]  <TASK>
[  220.021941][ T8553]  dump_stack_lvl+0x16c/0x1f0
[  220.021966][ T8553]  should_fail_ex+0x512/0x640
[  220.021985][ T8553]  ? __kmalloc_noprof+0xca/0x880
[  220.022050][ T8553]  should_failslab+0xc2/0x120
[  220.022088][ T8553]  __kmalloc_noprof+0xdd/0x880
[  220.022101][ T8553]  ? __memcg_slab_post_alloc_hook+0x47c/0x940
[  220.022118][ T8553]  ? io_cache_alloc_new+0x45/0xf0
[  220.022170][ T8553]  ? io_cache_alloc_new+0x45/0xf0
[  220.022183][ T8553]  io_cache_alloc_new+0x45/0xf0
[  220.022198][ T8553]  __io_prep_rw+0x21d/0x1090
[  220.022221][ T8553]  ? __pfx___io_prep_rw+0x10/0x10
[  220.022239][ T8553]  ? __io_alloc_req_refill+0x33a/0x5e0
[  220.022259][ T8553]  ? mark_held_locks+0x49/0x80
[  220.022277][ T8553]  io_prep_rw+0x76/0x2c0
[  220.022293][ T8553]  ? __pfx_io_prep_rw+0x10/0x10
[  220.022318][ T8553]  io_submit_sqes+0x855/0x2710
[  220.022354][ T8553]  __do_sys_io_uring_enter+0xd69/0x1630
[  220.022372][ T8553]  ? __fget_files+0x20e/0x3c0
[  220.022403][ T8553]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  220.022419][ T8553]  ? fput+0x9b/0xd0
[  220.022431][ T8553]  ? ksys_write+0x1ac/0x250
[  220.022446][ T8553]  ? __pfx_ksys_write+0x10/0x10
[  220.022462][ T8553]  ? rcu_is_watching+0x12/0xc0
[  220.022481][ T8553]  __do_fast_syscall_32+0x7c/0x300
[  220.022501][ T8553]  do_fast_syscall_32+0x32/0x80
[  220.022520][ T8553]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  220.022539][ T8553] RIP: 0023:0xf700d579
[  220.022553][ T8553] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  220.022569][ T8553] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  220.022591][ T8553] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000007368
[  220.022601][ T8553] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  220.022610][ T8553] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  220.022619][ T8553] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  220.022628][ T8553] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  220.022646][ T8553]  </TASK>
[  220.330216][ T5983] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  220.427592][ T5983] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  220.449615][ T5983] em28xx 7-1:0.0: board has no eeprom
[  220.559830][ T5983] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  220.563430][ T5983] em28xx 7-1:0.0: dvb set to bulk mode.
[  220.581440][   T60] em28xx 7-1:0.0: Binding DVB extension
[  220.652257][ T5983] usb 7-1: USB disconnect, device number 6
[  220.657975][ T5983] em28xx 7-1:0.0: Disconnecting em28xx
[  220.797353][   T60] em28xx 7-1:0.0: Registering input extension
[  220.803167][ T5983] em28xx 7-1:0.0: Closing input extension
[  220.849832][ T5983] em28xx 7-1:0.0: Freeing device
[  221.166008][   T40] audit: type=1326 audit(1760529690.538:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8567 comm="syz.4.641" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x0
[  222.135586][ T8573] loop3: detected capacity change from 0 to 7
[  222.143967][ T8573] Dev loop3: unable to read RDB block 7
[  222.147942][ T8573]  loop3: unable to read partition table
[  222.150187][ T8573] loop3: partition table beyond EOD, truncated
[  222.152520][ T8573] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  223.840452][   T40] audit: type=1326 audit(1760529693.218:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8606 comm="syz.1.652" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x0
[  223.848543][ T8609] netlink: 8 bytes leftover after parsing attributes in process `syz.3.651'.
[  223.892635][   T40] audit: type=1326 audit(1760529693.268:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.3.653" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x0
[  224.365875][   T34] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  224.525910][   T34] usb 7-1: Using ep0 maxpacket: 16
[  224.530271][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  224.535223][   T34] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  224.538720][   T34] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.541364][   T34] usb 7-1: Product: syz
[  224.542703][   T34] usb 7-1: Manufacturer: syz
[  224.544280][   T34] usb 7-1: SerialNumber: syz
[  224.547969][   T34] usb 7-1: config 0 descriptor??
[  224.555552][   T34] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  224.558878][   T34] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  224.825485][ T8621] loop2: detected capacity change from 0 to 7
[  224.833058][ T8621] Dev loop2: unable to read RDB block 7
[  224.835844][ T8621]  loop2: unable to read partition table
[  224.837950][ T8621] loop2: partition table beyond EOD, truncated
[  224.856028][ T8621] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  224.966935][   T34] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  225.822959][   T34] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  225.825754][   T34] em28xx 7-1:0.0: board has no eeprom
[  225.885980][   T34] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  225.888861][   T34] em28xx 7-1:0.0: dvb set to bulk mode.
[  225.890672][ T8407] em28xx 7-1:0.0: Binding DVB extension
[  225.905321][   T34] usb 7-1: USB disconnect, device number 7
[  225.924406][   T34] em28xx 7-1:0.0: Disconnecting em28xx
[  225.952595][ T8643] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  225.955217][ T8643] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  225.958748][ T8643] vhci_hcd vhci_hcd.0: Device attached
[  226.065030][ T8407] em28xx 7-1:0.0: Registering input extension
[  226.069433][   T34] em28xx 7-1:0.0: Closing input extension
[  226.103696][   T34] em28xx 7-1:0.0: Freeing device
[  226.246706][ T8648] vivid-000: =================  START STATUS  =================
[  226.253306][ T8648] vivid-000: Test Pattern: 75% Colorbar
[  226.258984][ T8648] vivid-000: Fill Percentage of Frame: 100
[  226.265347][ T8648] vivid-000: Horizontal Movement: No Movement
[  226.266557][ T6042] usb 43-1: new low-speed USB device number 3 using vhci_hcd
[  226.272605][ T8648] vivid-000: Vertical Movement: No Movement
[  226.280303][ T8648] vivid-000: OSD Text Mode: All
[  226.285302][ T8648] vivid-000: Show Border: false
[  226.287825][ T8648] vivid-000: Show Square: false
[  226.292314][ T8648] vivid-000: Sensor Flipped Horizontally: false
[  226.296306][ T8648] vivid-000: Sensor Flipped Vertically: false
[  226.300209][ T8648] vivid-000: Insert SAV Code in Image: false
[  226.304753][ T8648] vivid-000: Insert EAV Code in Image: false
[  226.311631][ T8648] vivid-000: Insert Video Guard Band: false
[  226.314038][ T8648] vivid-000: Reduced Framerate: false
[  226.319587][ T8648] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  226.326219][ T8648] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  226.333494][ T8648] vivid-000: Enable Capture Cropping: true grabbed
[  226.341430][ T8648] vivid-000: Enable Capture Composing: true grabbed
[  226.350435][ T8648] vivid-000: Enable Capture Scaler: true grabbed
[  226.358912][ T8648] vivid-000: Timestamp Source: End of Frame
[  226.366461][ T8648] vivid-000: Colorspace: sRGB
[  226.371468][ T8648] vivid-000: Transfer Function: Default
[  226.376538][ T8648] vivid-000: Y'CbCr Encoding: Default
[  226.382996][ T8648] vivid-000: HSV Encoding: Hue 0-179
[  226.386971][ T8648] vivid-000: Quantization: Default
[  226.390639][ T8648] vivid-000: Apply Alpha To Red Only: false
[  226.396154][ T8648] vivid-000: Standard Aspect Ratio: 4x3
[  226.399415][ T8648] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  226.406151][ T8648] vivid-000: DV Timings: 640x480p59 inactive
[  226.414192][ T8648] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  226.419287][ T8648] vivid-000: Maximum EDID Blocks: 2
[  226.423740][ T8648] vivid-000: Limited RGB Range (16-235): false
[  226.426397][ T8648] vivid-000: Rx RGB Quantization Range: Automatic
[  226.431639][ T8648] vivid-000: Power Present: 0x00000001
[  226.436729][ T8648] tpg source WxH: 320x240 (Y'CbCr)
[  226.440910][ T8648] tpg field: 1
[  226.445236][ T8648] tpg crop: (0,0)/320x240
[  226.449432][ T8648] tpg compose: (0,0)/320x240
[  226.458065][ T8648] tpg colorspace: 8
[  226.465513][ T8648] tpg transfer function: 0/2
[  226.477330][ T8648] tpg Y'CbCr encoding: 0/1
[  226.488040][ T8648] tpg quantization: 0/2
[  226.497766][ T8648] tpg RGB range: 0/2
[  226.499032][ T8648] vivid-000: ==================  END STATUS  ==================
[  226.717306][ T8644] vhci_hcd: connection reset by peer
[  226.722245][ T1149] vhci_hcd: stop threads
[  226.723854][ T1149] vhci_hcd: release socket
[  226.725614][ T1149] vhci_hcd: disconnect device
[  227.276576][   T40] audit: type=1326 audit(1760529696.658:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8662 comm="syz.3.665" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x0
[  227.565163][   T40] audit: type=1326 audit(1760529696.938:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8668 comm="syz.1.666" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x0
[  227.629664][ T8672] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  227.631922][ T8672] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  227.635361][ T8672] vhci_hcd vhci_hcd.0: Device attached
[  227.655360][ T8672] netlink: 32 bytes leftover after parsing attributes in process `syz.4.667'.
[  229.217094][ T8673] vhci_hcd: connection closed
[  229.231150][ T1149] vhci_hcd: stop threads
[  229.234178][ T1149] vhci_hcd: release socket
[  229.235717][ T1149] vhci_hcd: disconnect device
[  229.285979][ T2299] usb 45-1: new low-speed USB device number 2 using vhci_hcd
[  229.288450][ T2299] usb 45-1: enqueue for inactive port 0
[  229.292119][ T8686] process 'syz.4.669' launched './file1' with NULL argv: empty string added
[  229.418317][ T2299] vhci_hcd: vhci_device speed not set
[  229.503345][ T8699] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  229.505471][ T8699] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  229.508290][ T8699] vhci_hcd vhci_hcd.0: Device attached
[  229.635935][  T843] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  229.787436][  T843] usb 9-1: Using ep0 maxpacket: 16
[  229.792807][  T843] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  229.806315][  T843] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  229.816250][  T843] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.820041][  T843] usb 9-1: Product: syz
[  229.821792][  T843] usb 9-1: Manufacturer: syz
[  229.824045][  T843] usb 9-1: SerialNumber: syz
[  229.833185][  T843] usb 9-1: config 0 descriptor??
[  229.850440][  T843] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  229.854438][  T843] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  230.146013][   T29] usb 41-1: new low-speed USB device number 7 using vhci_hcd
[  230.245666][ T8700] vhci_hcd: connection reset by peer
[  230.254321][   T95] vhci_hcd: stop threads
[  230.256667][   T95] vhci_hcd: release socket
[  230.258399][   T95] vhci_hcd: disconnect device
[  230.327611][  T843] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  230.376280][ T8712] FAULT_INJECTION: forcing a failure.
[  230.376280][ T8712] name failslab, interval 1, probability 0, space 0, times 0
[  230.384376][ T8712] CPU: 2 UID: 0 PID: 8712 Comm: syz.1.675 Not tainted syzkaller #0 PREEMPT(full) 
[  230.384405][ T8712] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.384416][ T8712] Call Trace:
[  230.384425][ T8712]  <TASK>
[  230.384433][ T8712]  dump_stack_lvl+0x16c/0x1f0
[  230.384468][ T8712]  should_fail_ex+0x512/0x640
[  230.384495][ T8712]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  230.384524][ T8712]  should_failslab+0xc2/0x120
[  230.384541][ T8712]  kmem_cache_alloc_node_noprof+0x78/0x770
[  230.384561][ T8712]  ? __alloc_skb+0x2b2/0x380
[  230.384590][ T8712]  ? __alloc_skb+0x2b2/0x380
[  230.384609][ T8712]  ? __pfx_netlink_insert+0x10/0x10
[  230.384642][ T8712]  __alloc_skb+0x2b2/0x380
[  230.384663][ T8712]  ? __pfx___alloc_skb+0x10/0x10
[  230.384685][ T8712]  ? netlink_autobind.isra.0+0x158/0x370
[  230.384715][ T8712]  netlink_alloc_large_skb+0x69/0x140
[  230.384740][ T8712]  netlink_sendmsg+0x698/0xdd0
[  230.384768][ T8712]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.384794][ T8712]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  230.384842][ T8712]  ____sys_sendmsg+0xa98/0xc70
[  230.384863][ T8712]  ? __pfx_____sys_sendmsg+0x10/0x10
[  230.384880][ T8712]  ? get_compat_msghdr+0x11a/0x170
[  230.384914][ T8712]  ___sys_sendmsg+0x134/0x1d0
[  230.384938][ T8712]  ? __pfx____sys_sendmsg+0x10/0x10
[  230.384970][ T8712]  ? find_held_lock+0x2b/0x80
[  230.385007][ T8712]  __sys_sendmsg+0x16d/0x220
[  230.385031][ T8712]  ? __pfx___sys_sendmsg+0x10/0x10
[  230.385064][ T8712]  ? rcu_is_watching+0x12/0xc0
[  230.385090][ T8712]  __do_fast_syscall_32+0x7c/0x300
[  230.385117][ T8712]  do_fast_syscall_32+0x32/0x80
[  230.385141][ T8712]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  230.385165][ T8712] RIP: 0023:0xf700d579
[  230.385179][ T8712] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  230.385196][ T8712] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  230.385216][ T8712] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000140
[  230.385226][ T8712] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  230.385235][ T8712] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  230.385245][ T8712] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  230.385254][ T8712] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  230.385275][ T8712]  </TASK>
[  230.398185][  T843] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  230.486707][  T843] em28xx 9-1:0.0: board has no eeprom
[  230.545887][  T843] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  230.548799][  T843] em28xx 9-1:0.0: dvb set to bulk mode.
[  230.551286][   T34] em28xx 9-1:0.0: Binding DVB extension
[  230.559325][  T843] usb 9-1: USB disconnect, device number 3
[  230.564478][  T843] em28xx 9-1:0.0: Disconnecting em28xx
[  230.584058][   T34] em28xx 9-1:0.0: Registering input extension
[  230.586295][  T843] em28xx 9-1:0.0: Closing input extension
[  230.591859][  T843] em28xx 9-1:0.0: Freeing device
[  230.901013][   T40] audit: type=1326 audit(1760529700.278:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.2.678" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  231.406008][ T6042] vhci_hcd: vhci_device speed not set
[  233.084494][ T8737] netlink: 20 bytes leftover after parsing attributes in process `syz.4.681'.
[  233.093180][ T8737] netlink: 20 bytes leftover after parsing attributes in process `syz.4.681'.
[  233.313970][ T8750] netlink: 'syz.4.685': attribute type 1 has an invalid length.
[  233.333215][ T8750] 8021q: adding VLAN 0 to HW filter on device bond1
[  234.084327][   T40] audit: type=1326 audit(1760529703.458:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.1.689" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x0
[  234.530496][ T8764] netlink: 8 bytes leftover after parsing attributes in process `syz.2.690'.
[  234.924301][   T40] audit: type=1326 audit(1760529704.298:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8775 comm="syz.2.692" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  235.245987][   T29] vhci_hcd: vhci_device speed not set
[  237.607965][   T40] audit: type=1326 audit(1760529706.988:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.2.702" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0
[  239.406345][ T8850] binder: 8845:8850 ioctl 81e8943c 800005c0 returned -22
[  239.414464][ T8850] binder: 8845:8850 ioctl d000941e 80000d00 returned -22
[  239.595312][ T8854] binder: 8845:8854 ioctl c01cf509 800002c0 returned -22
[  239.615928][   T40] audit: type=1326 audit(1760529708.968:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  239.634551][   T40] audit: type=1326 audit(1760529708.968:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  239.649204][   T40] audit: type=1326 audit(1760529708.968:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf700d579 code=0x7ffc0000
[  239.659551][   T40] audit: type=1326 audit(1760529708.968:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  239.667950][   T40] audit: type=1326 audit(1760529708.978:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf700d579 code=0x7ffc0000
[  239.675517][   T40] audit: type=1326 audit(1760529708.978:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  239.686006][   T40] audit: type=1326 audit(1760529708.978:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf700d579 code=0x7ffc0000
[  239.693595][   T40] audit: type=1326 audit(1760529708.978:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000
[  239.711244][   T40] audit: type=1326 audit(1760529708.978:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8852 comm="syz.1.713" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf700d579 code=0x7ffc0000
[  240.416098][   T29] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  240.585943][   T29] usb 7-1: Using ep0 maxpacket: 16
[  240.632392][   T29] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  240.646464][   T29] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  240.656044][   T29] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  240.659701][   T29] usb 7-1: Product: syz
[  240.661674][   T29] usb 7-1: Manufacturer: syz
[  240.664090][   T29] usb 7-1: SerialNumber: syz
[  240.673260][   T29] usb 7-1: config 0 descriptor??
[  240.698718][   T29] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  240.702804][   T29] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  241.097319][   T29] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  241.169790][   T29] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  241.173462][   T29] em28xx 7-1:0.0: board has no eeprom
[  241.235907][   T29] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  241.240068][   T29] em28xx 7-1:0.0: dvb set to bulk mode.
[  241.242559][ T1024] em28xx 7-1:0.0: Binding DVB extension
[  241.254110][   T29] usb 7-1: USB disconnect, device number 8
[  241.258789][   T29] em28xx 7-1:0.0: Disconnecting em28xx
[  241.402756][ T1024] em28xx 7-1:0.0: Registering input extension
[  241.407013][   T29] em28xx 7-1:0.0: Closing input extension
[  241.422318][   T29] em28xx 7-1:0.0: Freeing device
[  241.954163][ T8888] netfs: Couldn't get user pages (rc=-14)
[  243.697732][ T8899] netlink: 20 bytes leftover after parsing attributes in process `syz.2.724'.
[  243.707135][ T8899] netlink: 20 bytes leftover after parsing attributes in process `syz.2.724'.
[  244.927862][ T8914] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  244.930423][ T8914] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  244.934051][ T8914] vhci_hcd vhci_hcd.0: Device attached
[  244.944318][ T8915] vhci_hcd: connection closed
[  244.944493][   T62] vhci_hcd: stop threads
[  244.948998][   T62] vhci_hcd: release socket
[  244.950833][   T62] vhci_hcd: disconnect device
[  245.592055][ T8924] loop2: detected capacity change from 0 to 7
[  245.606179][ T6444] Dev loop2: unable to read RDB block 7
[  245.608637][ T6444]  loop2: unable to read partition table
[  245.611554][ T6444] loop2: partition table beyond EOD, truncated
[  245.614960][ T8924] Dev loop2: unable to read RDB block 7
[  245.618383][ T8924]  loop2: unable to read partition table
[  245.620660][ T8924] loop2: partition table beyond EOD, truncated
[  245.622738][ T8924] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  245.635982][   T60] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  245.785890][   T60] usb 9-1: Using ep0 maxpacket: 16
[  245.799974][   T60] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  245.821110][   T60] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  245.836081][   T60] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  245.839985][   T60] usb 9-1: Product: syz
[  245.842224][   T60] usb 9-1: Manufacturer: syz
[  245.846762][   T60] usb 9-1: SerialNumber: syz
[  245.858247][   T60] usb 9-1: config 0 descriptor??
[  245.875359][   T60] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  245.881546][   T60] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  246.176054][ T8934] netlink: 8 bytes leftover after parsing attributes in process `syz.1.736'.
[  246.266439][   T60] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  246.341794][   T60] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  246.344677][   T60] em28xx 9-1:0.0: board has no eeprom
[  246.406016][   T60] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  246.409459][   T60] em28xx 9-1:0.0: dvb set to bulk mode.
[  246.481989][ T5983] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  247.176891][ T6075] em28xx 9-1:0.0: Binding DVB extension
[  247.180928][   T60] usb 9-1: USB disconnect, device number 4
[  247.183663][   T60] em28xx 9-1:0.0: Disconnecting em28xx
[  247.212198][ T6075] em28xx 9-1:0.0: Registering input extension
[  247.214532][   T60] em28xx 9-1:0.0: Closing input extension
[  247.223976][   T60] em28xx 9-1:0.0: Freeing device
[  247.301882][ T8945] netlink: 8 bytes leftover after parsing attributes in process `syz.3.738'.
[  247.349543][ T5983] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  247.354370][ T5983] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  247.359683][ T5983] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  247.364151][ T5983] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.373621][ T8934] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  247.394178][ T5983] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  247.619725][ T6009] usb 6-1: USB disconnect, device number 9
[  248.395245][ T8955] FAULT_INJECTION: forcing a failure.
[  248.395245][ T8955] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  248.424052][ T8955] CPU: 1 UID: 0 PID: 8955 Comm: syz.2.741 Not tainted syzkaller #0 PREEMPT(full) 
[  248.424084][ T8955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  248.424096][ T8955] Call Trace:
[  248.424104][ T8955]  <TASK>
[  248.424113][ T8955]  dump_stack_lvl+0x16c/0x1f0
[  248.424150][ T8955]  should_fail_ex+0x512/0x640
[  248.424182][ T8955]  _copy_from_iter+0x29f/0x1720
[  248.424212][ T8955]  ? __alloc_skb+0x200/0x380
[  248.424239][ T8955]  ? __pfx__copy_from_iter+0x10/0x10
[  248.424266][ T8955]  ? netlink_autobind.isra.0+0x158/0x370
[  248.424304][ T8955]  netlink_sendmsg+0x820/0xdd0
[  248.424370][ T8955]  ? __pfx_netlink_sendmsg+0x10/0x10
[  248.424401][ T8955]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  248.424427][ T8955]  ____sys_sendmsg+0xa98/0xc70
[  248.424452][ T8955]  ? __pfx_____sys_sendmsg+0x10/0x10
[  248.424471][ T8955]  ? get_compat_msghdr+0x11a/0x170
[  248.424513][ T8955]  ___sys_sendmsg+0x134/0x1d0
[  248.424542][ T8955]  ? __pfx____sys_sendmsg+0x10/0x10
[  248.424581][ T8955]  ? find_held_lock+0x2b/0x80
[  248.424625][ T8955]  __sys_sendmsg+0x16d/0x220
[  248.424652][ T8955]  ? __pfx___sys_sendmsg+0x10/0x10
[  248.424689][ T8955]  ? rcu_is_watching+0x12/0xc0
[  248.424720][ T8955]  __do_fast_syscall_32+0x7c/0x300
[  248.424752][ T8955]  do_fast_syscall_32+0x32/0x80
[  248.424779][ T8955]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  248.424802][ T8955] RIP: 0023:0xf707d579
[  248.424817][ T8955] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  248.424834][ T8955] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  248.424854][ T8955] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000140
[  248.424866][ T8955] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  248.424876][ T8955] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  248.424886][ T8955] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  248.424897][ T8955] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  248.424921][ T8955]  </TASK>
[  248.515242][    C1] vkms_vblank_simulate: vblank timer overrun
[  249.846287][ T8982] binder: 8979:8982 ioctl 81e8943c 800005c0 returned -22
[  249.850602][ T8982] binder: 8979:8982 ioctl d000941e 80000d00 returned -22
[  249.860250][ T8980] binder: 8979:8980 ioctl c01cf509 800002c0 returned -22
[  252.576885][ T6075] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  252.644934][ T8999] FAULT_INJECTION: forcing a failure.
[  252.644934][ T8999] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  252.649997][ T8999] CPU: 3 UID: 0 PID: 8999 Comm: syz.4.754 Not tainted syzkaller #0 PREEMPT(full) 
[  252.650014][ T8999] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  252.650021][ T8999] Call Trace:
[  252.650025][ T8999]  <TASK>
[  252.650031][ T8999]  dump_stack_lvl+0x16c/0x1f0
[  252.650056][ T8999]  should_fail_ex+0x512/0x640
[  252.650077][ T8999]  _copy_from_user+0x2e/0xd0
[  252.650089][ T8999]  do_seccomp+0xcb9/0x2640
[  252.650124][ T8999]  ? __fget_files+0x20e/0x3c0
[  252.650141][ T8999]  ? handle_mm_fault+0x1f0/0xd10
[  252.650172][ T8999]  ? __pfx_do_seccomp+0x10/0x10
[  252.650184][ T8999]  ? fput+0x9b/0xd0
[  252.650196][ T8999]  ? ksys_write+0x1ac/0x250
[  252.650211][ T8999]  ? __pfx_ksys_write+0x10/0x10
[  252.650227][ T8999]  ? rcu_is_watching+0x12/0xc0
[  252.650245][ T8999]  __do_fast_syscall_32+0x7c/0x300
[  252.650265][ T8999]  do_fast_syscall_32+0x32/0x80
[  252.650281][ T8999]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  252.650296][ T8999] RIP: 0023:0xf70ad579
[  252.650306][ T8999] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  252.650317][ T8999] RSP: 002b:00000000f545b55c EFLAGS: 00000296 ORIG_RAX: 0000000000000162
[  252.650328][ T8999] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000000
[  252.650335][ T8999] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  252.650341][ T8999] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  252.650347][ T8999] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  252.650353][ T8999] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  252.650366][ T8999]  </TASK>
[  252.735923][ T6075] usb 7-1: Using ep0 maxpacket: 8
[  252.820262][ T6075] usb 7-1: unable to get BOS descriptor or descriptor too short
[  252.824613][ T6075] usb 7-1: no configurations
[  252.827403][ T6075] usb 7-1: can't read configurations, error -22
[  253.142279][ T9003] netlink: 8 bytes leftover after parsing attributes in process `syz.1.755'.
[  253.430411][ T9010] netlink: 96 bytes leftover after parsing attributes in process `syz.1.757'.
[  254.450511][ T9027] netlink: 'syz.3.763': attribute type 21 has an invalid length.
[  254.871035][ T9037] netlink: 56 bytes leftover after parsing attributes in process `syz.1.767'.
[  255.095945][ T9035] netlink: 8 bytes leftover after parsing attributes in process `syz.4.766'.
[  255.296808][ T9046] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.299778][ T9046] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.368456][ T9046] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  255.378294][ T9046] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  255.465097][ T9044] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  255.471686][   T62] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  255.475034][   T62] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  255.479938][   T46] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  255.483592][   T46] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  255.527662][ T9053] misc userio: No port type given on /dev/userio
[  255.772407][ T9053] netlink: 4 bytes leftover after parsing attributes in process `syz.4.771'.
[  255.796070][ T9053] bridge_slave_1: left allmulticast mode
[  255.798767][ T9053] bridge_slave_1: left promiscuous mode
[  255.803671][ T9053] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.821166][ T9053] bridge_slave_0: left allmulticast mode
[  255.823265][ T9053] bridge_slave_0: left promiscuous mode
[  255.825830][ T9053] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.280992][ T9068] loop3: detected capacity change from 0 to 7
[  256.286332][ T9068] Dev loop3: unable to read RDB block 7
[  256.288703][ T9068]  loop3: unable to read partition table
[  256.290772][ T9068] loop3: partition table beyond EOD, truncated
[  256.292864][ T9068] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  258.706253][   T29] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  258.865950][   T29] usb 9-1: Using ep0 maxpacket: 16
[  258.877168][   T29] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  258.885287][   T29] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  258.890120][   T29] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.938870][   T29] usb 9-1: Product: syz
[  258.940499][   T29] usb 9-1: Manufacturer: syz
[  258.942077][   T29] usb 9-1: SerialNumber: syz
[  258.949178][   T29] usb 9-1: config 0 descriptor??
[  259.032723][   T29] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  259.043538][   T29] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  259.836438][   T29] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  259.851028][ T9126] FAULT_INJECTION: forcing a failure.
[  259.851028][ T9126] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.852949][ T9126] 
[  259.852959][ T9126] ======================================================
[  259.852994][ T9126] WARNING: possible circular locking dependency detected
[  259.853002][ T9126] syzkaller #0 Not tainted
[  259.853011][ T9126] ------------------------------------------------------
[  259.853017][ T9126] syz.2.790/9126 is trying to acquire lock:
[  259.853027][ T9126] ffffffff8e2d1500 (console_owner){-...}-{0:0}, at: console_lock_spinning_enable+0x61/0x80
[  259.853083][ T9126] 
[  259.853083][ T9126] but task is already holding lock:
[  259.853088][ T9126] ffff88802b43a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  259.853148][ T9126] 
[  259.853148][ T9126] which lock already depends on the new lock.
[  259.853148][ T9126] 
[  259.853153][ T9126] 
[  259.853153][ T9126] the existing dependency chain (in reverse order) is:
[  259.853167][ T9126] 
[  259.853167][ T9126] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  259.853189][ T9126]        _raw_spin_lock_nested+0x31/0x40
[  259.853229][ T9126]        raw_spin_rq_lock_nested+0x29/0x130
[  259.853249][ T9126]        task_rq_lock+0xcf/0x490
[  259.853270][ T9126]        cgroup_move_task+0x81/0x2a0
[  259.853297][ T9126]        css_set_move_task+0x288/0x5f0
[  259.853315][ T9126]        cgroup_post_fork+0x201/0x9d0
[  259.853337][ T9126]        copy_process+0x602d/0x76a0
[  259.853378][ T9126]        kernel_clone+0xfc/0x930
[  259.853402][ T9126]        user_mode_thread+0xc8/0x110
[  259.853415][ T9126]        rest_init+0x23/0x2b0
[  259.853432][ T9126]        start_kernel+0x3f6/0x4e0
[  259.853551][ T9126]        x86_64_start_reservations+0x18/0x30
[  259.853574][ T9126]        x86_64_start_kernel+0x130/0x190
[  259.853594][ T9126]        common_startup_64+0x13e/0x148
[  259.853634][ T9126] 
[  259.853634][ T9126] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  259.853656][ T9126]        _raw_spin_lock_irqsave+0x3a/0x60
[  259.853678][ T9126]        try_to_wake_up+0xb7/0x1870
[  259.853699][ T9126]        __wake_up_common+0x135/0x1f0
[  259.853715][ T9126]        __wake_up+0x31/0x60
[  259.853739][ T9126]        tty_port_default_wakeup+0x47/0x60
[  259.853763][ T9126]        serial8250_tx_chars+0x68e/0x860
[  259.853850][ T9126]        serial8250_handle_irq+0x761/0xcb0
[  259.853870][ T9126]        serial8250_default_handle_irq+0x9e/0x270
[  259.853893][ T9126]        serial8250_interrupt+0xf8/0x1d0
[  259.853917][ T9126]        __handle_irq_event_percpu+0x236/0x920
[  259.853941][ T9126]        handle_irq_event+0xab/0x1e0
[  259.853961][ T9126]        handle_edge_irq+0x3ca/0x9e0
[  259.853981][ T9126]        __common_interrupt+0xd0/0x2f0
[  259.853998][ T9126]        common_interrupt+0xba/0xe0
[  259.854015][ T9126]        asm_common_interrupt+0x26/0x40
[  259.854033][ T9126]        pv_native_safe_halt+0xf/0x20
[  259.854054][ T9126]        default_idle+0x13/0x20
[  259.854070][ T9126]        default_idle_call+0x6c/0xb0
[  259.854085][ T9126]        do_idle+0x38d/0x500
[  259.854108][ T9126]        cpu_startup_entry+0x4f/0x60
[  259.854128][ T9126]        start_secondary+0x21d/0x2b0
[  259.854170][ T9126]        common_startup_64+0x13e/0x148
[  259.854190][ T9126] 
[  259.854190][ T9126] -> #2 (&tty->write_wait){-...}-{3:3}:
[  259.854213][ T9126]        _raw_spin_lock_irqsave+0x3a/0x60
[  259.854235][ T9126]        __wake_up+0x1c/0x60
[  259.854256][ T9126]        tty_port_default_wakeup+0x47/0x60
[  259.854276][ T9126]        serial8250_tx_chars+0x68e/0x860
[  259.854295][ T9126]        __start_tx+0x3df/0x490
[  259.854315][ T9126]        serial8250_start_tx+0x368/0x530
[  259.854334][ T9126]        __uart_start+0x295/0x500
[  259.854349][ T9126]        uart_write+0x218/0xb30
[  259.854367][ T9126]        n_tty_write+0x41e/0x11e0
[  259.854389][ T9126]        file_tty_write.constprop.0+0x503/0x9b0
[  259.854408][ T9126]        redirected_tty_write+0xd4/0x150
[  259.854425][ T9126]        vfs_write+0x7d3/0x11d0
[  259.854449][ T9126]        ksys_write+0x12a/0x250
[  259.854470][ T9126]        do_syscall_64+0xcd/0xfa0
[  259.854495][ T9126]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.854511][ T9126] 
[  259.854511][ T9126] -> #1 (&port_lock_key){-...}-{3:3}:
[  259.854534][ T9126]        _raw_spin_lock_irqsave+0x3a/0x60
[  259.854554][ T9126]        serial8250_console_write+0x181/0x1890
[  259.854577][ T9126]        console_flush_all+0x801/0xc60
[  259.854597][ T9126]        console_unlock+0xd8/0x210
[  259.854617][ T9126]        vprintk_emit+0x3d7/0x680
[  259.854637][ T9126]        _printk+0xc7/0x100
[  259.854653][ T9126]        register_console+0xc2d/0x11b0
[  259.854673][ T9126]        univ8250_console_init+0x5f/0x90
[  259.854755][ T9126]        console_init+0x152/0x680
[  259.854776][ T9126]        start_kernel+0x29f/0x4e0
[  259.854794][ T9126]        x86_64_start_reservations+0x18/0x30
[  259.854813][ T9126]        x86_64_start_kernel+0x130/0x190
[  259.854832][ T9126]        common_startup_64+0x13e/0x148
[  259.854852][ T9126] 
[  259.854852][ T9126] -> #0 (console_owner){-...}-{0:0}:
[  259.854873][ T9126]        __lock_acquire+0x126f/0x1c90
[  259.854890][ T9126]        lock_acquire+0x179/0x350
[  259.854905][ T9126]        console_lock_spinning_enable+0x72/0x80
[  259.854966][ T9126]        console_flush_all+0x7aa/0xc60
[  259.854985][ T9126]        console_unlock+0xd8/0x210
[  259.855005][ T9126]        vprintk_emit+0x3d7/0x680
[  259.855025][ T9126]        _printk+0xc7/0x100
[  259.855040][ T9126]        should_fail_ex+0x4e7/0x640
[  259.855064][ T9126]        strncpy_from_user+0x3b/0x2e0
[  259.855087][ T9126]        strncpy_from_user_nofault+0x7f/0x180
[  259.855127][ T9126]        bpf_bprintf_prepare+0xe90/0x13f0
[  259.855169][ T9126]        bpf_trace_printk+0xda/0x190
[  259.855188][ T9126]        bpf_prog_930ede9872f2967c+0x3e/0x44
[  259.855203][ T9126]        bpf_trace_run2+0x239/0x590
[  259.855221][ T9126]        __bpf_trace_contention_begin+0xc9/0x110
[  259.855238][ T9126]        __traceiter_contention_begin+0x5d/0xa0
[  259.855252][ T9126]        trace_contention_begin.constprop.0+0xde/0x160
[  259.855272][ T9126]        __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  259.855296][ T9126]        do_raw_spin_lock+0x20e/0x2b0
[  259.855314][ T9126]        raw_spin_rq_lock_nested+0x7e/0x130
[  259.855334][ T9126]        __schedule+0x307/0x5de0
[  259.855354][ T9126]        schedule+0xe7/0x3a0
[  259.855372][ T9126]        exit_to_user_mode_loop+0x6b/0x130
[  259.855390][ T9126]        __do_fast_syscall_32+0x240/0x300
[  259.855414][ T9126]        do_fast_syscall_32+0x32/0x80
[  259.855437][ T9126]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  259.855457][ T9126] 
[  259.855457][ T9126] other info that might help us debug this:
[  259.855457][ T9126] 
[  259.855462][ T9126] Chain exists of:
[  259.855462][ T9126]   console_owner --> &p->pi_lock --> &rq->__lock
[  259.855462][ T9126] 
[  259.855486][ T9126]  Possible unsafe locking scenario:
[  259.855486][ T9126] 
[  259.855490][ T9126]        CPU0                    CPU1
[  259.855494][ T9126]        ----                    ----
[  259.855498][ T9126]   lock(&rq->__lock);
[  259.855507][ T9126]                                lock(&p->pi_lock);
[  259.855517][ T9126]                                lock(&rq->__lock);
[  259.855528][ T9126]   lock(console_owner);
[  259.855538][ T9126] 
[  259.855538][ T9126]  *** DEADLOCK ***
[  259.855538][ T9126] 
[  259.855541][ T9126] 4 locks held by syz.2.790/9126:
[  259.855550][ T9126]  #0: ffff88802b43a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  259.855591][ T9126]  #1: ffffffff8e3c42e0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1bc/0x590
[  259.855630][ T9126]  #2: ffffffff8e3b1940 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100
[  259.855682][ T9126]  #3: ffffffff8e3b19b0 (console_srcu){....}-{0:0}, at: console_flush_all+0x158/0xc60
[  259.855723][ T9126] 
[  259.855723][ T9126] stack backtrace:
[  259.855734][ T9126] CPU: 2 UID: 0 PID: 9126 Comm: syz.2.790 Not tainted syzkaller #0 PREEMPT(full) 
[  259.855753][ T9126] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.855764][ T9126] Call Trace:
[  259.855772][ T9126]  <TASK>
[  259.855779][ T9126]  dump_stack_lvl+0x116/0x1f0
[  259.855801][ T9126]  print_circular_bug+0x275/0x350
[  259.855816][ T9126]  check_noncircular+0x14c/0x170
[  259.855836][ T9126]  __lock_acquire+0x126f/0x1c90
[  259.855856][ T9126]  lock_acquire+0x179/0x350
[  259.855872][ T9126]  ? console_lock_spinning_enable+0x61/0x80
[  259.855893][ T9126]  ? console_lock_spinning_enable+0x4a/0x80
[  259.855917][ T9126]  console_lock_spinning_enable+0x72/0x80
[  259.855938][ T9126]  ? console_lock_spinning_enable+0x61/0x80
[  259.855960][ T9126]  console_flush_all+0x7aa/0xc60
[  259.855984][ T9126]  ? __pfx_console_flush_all+0x10/0x10
[  259.856008][ T9126]  ? is_printk_cpu_sync_owner+0x32/0x40
[  259.856034][ T9126]  console_unlock+0xd8/0x210
[  259.856054][ T9126]  ? __pfx_console_unlock+0x10/0x10
[  259.856075][ T9126]  ? do_raw_spin_unlock+0x160/0x230
[  259.856096][ T9126]  ? _printk+0xc7/0x100
[  259.856111][ T9126]  ? __down_trylock_console_sem+0xb0/0x140
[  259.856131][ T9126]  vprintk_emit+0x3d7/0x680
[  259.856153][ T9126]  ? __pfx_vprintk_emit+0x10/0x10
[  259.856183][ T9126]  _printk+0xc7/0x100
[  259.856199][ T9126]  ? __pfx__printk+0x10/0x10
[  259.856217][ T9126]  ? __pfx____ratelimit+0x10/0x10
[  259.856242][ T9126]  should_fail_ex+0x4e7/0x640
[  259.856270][ T9126]  strncpy_from_user+0x3b/0x2e0
[  259.856294][ T9126]  strncpy_from_user_nofault+0x7f/0x180
[  259.856318][ T9126]  bpf_bprintf_prepare+0xe90/0x13f0
[  259.856345][ T9126]  ? __pfx_trace_event_raw_event_bpf_trace_printk+0x10/0x10
[  259.856367][ T9126]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  259.856394][ T9126]  ? __pfx_bstr_printf+0x10/0x10
[  259.856418][ T9126]  ? bpf_trace_run2+0x3e1/0x590
[  259.856435][ T9126]  bpf_trace_printk+0xda/0x190
[  259.856451][ T9126]  ? __pfx_bpf_trace_printk+0x10/0x10
[  259.856471][ T9126]  ? bpf_trace_run2+0x3e1/0x590
[  259.856492][ T9126]  bpf_prog_930ede9872f2967c+0x3e/0x44
[  259.856506][ T9126]  bpf_trace_run2+0x239/0x590
[  259.856525][ T9126]  ? __pfx_bpf_trace_run2+0x10/0x10
[  259.856546][ T9126]  ? __lock_acquire+0x622/0x1c90
[  259.856564][ T9126]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  259.856581][ T9126]  __bpf_trace_contention_begin+0xc9/0x110
[  259.856600][ T9126]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  259.856619][ T9126]  ? __pfx__kstrtoull+0x10/0x10
[  259.856642][ T9126]  __traceiter_contention_begin+0x5d/0xa0
[  259.856660][ T9126]  trace_contention_begin.constprop.0+0xde/0x160
[  259.856681][ T9126]  __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  259.856708][ T9126]  ? __lock_acquire+0xb8a/0x1c90
[  259.856724][ T9126]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  259.856754][ T9126]  do_raw_spin_lock+0x20e/0x2b0
[  259.856774][ T9126]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  259.856793][ T9126]  ? rcu_qs+0x2b/0xe0
[  259.856814][ T9126]  ? rcu_note_context_switch+0x192/0x1e00
[  259.856840][ T9126]  raw_spin_rq_lock_nested+0x7e/0x130
[  259.856862][ T9126]  ? schedule+0xe7/0x3a0
[  259.856883][ T9126]  __schedule+0x307/0x5de0
[  259.856905][ T9126]  ? ksys_write+0x190/0x250
[  259.856932][ T9126]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  259.856960][ T9126]  ? __pfx___schedule+0x10/0x10
[  259.856980][ T9126]  ? __fget_files+0x20e/0x3c0
[  259.857001][ T9126]  ? handle_mm_fault+0x1f0/0xd10
[  259.857022][ T9126]  ? fput+0x9b/0xd0
[  259.857037][ T9126]  ? ksys_write+0x1ac/0x250
[  259.857061][ T9126]  schedule+0xe7/0x3a0
[  259.857083][ T9126]  exit_to_user_mode_loop+0x6b/0x130
[  259.857104][ T9126]  __do_fast_syscall_32+0x240/0x300
[  259.857130][ T9126]  do_fast_syscall_32+0x32/0x80
[  259.857156][ T9126]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  259.857182][ T9126] RIP: 0023:0xf707d579
[  259.857197][ T9126] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  259.857214][ T9126] RSP: 002b:00000000f542b590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  259.857229][ T9126] RAX: 0000000000000001 RBX: 0000000000000007 RCX: 00000000f542b610
[  259.857240][ T9126] RDX: 0000000000000001 RSI: 00000000f7415ff4 RDI: 0000000000000000
[  259.857251][ T9126] RBP: 00000000f74450b0 R08: 0000000000000000 R09: 0000000000000000
[  259.857260][ T9126] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  259.857270][ T9126] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  259.857286][ T9126]  </TASK>
[  260.380553][ T9126] CPU: 2 UID: 0 PID: 9126 Comm: syz.2.790 Not tainted syzkaller #0 PREEMPT(full) 
[  260.380588][ T9126] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  260.380604][ T9126] Call Trace:
[  260.380612][ T9126]  <TASK>
[  260.380623][ T9126]  dump_stack_lvl+0x116/0x1f0
[  260.380668][ T9126]  should_fail_ex+0x512/0x640
[  260.380707][ T9126]  strncpy_from_user+0x3b/0x2e0
[  260.380739][ T9126]  strncpy_from_user_nofault+0x7f/0x180
[  260.380777][ T9126]  bpf_bprintf_prepare+0xe90/0x13f0
[  260.380817][ T9126]  ? __pfx_trace_event_raw_event_bpf_trace_printk+0x10/0x10
[  260.380847][ T9126]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  260.380884][ T9126]  ? __pfx_bstr_printf+0x10/0x10
[  260.380919][ T9126]  ? bpf_trace_run2+0x3e1/0x590
[  260.380945][ T9126]  bpf_trace_printk+0xda/0x190
[  260.380972][ T9126]  ? __pfx_bpf_trace_printk+0x10/0x10
[  260.381000][ T9126]  ? bpf_trace_run2+0x3e1/0x590
[  260.381030][ T9126]  bpf_prog_930ede9872f2967c+0x3e/0x44
[  260.381050][ T9126]  bpf_trace_run2+0x239/0x590
[  260.381078][ T9126]  ? __pfx_bpf_trace_run2+0x10/0x10
[  260.381107][ T9126]  ? __lock_acquire+0x622/0x1c90
[  260.381140][ T9126]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  260.381165][ T9126]  __bpf_trace_contention_begin+0xc9/0x110
[  260.381189][ T9126]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  260.381217][ T9126]  ? __pfx__kstrtoull+0x10/0x10
[  260.381249][ T9126]  __traceiter_contention_begin+0x5d/0xa0
[  260.381272][ T9126]  trace_contention_begin.constprop.0+0xde/0x160
[  260.381302][ T9126]  __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  260.381341][ T9126]  ? __lock_acquire+0xb8a/0x1c90
[  260.381363][ T9126]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  260.381404][ T9126]  do_raw_spin_lock+0x20e/0x2b0
[  260.381432][ T9126]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  260.381458][ T9126]  ? rcu_qs+0x2b/0xe0
[  260.381487][ T9126]  ? rcu_note_context_switch+0x192/0x1e00
[  260.381522][ T9126]  raw_spin_rq_lock_nested+0x7e/0x130
[  260.381555][ T9126]  ? schedule+0xe7/0x3a0
[  260.381584][ T9126]  __schedule+0x307/0x5de0
[  260.381614][ T9126]  ? ksys_write+0x190/0x250
[  260.381653][ T9126]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  260.381689][ T9126]  ? __pfx___schedule+0x10/0x10
[  260.381718][ T9126]  ? __fget_files+0x20e/0x3c0
[  260.381746][ T9126]  ? handle_mm_fault+0x1f0/0xd10
[  260.381776][ T9126]  ? fput+0x9b/0xd0
[  260.381799][ T9126]  ? ksys_write+0x1ac/0x250
[  260.381832][ T9126]  schedule+0xe7/0x3a0
[  260.381863][ T9126]  exit_to_user_mode_loop+0x6b/0x130
[  260.381891][ T9126]  __do_fast_syscall_32+0x240/0x300
[  260.381929][ T9126]  do_fast_syscall_32+0x32/0x80
[  260.381963][ T9126]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  260.381990][ T9126] RIP: 0023:0xf707d579
[  260.382010][ T9126] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  260.382032][ T9126] RSP: 002b:00000000f542b590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  260.382057][ T9126] RAX: 0000000000000001 RBX: 0000000000000007 RCX: 00000000f542b610
[  260.382073][ T9126] RDX: 0000000000000001 RSI: 00000000f7415ff4 RDI: 0000000000000000
[  260.382086][ T9126] RBP: 00000000f74450b0 R08: 0000000000000000 R09: 0000000000000000
[  260.382099][ T9126] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  260.382113][ T9126] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  260.382141][ T9126]  </TASK>
[  260.594190][   T29] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  260.597767][   T29] em28xx 9-1:0.0: board has no eeprom
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  260.699305][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  260.702111][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  260.816005][   T29] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  260.837176][   T29] em28xx 9-1:0.0: dvb set to bulk mode.
[  260.839534][ T5996] em28xx 9-1:0.0: Binding DVB extension
[  260.865949][   T29] usb 9-1: USB disconnect, device number 5
[  260.869632][   T29] em28xx 9-1:0.0: Disconnecting em28xx
[  260.894854][ T5996] em28xx 9-1:0.0: Registering input extension
[  260.916941][   T29] em28xx 9-1:0.0: Closing input extension
[  260.926549][   T29] em28xx 9-1:0.0: Freeing device
[  261.264822][   T62] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.370202][   T62] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.485621][   T62] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.580304][   T62] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.832141][   T62] bond0 (unregistering): left promiscuous mode
[  261.834428][   T62] bond_slave_0: left promiscuous mode
[  261.837012][   T62] bond_slave_1: left promiscuous mode
[  261.840714][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  261.846331][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  261.851128][   T62] bond0 (unregistering): Released all slaves
[  261.947784][   T62] tipc: Disabling bearer <udp:s>
[  261.950356][   T62] tipc: Left network mode
[  262.182277][   T62] batadv0: left promiscuous mode
[  262.187712][   T62] hsr_slave_0: left promiscuous mode
[  262.190793][   T62] hsr_slave_1: left promiscuous mode
[  262.193504][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  262.198625][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  262.201956][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  262.204682][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  262.210823][   T62] veth1_macvtap: left promiscuous mode
[  262.212978][   T62] veth0_macvtap: left promiscuous mode
[  262.215161][   T62] veth1_vlan: left promiscuous mode
[  262.217301][   T62] veth0_vlan: left promiscuous mode
[  262.369994][   T62] team0 (unregistering): Port device team_slave_1 removed
[  262.412108][   T62] team0 (unregistering): Port device team_slave_0 removed
[  262.893112][   T62] IPVS: stop unused estimator thread 0...
[  262.993807][   T62] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.091412][   T62] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.141661][   T62] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.221565][   T62] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.309983][   T62] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.389091][   T62] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.443348][   T62] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.490142][   T62] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.876864][   T62] bridge_slave_1: left allmulticast mode
[  263.879716][   T62] bridge_slave_1: left promiscuous mode
[  263.882500][   T62] bridge0: port 2(bridge_slave_1) entered disabled state
[  263.887881][   T62] bridge_slave_0: left allmulticast mode
[  263.890246][   T62] bridge_slave_0: left promiscuous mode
[  263.892602][   T62] bridge0: port 1(bridge_slave_0) entered disabled state
[  263.960780][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  263.966593][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  263.970517][   T62] bond0 (unregistering): Released all slaves
[  264.119294][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  264.123258][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  264.127222][   T62] bond0 (unregistering): Released all slaves
[  264.339763][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  264.344447][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  264.349177][   T62] bond0 (unregistering): Released all slaves
[  264.424584][   T62] bond1 (unregistering): Released all slaves
[  264.526978][   T62] tipc: Disabling bearer <udp:s>
[  264.529439][   T62] tipc: Left network mode
[  264.537512][   T62] tipc: Disabling bearer <udp:s>
[  264.540002][   T62] tipc: Left network mode
[  264.569011][   T62] IPVS: stopping backup sync thread 8304 ...
[  265.008322][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  265.011057][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  265.014482][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  265.017624][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  265.025388][   T62] hsr_slave_0: left promiscuous mode
[  265.029595][   T62] hsr_slave_1: left promiscuous mode
[  265.032311][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  265.035456][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  265.039170][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  265.042230][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  265.048874][   T62] hsr_slave_0: left promiscuous mode
[  265.052244][   T62] hsr_slave_1: left promiscuous mode
[  265.055057][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  265.058976][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  265.068064][   T62] veth1_macvtap: left promiscuous mode
[  265.070781][   T62] veth0_macvtap: left promiscuous mode
[  265.073439][   T62] veth1_vlan: left promiscuous mode
[  265.075731][   T62] veth0_vlan: left promiscuous mode
[  265.079480][   T62] veth1_macvtap: left promiscuous mode
[  265.081806][   T62] veth0_macvtap: left promiscuous mode
[  265.084170][   T62] veth1_vlan: left promiscuous mode
[  265.086567][   T62] veth0_vlan: left promiscuous mode
[  265.366837][   T62] team0 (unregistering): Port device team_slave_1 removed
[  265.412310][   T62] team0 (unregistering): Port device team_slave_0 removed
[  265.705447][   T62] team0 (unregistering): Port device team_slave_1 removed
[  265.751259][   T62] team0 (unregistering): Port device team_slave_0 removed
[  266.449438][   T62] team0 (unregistering): Port device team_slave_1 removed
[  266.520353][   T62] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
12:02:09  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=ffffc90007795000 RCX=dffffc0000000000 RDX=0000000000000000
RSI=0000000000000811 RDI=ffffffff8b946d20 RBP=1ffff920006c1e9b RSP=ffffc9000360f4c0
R8 =0000000000000001 R9 =fffff520006c1ebe R10=ffffc9000360f5f7 R11=0000000000000000
R12=ffff888023d8f500 R13=ffff888022ddb880 R14=ffffc90007795040 R15=ffffc9000360f4f8
RIP=ffffffff81891d11 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977e1000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000049de5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffffc900048477f0 RCX=ffffc9000c001000 RDX=1ffff92000908f01
RSI=ffffc900048477f0 RDI=ffff888024a9c918 RBP=ffffc90004847808 RSP=ffffc90004847780
R8 =0000000000000000 R9 =fffffbfff2106c7a R10=ffffffff908363d7 R11=0000000000000001
R12=ffff888022ddba00 R13=ffffffff8194ce3f R14=000000000000000b R15=ffff888022ddb9b8
RIP=ffffffff8194ceab RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978e1000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000049de5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff852db115 RDI=ffffffff9adf1e40 RBP=ffffffff9adf1e00 RSP=ffffc900073871d8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002d R14=ffffffff9adf1e00 R15=ffffffff852db0b0
RIP=ffffffff852db13f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979e1000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000402f7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000003 RBX=ffff88802b43a4d8 RCX=1ffffffff2107286 RDX=1ffff110056a765b
RSI=ffffffff8189f1ac RDI=ffff88802b43a4d8 RBP=ffffc900079e7828 RSP=ffffc900079e7768
R8 =0000000000000000 R9 =ffffffff8189f0f7 R10=0000000000000001 R11=0000000000000001
R12=ffffffff8189f1ac R13=ffff88801c338000 R14=ffff88802b43a4c0 R15=ffff88802b53b2f0
RIP=ffffffff8b630b20 RFL=00000087 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097ae1000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000402f7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffff00
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000